[El-errata] New Ksplice updates for RHCK 8 (ELSA-2020-5473)
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Dec 23 10:33:01 PST 2020
Synopsis: ELSA-2020-5473 can now be patched using Ksplice
CVEs: CVE-2020-16166 CVE-2020-25645
Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2020-5473.
More information about this errata can be found at
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running RHCK 8 install
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
* CVE-2020-25645: Possible information leak between encrypted geneve endpoints.
A logic error may end up inadvertently transmitting data between two
geneve endpoints unencrypted. This may allow unintended parties to view
confidential network data.
* CVE-2020-16166: Confidentiality vulnerability in the generation of the device ID.
A flaw in the generation of the device ID from the network RNG could
result in a potential issue allowing remote attackers to make
observations that help to obtain sensitive information about
the internal state of the network RNG and compromise the data
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the El-errata