[ELSA-2016-1539] kernel security and bug fix update
[3.10.0-327.28.2.OL7]
- Oracle Linux certificates (Alexey Petrenko)
[3.10.0-327.28.2]
- [net] bridge: include in6.h in if_bridge.h for struct in6_addr (Jiri Benc) [1331285 1268057]
- [net] inet: defines IPPROTO_* needed for module alias generation (Jiri Benc) [1331285 1268057]
- [net] sync some IP headers with glibc (Jiri Benc) [1331285 1268057]
[3.10.0-327.28.1]
- [netdrv] e1000: Double Tx descriptors needed check for 82544 (Jarod Wilson) [1349448 1274170]
- [netdrv] e1000: Do not overestimate descriptor counts in Tx pre-check (Jarod Wilson) [1349448 1274170]
- [scsi] 3w-9xxx: version string touch (Tomas Henzl) [1348833 1322447]
- [scsi] 3w-9xxx: don't unmap bounce buffered commands (Tomas Henzl) [1348833 1322447]
- [scsi] 3w-9xxx: fix command completion race (Tomas Henzl) [1348833 1322447]
- [fs] gfs2: don't set rgrp gl_object until it's inserted into rgrp tree (Robert S Peterson) [1348829 1344363]
- [fs] fanotify: fix notification of groups with inode & mount marks (Miklos Szeredi) [1348828 1308393]
- [fs] ovl: fix permission checking for setattr (Vivek Goyal) [1293980 1293981]
- [security] keys: potential uninitialized variable (David Howells) [1345935 1341352] {CVE-2016-4470}
- [tty] Invert tty_lock/ldisc_sem lock order (Herton R. Krzesinski) [1336823 1327403]
- [tty] Don't hold tty_lock for ldisc release (Herton R. Krzesinski) [1336823 1327403]
- [tty] Reset hupped state on open (Herton R. Krzesinski) [1336823 1327403]
- [tty] Fix hangup race with TIOCSETD ioctl (Herton R. Krzesinski) [1336823 1327403]
- [tty] Clarify ldisc variable (Herton R. Krzesinski) [1336823 1327403]
- [infiniband] security: Restrict use of the write() interface (Don Dutile) [1332553 1316685] {CVE-2016-4565}
[3.10.0-327.27.1]
- [md] raid5: check_reshape() shouldn't call mddev_suspend (Jes Sorensen) [1344313 1312828]
- [net] sctp: Potentially-Failed state should not be reached from unconfirmed state (Xin Long) [1347809 1333696]
- [net] sctp: fix the transports round robin issue when init is retransmitted (Xin Long) [1347809 1333696]
- [net] sctp: fix suboptimal edge-case on non-active active/retrans path selection (Xin Long) [1347809 1333696]
- [net] sctp: spare unnecessary comparison in sctp_trans_elect_best (Xin Long) [1347809 1333696]
- [net] sctp: improve sctp_select_active_and_retran_path selection (Xin Long) [1347809 1333696]
- [net] sctp: migrate most recently used transport to ktime (Xin Long) [1347809 1333696]
- [net] sctp: refactor active path selection (Xin Long) [1347809 1333696]
- [net] sctp: remove NULL check in sctp_assoc_update_retran_path (Xin Long) [1347809 1333696]
- [net] sctp: rework multihoming retransmission path selection to rfc4960 (Xin Long) [1347809 1333696]
- [net] sctp: retran_path not set properly after transports recovering (Xin Long) [1347809 1333696]
- [mm] memcg: fix endless loop caused by mem_cgroup_iter (Herton R. Krzesinski) [1344750 1297381]
- [scsi] qla2xxx: Set relogin flag when we fail to queue login requests (Chad Dupuis) [1347344 1273080]
- [x86] perf/x86/intel/uncore: Add Broadwell-EP uncore support (Jiri Olsa) [1347374 1259976]
- [x86] perf/x86/intel/uncore: Add Broadwell-DE uncore support (Jiri Olsa) [1348063 1306834]
- [lib] rhashtable: Do hashing inside of rhashtable_lookup_compare() (Phil Sutter) [1343639 1238749]
- [s390] mm: four page table levels vs. fork (Hendrik Brueckner) [1341547 1308879] {CVE-2016-2143}
- [firmware] dmi_scan: Fix UUID endianness for SMBIOS >= 2.6 (Prarit Bhargava) [1340118 1294461]
- [misc] cxl: Export AFU error buffer via sysfs (Gustavo Duarte) [1343537 1275968]
- [misc] cxl: Poll for outstanding IRQs when detaching a context (Alexander Gordeev) [1338886 1332487]
- [misc] cxl: Keep IRQ mappings on context teardown (Alexander Gordeev) [1338886 1332487]
- [netdrv] mlx4_en: Fix endianness bug in IPV6 csum calculation (kamal heib) [1337431 1325358]
- [acpi] srat: fix SRAT parsing order with both LAPIC and X2APIC present (Prarit Bhargava) [1336821 1331394]
