[El-errata] ELSA-2018-4172 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Jul 17 09:09:03 PDT 2018


Oracle Linux Security Advisory ELSA-2018-4172

http://linux.oracle.com/errata/ELSA-2018-4172.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
kernel-uek-2.6.39-400.300.2.el6uek.i686.rpm
kernel-uek-debug-2.6.39-400.300.2.el6uek.i686.rpm
kernel-uek-debug-devel-2.6.39-400.300.2.el6uek.i686.rpm
kernel-uek-devel-2.6.39-400.300.2.el6uek.i686.rpm
kernel-uek-doc-2.6.39-400.300.2.el6uek.noarch.rpm
kernel-uek-firmware-2.6.39-400.300.2.el6uek.noarch.rpm

x86_64:
kernel-uek-firmware-2.6.39-400.300.2.el6uek.noarch.rpm
kernel-uek-doc-2.6.39-400.300.2.el6uek.noarch.rpm
kernel-uek-2.6.39-400.300.2.el6uek.x86_64.rpm
kernel-uek-devel-2.6.39-400.300.2.el6uek.x86_64.rpm
kernel-uek-debug-devel-2.6.39-400.300.2.el6uek.x86_64.rpm
kernel-uek-debug-2.6.39-400.300.2.el6uek.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-2.6.39-400.300.2.el6uek.src.rpm



Description of changes:

[2.6.39-400.300.2.el6uek]
- Revert "RDS: don't commit to queue till transport connection is up" 
(Santosh Shilimkar)  [Orabug: 27619034] - KVM: Fix stack-out-of-bounds 
read in write_mmio (Wanpeng Li)  [Orabug: 27951293]  {CVE-2017-17741} 
{CVE-2017-17741}
- kernel/exit.c: avoid undefined behaviour when calling wait4() 
wait4(-2147483648, 0x20, 0, 0xdd0000) triggers: UBSAN: Undefined 
behaviour in kernel/exit.c:1651:9 (mridula shastry)  [Orabug: 28049790] 
{CVE-2018-10087}
- kernel/signal.c: avoid undefined behaviour in kill_something_info When 
running kill(72057458746458112, 0) in userspace I hit the following 
issue. (mridula shastry)  [Orabug: 28082989]  {CVE-2018-10124}
- bluetooth: Validate socket address length in sco_sock_bind(). 
(mlevatic)  [Orabug: 28130291]  {CVE-2015-8575}
- x86/bug: Fix typo's from commit b2d2b5b2 (x86/fpu: Make eager FPU 
default) (Mihai Carabas)  [Orabug: 28194606] - dccp: check sk for closed 
state in dccp_sendmsg() (Alexey Kodanev)  [Orabug: 28220512] 
{CVE-2017-8824} {CVE-2018-1130}
- mm/mempolicy.c: fix error handling in set_mempolicy and mbind. (Chris 
Salls)  [Orabug: 28242479]  {CVE-2017-7616}
- xfrm: policy: check policy direction value (Vladis Dronov)  [Orabug: 
28264531]  {CVE-2017-11600} {CVE-2017-11600}





More information about the El-errata mailing list