Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleLinuxELSA-2017-1615
HistoryJun 28, 2017 - 12:00 a.m.

kernel security and bug fix update

2017-06-2800:00:00
linux.oracle.com
23

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.905 High

EPSS

Percentile

98.5%

JSON
  • [3.10.0-514.26.1.OL7]
  • Oracle Linux certificates (Alexey Petrenko)
  • Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)([email protected])
  • Update x509.genkey [bug 24817676]
    [3.10.0-514.26.1]
  • [mm] enlarge stack guard gap (Larry Woodman) [1452732 1452733] {CVE-2017-1000364}
  • Revert: [md] dm mirror: use all available legs on multiple failures (Mike Snitzer) [1449176 1383444]
    [3.10.0-514.25.1]
  • [lib] kobject: grab an extra reference on kobject->sd to allow duplicate deletes (Aristeu Rozanski) [1454851 1427252]
  • [kernel] module: When modifying a module’s text ignore modules which are going away too (Aaron Tomlin) [1454684 1386313]
  • [kernel] module: Ensure a module’s state is set accordingly during module coming cleanup code (Aaron Tomlin) [1454684 1386313]
  • [net] vxlan: do not output confusing error message (Jiri Benc) [1454636 1445054]
  • [net] vxlan: correctly handle ipv6.disable module parameter (Jiri Benc) [1454636 1445054]
  • [iommu] vt-d: fix range computation when making room for large pages (Alex Williamson) [1450856 1435612]
  • [fs] nfsd: stricter decoding of write-like NFSv2/v3 ops (‘J. Bruce Fields’) [1449282 1443204] {CVE-2017-7895}
  • [fs] nfsd4: minor NFSv2/v3 write decoding cleanup (‘J. Bruce Fields’) [1449282 1443204] {CVE-2017-7895}
  • [md] dm mirror: use all available legs on multiple failures (Mike Snitzer) [1449176 1383444]
  • [fs] nfsd: check for oversized NFSv2/v3 arguments (‘J. Bruce Fields’) [1447642 1442407] {CVE-2017-7645}
  • [scsi] ses: don’t get power status of SES device slot on probe (Gustavo Duarte) [1446650 1434768]
  • [scsi] ipr: do not set DID_PASSTHROUGH on CHECK CONDITION (Steve Best) [1446649 1441747]
  • [net] macsec: dynamically allocate space for sglist (Sabrina Dubroca) [1445546 1445545] {CVE-2017-7477}
  • [net] macsec: avoid heap overflow in skb_to_sgvec (Sabrina Dubroca) [1445546 1445545] {CVE-2017-7477}
  • [fs] gfs2: Allow glocks to be unlocked after withdraw (Robert S Peterson) [1433882 1404005]
  • [net] tcp: avoid infinite loop in tcp_splice_read() (Davide Caratti) [1430579 1430580] {CVE-2017-6214}
  • [mm] vma_merge: correct false positive from __vma_unlink->validate_mm_rb (Andrea Arcangeli) [1428840 1374548]
  • [mm] vma_merge: fix race vm_page_prot race condition against rmap_walk (Andrea Arcangeli) [1428840 1374548]
  • [mm] fix use-after-free if memory allocation failed in vma_adjust() (Andrea Arcangeli) [1428840 1374548]
  • [x86] kvm: x86: fix emulation of ‘MOV SS, null selector’ (Radim Krcmar) [1414742 1414743] {CVE-2017-2583}
  • [powerpc] prom: Increase minimum RMA size to 512MB (Gustavo Duarte) [1450041 1411321]
  • [pci] pciehp: Prioritize data-link event over presence detect (Myron Stowe) [1450124 1435818]
  • [pci] pciehp: Don’t re-read Slot Status when queuing hotplug event (Myron Stowe) [1450124 1435818]
  • [pci] pciehp: Process all hotplug events before looking for new ones (Myron Stowe) [1450124 1435818]
  • [pci] pciehp: Rename pcie_isr() locals for clarity (Myron Stowe) [1450124 1435818]
    [3.10.0-514.24.1]
  • [scsi] lpfc: Fix panic on BFS configuration (Maurizio Lombardi) [1452044 1443116]
  • [vfio] type1: Reduce repetitive calls in vfio_pin_pages_remote() (Alex Williamson) [1450855 1438403]
  • [vfio] type1: Remove locked page accounting workqueue (Alex Williamson) [1450855 1438403]
  • [fs] nfs: Allow getattr to also report readdirplus cache hits (Dave Wysochanski) [1450851 1442068]
  • [fs] nfs: Be more targeted about readdirplus use when doing lookup/revalidation (Dave Wysochanski) [1450851 1442068]
  • [fs] nfs: Fix a performance regression in readdir (Dave Wysochanski) [1450851 1442068]
  • [x86] xen: do not re-use pirq number cached in pci device msi msg data (Vitaly Kuznetsov) [1450037 1433831]
  • [powerpc] mm: Add missing global TLB invalidate if cxl is active (Steve Best) [1449178 1440776]
  • [powerpc] boot: Fix zImage TOC alignment (Gustavo Duarte) [1444343 1395838]
    [3.10.0-514.23.1]
  • [scsi] qla2xxx: Defer marking device lost when receiving an RSCN (Himanshu Madhani) [1446246 1436940]
  • [scsi] qla2xxx: Fix typo in driver (Himanshu Madhani) [1446246 1436940]
  • [scsi] qla2xxx: Fix crash in qla2xxx_eh_abort on bad ptr (Himanshu Madhani) [1446246 1436940]
  • [scsi] qla2xxx: Avoid that issuing a LIP triggers a kernel crash (Himanshu Madhani) [1446246 1436940]
  • [scsi] qla2xxx: Add fix to read correct register value for ISP82xx (Himanshu Madhani) [1446246 1436940]
  • [scsi] qla2xxx: Disable the adapter and skip error recovery in case of register disconnect (Himanshu Madhani) [1446246 1436940]
    [3.10.0-514.22.1]
  • [mm] hugetlb: don’t use reserved during VM_SHARED mapping cow (Larry Woodman) [1445184 1385473]
OSVersionArchitecturePackageVersionFilename
oracle linux7srckernel< 3.10.0-514.26.1.el7kernel-3.10.0-514.26.1.el7.src.rpm
oracle linux7x86_64kernel< 3.10.0-514.26.1.el7kernel-3.10.0-514.26.1.el7.x86_64.rpm
oracle linux7noarchkernel-abi-whitelists< 3.10.0-514.26.1.el7kernel-abi-whitelists-3.10.0-514.26.1.el7.noarch.rpm
oracle linux7x86_64kernel-debug< 3.10.0-514.26.1.el7kernel-debug-3.10.0-514.26.1.el7.x86_64.rpm
oracle linux7x86_64kernel-debug-devel< 3.10.0-514.26.1.el7kernel-debug-devel-3.10.0-514.26.1.el7.x86_64.rpm
oracle linux7x86_64kernel-devel< 3.10.0-514.26.1.el7kernel-devel-3.10.0-514.26.1.el7.x86_64.rpm
oracle linux7noarchkernel-doc< 3.10.0-514.26.1.el7kernel-doc-3.10.0-514.26.1.el7.noarch.rpm
oracle linux7x86_64kernel-headers< 3.10.0-514.26.1.el7kernel-headers-3.10.0-514.26.1.el7.x86_64.rpm
oracle linux7x86_64kernel-tools< 3.10.0-514.26.1.el7kernel-tools-3.10.0-514.26.1.el7.x86_64.rpm
oracle linux7x86_64kernel-tools-libs< 3.10.0-514.26.1.el7kernel-tools-libs-3.10.0-514.26.1.el7.x86_64.rpm
Rows per page:
1-10 of 131

Related

nessus 66
oraclelinux 8
openvas 30
centos 3
myhack58 1
redhat 12
virtuozzo 6
mageia 1
ibm 7
fedora 7
veracode 3
prion 4
redhatcve 3
ubuntu 8
f5 4
cve 4
ubuntucve 3
debiancve 3
suse 22
debian 2
archlinux 1
thn 1
nessus
nessus
Oracle Linux 7 : kernel (ELSA-2017-1615-1) (Stack Clash)
2017-06-30 00:00:00
CentOS 7 : kernel (CESA-2017:1615)
2017-06-30 00:00:00
Oracle Linux 7 : ELSA-2017-1615-1: / kernel (ELSA-2017-16151)
2023-09-07 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2017-06-28 00:00:00
Unbreakable Enterprise kernel security update
2017-06-30 00:00:00
kernel security and bug fix update
2017-07-11 00:00:00
openvas
openvas
RedHat Update for kernel RHSA-2017:1615-01
2017-06-29 00:00:00
CentOS Update for kernel CESA-2017:1615 centos7
2017-06-30 00:00:00
Mageia: Security Advisory (MGASA-2017-0149)
2022-01-28 00:00:00
centos
centos
kernel, perf, python security update
2017-06-29 21:03:21
kernel, perf, python security update
2017-07-12 17:45:55
kernel, perf, python security update
2017-05-31 14:08:43
myhack58
myhack58
CentOS 7 released a kernel security update that fixes five vulnerabilities-vulnerability warning-the black bar safety net
2017-07-02 00:00:00
redhat
redhat
(RHSA-2017:1615) Important: kernel security and bug fix update
2017-06-28 15:08:50
(RHSA-2017:1616) Important: kernel-rt security and bug fix update
2017-06-28 15:09:04
(RHSA-2017:1647) Important: kernel-rt security and bug fix update
2017-06-28 15:41:10
virtuozzo
virtuozzo
Important kernel security update: CVE-2017-7645 and other; Virtuozzo ReadyKernel patch 21.0 for Virtuozzo 7.0.x
2017-05-23 00:00:00
Kernel security update: CVE-2017-7645 and other; new kernel 2.6.32-042stab123.3 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0
2017-05-11 00:00:00
Kernel security update: CVE-2017-7645 and other; new kernel 2.6.32-042stab123.3, Virtuozzo 6.0 Update 12 Hotfix 9 (6.0.12-3676)
2017-05-11 00:00:00
mageia
mageia
Updated kernel packages fixes security vulnerabilities
2017-05-26 09:54:58
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel
2018-06-16 22:02:59
Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM
2018-06-18 01:38:07
Security Bulletin: The Linux Kernel as used in IBM QRadar SIEM is vulnerable to denial service. (CVE-2017-6214)
2018-06-16 22:04:36
fedora
fedora
[SECURITY] Fedora 24 Update: kernel-4.10.13-100.fc24
2017-05-04 18:27:06
[SECURITY] Fedora 26 Update: kernel-4.11.0-1.fc26
2017-05-09 21:28:37
[SECURITY] Fedora 25 Update: kernel-4.10.14-200.fc25
2017-05-10 04:03:34
veracode
veracode
Heap-Based Buffer Overflow
2019-05-02 06:29:03
Denial Of Service (DoS)
2019-01-15 09:17:01
Arbitrary Code Execution
2019-01-15 09:17:57
prion
prion
Heap overflow
2017-04-25 14:59:00
Null pointer dereference
2017-04-28 10:59:00
Code injection
2017-02-23 17:59:00
redhatcve
redhatcve
CVE-2017-7477
2017-04-25 09:18:11
CVE-2017-6214
2017-02-24 09:18:13
CVE-2017-7645
2017-04-19 14:48:04
ubuntu
ubuntu
Linux kernel (HWE) vulnerability
2017-05-17 00:00:00
Linux kernel vulnerability
2017-05-17 00:00:00
Linux kernel (Raspberry Pi 2) vulnerability
2017-06-22 00:00:00
f5
f5
Linux kernel vulnerability CVE-2017-7477
2017-05-31 19:26:00
K15004519 : NFS vulnerability CVE-2017-7895
2017-07-20 00:00:00
K48281956 : NFSv2/3 kernel vulnerability CVE-2017-7645
2017-07-18 00:00:00
cve
cve
CVE-2017-7477
2017-04-25 14:59:00
CVE-2017-7895
2017-04-28 10:59:00
CVE-2017-6214
2017-02-23 17:59:00
ubuntucve
ubuntucve
CVE-2017-7477
2017-04-25 00:00:00
CVE-2017-7895
2017-04-28 00:00:00
CVE-2017-6214
2017-02-23 00:00:00
debiancve
debiancve
CVE-2017-7477
2017-04-25 14:59:00
CVE-2017-7895
2017-04-28 10:59:00
CVE-2017-6214
2017-02-23 17:59:00
suse
suse
Security update for the Linux Kernel (critical)
2017-06-19 21:15:28
Security update for Linux Kernel Live Patch 8 for SLE 12 SP1 (important)
2017-07-20 21:12:25
Security update for Linux Kernel Live Patch 9 for SLE 12 SP1 (important)
2017-07-20 21:10:49
debian
debian
[SECURITY] [DSA 3886-2] linux regression update
2017-06-27 19:31:22
[SECURITY] [DLA 993-2] linux regression update
2017-06-27 17:39:35
archlinux
archlinux
[ASA-201706-28] linux-hardened: privilege escalation
2017-06-22 00:00:00
thn
thn
A Decade Old Unix/Linux/BSD Root Privilege-Escalation Bug Discovered
2017-06-19 20:49:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.905 High

EPSS

Percentile

98.5%

JSON
Related for ELSA-2017-1615
nessus66oraclelinux8openvas30centos3myhack581redhat12virtuozzo6mageia1ibm7fedora7veracode3prion4redhatcve3ubuntu8f54cve4ubuntucve3debiancve3suse22debian2archlinux1thn1