[ELSA-2014-0159] kernel security and bug fix update
[2.6.32-431.5.1]
- [net] sctp: fix checksum marking for outgoing packets (Daniel Borkmann) [1046041 1040385]
- [kernel] ptrace: Cleanup useless header (Aaron Tomlin) [1046043 1036312]
- [kernel] ptrace: kill BKL in ptrace syscall (Aaron Tomlin) [1046043 1036312]
- [fs] nfs: Prevent a 3-way deadlock between layoutreturn, open and state recovery (Steve Dickson) [1045094 1034487]
- [fs] nfs: Ensure that rmdir() waits for sillyrenames to complete (Steve Dickson) [1051395 1034348]
- [fs] nfs: wait on recovery for async session errors (Steve Dickson) [1051393 1030049]
- [fs] nfs: Re-use exit code in nfs4_async_handle_error() (Steve Dickson) [1051393 1030049]
- [fs] nfs: Update list of irrecoverable errors on DELEGRETURN (Steve Dickson) [1051393 1030049]
- [exec] ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039486 1039487] {CVE-2013-2929}
- [net] ipv6: router reachability probing (Jiri Benc) [1043779 1029585]
- [net] ipv6: remove the unnecessary statement in find_match() (Jiri Benc) [1043779 1029585]
- [net] ipv6: fix route selection if kernel is not compiled with CONFIG_IPV6_ROUTER_PREF (Jiri Benc) [1043779 1029585]
- [net] ipv6: Fix default route failover when CONFIG_IPV6_ROUTER_PREF=n (Jiri Benc) [1043779 1029585]
- [net] ipv6: probe routes asynchronous in rt6_probe (Jiri Benc) [1040826 1030094]
- [net] ndisc: Update neigh->updated with write lock (Jiri Benc) [1040826 1030094]
- [net] ipv6: prevent fib6_run_gc() contention (Jiri Benc) [1040826 1030094]
- [net] netfilter: push reasm skb through instead of original frag skbs (Jiri Pirko) [1049590 1011214]
- [net] ip6_output: fragment outgoing reassembled skb properly (Jiri Pirko) [1049590 1011214]
- [net] netfilter: nf_conntrack_ipv6: improve fragmentation handling (Jiri Pirko) [1049590 1011214]
- [net] ipv4: fix path MTU discovery with connection tracking (Jiri Pirko) [1049590 1011214]
- [net] ipv6: Make IP6CB(skb)->nhoff 16-bit (Jiri Pirko) [1049590 1011214]
- [edac] Add error decoding support for AMD Fam16h processors (Prarit Bhargava) [1051394 1020290]
- [netdrv] bnx2x: correct VF-PF channel locking scheme (Michal Schmidt) [1040498 1029203]
- [netdrv] bnx2x: handle known but unsupported VF messages (Michal Schmidt) [1040498 1029203]
- [netdrv] bnx2x: Lock DMAE when used by statistic flow (Michal Schmidt) [1040497 1029200]
- [net] ipv6: fix leaking uninitialized port number of offender sockaddr (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
- [net] inet: fix addr_len/msg->msg_namelen assignment in recv_error functions (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
- [net] inet: prevent leakage of uninitialized memory to user in recv syscalls (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
- [net] ipvs: Add boundary check on ioctl arguments (Denys Vlasenko) [1030817 1030818] {CVE-2013-4588}
- [s390] qeth: avoid buffer overflow in snmp ioctl (Hendrik Brueckner) [1038935 1034266]
- [md] fix calculation of stacking limits on level change (Jes Sorensen) [1035347 1026864]
- [ata] ahci: fix turning on LEDs in ahci_start_port() (David Milburn) [1035339 1017105]
- [ata] libata: implement cross-port EH exclusion (David Milburn) [1035339 1017105]
- [ata] libata add ap to ata_wait_register and intro ata_msleep (David Milburn) [1035339 1017105]
- [netdrv] igb: Update link modes display in ethtool (Stefan Assmann) [1032389 1019578]
[2.6.32-431.4.1]
- [powerpc] signals: Improved mark VSX not saved with small contexts fix (Seth Jennings) [1044566 1044117]
- [powerpc] signals: Mark VSX not saved with small contexts (Seth Jennings) [1044566 1044117]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/perf?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
|
pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-6
|
< 2.6.32-431.5.1.el6 |
- ID
- ELSA-2014-0159
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2014-0159.html
- Published
-
2014-02-11T00:00:00
(10 years ago) - Modified
-
2014-02-11T00:00:00
(10 years ago) - Rights
- Copyright 2014 Oracle, Inc.
- Other Advisories
-
-
ALAS-2014-289
-
ELSA-2014-0285
-
ELSA-2014-1971
-
ELSA-2014-3009
-
ELSA-2014-3010
-
ELSA-2014-3011
-
MS:CVE-2013-6381
-
RHSA-2014:0159
-
RHSA-2014:1971
-
SUSE-SU-2015:0481-1
-
SUSE-SU-2015:0581-1
-
SUSE-SU-2015:0652-1
-
SUSE-SU-2015:0736-1
-
SUSE-SU-2015:1174-1
-
SUSE-SU-2015:1376-1
-
USN-2070-1
-
USN-2075-1
-
USN-2107-1
-
USN-2108-1
-
USN-2109-1
-
USN-2110-1
-
USN-2111-1
-
USN-2112-1
-
USN-2113-1
-
USN-2114-1
-
USN-2115-1
-
USN-2116-1
-
USN-2117-1
-
USN-2128-1
-
USN-2129-1
-
USN-2135-1
-
USN-2136-1
-
USN-2138-1
-
USN-2139-1
-
USN-2141-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2014-0159 |
|
|
| CVE | CVE-2013-2929 |
|
|
| CVE | CVE-2013-6381 |
|
|
| CVE | CVE-2013-7263 |
|
|
| CVE | CVE-2013-7265 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6 | oraclelinux |
python-perf
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-6 | oraclelinux |
perf
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6 | oraclelinux |
kernel
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6 | oraclelinux |
kernel-headers
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-firmware
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6 | oraclelinux |
kernel-doc
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6 | oraclelinux |
kernel-devel
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6 | oraclelinux |
kernel-debug
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-debug-devel
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-6 | oraclelinux |
kernel-abi-whitelists
|
< 2.6.32-431.5.1.el6 | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |