[ELSA-2020-5708] Unbreakable Enterprise kernel security update
[4.1.12-124.39.5]
- Input: ff-memless - kill timer in destroy() (Oliver Neukum) [Orabug: 31213691] {CVE-2019-19524}
- libertas: Fix two buffer overflows at parsing bss descriptor (Wen Huang) [Orabug: 31351307] {CVE-2019-14896} {CVE-2019-14897} {CVE-2019-14897}
- binfmt_elf: use ELF_ET_DYN_BASE only for PIE (Kees Cook) [Orabug: 31352068] {CVE-2017-1000370} {CVE-2017-1000371} {CVE-2017-1000370}
- NFSv4.0: Remove transport protocol name from non-UCS client ID (Chuck Lever) [Orabug: 31357212]
- NFSv4.0: Remove cl_ipaddr from non-UCS client ID (Chuck Lever) [Orabug: 31357212]
- xen/manage: enable C_A_D to force reboot (Dongli Zhang) [Orabug: 31387466]
[4.1.12-124.39.4]
- acpi: disable erst (Wengang Wang) [Orabug: 31194253]
- mdio_bus: Fix use-after-free on device_register fails (YueHaibing) [Orabug: 31222292] {CVE-2019-12819}
- rds: ib: Fix dysfunctional long address resolve timeout (Hakon Bugge) [Orabug: 31302708]
- vxlan: dont migrate permanent fdb entries during learn (Roopa Prabhu) [Orabug: 31325318]
- USB: iowarrior: fix use-after-free on disconnect (Johan Hovold) [Orabug: 31351061] {CVE-2019-19528}
- usb: iowarrior: fix deadlock on disconnect (Oliver Neukum) [Orabug: 31351061] {CVE-2019-19528}
- mremap: properly flush TLB before releasing the page (Linus Torvalds) [Orabug: 31352011] {CVE-2018-18281}
[4.1.12-124.39.3]
- Input: add safety guards to input_set_keycode() (Dmitry Torokhov) [Orabug: 31200558] {CVE-2019-20636}
- media: stv06xx: add missing descriptor sanity checks (Johan Hovold) [Orabug: 31200579] {CVE-2020-11609}
- media: ov519: add missing endpoint sanity checks (Johan Hovold) [Orabug: 31213758] {CVE-2020-11608}
- media: xirlink_cit: add missing descriptor sanity checks (Johan Hovold) [Orabug: 31213767] {CVE-2020-11668}
- mwifiex: pcie: Fix memory leak in mwifiex_pcie_init_evt_ring (Navid Emamdoost) [Orabug: 31263147] {CVE-2019-19057}
- USB: core: Fix races in character device registration and deregistraion (Alan Stern) [Orabug: 31317667] {CVE-2019-19537}
- ID
- ELSA-2020-5708
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2020-5708.html
- Published
-
2020-06-03T00:00:00
(4 years ago) - Modified
-
2020-06-03T00:00:00
(4 years ago) - Rights
- Copyright 2020 Oracle, Inc.
- Other Advisories
-
-
ALSA-2020:4431
-
ALSA-2021:1578
-
ASB-A-153715664
-
DSA-3981-1
-
DSA-4698-1
-
ELSA-2019-2029
-
ELSA-2020-1769
-
ELSA-2020-4060
-
ELSA-2020-5691
-
ELSA-2020-5706
-
ELSA-2020-5710
-
ELSA-2020-5715
-
ELSA-2021-1578
-
ELSA-2021-2725
-
FEDORA-2019-021c968423
-
FEDORA-2019-124a241044
-
FEDORA-2019-34a75d7e61
-
FEDORA-2019-39e97683e8
-
FEDORA-2019-8846a1a5a2
-
FEDORA-2019-91f6e7bb71
-
FEDORA-2019-b86a7bdba0
-
FEDORA-2020-203ffedeb5
-
FEDORA-2020-227a4c0530
-
FEDORA-2020-2a5cdd665c
-
FEDORA-2020-3cd64d683c
-
FEDORA-2020-c2d89d14d0
-
FEDORA-2020-e328697628
-
FEDORA-2020-f884f9dd7d
-
FEDORA-2020-fe00e12580
-
MS:CVE-2020-11608
-
MS:CVE-2020-11609
-
MS:CVE-2020-11668
-
openSUSE-SU-2019:1571-1
-
openSUSE-SU-2019:1579-1
-
openSUSE-SU-2019:2675-1
-
openSUSE-SU-2020:0336-1
-
openSUSE-SU-2020:0801-1
-
openSUSE-SU-2021:0060-1
-
openSUSE-SU-2021:0075-1
-
openSUSE-SU-2021:0242-1
-
RHSA-2019:2029
-
RHSA-2019:2043
-
RHSA-2020:1567
-
RHSA-2020:1769
-
RHSA-2020:4060
-
RHSA-2020:4062
-
RHSA-2020:4431
-
RHSA-2020:4609
