[ELSA-2024-12570] Unbreakable Enterprise kernel security update
[4.1.12-124.88.3]
- crypto: pcrypt - Fix hungtask for PADATA_RESET (Lu Jialin) [Orabug: 36806710] {CVE-2023-52813}
- usbnet: sanity check for maxpacket (Oliver Neukum) [Orabug: 36806658] {CVE-2021-47495}
- phonet: fix rtm_phonet_notify() skb allocation (Eric Dumazet) [Orabug: 36683487] {CVE-2024-36946}
- wifi: nl80211: don't free NULL coalescing rule (Johannes Berg) [Orabug: 36683466] {CVE-2024-36941}
- bna: ensure the copied buf is NUL terminated (Bui Quang Minh) [Orabug: 36683433] {CVE-2024-36934}
- bna: use memdup_user to copy userspace buffers (Ivan Vecera) [Orabug: 36683433] {CVE-2024-36934}
- new helper: memdup_user_nul() (Al Viro) [Orabug: 36683433] {CVE-2024-36934}
- netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (Ziyang Xuan) [Orabug: 36598047] {CVE-2024-27020}
- netfilter: nf_tables: __nft_expr_type_get() selects specific family type (Pablo Neira Ayuso) [Orabug: 36598047] {CVE-2024-27020}
- net/mlx5e: drop shorter ethernet frames (Manjunath Patil) [Orabug: 36879159] {CVE-2024-41090} {CVE-2024-41091}
[4.1.12-124.88.2]
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida) [Orabug: 36802310] {CVE-2023-52528}
- usbnet/smsc75xx: silence uninitialized variable warning (Dan Carpenter) {CVE-2023-52528}
- tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (Thadeu Lima de Souza Cascardo) [Orabug: 36685663] {CVE-2023-52880}
- netfilter: nf_tables: disallow anonymous set with timeout flag (Pablo Neira Ayuso) [Orabug: 36530112] {CVE-2024-26642}
- ubi: Check for too small LEB size in VTBL code (Richard Weinberger) [Orabug: 36356637] {CVE-2024-25739}
[4.1.12-124.88.1]
- NFS: LOOKUP_DIRECTORY is also ok with symlinks (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448}
- NFSv4: Handle case where the lookup of a directory fails (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448}
Package | Affected Version |
---|---|
pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | < 4.1.12-124.88.3.el6uek |
pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | < 4.1.12-124.88.3.el6uek |
pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | < 4.1.12-124.88.3.el6uek |
pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | < 4.1.12-124.88.3.el6uek |
pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | < 4.1.12-124.88.3.el6uek |
pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | < 4.1.12-124.88.3.el6uek |
- ID
- ELSA-2024-12570
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2024-12570.html
- Published
-
2024-08-05T00:00:00
(6 weeks ago) - Modified
-
2024-08-05T00:00:00
(6 weeks ago) - Rights
- Copyright 2024 Oracle, Inc.
- Other Advisories
-
- ALAS-2022-1571
- ALAS-2024-1899
- ALAS-2024-1942
- ALAS2-2022-1761
- ALAS2-2023-2328
- ALAS2-2024-2391
- ALAS2-2024-2581
- ALAS2-2024-2584
- ALAS2-2024-2615
- ALSA-2022:7683
- ALSA-2022:8267
- ALSA-2024:3618
- ALSA-2024:4211
- ALSA-2024:5101
- DSA-5092-1
- DSA-5096-1
- DSA-5658-1
- DSA-5680-1
- DSA-5681-1
- DSA-5703-1
- DSA-5747-1
- ELSA-2022-7683
- ELSA-2022-8267
- ELSA-2022-9273
- ELSA-2022-9274
- ELSA-2022-9313
- ELSA-2022-9314
- ELSA-2024-12546
- ELSA-2024-12547
- ELSA-2024-12548
- ELSA-2024-12549
- ELSA-2024-12551
- ELSA-2024-12552
- ELSA-2024-12571
- ELSA-2024-12581
- ELSA-2024-12582
- ELSA-2024-12583
- ELSA-2024-12584
- ELSA-2024-12585
- ELSA-2024-3306
- ELSA-2024-3618
- ELSA-2024-4211
- ELSA-2024-5101
- ELSA-2024-5363
- ELSA-2024-5928
- FEDORA-2024-010fe8772a
- FEDORA-2024-bc0db39a14
- FEDORA-2024-f35f9525d6
- MS:CVE-2022-24448
- openSUSE-SU-2022:0768-1
- openSUSE-SU-2022:1037-1
- openSUSE-SU-2022:1039-1
- RHSA-2022:7444
- RHSA-2022:7683
- RHSA-2022:7933
- RHSA-2022:8267
- RHSA-2024:3618
- RHSA-2024:3627
- RHSA-2024:4211
- RHSA-2024:4352
- RHSA-2024:5101
- RHSA-2024:5102
- RHSA-2024:6242
- RLSA-2022:7683
- RLSA-2024:3618
