[Ksplice-Fedora-24-updates] New Ksplice updates for Fedora 24 (FEDORA-2017-02174df32f)
Oracle Ksplice
ksplice-support_ww at oracle.com
Wed Apr 19 23:19:14 PDT 2017
Synopsis: FEDORA-2017-02174df32f can now be patched using Ksplice
CVEs: CVE-2017-7184 CVE-2017-7374
Systems running Fedora 24 can now use Ksplice to patch against the
latest Fedora kernel update, FEDORA-2017-02174df32f.
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running Fedora 24
install these updates.
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
DESCRIPTION
* Denial-of-service when destroying TCP socket using GFP_ATOMIC.
A logic error when destroying socket could lead to a memory leak if a
TCP socket is using GFP_ATOMIC flag for allocations. A local attacker
could use this flaw to cause a denial-of-service.
* Denial-of-service in AF_UNIX sockets garbage collector.
A logic error in implementation of garbage collector of UNIX sockets
could lead to a kernel BUG(). A local attacker could use this flaw to
cause a denial-of-service.
* Denial-of-service when sending messages over UDP IPV6 sockets.
Missing initialization of socket flag could lead to a NULL pointer
dereference or access to invalid memory when sending messages over UDP
IPV6 socket. A local attacker could use this flaw to cause a
denial-of-service.
* Denial-of-service in Forwarding Information Base of IPV4.
A missing check in Forwarding Information Base (FIB) implementation of
IPV4 could lead to a buffer overflow. A local attacker could use this
flaw to cause a denial-of-service.
* Multiple denial-of-service when plugging malicious USB devices.
Missing checks in multiples USB devices drivers could lead to a NULL
pointer dereference when plugging malicious USB devices. An attacker
with physical access to the machine could cause a denial-of-service.
* Denial-of-service when using ALSA set_client_pool ioctl.
A flag handling error in set_client_pool ioctl path could lead to a
deadlock. A local attacker could use this flaw to cause a
denial-of-service.
* Denial-of-service when flashing firmware of dvb usb devices.
Wrong usage of an on-stack buffer for DMA transfers could lead to memory
corruption. A local attacker could use this flaw to cause a
denial-of-service.
* Denial-of-service when performing wireless scan or dump.
A locking error when performing scan or dump on a wireless interface
could lead to a deadlock. A local attacker could use this flaw to cause
a denial-of-service.
* Denial of service in ext4 extended attribute checksums.
A race condition in the ext4 filesystem driver can cause incorrect checksums to
be calculated for extended attributes which can allow a local user to cause a
denial of service.
* Denial-of-service when removing Marvell WiFi-Ex Driver.
A missing free of DMA buffers when removing Marvell WiFi-Ex Driver could
lead to a memory exhaustion. A local attacker could add/remove this
driver multiple times to exhaust kernel memory and cause a
denial-of-service.
* CVE-2017-7374: Denial-of-service when revoking keys used for file system encryption.
A logic error in file system encryption subsystem when revoking keys used
for ext4, f2fs, or ubifs encryption could lead to a use-after-free. A
local attacker could use this flaw to cause a denial-of-service.
* CVE-2017-7184: Privilege escalation when using xfrm IP framework.
A missing check when using xfrm IP framework could lead to an out of
bound access. A local attacker could use this flaw to cause a denial of
service or to escalate privilege.
* Denial-of-service in KVM page tracking system.
A missing cleanup of srcu structure in KVM page tracking system could
lead to a use-after-free. A local attacker could use this flaw to cause
a denial-of-service.
* Denial-of-service when creating surface using vmwgfx driver.
A missing parameter check when using VMW_CREATE_SURFACE ioctl of vmwgfx
driver could lead to a NULL pointer dereference. A local attacker could
use this flaw to cause a denial-of-service.
SUPPORT
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the Ksplice-Fedora-24-Updates
mailing list