[El-errata] ELSA-2015-3013 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Fri Mar 13 14:18:45 PDT 2015


Oracle Linux Security Advisory ELSA-2015-3013

http://linux.oracle.com/errata/ELSA-2015-3013.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:


x86_64:
kernel-uek-firmware-3.8.13-55.1.8.el7uek.noarch.rpm
kernel-uek-doc-3.8.13-55.1.8.el7uek.noarch.rpm
kernel-uek-3.8.13-55.1.8.el7uek.x86_64.rpm
kernel-uek-devel-3.8.13-55.1.8.el7uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-55.1.8.el7uek.x86_64.rpm
kernel-uek-debug-3.8.13-55.1.8.el7uek.x86_64.rpm
dtrace-modules-3.8.13-55.1.8.el7uek-0.4.3-4.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-3.8.13-55.1.8.el7uek.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/dtrace-modules-3.8.13-55.1.8.el7uek-0.4.3-4.el7.src.rpm



Description of changes:

kernel-uek
[3.8.13-55.1.8.el7uek]
- kvm: fix excessive pages un-pinning in kvm_iommu_map error path. 
(Quentin Casasnovas)  [Orabug: 20687313]  {CVE-2014-3601} 
{CVE-2014-8369} {CVE-2014-3601}

[3.8.13-55.1.7.el7uek]
- ttusb-dec: buffer overflow in ioctl (Dan Carpenter)  [Orabug: 
20673376]  {CVE-2014-8884}
- mm: Fix NULL pointer dereference in madvise(MADV_WILLNEED) support 
(Kirill A. Shutemov)  [Orabug: 20673281]  {CVE-2014-8173}
- netfilter: conntrack: disable generic tracking for known protocols 
(Florian Westphal)  [Orabug: 20673239]  {CVE-2014-8160}
- tracing/syscalls: Ignore numbers outside NR_syscalls' range (Rabin 
Vincent)  [Orabug: 20673163]  {CVE-2014-7826}





More information about the El-errata mailing list