- RLSA-2024:4211
- RLSA-2024:5101
- SUSE-SU-2022:0555-1
- SUSE-SU-2022:0756-1
- SUSE-SU-2022:0757-1
- SUSE-SU-2022:0759-1
- SUSE-SU-2022:0762-1
- SUSE-SU-2022:0765-1
- SUSE-SU-2022:0766-1
- SUSE-SU-2022:0767-1
- SUSE-SU-2022:0768-1
- SUSE-SU-2022:1037-1
- SUSE-SU-2022:1038-1
- SUSE-SU-2022:1039-1
- SUSE-SU-2022:1257-1
- SUSE-SU-2022:2079-1
- SUSE-SU-2022:2080-1
- SUSE-SU-2024:1320-1
- SUSE-SU-2024:1321-1
- SUSE-SU-2024:1322-1
- SUSE-SU-2024:1454-1
- SUSE-SU-2024:1465-1
- SUSE-SU-2024:1466-1
- SUSE-SU-2024:1480-1
- SUSE-SU-2024:1489-1
- SUSE-SU-2024:1490-1
- SUSE-SU-2024:1641-1
- SUSE-SU-2024:1643-1
- SUSE-SU-2024:1646-1
- SUSE-SU-2024:1647-1
- SUSE-SU-2024:1648-1
- SUSE-SU-2024:1870-1
- SUSE-SU-2024:1978-1
- SUSE-SU-2024:1979-1
- SUSE-SU-2024:1983-1
- SUSE-SU-2024:2008-1
- SUSE-SU-2024:2010-1
- SUSE-SU-2024:2011-1
- SUSE-SU-2024:2019-1
- SUSE-SU-2024:2135-1
- SUSE-SU-2024:2183-1
- SUSE-SU-2024:2184-1
- SUSE-SU-2024:2185-1
- SUSE-SU-2024:2189-1
- SUSE-SU-2024:2190-1
- SUSE-SU-2024:2203-1
- SUSE-SU-2024:2360-1
- SUSE-SU-2024:2372-1
- SUSE-SU-2024:2381-1
- SUSE-SU-2024:2394-1
- SUSE-SU-2024:2493-1
- SUSE-SU-2024:2561-1
- SUSE-SU-2024:2571-1
- SUSE-SU-2024:2802-1
- SUSE-SU-2024:2892-1
- SUSE-SU-2024:2893-1
- SUSE-SU-2024:2894-1
- SUSE-SU-2024:2896-1
- SUSE-SU-2024:2901-1
- SUSE-SU-2024:2902-1
- SUSE-SU-2024:2923-1
- SUSE-SU-2024:2929-1
- SUSE-SU-2024:2939-1
- SUSE-SU-2024:2940-1
- SUSE-SU-2024:2947-1
- SUSE-SU-2024:2948-1
- SUSE-SU-2024:2973-1
- USN-5302-1
- USN-5383-1
- USN-5384-1
- USN-5385-1
- USN-6816-1
- USN-6817-1
- USN-6817-2
- USN-6817-3
- USN-6865-1
- USN-6866-1
- USN-6866-2
- USN-6866-3
- USN-6878-1
- USN-6893-1
- USN-6893-2
- USN-6893-3
- USN-6895-1
- USN-6895-2
- USN-6895-3
- USN-6895-4
- USN-6896-1
- USN-6896-2
- USN-6896-3
- USN-6896-4
- USN-6896-5
- USN-6898-1
- USN-6898-2
- USN-6898-3
- USN-6898-4
- USN-6900-1
- USN-6917-1
- USN-6918-1
- USN-6919-1
- USN-6922-1
- USN-6922-2
- USN-6926-1
- USN-6926-2
- USN-6926-3
- USN-6927-1
- USN-6938-1
- USN-6949-1
- USN-6949-2
- USN-6950-1
- USN-6950-2
- USN-6950-3
- USN-6950-4
- USN-6951-1
- USN-6951-2
- USN-6951-3
- USN-6951-4
- USN-6952-1
- USN-6952-2
- USN-6953-1
- USN-6955-1
- USN-6956-1
- USN-6957-1
- USN-6979-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2024-12570 | https://linux.oracle.com/errata/ELSA-2024-12570.html | |
CVE | CVE-2024-36941 | https://linux.oracle.com/cve/CVE-2024-36941.html | |
CVE | CVE-2024-36934 | https://linux.oracle.com/cve/CVE-2024-36934.html | |
CVE | CVE-2024-41091 | https://linux.oracle.com/cve/CVE-2024-41091.html | |
CVE | CVE-2024-26642 | https://linux.oracle.com/cve/CVE-2024-26642.html | |
CVE | CVE-2021-47495 | https://linux.oracle.com/cve/CVE-2021-47495.html | |
CVE | CVE-2024-27020 | https://linux.oracle.com/cve/CVE-2024-27020.html | |
CVE | CVE-2023-52880 | https://linux.oracle.com/cve/CVE-2023-52880.html | |
CVE | CVE-2022-24448 | https://linux.oracle.com/cve/CVE-2022-24448.html | |
CVE | CVE-2024-41090 | https://linux.oracle.com/cve/CVE-2024-41090.html | |
CVE | CVE-2024-25739 | https://linux.oracle.com/cve/CVE-2024-25739.html | |
CVE | CVE-2023-52528 | https://linux.oracle.com/cve/CVE-2023-52528.html | |
CVE | CVE-2023-52813 | https://linux.oracle.com/cve/CVE-2023-52813.html | |
CVE | CVE-2024-36946 | https://linux.oracle.com/cve/CVE-2024-36946.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux | kernel-uek | < 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux | kernel-uek-firmware | < 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux | kernel-uek-doc | < 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-devel | < 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug | < 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug-devel | < 4.1.12-124.88.3.el6uek | oraclelinux-6 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |