[ELSA-2016-0185] kernel security and bug fix update
- [3.10.0-327.10.1.OL7]
- Oracle Linux certificates (Alexey Petrenko)
[3.10.0-327.10.1]
- [of] return NUMA_NO_NODE from fallback of_node_to_nid() (Thadeu Lima de Souza Cascardo) [1300614 1294398]
- [net] openvswitch: do not allocate memory from offline numa node (Thadeu Lima de Souza Cascardo) [1300614 1294398]
[3.10.0-327.9.1]
- [security] keys: Fix keyring ref leak in join_session_keyring() (David Howells) [1298931 1298036] {CVE-2016-0728}
[3.10.0-327.8.1]
- [md] dm: fix AB-BA deadlock in __dm_destroy() (Mike Snitzer) [1296566 1292481]
- [md] revert 'dm-mpath: fix stalls when handling invalid ioctls' (Mike Snitzer) [1287552 1277194]
- [cpufreq] intel_pstate: Fix limits->max_perf rounding error (Prarit Bhargava) [1296276 1279617]
- [cpufreq] intel_pstate: Fix limits->max_policy_pct rounding error (Prarit Bhargava) [1296276 1279617]
- [cpufreq] revert 'intel_pstate: fix rounding error in max_freq_pct' (Prarit Bhargava) [1296276 1279617]
- [crypto] nx: 842 - Add CRC and validation support (Gustavo Duarte) [1289451 1264905]
- [powerpc] eeh: More relaxed condition for enabled IO path (Steve Best) [1289101 1274731]
- [security] keys: Don't permit request_key() to construct a new keyring (David Howells) [1275929 1273465] {CVE-2015-7872}
- [security] keys: Fix crash when attempt to garbage collect an uninstantiated keyring (David Howells) [1275929 1273465] {CVE-2015-7872}
- [security] keys: Fix race between key destruction and finding a keyring by name (David Howells) [1275929 1273465] {CVE-2015-7872}
- [x86] paravirt: Replace the paravirt nop with a bona fide empty function (Mateusz Guzik) [1259582 1259583] {CVE-2015-5157}
- [x86] nmi: Fix a paravirt stack-clobbering bug in the NMI code (Mateusz Guzik) [1259582 1259583] {CVE-2015-5157}
- [x86] nmi: Use DF to avoid userspace RSP confusing nested NMI detection (Mateusz Guzik) [1259582 1259583] {CVE-2015-5157}
- [x86] nmi: Reorder nested NMI checks (Mateusz Guzik) [1259582 1259583] {CVE-2015-5157}
- [x86] nmi: Improve nested NMI comments (Mateusz Guzik) [1259582 1259583] {CVE-2015-5157}
- [x86] nmi: Switch stacks on userspace NMI entry (Mateusz Guzik) [1259582 1259583] {CVE-2015-5157}
[3.10.0-327.7.1]
- [scsi] scsi_sysfs: protect against double execution of __scsi_remove_device() (Vitaly Kuznetsov) [1292075 1273723]
- [powerpc] mm: Recompute hash value after a failed update (Gustavo Duarte) [1289452 1264920]
- [misc] genwqe: get rid of atomic allocations (Hendrik Brueckner) [1289450 1270244]
- [mm] use only per-device readahead limit (Eric Sandeen) [1287550 1280355]
- [net] ipv6: update ip6_rt_last_gc every time GC is run (Hannes Frederic Sowa) [1285370 1270092]
- [kernel] tick: broadcast: Prevent livelock from event handler (Prarit Bhargava) [1284043 1265283]
- [kernel] clockevents: Serialize calls to clockevents_update_freq() in the core (Prarit Bhargava) [1284043 1265283]
[3.10.0-327.6.1]
- [netdrv] bonding: propagate LRO disable to slave devices (Jarod Wilson) [1292072 1266578]
[3.10.0-327.5.1]
- [net] vsock: Fix lockdep issue (Dave Anderson) [1292372 1253971]
- [net] vsock: sock_put wasn't safe to call in interrupt context (Dave Anderson) [1292372 1253971]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/perf?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
|
pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-7
|
< 3.10.0-327.10.1.el7 |
- ID
- ELSA-2016-0185
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2016-0185.html
- Published
-
2016-02-16T00:00:00
(8 years ago) - Modified
-
2016-02-16T00:00:00
(8 years ago) - Rights
- Copyright 2016 Oracle, Inc.
- Other Advisories
-
-
ALAS-2015-610
-
DSA-3313-1
-
DSA-3396-1
-
ELSA-2015-2636
-
ELSA-2016-0715
-
ELSA-2016-3501
-
ELSA-2016-3519
-
RHSA-2015:2636
-
RHSA-2016:0185
-
RHSA-2016:0212
-
RHSA-2016:0715
-
SUSE-SU-2015:1727-1
-
SUSE-SU-2015:2108-1
-
SUSE-SU-2015:2194-1
-
SUSE-SU-2015:2292-1
-
SUSE-SU-2015:2339-1
-
SUSE-SU-2015:2350-1
-
SUSE-SU-2016:0335-1
-
SUSE-SU-2016:0337-1
-
SUSE-SU-2016:0354-1
-
SUSE-SU-2016:0380-1
-
SUSE-SU-2016:0381-1
-
SUSE-SU-2016:0383-1
-
SUSE-SU-2016:0384-1
-
SUSE-SU-2016:0386-1
-
SUSE-SU-2016:0387-1
-
SUSE-SU-2016:0434-1
-
SUSE-SU-2016:2074-1
-
USN-2687-1
-
USN-2688-1
-
USN-2689-1
-
USN-2690-1
-
USN-2691-1
-
USN-2700-1
-
USN-2823-1
-
USN-2824-1
-
USN-2826-1
-
USN-2829-1
-
USN-2829-2
-
USN-2840-1
-
USN-2840-2
-
USN-2843-1
-
USN-2843-2
-
USN-2843-3
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2016-0185 |
|
|
| CVE | CVE-2015-7872 |
|
|
| CVE | CVE-2015-5157 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7 | oraclelinux |
python-perf
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-7 | oraclelinux |
perf
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-7 | oraclelinux |
kernel
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-7 | oraclelinux |
kernel-tools
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-7 | oraclelinux |
kernel-tools-libs
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-7 | oraclelinux |
kernel-tools-libs-devel
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-7 | oraclelinux |
kernel-headers
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-7 | oraclelinux |
kernel-doc
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-7 | oraclelinux |
kernel-devel
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-7 | oraclelinux |
kernel-debug
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-debug-devel
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-7 | oraclelinux |
kernel-abi-whitelists
|
< 3.10.0-327.10.1.el7 | oraclelinux-7 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |