[El-errata] New Ksplice updates for RHCK 9 (ELSA-2025-0578)
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Jan 30 09:09:22 UTC 2025
Synopsis: ELSA-2025-0578 can now be patched using Ksplice
CVEs: CVE-2024-46842 CVE-2024-49891 CVE-2024-57947
Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2025-0578.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2025-0578.html
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running RHCK 9 install
these updates.
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
DESCRIPTION
* CVE-2024-46842: Denial-of-service in Emulex LightPulse Fibre Channel driver.
A race condition when using the Emulex LightPulse Fibre Channel driver
could lead to a use-after-free. A local attacker could use this flaw to
cause a denial-of-service.
* CVE-2024-49891: Denial-of-service in Emulex LightPulse Fibre Channel driver.
A race condition when using the Emulex LightPulse Fibre Channel driver
could lead to a use-after-free. A local attacker could use this flaw to
cause a denial-of-service.
* CVE-2024-57947: Data corruption in Pile Packet Policies of Netfilter driver.
An incorrect initialization of Pile Packet Policies when using the
Network packet filtering framework (Netfilter) driver could lead to
incorrect packet filtering logic. A local attacker could use this
flaw to misconfigure the system.
* Note: Oracle has determined some CVEs are not applicable.
The kernel is not affected by the following CVEs
since the code under consideration is not compiled.
CVE-2024-50275
SUPPORT
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the El-errata
mailing list