[ELSA-2023-13047] kernel security update
Severity
Important
Affected Packages
25
CVEs
3
- [5.14.0-362.13.0.1_3.OL9]
- cifs: Fix UAF in cifs_demultiplex_thread() (Zhang Xiaoxu) (Steve French) {CVE-2023-1192}
- fs/smb/client: Reset password pointer to NULL (Quang Le) (Steve French) {CVE-2023-5345}
igb: set max size RX buffer when store bad packet is enabled (Tony Nguyen) (David S. Miller) {CVE-2023-45871}
[5.14.0-362.8.1_3.OL9]
Update Oracle Linux certificates (Kevin Lyons)
Disable signing for aarch64 (Ilya Okomin)
Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
Update x509.genkey [Orabug: 24817676]
Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5
Remove nmap references from kernel (Mridula Shastry) [Orabug: 34313944]
Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535]
Disable unified kernel image package build
Add Oracle Linux IMA certificates
5.14.0
Debranding patches copied from Rocky Linux (Louis Abel and Sherif Nagy from RESF)
- ID
- ELSA-2023-13047
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2023-13047.html
- Published
-
2023-12-14T00:00:00
(9 months ago) - Modified
-
2023-12-14T00:00:00
(9 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
- ALAS-2023-1838
- ALAS2-2023-2264
- ALSA-2023:7549
- ALSA-2024:0897
- ELSA-2023-13043
- ELSA-2023-7549
- ELSA-2023-7749
- ELSA-2024-0897
- ELSA-2024-12169
- ELSA-2024-1249
- FEDORA-2023-50bd7c9c12
- FEDORA-2023-830d9ec624
- FEDORA-2023-c3bb819677
- MS:CVE-2023-1192
- RHSA-2023:7548
- RHSA-2023:7549
- RHSA-2023:7734
- RHSA-2024:0876
- RHSA-2024:0881
- RHSA-2024:0897
- RHSA-2024:1249
- RHSA-2024:1323
- RHSA-2024:1332
- RLSA-2023:7549
- SSA:2023-325-01
- SUSE-SU-2023:3988-1
- SUSE-SU-2023:4028-1
- SUSE-SU-2023:4030-1
- SUSE-SU-2023:4031-1
- SUSE-SU-2023:4032-1
- SUSE-SU-2023:4033-1
- SUSE-SU-2023:4035-1
- SUSE-SU-2023:4057-1
- SUSE-SU-2023:4058-1
- SUSE-SU-2023:4071-1
- SUSE-SU-2023:4072-1
- SUSE-SU-2023:4072-2
- SUSE-SU-2023:4093-1
- SUSE-SU-2023:4095-1
- SUSE-SU-2023:4142-1
- SUSE-SU-2023:4347-1
- SUSE-SU-2023:4730-1
- SUSE-SU-2023:4731-1
- SUSE-SU-2023:4732-1
- SUSE-SU-2023:4733-1
- SUSE-SU-2023:4734-1
- SUSE-SU-2023:4735-1
- SUSE-SU-2023:4766-1
- SUSE-SU-2023:4775-1
- SUSE-SU-2023:4782-1
- SUSE-SU-2023:4783-1
- SUSE-SU-2023:4784-1
- SUSE-SU-2023:4801-1
- SUSE-SU-2023:4805-1
- SUSE-SU-2023:4810-1
- SUSE-SU-2023:4811-1
- SUSE-SU-2023:4822-1
- SUSE-SU-2023:4841-1
- SUSE-SU-2023:4848-1
- SUSE-SU-2023:4863-1
- SUSE-SU-2023:4872-1
- SUSE-SU-2023:4882-1
- SUSE-SU-2023:4883-1
- SUSE-SU-2024:1454-1
- SUSE-SU-2024:1489-1
- USN-6461-1
- USN-6494-1
- USN-6494-2
- USN-6495-1
- USN-6495-2
- USN-6496-1
- USN-6496-2
- USN-6502-1
- USN-6502-2
- USN-6502-3
- USN-6502-4
- USN-6503-1
- USN-6516-1
- USN-6520-1
- USN-6532-1
- USN-6537-1
- USN-6572-1
- USN-6607-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2023-13047 | https://linux.oracle.com/errata/ELSA-2023-13047.html | |
CVE | CVE-2023-1192 | https://linux.oracle.com/cve/CVE-2023-1192.html | |
CVE | CVE-2023-5345 | https://linux.oracle.com/cve/CVE-2023-5345.html | |
CVE | CVE-2023-45871 | https://linux.oracle.com/cve/CVE-2023-45871.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/rtla?distro=oraclelinux-9.3 | oraclelinux | rtla | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/python3-perf?distro=oraclelinux-9.3 | oraclelinux | python3-perf | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-9.3 | oraclelinux | perf | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-9.3 | oraclelinux | kernel | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-9.3 | oraclelinux | kernel-tools | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-9.3 | oraclelinux | kernel-tools-libs | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-9.3 | oraclelinux | kernel-tools-libs-devel | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-modules?distro=oraclelinux-9.3 | oraclelinux | kernel-modules | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-modules-extra?distro=oraclelinux-9.3 | oraclelinux | kernel-modules-extra | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-modules-core?distro=oraclelinux-9.3 | oraclelinux | kernel-modules-core | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-9.3 | oraclelinux | kernel-headers | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-9.3 | oraclelinux | kernel-doc | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-9.3 | oraclelinux | kernel-devel | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-devel-matched?distro=oraclelinux-9.3 | oraclelinux | kernel-devel-matched | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-9.3 | oraclelinux | kernel-debug | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-modules?distro=oraclelinux-9.3 | oraclelinux | kernel-debug-modules | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-modules-extra?distro=oraclelinux-9.3 | oraclelinux | kernel-debug-modules-extra | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-modules-core?distro=oraclelinux-9.3 | oraclelinux | kernel-debug-modules-core | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-9.3 | oraclelinux | kernel-debug-devel | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-devel-matched?distro=oraclelinux-9.3 | oraclelinux | kernel-debug-devel-matched | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-core?distro=oraclelinux-9.3 | oraclelinux | kernel-debug-core | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-cross-headers?distro=oraclelinux-9.3 | oraclelinux | kernel-cross-headers | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-core?distro=oraclelinux-9.3 | oraclelinux | kernel-core | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/kernel-abi-stablelists?distro=oraclelinux-9.3 | oraclelinux | kernel-abi-stablelists | < 5.14.0-362.13.0.1.el9_3 | oraclelinux-9.3 | ||
Affected | pkg:rpm/oraclelinux/bpftool?distro=oraclelinux-9.3 | oraclelinux | bpftool | < 7.2.0-362.13.0.1.el9_3 | oraclelinux-9.3 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |