[El-errata] New Ksplice updates for UEKR4 4.1.12 on OL6 and OL7 (ELBA-2021-9433)

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Wed Sep 1 14:37:38 PDT 2021

Synopsis: ELBA-2021-9433 can now be patched using Ksplice
CVEs: CVE-2020-14304 CVE-2021-22555 CVE-2021-32399

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Bug Fix Advisory, ELBA-2021-9433.
More information about this errata can be found at


We recommend that all users of Ksplice Uptrack running UEKR4 4.1.12 on
OL6 and OL7 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


* NULL-pointer dereference when driver logs in/out of system.

If a SCSI error occurred and caused a target reset while the driver was
logging in or out, a race condition could result in the remote port
structure pointer being NULL, causing an invalid dereference and

Orabug: 33048899

* CVE-2021-32399: Race condition when removing bluetooth HCI controller.

A race condition when removing bluetooth HCI controller could result in
race condition and out-of-bounds write. A malicious unprivileged user
might able to exploit this to cause a denial-of-service or escalate
their privileges.

Orabug: 32912036

* CVE-2021-22555: Privilege escalation in Netfilter due to out-of-bounds 
memory write.

A heap out-of-bounds write in netfilter could allow an attacker to gain
privileges or cause a denial-of-service.

Orabug: 33093028

* CVE-2020-14304: Information leak in Mellanox ethernet driver.

A memory disclosure flaw in ethernet drivers, in the way it reads data 
from the
EEPROM of the device, could allow a local user to read uninitialized values
from the kernel memory.

Orabug: 31895301

* Deadlock in Xen network backend driver.

Certain operations in the Xen network backend driver while interrupts are
disabled can cause deadlocks. A malicious or buggy frontend can cause a

Orabug: 33277550


Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the El-errata mailing list