What Are You Looking For?

Popular Tags

Sign Up
Oracle Linux Security Advisory ELSA-2023-12759

https://linux.oracle.com/errata/ELSA-2023-12759.html

The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-doc-4.1.12-124.78.2.el6uek.noarch.rpm
kernel-uek-firmware-4.1.12-124.78.2.el6uek.noarch.rpm
kernel-uek-4.1.12-124.78.2.el6uek.x86_64.rpm
kernel-uek-devel-4.1.12-124.78.2.el6uek.x86_64.rpm
kernel-uek-debug-4.1.12-124.78.2.el6uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-124.78.2.el6uek.x86_64.rpm



Related CVEs:

CVE-2022-1015
CVE-2023-3106
CVE-2023-3567




Description of changes:

[4.1.12-124.78.2.el6uek]
- xfrm: fix crash in XFRM_MSG_GETSA netlink handler (Vegard Nossum)  [Orabug: 35598955]  {CVE-2023-3106}
- netfilter: nf_tables: validate registers coming from userspace (Harshvardhan Jha)  [Orabug: 34012909]  {CVE-2022-1015}

[4.1.12-124.78.1.el6uek]
- vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF (George Kennedy)  [Orabug: 35649493]  {CVE-2023-3567}


_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle6: ELSA-2023-12759: Extended Lifecycle Support (ELS) Unbreakable Enterprise kernel I

The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network:

Summary

[4.1.12-124.78.2.el6uek] - xfrm: fix crash in XFRM_MSG_GETSA netlink handler (Vegard Nossum) [Orabug: 35598955] {CVE-2023-3106} - netfilter: nf_tables: validate registers coming from userspace (Harshvardhan Jha) [Orabug: 34012909] {CVE-2022-1015} [4.1.12-124.78.1.el6uek] - vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF (George Kennedy) [Orabug: 35649493] {CVE-2023-3567}

SRPMs

x86_64

kernel-uek-doc-4.1.12-124.78.2.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-124.78.2.el6uek.noarch.rpm kernel-uek-4.1.12-124.78.2.el6uek.x86_64.rpm kernel-uek-devel-4.1.12-124.78.2.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-124.78.2.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.78.2.el6uek.x86_64.rpm

aarch64

i386

Severity
Related CVEs: CVE-2022-1015 CVE-2023-3106 CVE-2023-3567

Related News

Long-term Support for Linux Kernel to Be Cut as Maintenance Remains Under Strain

Sep 21, 2023

Ubuntu 23.04 & 22.04.3 Installs Haven't Been Following Their Own Security Best Practices

Sep 16, 2023

Akira Ransomware Mutates to Target Linux Systems, Adds TTPs

Sep 27, 2023

Chinese Hackers Have Unleashed a Never-Before-Seen Linux Backdoor

Sep 19, 2023

News

Advisories

HOWTOs

Features

Everything You Need to Know About Linux Proxy Servers
Simple Steps for Identifying & Troubleshooting a Kernel Panic
Linux Endpoint Detection and Response (EDR): A Crucial Part of a Successful Cybersecurity Strategy
Supercharging Linux: Tips & Tricks to Beat the Threat Landscape
LinuxSecurity.com Migrates to Joomla 4 and PHP 8: Our Experience & Key Takeaways

About Us

Powered By

Footer Logo

Feedback