Oval Definition:
oval:org.mitre.oval:def:27622
Revision Date
:
2015-03-16
Version
:
10
Title
:
ELSA-2013-2520 -- Unbreakable Enterprise kernel security update (important)
Description
:
[2.6.32-400.26.2] - mm/hotplug: correctly add new zone to all other nodes' zone lists (Jiang Liu) [Orabug: 16603569] {CVE-2012-5517} - ptrace: ptrace_resume() shouldn't wake up !TASK_TRACED thread (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871} - ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871} - ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up() (Oleg Nesterov) [Orabug: 16405868] {CVE-2013-0871} - Bluetooth: Fix incorrect strncpy() in hidp_setup_hid() (Anderson Lizardo) [Orabug: 16711062] {CVE-2013-0349} - dccp: check ccid before dereferencing (Mathias Krause) [Orabug: 16711040] {CVE-2013-1827} - USB: io_ti: Fix NULL dereference in chase_port() (Wolfgang Frisch) [Orabug: 16425435] {CVE-2013-1774} - keys: fix race with concurrent install_user_keyrings() (David Howells) [Orabug: 16493369] {CVE-2013-1792} - KVM: Fix bounds checking in ioapic indirect register reads (CVE-2013-1798) (Andy Honig) [Orabug: 16710937] {CVE-2013-1798} - KVM: x86: fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME (CVE-2013-1796) (Jerry Snitselaar) [Orabug: 16710794] {CVE-2013-1796} - net/tun: fix ioctl() based info leaks (Mathias Krause) [Orabug: 16675501] {CVE-2012-6547} - atm: fix info leak via getsockname() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546} - atm: fix info leak in getsockopt(SO_ATMPVC) (Mathias Krause) [Orabug: 16675501] {CVE-2012-6546} - xfrm_user: fix info leak in copy_to_user_tmpl() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537} - xfrm_user: fix info leak in copy_to_user_policy() (Mathias Krause) [Orabug: 16675501] {CVE-2012-6537} - xfrm_user: fix info leak in copy_to_user_state() (Mathias Krause) [Orabug: 16675501] {CVE-2013-6537} - xfrm_user: return error pointer instead of NULL #2 (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826} - xfrm_user: return error pointer instead of NULL (Mathias Krause) [Orabug: 16675501] {CVE-2013-1826}
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2012-4508
CVE-2012-5517
CVE-2012-6537
CVE-2012-6546
CVE-2012-6547
CVE-2013-0309
CVE-2013-0310
CVE-2013-0349
CVE-2013-0871
CVE-2013-1774
CVE-2013-1792
CVE-2013-1796
CVE-2013-1798
CVE-2013-1826
CVE-2013-1827
ELSA-2013-2520
Platform(s)
:
Oracle Linux 5
Oracle Linux 6
Product(s)
:
kernel-uek
kernel-uek-debug
kernel-uek-debug-devel
kernel-uek-devel
kernel-uek-doc
kernel-uek-firmware
kernel-uek-headers
mlnx_en
ofa
Definition Synopsis
Oracle Linux 5 release section
Oracle Linux 5.x
AND
Packages match section
kernel-uek is earlier than 0:2.6.32-400.26.2.el5uek
OR
mlnx_en-2.6.32-400.26.2.el5uek is earlier than 0:1.5.7-2
OR
ofa-2.6.32-400.26.2.el5uek is earlier than 0:1.5.1-4.0.58
OR
kernel-uek-debug is earlier than 0:2.6.32-400.26.2.el5uek
OR
kernel-uek-debug-devel is earlier than 0:2.6.32-400.26.2.el5uek
OR
kernel-uek-devel is earlier than 0:2.6.32-400.26.2.el5uek
OR
kernel-uek-doc is earlier than 0:2.6.32-400.26.2.el5uek
OR
kernel-uek-firmware is earlier than 0:2.6.32-400.26.2.el5uek
OR
kernel-uek-headers is earlier than 0:2.6.32-400.26.2.el5uek
OR
mlnx_en-2.6.32-400.26.2.el5uekdebug is earlier than 0:1.5.7-2
OR
ofa-2.6.32-400.26.2.el5uekdebug is earlier than 0:1.5.1-4.0.58
Oracle Linux 6 release section
Oracle Linux 6.x
AND
Packages match section
kernel-uek is earlier than 0:2.6.32-400.26.2.el6uek
OR
mlnx_en-2.6.32-400.26.2.el6uek is earlier than 0:1.5.7-0.1
OR
ofa-2.6.32-400.26.2.el6uek is earlier than 0:1.5.1-4.0.58
OR
kernel-uek-debug is earlier than 0:2.6.32-400.26.2.el6uek
OR
kernel-uek-debug-devel is earlier than 0:2.6.32-400.26.2.el6uek
OR
kernel-uek-devel is earlier than 0:2.6.32-400.26.2.el6uek
OR
kernel-uek-doc is earlier than 0:2.6.32-400.26.2.el6uek
OR
kernel-uek-firmware is earlier than 0:2.6.32-400.26.2.el6uek
OR
kernel-uek-headers is earlier than 0:2.6.32-400.26.2.el6uek
OR
mlnx_en-2.6.32-400.26.2.el6uekdebug is earlier than 0:1.5.7-0.1
OR
ofa-2.6.32-400.26.2.el6uekdebug is earlier than 0:1.5.1-4.0.58
BACK