Oracle7: ELSA-2024-12571: kernel Important Security Advisory Updates
Summary
[4.1.12-124.88.3.el7uek] - crypto: pcrypt - Fix hungtask for PADATA_RESET (Lu Jialin) [Orabug: 36806710] {CVE-2023-52813} - usbnet: sanity check for maxpacket (Oliver Neukum) [Orabug: 36806658] {CVE-2021-47495} - phonet: fix rtm_phonet_notify() skb allocation (Eric Dumazet) [Orabug: 36683487] {CVE-2024-36946} - wifi: nl80211: don't free NULL coalescing rule (Johannes Berg) [Orabug: 36683466] {CVE-2024-36941} - bna: ensure the copied buf is NUL terminated (Bui Quang Minh) [Orabug: 36683433] {CVE-2024-36934} - bna: use memdup_user to copy userspace buffers (Ivan Vecera) [Orabug: 36683433] {CVE-2024-36934} - new helper: memdup_user_nul() (Al Viro) [Orabug: 36683433] {CVE-2024-36934} - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (Ziyang Xuan) [Orabug: 36598047] {CVE-2024-27020} - netfilter: nf_tables: __nft_expr_type_get() selects specific family type (Pablo Neira Ayuso) [Orabug: 36598047] {CVE-2024-27020} - net/mlx5e: drop shorter ethernet frames (Manjunath Patil) [Orabug: 36879159] {CVE-2024-41090} {CVE-2024-41091} [4.1.12-124.88.2.el7uek] - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida) [Orabug: 36802310] {CVE-2023-52528} - usbnet/smsc75xx: silence uninitialized variable warning (Dan Carpenter) {CVE-2023-52528} - tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (Thadeu Lima de Souza Cascardo) [Orabug: 36685663] {CVE-2023-52880} - netfilter: nf_tables: disallow anonymous set with timeout flag (Pablo Neira Ayuso) [Orabug: 36530112] {CVE-2024-26642} - ubi: Check for too small LEB size in VTBL code (Richard Weinberger) [Orabug: 36356637] {CVE-2024-25739} [4.1.12-124.88.1.el7uek] - NFS: LOOKUP_DIRECTORY is also ok with symlinks (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448} - NFSv4: Handle case where the lookup of a directory fails (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448}
SRPMs
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-4.1.12-124.88.3.el7uek.src.rpm
x86_64
kernel-uek-doc-4.1.12-124.88.3.el7uek.noarch.rpm kernel-uek-firmware-4.1.12-124.88.3.el7uek.noarch.rpm kernel-uek-4.1.12-124.88.3.el7uek.x86_64.rpm kernel-uek-devel-4.1.12-124.88.3.el7uek.x86_64.rpm kernel-uek-debug-4.1.12-124.88.3.el7uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.88.3.el7uek.x86_64.rpm
aarch64
i386