[ELSA-2015-0102] kernel security and bug fix update
[3.10.0-123.20.1]
- Oracle Linux certificates (Alexey Petrenko)
[3.10.0-123.20.1]
- [fs] seq_file: don't include mm.h in genksyms calculation (Ian Kent) [1184152 1183280]
[3.10.0-123.19.1]
- [mm] shmem: fix splicing from a hole while it's punched (Denys Vlasenko) [1118244 1118245] {CVE-2014-4171}
- [mm] shmem: fix faulting into a hole, not taking i_mutex (Denys Vlasenko) [1118244 1118245] {CVE-2014-4171}
- [mm] shmem: fix faulting into a hole while it's punched (Denys Vlasenko) [118244 1118245] {CVE-2014-4171}
- [x86] traps: stop using IST for #SS (Petr Matousek) [1172812 1172813] {CVE-2014-9322}
- [net] vxlan: fix incorrect initializer in union vxlan_addr (Daniel Borkmann) [1156611 1130643]
- [net] vxlan: fix crash when interface is created with no group (Daniel Borkmann) [1156611 1130643]
- [net] vxlan: fix nonfunctional neigh_reduce() (Daniel Borkmann) [1156611 1130643]
- [net] vxlan: fix potential NULL dereference in arp_reduce() (Daniel Borkmann) [1156611 1130643]
- [net] vxlan: remove unused port variable in vxlan_udp_encap_recv() (Daniel Borkmann) [1156611 1130643]
- [net] vxlan: remove extra newline after function definition (Daniel Borkmann) [1156611 1130643]
- [net] etherdevice: Use ether_addr_copy to copy an Ethernet address (Stefan Assmann) [1156611 1091126]
- [fs] splice: perform generic write checks (Eric Sandeen) [1163799 1155907] {CVE-2014-7822}
- [fs] eliminate BUG() call when there's an unexpected lock on file close (Frank Sorenson) [1172266 1148130]
- [net] sctp: fix NULL pointer dereference in af->from_addr_param on malformed packet (Daniel Borkmann) [1163094 1154002] {CVE-2014-7841}
- [fs] lockd: Try to reconnect if statd has moved (Benjamin Coddington) [1150889 1120850]
- [fs] sunrpc: Don't wake tasks during connection abort (Benjamin Coddington) [1150889 1120850]
- [fs] cifs: NULL pointer dereference in SMB2_tcon (Jacob Tanenbaum) [1147528 1147529] {CVE-2014-7145}
- [net] ipv6: addrconf: implement address generation modes (Jiri Pirko) [1144876 1107369]
- [net] gre: add link local route when local addr is any (Jiri Pirko) [1144876 1107369]
- [net] gre6: don't try to add the same route two times (Jiri Pirko) [1144876 1107369]
- [fs] isofs: unbound recursion when processing relocated directories (Jacob Tanenbaum) [1142270 1142271] {CVE-2014-5471 CVE-2014-5472}
- [fs] fs: seq_file: fallback to vmalloc allocation (Ian Kent) [1140302 1095623]
- [fs] fs: /proc/stat: convert to single_open_size() (Ian Kent) [1140302 1095623]
- [fs] fs: seq_file: always clear m->count when we free m->buf (Ian Kent) [1140302 1095623]
[3.10.0-123.18.1]
- [net] ipv6: fib: fix fib dump restart (Panu Matilainen) [1172795 1163605]
- [net] ipv6: drop unused fib6_clean_all_ro() function and rt6_proc_arg struct (Panu Matilainen) [1172795 1163605]
- [net] ipv6: avoid high order memory allocations for /proc/net/ipv6_route (Panu Matilainen) [1172795 1163605]
- [mm] numa: Remove BUG_ON() in __handle_mm_fault() (Rik van Riel) [1170662 1119439]
- [fs] aio: fix race between aio event completion and reaping (Jeff Moyer) [1154172 1131312]
[3.10.0-123.17.1]
- [ethernet] mlx4: Protect port type setting by mutex (Amir Vadai) [1162733 1095345]
[3.10.0-123.16.1]
- [fs] aio: block exit_aio() until all context requests are completed (Jeff Moyer) [1163992 1122092]
- [fs] aio: add missing smp_rmb() in read_events_ring (Jeff Moyer) [1154172 1131312]
- [fs] aio: fix reqs_available handling (Jeff Moyer) [1163992 1122092]
- [fs] aio: report error from io_destroy() when threads race in io_destroy() (Jeff Moyer) [1163992 1122092]
- [fs] aio: block io_destroy() until all context requests are completed (Jeff Moyer) [1163992 1122092]
- [fs] aio: v4 ensure access to ctx->ring_pages is correctly serialised for migration (Jeff Moyer) [1163992 1122092]
- [fs] aio/migratepages: make aio migrate pages sane (Jeff Moyer) [1163992 1122092]
- [fs] aio: clean up and fix aio_setup_ring page mapping (Jeff Moyer) [1163992 1122092]
[3.10.0-123.15.1]
- [scsi] ipr: wait for aborted command responses (Gustavo Duarte) [1162734 1156530]
- [scsi] reintroduce scsi_driver.init_command (Ewan Milne) [1146983 1105204]
- [block] implement an unprep function corresponding directly to prep (Ewan Milne) [1146983 1105204]
- [scsi] Revert: reintroduce scsi_driver.init_command (Ewan Milne) [1146983 1105204]
[3.10.0-123.14.1]
- [fs] nfs: Fix another nfs4_sequence corruptor (Steve Dickson) [1162073 1111170]
Package | Affected Version |
---|---|
pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/perf?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-7 | < 3.10.0-123.20.1.el7 |
- ID
- ELSA-2015-0102
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2015-0102.html
- Published
-
2015-01-28T00:00:00
(9 years ago) - Modified
-
2015-01-28T00:00:00
(9 years ago) - Rights
- Copyright 2015 Oracle, Inc.
