Oracle6: ELSA-2022-9260: Extended Important Security Update | Linux...
Oracle Linux Security Advisory ELSA-2022-9260

https://linux.oracle.com/errata/ELSA-2022-9260.html

The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-doc-4.1.12-124.61.2.el6uek.noarch.rpm
kernel-uek-firmware-4.1.12-124.61.2.el6uek.noarch.rpm
kernel-uek-4.1.12-124.61.2.el6uek.x86_64.rpm
kernel-uek-devel-4.1.12-124.61.2.el6uek.x86_64.rpm
kernel-uek-debug-4.1.12-124.61.2.el6uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-124.61.2.el6uek.x86_64.rpm



Related CVEs:

CVE-2020-36516
CVE-2021-20322
CVE-2021-3772
CVE-2022-0330
CVE-2022-26966




Description of changes:

[4.1.12-124.61.2.el6uek]
- exec, elf: ignore invalid note data (Anthony Yznaga)  [Orabug: 34023956]

[4.1.12-124.61.1.el6uek]
- drm/i915: Flush TLBs before releasing backing store (Tvrtko Ursulin)  [Orabug: 33835812]  {CVE-2022-0330}
- drm/i915: Reduce locking in execlist command submission (Chris Wilson)  [Orabug: 33835812]  {CVE-2022-0330}
- ipv4: make exception cache less predictible (Eric Dumazet)  [Orabug: 33894531]  {CVE-2021-20322}
- route: also update fnhe_genid when updating a route cache (Xin Long)  [Orabug: 33894531]  {CVE-2021-20322}
- ipv4: avoid using shared IP generator for connected sockets (Eric Dumazet)  [Orabug: 33917058]  {CVE-2020-36516}
- sctp: add vtag check in sctp_sf_violation (Xin Long)  [Orabug: 33924717]  {CVE-2021-3772}
- sctp: use init_tag from inithdr for ABORT chunk (Xin Long)  [Orabug: 33924717]  {CVE-2021-3772}
- sr9700: sanity check for packet length (Oliver Neukum)  [Orabug: 33962995]  {CVE-2022-26966}


_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle6: ELSA-2022-9260: Extended Important Security Update

Summary

Description of changes: [4.1.12-124.61.2.el6uek] - exec, elf: ignore invalid note data (Anthony Yznaga) [Orabug: 34023956] [4.1.12-124.61.1.el6uek] - drm/i915: Flush TLBs before releasing backing store (Tvrtko Ursulin) [Orabug: 33835812] {CVE-2022-0330} - drm/i915: Reduce locking in execlist command submission (Chris Wilson) [Orabug: 33835812] {CVE-2022-0330} - ipv4: make exception cache less predictible (Eric Dumazet) [Orabug: 33894531] {CVE-2021-20322} - route: also update fnhe_genid when updating a route cache (Xin Long) [Orabug: 33894531] {CVE-2021-20322} - ipv4: avoid using shared IP generator for connected sockets (Eric Dumazet) [Orabug: 33917058] {CVE-2020-36516} - sctp: add vtag check in sctp_sf_violation (Xin Long) [Orabug: 33924717] {CVE-2021-3772} - sctp: use init_tag from inithdr for ABORT chunk (Xin Long) [Orabug: 33924717] {CVE-2021-3772} - sr9700: sanity check for packet length (Oliver Neukum) [Orabug: 33962995] {CVE-2022-26966}

i386

x86_64

kernel-uek-doc-4.1.12-124.61.2.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-124.61.2.el6uek.noarch.rpm kernel-uek-4.1.12-124.61.2.el6uek.x86_64.rpm kernel-uek-devel-4.1.12-124.61.2.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-124.61.2.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.61.2.el6uek.x86_64.rpm

SRPMS

Severity
Related CVEs: CVE-2020-36516 CVE-2021-20322 CVE-2021-3772 CVE-2022-0330 CVE-2022-26966

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.