[ELSA-2023-12232] Unbreakable Enterprise kernel security update
[4.1.12-124.73.2]
- netfilter: nf_tables: fix null deref due to zeroed list head (Florian Westphal) [Orabug: 35181628] {CVE-2023-1095}
- sctp: fail if no bound addresses can be used for a given scope (Marcelo Ricardo Leitner) [Orabug: 35181461] {CVE-2023-1074}
- HID: check empty report_list in hid_validate_values() (Pietro Borrello) [Orabug: 35181168] {CVE-2023-1073}
- media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors (Will Deacon) [Orabug: 35180270] {CVE-2020-0404}
[4.1.12-124.73.1]
- mm/mincore.c: make mincore() more conservative (Jiri Kosina) [Orabug: 35133279] {CVE-2019-5489}
- mm: introduce vma_is_anonymous(vma) helper (Oleg Nesterov) [Orabug: 35133279]
- Revert 'Change mincore() to count 'mapped' pages rather than 'cached' pages' (Linus Torvalds) [Orabug: 35124616]
- ipv6: raw: Deduct extension header length in rawv6_push_pending_frames (Herbert Xu) [Orabug: 35005831] {CVE-2023-0394}
- ID
- ELSA-2023-12232
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2023-12232.html
- Published
-
2023-04-04T00:00:00
(17 months ago) - Modified
-
2023-04-04T00:00:00
(17 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
- ALAS-2019-1214
- ALAS-2023-1706
- ALAS2-2019-1214
- ALAS2-2022-1838
- ALAS2-2023-1932
- ALAS2-2024-2448
- ALSA-2022:1988
- ALSA-2023:2458
- ALSA-2023:2951
- ALSA-2023:7077
- ALSA-2024:0897
- ASB-A-111893654
- DSA-4465-1
- DSA-5324-1
- ELSA-2019-2029
- ELSA-2019-2473
- ELSA-2019-3517
- ELSA-2019-4528
- ELSA-2019-4541
- ELSA-2022-1988
- ELSA-2023-12196
- ELSA-2023-12199
- ELSA-2023-12200
- ELSA-2023-12206
- ELSA-2023-12207
- ELSA-2023-2458
- ELSA-2023-2951
- ELSA-2023-6583
- ELSA-2023-7077
- ELSA-2024-0897
- ELSA-2024-12169
- MS:CVE-2023-0394
- MS:CVE-2023-1095
- openSUSE-SU-2019:1479-1
- openSUSE-SU-2019:1579-1
- openSUSE-SU-2020:1586-1
- openSUSE-SU-2020:1655-1
- openSUSE-SU-2021:0242-1
- RHSA-2019:2029
- RHSA-2019:2043
- RHSA-2019:2473
- RHSA-2019:3309
- RHSA-2019:3517
- RHSA-2022:1975
- RHSA-2022:1988
- RHSA-2022:7933
- RHSA-2022:8267
- RHSA-2023:2148
- RHSA-2023:2458
- RHSA-2023:2736
- RHSA-2023:2951
- RHSA-2023:6901
- RHSA-2023:7077
- RHSA-2024:0881
- RHSA-2024:0897
- RLSA-2022:1988
- SSA:2023-048-01
- SUSE-SU-2019:1527-1
- SUSE-SU-2019:1529-1
- SUSE-SU-2019:1530-1
- SUSE-SU-2019:1532-1
- SUSE-SU-2019:1533-1
- SUSE-SU-2019:1534-1
- SUSE-SU-2019:1535-1
- SUSE-SU-2019:1536-1
- SUSE-SU-2019:1550-1
- SUSE-SU-2019:1692-1
- SUSE-SU-2019:2430-1
- SUSE-SU-2020:2879-1
- SUSE-SU-2020:2904-1
- SUSE-SU-2020:2905-1
- SUSE-SU-2020:2906-1
- SUSE-SU-2020:2907-1
- SUSE-SU-2020:2908-1
- SUSE-SU-2020:2999-1
- SUSE-SU-2020:3014-1
- SUSE-SU-2020:3501-1
- SUSE-SU-2020:3503-1
- SUSE-SU-2020:3532-1
- SUSE-SU-2020:3544-1
- SUSE-SU-2023:0145-1
- SUSE-SU-2023:0618-1
- SUSE-SU-2023:0779-1
- SUSE-SU-2023:1608-1
- SUSE-SU-2023:1609-1
- SUSE-SU-2023:1710-1
- SUSE-SU-2023:1800-1
- SUSE-SU-2023:1801-1
- SUSE-SU-2023:1802-1
- SUSE-SU-2023:1803-1
- SUSE-SU-2023:1811-1
- SUSE-SU-2023:1848-1
- SUSE-SU-2023:1892-1
- SUSE-SU-2023:1894-1
- SUSE-SU-2023:1897-1
- SUSE-SU-2023:1992-1
- SUSE-SU-2023:2232-1
- SUSE-SU-2023:2646-1
- SUSE-SU-2023:2805-1
- SUSE-SU-2023:2809-1
- SUSE-SU-2023:2871-1
- SUSE-SU-2023:4031-1
- USN-5917-1
- USN-5924-1
- USN-5927-1
- USN-5934-1
- USN-5939-1
- USN-5940-1
- USN-5951-1
- USN-5975-1
- USN-5976-1
- USN-5978-1
- USN-5981-1
- USN-5984-1
- USN-5991-1
- USN-6000-1
- USN-6001-1
- USN-6009-1
- USN-6013-1
- USN-6014-1
- USN-6025-1
- USN-6027-1
- USN-6029-1
- USN-6030-1
- USN-6031-1
- USN-6032-1
- USN-6040-1
- USN-6057-1
- USN-6079-1
- USN-6091-1
- USN-6093-1
- USN-6096-1
- USN-6134-1
- USN-6149-1
- USN-6174-1
- USN-6222-1
- USN-6235-1
- USN-6256-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2023-12232 | https://linux.oracle.com/errata/ELSA-2023-12232.html | |
CVE | CVE-2023-1095 | https://linux.oracle.com/cve/CVE-2023-1095.html | |
CVE | CVE-2023-0394 | https://linux.oracle.com/cve/CVE-2023-0394.html | |
CVE | CVE-2019-5489 | https://linux.oracle.com/cve/CVE-2019-5489.html | |
CVE | CVE-2020-0404 | https://linux.oracle.com/cve/CVE-2020-0404.html | |
CVE | CVE-2023-1073 | https://linux.oracle.com/cve/CVE-2023-1073.html | |
CVE | CVE-2023-1074 | https://linux.oracle.com/cve/CVE-2023-1074.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux | kernel-uek | < 4.1.12-124.73.2.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux | kernel-uek | < 4.1.12-124.73.2.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux | kernel-uek-firmware | < 4.1.12-124.73.2.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux | kernel-uek-firmware | < 4.1.12-124.73.2.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux | kernel-uek-doc | < 4.1.12-124.73.2.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux | kernel-uek-doc | < 4.1.12-124.73.2.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux | kernel-uek-devel | < 4.1.12-124.73.2.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-devel | < 4.1.12-124.73.2.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux | kernel-uek-debug | < 4.1.12-124.73.2.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug | < 4.1.12-124.73.2.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux | kernel-uek-debug-devel | < 4.1.12-124.73.2.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug-devel | < 4.1.12-124.73.2.el6uek | oraclelinux-6 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |