[ELSA-2018-4300] Unbreakable Enterprise kernel security update
kernel-uek
[3.8.13-118.28.1]
- udf: Check component length before reading it (Jan Kara) [Orabug: 21193696] {CVE-2014-9728}
- udf: Verify i_size when loading inode (Shan Hai) [Orabug: 21193696] {CVE-2014-9728}
- intel_pstate: Fix overflow in busy_scaled due to long delay (mridula shastry) [Orabug: 28005134]
- scsi: libsas: defer ata device eh commands to libata (Jason Yan) [Orabug: 28459689] {CVE-2018-10021}
- nfsd: silence sparse warning about accessing credentials (Jeff Layton) [Orabug: 28824742] {CVE-2017-13168}
- scsi: sg: mitigate read/write abuse (Jann Horn) [Orabug: 28824742] {CVE-2017-13168}
- scsi: sg: allocate with __GFP_ZERO in sg_build_indirect() (Alexander Potapenko) [Orabug: 28892683] {CVE-2018-1000204}
- ALSA: rawmidi: Change resized buffers atomically (Takashi Iwai) [Orabug: 28898650] {CVE-2018-10902}
- KVM: MTRR: remove MSR 0x2f8 (Andy Honig) [Orabug: 28901657] {CVE-2016-3713} {CVE-2016-3713}
- cdrom: fix improper type cast, which can leat to information leak. (Young_X) [Orabug: 28929777] {CVE-2018-16658} {CVE-2018-10940} {CVE-2018-18710}
- floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl (Andy Whitcroft) {CVE-2018-7755} {CVE-2018-7755}
- crypto: salsa20 - fix blkcipher_walk API usage (Eric Biggers) [Orabug: 28976585] {CVE-2017-17805}
- crypto: hmac - require that the underlying hash algorithm is unkeyed (Eric Biggers) [Orabug: 28976654] {CVE-2017-17806}
- ID
- ELSA-2018-4300
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2018-4300.html
- Published
-
2018-12-06T00:00:00
(5 years ago) - Modified
-
2018-12-06T00:00:00
(5 years ago) - Rights
- Copyright 2018 Oracle, Inc.
- Other Advisories
-
- ALAS-2018-1133
- ALAS-2019-1279
- ALAS2-2018-1133
- ALAS2-2019-1279
- ASA-201801-1
- ASA-201801-2
- ASA-201801-3
- ASA-201801-4
- DSA-4073-1
- DSA-4082-1
- DSA-4308-1
- ELSA-2018-3083
- ELSA-2018-4265
- ELSA-2018-4270
- ELSA-2018-4288
- ELSA-2018-4299
- ELSA-2018-4301
- ELSA-2018-4304
- ELSA-2019-0415
- ELSA-2019-2029
- ELSA-2019-2473
- ELSA-2019-4316
- ELSA-2019-4509
- FEDORA-2016-06f1572324
- FEDORA-2016-2363b37a98
- FEDORA-2016-f8739a80b0
- FEDORA-2018-1621b2204a
- FEDORA-2018-1c80fea1cd
- FEDORA-2018-1e033dc308
- FEDORA-2018-2645eb8dab
- FEDORA-2018-2a0f8b2c9d
- FEDORA-2018-2ee3411cb8
- FEDORA-2018-2f6df9abfb
- FEDORA-2018-3857a8b41a
- FEDORA-2018-49bda79bd5
- FEDORA-2018-4ca01704a2
- FEDORA-2018-5904d0794d
- FEDORA-2018-6367a17aa3
- FEDORA-2018-6e8c330d50
- FEDORA-2018-79d7c3d2df
- FEDORA-2018-8484550fff
- FEDORA-2018-87ba0312c2
- FEDORA-2018-884a105c04
- FEDORA-2018-93c2e74446
- FEDORA-2018-94315e9a6b
- FEDORA-2018-9d0e4e40b5
- FEDORA-2018-a0914af224
- FEDORA-2018-b57db4753c
- FEDORA-2018-b68776e5b0
- FEDORA-2018-b997780dca
- FEDORA-2018-c0a1284064
- FEDORA-2018-c449dc1c9c
- FEDORA-2018-d77cc41f35
- FEDORA-2018-e71875c4aa
- FEDORA-2018-e8f793bbfc
- FEDORA-2018-f55c305488
- FEDORA-2019-164946aa7f
- FEDORA-2019-16de0047d4
- FEDORA-2019-196ab64d65
- FEDORA-2019-1b986880ea
- FEDORA-2019-1e8a4c6958
- FEDORA-2019-20a89ca9af
- FEDORA-2019-337484d88b
- FEDORA-2019-3da64f3e61
- FEDORA-2019-4002b91800
- FEDORA-2019-48b34fc991
- FEDORA-2019-509c133845
- FEDORA-2019-65c6d11eba
- FEDORA-2019-7462acf8ba
- FEDORA-2019-7bdeed7fc5
- FEDORA-2019-7d3500d712
- FEDORA-2019-8169b57f28
- FEDORA-2019-8219efa9f6
- FEDORA-2019-87e7046631
- FEDORA-2019-94dc902948
- FEDORA-2019-96b31a9602
- FEDORA-2019-a6cd583a8d
- FEDORA-2019-aabdaa013d
- FEDORA-2019-b0f7a7b74b
- FEDORA-2019-be9add5b77
- FEDORA-2019-c36afa818c
- FEDORA-2019-ce2933b003
- FEDORA-2019-e6bf55e821
- FEDORA-2019-f812c9fb22
- RHSA-2018:3083
- RHSA-2018:3096
- RHSA-2019:0415
- RHSA-2019:2029
- RHSA-2019:2043
- RHSA-2019:2473
- SSA:2019-030-01
- SUSE-SU-2015:1224-1
- SUSE-SU-2015:1324-1
- SUSE-SU-2015:1592-1
- SUSE-SU-2015:1611-1
- SUSE-SU-2015:1678-1
- SUSE-SU-2018:0010-1
- SUSE-SU-2018:0011-1
- SUSE-SU-2018:0012-1
- SUSE-SU-2018:0040-1
- SUSE-SU-2018:0180-1
- SUSE-SU-2018:0213-1
- SUSE-SU-2018:0437-1
- SUSE-SU-2018:0525-1
- SUSE-SU-2018:1761-1
- SUSE-SU-2018:1762-1
- SUSE-SU-2018:1855-1
- SUSE-SU-2018:1855-2
- SUSE-SU-2018:2092-1
- SUSE-SU-2018:2332-1
- SUSE-SU-2018:2366-1
- SUSE-SU-2018:2538-1
- SUSE-SU-2018:2539-1
- SUSE-SU-2018:2637-1
- SUSE-SU-2018:2775-1
- SUSE-SU-2018:2776-1
- SUSE-SU-2018:2787-1
- SUSE-SU-2018:2858-1
- SUSE-SU-2018:2860-1
- SUSE-SU-2018:2862-1
- SUSE-SU-2018:2864-1
- SUSE-SU-2018:2879-1
- SUSE-SU-2018:2907-1
- SUSE-SU-2018:2908-1
- SUSE-SU-2018:2908-2
- SUSE-SU-2018:2940-1
- SUSE-SU-2018:2960-1
- SUSE-SU-2018:2961-1
- SUSE-SU-2018:2962-1
- SUSE-SU-2018:2963-1
- SUSE-SU-2018:3029-1
- SUSE-SU-2018:3083-1
- SUSE-SU-2018:3084-1
- SUSE-SU-2018:3088-1
- SUSE-SU-2018:3688-1
- SUSE-SU-2018:3689-1
- SUSE-SU-2018:3746-1
- SUSE-SU-2018:3773-1
- SUSE-SU-2018:3869-1
- SUSE-SU-2018:3934-1
- SUSE-SU-2018:3961-1
- SUSE-SU-2018:4069-1
- SUSE-SU-2018:4072-1
- SUSE-SU-2019:0095-1
- SUSE-SU-2019:0224-1
- SUSE-SU-2019:0439-1
- SUSE-SU-2019:1245-1
- SUSE-SU-2019:1289-1
- SUSE-SU-2021:0452-1
- SUSE-SU-2022:1651-1
- SUSE-SU-2022:1668-1
- SUSE-SU-2022:1686-1
- SUSE-SU-2022:2077-1
- SUSE-SU-2022:2082-1
- SUSE-SU-2022:2111-1
- SUSE-SU-2023:0416-1
- USN-2517-1
- USN-2518-1
- USN-2541-1
- USN-2542-1
- USN-2543-1
- USN-2544-1
- USN-2978-1
- USN-2978-2
- USN-2979-1
- USN-2979-2
- USN-3583-1
- USN-3583-2
- USN-3617-1
- USN-3617-2
- USN-3617-3
- USN-3619-1
- USN-3619-2
- USN-3620-1
- USN-3620-2
- USN-3632-1
- USN-3678-1
- USN-3678-2
- USN-3678-3
- USN-3678-4
- USN-3695-1
