Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Oracle Linux 6: ELSA-2024-12700 critical: kernel security updates

oracle
Calendar Grey October 2, 2024
Oracle Linux Logo Esm H88
Oracle Linux ELSA-2024-12800: Vital patches for the Unbreakable Enterprise kernel in the Extended Lifecycle Support phase.
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network:

Summary

[4.1.12-124.90.3.el6uek] - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to unsigned int (Dai Ngo) [Orabug: 37055439] [4.1.12-124.90.2.el6uek] - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() (Justin Tee) [Orabug: 36643241] {CVE-2024-35930} - scsi: qla2xxx: Fix command flush on cable pull (Quinn Tran) [Orabug: 36596617] {CVE-2024-26931} - VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (David Fernandez Gonzalez) [Orabug: 33917166] [4.1.12-124.90.1.el6uek] - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue (Sindhu Devale) [Orabug: 36643519] {CVE-2024-36004} - dyndbg: fix old BUG_ON in >control parser (Jim Cromie) [Orabug: 36643340] {CVE-2024-35947} - btrfs: send: handle path ref underflow in header iterate_inode_ref() (David Sterba) [Orabug: 36643269] {CVE-2024-35935} - ipv6: Fix infinite recursion in fib6_dump_done(). (Kuniyuki Iwashima) [Orabug: 36643095] {CVE-2024-35886} - x86/mm/pat: fix VM_PAT handling in...

Read the Full Advisory

SRPMs

x86_64

kernel-uek-doc-4.1.12-124.90.3.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-124.90.3.el6uek.noarch.rpm kernel-uek-4.1.12-124.90.3.el6uek.x86_64.rpm kernel-uek-devel-4.1.12-124.90.3.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-124.90.3.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.90.3.el6uek.x86_64.rpm

aarch64

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2024-26931 CVE-2024-35877 CVE-2024-35886 CVE-2024-35930 CVE-2024-35935 CVE-2024-35947 CVE-2024-36004

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here