[El-errata] New Ksplice updates for UEKR4 4.1.12 on OL6 and OL7 (ELSA-2019-4808)
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Oct 15 01:38:25 PDT 2019
Synopsis: ELSA-2019-4808 can now be patched using Ksplice
CVEs: CVE-2019-14283 CVE-2019-15239 CVE-2019-15666
Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2019-4808.
More information about this errata can be found at
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running UEKR4 4.1.12 on
OL6 and OL7 install these updates.
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
* CVE-2019-15239: Denial-of-service when establishing TCP connection.
A bug when retransmitting unacknowledged TCP packet in the TCP Fast Open
path triggers a kernel crash. A malicious local user can exploit this to
cause a denial-of-service.
* CVE-2019-14283: Denial-of-service in floppy disk geometry setting
Missing input validation in the floppy disk geometry setting calls could
allow a malicious local user with access to the floppy device to cause
an out-of-bounds access either crashing the system or leaking the
contents of kernel memory.
* Denial-of-service when receiving segments over TCP.
A logic error when receiving segments over TCP could lead to a general
protection fault. A local attacker could use this flaw to cause a
* CVE-2019-15666: Denial-of-service when setting network xfrm policy.
A missing check on user input when setting network xfrm policy from
userspace could lead to an out-of-bounds access. A local attacker could
use this flaw to cause a denial-of-service.
* Memory corruption during Xen Software I/O TLB unregistration.
A logic error when unregistering Xen Software I/O TLB memory could cause
memory to be unmapped incorrectly. An attacker might be able to use this
to cause crashes or memory corruption.
* Performance regression during microcode loading.
The microcode update mechanism was changed in such a way that each CPU
would apply the update while the other cores were idle. On systems with
many CPUs, this will cause a prolonged delay when microcode is updated.
* NFSv4 state list corruption causes denial-of-service.
A race condition when freeing NFSv4 state objects could result in
objects being added present in the global list multiple times, resulting
in memory corruption and a denial-of-service.
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the El-errata