- USN-3695-2
- USN-3696-1
- USN-3696-2
- USN-3697-1
- USN-3697-2
- USN-3698-1
- USN-3698-2
- USN-3752-1
- USN-3752-2
- USN-3752-3
- USN-3753-1
- USN-3753-2
- USN-3754-1
- USN-3776-1
- USN-3776-2
- USN-3820-1
- USN-3820-2
- USN-3820-3
- USN-3822-1
- USN-3822-2
- USN-3846-1
- USN-3847-1
- USN-3847-2
- USN-3847-3
- USN-3848-1
- USN-3848-2
- USN-3849-1
- USN-3849-2
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2018-4300 | http://linux.oracle.com/errata/ELSA-2018-4300.html | |
CVE | CVE-2017-17805 | http://linux.oracle.com/cve/CVE-2017-17805.html | |
CVE | CVE-2018-10902 | http://linux.oracle.com/cve/CVE-2018-10902.html | |
CVE | CVE-2017-13168 | http://linux.oracle.com/cve/CVE-2017-13168.html | |
CVE | CVE-2018-1000204 | http://linux.oracle.com/cve/CVE-2018-1000204.html | |
CVE | CVE-2018-18710 | http://linux.oracle.com/cve/CVE-2018-18710.html | |
CVE | CVE-2014-9728 | http://linux.oracle.com/cve/CVE-2014-9728.html | |
CVE | CVE-2016-3713 | http://linux.oracle.com/cve/CVE-2016-3713.html | |
CVE | CVE-2017-17806 | http://linux.oracle.com/cve/CVE-2017-17806.html | |
CVE | CVE-2018-7755 | http://linux.oracle.com/cve/CVE-2018-7755.html | |
CVE | CVE-2018-10021 | http://linux.oracle.com/cve/CVE-2018-10021.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux | kernel-uek | < 3.8.13-118.28.1.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux | kernel-uek | < 3.8.13-118.28.1.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux | kernel-uek-firmware | < 3.8.13-118.28.1.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux | kernel-uek-firmware | < 3.8.13-118.28.1.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux | kernel-uek-doc | < 3.8.13-118.28.1.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux | kernel-uek-doc | < 3.8.13-118.28.1.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux | kernel-uek-devel | < 3.8.13-118.28.1.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-devel | < 3.8.13-118.28.1.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux | kernel-uek-debug | < 3.8.13-118.28.1.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug | < 3.8.13-118.28.1.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux | kernel-uek-debug-devel | < 3.8.13-118.28.1.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug-devel | < 3.8.13-118.28.1.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/dtrace-modules-3.8.13-118.28.1.el7uek?distro=oraclelinux-7 | oraclelinux | dtrace-modules-3.8.13-118.28.1.el7uek | < 0.4.5-3.el7 | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/dtrace-modules-3.8.13-118.28.1.el6uek?distro=oraclelinux-6 | oraclelinux | dtrace-modules-3.8.13-118.28.1.el6uek | < 0.4.5-3.el6 | oraclelinux-6 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |