ELSA-2022-9852
- ULN >
- Oracle Linux Errata repository >
- ELSA-2022-9852
ELSA-2022-9852 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2022-10-04 |
Description
[4.1.12-124.67.3]
- media: imon: Fix null-ptr-deref in imon_probe (Arvind Yadav) [Orabug: 31225377] {CVE-2017-16537}
- fbcon: remove soft scrollback code (Linus Torvalds) [Orabug: 31914703] {CVE-2020-14390}
- inet: use bigger hash table for IP ID generation (Eric Dumazet) [Orabug: 33778986] {CVE-2021-45486}
- ipv4: speedup ip_idents_reserve() (Eric Dumazet) [Orabug: 33778986]
[4.1.12-124.67.2]
- media: v4l: ioctl: Fix memory leak in video_usercopy (Sakari Ailus) [Orabug: 32759975] {CVE-2021-30002}
- usbnet: silence an unnecessary warning (Oliver Neukum) [Orabug: 23589045]
- futex: Remove requirement for lock_page() in get_futex_key() (Mel Gorman) [Orabug: 29048998] {CVE-2018-9422}
- mwifiex: Fix skb_over_panic in mwifiex_usb_recv() (Zekun Shen) [Orabug: 33784271] {CVE-2021-43976}
- af_key: Do not call xfrm_probe_algs in parallel (Herbert Xu) [Orabug: 34566754] {CVE-2022-3028}
- ext4: fix kernel infoleak via ext4_extent_header (Anirudh Rayabharam) [Orabug: 34579226] {CVE-2022-0850}
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jann Horn) [Orabug: 34594265] {CVE-2022-2964}
- net: usb: ax88179_178a: initialize local variables before use (Phillip Potter) [Orabug: 34594265]
- net: usb: ax88179_178a: fix packet alignment padding (Jeremy Kerr) [Orabug: 34594265]
- ax88179_178a: Check for supported Wake-on-LAN modes (Florian Fainelli) [Orabug: 34594265]
- Net Driver: Add Cypress GX3 VID=04b4 PID=3610. (Allan Chou) [Orabug: 34594265]
[4.1.12-124.67.1]
- KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings (Eric Biggers) [Orabug: 27902747] {CVE-2017-7472}
- KEYS: prevent creating a different user's keyrings (Eric Biggers) [Orabug: 29013653] {CVE-2017-18270}
- scsi: sg: add sg_remove_request in sg_write (Wu Bo) [Orabug: 31350699] {CVE-2020-12770}
- xfrm: xfrm_policy: fix a possible double xfrm_pols_put() in xfrm_bundle_lookup() (Hangyu Hua) [Orabug: 34503626] {CVE-2022-36879}
- ext4: verify dir block before splitting it (Jan Kara) [Orabug: 34555416] {CVE-2022-1184}
- dm verity: set DM_TARGET_IMMUTABLE feature flag (Sarthak Kukreti) [Orabug: 34555434] {CVE-2022-2503}
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 6 (x86_64) | kernel-uek-4.1.12-124.67.3.el6uek.src.rpm | 8af00104723895cafbf6396913472595 | - |
| kernel-uek-4.1.12-124.67.3.el6uek.x86_64.rpm | 1fba9eeca9c56ae8a0ff6e93cc0fbc1c | - | |
| kernel-uek-debug-4.1.12-124.67.3.el6uek.x86_64.rpm | 7cab5c80b9edd6b624351fe1e087748d | - | |
| kernel-uek-debug-devel-4.1.12-124.67.3.el6uek.x86_64.rpm | 85ef5c18af03b9845828925ce3e7b2ae | - | |
| kernel-uek-devel-4.1.12-124.67.3.el6uek.x86_64.rpm | 36b03dd09e27a72d439d8e6b1d23471c | - | |
| kernel-uek-doc-4.1.12-124.67.3.el6uek.noarch.rpm | 268e19b964ab66039ea8910855943ab2 | - | |
| kernel-uek-firmware-4.1.12-124.67.3.el6uek.noarch.rpm | 0caa2289b2d1b42f4ef4788a283ee7fc | - | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.1.12-124.67.3.el7uek.src.rpm | ca4a2ce9f5c018abc6ae51a9e2fc8af6 | - |
| kernel-uek-4.1.12-124.67.3.el7uek.x86_64.rpm | 37e6c1ead1f7889b19152a32e2498142 | - | |
| kernel-uek-debug-4.1.12-124.67.3.el7uek.x86_64.rpm | bdb0ada36045a46b7c578c8ddcf82dda | - | |
| kernel-uek-debug-devel-4.1.12-124.67.3.el7uek.x86_64.rpm | 75e6b1147aab89c401efcc537452d317 | - | |
| kernel-uek-devel-4.1.12-124.67.3.el7uek.x86_64.rpm | a8bcfa6f84ba432a150da6660ba73848 | - | |
| kernel-uek-doc-4.1.12-124.67.3.el7uek.noarch.rpm | 452594d46d5f194490eda192071b7855 | - | |
| kernel-uek-firmware-4.1.12-124.67.3.el7uek.noarch.rpm | a43c86e05d239b5b67d218322c96efae | - | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
