[Oraclevm-errata] OVMSA-2017-0144 Important: Oracle VM 3.3 Unbreakable Enterprise kernel security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Fri Aug 18 10:31:34 PDT 2017
Oracle VM Security Advisory OVMSA-2017-0144
The following updated rpms for Oracle VM 3.3 have been uploaded to the
Unbreakable Linux Network:
x86_64:
kernel-uek-3.8.13-118.19.4.el6uek.x86_64.rpm
kernel-uek-firmware-3.8.13-118.19.4.el6uek.noarch.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/3.3/SRPMS-updates/kernel-uek-3.8.13-118.19.4.el6uek.src.rpm
Description of changes:
[3.8.13-118.19.4.el6uek]
- l2tp: fix racy SOCK_ZAPPED flag check in l2tp_ip{,6}_bind() (Guillaume
Nault) [Orabug: 26586047] {CVE-2016-10200}
- xfs: fix two memory leaks in xfs_attr_list.c error paths (Mateusz
Guzik) [Orabug: 26586022] {CVE-2016-9685}
- KEYS: Disallow keyrings beginning with '.' to be joined as session
keyrings (David Howells) [Orabug: 26585994] {CVE-2016-9604}
- ipv6: fix out of bound writes in __ip6_append_data() (Eric Dumazet)
[Orabug: 26578198] {CVE-2017-9242}
More information about the Oraclevm-errata
mailing list