Oracle Linux 6255 Published by

The following security updates has been released for Oracle Linux:

ELSA-2017-2485 Important: Oracle Linux 6 git security update
ELSA-2017-2486 Important: Oracle Linux 7 groovy security update
ELSA-2017-2489 Important: Oracle Linux 7 mercurial security update
ELSA-2017-3605 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update
ELSA-2017-3605 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update



ELSA-2017-2485 Important: Oracle Linux 6 git security update

Oracle Linux Security Advisory ELSA-2017-2485

http://linux.oracle.com/errata/ELSA-2017-2485.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
emacs-git-1.7.1-9.el6_9.noarch.rpm
emacs-git-el-1.7.1-9.el6_9.noarch.rpm
git-1.7.1-9.el6_9.i686.rpm
git-all-1.7.1-9.el6_9.noarch.rpm
git-cvs-1.7.1-9.el6_9.noarch.rpm
git-daemon-1.7.1-9.el6_9.i686.rpm
git-email-1.7.1-9.el6_9.noarch.rpm
git-gui-1.7.1-9.el6_9.noarch.rpm
git-svn-1.7.1-9.el6_9.noarch.rpm
gitk-1.7.1-9.el6_9.noarch.rpm
gitweb-1.7.1-9.el6_9.noarch.rpm
perl-Git-1.7.1-9.el6_9.noarch.rpm

x86_64:
emacs-git-1.7.1-9.el6_9.noarch.rpm
emacs-git-el-1.7.1-9.el6_9.noarch.rpm
git-1.7.1-9.el6_9.x86_64.rpm
git-all-1.7.1-9.el6_9.noarch.rpm
git-cvs-1.7.1-9.el6_9.noarch.rpm
git-daemon-1.7.1-9.el6_9.x86_64.rpm
git-email-1.7.1-9.el6_9.noarch.rpm
git-gui-1.7.1-9.el6_9.noarch.rpm
git-svn-1.7.1-9.el6_9.noarch.rpm
gitk-1.7.1-9.el6_9.noarch.rpm
gitweb-1.7.1-9.el6_9.noarch.rpm
perl-Git-1.7.1-9.el6_9.noarch.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/git-1.7.1-9.el6_9.src.rpm



Description of changes:

[1.7.1-9]
- prevent command injection via malicious ssh URLs
Resolves: CVE-2017-1000117

ELSA-2017-2486 Important: Oracle Linux 7 groovy security update

Oracle Linux Security Advisory ELSA-2017-2486

http://linux.oracle.com/errata/ELSA-2017-2486.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
groovy-1.8.9-8.el7_4.noarch.rpm
groovy-javadoc-1.8.9-8.el7_4.noarch.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/groovy-1.8.9-8.el7_4.src.rpm



Description of changes:

[1.8.9-8]
- Fix Information disclosure vulnerability
- Resolves: CVE-2016-6814

ELSA-2017-2489 Important: Oracle Linux 7 mercurial security update

Oracle Linux Security Advisory ELSA-2017-2489

http://linux.oracle.com/errata/ELSA-2017-2489.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
emacs-mercurial-2.6.2-8.el7_4.x86_64.rpm
emacs-mercurial-el-2.6.2-8.el7_4.x86_64.rpm
mercurial-2.6.2-8.el7_4.x86_64.rpm
mercurial-hgk-2.6.2-8.el7_4.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/mercurial-2.6.2-8.el7_4.src.rpm



Description of changes:

[2.6.2-8]
- Fix CVE-2017-1000115 and CVE-2017-1000116

ELSA-2017-3605 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2017-3605

http://linux.oracle.com/errata/ELSA-2017-3605.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

x86_64:
kernel-uek-4.1.12-94.5.9.el6uek.x86_64.rpm
kernel-uek-doc-4.1.12-94.5.9.el6uek.noarch.rpm
kernel-uek-firmware-4.1.12-94.5.9.el6uek.noarch.rpm
kernel-uek-devel-4.1.12-94.5.9.el6uek.x86_64.rpm
kernel-uek-debug-4.1.12-94.5.9.el6uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-94.5.9.el6uek.x86_64.rpm
dtrace-modules-4.1.12-94.5.9.el6uek-0.6.0-4.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-4.1.12-94.5.9.el6uek.src.rpm
http://oss.oracle.com/ol6/SRPMS-updates/dtrace-modules-4.1.12-94.5.9.el6uek-0.6.0-4.el6.src.rpm



Description of changes:

kernel-uek
[4.1.12-94.5.9.el6uek]
- dentry name snapshots (Al Viro) [Orabug: 26630936] {CVE-2017-7533}

[4.1.12-94.5.8.el6uek]
- scsi: libiscsi: use kvzalloc for iscsi_pool_init (Kyle Fortin)
[Orabug: 26621191]
- mm: introduce kv[mz]alloc helpers (Kyle Fortin) [Orabug: 26621191]
- KEYS: Disallow keyrings beginning with '.' to be joined as session
keyrings (David Howells) [Orabug: 26621179] {CVE-2016-9604}
{CVE-2016-9604}
- l2tp: fix racy SOCK_ZAPPED flag check in l2tp_ip{,6}_bind() (Guillaume
Nault) [Orabug: 26621176] {CVE-2016-10200}
- mnt: Add a per mount namespace limit on the number of mounts (Eric W.
Biederman) [Orabug: 26621171] {CVE-2016-6213} {CVE-2016-6213}
- ipv6: fix out of bound writes in __ip6_append_data() (Eric Dumazet)
[Orabug: 26621163] {CVE-2017-9242}

ELSA-2017-3605 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2017-3605

http://linux.oracle.com/errata/ELSA-2017-3605.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
kernel-uek-doc-4.1.12-94.5.9.el7uek.noarch.rpm
kernel-uek-firmware-4.1.12-94.5.9.el7uek.noarch.rpm
kernel-uek-4.1.12-94.5.9.el7uek.x86_64.rpm
kernel-uek-devel-4.1.12-94.5.9.el7uek.x86_64.rpm
kernel-uek-debug-4.1.12-94.5.9.el7uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-94.5.9.el7uek.x86_64.rpm
dtrace-modules-4.1.12-94.5.9.el7uek-0.6.0-4.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-4.1.12-94.5.9.el7uek.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates/dtrace-modules-4.1.12-94.5.9.el7uek-0.6.0-4.el7.src.rpm



Description of changes:

kernel-uek
[4.1.12-94.5.9.el7uek]
- dentry name snapshots (Al Viro) [Orabug: 26630936] {CVE-2017-7533}

[4.1.12-94.5.8.el7uek]
- scsi: libiscsi: use kvzalloc for iscsi_pool_init (Kyle Fortin)
[Orabug: 26621191]
- mm: introduce kv[mz]alloc helpers (Kyle Fortin) [Orabug: 26621191]
- KEYS: Disallow keyrings beginning with '.' to be joined as session
keyrings (David Howells) [Orabug: 26621179] {CVE-2016-9604}
{CVE-2016-9604}
- l2tp: fix racy SOCK_ZAPPED flag check in l2tp_ip{,6}_bind() (Guillaume
Nault) [Orabug: 26621176] {CVE-2016-10200}
- mnt: Add a per mount namespace limit on the number of mounts (Eric W.
Biederman) [Orabug: 26621171] {CVE-2016-6213} {CVE-2016-6213}
- ipv6: fix out of bound writes in __ip6_append_data() (Eric Dumazet)
[Orabug: 26621163] {CVE-2017-9242}