Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2015-0987)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.123122

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2015-0987)

Resumen: The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2015-0987 advisory.

Descripción: Summary:
The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2015-0987 advisory.

Vulnerability Insight:
[3.10.0-229.4.2]
- Oracle Linux certificates (Alexey Petrenko)

[3.10.0-229.4.2]
- [x86] crypto: aesni - fix memory usage in GCM decryption (Kurt Stutsman) [1213331 1212178] {CVE-2015-3331}

[3.10.0-229.4.1]
- [crypto] x86: sha256_ssse3 - also test for BMI2 (Herbert Xu) [1211484 1201563]
- [crypto] testmgr: fix RNG return code enforcement (Herbert Xu) [1211487 1198978]
- [crypto] rng: RNGs must return 0 in success case (Herbert Xu) [1211487 1198978]
- [crypto] x86: sha1 - reduce size of the AVX2 asm implementation (Herbert Xu) [1211291 1177968]
- [crypto] x86: sha1 - fix stack alignment of AVX2 variant (Herbert Xu) [1211291 1177968]
- [crypto] x86: sha1 - re-enable the AVX variant (Herbert Xu) [1211291 1177968]
- [crypto] sha: SHA1 transform x86_64 AVX2 (Herbert Xu) [1211291 1177968]
- [crypto] sha-mb: sha1_mb_alg_state can be static (Herbert Xu) [1211290 1173756]
- [crypto] mcryptd: mcryptd_flist can be static (Herbert Xu) [1211290 1173756]
- [crypto] sha-mb: SHA1 multibuffer job manager and glue code (Herbert Xu) [1211290 1173756]
- [crypto] sha-mb: SHA1 multibuffer crypto computation (x8 AVX2) (Herbert Xu) [1211290 1173756]
- [crypto] sha-mb: SHA1 multibuffer submit and flush routines for AVX2 (Herbert Xu) [1211290 1173756]
- [crypto] sha-mb: SHA1 multibuffer algorithm data structures (Herbert Xu) [1211290 1173756]
- [crypto] sha-mb: multibuffer crypto infrastructure (Herbert Xu) [1211290 1173756]
- [kernel] sched: Add function single_task_running to let a task check if it is the only task running on a cpu (Herbert Xu) [1211290 1173756]
- [crypto] ahash: initialize entry len for null input in crypto hash sg list walk (Herbert Xu) [1211290 1173756]
- [crypto] ahash: Add real ahash walk interface (Herbert Xu) [1211290 1173756]
- [char] random: account for entropy loss due to overwrites (Herbert Xu) [1211288 1110044]
- [char] random: allow fractional bits to be tracked (Herbert Xu) [1211288 1110044]
- [char] random: statically compute poolbitshift, poolbytes, poolbits (Herbert Xu) [1211288 1110044]

[3.10.0-229.3.1]
- [netdrv] mlx4_en: tx_info->ts_requested was not cleared (Doug Ledford) [1209240 1178070]

[3.10.0-229.2.1]
- [char] tpm: Added Little Endian support to vtpm module (Steve Best) [1207051 1189017]
- [powerpc] pseries: Fix endian problems with LE migration (Steve Best) [1207050 1183198]
- [iommu] vt-d: Work around broken RMRR firmware entries (Myron Stowe) [1205303 1195802]
- [iommu] vt-d: Store bus information in RMRR PCI device path (Myron Stowe) [1205303 1195802]
- [s390] zcrypt: enable s390 hwrng to seed kernel entropy (Hendrik Brueckner) [1205300 1196398]
- [s390] zcrypt: improve device probing for zcrypt adapter cards (Hendrik Brueckner) [1205300 1196398]
- [net] team: fix possible null pointer dereference in team_handle_frame (Jiri Pirko) [1202359 1188496]
- [fs] fsnotify: fix handling of renames in audit (Paul Moore) [1202358 1191562]
- [net] ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'kernel' package(s) on Oracle Linux 7.

Solution:
Please install the updated package(s).

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-3331
Debian Security Information: DSA-3237 (Google Search)
http://www.debian.org/security/2015/dsa-3237
http://www.openwall.com/lists/oss-security/2015/04/14/16
RedHat Security Advisories: RHSA-2015:1081
http://rhn.redhat.com/errata/RHSA-2015-1081.html
RedHat Security Advisories: RHSA-2015:1199
http://rhn.redhat.com/errata/RHSA-2015-1199.html
http://www.securitytracker.com/id/1032416
SuSE Security Announcement: SUSE-SU-2015:1478 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html
SuSE Security Announcement: SUSE-SU-2015:1487 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00007.html
SuSE Security Announcement: SUSE-SU-2015:1488 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00008.html
SuSE Security Announcement: SUSE-SU-2015:1489 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00009.html
SuSE Security Announcement: SUSE-SU-2015:1491 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00011.html
http://www.ubuntu.com/usn/USN-2631-1
http://www.ubuntu.com/usn/USN-2632-1

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.123122
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2015-0987)
Resumen:	The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2015-0987 advisory.
Descripción:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2015-0987 advisory. Vulnerability Insight: [3.10.0-229.4.2] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-229.4.2] - [x86] crypto: aesni - fix memory usage in GCM decryption (Kurt Stutsman) [1213331 1212178] {CVE-2015-3331} [3.10.0-229.4.1] - [crypto] x86: sha256_ssse3 - also test for BMI2 (Herbert Xu) [1211484 1201563] - [crypto] testmgr: fix RNG return code enforcement (Herbert Xu) [1211487 1198978] - [crypto] rng: RNGs must return 0 in success case (Herbert Xu) [1211487 1198978] - [crypto] x86: sha1 - reduce size of the AVX2 asm implementation (Herbert Xu) [1211291 1177968] - [crypto] x86: sha1 - fix stack alignment of AVX2 variant (Herbert Xu) [1211291 1177968] - [crypto] x86: sha1 - re-enable the AVX variant (Herbert Xu) [1211291 1177968] - [crypto] sha: SHA1 transform x86_64 AVX2 (Herbert Xu) [1211291 1177968] - [crypto] sha-mb: sha1_mb_alg_state can be static (Herbert Xu) [1211290 1173756] - [crypto] mcryptd: mcryptd_flist can be static (Herbert Xu) [1211290 1173756] - [crypto] sha-mb: SHA1 multibuffer job manager and glue code (Herbert Xu) [1211290 1173756] - [crypto] sha-mb: SHA1 multibuffer crypto computation (x8 AVX2) (Herbert Xu) [1211290 1173756] - [crypto] sha-mb: SHA1 multibuffer submit and flush routines for AVX2 (Herbert Xu) [1211290 1173756] - [crypto] sha-mb: SHA1 multibuffer algorithm data structures (Herbert Xu) [1211290 1173756] - [crypto] sha-mb: multibuffer crypto infrastructure (Herbert Xu) [1211290 1173756] - [kernel] sched: Add function single_task_running to let a task check if it is the only task running on a cpu (Herbert Xu) [1211290 1173756] - [crypto] ahash: initialize entry len for null input in crypto hash sg list walk (Herbert Xu) [1211290 1173756] - [crypto] ahash: Add real ahash walk interface (Herbert Xu) [1211290 1173756] - [char] random: account for entropy loss due to overwrites (Herbert Xu) [1211288 1110044] - [char] random: allow fractional bits to be tracked (Herbert Xu) [1211288 1110044] - [char] random: statically compute poolbitshift, poolbytes, poolbits (Herbert Xu) [1211288 1110044] [3.10.0-229.3.1] - [netdrv] mlx4_en: tx_info->ts_requested was not cleared (Doug Ledford) [1209240 1178070] [3.10.0-229.2.1] - [char] tpm: Added Little Endian support to vtpm module (Steve Best) [1207051 1189017] - [powerpc] pseries: Fix endian problems with LE migration (Steve Best) [1207050 1183198] - [iommu] vt-d: Work around broken RMRR firmware entries (Myron Stowe) [1205303 1195802] - [iommu] vt-d: Store bus information in RMRR PCI device path (Myron Stowe) [1205303 1195802] - [s390] zcrypt: enable s390 hwrng to seed kernel entropy (Hendrik Brueckner) [1205300 1196398] - [s390] zcrypt: improve device probing for zcrypt adapter cards (Hendrik Brueckner) [1205300 1196398] - [net] team: fix possible null pointer dereference in team_handle_frame (Jiri Pirko) [1202359 1188496] - [fs] fsnotify: fix handling of renames in audit (Paul Moore) [1202358 1191562] - [net] ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'kernel' package(s) on Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-3331 Debian Security Information: DSA-3237 (Google Search) http://www.debian.org/security/2015/dsa-3237 http://www.openwall.com/lists/oss-security/2015/04/14/16 RedHat Security Advisories: RHSA-2015:1081 http://rhn.redhat.com/errata/RHSA-2015-1081.html RedHat Security Advisories: RHSA-2015:1199 http://rhn.redhat.com/errata/RHSA-2015-1199.html http://www.securitytracker.com/id/1032416 SuSE Security Announcement: SUSE-SU-2015:1478 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html SuSE Security Announcement: SUSE-SU-2015:1487 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00007.html SuSE Security Announcement: SUSE-SU-2015:1488 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00008.html SuSE Security Announcement: SUSE-SU-2015:1489 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00009.html SuSE Security Announcement: SUSE-SU-2015:1491 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00011.html http://www.ubuntu.com/usn/USN-2631-1 http://www.ubuntu.com/usn/USN-2632-1
Copyright	Copyright (C) 2015 Greenbone AG