[Oraclevm-errata] OVMSA-2017-0004 Important: Oracle VM 3.4 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Fri Jan 13 06:57:42 PST 2017

Oracle VM Security Advisory OVMSA-2017-0004

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:



Description of changes:

- KEYS: Fix short sprintf buffer in /proc/keys show function (David 
Howells)  [Orabug: 25306361]  {CVE-2016-7042}
- nvme: Limit command retries (Keith Busch)  [Orabug: 25374751]
- fs/proc/task_mmu.c: fix mm_access() mode parameter in pagemap_read() 
(Kenny Keslar)  [Orabug: 25374977]
- tcp: fix use after free in tcp_xmit_retransmit_queue() (Eric Dumazet) 
  [Orabug: 25374364]  {CVE-2016-6828}
- tunnels: Don't apply GRO to multiple layers of encapsulation. (Jesse 
Gross)  [Orabug: 25036352]  {CVE-2016-8666}
- i40e: Don't notify client(s) for DCB changes on all VSIs (Neerav 
Parikh)  [Orabug: 25046290]
- packet: fix race condition in packet_set_ring (Philip Pettersson) 
[Orabug: 25231617]  {CVE-2016-8655}
- netlink: Fix dump skb leak/double free (Herbert Xu)  [Orabug: 
25231692]  {CVE-2016-9806}
- ALSA: pcm : Call kill_fasync() in stream lock (Takashi Iwai)  [Orabug: 
25231720]  {CVE-2016-9794}
- net: avoid signed overflows for SO_{SND|RCV}BUFFORCE (Eric Dumazet) 
[Orabug: 25231751]  {CVE-2016-9793}

- rebuild bumping release

More information about the Oraclevm-errata mailing list