El-errata: ELSA-2020-5841 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
Oracle Linux Security Advisory ELSA-2020-5841
http://linux.oracle.com/errata/ELSA-2020-5841.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
kernel-uek-firmware-3.8.13-118.49.1.el7uek.noarch.rpm
kernel-uek-doc-3.8.13-118.49.1.el7uek.noarch.rpm
kernel-uek-3.8.13-118.49.1.el7uek.x86_64.rpm
kernel-uek-devel-3.8.13-118.49.1.el7uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-118.49.1.el7uek.x86_64.rpm
kernel-uek-debug-3.8.13-118.49.1.el7uek.x86_64.rpm
dtrace-modules-3.8.13-118.49.1.el7uek-0.4.5-3.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-3.8.13-118.49.1.el7uek.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/dtrace-modules-3.8.13-118.49.1.el7uek-0.4.5-3.el7.src.rpm
Description of changes:
kernel-uek
[3.8.13-118.49.1.el7uek]
- sunrpc: use SVC_NET() in svcauth_gss_* functions (Vasily Averin)
[Orabug: 31351996] {CVE-2018-16884}
- sunrpc: use-after-free in svc_process_common() (Vasily Averin)
[Orabug: 31351996] {CVE-2018-16884}
- af_packet: set defaule value for tmo (Mao Wenan) [Orabug: 31439108]
{CVE-2019-20812}
- vgacon: Fix for missing check in scrollback handling (Yunhai Zhang)
[Orabug: 31705122] {CVE-2020-14331} {CVE-2020-14331}
- rename kABI whitelists to lockedlists (Dan Duval) [Orabug: 31783152]
An Unbreakable Enterprise kernel security update has been released for Oracle Linux 7.