[ELSA-2017-3509] Unbreakable Enterprise kernel security update
Severity
Important
Affected Packages
14
CVEs
5
kernel-uek
[3.8.13-118.16.2]
- net: avoid signed overflows for SO_{SND|RCV}BUFFORCE (Eric Dumazet) [Orabug: 25203623] {CVE-2016-9793}
[3.8.13-118.16.1]
- nvme: Limit command retries (Ashok Vairavan) [Orabug: 25374794]
- tcp: fix use after free in tcp_xmit_retransmit_queue() (Eric Dumazet) [Orabug: 25374371] {CVE-2016-6828}
- logging errors that get masked to EIO inside drivers/block/loop.c (Manjunath Patil) [Orabug: 22505535]
- ALSA: pcm : Call kill_fasync() in stream lock (Takashi Iwai) [Orabug: 25203963] {CVE-2016-9794}
- packet: fix race condition in packet_set_ring (Philip Pettersson) [Orabug: 25217756] {CVE-2016-8655}
- x86: kvmclock: zero initialize pvclock shared memory area (Igor Mammedov) [Orabug: 25218431]
- KEYS: Fix short sprintf buffer in /proc/keys show function (David Howells) [Orabug: 25306373] {CVE-2016-7042}
- ID
- ELSA-2017-3509
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2017-3509.html
- Published
-
2017-01-12T00:00:00
(7 years ago) - Modified
-
2017-01-12T00:00:00
(7 years ago) - Rights
- Copyright 2017 Oracle, Inc.
- Other Advisories
-
-
ALAS-2016-740
-
ALAS-2016-772
-
ALAS-2017-782
-
ASA-201612-6
-
ASA-201612-7
-
ASA-201612-8
-
DSA-3659-1
-
DSA-3696-1
-
ELSA-2017-0036
-
ELSA-2017-0086
-
ELSA-2017-0386
-
ELSA-2017-0817
-
ELSA-2017-0933
-
ELSA-2017-1842
-
ELSA-2017-3508
-
ELSA-2017-3510
-
FEDORA-2016-107f03cc00
-
FEDORA-2016-2e5ebfed6d
-
FEDORA-2016-5aff4a6bbc
-
FEDORA-2016-5cb5b4082d
-
FEDORA-2016-5e24d8c350
-
FEDORA-2016-723350dd75
-
FEDORA-2016-f1adaaadc6
-
RHSA-2016:2574
-
RHSA-2017:0036
-
RHSA-2017:0086
-
RHSA-2017:0091
-
RHSA-2017:0386
-
RHSA-2017:0387
-
RHSA-2017:0817
-
RHSA-2017:0931
-
RHSA-2017:0933
-
RHSA-2017:1842
-
RHSA-2017:2077
-
SSA:2016-347-01
-
SUSE-SU-2016:2912-1
-
SUSE-SU-2016:2976-1
-
SUSE-SU-2016:3039-1
-
SUSE-SU-2016:3049-1
-
SUSE-SU-2016:3063-1
-
SUSE-SU-2016:3069-1
-
SUSE-SU-2016:3093-1
-
SUSE-SU-2016:3094-1
-
SUSE-SU-2016:3096-1
-
SUSE-SU-2016:3098-1
-
SUSE-SU-2016:3100-1
-
SUSE-SU-2016:3104-1
-
SUSE-SU-2016:3109-1
-
SUSE-SU-2016:3111-1
-
SUSE-SU-2016:3112-1
-
SUSE-SU-2016:3113-1
-
SUSE-SU-2016:3116-1
-
SUSE-SU-2016:3117-1
-
SUSE-SU-2016:3119-1
-
SUSE-SU-2016:3146-1
-
SUSE-SU-2016:3169-1
-
SUSE-SU-2016:3183-1
-
SUSE-SU-2016:3188-1
-
SUSE-SU-2016:3197-1
-
SUSE-SU-2016:3203-1
-
SUSE-SU-2016:3205-1
-
SUSE-SU-2016:3206-1
-
SUSE-SU-2016:3217-1
-
SUSE-SU-2016:3247-1
-
SUSE-SU-2016:3248-1
-
SUSE-SU-2016:3249-1
-
SUSE-SU-2016:3252-1
-
SUSE-SU-2016:3304-1
-
SUSE-SU-2017:0181-1
-
SUSE-SU-2017:0226-1
-
SUSE-SU-2017:0227-1
-
SUSE-SU-2017:0228-1
-
SUSE-SU-2017:0229-1
-
SUSE-SU-2017:0230-1
-
SUSE-SU-2017:0231-1
-
SUSE-SU-2017:0233-1
-
SUSE-SU-2017:0234-1
-
SUSE-SU-2017:0235-1
-
SUSE-SU-2017:0244-1
-
SUSE-SU-2017:0245-1
-
SUSE-SU-2017:0246-1
-
SUSE-SU-2017:0247-1
-
SUSE-SU-2017:0248-1
-
SUSE-SU-2017:0249-1
-
SUSE-SU-2017:0267-1
-
SUSE-SU-2017:0268-1
-
SUSE-SU-2017:0278-1
-
SUSE-SU-2017:0293-1
-
SUSE-SU-2017:0294-1
-
SUSE-SU-2017:0333-1
-
SUSE-SU-2017:0407-1
-
SUSE-SU-2017:0437-1
-
SUSE-SU-2017:0464-1
-
SUSE-SU-2017:0471-1
-
SUSE-SU-2017:0494-1
-
SUSE-SU-2017:1102-1
-
USN-3097-1
-
USN-3097-2
-
USN-3098-1
-
USN-3098-2
-
USN-3099-1
-
USN-3099-2
-
USN-3099-3
-
USN-3099-4
-
USN-3126-1
-
USN-3126-2
-
USN-3127-1
-
USN-3127-2
-
USN-3128-1
-
USN-3128-2
-
USN-3128-3
-
USN-3129-1
-
USN-3129-2
-
USN-3149-1
-
USN-3149-2
-
USN-3150-1
-
USN-3150-2
-
USN-3151-1
-
USN-3151-2
-
USN-3151-3
-
USN-3151-4
-
USN-3152-1
-
USN-3152-2
-
USN-3161-3
-
USN-3167-1
-
USN-3167-2
-
USN-3168-1
-
USN-3168-2
-
USN-3169-1
-
USN-3169-2
-
USN-3169-3
-
USN-3169-4
-
USN-3170-1
-
USN-3170-2
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2017-3509 |
|
|
| CVE | CVE-2016-6828 |
|
|
| CVE | CVE-2016-7042 |
|
|
| CVE | CVE-2016-8655 |
|
|
| CVE | CVE-2016-9794 |
|
|
| CVE | CVE-2016-9793 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
 kernel-uek
|
< 3.8.13-118.16.2.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 3.8.13-118.16.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux |
kernel-uek-firmware
|
< 3.8.13-118.16.2.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 3.8.13-118.16.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 3.8.13-118.16.2.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 3.8.13-118.16.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 3.8.13-118.16.2.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 3.8.13-118.16.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 3.8.13-118.16.2.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 3.8.13-118.16.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 3.8.13-118.16.2.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 3.8.13-118.16.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/dtrace-modules-3.8.13-118.16.2.el7uek?distro=oraclelinux-7 | oraclelinux |
dtrace-modules-3.8.13-118.16.2.el7uek
|
< 0.4.5-3.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/dtrace-modules-3.8.13-118.16.2.el6uek?distro=oraclelinux-6 | oraclelinux |
dtrace-modules-3.8.13-118.16.2.el6uek
|
< 0.4.5-3.el6 | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |