[ELSA-2013-2585] Unbreakable Enterprise Kernel security update
Severity
Important
Affected Packages
22
CVEs
11
kernel-uek
[2.6.32-400.33.3uek]
- af_key: fix info leaks in notify messages (Mathias Krause) [Orabug: 17837974] {CVE-2013-2234}
- drivers/cdrom/cdrom.c: use kzalloc() for failing hardware (Jonathan Salwan) [Orabug: 17837971] {CVE-2013-2164}
- fs/compat_ioctl.c: VIDEO_SET_SPU_PALETTE missing error check (Kees Cook) [Orabug: 17837966] {CVE-2013-1928}
- Bluetooth: RFCOMM - Fix info leak in ioctl(RFCOMMGETDEVLIST) (Mathias Krause) [Orabug: 17837959] {CVE-2012-6545}
- Bluetooth: RFCOMM - Fix info leak via getsockname() (Mathias Krause) [Orabug: 17838023] {CVE-2012-6545}
- llc: Fix missing msg_namelen update in llc_ui_recvmsg() (Mathias Krause) [Orabug: 17837945] {CVE-2013-3231}
- HID: pantherlord: validate output report details (Kees Cook) [Orabug: 17837942] {CVE-2013-2892}
- HID: zeroplus: validate output report details (Kees Cook) [Orabug: 17837936] {CVE-2013-2889}
- HID: provide a helper for validating hid reports (Kees Cook) [Orabug: 17837936]
- NFSv4: Check for buffer length in __nfs4_get_acl_uncached (Sven Wegener) [Orabug: 17837931] {CVE-2013-4591}
- ansi_cprng: Fix off by one error in non-block size request (Neil Horman) [Orabug: 17837999] {CVE-2013-4345}
- HID: validate HID report id size (Kees Cook) [Orabug: 17837925] {CVE-2013-2888}
- ipv6: remove max_addresses check from ipv6_create_tempaddr (Hannes Frederic Sowa) [Orabug: 17837923] {CVE-2013-0343}
- ID
- ELSA-2013-2585
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2013-2585.html
- Published
-
2013-11-28T00:00:00
(10 years ago) - Modified
-
2013-11-28T00:00:00
(10 years ago) - Rights
- Copyright 2013 Oracle, Inc.
- Other Advisories
-
-
ALAS-2013-200
-
ALAS-2013-218
-
ALAS-2013-228
-
DSA-2669-1
-
DSA-2745-1
-
ELSA-2013-1034
-
ELSA-2013-1166
-
ELSA-2013-1449
-
ELSA-2013-1645
-
ELSA-2013-2546
-
ELSA-2013-2583
-
ELSA-2013-2584
-
ELSA-2014-0433
-
FEDORA-2013-10689
-
FEDORA-2013-10695
-
FEDORA-2013-12339
-
FEDORA-2013-12530
-
FEDORA-2013-12901
-
FEDORA-2013-12990
-
FEDORA-2013-13536
-
FEDORA-2013-13663
-
FEDORA-2013-15151
-
FEDORA-2013-15198
-
FEDORA-2013-16336
-
FEDORA-2013-16379
-
FEDORA-2013-17010
-
FEDORA-2013-17012
-
FEDORA-2013-17865
-
FEDORA-2013-17942
-
FEDORA-2013-17982
-
FEDORA-2013-18364
-
FEDORA-2013-18820
-
FEDORA-2013-18822
-
FEDORA-2013-20547
-
FEDORA-2013-20748
-
FEDORA-2013-21807
-
FEDORA-2013-21822
-
FEDORA-2013-22669
-
FEDORA-2013-22695
-
FEDORA-2013-23653
-
FEDORA-2013-6537
-
FEDORA-2013-6999
-
FEDORA-2013-9123
-
FEDORA-2014-0684
-
FEDORA-2014-1072
-
FEDORA-2014-11008
-
FEDORA-2014-13020
-
FEDORA-2014-14068
-
FEDORA-2014-17244
-
FEDORA-2014-2606
-
FEDORA-2014-2887
-
FEDORA-2014-3448
-
FEDORA-2014-4360
-
FEDORA-2014-4849
-
FEDORA-2014-5609
-
FEDORA-2014-6354
-
FEDORA-2014-7320
-
FEDORA-2014-7426
-
FEDORA-2014-8487
-
FEDORA-2014-9142
-
FEDORA-2014-9449
-
RHSA-2013:1645
-
SUSE-SU-2015:0481-1
-
SUSE-SU-2015:0581-1
-
SUSE-SU-2015:0652-1
-
SUSE-SU-2015:0736-1
-
SUSE-SU-2015:1174-1
-
SUSE-SU-2015:1376-1
-
USN-1599-1
-
USN-1610-1
-
USN-1644-1
-
USN-1645-1
-
USN-1648-1
-
USN-1649-1
-
USN-1652-1
-
USN-1671-1
-
USN-1673-1
-
USN-1704-1
-
USN-1805-1
-
USN-1808-1
-
USN-1824-1
-
USN-1829-1
-
USN-1837-1
-
USN-1849-1
-
USN-1876-1
-
USN-1877-1
-
USN-1878-1
-
USN-1879-1
-
USN-1880-1
-
USN-1881-1
-
USN-1882-1
-
USN-1883-1
-
USN-1912-1
-
USN-1913-1
-
USN-1931-1
-
USN-1932-1
-
USN-1933-1
-
USN-1934-1
-
USN-1935-1
-
USN-1936-1
-
USN-1938-1
-
USN-1941-1
-
USN-1942-1
-
USN-1943-1
-
USN-1944-1
-
USN-1945-1
-
USN-1946-1
-
USN-1947-1
-
USN-1976-1
-
USN-1977-1
-
USN-1995-1
-
USN-1998-1
-
USN-2015-1
-
USN-2016-1
-
USN-2019-1
-
USN-2020-1
-
USN-2021-1
-
USN-2022-1
-
USN-2023-1
-
USN-2024-1
-
USN-2038-1
-
USN-2039-1
-
USN-2050-1
-
USN-2064-1
-
USN-2065-1
-
USN-2068-1
-
USN-2070-1
-
USN-2071-1
-
USN-2072-1
-
USN-2074-1
-
USN-2075-1
-
USN-2076-1
-
USN-2109-1
-
USN-2110-1
-
USN-2158-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2013-2585 |
|
|
| CVE | CVE-2012-6545 |
|
|
| CVE | CVE-2013-3231 |
|
|
| CVE | CVE-2013-2164 |
|
|
| CVE | CVE-2013-2234 |
|
|
| CVE | CVE-2013-0343 |
|
|
| CVE | CVE-2013-4345 |
|
|
| CVE | CVE-2013-1928 |
|
|
| CVE | CVE-2013-2888 |
|
|
| CVE | CVE-2013-2889 |
|
|
| CVE | CVE-2013-2892 |
|
|
| CVE | CVE-2013-4591 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.33.3.el6uekdebug | oraclelinux |
 ofa-2.6.32-400.33.3.el6uekdebug
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.33.3.el6uek | oraclelinux |
ofa-2.6.32-400.33.3.el6uek
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.33.3.el5uekdebug | oraclelinux |
ofa-2.6.32-400.33.3.el5uekdebug
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.33.3.el5uek | oraclelinux |
ofa-2.6.32-400.33.3.el5uek
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.33.3.el6uekdebug | oraclelinux |
mlnx_en-2.6.32-400.33.3.el6uekdebug
|
< 1.5.7-0.1 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.33.3.el6uek | oraclelinux |
mlnx_en-2.6.32-400.33.3.el6uek
|
< 1.5.7-0.1 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.33.3.el5uekdebug | oraclelinux |
mlnx_en-2.6.32-400.33.3.el5uekdebug
|
< 1.5.7-2 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.33.3.el5uek | oraclelinux |
mlnx_en-2.6.32-400.33.3.el5uek
|
< 1.5.7-2 | |||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 2.6.32-400.33.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-5 | oraclelinux |
kernel-uek
|
< 2.6.32-400.33.3.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-6 | oraclelinux |
kernel-uek-headers
|
< 2.6.32-400.33.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-5 | oraclelinux |
kernel-uek-headers
|
< 2.6.32-400.33.3.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 2.6.32-400.33.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-5 | oraclelinux |
kernel-uek-firmware
|
< 2.6.32-400.33.3.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 2.6.32-400.33.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-5 | oraclelinux |
kernel-uek-doc
|
< 2.6.32-400.33.3.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 2.6.32-400.33.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-devel
|
< 2.6.32-400.33.3.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 2.6.32-400.33.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug
|
< 2.6.32-400.33.3.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.32-400.33.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.32-400.33.3.el5uek | oraclelinux-5 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |