Unbreakable Enterprise kernel security update

2016-12-0700:00:00

linux.oracle.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.823 High

EPSS

Percentile

98.1%

JSON

kernel-uek
[4.1.12-61.1.22]

ocfs2: fix trans extend while free cached blocks (Junxiao Bi) [Orabug: 25136991]
ocfs2: fix trans extend while flush truncate log (Junxiao Bi) [Orabug: 25136991]
ocfs2: extend enough credits for freeing one truncate record while replaying truncate records (Xue jiufei) [Orabug: 25136991]
mpi: Fix NULL ptr dereference in mpi_powm() [ver #3] (Andrey Ryabinin) [Orabug: 25154096] {CVE-2016-8650} {CVE-2016-8650}
mlx4: avoid multiple free on id_map_ent (Wengang Wang) [Orabug: 25159035]
[4.1.12-61.1.21]
NVMe: reduce queue depth as workaround for Samsung EPIC SQ errata (Ashok Vairavan) [Orabug: 25144380]
sctp: validate chunk len before actually using it (Marcelo Ricardo Leitner) [Orabug: 25142868] {CVE-2016-9555}
[4.1.12-61.1.20]
rebuild bumping release

OSVersionArchitecturePackageVersionFilename
oracle linux6srcdtrace-modules-4.1.12-61.1.22.el6uek< 0.5.3-2.el6dtrace-modules-4.1.12-61.1.22.el6uek-0.5.3-2.el6.src.rpm
oracle linux6srckernel-uek< 4.1.12-61.1.22.el6uekkernel-uek-4.1.12-61.1.22.el6uek.src.rpm
oracle linux6x86_64dtrace-modules-4.1.12-61.1.22.el6uek< 0.5.3-2.el6dtrace-modules-4.1.12-61.1.22.el6uek-0.5.3-2.el6.x86_64.rpm
oracle linux6x86_64kernel-uek< 4.1.12-61.1.22.el6uekkernel-uek-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux6x86_64kernel-uek-debug< 4.1.12-61.1.22.el6uekkernel-uek-debug-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux6x86_64kernel-uek-debug-devel< 4.1.12-61.1.22.el6uekkernel-uek-debug-devel-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux6x86_64kernel-uek-devel< 4.1.12-61.1.22.el6uekkernel-uek-devel-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux6noarchkernel-uek-doc< 4.1.12-61.1.22.el6uekkernel-uek-doc-4.1.12-61.1.22.el6uek.noarch.rpm
oracle linux6noarchkernel-uek-firmware< 4.1.12-61.1.22.el6uekkernel-uek-firmware-4.1.12-61.1.22.el6uek.noarch.rpm
oracle linux7srcdtrace-modules-4.1.12-61.1.22.el7uek< 0.5.3-2.el7dtrace-modules-4.1.12-61.1.22.el7uek-0.5.3-2.el7.src.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	6	src	dtrace-modules-4.1.12-61.1.22.el6uek	< 0.5.3-2.el6	dtrace-modules-4.1.12-61.1.22.el6uek-0.5.3-2.el6.src.rpm
oracle linux	6	src	kernel-uek	< 4.1.12-61.1.22.el6uek	kernel-uek-4.1.12-61.1.22.el6uek.src.rpm
oracle linux	6	x86_64	dtrace-modules-4.1.12-61.1.22.el6uek	< 0.5.3-2.el6	dtrace-modules-4.1.12-61.1.22.el6uek-0.5.3-2.el6.x86_64.rpm
oracle linux	6	x86_64	kernel-uek	< 4.1.12-61.1.22.el6uek	kernel-uek-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux	6	x86_64	kernel-uek-debug	< 4.1.12-61.1.22.el6uek	kernel-uek-debug-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux	6	x86_64	kernel-uek-debug-devel	< 4.1.12-61.1.22.el6uek	kernel-uek-debug-devel-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux	6	x86_64	kernel-uek-devel	< 4.1.12-61.1.22.el6uek	kernel-uek-devel-4.1.12-61.1.22.el6uek.x86_64.rpm
oracle linux	6	noarch	kernel-uek-doc	< 4.1.12-61.1.22.el6uek	kernel-uek-doc-4.1.12-61.1.22.el6uek.noarch.rpm
oracle linux	6	noarch	kernel-uek-firmware	< 4.1.12-61.1.22.el6uek	kernel-uek-firmware-4.1.12-61.1.22.el6uek.noarch.rpm
oracle linux	7	src	dtrace-modules-4.1.12-61.1.22.el7uek	< 0.5.3-2.el7	dtrace-modules-4.1.12-61.1.22.el7uek-0.5.3-2.el7.src.rpm