Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2011-0928)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.122136

Kategorie: Oracle Linux Local Security Checks

Titel: Oracle: Security Advisory (ELSA-2011-0928)

Zusammenfassung: The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2011-0928 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2011-0928 advisory.

Vulnerability Insight:
[2.6.32-131.6.1.el6]
- [audit] ia32entry.S sign extend error codes when calling 64 bit code (Eric Paris) [713831 703935]
- [audit] push audit success and retcode into arch ptrace.h (Eric Paris) [713831 703935]
- [x86] intel-iommu: Flush unmaps at domain_exit (Alex Williamson) [713458 705441]
- [x86] intel-iommu: Only unlink device domains from iommu (Alex Williamson) [713458 705441]
- [virt] x86: Mask out unsupported CPUID features if running on xen (Igor Mammedov) [711546 703055]
- [block] fix accounting bug on cross partition merges (Jerome Marchand) [682989 669363]
- [net] vlan: remove multiqueue ability from vlan device (Neil Horman) [713494 703245]
- [net] Fix netif_set_real_num_tx_queues (Neil Horman) [713492 702742]
- [scsi] mpt2sas: move event handling of MPT2SAS_TURN_ON_FAULT_LED in process context (Tomas Henzl) [714190 701951]
- [mm] thp: simple fix for /dev/zero THP mprotect bug (Andrea Arcangeli) [714762 690444]

[2.6.32-131.5.1.el6]
- [kernel] cgroupfs: use init_cred when populating new cgroupfs mount (Eric Paris) [713135 700538]
- [netdrv] ixgbe: adding FdirMode module option (Andy Gospodarek) [711550 707287]
- [crypto] testmgr: add xts-aes-256 self-test (Jarod Wilson) [711548 706167]
- [fs] ext3: Fix lost extended attributes for inode with ino == 11 (Eric Sandeen) [712413 662666]
- [mm] Prevent Disk IO throughput degradation due to memory allocation stalls (Larry Woodman) [711540 679526]
- [net] sock: adjust prot->obj_size always (Jiri Pirko) [709381 704231]
- [fs] GFS2: resource group bitmap corruption resulting in panics and withdraws (Robert S Peterson) [711528 702057]
- [x86] kprobes: Disable irqs during optimized callback (Jiri Olsa) [711545 699865]
- [mm] slab, kmemleak: pass the correct pointer to kmemleak_erase() (Steve Best) [712414 698023]
- [net] fix netns vs proto registration ordering (Wade Mealing) [702305 702306] {CVE-2011-1767 CVE-2011-1768}
- [ppc] Fix oops if scan_dispatch_log is called too early (Steve Best) [711524 696777]
- [virt] i8259: initialize isr_ack (Avi Kivity) [711520 670765]
- [virt] VMX: Save and restore tr selector across mode switches (Gleb Natapov) [711535 693894]
- [virt] VMX: update live TR selector if it changes in real mode (Gleb Natapov) [711535 693894]

Affected Software/OS:
'kernel' package(s) on Oracle Linux 6.

Solution:
Please install the updated package(s).

CVSS Score:
5.4

CVSS Vector:
AV:N/AC:H/Au:N/C:N/I:N/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2011-1767
[oss-security] 20110505 Re: CVE requests - kernel network vulns
http://www.openwall.com/lists/oss-security/2011/05/05/6
http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c2892f02712e9516d72841d5c019ed6916329794
https://bugzilla.redhat.com/show_bug.cgi?id=702303
https://github.com/torvalds/linux/commit/c2892f02712e9516d72841d5c019ed6916329794
Common Vulnerability Exposure (CVE) ID: CVE-2011-1768
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978
https://github.com/torvalds/linux/commit/d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978
Common Vulnerability Exposure (CVE) ID: CVE-2011-2479
[oss-security] 20110620 Re: CVE request: kernel: thp: madvise on top of /dev/zero private mapping can lead to panic
http://www.openwall.com/lists/oss-security/2011/06/20/14
http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78f11a255749d09025f54d4e2df4fbcb031530e2
https://bugzilla.redhat.com/show_bug.cgi?id=714761
https://github.com/torvalds/linux/commit/78f11a255749d09025f54d4e2df4fbcb031530e2