- Other Advisories
-
- ALAS-2014-455
- ALAS-2015-476
- DSA-3093-1
- DSA-3170-1
- ELSA-2014-1997
- ELSA-2014-3096
- ELSA-2014-3106
- ELSA-2014-3107
- ELSA-2014-3108
- ELSA-2015-0087
- ELSA-2015-0164
- ELSA-2015-0674
- ELSA-2015-3003
- ELSA-2015-3004
- ELSA-2015-3005
- ELSA-2015-3098
- FEDORA-2014-10312
- FEDORA-2014-11008
- FEDORA-2014-11031
- FEDORA-2014-13020
- FEDORA-2014-13045
- FEDORA-2014-13558
- FEDORA-2014-13773
- FEDORA-2014-14068
- FEDORA-2014-15159
- FEDORA-2014-15200
- FEDORA-2014-16632
- FEDORA-2014-17244
- FEDORA-2014-17283
- FEDORA-2014-9010
- FEDORA-2014-9142
- FEDORA-2014-9449
- FEDORA-2014-9466
- FEDORA-2014-9959
- FEDORA-2015-0515
- FEDORA-2015-1672
- FEDORA-2015-3594
- FEDORA-2015-5024
- FEDORA-2015-6294
- FEDORA-2015-8518
- RHSA-2014:1997
- RHSA-2015:0087
- RHSA-2015:0102
- RHSA-2015:0674
- SUSE-SU-2015:0481-1
- SUSE-SU-2015:0529-1
- SUSE-SU-2015:0581-1
- SUSE-SU-2015:0652-1
- SUSE-SU-2015:0736-1
- SUSE-SU-2015:1174-1
- SUSE-SU-2015:1376-1
- SUSE-SU-2015:1488-1
- SUSE-SU-2015:1489-1
- USN-2334-1
- USN-2335-1
- USN-2336-1
- USN-2337-1
- USN-2354-1
- USN-2355-1
- USN-2356-1
- USN-2357-1
- USN-2358-1
- USN-2359-1
- USN-2394-1
- USN-2395-1
- USN-2441-1
- USN-2442-1
- USN-2443-1
- USN-2444-1
- USN-2465-1
- USN-2466-1
- USN-2467-1
- USN-2468-1
- USN-2541-1
- USN-2542-1
- USN-2543-1
- USN-2544-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2015-0102 | http://linux.oracle.com/errata/ELSA-2015-0102.html | |
CVE | CVE-2014-4171 | http://linux.oracle.com/cve/CVE-2014-4171 | |
CVE | CVE-2014-5471 | http://linux.oracle.com/cve/CVE-2014-5471 | |
CVE | CVE-2014-5472 | http://linux.oracle.com/cve/CVE-2014-5472 | |
CVE | CVE-2014-7841 | http://linux.oracle.com/cve/CVE-2014-7841 | |
CVE | CVE-2014-7145 | http://linux.oracle.com/cve/CVE-2014-7145 | |
CVE | CVE-2014-7822 | http://linux.oracle.com/cve/CVE-2014-7822 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7 | oraclelinux | python-perf | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-7 | oraclelinux | perf | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-7 | oraclelinux | kernel | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-7 | oraclelinux | kernel-tools | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-7 | oraclelinux | kernel-tools-libs | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-7 | oraclelinux | kernel-tools-libs-devel | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-7 | oraclelinux | kernel-headers | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-7 | oraclelinux | kernel-doc | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-7 | oraclelinux | kernel-devel | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-7 | oraclelinux | kernel-debug | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-7 | oraclelinux | kernel-debug-devel | < 3.10.0-123.20.1.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-7 | oraclelinux | kernel-abi-whitelists | < 3.10.0-123.20.1.el7 | oraclelinux-7 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |