| Revision Date: | 2015-03-16 | Version: | 10 |
| Title: | ELSA-2011-2033 -- Unbreakable Enterprise kernel security update (important) |
| Description: | [2.6.32-200.23.1.el6uek] - net: Remove atmclip.h to prevent break kabi check. - KConfig: add CONFIG_UEK5=n to ol6/config-generic [2.6.32-200.22.1.el6uek] - ipv6: make fragment identifications less predictable (Joe Jin) {CVE-2011-2699} - vlan: fix panic when handling priority tagged frames (Joe Jin) {CVE-2011-3593} - ipv6: udp: fix the wrong headroom check (Maxim Uvarov) {CVE-2011-4326} - b43: allocate receive buffers big enough for max frame len + offset (Maxim Uvarov) {CVE-2011-3359} - fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message (Maxim Uvarov) {CVE-2011-3353} - cifs: fix possible memory corruption in CIFSFindNext (Maxim Uvarov) {CVE-2011-3191} - crypto: md5 - Add export support (Maxim Uvarov) {CVE-2011-2699} - fs/partitions/efi.c: corrupted GUID partition tables can cause kernel oops (Maxim Uvarov) {CVE-2011-1577} - block: use struct parsed_partitions *state universally in partition check code (Maxim Uvarov) - net: Compute protocol sequence numbers and fragment IDs using MD5. (Maxim Uvarov) {CVE-2011-3188} - crypto: Move md5_transform to lib/md5.c (Maxim Uvarov) {CVE-2011-3188} - perf tools: do not look at ./config for configuration (Maxim Uvarov) {CVE-2011-2905} - Make TASKSTATS require root access (Maxim Uvarov) {CVE-2011-2494} - TPM: Zero buffer after copying to userspace (Maxim Uvarov) {CVE-2011-1162} - TPM: Call tpm_transmit with correct size (Maxim Uvarov){CVE-2011-1161} - fnic: fix panic while booting in fnic(Xiaowei Hu) - Revert 'PCI hotplug: acpiphp: set current_state to D0 in register_slot' (Guru Anbalagane) - xen: drop xen_sched_clock in favour of using plain wallclock time (Jeremy Fitzhardinge) [2.6.32-200.21.1.el6uek] - PCI: Set device power state to PCI_D0 for device without native PM support (Ajaykumar Hotchandani) [orabug 13033435] |
| Family: | unix | Class: | patch |
| Status: | ACCEPTED | Reference(s): | CVE-2011-1162
CVE-2011-1577
CVE-2011-2494
CVE-2011-2699
CVE-2011-3188
CVE-2011-3191
CVE-2011-3353
CVE-2011-3593
CVE-2011-4326
ELSA-2011-2033
|
| Platform(s): | Oracle Linux 5
Oracle Linux 6
| Product(s): | kernel-uek
kernel-uek-debug
kernel-uek-debug-devel
kernel-uek-devel
kernel-uek-doc
kernel-uek-firmware
kernel-uek-headers
ofa
|
| Definition Synopsis |
| Oracle Linux 5 release section Oracle Linux 5.x
AND Packages match section
kernel-uek is earlier than 0:2.6.32-200.23.1.el5uek
OR ofa-2.6.32-200.23.1.el5uek is earlier than 0:1.5.1-4.0.53
OR kernel-uek-debug is earlier than 0:2.6.32-200.23.1.el5uek
OR kernel-uek-debug-devel is earlier than 0:2.6.32-200.23.1.el5uek
OR kernel-uek-devel is earlier than 0:2.6.32-200.23.1.el5uek
OR kernel-uek-doc is earlier than 0:2.6.32-200.23.1.el5uek
OR kernel-uek-firmware is earlier than 0:2.6.32-200.23.1.el5uek
OR kernel-uek-headers is earlier than 0:2.6.32-200.23.1.el5uek
OR ofa-2.6.32-200.23.1.el5uekdebug is earlier than 0:1.5.1-4.0.53
Oracle Linux 6 release section
Oracle Linux 6.x
AND Packages match section
kernel-uek is earlier than 0:2.6.32-200.23.1.el6uek
OR ofa-2.6.32-200.23.1.el6uek is earlier than 0:1.5.1-4.0.47
OR kernel-uek-debug is earlier than 0:2.6.32-200.23.1.el6uek
OR kernel-uek-debug-devel is earlier than 0:2.6.32-200.23.1.el6uek
OR kernel-uek-devel is earlier than 0:2.6.32-200.23.1.el6uek
OR kernel-uek-doc is earlier than 0:2.6.32-200.23.1.el6uek
OR kernel-uek-firmware is earlier than 0:2.6.32-200.23.1.el6uek
OR kernel-uek-headers is earlier than 0:2.6.32-200.23.1.el6uek
OR ofa-2.6.32-200.23.1.el6uekdebug is earlier than 0:1.5.1-4.0.47
|