-
RHSA-2021:1578
-
RHSA-2021:1739
-
RHSA-2021:2725
-
RHSA-2021:2726
-
SSA:2019-030-01
-
SSA:2020-008-01
-
SSA:2020-086-01
-
SSA:2020-163-01
-
SUSE-SU-2018:3688-1
-
SUSE-SU-2018:3689-1
-
SUSE-SU-2018:3746-1
-
SUSE-SU-2018:3773-1
-
SUSE-SU-2018:3869-1
-
SUSE-SU-2018:4069-1
-
SUSE-SU-2018:4072-1
-
SUSE-SU-2019:0095-1
-
SUSE-SU-2019:0150-1
-
SUSE-SU-2019:0222-1
-
SUSE-SU-2019:0224-1
-
SUSE-SU-2019:0439-1
-
SUSE-SU-2019:1289-1
-
SUSE-SU-2019:1550-1
-
SUSE-SU-2019:1823-1
-
SUSE-SU-2019:1823-2
-
SUSE-SU-2019:1829-1
-
SUSE-SU-2019:1851-1
-
SUSE-SU-2019:1852-1
-
SUSE-SU-2019:1855-1
-
SUSE-SU-2019:2069-1
-
SUSE-SU-2019:2430-1
-
SUSE-SU-2019:2450-1
-
SUSE-SU-2019:3200-1
-
SUSE-SU-2019:3289-1
-
SUSE-SU-2019:3316-1
-
SUSE-SU-2019:3317-1
-
SUSE-SU-2019:3371-1
-
SUSE-SU-2019:3372-1
-
SUSE-SU-2019:3379-1
-
SUSE-SU-2019:3381-1
-
SUSE-SU-2019:3389-1
-
SUSE-SU-2020:0093-1
-
SUSE-SU-2020:0183-1
-
SUSE-SU-2020:0204-1
-
SUSE-SU-2020:0511-1
-
SUSE-SU-2020:0558-1
-
SUSE-SU-2020:0559-1
-
SUSE-SU-2020:0560-1
-
SUSE-SU-2020:0580-1
-
SUSE-SU-2020:0584-1
-
SUSE-SU-2020:0599-1
-
SUSE-SU-2020:0605-1
-
SUSE-SU-2020:0613-1
-
SUSE-SU-2020:1255-1
-
SUSE-SU-2020:1275-1
-
SUSE-SU-2020:1663-1
-
SUSE-SU-2020:2491-1
-
SUSE-SU-2020:2492-1
-
SUSE-SU-2020:2497-1
-
SUSE-SU-2020:2498-1
-
SUSE-SU-2020:2499-1
-
SUSE-SU-2020:2502-1
-
SUSE-SU-2020:2505-1
-
SUSE-SU-2020:2506-1
-
SUSE-SU-2020:2507-1
-
SUSE-SU-2020:2513-1
-
SUSE-SU-2020:2524-1
-
SUSE-SU-2020:2525-1
-
SUSE-SU-2020:2526-1
-
SUSE-SU-2020:2531-1
-
SUSE-SU-2020:3178-1
-
SUSE-SU-2020:3219-1
-
SUSE-SU-2020:3648-1
-
SUSE-SU-2020:3656-1
-
SUSE-SU-2020:3705-1
-
SUSE-SU-2021:0096-1
-
SUSE-SU-2021:0097-1
-
SUSE-SU-2021:0108-1
-
SUSE-SU-2021:0117-1
-
SUSE-SU-2021:0437-1
-
SUSE-SU-2021:0438-1
-
SUSE-SU-2021:0452-1
-
USN-3832-1
-
USN-3835-1
-
USN-3871-1
-
USN-3871-3
-
USN-3871-4
-
USN-3871-5
-
USN-3880-1
-
USN-3880-2
-
USN-4094-1
-
USN-4118-1
-
USN-4225-1
-
USN-4225-2
-
USN-4226-1
-
USN-4227-1
-
USN-4227-2
-
USN-4228-1
-
USN-4228-2
-
USN-4254-1
-
USN-4254-2
-
USN-4284-1
-
USN-4285-1
-
USN-4287-1
-
USN-4287-2
-
USN-4345-1
-
USN-4364-1
-
USN-4368-1
-
USN-4369-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2020-5708 |
|
|
| CVE | CVE-2020-11609 |
|
|
| CVE | CVE-2017-1000370 |
|
|
| CVE | CVE-2019-12819 |
|
|
| CVE | CVE-2019-14897 |
|
|
| CVE | CVE-2019-19528 |
|
|
| CVE | CVE-2019-19537 |
|
|
| CVE | CVE-2019-19057 |
|
|
| CVE | CVE-2018-18281 |
|
|
| CVE | CVE-2019-19524 |
|
|
| CVE | CVE-2020-11668 |
|
|
| CVE | CVE-2019-20636 |
|
|
| CVE | CVE-2020-11608 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
 kernel-uek
|
< 4.1.12-124.39.5.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 4.1.12-124.39.5.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.39.5.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.39.5.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.39.5.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.39.5.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.39.5.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.39.5.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.39.5.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.39.5.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.39.5.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.39.5.el6uek | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |