New Search

ELSA-2013-2537 -- unbreakable enterprise kernel security update (moderate)

oval:org.mitre.oval:def:27433

kernel-uek [2.6.32-400.29.2uek] - Bluetooth: RFCOMM - Fix missing msg_namelen update in rfcomm_sock_recvmsg() (Mathias Krause) [Orabug: 17173824] {CVE-2013-3225} - Bluetooth: fix possible info leak in bt_sock_recvmsg() (Mathias Krause) [Orabug: 17173824] {CVE-2013-3224} - atm: update msg_namelen in vcc_recvmsg() (Mathias Krause) [Orabug: 17173824] {CVE-2013-3222} - dcbnl: fix various netlink info leaks (Mathias Krause) [Orabug: 17173824] {CVE-2013-2634} - udf: avoid info leak on export (Mathias Krause) [Orabug: 17173824] {CVE-2012-6548} - b43: stop format string leaking into error msgs (Kees Cook) [Orabug: 17173824] {CVE-2013-2852} - signal: always clear sa_restorer on execve (Kees Cook) [Orabug: 17173824] {CVE-2013-0914}

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Oracle Linux 5
  • Oracle Linux 6
Class:
patch
Reference(s):
  • ELSA-2013-2537
  • CVE-2013-0914
  • CVE-2013-3222
  • CVE-2013-3224
  • CVE-2012-6548
  • CVE-2013-2634
  • CVE-2013-2852
  • CVE-2013-3225
Product(s):
  • kernel-uek-doc
  • ofa
  • kernel-uek-debug
  • kernel-uek-debug-devel
  • kernel-uek-devel
  • kernel-uek-headers
  • mlnx_en
  • kernel-uek-firmware
  • kernel-uek