Copyright Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.122136
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2011-0928)
Zusammenfassung:	The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2011-0928 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2011-0928 advisory. Vulnerability Insight: [2.6.32-131.6.1.el6] - [audit] ia32entry.S sign extend error codes when calling 64 bit code (Eric Paris) [713831 703935] - [audit] push audit success and retcode into arch ptrace.h (Eric Paris) [713831 703935] - [x86] intel-iommu: Flush unmaps at domain_exit (Alex Williamson) [713458 705441] - [x86] intel-iommu: Only unlink device domains from iommu (Alex Williamson) [713458 705441] - [virt] x86: Mask out unsupported CPUID features if running on xen (Igor Mammedov) [711546 703055] - [block] fix accounting bug on cross partition merges (Jerome Marchand) [682989 669363] - [net] vlan: remove multiqueue ability from vlan device (Neil Horman) [713494 703245] - [net] Fix netif_set_real_num_tx_queues (Neil Horman) [713492 702742] - [scsi] mpt2sas: move event handling of MPT2SAS_TURN_ON_FAULT_LED in process context (Tomas Henzl) [714190 701951] - [mm] thp: simple fix for /dev/zero THP mprotect bug (Andrea Arcangeli) [714762 690444] [2.6.32-131.5.1.el6] - [kernel] cgroupfs: use init_cred when populating new cgroupfs mount (Eric Paris) [713135 700538] - [netdrv] ixgbe: adding FdirMode module option (Andy Gospodarek) [711550 707287] - [crypto] testmgr: add xts-aes-256 self-test (Jarod Wilson) [711548 706167] - [fs] ext3: Fix lost extended attributes for inode with ino == 11 (Eric Sandeen) [712413 662666] - [mm] Prevent Disk IO throughput degradation due to memory allocation stalls (Larry Woodman) [711540 679526] - [net] sock: adjust prot->obj_size always (Jiri Pirko) [709381 704231] - [fs] GFS2: resource group bitmap corruption resulting in panics and withdraws (Robert S Peterson) [711528 702057] - [x86] kprobes: Disable irqs during optimized callback (Jiri Olsa) [711545 699865] - [mm] slab, kmemleak: pass the correct pointer to kmemleak_erase() (Steve Best) [712414 698023] - [net] fix netns vs proto registration ordering (Wade Mealing) [702305 702306] {CVE-2011-1767 CVE-2011-1768} - [ppc] Fix oops if scan_dispatch_log is called too early (Steve Best) [711524 696777] - [virt] i8259: initialize isr_ack (Avi Kivity) [711520 670765] - [virt] VMX: Save and restore tr selector across mode switches (Gleb Natapov) [711535 693894] - [virt] VMX: update live TR selector if it changes in real mode (Gleb Natapov) [711535 693894] Affected Software/OS: 'kernel' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 5.4 CVSS Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1767 [oss-security] 20110505 Re: CVE requests - kernel network vulns http://www.openwall.com/lists/oss-security/2011/05/05/6 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c2892f02712e9516d72841d5c019ed6916329794 https://bugzilla.redhat.com/show_bug.cgi?id=702303 https://github.com/torvalds/linux/commit/c2892f02712e9516d72841d5c019ed6916329794 Common Vulnerability Exposure (CVE) ID: CVE-2011-1768 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978 https://github.com/torvalds/linux/commit/d5aa407f59f5b83d2c50ec88f5bf56d40f1f8978 Common Vulnerability Exposure (CVE) ID: CVE-2011-2479 [oss-security] 20110620 Re: CVE request: kernel: thp: madvise on top of /dev/zero private mapping can lead to panic http://www.openwall.com/lists/oss-security/2011/06/20/14 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78f11a255749d09025f54d4e2df4fbcb031530e2 https://bugzilla.redhat.com/show_bug.cgi?id=714761 https://github.com/torvalds/linux/commit/78f11a255749d09025f54d4e2df4fbcb031530e2
Copyright	Copyright (C) 2015 Greenbone AG