New Search

ELSA-2014-3014 -- unbreakable enterprise kernel security update (important)

oval:org.mitre.oval:def:26883

kernel-uek [3.8.13-26.2.2.el6uek] - netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (Daniel Borkmann) [Orabug: 18421673] {CVE-2014-2523} - cifs: ensure that uncached writes handle unmapped areas correctly (Jeff Layton) [Orabug: 18461067] {CVE-2014-0069} {CVE-2014-0069} - net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH capable (Daniel Borkmann) [Orabug: 18461065] {CVE-2014-0101} - vhost-net: insufficient handling of error conditions in get_rx_bufs() (Guangyu Sun) [Orabug: 18461050] {CVE-2014-0055}

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Oracle Linux 6
Class:
patch
Reference(s):
  • ELSA-2014-3014
  • CVE-2014-0055
  • CVE-2014-0069
  • CVE-2014-0101
  • CVE-2014-2523
Product(s):
  • kernel-uek-doc
  • kernel-uek-firmware
  • kernel-uek-headers
  • kernel-uek
  • kernel-uek-debug
  • dtrace-modules
  • kernel-uek-devel
  • kernel-uek-debug-devel