El-errata: ELSA-2020-5671 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
Oracle Linux Security Advisory ELSA-2020-5671
http://linux.oracle.com/errata/ELSA-2020-5671.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
kernel-uek-firmware-3.8.13-118.45.1.el7uek.noarch.rpm
kernel-uek-doc-3.8.13-118.45.1.el7uek.noarch.rpm
kernel-uek-3.8.13-118.45.1.el7uek.x86_64.rpm
kernel-uek-devel-3.8.13-118.45.1.el7uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-118.45.1.el7uek.x86_64.rpm
kernel-uek-debug-3.8.13-118.45.1.el7uek.x86_64.rpm
dtrace-modules-3.8.13-118.45.1.el7uek-0.4.5-3.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-3.8.13-118.45.1.el7uek.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/dtrace-modules-3.8.13-118.45.1.el7uek-0.4.5-3.el7.src.rpm
Description of changes:
kernel-uek
[3.8.13-118.45.1.el7uek]
- HID: hiddev: do cleanup in failure of opening a device (Hillf Danton)
[Orabug: 31206361] {CVE-2019-19527}
- HID: hiddev: avoid opening a disconnected device (Hillf Danton)
[Orabug: 31206361] {CVE-2019-19527}
- HID: Fix assumption that devices have inputs (Alan Stern) [Orabug:
31208623] {CVE-2019-19532}
- drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl()
(Murray McAllister) [Orabug: 31224360] {CVE-2017-7261}
- brcmfmac: add subtype check for event handling in data path (John
Donnelly) [Orabug: 31234676] {CVE-2019-9503}
An Unbreakable Enterprise kernel security update has been released for Oracle Linux 7.