1. Home
  2. Security Advisories
  3. Oracle Linux
  4. ELSA-2016-2006

[ELSA-2016-2006] kernel security and bug fix update

Severity Important
Affected Packages 10
CVEs 2
Info Packages References Vulnerabilities

[2.6.32-642.6.1]
- [net] tcp: make challenge acks less predictable (Florian Westphal) [1355606 1355607] {CVE-2016-5696}
- [fs] sunrpc: move NO_CRKEY_TIMEOUT to the auth->au_flags (Scott Mayhew) [1366962 1294939]
- [usbhid] hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands (Yauheni Kaliuta) [1359999 1360008] {CVE-2016-5829}

[2.6.32-642.5.1]
- [scsi] megaraid_sas: Do not fire MR_DCMD_PD_LIST_QUERY to controllers which do not support it (Tomas Henzl) [1359039 1352826]
- [scsi] libfc: sanity check cpu number extracted from xid (Chris Leech) [1359036 1351356]
- [security] keys: potential uninitialized variable (Mateusz Guzik) [1345945 1345946] {CVE-2016-4470}
- [fs] gfs2: Lock holder cleanup (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Large-filesystem fix for 32-bit systems (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Get rid of gfs2_ilookup (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Fix gfs2_lookup_by_inum lock inversion (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Initialize iopen glock holder for new inodes (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Release iopen glock in gfs2_create_inode error cases (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Wait for iopen glock dequeues (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Re-add an omission from upstream (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Eliminate parameter non_block on gfs2_inode_lookup (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Don't filter out I_FREEING inodes anymore (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Check if iopen is held when deleting inode (Robert S Peterson) [1359037 1173286]
- [fs] gfs2: Don't do glock put when inode creation fails (Robert S Peterson) [1359037 1173286]
- [fs] gfs2: Prevent delete work from occurring on glocks used for create (Robert S Peterson) [1359037 1173286]
- [fs] gfs2: Always use iopen glock for gl_deletes (Robert S Peterson) [1359037 1173286]
- [fs] gfs2: Update master statfs buffer with sd_statfs_spin locked (Robert S Peterson) [1359037 1173286]

Package Affected Version
pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/perf?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-6 < 2.6.32-642.6.1.el6
ID
ELSA-2016-2006
Severity
important
URL
https://linux.oracle.com/errata/ELSA-2016-2006.html
Published
2016-10-04T00:00:00
(8 years ago)
Modified
2016-10-04T00:00:00
(8 years ago)
Rights
Copyright 2016 Oracle, Inc.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-6 oraclelinux python-perf < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/perf?distro=oraclelinux-6 oraclelinux perf < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6 oraclelinux kernel < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6 oraclelinux kernel-headers < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6 oraclelinux kernel-firmware < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6 oraclelinux kernel-doc < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6 oraclelinux kernel-devel < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6 oraclelinux kernel-debug < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6 oraclelinux kernel-debug-devel < 2.6.32-642.6.1.el6 oraclelinux-6
Affected pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-6 oraclelinux kernel-abi-whitelists < 2.6.32-642.6.1.el6 oraclelinux-6
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date