[ELSA-2016-3503] Unbreakable Enterprise kernel security update
Severity
Important
Affected Packages
20
CVEs
5
kernel-uek
[2.6.32-400.37.15uek]
- ipc/sem.c: fully initialize sem_array before making it visible (Manfred Spraul) [Orabug: 22250043] {CVE-2015-7613}
- Initialize msg/shm IPC objects before doing ipc_addid() (Linus Torvalds) [Orabug: 22250043] {CVE-2015-7613}
- crypto: add missing crypto module aliases (Mathias Krause) [Orabug: 22249655] {CVE-2013-7421} {CVE-2014-9644}
- crypto: include crypto- module prefix in template (Kees Cook) [Orabug: 22249655] {CVE-2013-7421} {CVE-2014-9644}
- crypto: prefix module autoloading with 'crypto-' (Kees Cook) [Orabug: 22249655] {CVE-2013-7421} {CVE-2014-9644}
[2.6.32-400.37.14uek]
- KVM: add arg to ac_interception() missing from 'KVM: x86: work around infinite loop in microcode when #AC is delivered' (Chuck Anderson) [Orabug: 22336493] {CVE-2015-5307}
[2.6.32-400.37.13uek]
- KVM: svm: unconditionally intercept #DB (Paolo Bonzini) [Orabug: 22336518] {CVE-2015-8104} {CVE-2015-8104}
- KVM: x86: work around infinite loop in microcode when #AC is delivered (Eric Northup) [Orabug: 22336493] {CVE-2015-5307} {CVE-2015-5307}
- ID
- ELSA-2016-3503
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2016-3503.html
- Published
-
2016-01-08T00:00:00
(8 years ago) - Modified
-
2016-01-08T00:00:00
(8 years ago) - Rights
- Copyright 2016 Oracle, Inc.
- Other Advisories
-
-
ALAS-2015-603
-
DSA-3170-1
-
DSA-3372-1
-
DSA-3396-1
-
DSA-3414-1
-
DSA-3426-1
-
DSA-3454-1
-
ELSA-2015-2152
-
ELSA-2015-2552
-
ELSA-2015-2636
-
ELSA-2015-3012
-
ELSA-2015-3101
-
ELSA-2015-3107
-
ELSA-2016-3502
-
FEDORA-2015-115c302856
-
FEDORA-2015-394835a3f6
-
FEDORA-2015-43145298f4
-
FEDORA-2015-668d213dc3
-
FEDORA-2015-cd94ad8d7c
-
FEDORA-2015-d7e074ba30
-
FEDORA-2015-dcc260f2f2
-
FEDORA-2015-f150b2a8c8
-
FEDORA-2015-f2c534bc12
-
FREEBSD:2CABFBAB-8BFB-11E5-BD18-002590263BF5
-
RHSA-2015:2152
-
RHSA-2015:2411
-
RHSA-2015:2552
-
RHSA-2015:2636
-
SUSE-SU-2015:1727-1
-
SUSE-SU-2015:2084-1
-
SUSE-SU-2015:2085-1
-
SUSE-SU-2015:2086-1
-
SUSE-SU-2015:2087-1
-
SUSE-SU-2015:2089-1
-
SUSE-SU-2015:2090-1
-
SUSE-SU-2015:2091-1
-
SUSE-SU-2015:2108-1
-
SUSE-SU-2015:2194-1
-
SUSE-SU-2015:2306-1
-
SUSE-SU-2015:2324-1
-
SUSE-SU-2015:2326-1
-
SUSE-SU-2015:2328-1
-
SUSE-SU-2015:2338-1
-
SUSE-SU-2015:2339-1
-
SUSE-SU-2015:2350-1
-
SUSE-SU-2016:0354-1
-
SUSE-SU-2016:2074-1
-
USN-2513-1
-
USN-2514-1
-
USN-2543-1
-
USN-2544-1
-
USN-2545-1
-
USN-2546-1
-
USN-2761-1
-
USN-2762-1
-
USN-2763-1
-
USN-2764-1
-
USN-2765-1
-
USN-2792-1
-
USN-2796-1
-
USN-2800-1
-
USN-2801-1
-
USN-2802-1
-
USN-2803-1
-
USN-2804-1
-
USN-2805-1
-
USN-2806-1
-
USN-2807-1
-
USN-2840-1
-
USN-2841-1
-
USN-2841-2
-
USN-2842-1
-
USN-2842-2
-
USN-2843-1
-
USN-2843-2
-
USN-2844-1
-
XSA-156
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2016-3503 |
|
|
| CVE | CVE-2013-7421 |
|
|
| CVE | CVE-2014-9644 |
|
|
| CVE | CVE-2015-7613 |
|
|
| CVE | CVE-2015-5307 |
|
|
| CVE | CVE-2015-8104 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.37.15.el6uekdebug | oraclelinux |
 ofa-2.6.32-400.37.15.el6uekdebug
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.37.15.el6uek | oraclelinux |
ofa-2.6.32-400.37.15.el6uek
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.37.15.el5uekdebug | oraclelinux |
ofa-2.6.32-400.37.15.el5uekdebug
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/ofa-2.6.32-400.37.15.el5uek | oraclelinux |
ofa-2.6.32-400.37.15.el5uek
|
< 1.5.1-4.0.58 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.37.15.el6uekdebug | oraclelinux |
mlnx_en-2.6.32-400.37.15.el6uekdebug
|
< 1.5.7-0.1 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.37.15.el6uek | oraclelinux |
mlnx_en-2.6.32-400.37.15.el6uek
|
< 1.5.7-0.1 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.37.15.el5uekdebug | oraclelinux |
mlnx_en-2.6.32-400.37.15.el5uekdebug
|
< 1.5.7-2 | |||
| Affected | pkg:rpm/oraclelinux/mlnx_en-2.6.32-400.37.15.el5uek | oraclelinux |
mlnx_en-2.6.32-400.37.15.el5uek
|
< 1.5.7-2 | |||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 2.6.32-400.37.15.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-5 | oraclelinux |
kernel-uek
|
< 2.6.32-400.37.15.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 2.6.32-400.37.15.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-5 | oraclelinux |
kernel-uek-firmware
|
< 2.6.32-400.37.15.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 2.6.32-400.37.15.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-5 | oraclelinux |
kernel-uek-doc
|
< 2.6.32-400.37.15.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 2.6.32-400.37.15.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-devel
|
< 2.6.32-400.37.15.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 2.6.32-400.37.15.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug
|
< 2.6.32-400.37.15.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.32-400.37.15.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.32-400.37.15.el5uek | oraclelinux-5 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |