[ELSA-2015-3036] Unbreakable Enterprise kernel security and bugfix update
[2.6.39-400.250.2]
- crypto: aesni - fix memory usage in GCM decryption (Stephan Mueller) [Orabug: 21077389] {CVE-2015-3331}
[2.6.39-400.250.1]
- xen/pciback: Don't disable PCI_COMMAND on PCI device reset. (Konrad Rzeszutek Wilk) [Orabug: 20807440] {CVE-2015-2150}
- xen-blkfront: fix accounting of reqs when migrating (Roger Pau Monne) [Orabug: 20727114]
- Revert 'qla2xxx: Ramp down queue depth for attached SCSI devices when driver resources are low.' (Chad Dupuis) [Orabug: 20657415]
- x86/xen: allow privcmd hypercalls to be preempted (David Vrabel) [Orabug: 20618759]
- sched: Expose preempt_schedule_irq() (Thomas Gleixner) [Orabug: 20618759]
- isofs: Fix unchecked printing of ER records (Jan Kara) [Orabug: 20930552] {CVE-2014-9584}
- selinux: Permit bounded transitions under NO_NEW_PRIVS or NOSUID. (Stephen Smalley) [Orabug: 20930502] {CVE-2014-3215}
- Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from granting privs (Andy Lutomirski) [Orabug: 20930518] {CVE-2014-3215}
- IB/core: Prevent integer overflow in ib_umem_get address arithmetic (Shachar Raindel) [Orabug: 20788393] {CVE-2014-8159} {CVE-2014-8159}
- xen-pciback: limit guest control of command register (Jan Beulich) [Orabug: 20704156] {CVE-2015-2150} {CVE-2015-2150}
- net: sctp: fix slab corruption from use after free on INIT collisions (Daniel Borkmann) [Orabug: 20780348] {CVE-2015-1421}
- ID
- ELSA-2015-3036
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2015-3036.html
- Published
-
2015-05-13T00:00:00
(9 years ago) - Modified
-
2015-05-13T00:00:00
(9 years ago) - Rights
- Copyright 2015 Oracle, Inc.
- Other Advisories
-
-
ALAS-2015-523
-
DSA-3237-1
-
ELSA-2015-0987
-
ELSA-2015-1081
-
ELSA-2015-3019
-
ELSA-2015-3020
-
ELSA-2015-3035
-
FEDORA-2015-10678
-
FEDORA-2015-12917
-
FEDORA-2015-13391
-
FEDORA-2015-4059
-
FEDORA-2015-4066
-
FEDORA-2015-4457
-
FEDORA-2015-5024
-
FEDORA-2015-6100
-
FEDORA-2015-6294
-
FEDORA-2015-6320
-
FEDORA-2015-7736
-
FEDORA-2015-8518
-
FEDORA-2015-9127
-
FEDORA-2015-9704
-
RHSA-2015:0981
-
RHSA-2015:0987
-
RHSA-2015:1081
-
SUSE-SU-2015:0581-1
-
SUSE-SU-2015:0658-1
-
SUSE-SU-2015:0736-1
-
SUSE-SU-2015:1071-1
-
SUSE-SU-2015:1174-1
-
SUSE-SU-2015:1376-1
-
SUSE-SU-2015:1478-1
-
SUSE-SU-2015:1487-1
-
SUSE-SU-2015:1488-1
-
SUSE-SU-2015:1489-1
-
SUSE-SU-2015:1491-1
-
SUSE-SU-2015:1592-1
-
SUSE-SU-2015:1611-1
-
SUSE-SU-2015:1678-1
-
USN-2589-1
-
USN-2590-1
-
USN-2613-1
-
USN-2614-1
-
USN-2615-1
-
USN-2616-1
-
USN-2631-1
-
USN-2632-1
-
XSA-120
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2015-3036 |
|
|
| CVE | CVE-2015-2150 |
|
|
| CVE | CVE-2015-3331 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
 kernel-uek
|
< 2.6.39-400.250.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-5 | oraclelinux |
kernel-uek
|
< 2.6.39-400.250.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 2.6.39-400.250.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-5 | oraclelinux |
kernel-uek-firmware
|
< 2.6.39-400.250.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 2.6.39-400.250.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-5 | oraclelinux |
kernel-uek-doc
|
< 2.6.39-400.250.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 2.6.39-400.250.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-devel
|
< 2.6.39-400.250.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 2.6.39-400.250.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug
|
< 2.6.39-400.250.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.39-400.250.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.39-400.250.2.el5uek | oraclelinux-5 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |