[ELSA-2024-12570] Unbreakable Enterprise kernel security update
[4.1.12-124.88.3]
- crypto: pcrypt - Fix hungtask for PADATA_RESET (Lu Jialin) [Orabug: 36806710] {CVE-2023-52813}
- usbnet: sanity check for maxpacket (Oliver Neukum) [Orabug: 36806658] {CVE-2021-47495}
- phonet: fix rtm_phonet_notify() skb allocation (Eric Dumazet) [Orabug: 36683487] {CVE-2024-36946}
- wifi: nl80211: don't free NULL coalescing rule (Johannes Berg) [Orabug: 36683466] {CVE-2024-36941}
- bna: ensure the copied buf is NUL terminated (Bui Quang Minh) [Orabug: 36683433] {CVE-2024-36934}
- bna: use memdup_user to copy userspace buffers (Ivan Vecera) [Orabug: 36683433] {CVE-2024-36934}
- new helper: memdup_user_nul() (Al Viro) [Orabug: 36683433] {CVE-2024-36934}
- netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (Ziyang Xuan) [Orabug: 36598047] {CVE-2024-27020}
- netfilter: nf_tables: __nft_expr_type_get() selects specific family type (Pablo Neira Ayuso) [Orabug: 36598047] {CVE-2024-27020}
- net/mlx5e: drop shorter ethernet frames (Manjunath Patil) [Orabug: 36879159] {CVE-2024-41090} {CVE-2024-41091}
[4.1.12-124.88.2]
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida) [Orabug: 36802310] {CVE-2023-52528}
- usbnet/smsc75xx: silence uninitialized variable warning (Dan Carpenter) {CVE-2023-52528}
- tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (Thadeu Lima de Souza Cascardo) [Orabug: 36685663] {CVE-2023-52880}
- netfilter: nf_tables: disallow anonymous set with timeout flag (Pablo Neira Ayuso) [Orabug: 36530112] {CVE-2024-26642}
- ubi: Check for too small LEB size in VTBL code (Richard Weinberger) [Orabug: 36356637] {CVE-2024-25739}
[4.1.12-124.88.1]
- NFS: LOOKUP_DIRECTORY is also ok with symlinks (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448}
- NFSv4: Handle case where the lookup of a directory fails (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448}
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6
|
< 4.1.12-124.88.3.el6uek |
|
pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6
|
< 4.1.12-124.88.3.el6uek |
|
pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6
|
< 4.1.12-124.88.3.el6uek |
|
pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6
|
< 4.1.12-124.88.3.el6uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6
|
< 4.1.12-124.88.3.el6uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6
|
< 4.1.12-124.88.3.el6uek |
- ID
- ELSA-2024-12570
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2024-12570.html
- Published
-
2024-08-05T00:00:00
(6 weeks ago) - Modified
-
2024-08-05T00:00:00
(6 weeks ago) - Rights
- Copyright 2024 Oracle, Inc.
- Other Advisories
-
-
ALAS-2022-1571
-
ALAS-2024-1899
-
ALAS-2024-1942
-
ALAS2-2022-1761
-
ALAS2-2023-2328
-
ALAS2-2024-2391
-
ALAS2-2024-2581
-
ALAS2-2024-2584
-
ALAS2-2024-2615
-
ALSA-2022:7683
-
ALSA-2022:8267
-
ALSA-2024:3618
-
ALSA-2024:4211
-
ALSA-2024:5101
-
DSA-5092-1
-
DSA-5096-1
-
DSA-5658-1
-
DSA-5680-1
-
DSA-5681-1
-
DSA-5703-1
-
DSA-5747-1
-
ELSA-2022-7683
-
ELSA-2022-8267
-
ELSA-2022-9273
-
ELSA-2022-9274
-
ELSA-2022-9313
-
ELSA-2022-9314
-
ELSA-2024-12546
-
ELSA-2024-12547
-
ELSA-2024-12548
-
ELSA-2024-12549
-
ELSA-2024-12551
-
ELSA-2024-12552
-
ELSA-2024-12571
-
ELSA-2024-12581
-
ELSA-2024-12582
-
ELSA-2024-12583
-
ELSA-2024-12584
-
ELSA-2024-12585
-
ELSA-2024-3306
-
ELSA-2024-3618
-
ELSA-2024-4211
-
ELSA-2024-5101
-
ELSA-2024-5363
-
ELSA-2024-5928
-
FEDORA-2024-010fe8772a
-
FEDORA-2024-bc0db39a14
-
FEDORA-2024-f35f9525d6
-
MS:CVE-2022-24448
-
openSUSE-SU-2022:0768-1
-
openSUSE-SU-2022:1037-1
-
openSUSE-SU-2022:1039-1
-
RHSA-2022:7444
-
RHSA-2022:7683
-
RHSA-2022:7933
-
RHSA-2022:8267
-
RHSA-2024:3618
-
RHSA-2024:3627
-
RHSA-2024:4211
-
RHSA-2024:4352
-
RHSA-2024:5101
-
RHSA-2024:5102
-
RHSA-2024:6242
-
RLSA-2022:7683
-
RLSA-2024:3618
-
RLSA-2024:4211
-
RLSA-2024:5101
-
SUSE-SU-2022:0555-1
-
SUSE-SU-2022:0756-1
-
SUSE-SU-2022:0757-1
-
SUSE-SU-2022:0759-1
-
SUSE-SU-2022:0762-1
-
SUSE-SU-2022:0765-1
-
SUSE-SU-2022:0766-1
-
SUSE-SU-2022:0767-1
-
SUSE-SU-2022:0768-1
-
SUSE-SU-2022:1037-1
-
SUSE-SU-2022:1038-1
-
SUSE-SU-2022:1039-1
-
SUSE-SU-2022:1257-1
-
SUSE-SU-2022:2079-1
-
SUSE-SU-2022:2080-1
-
SUSE-SU-2024:1320-1
-
SUSE-SU-2024:1321-1
-
SUSE-SU-2024:1322-1
-
SUSE-SU-2024:1454-1
-
SUSE-SU-2024:1465-1
-
SUSE-SU-2024:1466-1
-
SUSE-SU-2024:1480-1
-
SUSE-SU-2024:1489-1
-
SUSE-SU-2024:1490-1
-
SUSE-SU-2024:1641-1
-
SUSE-SU-2024:1643-1
-
SUSE-SU-2024:1646-1
-
SUSE-SU-2024:1647-1
-
SUSE-SU-2024:1648-1
-
SUSE-SU-2024:1870-1
-
SUSE-SU-2024:1978-1
-
SUSE-SU-2024:1979-1
-
SUSE-SU-2024:1983-1
-
SUSE-SU-2024:2008-1
-
SUSE-SU-2024:2010-1
-
SUSE-SU-2024:2011-1
-
SUSE-SU-2024:2019-1
-
SUSE-SU-2024:2135-1
-
SUSE-SU-2024:2183-1
-
SUSE-SU-2024:2184-1
-
SUSE-SU-2024:2185-1
-
SUSE-SU-2024:2189-1
-
SUSE-SU-2024:2190-1
-
SUSE-SU-2024:2203-1
-
SUSE-SU-2024:2360-1
-
SUSE-SU-2024:2372-1
-
SUSE-SU-2024:2381-1
-
SUSE-SU-2024:2394-1
-
SUSE-SU-2024:2493-1
-
SUSE-SU-2024:2561-1
-
SUSE-SU-2024:2571-1
-
SUSE-SU-2024:2802-1
-
SUSE-SU-2024:2892-1
-
SUSE-SU-2024:2893-1
-
SUSE-SU-2024:2894-1
-
SUSE-SU-2024:2896-1
-
SUSE-SU-2024:2901-1
-
SUSE-SU-2024:2902-1
-
SUSE-SU-2024:2923-1
-
SUSE-SU-2024:2929-1
-
SUSE-SU-2024:2939-1
-
SUSE-SU-2024:2940-1
-
SUSE-SU-2024:2947-1
-
SUSE-SU-2024:2948-1
-
SUSE-SU-2024:2973-1
-
USN-5302-1
-
USN-5383-1
-
USN-5384-1
-
USN-5385-1
-
USN-6816-1
-
USN-6817-1
-
USN-6817-2
-
USN-6817-3
-
USN-6865-1
-
USN-6866-1
-
USN-6866-2
-
USN-6866-3
-
USN-6878-1
-
USN-6893-1
-
USN-6893-2
-
USN-6893-3
-
USN-6895-1
-
USN-6895-2
-
USN-6895-3
-
USN-6895-4
-
USN-6896-1
-
USN-6896-2
-
USN-6896-3
-
USN-6896-4
-
USN-6896-5
-
USN-6898-1
-
USN-6898-2
-
USN-6898-3
-
USN-6898-4
-
USN-6900-1
-
USN-6917-1
-
USN-6918-1
-
USN-6919-1
-
USN-6922-1
-
USN-6922-2
-
USN-6926-1
-
USN-6926-2
-
USN-6926-3
-
USN-6927-1
-
USN-6938-1
-
USN-6949-1
-
USN-6949-2
-
USN-6950-1
-
USN-6950-2
-
USN-6950-3
-
USN-6950-4
-
USN-6951-1
-
USN-6951-2
-
USN-6951-3
-
USN-6951-4
-
USN-6952-1
-
USN-6952-2
-
USN-6953-1
-
USN-6955-1
-
USN-6956-1
-
USN-6957-1
-
USN-6979-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2024-12570 |
|
|
| CVE | CVE-2024-36941 |
|
|
| CVE | CVE-2024-36934 |
|
|
| CVE | CVE-2024-41091 |
|
|
| CVE | CVE-2024-26642 |
|
|
| CVE | CVE-2021-47495 |
|
|
| CVE | CVE-2024-27020 |
|
|
| CVE | CVE-2023-52880 |
|
|
| CVE | CVE-2022-24448 |
|
|
| CVE | CVE-2024-41090 |
|
|
| CVE | CVE-2024-25739 |
|
|
| CVE | CVE-2023-52528 |
|
|
| CVE | CVE-2023-52813 |
|
|
| CVE | CVE-2024-36946 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.88.3.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.88.3.el6uek | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |