Oracle alert ELSA-2017-3508 (kernel 4.1.12)
| From: | Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> | |
| To: | el-errata@oss.oracle.com | |
| Subject: | [El-errata] ELSA-2017-3508 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update | |
| Date: | Thu, 12 Jan 2017 18:53:20 -0800 | |
| Message-ID: | <58784120.4030804@oracle.com> |
Oracle Linux Security Advisory ELSA-2017-3508 http://linux.oracle.com/errata/ELSA-2017-3508.html The following updated rpms for Oracle Linux 6 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-4.1.12-61.1.25.el6uek.x86_64.rpm kernel-uek-doc-4.1.12-61.1.25.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-61.1.25.el6uek.noarch.rpm kernel-uek-devel-4.1.12-61.1.25.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-61.1.25.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-61.1.25.el6uek.x86_64.rpm dtrace-modules-4.1.12-61.1.25.el6uek-0.5.3-2.el6.x86_64.rpm SRPMS: http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-4.1.12... http://oss.oracle.com/ol6/SRPMS-updates/dtrace-modules-4.... Description of changes: kernel-uek [4.1.12-61.1.25.el6uek] - KEYS: Fix short sprintf buffer in /proc/keys show function (David Howells) [Orabug: 25306361] {CVE-2016-7042} - nvme: Limit command retries (Keith Busch) [Orabug: 25374751] - fs/proc/task_mmu.c: fix mm_access() mode parameter in pagemap_read() (Kenny Keslar) [Orabug: 25374977] - tcp: fix use after free in tcp_xmit_retransmit_queue() (Eric Dumazet) [Orabug: 25374364] {CVE-2016-6828} - tunnels: Don't apply GRO to multiple layers of encapsulation. (Jesse Gross) [Orabug: 25036352] {CVE-2016-8666} - i40e: Don't notify client(s) for DCB changes on all VSIs (Neerav Parikh) [Orabug: 25046290] - packet: fix race condition in packet_set_ring (Philip Pettersson) [Orabug: 25231617] {CVE-2016-8655} - netlink: Fix dump skb leak/double free (Herbert Xu) [Orabug: 25231692] {CVE-2016-9806} - ALSA: pcm : Call kill_fasync() in stream lock (Takashi Iwai) [Orabug: 25231720] {CVE-2016-9794} - net: avoid signed overflows for SO_{SND|RCV}BUFFORCE (Eric Dumazet) [Orabug: 25231751] {CVE-2016-9793} [4.1.12-61.1.24.el6uek] - rebuild bumping release _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata