[ELSA-2018-4108] Unbreakable Enterprise kernel security update
[4.1.12-124.15.1]
- netfilter: nfnetlink_cthelper: Add missing permission checks (Kevin Cernekee) [Orabug: 27260771] {CVE-2017-17448}
- netlink: Add netns check on taps (Kevin Cernekee) [Orabug: 27260799] {CVE-2017-17449}
- KVM: Fix stack-out-of-bounds read in write_mmio (Wanpeng Li) [Orabug: 27290606] {CVE-2017-17741} {CVE-2017-17741}
- xprtrdma: Detect unreachable NFS/RDMA servers more reliably (Chuck Lever) [Orabug: 27587008]
- sunrpc: Export xprt_force_disconnect() (Chuck Lever) [Orabug: 27587008]
- sunrpc: Allow xprt->ops->timer method to sleep (Chuck Lever) [Orabug: 27587008]
- KVM: nVMX: fix guest CR4 loading when emulating L2 to L1 exit (Haozhong Zhang) [Orabug: 27720128]
- x86/microcode: probe CPU features on microcode update (Ankur Arora) [Orabug: 27878230]
- x86/microcode: microcode_write() should not reference boot_cpu_data (Ankur Arora) [Orabug: 27878230]
- x86/cpufeatures: use cpu_data in init_scattered_cpuid_flags() (Ankur Arora) [Orabug: 27878230]
- mm/pagewalk.c: report holes in hugetlb ranges (Jann Horn) [Orabug: 27913118] {CVE-2017-16994}
- KEYS: dont let add_key() update an uninstantiated key (David Howells) [Orabug: 27913330] {CVE-2017-15299}
- drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl() (Murray McAllister) [Orabug: 27913367] {CVE-2017-7294}
- vmscan: Support multiple kswapd threads per node (Buddy Lumpkin) [Orabug: 27913411]
- tcp: dont use F-RTO on non-recurring timeouts (Yuchung Cheng) [Orabug: 27901860]
- net/rds: ib: Release correct number of frags (Hakon Bugge) [Orabug: 27924161]
- crypto: rng - Remove old low-level rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- crypto: drbg - Convert to new rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- crypto: ansi_cprng - Convert to new rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- crypto: krng - Convert to new rng interface (Herbert Xu) [Orabug: 27926676] {CVE-2017-15116}
- RDS: Heap OOB write in rds_message_alloc_sgs() (Mohamed Ghannam) [Orabug: 27934066] {CVE-2018-5332}
- net: Fix double free and memory corruption in get_net_ns_by_id() (Eric W. Biederman) [Orabug: 27934789] {CVE-2017-15129}
- ID
- ELSA-2018-4108
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2018-4108.html
- Published
-
2018-05-15T00:00:00
(6 years ago) - Modified
-
2018-05-15T00:00:00
(6 years ago) - Rights
- Copyright 2018 Oracle, Inc.
- Other Advisories
-
-
ALAS-2017-925
-
ALAS-2017-937
-
ALAS-2018-944
-
ALAS-2018-956
-
ALAS2-2018-956
-
ASA-201801-1
-
ASA-201801-2
-
ASA-201801-3
-
ASA-201801-4
-
DSA-4073-1
-
DSA-4082-1
-
DSA-4187-1
-
ELSA-2018-1062
-
ELSA-2018-4109
-
ELSA-2018-4110
-
ELSA-2018-4134
-
ELSA-2018-4172
-
FEDORA-2017-129969aa8a
-
FEDORA-2017-1ebb87e7c0
-
FEDORA-2017-7810b7c59f
-
FEDORA-2017-905bb449bc
-
FEDORA-2017-92a0ae09aa
-
FEDORA-2017-aa9927961f
-
FEDORA-2017-ba6b6e71f7
-
FEDORA-2017-c110ac0eb1
-
FEDORA-2017-cafcdbdde5
-
FEDORA-2017-f9f3d80442
-
FEDORA-2018-1c80fea1cd
-
FEDORA-2018-1e033dc308