[3.10.0-327.26.1]
- [block] blk-mq: fix race between timeout and freeing request (David Milburn) [1347743 1288601]
- [x86] nmi: Fix use of unallocated cpumask_var_t (Jerry Snitselaar) [1346176 1069217]
- [x86] nmi: Perform a safe NMI stack trace on all CPUs (Jerry Snitselaar) [1346176 1069217]
- [kernel] printk: Add per_cpu printk func to allow printk to be diverted (Jerry Snitselaar) [1346176 1069217]
- [lib] seq: Add minimal support for seq_buf (Jerry Snitselaar) [1346176 1069217]
- [fs] ovl: use a minimal buffer in ovl_copy_xattr (Vivek Goyal) [1347235 1306358]
- [fs] ovl: allow zero size xattr (Vivek Goyal) [1347235 1306358]
[3.10.0-327.25.1]
- [fs] xfs: fix broken multi-fsb buffer logging (Brian Foster) [1344234 1334671]
[3.10.0-327.24.1]
- [net] udp: properly support MSG_PEEK with truncated buffers (Sabrina Dubroca) [1339115 1294384]
[3.10.0-327.23.1]
- [net] af_unix: Guard against other == sk in unix_dgram_sendmsg (Jakub Sitnicki) [1337513 1285792]
- [net] unix: avoid use-after-free in ep_remove_wait_queue (Paolo Abeni) [1337513 1285792]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/perf?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
|
pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-7
|
< 3.10.0-327.28.2.el7 |
- ID
- ELSA-2016-1539
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2016-1539.html
- Published
-
2016-08-02T00:00:00
(8 years ago) - Modified
-
2016-08-02T00:00:00
(8 years ago) - Rights
- Copyright 2016 Oracle, Inc.
- Other Advisories
-
-
ALAS-2016-726
-
DSA-3607-1
-
ELSA-2016-2006
-
ELSA-2016-2766
-
ELSA-2016-3591
-
ELSA-2016-3592
-
ELSA-2016-3593
-
FEDORA-2016-1c409313f4
-
FEDORA-2016-63ee0999e4
-
FEDORA-2016-73a733f4d9
-
RHSA-2016:1539
-
RHSA-2016:1541
-
RHSA-2016:2006
-
RHSA-2016:2766
-
SUSE-SU-2016:0585-1
-
SUSE-SU-2016:0751-1
-
SUSE-SU-2016:0752-1
-
SUSE-SU-2016:0755-1
-
SUSE-SU-2016:1019-1
-
SUSE-SU-2016:1203-1
-
SUSE-SU-2016:1672-1
-
SUSE-SU-2016:1690-1
-
SUSE-SU-2016:1707-1
-
SUSE-SU-2016:1764-1
-
SUSE-SU-2016:1937-1
-
SUSE-SU-2016:1961-1
-
SUSE-SU-2016:1985-1
-
SUSE-SU-2016:1994-1
-
SUSE-SU-2016:1995-1
-
SUSE-SU-2016:1998-1
-
SUSE-SU-2016:1999-1
-
SUSE-SU-2016:2000-1
-
SUSE-SU-2016:2001-1
-
SUSE-SU-2016:2002-1
-
SUSE-SU-2016:2003-1
-
SUSE-SU-2016:2005-1
-
SUSE-SU-2016:2006-1
-
SUSE-SU-2016:2007-1
-
SUSE-SU-2016:2009-1
-
SUSE-SU-2016:2010-1
-
SUSE-SU-2016:2011-1
-
SUSE-SU-2016:2014-1
-
SUSE-SU-2016:2018-1
-
SUSE-SU-2016:2074-1
-
SUSE-SU-2016:2105-1
-
SUSE-SU-2016:2245-1
-
SUSE-SU-2017:0333-1
-
SUSE-SU-2017:0471-1
-
USN-2857-1
-
USN-2857-2
-
USN-2858-1
-
USN-2858-2
-
USN-2858-3
-
USN-3049-1
-
USN-3050-1
-
USN-3051-1
-
USN-3052-1
-
USN-3053-1
-
USN-3054-1
-
USN-3055-1
-
USN-3056-1
-
USN-3057-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2016-1539 |
|
|
| CVE | CVE-2015-8660 |
|
|
| CVE | CVE-2016-4470 |
|
|
| CVE | CVE-2016-2143 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7 | oraclelinux |
python-perf
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-7 | oraclelinux |
perf
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-7 | oraclelinux |
kernel
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-7 | oraclelinux |
kernel-tools
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-7 | oraclelinux |
kernel-tools-libs
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-7 | oraclelinux |
kernel-tools-libs-devel
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-7 | oraclelinux |
kernel-headers
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-7 | oraclelinux |
kernel-doc
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-7 | oraclelinux |
kernel-devel
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-7 | oraclelinux |
kernel-debug
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-debug-devel
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-7 | oraclelinux |
kernel-abi-whitelists
|
< 3.10.0-327.28.2.el7 | oraclelinux-7 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |