Lucene search

K
oraclelinuxOracleLinuxELSA-2016-3652
HistoryDec 09, 2016 - 12:00 a.m.

Unbreakable Enterprise kernel security update

2016-12-0900:00:00
linux.oracle.com
42

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.823 High

EPSS

Percentile

98.1%

[2.6.39-400.293.1]

  • logging errors that get masked to EIO inside drivers/block/loop.c (Manjunath Patil) [Orabug: 21962821]
  • sched/core: Clear the root_domain cpumasks in init_rootdomain() (Xunlei Pang) [Orabug: 23518650]
  • bio allocation failure due to bio_get_nr_vecs() (Darrick J. Wong) [Orabug: 23852442]
  • mlx4: avoid ABBA deadlock (Wengang Wang) [Orabug: 23538548]
  • mlx4: avoid multiple free on id_map_ent (Wengang Wang) [Orabug: 25022815]
  • sctp: validate chunk len before actually using it (Marcelo Ricardo Leitner) [Orabug: 25142906] {CVE-2016-9555}
    [2.6.39-400.292.1]
  • NVMe: reduce queue depth as workaround for Samsung EPIC SQ errata (Ashok Vairavan) [Orabug: 25138146]
    [2.6.39-400.291.1]
  • RDS: Drop the connection as part of cancel to avoid hangs (Avinash Repaka) [Orabug: 24951873]

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.823 High

EPSS

Percentile

98.1%