ID de Prueba:	1.3.6.1.4.1.25623.1.0.123192
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2015-3003)
Resumen:	The remote host is missing an update for the 'dtrace-modules-3.8.13-55.1.5.el6uek, dtrace-modules-3.8.13-55.1.5.el7uek, kernel-uek' package(s) announced via the ELSA-2015-3003 advisory.
Descripción:	Summary: The remote host is missing an update for the 'dtrace-modules-3.8.13-55.1.5.el6uek, dtrace-modules-3.8.13-55.1.5.el7uek, kernel-uek' package(s) announced via the ELSA-2015-3003 advisory. Vulnerability Insight: kernel-uek [3.8.13-55.1.5] - [CIFS] Possible null ptr deref in SMB2_tcon (Steve French) [Orabug: 20433140] {CVE-2014-7145} [3.8.13-55.1.4] - net: sctp: fix NULL pointer dereference in af->from_addr_param on malformed packet (Daniel Borkmann) [Orabug: 20425332] {CVE-2014-7841} [3.8.13-55.1.3] - ACPI: x2apic entry ignored (Cathy Avery) [Orabug: 19475776] - i40e: relax the firmware API version check (Shannon Nelson) [Orabug: 20216831] - x86, fpu: remove the logic of non-eager fpu mem allocation at the first usage (Annie Li) [Orabug: 20232585] - iommu/{vt-d,amd}: Remove multifunction assumption around grouping (Alex Williamson) [Orabug: 20192796] Affected Software/OS: 'dtrace-modules-3.8.13-55.1.5.el6uek, dtrace-modules-3.8.13-55.1.5.el7uek, kernel-uek' package(s) on Oracle Linux 6, Oracle Linux 7. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-7145 BugTraq ID: 69867 http://www.securityfocus.com/bid/69867 http://www.openwall.com/lists/oss-security/2014/09/22/4 RedHat Security Advisories: RHSA-2015:0102 http://rhn.redhat.com/errata/RHSA-2015-0102.html http://www.ubuntu.com/usn/USN-2394-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-7841 62305 http://secunia.com/advisories/62305 62597 http://secunia.com/advisories/62597 62735 http://secunia.com/advisories/62735 71081 http://www.securityfocus.com/bid/71081 DSA-3093 http://www.debian.org/security/2014/dsa-3093 RHSA-2015:0087 http://rhn.redhat.com/errata/RHSA-2015-0087.html RHSA-2015:0102 RHSA-2015:0284 http://rhn.redhat.com/errata/RHSA-2015-0284.html RHSA-2015:0285 http://rhn.redhat.com/errata/RHSA-2015-0285.html RHSA-2015:0695 http://rhn.redhat.com/errata/RHSA-2015-0695.html SUSE-SU-2015:0481 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html SUSE-SU-2015:0529 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00020.html SUSE-SU-2015:0652 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.html [oss-security] 20141113 CVE-2014-7841 Linux kernel: net: sctp: NULL pointer dereference in af->from_addr_param on malformed packet http://www.openwall.com/lists/oss-security/2014/11/13/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e40607cbe270a9e8360907cb1e62ddf0736e4864 http://linux.oracle.com/errata/ELSA-2015-3004.html http://linux.oracle.com/errata/ELSA-2015-3005.html http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.4 https://bugzilla.redhat.com/show_bug.cgi?id=1163087 https://github.com/torvalds/linux/commit/e40607cbe270a9e8360907cb1e62ddf0736e4864 https://support.f5.com/kb/en-us/solutions/public/16000/000/sol16016.html openSUSE-SU-2015:0566 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.