[ELSA-2017-3516] Unbreakable Enterprise kernel security update
Severity
Important
Affected Packages
12
CVEs
5
[2.6.39-400.294.2]
- vfs: read file_handle only once in handle_to_path (Sasha Levin) [Orabug: 25388709] {CVE-2015-1420}
- crypto: algif_hash - Only export and import on sockets with data (Herbert Xu) [Orabug: 25417807]
- USB: usbfs: fix potential infoleak in devio (Kangjie Lu) [Orabug: 25462763] {CVE-2016-4482}
- net: fix infoleak in llc (Kangjie Lu) [Orabug: 25462811] {CVE-2016-4485}
- af_unix: Guard against other == sk in unix_dgram_sendmsg (Rainer Weikusat) [Orabug: 25464000] {CVE-2013-7446}
- unix: avoid use-after-free in ep_remove_wait_queue (Rainer Weikusat) [Orabug: 25464000] {CVE-2013-7446}
- ID
- ELSA-2017-3516
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2017-3516.html
- Published
-
2017-02-09T00:00:00
(7 years ago) - Modified
-
2017-02-09T00:00:00
(7 years ago) - Rights
- Copyright 2017 Oracle, Inc.
- Other Advisories
-
-
ALAS-2016-703
-
DSA-3170-1
-
DSA-3426-1
-
DSA-3607-1
-
ELSA-2017-1308
-
ELSA-2017-3514
-
ELSA-2017-3515
-
FEDORA-2015-10677
-
FEDORA-2015-10678
-
FEDORA-2015-12437
-
FEDORA-2015-12908
-
FEDORA-2015-12917
-
FEDORA-2015-13391
-
FEDORA-2015-13396
-
FEDORA-2015-9704
-
FEDORA-2015-9712
-
FEDORA-2015-c1c2f5e168
-
FEDORA-2015-c59710b05d
-
FEDORA-2016-06f1572324
-
FEDORA-2016-4ce97823af
-
FEDORA-2016-7d900003e6
-
FEDORA-2016-a159c484e4
-
FEDORA-2016-ef973efab7
-
RHSA-2017:1298
-
RHSA-2017:1308
-
SUSE-SU-2015:1224-1
-
SUSE-SU-2015:1478-1
-
SUSE-SU-2015:1592-1
-
SUSE-SU-2015:1611-1
-
SUSE-SU-2015:1678-1
-
SUSE-SU-2015:2167-1
-
SUSE-SU-2016:0585-1
-
SUSE-SU-2016:0745-1
-
SUSE-SU-2016:0746-1
-
SUSE-SU-2016:0747-1
-
SUSE-SU-2016:0749-1
-
SUSE-SU-2016:0750-1
-
SUSE-SU-2016:0751-1
-
SUSE-SU-2016:0752-1
-
SUSE-SU-2016:0753-1
-
SUSE-SU-2016:0754-1
-
SUSE-SU-2016:0755-1
-
SUSE-SU-2016:0756-1
-
SUSE-SU-2016:0757-1
-
SUSE-SU-2016:0785-1
-
SUSE-SU-2016:0911-1
-
SUSE-SU-2016:1102-1
-
SUSE-SU-2016:1203-1
-
SUSE-SU-2016:1672-1
-
SUSE-SU-2016:1690-1
-
SUSE-SU-2016:1696-1
-
SUSE-SU-2016:1937-1
-
SUSE-SU-2016:1961-1
-
SUSE-SU-2016:1985-1
-
SUSE-SU-2016:1994-1
-
SUSE-SU-2016:1995-1
-
SUSE-SU-2016:2000-1
-
SUSE-SU-2016:2001-1
-
SUSE-SU-2016:2002-1
-
SUSE-SU-2016:2003-1
-
SUSE-SU-2016:2005-1
-
SUSE-SU-2016:2006-1
-
SUSE-SU-2016:2007-1
-
SUSE-SU-2016:2009-1
-
SUSE-SU-2016:2010-1
-
SUSE-SU-2016:2011-1
-
SUSE-SU-2016:2014-1
-
SUSE-SU-2016:2074-1
-
SUSE-SU-2016:2105-1
-
SUSE-SU-2016:2245-1
-
SUSE-SU-2017:0333-1
-
SUSE-SU-2017:0437-1
-
SUSE-SU-2017:0494-1
-
SUSE-SU-2017:1102-1
-
USN-2660-1
-
USN-2661-1
-
USN-2662-1
-
USN-2663-1
-
USN-2664-1
-
USN-2665-1
-
USN-2666-1
-
USN-2667-1
-
USN-2886-1
-
USN-2886-2
-
USN-2887-1
-
USN-2887-2
-
USN-2888-1
-
USN-2889-1
-
USN-2889-2
-
USN-2890-1
-
USN-2890-2
-
USN-2890-3
-
USN-2989-1
-
USN-2996-1
-
USN-2997-1
-
USN-2998-1
-
USN-3000-1
-
USN-3001-1
-
USN-3002-1
-
USN-3003-1
-
USN-3004-1
-
USN-3005-1
-
USN-3006-1
-
USN-3007-1
-
USN-3016-1
-
USN-3016-2
-
USN-3016-3
-
USN-3016-4
-
USN-3017-1
-
USN-3017-2
-
USN-3017-3
-
USN-3018-1
-
USN-3018-2
-
USN-3019-1
-
USN-3020-1
-
USN-3021-1
-
USN-3021-2
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2017-3516 |
|
|
| CVE | CVE-2016-4485 |
|
|
| CVE | CVE-2016-8646 |
|
|
| CVE | CVE-2016-4482 |
|
|
| CVE | CVE-2013-7446 |
|
|
| CVE | CVE-2015-1420 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
 kernel-uek
|
< 2.6.39-400.294.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-5 | oraclelinux |
kernel-uek
|
< 2.6.39-400.294.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 2.6.39-400.294.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-5 | oraclelinux |
kernel-uek-firmware
|
< 2.6.39-400.294.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 2.6.39-400.294.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-5 | oraclelinux |
kernel-uek-doc
|
< 2.6.39-400.294.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 2.6.39-400.294.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-devel
|
< 2.6.39-400.294.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 2.6.39-400.294.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug
|
< 2.6.39-400.294.2.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.39-400.294.2.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.39-400.294.2.el5uek | oraclelinux-5 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |