[Oraclevm-errata] OVMSA-2015-0034 Important: Oracle VM 3.3 kernel-uek security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Tue Mar 17 11:12:39 PDT 2015

Oracle VM Security Advisory OVMSA-2015-0034

The following updated rpms for Oracle VM 3.3 have been uploaded to the 
Unbreakable Linux Network:



Description of changes:

- kvm: fix excessive pages un-pinning in kvm_iommu_map error path. 
(Quentin Casasnovas)  [Orabug: 20687313]  {CVE-2014-3601} 
{CVE-2014-8369} {CVE-2014-3601}

- ttusb-dec: buffer overflow in ioctl (Dan Carpenter)  [Orabug: 
20673376]  {CVE-2014-8884}
- mm: Fix NULL pointer dereference in madvise(MADV_WILLNEED) support 
(Kirill A. Shutemov)  [Orabug: 20673281]  {CVE-2014-8173}
- netfilter: conntrack: disable generic tracking for known protocols 
(Florian Westphal)  [Orabug: 20673239]  {CVE-2014-8160}
- tracing/syscalls: Ignore numbers outside NR_syscalls' range (Rabin 
Vincent)  [Orabug: 20673163]  {CVE-2014-7826}

- uek-rpm: ol7: update update-el to 7.1 (Guangyu Sun)  [Orabug: 20524579]

More information about the Oraclevm-errata mailing list