Oracle Linux 6278 Published by

An Unbreakable Enterprise kernel security update has been released for Oracle Linux 7.



El-errata: ELSA-2020-5671 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2020-5671

  http://linux.oracle.com/errata/ELSA-2020-5671.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
kernel-uek-firmware-3.8.13-118.45.1.el7uek.noarch.rpm
kernel-uek-doc-3.8.13-118.45.1.el7uek.noarch.rpm
kernel-uek-3.8.13-118.45.1.el7uek.x86_64.rpm
kernel-uek-devel-3.8.13-118.45.1.el7uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-118.45.1.el7uek.x86_64.rpm
kernel-uek-debug-3.8.13-118.45.1.el7uek.x86_64.rpm
dtrace-modules-3.8.13-118.45.1.el7uek-0.4.5-3.el7.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-3.8.13-118.45.1.el7uek.src.rpm
  http://oss.oracle.com/ol7/SRPMS-updates/dtrace-modules-3.8.13-118.45.1.el7uek-0.4.5-3.el7.src.rpm


Description of changes:

kernel-uek
[3.8.13-118.45.1.el7uek]
- HID: hiddev: do cleanup in failure of opening a device (Hillf Danton)
[Orabug: 31206361] {CVE-2019-19527}
- HID: hiddev: avoid opening a disconnected device (Hillf Danton)
[Orabug: 31206361] {CVE-2019-19527}
- HID: Fix assumption that devices have inputs (Alan Stern) [Orabug:
31208623] {CVE-2019-19532}
- drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl()
(Murray McAllister) [Orabug: 31224360] {CVE-2017-7261}
- brcmfmac: add subtype check for event handling in data path (John
Donnelly) [Orabug: 31234676] {CVE-2019-9503}