[Oraclevm-errata] OVMSA-2017-0004 Important: Oracle VM 3.4 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Fri Jan 13 06:57:42 PST 2017


Oracle VM Security Advisory OVMSA-2017-0004

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kernel-uek-4.1.12-61.1.25.el6uek.x86_64.rpm
kernel-uek-firmware-4.1.12-61.1.25.el6uek.noarch.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/kernel-uek-4.1.12-61.1.25.el6uek.src.rpm



Description of changes:

[4.1.12-61.1.25.el6uek]
- KEYS: Fix short sprintf buffer in /proc/keys show function (David 
Howells)  [Orabug: 25306361]  {CVE-2016-7042}
- nvme: Limit command retries (Keith Busch)  [Orabug: 25374751]
- fs/proc/task_mmu.c: fix mm_access() mode parameter in pagemap_read() 
(Kenny Keslar)  [Orabug: 25374977]
- tcp: fix use after free in tcp_xmit_retransmit_queue() (Eric Dumazet) 
  [Orabug: 25374364]  {CVE-2016-6828}
- tunnels: Don't apply GRO to multiple layers of encapsulation. (Jesse 
Gross)  [Orabug: 25036352]  {CVE-2016-8666}
- i40e: Don't notify client(s) for DCB changes on all VSIs (Neerav 
Parikh)  [Orabug: 25046290]
- packet: fix race condition in packet_set_ring (Philip Pettersson) 
[Orabug: 25231617]  {CVE-2016-8655}
- netlink: Fix dump skb leak/double free (Herbert Xu)  [Orabug: 
25231692]  {CVE-2016-9806}
- ALSA: pcm : Call kill_fasync() in stream lock (Takashi Iwai)  [Orabug: 
25231720]  {CVE-2016-9794}
- net: avoid signed overflows for SO_{SND|RCV}BUFFORCE (Eric Dumazet) 
[Orabug: 25231751]  {CVE-2016-9793}

[4.1.12-61.1.24.el6uek]
- rebuild bumping release




More information about the Oraclevm-errata mailing list