[ELSA-2013-2520] Unbreakable Enterprise kernel security update
[2.6.32-400.26.2]
- mm/hotplug: correctly add new zone to all other nodes' zone lists (Jiang Liu) [Orabug: 16603569] {CVE-2012-5517}
- ptrace: ptrace_resume() shouldn't wake up !TASK_TRACED thread (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}
- ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}
- ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up() (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871}
- Bluetooth: Fix incorrect strncpy() in hidp_setup_hid() (Anderson Lizardo) [Orabug: 16711062] {CVE-2013-0349}
- dccp: check ccid before dereferencing (Mathias Krause) [Orabug: 16711040] {CVE-2013-1827}
- USB: io_ti: Fix NULL dereference in chase_port() (Wolfgang Frisch) [Orabug: 16425435] {CVE-2013-1774}
- keys: fix race with concurrent install_user_keyrings() (David Howells) [Orabug: 16493369] {CVE-2013-1792}
- KVM: Fix bounds checking in ioapic indirect register reads (CVE-2013-1798) (Andy Honig) [Orabug: 16710937] {CVE-2013-1798}
- KVM: x86: fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME (CVE-2013-1796) (Jerry Snitselaar) [Orabug: 16710794] {CVE-2013-1796}
- net/tun: fix ioctl() based info leaks (Mathias Krause) [Orabug: 16675501] {CVE-2012-6547}
- atm: fix info leak via getsockname() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}
- atm: fix info leak in getsockopt(SO_ATMPVC) (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546}
- xfrm_user: fix info leak in copy_to_user_tmpl() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}
- xfrm_user: fix info leak in copy_to_user_policy() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537}
- xfrm_user: fix info leak in copy_to_user_state() (Mathias Krause) [Orabug: 16675501] {CVE-2013-6537}
- xfrm_user: return error pointer instead of NULL #2 (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}
- xfrm_user: return error pointer instead of NULL (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}
- ID
- ELSA-2013-2520
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2013-2520.html
- Published
-
2013-04-24T00:00:00
(11 years ago) - Modified
-
2013-04-24T00:00:00
(11 years ago) - Rights
- Copyright 2013 Oracle, Inc.
- Other Advisories
-
-
ALAS-2012-142
-
ALAS-2013-148
-
ALAS-2013-166
-
DSA-2669-1
-
ELSA-2012-1540
-
ELSA-2012-1580
-
ELSA-2012-2047
-
ELSA-2013-0496
-
ELSA-2013-0567
-
ELSA-2013-0621
-
ELSA-2013-0727
-
ELSA-2013-0744
-
ELSA-2013-0747
-
ELSA-2013-2507
-
ELSA-2013-2513
-
ELSA-2013-2519
-
ELSA-2020-5676
-
FEDORA-2012-17413
-
FEDORA-2012-17462
-
FEDORA-2012-17479
-
FEDORA-2012-18684
-
FEDORA-2012-18691
-
FEDORA-2012-19337
-
FEDORA-2012-20240
-
FEDORA-2013-1025
-
FEDORA-2013-10695
-
FEDORA-2013-12530
-
FEDORA-2013-12990
-
FEDORA-2013-13536
-
FEDORA-2013-15151
-
FEDORA-2013-16336
-
FEDORA-2013-17010
-
FEDORA-2013-17942
-
FEDORA-2013-18364
-
FEDORA-2013-18822
-
FEDORA-2013-20748
-
FEDORA-2013-21822
-
FEDORA-2013-22695
-
FEDORA-2013-2597
-
FEDORA-2013-3106
-
FEDORA-2013-3630
-
FEDORA-2013-3893
-
FEDORA-2013-3909
-
FEDORA-2013-4012
-
FEDORA-2013-4240
-
FEDORA-2013-4357
-
FEDORA-2013-5368
-
FEDORA-2013-6041
-
FEDORA-2013-6537
-
FEDORA-2013-6999
-
FEDORA-2013-9123
-
RHSA-2012:1580
-
RHSA-2013:0496
-
RHSA-2013:0567
-
RHSA-2013:0744
-
SUSE-SU-2015:0481-1
-
SUSE-SU-2015:0581-1
-
SUSE-SU-2015:0652-1
-
SUSE-SU-2015:0736-1
-
SUSE-SU-2015:1174-1
-
SUSE-SU-2015:1376-1
-
USN-1554-1
-
USN-1558-1
-
USN-1563-1
-
USN-1579-1
-
USN-1580-1
-
USN-1594-1
-
USN-1599-1
-
USN-1607-1
-
USN-1609-1
-
USN-1610-1
-
USN-1644-1
-
USN-1645-1
-
USN-1646-1
-
USN-1647-1
-
USN-1648-1
-
USN-1649-1
-
USN-1651-1
-
USN-1652-1
-
USN-1653-1
-
USN-1669-1
-
USN-1670-1
-
USN-1671-1
-
USN-1673-1
-
USN-1677-1
-
USN-1678-1
-
USN-1679-1
-
USN-1704-1
-
USN-1719-1
-
USN-1720-1
-
USN-1726-1
-
USN-1736-1
-
USN-1737-1
-
USN-1738-1
-
USN-1739-1
-
USN-1740-1
-
USN-1741-1
-
USN-1742-1
-
USN-1743-1
-
USN-1744-1
-
USN-1745-1
-
USN-1756-1
-
USN-1760-1
-
USN-1767-1
-
USN-1768-1
-
USN-1769-1
-
USN-1774-1
-
USN-1775-1
-
USN-1776-1
-
USN-1778-1
-
USN-1781-1
-
USN-1787-1
-
USN-1788-1
-
USN-1792-1
-
USN-1793-1
-
USN-1794-1
-
USN-1795-1
-
USN-1796-1
-
USN-1797-1
-
USN-1798-1
-
USN-1805-1
-
USN-1808-1
-
USN-1809-1
-
USN-1812-1
-
USN-1813-1
-
USN-1824-1
-
USN-1829-1
-
USN-1876-1
-
USN-1877-1
-
USN-1899-1
-
USN-1900-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2013-2520 |
|
|
| CVE | CVE-2012-4508 |
|
|
| CVE | CVE-2012-5517 |
|
|
| CVE | CVE-2013-0309 |
|
|
| CVE | CVE-2013-0310 |
|
|
| CVE | CVE-2013-0871 |
|
|
| CVE | CVE-2013-1796 |
|
|
| CVE | CVE-2013-1798 |
|
|
| CVE | CVE-2012-6537 |
|
|
| CVE | CVE-2012-6546 |
|
|
| CVE | CVE-2012-6547 |
|
|
| CVE | CVE-2013-1826 |
|
|
| CVE | CVE-2013-0349 |
|
|
| CVE | CVE-2013-1774 |
|
|
| CVE | CVE-2013-1792 |
|
|
| CVE | CVE-2013-1827 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.26.2.el6uekdebug | oraclelinux |
 ofa-2.6.32-400.26.2.el6uekdebug
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.26.2.el6uek | oraclelinux |
ofa-2.6.32-400.26.2.el6uek
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.26.2.el5uekdebug | oraclelinux |
ofa-2.6.32-400.26.2.el5uekdebug
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.26.2.el5uek | oraclelinux |
ofa-2.6.32-400.26.2.el5uek
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.26.2.el6uekdebug | oraclelinux |
mlnx_en-2.6.32-400.26.2.el6uekdebug
|
< 1.5.7-0.1 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.26.2.el6uek | oraclelinux |
mlnx_en-2.6.32-400.26.2.el6uek
|
< 1.5.7-0.1 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.26.2.el5uekdebug | oraclelinux |
mlnx_en-2.6.32-400.26.2.el5uekdebug
|
< 1.5.7-2 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.26.2.el5uek | oraclelinux |
mlnx_en-2.6.32-400.26.2.el5uek
|
< 1.5.7-2 | |||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 2.6.32-400.26.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-5 | oraclelinux |
kernel-uek
|
< 2.6.32-400.26.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-6 | oraclelinux |
kernel-uek-headers
|
< 2.6.32-400.26.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-5 | oraclelinux |
kernel-uek-headers
|
< 2.6.32-400.26.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 2.6.32-400.26.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-5 | oraclelinux |
kernel-uek-firmware
|
< 2.6.32-400.26.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 2.6.32-400.26.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-5 | oraclelinux |
kernel-uek-doc
|
< 2.6.32-400.26.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 2.6.32-400.26.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-devel
|
< 2.6.32-400.26.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 2.6.32-400.26.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug
|
< 2.6.32-400.26.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.32-400.26.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.32-400.26.2.el5uek | oraclelinux-5 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |