[El-errata] New Ksplice updates for UEKR6 5.4.17 on OL7 and OL8 (ELSA-2020-5756)
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Jul 16 06:01:39 PDT 2020
Synopsis: ELSA-2020-5756 can now be patched using Ksplice
CVEs: CVE-2019-19769 CVE-2020-10711 CVE-2020-10757 CVE-2020-12655 CVE-2020-12770
Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2020-5756.
More information about this errata can be found at
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running UEKR6 5.4.17 on
OL7 and OL8 install these updates.
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
* CVE-2020-12770: Information leak/DoS in SCSI generic userspace write.
When copying data from userspace to a SCSI generic (sg) device, the
associated list entry is not properly removed, potentially causing a
denial-of-service or leaking sensitive kernel information.
* CVE-2020-10757: Flaw in DAX page mapping allows privilege escalation.
A flaw in the kernel handling for remapping huge pages mishandles pages
mapped for the DAX (direct userspace access) subsystem. A user with
access to DAX-mapped storage could exploit this to escalate their
* CVE-2020-10711: NULL pointer dereference when using CIPSO network packet labeling.
A logic error when receiving CIPSO network packets could lead to a NULL
pointer dereference. A remote attacker could use this flaw to cause a
* CVE-2019-19769: Use-after-free in POSIX file locking API.
A logic error in POSIX file locking API could lead to a use-after-free.
A local attacker could use this flaw to cause a denial-of-service.
* CVE-2020-12655: Denial-of-service when syncing data on XFS filesystem.
On logic error when syncing data on a specially crafted XFS filesystem
could let an attacker cause a denial-of-service.
* Buffer overflow when dumping registers in LSI Logic MegaRAID SAS RAID driver.
A logic error when dumping registers in LSI Logic MegaRAID SAS RAID
driver could lead to a buffer overflow. A local attacker could use this
flaw to cause a denial-of-service.
* Use-after-free when freeing received data over RDS socket.
A logic error when freeing received data over RDS socket could lead to a
use-after-free. A remote attacker could use this flaw to cause a denial-
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the El-errata