Oracle Linux 6277 Published by

An Unbreakable Enterprise kernel security update has been released for Oracle Linux 6.



El-errata: ELSA-2020-5841 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2020-5841

  http://linux.oracle.com/errata/ELSA-2020-5841.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

x86_64:
kernel-uek-firmware-3.8.13-118.49.1.el6uek.noarch.rpm
kernel-uek-doc-3.8.13-118.49.1.el6uek.noarch.rpm
kernel-uek-3.8.13-118.49.1.el6uek.x86_64.rpm
kernel-uek-devel-3.8.13-118.49.1.el6uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-118.49.1.el6uek.x86_64.rpm
kernel-uek-debug-3.8.13-118.49.1.el6uek.x86_64.rpm
dtrace-modules-3.8.13-118.49.1.el6uek-0.4.5-3.el6.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-3.8.13-118.49.1.el6uek.src.rpm
  http://oss.oracle.com/ol6/SRPMS-updates/dtrace-modules-3.8.13-118.49.1.el6uek-0.4.5-3.el6.src.rpm


Description of changes:

kernel-uek
[3.8.13-118.49.1.el6uek]
- sunrpc: use SVC_NET() in svcauth_gss_* functions (Vasily Averin)
[Orabug: 31351996] {CVE-2018-16884}
- sunrpc: use-after-free in svc_process_common() (Vasily Averin)
[Orabug: 31351996] {CVE-2018-16884}
- af_packet: set defaule value for tmo (Mao Wenan) [Orabug: 31439108]
{CVE-2019-20812}
- vgacon: Fix for missing check in scrollback handling (Yunhai Zhang)
[Orabug: 31705122] {CVE-2020-14331} {CVE-2020-14331}
- rename kABI whitelists to lockedlists (Dan Duval) [Orabug: 31783152]