[ELSA-2012-1580] kernel security, bug fix and enhancement update
[2.6.32-279.19.1.el6]
- [drm] i915: dont clobber the pipe param in sanitize_modesetting (Frantisek Hrbata) [876549 857792]
- [drm] i915: Sanitize BIOS debugging bits from PIPECONF (Frantisek Hrbata) [876549 857792]
- [net] fix divide by zero in tcp algorithm illinois (Flavio Leitner) [871920 866514] {CVE-2012-4565}
- [fs] xfs: fix reading of wrapped log data (Dave Chinner) [876499 874322]
- [x86] mm: fix signedness issue in mmap_rnd() (Petr Matousek) [876496 875036]
- [net] WARN if struct ip_options was allocated directly by kmalloc (Jiri Pirko) [877950 872799]
- [fs] block_dev: Fix crash when block device is read and block size is changed at the same time (Frantisek Hrbata) [864826 855906]
- [mm] tracing: Move include of trace/events/kmem.h out of header into slab.c (Jeff Moyer) [864826 855906]
- [mm] slab: Move kmalloc tracepoint out of inline code (Jeff Moyer) [864826 855906]
- [netdrv] bnx2x: organize BDs calculation for stop/resume (Frantisek Hrbata) [874022 819842]
- [netdrv] bnx2x: fix panic when TX ring is full (Michal Schmidt) [874022 819842]
[2.6.32-279.18.1.el6]
- [scsi] sd: fix crash when UA received on DIF enabled device (Ewan Milne) [876487 865682]
- [mm] hugetlb: fix non-atomic enqueue of huge page (Rafael Aquini) [876101 869750]
- [x86] amd_iommu: attach device fails on the last pci device (Don Dutile) [876493 861164]
- [net] nfs: Fix buffer overflow checking in __nfs4_get_acl_uncached (Frantisek Hrbata) [811794 822871] {CVE-2012-2375}
- [net] nfs: Fix the acl cache size calculation (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] nfs: Fix range checking in __nfs4_get_acl_uncached and __nfs4_proc_set_acl (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] nfs: nfs_getaclargs.acl_len is a size_t (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] nfs: Dont use private xdr_stream fields in decode_getacl (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] nfs: Fix pointer arithmetic in decode_getacl (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] nfs: Simplify the GETATTR attribute length calculation (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] sunrpc: Add the helper xdr_stream_pos (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] sunrpc: Dont decode beyond the end of the RPC reply message (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] sunrpc: Clean up xdr_set_iov() (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [net] sunrpc: xdr_read_pages needs to clear xdr->page_ptr (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [fs] nfs: Avoid beyond bounds copy while caching ACL (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [fs] nfs: Avoid reading past buffer when calling GETACL (Sachin Prabhu) [811794 822871] {CVE-2012-2375}
- [scsi] ibmvfc: Fix double completion on abort timeout (Steve Best) [876088 865115]
- [net] core: allocate skbs on local node (Andy Gospodarek) [876491 843163]
[2.6.32-279.17.1.el6]
- [mm] Prevent kernel panic in NUMA related system calls after memory hot-add (Larry Woodman) [875382 870350] {CVE-2012-5517}
- [md] Dont truncate size at 4TB for RAID0 and Linear (Jes Sorensen) [866470 865637]
- [fs] ext4: fix undefined bit shift result in ext4_fill_flex_info (Lukas Czerner) [809690 809691] {CVE-2012-2100}
- [fs] ext4: fix undefined behavior in ext4_fill_flex_info() (Lukas Czerner) [809690 809691] {CVE-2012-2100}
- [kernel] sched_rt: Ignore RT queue throttling if idle task has RT policy (Igor Mammedov) [853950 843541]
- [kernel] sched: Create special class for stop/migrate work (Igor Mammedov) [853950 843541]
- [net] ipv6: fix overlap check for fragments (Amerigo Wang) [874550 819952] {CVE-2012-4444}
- [net] ipv6: discard overlapping fragment (Jiri Pirko) [874550 819952] {CVE-2012-4444}
[2.6.32-279.16.1.el6]
- [lib] Fix rwsem to not hang the system (David Howells) [871854 852847]
[2.6.32-279.15.1.el6]
- [netdrv] mlx4: Re-design multicast attachments flow (Doug Ledford) [866795 859533]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/perf?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
|
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6
|
< 2.6.32-279.19.1.el6 |
- ID
- ELSA-2012-1580
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2012-1580.html
- Published
-
2012-12-19T00:00:00
(11 years ago) - Modified
-
2012-12-19T00:00:00
(11 years ago) - Rights
- Copyright 2012 Oracle, Inc.
- Other Advisories
-
-
ALAS-2012-142
-
ALAS-2013-148
-
ELSA-2012-1445
-
ELSA-2012-2047
-
ELSA-2012-2048
-
ELSA-2013-0168
-
ELSA-2013-2520
-
FEDORA-2012-17413
-
FEDORA-2012-17462
-
FEDORA-2012-17479
-
FEDORA-2012-18684
-
FEDORA-2012-18691
-
FEDORA-2012-19337
-
FEDORA-2012-20240
-
FEDORA-2012-8314
-
FEDORA-2012-8359
-
FEDORA-2012-8931
-
FEDORA-2013-1025
-
FEDORA-2013-12990
-
FEDORA-2013-2597
-
FEDORA-2013-3106
-
FEDORA-2013-3909
-
FEDORA-2013-4357
-
FEDORA-2013-6999
-
FEDORA-2013-9123
-
RHSA-2012:1580
-
SUSE-SU-2015:0481-1
-
SUSE-SU-2015:0652-1
-
USN-1384-1
-
USN-1388-1
-
USN-1389-1
-
USN-1404-1
-
USN-1405-1
-
USN-1432-1
-
USN-1440-1
-
USN-1458-1
-
USN-1486-1
-
USN-1487-1
-
USN-1488-1
-
USN-1489-1
-
USN-1490-1
-
USN-1494-1
-
USN-1499-1
-
USN-1530-1
-
USN-1644-1
-
USN-1645-1
-
USN-1646-1
-
USN-1647-1
-
USN-1648-1
-
USN-1649-1
-
USN-1650-1
-
USN-1651-1
-
USN-1652-1
-
USN-1653-1
-
USN-1660-1
-
USN-1661-1
-
USN-1664-1
-
USN-1669-1
-
USN-1670-1
-
USN-1671-1
-
USN-1673-1
-
USN-1677-1
-
USN-1678-1
-
USN-1679-1
-
USN-1704-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2012-1580 |
|
|
| CVE | CVE-2012-2100 |
|
|
| CVE | CVE-2012-2375 |
|
|
| CVE | CVE-2012-4444 |
|
|
| CVE | CVE-2012-4565 |
|
|
| CVE | CVE-2012-5517 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6 | oraclelinux |
python-perf
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-6 | oraclelinux |
perf
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6 | oraclelinux |
kernel
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6 | oraclelinux |
kernel-headers
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-firmware
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6 | oraclelinux |
kernel-doc
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6 | oraclelinux |
kernel-devel
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6 | oraclelinux |
kernel-debug
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-debug-devel
|
< 2.6.32-279.19.1.el6 | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |