[El-errata] ELSA-2019-4644 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu May 16 06:06:17 PDT 2019


Oracle Linux Security Advisory ELSA-2019-4644

http://linux.oracle.com/errata/ELSA-2019-4644.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kernel-uek-firmware-3.8.13-118.34.1.el6uek.noarch.rpm
kernel-uek-doc-3.8.13-118.34.1.el6uek.noarch.rpm
kernel-uek-3.8.13-118.34.1.el6uek.x86_64.rpm
kernel-uek-devel-3.8.13-118.34.1.el6uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-118.34.1.el6uek.x86_64.rpm
kernel-uek-debug-3.8.13-118.34.1.el6uek.x86_64.rpm
dtrace-modules-3.8.13-118.34.1.el6uek-0.4.5-3.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-3.8.13-118.34.1.el6uek.src.rpm
http://oss.oracle.com/ol6/SRPMS-updates/dtrace-modules-3.8.13-118.34.1.el6uek-0.4.5-3.el6.src.rpm



Description of changes:

kernel-uek
[3.8.13-118.34.1.el6uek]
- Input: wacom - move the USB (now hid) Wacom driver in drivers/hid 
(Benjamin Tissoires) [Orabug: 25512494] {CVE-2016-3139}
- net: qmi_wwan: fix divide by 0 on bad descriptors (Bjørn Mork) 
[Orabug: 27215229] {CVE-2017-16650}
- USB: hso: Fix OOB memory access in hso_probe/hso_get_config_data (Hui 
Peng) [Orabug: 29605987] {CVE-2018-19985} {CVE-2018-19985}
- KEYS: encrypted: fix buffer overread in valid_master_desc() (Eric 
Biggers) [Orabug: 29605993] {CVE-2017-13305}
- ecryptfs: don't allow mmap when the lower fs doesn't support it (Jeff 
Mahoney) [Orabug: 29666607] {CVE-2016-1583} {CVE-2016-1583}
- Revert "ecryptfs: forbid opening files without mmap handler" (Brian 
Maly) [Orabug: 29666607] {CVE-2016-1583}
- binfmt_elf: switch to new creds when switching to new mm (Linus 
Torvalds) [Orabug: 29677234] {CVE-2019-11190}





More information about the El-errata mailing list