[ELSA-2015-2636] kernel security and bug fix update

Severity Important

Affected Packages 10

CVEs 5

[2.6.32-573.12.1]
- Revert: [netdrv] igb: add support for 1512 PHY (Stefan Assmann) [1278275 1238551]

[2.6.32-573.11.1]
- [kvm] svm: unconditionally intercept DB (Paolo Bonzini) [1279467 1279468] {CVE-2015-8104}
- [x86] virt: guest to host DoS by triggering an infinite loop in microcode (Paolo Bonzini) [1277557 1277559] {CVE-2015-5307}

[2.6.32-573.10.1]
- [sound] Fix USB audio issues (wrong URB_ISO_ASAP semantics) (Jaroslav Kysela) [1273916 1255071]
- [security] keys: Don't permit request_key() to construct a new keyring (David Howells) [1275927 1273463] {CVE-2015-7872}
- [security] keys: Fix crash when attempt to garbage collect an uninstantiated keyring (David Howells) [1275927 1273463] {CVE-2015-7872}
- [security] keys: Fix race between key destruction and finding a keyring by name (David Howells) [1275927 1273463] {CVE-2015-7872}
- [ipc] Initialize msg/shm IPC objects before doing ipc_addid() (Stanislav Kozina) [1271504 1271505] {CVE-2015-7613}
- [fs] vfs: Test for and handle paths that are unreachable from their mnt_root (Eric W. Biederman) [1209368 1209369] {CVE-2015-2925}
- [fs] dcache: Handle escaped paths in prepend_path (Eric W. Biederman) [1209368 1209369] {CVE-2015-2925}
- [netdrv] igb: add support for 1512 PHY (Stefan Assmann) [1278275 1238551]
- [hid] fix unused rsize usage (Don Zickus) [1268203 1256568]
- [hid] fix data access in implement() (Don Zickus) [1268203 1256568]
- [fs] NFS: Hold i_lock in nfs_wb_page_cancel() while locking a request (Benjamin Coddington) [1273721 1135601]

[2.6.32-573.9.1]
- [mm] hugetlb: fix race in region tracking (Herton R. Krzesinski) [1274599 1260755]
- [mm] hugetlb: improve, cleanup resv_map parameters (Herton R. Krzesinski) [1274599 1260755]
- [mm] hugetlb: unify region structure handling (Herton R. Krzesinski) [1274599 1260755]
- [mm] hugetlb: change variable name reservations to resv (Herton R. Krzesinski) [1274599 1260755]
- [fs] dcache: Log ELOOP rather than creating a loop (Benjamin Coddington) [1272858 1254020]
- [fs] dcache: Fix loop checks in d_materialise_unique (Benjamin Coddington) [1272858 1254020]

Package	Affected Version
pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/perf?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6	< 2.6.32-573.12.1.el6
pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-6	< 2.6.32-573.12.1.el6

ID

ELSA-2015-2636

Severity

important

URL

https://linux.oracle.com/errata/ELSA-2015-2636.html

Published

2015-12-15T00:00:00
(8 years ago)

Modified

2015-12-15T00:00:00
(8 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2015-2636	http://linux.oracle.com/errata/ELSA-2015-2636.html
CVE	CVE-2015-2925	http://linux.oracle.com/cve/CVE-2015-2925
CVE	CVE-2015-7613	http://linux.oracle.com/cve/CVE-2015-7613
CVE	CVE-2015-5307	http://linux.oracle.com/cve/CVE-2015-5307
CVE	CVE-2015-8104	http://linux.oracle.com/cve/CVE-2015-8104
CVE	CVE-2015-7872	http://linux.oracle.com/cve/CVE-2015-7872

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6	oraclelinux	python-perf	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/perf?distro=oraclelinux-6	oraclelinux	perf	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6	oraclelinux	kernel	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6	oraclelinux	kernel-headers	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6	oraclelinux	kernel-firmware	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6	oraclelinux	kernel-doc	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6	oraclelinux	kernel-devel	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6	oraclelinux	kernel-debug	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6	oraclelinux	kernel-debug-devel	< 2.6.32-573.12.1.el6	oraclelinux-6
Affected	pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-6	oraclelinux	kernel-abi-whitelists	< 2.6.32-573.12.1.el6	oraclelinux-6

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date