[ELSA-2019-4576] Unbreakable Enterprise kernel security update
Severity
Important
Affected Packages
14
CVEs
5
kernel-uek
[3.8.13-118.31.1]
- alarmtimer: Prevent overflow for relative nanosleep (Thomas Gleixner) [Orabug: 29269167] {CVE-2018-13053}
- KEYS: Don't permit request_key() to construct a new keyring (David Howells) [Orabug: 29304552] {CVE-2017-17807}
- KEYS: add missing permission check for request_key() destination (Eric Biggers) [Orabug: 29304552] {CVE-2017-17807}
- ext4: only look at the bg_flags field if it is valid (Theodore Ts'o) [Orabug: 29409425] {CVE-2018-10876} {CVE-2018-10876}
- net: Set sk_prot_creator when cloning sockets to the right proto (Christoph Paasch) [Orabug: 29422740] {CVE-2018-9568}
- ext4: make sure bitmaps and the inode table don't overlap with bg descriptors (Theodore Ts'o) [Orabug: 29428608] {CVE-2018-10878}
- ext4: always check block group bounds in ext4_init_block_bitmap() (Theodore Ts'o) [Orabug: 29428608] {CVE-2018-10878}
- ID
- ELSA-2019-4576
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2019-4576.html
- Published
-
2019-03-12T00:00:00
(5 years ago) - Modified
-
2019-03-12T00:00:00
(5 years ago) - Rights
- Copyright 2019 Oracle, Inc.
- Other Advisories
-
-
DSA-4073-1
-
DSA-4082-1
-
ELSA-2018-3083
-
ELSA-2019-0512
-
ELSA-2019-2029
-
ELSA-2019-2736
-
ELSA-2019-4541
-
ELSA-2019-4575
-
ELSA-2019-4577
-
ELSA-2020-1016
-
FEDORA-2018-0edb45d9db
-
FEDORA-2018-1621b2204a
-
FEDORA-2018-1c80fea1cd
-
FEDORA-2018-2ee3411cb8
-
FEDORA-2018-2f6df9abfb
-
FEDORA-2018-3857a8b41a
-
FEDORA-2018-49bda79bd5
-
FEDORA-2018-50075276e8
-
FEDORA-2018-59e4747e0f
-
FEDORA-2018-6e8c330d50
-
FEDORA-2018-79d7c3d2df
-
FEDORA-2018-8422d94975
-
FEDORA-2018-8484550fff
-
FEDORA-2018-94315e9a6b
-
FEDORA-2018-9f4381d8c4
-
FEDORA-2018-a0914af224
-
FEDORA-2018-b68776e5b0
-
FEDORA-2018-c0a1284064
-
FEDORA-2018-ca0e10fc6e
-
FEDORA-2018-cc812838fb
-
FEDORA-2018-d77cc41f35
-
FEDORA-2018-ddbaca855e
-
FEDORA-2018-e820fccd83
-
FEDORA-2018-f8cba144ae
-
FEDORA-2019-16de0047d4
-
FEDORA-2019-196ab64d65
-
FEDORA-2019-1b986880ea
-
FEDORA-2019-20a89ca9af
-
FEDORA-2019-337484d88b
-
FEDORA-2019-3da64f3e61
-
FEDORA-2019-4002b91800
-
FEDORA-2019-509c133845
-
FEDORA-2019-65c6d11eba
-
FEDORA-2019-7d3500d712
-
FEDORA-2019-a6cd583a8d
-
FEDORA-2019-c36afa818c
-
FEDORA-2019-ce2933b003
-
openSUSE-SU-2019:0065-1
-
RHSA-2018:3083
-
RHSA-2018:3096
-
RHSA-2019:0512
-
RHSA-2019:0514
-
RHSA-2019:2029
-
RHSA-2019:2043
-
RHSA-2019:2736
-
RHSA-2020:1016
-
RHSA-2020:1070
-
SSA:2019-030-01
-
SUSE-SU-2018:2051-1
-
SUSE-SU-2018:2092-1
-
SUSE-SU-2018:2150-1
-
SUSE-SU-2018:2222-1
-
SUSE-SU-2018:2332-1
-
SUSE-SU-2018:2344-1
-
SUSE-SU-2018:2344-2
-
SUSE-SU-2018:2362-1
-
SUSE-SU-2018:2366-1
-
SUSE-SU-2018:2380-1
-
SUSE-SU-2018:2381-1
-
SUSE-SU-2018:2384-1
-
SUSE-SU-2018:2450-1
-
SUSE-SU-2018:2596-1
-
SUSE-SU-2018:2637-1
-
SUSE-SU-2018:2775-1
-
SUSE-SU-2018:2776-1
-
SUSE-SU-2018:2858-1
-
SUSE-SU-2018:2908-1
-
SUSE-SU-2018:2908-2
-
SUSE-SU-2018:3083-1
-
SUSE-SU-2018:3084-1
-
SUSE-SU-2018:4153-1
-
SUSE-SU-2018:4154-1
-
SUSE-SU-2018:4157-1
-
SUSE-SU-2018:4158-1
-
SUSE-SU-2018:4195-1
-
SUSE-SU-2018:4196-1
-
SUSE-SU-2018:4238-1
-
SUSE-SU-2019:0148-1
-
SUSE-SU-2019:0150-1
-
SUSE-SU-2019:0196-1
-
SUSE-SU-2019:0222-1
-
SUSE-SU-2019:0224-1
-
SUSE-SU-2019:0320-1
-
SUSE-SU-2019:0439-1
-
SUSE-SU-2019:0541-1
-
SUSE-SU-2019:1289-1
-
USN-3617-1
-
USN-3617-2
-
USN-3617-3
-
USN-3619-1
-
USN-3619-2
-
USN-3620-1
-
USN-3620-2
-
USN-3632-1
-
USN-3753-1
-
USN-3753-2
-
USN-3821-1
-
USN-3821-2
-
USN-3871-1
-
USN-3871-3
-
USN-3871-4
-
USN-3871-5
-
USN-3880-1
-
USN-3880-2
-
USN-4094-1
-
USN-4118-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2019-4576 |
|
|
| CVE | CVE-2018-10878 |
|
|
| CVE | CVE-2018-13053 |
|
|
| CVE | CVE-2017-17807 |
|
|
| CVE | CVE-2018-10876 |
|
|
| CVE | CVE-2018-9568 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
 kernel-uek
|
< 3.8.13-118.31.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 3.8.13-118.31.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux |
kernel-uek-firmware
|
< 3.8.13-118.31.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 3.8.13-118.31.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 3.8.13-118.31.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 3.8.13-118.31.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 3.8.13-118.31.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 3.8.13-118.31.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 3.8.13-118.31.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 3.8.13-118.31.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 3.8.13-118.31.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 3.8.13-118.31.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/dtrace-modules-3.8.13-118.31.1.el7uek?distro=oraclelinux-7 | oraclelinux |
dtrace-modules-3.8.13-118.31.1.el7uek
|
< 0.4.5-3.el7 | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/dtrace-modules-3.8.13-118.31.1.el6uek?distro=oraclelinux-6 | oraclelinux |
dtrace-modules-3.8.13-118.31.1.el6uek
|
< 0.4.5-3.el6 | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |