Oracle Linux Security Advisory ELSA-2022-10065

https://linux.oracle.com/errata/ELSA-2022-10065.html

The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-doc-4.1.12-124.69.5.el6uek.noarch.rpm
kernel-uek-firmware-4.1.12-124.69.5.el6uek.noarch.rpm
kernel-uek-4.1.12-124.69.5.el6uek.x86_64.rpm
kernel-uek-devel-4.1.12-124.69.5.el6uek.x86_64.rpm
kernel-uek-debug-4.1.12-124.69.5.el6uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-124.69.5.el6uek.x86_64.rpm



Related CVEs:

CVE-2019-19377
CVE-2022-40768
CVE-2022-20368
CVE-2021-20292
CVE-2022-2663
CVE-2022-2639
CVE-2022-3565
CVE-2022-3629




Description of changes:

[4.1.12-124.69.5.el6uek]
- x86/smpboot: check cpu_initialized_mask first after returning from schedule() (Dongli Zhang)  [Orabug: 34798594]

[4.1.12-124.69.4.el6uek]
- btrfs: Remove BUG_ON() as it is causing kernel to panic (Rhythm Mahajan)  [Orabug: 34840579]

[4.1.12-124.69.3.el6uek]
- btrfs: fix missing return for a non-void function. (Harshit Mogalapalli)  [Orabug: 34827292]

[4.1.12-124.69.2.el6uek]
- btrfs: Don't submit any btree write bio if the fs has errors (Qu Wenruo)  [Orabug: 31265340]  {CVE-2019-19377}
- scsi: stex: Properly zero out the passthrough command structure (Linus Torvalds)  [Orabug: 34670757]  {CVE-2022-40768}
- net/packet: fix slab-out-of-bounds access in packet_recvmsg() (Eric Dumazet)  [Orabug: 34791643]  {CVE-2022-20368}
- packet: in recvmsg msg_name return at least sizeof sockaddr_ll (Willem de Bruijn)  [Orabug: 34791643]
- fs/attr.c: handling case when inode does not attach with dentry structure (Alok Tiwari)  [Orabug: 34733462] [Orabug: 34798221] [Orabug: 34816013]

[4.1.12-124.69.1.el6uek]
- drm/ttm/nouveau: don't call tt destroy callback on alloc failure. (Dave Airlie)  [Orabug: 33014078]  {CVE-2021-20292}
- netfilter: nf_conntrack_irc: Tighten matching on DCC message (David Leadbeater)  [Orabug: 34555474]  {CVE-2022-2663}
- openvswitch: fix OOB access in reserve_sfa_size() (Paolo Valerio)  [Orabug: 34607642]  {CVE-2022-2639}
- openvswitch: fix flow actions reallocation (Andrea Righi)  [Orabug: 34607642]
- openvswitch: fix the incorrect flow action alloc size (zhangliping)  [Orabug: 34607642]
- cgroup: Prevent kill_css() from being called more than once (Waiman Long)  [Orabug: 34679307]
- mISDN: fix use-after-free bugs in l1oip timer handlers (Duoming Zhou)  [Orabug: 34719783]  {CVE-2022-3565}
- vsock: Fix memory leak in vsock_connect() (Peilin Ye)  [Orabug: 34731194]  {CVE-2022-3629}
- vsock: split dwork to avoid reinitializations (Cong Wang)  [Orabug: 34731194]


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle6: ELSA-2022-10065: Extended Lifecycle Support (ELS) Unbreakable Enterprise kernel I

The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network:

Summary

[4.1.12-124.69.5.el6uek] - x86/smpboot: check cpu_initialized_mask first after returning from schedule() (Dongli Zhang) [Orabug: 34798594] [4.1.12-124.69.4.el6uek] - btrfs: Remove BUG_ON() as it is causing kernel to panic (Rhythm Mahajan) [Orabug: 34840579] [4.1.12-124.69.3.el6uek] - btrfs: fix missing return for a non-void function. (Harshit Mogalapalli) [Orabug: 34827292] [4.1.12-124.69.2.el6uek] - btrfs: Don't submit any btree write bio if the fs has errors (Qu Wenruo) [Orabug: 31265340] {CVE-2019-19377} - scsi: stex: Properly zero out the passthrough command structure (Linus Torvalds) [Orabug: 34670757] {CVE-2022-40768} - net/packet: fix slab-out-of-bounds access in packet_recvmsg() (Eric Dumazet) [Orabug: 34791643] {CVE-2022-20368} - packet: in recvmsg msg_name return at least sizeof sockaddr_ll (Willem de Bruijn) [Orabug: 34791643] - fs/attr.c: handling case when inode does not attach with dentry structure (Alok Tiwari) [Orabug: 34733462] [Orabug: 34798221] [Orabug: 34816013] [4.1.12-124.69.1.el6uek] - drm/ttm/nouveau: don't call tt destroy callback on alloc failure. (Dave Airlie) [Orabug: 33014078] {CVE-2021-20292} - netfilter: nf_conntrack_irc: Tighten matching on DCC message (David Leadbeater) [Orabug: 34555474] {CVE-2022-2663} - openvswitch: fix OOB access in reserve_sfa_size() (Paolo Valerio) [Orabug: 34607642] {CVE-2022-2639} - openvswitch: fix flow actions reallocation (Andrea Righi) [Orabug: 34607642] - openvswitch: fix the incorrect flow action alloc size (zhangliping) [Orabug: 34607642] - cgroup: Prevent kill_css() from being called more than once (Waiman Long) [Orabug: 34679307] - mISDN: fix use-after-free bugs in l1oip timer handlers (Duoming Zhou) [Orabug: 34719783] {CVE-2022-3565} - vsock: Fix memory leak in vsock_connect() (Peilin Ye) [Orabug: 34731194] {CVE-2022-3629} - vsock: split dwork to avoid reinitializations (Cong Wang) [Orabug: 34731194]

SRPMs

x86_64

kernel-uek-doc-4.1.12-124.69.5.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-124.69.5.el6uek.noarch.rpm kernel-uek-4.1.12-124.69.5.el6uek.x86_64.rpm kernel-uek-devel-4.1.12-124.69.5.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-124.69.5.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.69.5.el6uek.x86_64.rpm

aarch64

i386

Severity
Related CVEs: CVE-2019-19377 CVE-2022-40768 CVE-2022-20368 CVE-2021-20292 CVE-2022-2663 CVE-2022-2639 CVE-2022-3565 CVE-2022-3629

Related News

4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved