[ELSA-2023-12375] Unbreakable Enterprise kernel security update
Severity
Important
Affected Packages
12
CVEs
7
[4.1.12-124.75.3]
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Gwangun Jung) [Orabug: 35354791] {CVE-2023-2248}
[4.1.12-124.75.2]
- prlimit: do_prlimit needs to have a speculation check (Greg Kroah-Hartman) [Orabug: 35354303] {CVE-2023-0458}
- kernel/sys.c: fix potential Spectre v1 issue (Gustavo A. R. Silva) [Orabug: 35354303]
- xirc2ps_cs: Fix use after free bug in xirc2ps_detach (Zheng Wang) [Orabug: 35250898] {CVE-2023-1670}
- net: sched: cbq: dont intepret cls results when asked to drop (Jamal Hadi Salim) [Orabug: 34983586] {CVE-2023-23454}
[4.1.12-124.75.1]
- media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() (Baisong Zhong) [Orabug: 35312830] {CVE-2023-28328}
- scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress (Mike Christie) [Orabug: 35312683] {CVE-2023-2162}
- nvme: restrict management ioctls to admin (Keith Busch) [Orabug: 34619368] {CVE-2022-3169}
- ID
- ELSA-2023-12375
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2023-12375.html
- Published
-
2023-06-07T00:00:00
(15 months ago) - Modified
-
2023-06-07T00:00:00
(15 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
-
ALAS-2023-1701
-
ALAS-2023-1735
-
ALAS2-2023-1987
-
ALAS2-2023-2027
-
ALSA-2023:2951
-
ALSA-2023:4377
-
ALSA-2023:7077
-
ALSA-2024:0113
-
DSA-5324-1
-
ELSA-2023-12196
-
ELSA-2023-12206
-
ELSA-2023-12207
-
ELSA-2023-2951
-
ELSA-2023-4377
-
ELSA-2023-7077
-
ELSA-2024-12069
-
MS:CVE-2023-0458
-
MS:CVE-2023-23454
-
RHSA-2023:2736
-
RHSA-2023:2951
-
RHSA-2023:4377
-
RHSA-2023:4378
-
RHSA-2023:6901
-
RHSA-2023:7077
-
RHSA-2024:0113
-
RHSA-2024:0134
-
SSA:2022-333-01
-
SSA:2023-048-01
-
SSA:2023-172-02
-
SUSE-SU-2022:3775-1
-
SUSE-SU-2022:3809-1
-
SUSE-SU-2022:3810-1
-
SUSE-SU-2022:3897-1
-
SUSE-SU-2022:3998-1
-
SUSE-SU-2022:4072-1
-
SUSE-SU-2022:4272-1
-
SUSE-SU-2022:4273-1
-
SUSE-SU-2022:4561-1
-
SUSE-SU-2022:4573-1
-
SUSE-SU-2022:4574-1
-
SUSE-SU-2022:4589-1
-
SUSE-SU-2022:4611-1
-
SUSE-SU-2022:4614-1
-
SUSE-SU-2022:4615-1
-
SUSE-SU-2022:4617-1
-
SUSE-SU-2023:0145-1
-
SUSE-SU-2023:0152-1
-
SUSE-SU-2023:0406-1
-
SUSE-SU-2023:0407-1
-
SUSE-SU-2023:0410-1
-
SUSE-SU-2023:0420-1
-
SUSE-SU-2023:0433-1
-
SUSE-SU-2023:0485-1
-
SUSE-SU-2023:0488-1
-
SUSE-SU-2023:0591-1
-
SUSE-SU-2023:0618-1
-
SUSE-SU-2023:0774-1
-
SUSE-SU-2023:1608-1
-
SUSE-SU-2023:1609-1
-
SUSE-SU-2023:1710-1
-
SUSE-SU-2023:1800-1
-
SUSE-SU-2023:1801-1
-
SUSE-SU-2023:1803-1
-
SUSE-SU-2023:1811-1
-
SUSE-SU-2023:1848-1
-
SUSE-SU-2023:1892-1
-
SUSE-SU-2023:1894-1
-
SUSE-SU-2023:2140-1
-
SUSE-SU-2023:2141-1
-
SUSE-SU-2023:2146-1
-
SUSE-SU-2023:2147-1
-
SUSE-SU-2023:2148-1
-
SUSE-SU-2023:2151-1
-
SUSE-SU-2023:2156-1
-
SUSE-SU-2023:2162-1
-
SUSE-SU-2023:2163-1
-
SUSE-SU-2023:2231-1
-
SUSE-SU-2023:2232-1
-
SUSE-SU-2023:2367-1
-
SUSE-SU-2023:2368-1
-
SUSE-SU-2023:2369-1
-
SUSE-SU-2023:2371-1
-
SUSE-SU-2023:2376-1
-
SUSE-SU-2023:2384-1
-
SUSE-SU-2023:2385-1
-
SUSE-SU-2023:2386-1
-
SUSE-SU-2023:2389-1
-
SUSE-SU-2023:2395-1
-
SUSE-SU-2023:2399-1
-
SUSE-SU-2023:2401-1
-
SUSE-SU-2023:2405-1
-
SUSE-SU-2023:2413-1
-
SUSE-SU-2023:2415-1
-
SUSE-SU-2023:2416-1
-
SUSE-SU-2023:2420-1
-
SUSE-SU-2023:2422-1
-
SUSE-SU-2023:2423-1
-
SUSE-SU-2023:2425-1
-
SUSE-SU-2023:2428-1
-
SUSE-SU-2023:2429-1
-
SUSE-SU-2023:2431-1
-
SUSE-SU-2023:2442-1
-
SUSE-SU-2023:2443-1
-
SUSE-SU-2023:2448-1
-
SUSE-SU-2023:2450-1
-
SUSE-SU-2023:2453-1
-
SUSE-SU-2023:2455-1
-
SUSE-SU-2023:2459-1
-
SUSE-SU-2023:2468-1
-
SUSE-SU-2023:2500-1
-
SUSE-SU-2023:2506-1
-
SUSE-SU-2023:2646-1
-
SUSE-SU-2023:2653-1
-
SUSE-SU-2023:2782-1
-
SUSE-SU-2023:2805-1
-
SUSE-SU-2023:2809-1
-
SUSE-SU-2023:2871-1
-
SUSE-SU-2023:4030-1
-
SUSE-SU-2023:4095-1
-
USN-5911-1
-
USN-5912-1
-
USN-5915-1
-
USN-5917-1
-
USN-5929-1
-
USN-5934-1
-
USN-5935-1
-
USN-5938-1
-
USN-5939-1
-
USN-5940-1
-
USN-5941-1
-
USN-5950-1
-
USN-5951-1
-
USN-5962-1
-
USN-5975-1
-
USN-5981-1
-
USN-5982-1
-
USN-5984-1
-
USN-5987-1
-
USN-5991-1
-
USN-6000-1
-
USN-6004-1
-
USN-6009-1
-
USN-6024-1
-
USN-6030-1
-
USN-6033-1
-
USN-6045-1
-
USN-6079-1
-
USN-6080-1
-
USN-6081-1
-
USN-6084-1
-
USN-6085-1
-
USN-6090-1
-
USN-6091-1
-
USN-6092-1
-
USN-6093-1
-
USN-6094-1
-
USN-6095-1
-
USN-6096-1
-
USN-6109-1
-
USN-6118-1
-
USN-6123-1
-
USN-6124-1
-
USN-6132-1
-
USN-6133-1
-
USN-6134-1
-
USN-6149-1
-
USN-6171-1
-
USN-6172-1
-
USN-6175-1
-
USN-6185-1
-
USN-6186-1
-
USN-6187-1
-
USN-6207-1
-
USN-6222-1
-
USN-6223-1
-
USN-6252-1
-
USN-6254-1
-
USN-6256-1
-
USN-6341-1
-
USN-6385-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2023-12375 |
|
|
| CVE | CVE-2023-2162 |
|
|
| CVE | CVE-2023-23454 |
|
|
| CVE | CVE-2022-3169 |
|
|
| CVE | CVE-2023-0458 |
|
|
| CVE | CVE-2023-28328 |
|
|
| CVE | CVE-2023-1670 |
|
|
| CVE | CVE-2023-2248 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
 kernel-uek
|
< 4.1.12-124.75.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 4.1.12-124.75.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.75.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.75.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.75.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.75.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.75.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.75.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.75.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.75.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.75.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.75.3.el6uek | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |