Lucene search

K
oraclelinuxOracleLinuxELSA-2020-5962
HistoryDec 02, 2020 - 12:00 a.m.

Unbreakable Enterprise kernel security update

2020-12-0200:00:00
linux.oracle.com
75

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

[4.1.12-124.45.6]

  • qla2xxx: disable target reset during link reset and update version (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: Fix early srb free on abort (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: Fix comment in MODULE_PARM_DESC in qla2xxx (Masanari Iida) [Orabug: 32095664]
  • scsi: qla2xxx: Enable Async TMF processing ([email protected]) [Orabug: 32095664]
  • qla2xxx: tweak debug message for task management path (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV (Arun Easi) [Orabug: 32095664]
  • scsi: qla2xxx: Fix fabric scan hang (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: Do command completion on abort timeout (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: Fix abort timeout race condition. (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: Fix race between switch cmd completion and timeout (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: Add IOCB resource tracking (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx:v2: Fix double scsi_done for abort path (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: v2 Fix a race condition between aborting and completing a SCSI command (Bart Van Assche) [Orabug: 32095664]
  • scsi: qla2xxx: Really fix qla2xxx_eh_abort() (Bart Van Assche) [Orabug: 32095664]
  • scsi: qla2xxx: v2 Reject EH_{abort|device_reset|target_request} (Quinn Tran) [Orabug: 32095664]
  • scsi: qla2xxx: v2: Fix race conditions in the code for aborting SCSI commands (Bart Van Assche) [Orabug: 32095664]
    [4.1.12-124.45.5]
  • IB/ipoib: Arm ‘send_cq’ to process completions in due time (Gerd Rausch) [Orabug: 31512608]
    [4.1.12-124.45.4]
  • block: Move part of bdi_destory() to del_gendisk() as bdi_unregister(). (Jan Kara) [Orabug: 32124131]
  • kernel: add panic_on_taint (Rafael Aquini) [Orabug: 32138039]
    [4.1.12-124.45.3]
  • drm/vmwgfx: Make sure backup_handle is always valid (Sinclair Yeh) [Orabug: 31352076] {CVE-2017-9605}
  • random32: move the pseudo-random 32-bit definitions to prandom.h (Linus Torvalds) [Orabug: 31698086] {CVE-2020-16166}
  • random32: remove net_rand_state from the latent entropy gcc plugin (Linus Torvalds) [Orabug: 31698086] {CVE-2020-16166}
  • random: fix circular include dependency on arm64 after addition of percpu.h (Willy Tarreau) [Orabug: 31698086] {CVE-2020-16166}
  • random32: update the net random state on interrupt and activity (Willy Tarreau) [Orabug: 31698086] {CVE-2020-16166}
  • x86/kvm: move kvm_load/put_guest_xcr0 into atomic context (WANG Chao) [Orabug: 32021856]
  • kvm: x86: do not leak guest xcr0 into host interrupt handlers (David Matlack) [Orabug: 32021856]

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

Related for ELSA-2020-5962