Lucene search
Basic search
Lucene search
Search by product
Subscribe
K
Start 30-day trial
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
SIGN IN
OracleLinux
ELSA-2020-5866
History
Oct 06, 2020 - 12:00 a.m.
Vulners
/
Oraclelinux
/
Unbreakable Enterprise kernel security update
Unbreakable Enterprise kernel security update
2020-10-06
00:00:00
linux.oracle.com
96
EPSS
0.048
Percentile
92.8%
JSON
[4.1.12-124.43.4]
kvm: fix kvm_ioctl_create_device() reference counting (CVE-2019-6974) (Jann Horn) [Orabug: 29434845] {CVE-2019-6974}
KVM: nVMX: unconditionally cancel preemption timer in free_nested (CVE-2019-7221) (Peter Shier) [Orabug: 29434898] {CVE-2019-7221}
KVM: x86: work around leak of uninitialized stack contents (CVE-2019-7222) (Paolo Bonzini) [Orabug: 29434924] {CVE-2019-7222}
net: arc_emac: fix koops caused by sk_buff free (Alexander Kochetkov) [Orabug: 30254239] {CVE-2016-10906}
GFS2: don’t set rgrp gl_object until it’s inserted into rgrp tree (Bob Peterson) [Orabug: 30254251] {CVE-2016-10905}
GFS2: Fix rgrp end rounding problem for bsize < page size (Bob Peterson) [Orabug: 30254251] {CVE-2016-10905}
x86/apic/msi: update address_hi on set msi affinity (Joe Jin) [Orabug: 31477035]
x86/apic/msi: check and sync apic IRR on msi_set_affinity (Joe Jin) [Orabug: 31477035]
net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (Sabrina Dubroca) [Orabug: 31872821] {CVE-2020-1749}
nfs: Fix getxattr kernel panic and memory overflow (Jeffrey Mitchell) [Orabug: 31872910] {CVE-2020-25212}
rbd: require global CAP_SYS_ADMIN for mapping and unmapping (Ilya Dryomov) [Orabug: 31884169] {CVE-2020-25284}
mm/hugetlb: fix a race between hugetlb sysctl handlers (Muchun Song) [Orabug: 31884239] {CVE-2020-25285}
ext4: fix potential negative array index in do_split() (Eric Sandeen) [Orabug: 31895331] {CVE-2020-14314}
[4.1.12-124.43.3]
ARM: amba: Fix race condition with driver_override (Geert Uytterhoeven) [Orabug: 29671212] {CVE-2018-9415}
block: blk_init_allocated_queue() set q->fq as NULL in the fail case (xiao jin) [Orabug: 30120513] {CVE-2018-20856}
USB: serial: omninet: fix reference leaks at open (Johan Hovold) [Orabug: 30484761] {CVE-2017-8925}
nl80211: validate beacon head (Johannes Berg) [Orabug: 30556264] {CVE-2019-16746}
cfg80211: Use const more consistently in for_each_element macros (Jouni Malinen) [Orabug: 30556264] {CVE-2019-16746}
cfg80211: add and use strongly typed element iteration macros (Johannes Berg) [Orabug: 30556264] {CVE-2019-16746}
cfg80211: add helper to find an IE that matches a byte-array (Luca Coelho) [Orabug: 30556264] {CVE-2019-16746}
cfg80211: allow finding vendor with OUI without specifying the OUI type (Emmanuel Grumbach) [Orabug: 30556264] {CVE-2019-16746}
dccp: Fix memleak in __feat_register_sp (YueHaibing) [Orabug: 30732821] {CVE-2019-20096}
fs/proc/proc_sysctl.c: Fix a NULL pointer dereference (YueHaibing) [Orabug: 30732938] {CVE-2019-20054}
fs/proc/proc_sysctl.c: fix NULL pointer dereference in put_links (YueHaibing) [Orabug: 30732938] {CVE-2019-20054}
scsi: libsas: stop discovering if oob mode is disconnected (Jason Yan) [Orabug: 30770913] {CVE-2019-19965}
kernel/sysctl.c: fix out-of-bounds access when setting file-max (Will Deacon) [Orabug: 31350720] {CVE-2019-14898}
sysctl: handle overflow for file-max (Christian Brauner) [Orabug: 31350720] {CVE-2019-14898}
ath9k_htc: release allocated buffer if timed out (Navid Emamdoost) [Orabug: 31351572] {CVE-2019-19073}
can: gs_usb: gs_can_open(): prevent memory leak (Navid Emamdoost) [Orabug: 31351682] {CVE-2019-19052}
ALSA: usb-audio: Avoid access before bLength check in build_audio_procunit() (Takashi Iwai) [Orabug: 31351837] {CVE-2019-15927}
media: usb: siano: Fix general protection fault in smsusb (Alan Stern) [Orabug: 31351875] {CVE-2019-15218}
crypto: vmac - separate tfm and request context (Eric Biggers) [Orabug: 31584410]
SUNRPC: Fix a race with XPRT_CONNECTING (Trond Myklebust) [Orabug: 31796770]
SUNRPC: Fix disconnection races (Trond Myklebust) [Orabug: 31796770]
SUNRPC: Add a helper to wake up a sleeping rpc_task and set its status (Trond Myklebust) [Orabug: 31796770]
SUNRPC: Reduce latency when send queue is congested (Trond Myklebust) [Orabug: 31796770]
SUNRPC: RPC transport queue must be low latency (Trond Myklebust) [Orabug: 31796770]
SUNRPC: Fix a potential race in xprt_connect() (Trond Myklebust) [Orabug: 31796770]
SUNRPC: ensure correct error is reported by xs_tcp_setup_socket() (NeilBrown) [Orabug: 31796770]
SUNRPC: Fix races between socket connection and destroy code (Trond Myklebust) [Orabug: 31796770]
SUNRPC: Prevent SYN+SYNACK+RST storms (Trond Myklebust) [Orabug: 31796770]
SUNRPC: Report TCP errors to the caller (Trond Myklebust) [Orabug: 31796770]
SUNRPC: Ensure we release the TCP socket once it has been closed (Trond Myklebust) [Orabug: 31796770]
net-gro: fix use-after-free read in napi_gro_frags() (Eric Dumazet) [Orabug: 31856195] {CVE-2020-10720}
PCI: Probe bridge window attributes once at enumeration-time (Bjorn Helgaas) [Orabug: 31867577]
[4.1.12-124.43.2]
ALSA: seq: Cancel pending autoload work at unbinding device (Takashi Iwai) [Orabug: 31352045] {CVE-2017-16528}
USB: serial: io_ti: fix information leak in completion handler (Johan Hovold) [Orabug: 31352084] {CVE-2017-8924}
sample-trace-array: Fix sleeping function called from invalid context (Kefeng Wang) [Orabug: 31543032]
sample-trace-array: Remove trace_array ‘sample-instance’ (Kefeng Wang) [Orabug: 31543032]
tracing: Sample module to demonstrate kernel access to Ftrace instances. (Divya Indi) [Orabug: 31543032]
tracing: Adding new functions for kernel access to Ftrace instances (Aruna Ramakrishna) [Orabug: 31543032]
tracing: Adding NULL checks for trace_array descriptor pointer (Divya Indi) [Orabug: 31543032]
tracing: Verify if trace array exists before destroying it. (Divya Indi) [Orabug: 31543032]
tracing: Declare newly exported APIs in include/linux/trace.h (Divya Indi) [Orabug: 31543032]
tracing: Kernel access to Ftrace instances (Divya Indi) [Orabug: 31543032]
[4.1.12-124.43.1]
blktrace: Protect q->blk_trace with RCU (Jan Kara) [Orabug: 31123576] {CVE-2019-19768}
media: technisat-usb2: break out of loop at end of buffer (Sean Young) [Orabug: 31224554] {CVE-2019-15505}
btrfs: merge btrfs_find_device and find_device (Anand Jain) [Orabug: 31351746] {CVE-2019-18885}
RDMA/cxgb4: Do not dma memory off of the stack (Greg KH) [Orabug: 31351783] {CVE-2019-17075}
mwifiex: Abort at too short BSS descriptor element (Takashi Iwai) [Orabug: 31351916] {CVE-2019-3846}
mwifiex: Fix possible buffer overflows at parsing bss descriptor (Takashi Iwai) [Orabug: 31351916] {CVE-2019-3846} {CVE-2019-3846}
repair kABI breakage from ‘fs: prevent page refcount overflow in pipe_buf_get’ (Dan Duval) [Orabug: 31351941] {CVE-2019-11487}
mm: prevent get_user_pages() from overflowing page refcount (Linus Torvalds) [Orabug: 31351941] {CVE-2019-11487}
mm: add ‘try_get_page()’ helper function (Linus Torvalds) [Orabug: 31351941] {CVE-2019-11487}
fs: prevent page refcount overflow in pipe_buf_get (Matthew Wilcox) [Orabug: 31351941] {CVE-2019-11487}
mm: make page ref count overflow check tighter and more explicit (Linus Torvalds) [Orabug: 31351941] {CVE-2019-11487}
sctp: implement memory accounting on tx path (Xin Long) [Orabug: 31351960] {CVE-2019-3874}
sunrpc: use SVC_NET() in svcauth_gss_* functions (Vasily Averin) [Orabug: 31351995] {CVE-2018-16884}
sunrpc: use-after-free in svc_process_common() (Vasily Averin) [Orabug: 31351995] {CVE-2018-16884}
af_packet: set defaule value for tmo (Mao Wenan) [Orabug: 31439107] {CVE-2019-20812}
selinux: properly handle multiple messages in selinux_netlink_send() (Paul Moore) [Orabug: 31439369] {CVE-2020-10751}
selinux: Print ‘sclass’ as string when unrecognized netlink message occurs (Marek Milkovic) [Orabug: 31439369] {CVE-2020-10751}
mac80211: Do not send Layer 2 Update frame before authorization (Jouni Malinen) [Orabug: 31473652] {CVE-2019-5108}
cfg80211/mac80211: make ieee80211_send_layer2_update a public function (Dedy Lansky) [Orabug: 31473652] {CVE-2019-5108}
crypto: authenc - fix parsing key with misaligned rta_len (Eric Biggers) [Orabug: 31535529] {CVE-2020-10769}
vgacon: Fix for missing check in scrollback handling (Yunhai Zhang) [Orabug: 31705121] {CVE-2020-14331} {CVE-2020-14331}
rename kABI whitelists to lockedlists (Dan Duval) [Orabug: 31783151]
[4.1.12-124.42.4]
rds/ib: Make i_{recv,send}_hdrs non-contigious (Hans Westgaard Ry) [Orabug: 30634865]
md: get sysfs entry after redundancy attr group create (Junxiao Bi) [Orabug: 31683116]
md: fix deadlock causing by sysfs_notify (Junxiao Bi) [Orabug: 31683116]
[4.1.12-124.42.3]
can: peak_usb: pcan_usb_fd: Fix info-leaks to USB devices (Tomas Bortoli) [Orabug: 31351221] {CVE-2019-19535}
media: hdpvr: Fix an error handling path in hdpvr_probe() (Arvind Yadav) [Orabug: 31352053] {CVE-2017-16644}
fs/binfmt_misc.c: do not allow offset overflow (Thadeu Lima de Souza Cascardo) [Orabug: 31588258]
clear inode and truncate pages before enqueuing for async inactivation (Gautham Ananthakrishna) [Orabug: 31744270]
[4.1.12-124.42.2]
mm: create alloc_last_chance debugfs entries (Mike Kravetz) [Orabug: 31295499]
mm: perform ‘last chance’ reclaim efforts before allocation failure (Mike Kravetz) [Orabug: 31295499]
mm: let page allocation slowpath retry ‘order’ times (Mike Kravetz) [Orabug: 31295499]
fix kABI breakage from ‘netns: provide pure entropy for net_hash_mix()’ (Dan Duval) [Orabug: 31351904] {CVE-2019-10638} {CVE-2019-10639}
netns: provide pure entropy for net_hash_mix() (Eric Dumazet) [Orabug: 31351904] {CVE-2019-10638} {CVE-2019-10639}
hrtimer: Annotate lockless access to timer->base (Eric Dumazet) [Orabug: 31380495]
rds: ib: Revert ‘net/rds: Avoid stalled connection due to CM REQ retries’ (Hakon Bugge) [Orabug: 31648141]
rds: Clear reconnect pending bit (Hakon Bugge) [Orabug: 31648141]
RDMA/netlink: Do not always generate an ACK for some netlink operations (Hakon Bugge) [Orabug: 31666975]
genirq/proc: Return proper error code when irq_set_affinity() fails (Wen Yaxng) [Orabug: 31723450]
[4.1.12-124.42.1]
fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Alexander Potapenko) [Orabug: 31350639] {CVE-2020-10732}
crypto: user - fix memory leak in crypto_report (Navid Emamdoost) [Orabug: 31351640] {CVE-2019-19062}
of: unittest: fix memory leak in unittest_data_add (Navid Emamdoost) [Orabug: 31351702] {CVE-2019-19049}
IB/sa: Resolv use-after-free in ib_nl_make_request() (Divya Indi) [Orabug: 31656992]
net-sysfs: call dev_hold if kobject_init_and_add success (YueHaibing) [Orabug: 31687545] {CVE-2019-20811}
Affected Package
OS
Version
Architecture
Package
Version
Filename
oracle linux
6
src
kernel-uek
<Â 4.1.12-124.43.4.el6uek
kernel-uek-4.1.12-124.43.4.el6uek.src.rpm
oracle linux
6
x86_64
kernel-uek
<Â 4.1.12-124.43.4.el6uek
kernel-uek-4.1.12-124.43.4.el6uek.x86_64.rpm
oracle linux
6
x86_64
kernel-uek-debug
<Â 4.1.12-124.43.4.el6uek
kernel-uek-debug-4.1.12-124.43.4.el6uek.x86_64.rpm
oracle linux
6
x86_64
kernel-uek-debug-devel
<Â 4.1.12-124.43.4.el6uek
kernel-uek-debug-devel-4.1.12-124.43.4.el6uek.x86_64.rpm
oracle linux
6
x86_64
kernel-uek-devel
<Â 4.1.12-124.43.4.el6uek
kernel-uek-devel-4.1.12-124.43.4.el6uek.x86_64.rpm
oracle linux
6
noarch
kernel-uek-doc
<Â 4.1.12-124.43.4.el6uek
kernel-uek-doc-4.1.12-124.43.4.el6uek.noarch.rpm
oracle linux
6
noarch
kernel-uek-firmware
<Â 4.1.12-124.43.4.el6uek
kernel-uek-firmware-4.1.12-124.43.4.el6uek.noarch.rpm
oracle linux
7
src
kernel-uek
<Â 4.1.12-124.43.4.el7uek
kernel-uek-4.1.12-124.43.4.el7uek.src.rpm
oracle linux
7
x86_64
kernel-uek
<Â 4.1.12-124.43.4.el7uek
kernel-uek-4.1.12-124.43.4.el7uek.x86_64.rpm
oracle linux
7
x86_64
kernel-uek-debug
<Â 4.1.12-124.43.4.el7uek
kernel-uek-debug-4.1.12-124.43.4.el7uek.x86_64.rpm
Rows per page:
10
​
1-10 of 14
1
Related
nessus 82
oraclelinux 13
openvas 37
amazon 8
fedora 4
virtuozzo 4
redhat 8
centos 4
ibm 5
mageia 1
suse 2
photon 2
cve 4
prion 3
debian 1
ubuntu 2
ubuntucve 2
debiancve 3
osv 3
cvelist 2
redhatcve 3
nvd 3
f5 1
symantec 1
vulnrichment 1
nessus
nessus
82
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5866)
2020-10-06 00:00:00
OracleVM 3.4 : Unbreakable / etc (OVMSA-2020-0044)
2020-10-12 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5879)
2020-10-12 00:00:00
oraclelinux
oraclelinux
13
Unbreakable Enterprise kernel security update
2020-09-03 00:00:00
Unbreakable Enterprise kernel security update
2020-10-09 00:00:00
Unbreakable Enterprise kernel security update
2020-10-09 00:00:00
openvas
openvas
37
Fedora Update for kernel-tools FEDORA-2019-164946aa7f
2019-05-07 00:00:00
Fedora Update for kernel-headers FEDORA-2019-164946aa7f
2019-05-07 00:00:00
Fedora Update for kernel-tools FEDORA-2019-3da64f3e61
2019-02-16 00:00:00
amazon
amazon
8
Important: kernel
2019-03-07 18:24:00
Important: kernel
2019-02-26 18:55:00
Important: kernel
2020-09-28 20:57:00
fedora
fedora
4
[SECURITY] Fedora 28 Update: kernel-headers-4.20.8-100.fc28
2019-02-16 01:25:12
[SECURITY] Fedora 29 Update: kernel-tools-4.20.8-200.fc29
2019-02-16 01:58:04
[SECURITY] Fedora 29 Update: kernel-headers-4.20.8-200.fc29
2019-02-16 01:58:04
virtuozzo
virtuozzo
4
Important kernel security update: Virtuozzo ReadyKernel patch 110.0 for Virtuozzo Hybrid Server 7.0 and Virtuozzo Infrastructure Platform 2.5, 3.0 and Virtuozzo Hybrid Infrastructure 3.5
2020-07-06 00:00:00
Important kernel security update: Virtuozzo ReadyKernel patch 80.0 for Virtuozzo 7.0.7 to 7.0.8
2019-06-03 00:00:00
Important kernel security update: Virtuozzo ReadyKernel patch 80.0 for Virtuozzo 7.0.6 and 7.0.6 HF3
2019-06-03 00:00:00
redhat
redhat
8
(RHSA-2020:5026) Moderate: kernel-rt security and bug fix update
2020-11-10 09:41:25
(RHSA-2020:5023) Moderate: kernel security and bug fix update
2020-11-10 09:41:13
(RHSA-2019:0833) Important: kernel-rt security and bug fix update
2019-04-23 12:42:49
centos
centos
4
bpftool, kernel, perf, python security update
2020-11-18 18:02:50
bpftool, kernel, perf, python security update
2019-04-30 12:00:45
bpftool, kernel, perf, python security update
2020-12-21 20:45:16
ibm
ibm
5
Security Bulletin: Multiple vulnerabilities in the Linux Kernel used in IBM Elastic Storage System
2020-10-19 09:30:34
Security Bulletin: Vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus
2021-10-06 01:30:01
Security Bulletin: IBM Security Guardium is affected by kernel vulnerabilities
2021-10-06 12:37:14
mageia
mageia
Updated kernel packages fix security vulnerabilities
2019-02-21 02:50:36
suse
suse
Security update for the Linux Kernel (important)
2020-09-02 00:00:00
Security update for the Linux Kernel (important)
2019-02-18 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2017-0035
2017-04-13 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0274
2020-02-12 00:00:00
cve
cve
4
CVE-2017-16528
2017-11-04 01:29:36
CVE-2019-19049
2019-11-18 06:15:11
CVE-2016-10905
2019-08-19 02:15:09
prion
prion
Design/Logic Flaw
2017-11-04 01:29:00
Double free
2019-08-19 02:15:00
Memory corruption
2019-11-18 06:15:00
debian
debian
[SECURITY] [DLA 2385-1] linux-4.19 security update
2020-09-28 13:31:21
ubuntu
ubuntu
Linux kernel vulnerabilities
2020-10-14 00:00:00
Linux kernel vulnerabilities
2020-09-24 00:00:00
ubuntucve
ubuntucve
CVE-2016-10905
2019-08-18 00:00:00
CVE-2019-19049
2019-11-18 00:00:00
debiancve
debiancve
CVE-2016-10905
2019-08-19 02:15:09
CVE-2019-19049
2019-11-18 06:15:11
CVE-2017-16528
2017-11-04 01:29:36
osv
osv
linux, linux-aws, linux-kvm, linux-lts-xenial, linux-raspi2, linux-snapdragon vulnerabilities
2020-10-14 02:12:10
linux, linux-aws, linux-kvm, linux-lts-xenial, linux-raspi2, linux-snapdragon vulnerabilities
2020-09-24 22:41:12
linux-4.19 - security update
2020-09-26 00:00:00
cvelist
cvelist
CVE-2019-19049
2019-11-18 05:23:46
CVE-2016-10905
2019-08-19 01:52:24
redhatcve
redhatcve
CVE-2016-10905
2019-10-01 10:52:29
CVE-2019-19049
2020-04-01 08:23:38
CVE-2017-16528
2017-11-08 10:22:28
nvd
nvd
CVE-2019-19049
2019-11-18 06:15:11
CVE-2016-10905
2019-08-19 02:15:09
CVE-2019-20811
2020-06-03 03:15:10
f5
f5
K31332013 : Linux kernel vulnerability CVE-2016-10905
2019-10-02 00:00:00
symantec
symantec
Linux Kernel CVE-2019-19049 Memory Leak Denial of Service Vulnerability
2019-11-18 00:00:00
vulnrichment
vulnrichment
CVE-2019-19049
2019-11-18 05:23:46
EPSS
0.048
Percentile
92.8%
JSON
Related for ELSA-2020-5866
nessus
82
oraclelinux
13
openvas
37
amazon
8
fedora
4
virtuozzo
4
redhat
8
centos
4
ibm
5
mageia
1
suse
2
photon
2
cve
4
prion
3
debian
1
ubuntu
2
ubuntucve
2
debiancve
3
osv
3
cvelist
2
redhatcve
3
nvd
3
f5
1
symantec
1
vulnrichment
1