-
FEDORA-2018-262eb7c289
-
FEDORA-2018-2a0f8b2c9d
-
FEDORA-2018-2ee3411cb8
-
FEDORA-2018-2f6df9abfb
-
FEDORA-2018-49bda79bd5
-
FEDORA-2018-4ca01704a2
-
FEDORA-2018-6367a17aa3
-
FEDORA-2018-79d7c3d2df
-
FEDORA-2018-8484550fff
-
FEDORA-2018-884a105c04
-
FEDORA-2018-8dc60a4feb
-
FEDORA-2018-93c2e74446
-
FEDORA-2018-94315e9a6b
-
FEDORA-2018-9d0e4e40b5
-
FEDORA-2018-b57db4753c
-
FEDORA-2018-b68776e5b0
-
FEDORA-2018-b997780dca
-
FEDORA-2018-c0a1284064
-
FEDORA-2018-c449dc1c9c
-
FEDORA-2018-d77cc41f35
-
FEDORA-2018-e71875c4aa
-
FEDORA-2018-e8f793bbfc
-
RHSA-2018:0676
-
RHSA-2018:1062
-
SUSE-SU-2017:1059-1
-
SUSE-SU-2017:1060-1
-
SUSE-SU-2017:1064-1
-
SUSE-SU-2017:1183-1
-
SUSE-SU-2017:1247-1
-
SUSE-SU-2017:1277-1
-
SUSE-SU-2017:1279-1
-
SUSE-SU-2017:1280-1
-
SUSE-SU-2017:1283-1
-
SUSE-SU-2017:1284-1
-
SUSE-SU-2017:1288-1
-
SUSE-SU-2017:1289-1
-
SUSE-SU-2017:1290-1
-
SUSE-SU-2017:1293-1
-
SUSE-SU-2017:1294-1
-
SUSE-SU-2017:1295-1
-
SUSE-SU-2017:1297-1
-
SUSE-SU-2017:1301-1
-
SUSE-SU-2017:1303-1
-
SUSE-SU-2017:1308-1
-
SUSE-SU-2017:1360-1
-
SUSE-SU-2017:1990-1
-
SUSE-SU-2017:2342-1
-
SUSE-SU-2017:2525-1
-
SUSE-SU-2017:3398-1
-
SUSE-SU-2017:3410-1
-
SUSE-SU-2018:0031-1
-
SUSE-SU-2018:0115-1
-
SUSE-SU-2018:0213-1
-
SUSE-SU-2018:0383-1
-
SUSE-SU-2018:0416-1
-
SUSE-SU-2018:0437-1
-
SUSE-SU-2018:0482-1
-
SUSE-SU-2018:0525-1
-
SUSE-SU-2018:0555-1
-
SUSE-SU-2018:0660-1
-
SUSE-SU-2018:0834-1
-
SUSE-SU-2018:0841-1
-
SUSE-SU-2018:0848-1
-
SUSE-SU-2018:0986-1
-
SUSE-SU-2018:1772-1
-
SUSE-SU-2018:1816-1
-
SUSE-SU-2019:1287-1
-
USN-3291-1
-
USN-3291-2
-
USN-3291-3
-
USN-3293-1
-
USN-3342-1
-
USN-3342-2
-
USN-3343-1
-
USN-3343-2
-
USN-3485-1
-
USN-3485-2
-
USN-3485-3
-
USN-3507-1
-
USN-3507-2
-
USN-3617-1
-
USN-3617-2
-
USN-3617-3
-
USN-3619-1
-
USN-3619-2
-
USN-3620-1
-
USN-3620-2
-
USN-3632-1
-
USN-3653-1
-
USN-3653-2
-
USN-3655-1
-
USN-3655-2
-
USN-3657-1
-
USN-3798-1
-
USN-3798-2
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2018-4108 |
|
|
| CVE | CVE-2017-7294 |
|
|
| CVE | CVE-2017-15129 |
|
|
| CVE | CVE-2017-17449 |
|
|
| CVE | CVE-2017-15116 |
|
|
| CVE | CVE-2017-17448 |
|
|
| CVE | CVE-2017-15299 |
|
|
| CVE | CVE-2017-17741 |
|
|
| CVE | CVE-2018-5332 |
|
|
| CVE | CVE-2017-16994 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
 kernel-uek
|
< 4.1.12-124.15.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 4.1.12-124.15.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.15.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.15.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.15.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.15.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.15.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.15.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.15.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.15.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.15.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.15.1.el6uek | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |