Lucene search
OracleLinuxELSA-2021-9006HistoryJan 12, 2021 - 12:00 a.m.
Unbreakable Enterprise kernel security update
2021-01-1200:00:00
linux.oracle.com
71
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
[5.4.17-2036.102.0.2uek]
- xen-blkback: set ring->xenblkd to NULL after kthread_stop() (Pawel Wieczorkiewicz) [Orabug: 32260252] {CVE-2020-29569}
- xenbus/xenbus_backend: Disallow pending watch messages (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus: Count pending messages for each watch (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus/xen_bus_type: Support will_handle watch callback (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus: Add ‘will_handle’ callback support in xenbus_watch_path() (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus: Allow watches discard events before queueing (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
[5.4.17-2036.102.0.1uek] - target: fix XCOPY NAA identifier lookup (David Disseldorp) [Orabug: 32248035] {CVE-2020-28374}
[5.4.17-2036.102.0uek] - futex: Fix inode life-time issue (Peter Zijlstra) [Orabug: 32233515] {CVE-2020-14381}
- perf/core: Fix race in the perf_mmap_close() function (Jiri Olsa) [Orabug: 32233352] {CVE-2020-14351}
- intel_idle: Customize IceLake server support (Chen Yu) [Orabug: 32218858]
- dm crypt: Allow unaligned bio buffer lengths for skcipher devices (Sudhakar Panneerselvam) [Orabug: 32210418]
- vhost scsi: fix lun reset completion handling (Mike Christie) [Orabug: 32167069]
- vhost scsi: Add support for LUN resets. (Mike Christie) [Orabug: 32167069]
- vhost scsi: add lun parser helper (Mike Christie) [Orabug: 32167069]
- vhost scsi: fix cmd completion race (Mike Christie) [Orabug: 32167069]
- vhost scsi: alloc cmds per vq instead of session (Mike Christie) [Orabug: 32167069]
- vhost: Create accessors for virtqueues private_data (Eugenio Perez) [Orabug: 32167069]
- vhost: add helper to check if a vq has been setup (Mike Christie) [Orabug: 32167069]
- scsi: sd: Allow user to configure command retries (Mike Christie) [Orabug: 32167069]
- scsi: core: Add limitless cmd retry support (Mike Christie) [Orabug: 32167069]
- scsi: mpt3sas: Update driver version to 36.100.00.00 (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Handle trigger page after firmware update (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Add persistent MPI trigger page (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Add persistent SCSI sense trigger page (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Add persistent Event trigger page (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Add persistent Master trigger page (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Add persistent trigger pages support (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Sync time periodically between driver and firmware (Suganath Prabu S) [Orabug: 32242279]
- scsi: mpt3sas: Bump driver version to 35.101.00.00 (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Add module parameter multipath_on_hba (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Handle vSES vphy object during HBA reset (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Add bypass_dirty_port_flag parameter (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Handling HBA vSES device (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Set valid PhysicalPort in SMPPassThrough (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Update hba_port objects after host reset (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Get sas_device objects using device’s rphy (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Rename transport_del_phy_from_an_existing_port() (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Get device objects using sas_address & portID (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Update hba_port’s sas_address & phy_mask (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Rearrange _scsih_mark_responding_sas_device() (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Allocate memory for hba_port objects (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Define hba_port structure (Sreekanth Reddy) [Orabug: 32242279]
- scsi: mpt3sas: Fix ioctl timeout (Suganath Prabu S) [Orabug: 32242279]
- icmp: randomize the global rate limiter (Eric Dumazet) [Orabug: 32227958] {CVE-2020-25705}
- perf/x86/intel/uncore: Add box_offsets for free-running counters (Kan Liang) [Orabug: 32020885]
- perf/x86/intel/uncore: Factor out __snr_uncore_mmio_init_box (Kan Liang) [Orabug: 32020885]
- perf/x86/intel/uncore: Add Ice Lake server uncore support (Kan Liang) [Orabug: 32020885]
Related
nessus
nessus
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9006)
2021-01-13 00:00:00
Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9024)
2021-02-01 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2021-02-01 00:00:00
Unbreakable Enterprise kernel security update
2021-01-30 00:00:00
Unbreakable Enterprise kernel-container security update
2021-02-01 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2021-1246)
2021-02-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:0348-1)
2021-04-19 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2021-1265)
2021-02-05 00:00:00
ibm
ibm
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2021-02-16 07:36:08
redhat
redhat
(RHSA-2021:0558) Important: kernel security, bug fix, and enhancement update
2021-02-16 07:36:08
(RHSA-2021:0537) Important: kernel-rt security and bug fix update
2021-02-16 07:32:29
(RHSA-2021:0686) Important: kernel security and bug fix update
2021-03-02 10:00:53
osv
osv
Important: kernel security, bug fix, and enhancement update
2021-02-16 07:36:08
CVE-2020-29569
2020-12-15 17:15:14
Android Vomit Report
2021-08-01 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0182
2021-01-06 00:00:00
Important Photon OS Security Update - PHSA-2021-0314
2021-01-20 00:00:00
cve
cve
veracode
veracode
Denial Of Service (DoS)
2020-11-05 03:10:04
Denial Of Service (DoS)
2021-05-02 05:48:50
Arbitrary Code Execution
2021-02-26 02:11:20
redhatcve
redhatcve
prion
prion
Denial of service
2020-12-03 17:15:00
Design/Logic Flaw
2020-12-15 17:15:00
Null pointer dereference
2020-12-15 17:15:00
ubuntucve
ubuntucve
debiancve
debiancve
cbl_mariner
cbl_mariner
CVE-2020-14381 affecting package kernel 5.4.91-6
2021-01-29 07:40:05
CVE-2020-25705 affecting package kernel 5.4.91-6
2021-01-29 07:40:05
CVE-2020-29569 affecting package kernel 5.4.91-6
2021-01-29 07:40:05
xen
xen
Frontends can trigger OOM in Backends by update a watched path
2020-12-15 12:00:00
Use after free triggered by block frontend in Linux blkback
2020-12-15 12:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-21:02.xenoom
2021-01-29 00:00:00
freebsd
freebsd
FreeBSD -- Xen guests can triger backend Out Of Memory
2021-01-29 00:00:00
alpinelinux
alpinelinux
CVE-2020-29568
2020-12-15 17:15:00
CVE-2020-29569
2020-12-15 17:15:00
githubexploit
githubexploit
Exploit for Use of Insufficiently Random Values in Linux Linux Kernel
2020-11-14 08:53:13
openwrt
openwrt
ics
ics
Siemens Linux-based Products (Update J)
2022-08-18 12:00:00
f5
f5
K09604370 : Linux kernel vulnerability CVE-2020-25705
2020-12-23 00:00:00
K15747621 : Linux kernel vulnerability CVE-2020-28374
2021-11-05 00:00:00
BIG-IP TMM vulnerability CVE-2022-26071
2022-05-04 11:52:00
ubuntu
ubuntu
Linux kernel vulnerability
2021-02-10 00:00:00
Linux kernel vulnerability
2021-02-02 00:00:00
Linux kernel vulnerability
2021-01-14 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: kernel-5.10.7-200.fc33
2021-01-16 01:35:11
[SECURITY] Fedora 33 Update: kernel-headers-5.10.7-200.fc33
2021-01-16 01:35:11
[SECURITY] Fedora 33 Update: tcmu-runner-1.5.2-7.fc33
2021-02-03 01:55:35
archlinux
archlinux
[ASA-202101-30] linux-lts: directory traversal
2021-01-20 00:00:00
[ASA-202101-33] linux: directory traversal
2021-01-20 00:00:00
[ASA-202101-31] linux-zen: directory traversal
2021-01-20 00:00:00
cloudfoundry
cloudfoundry
USN-4694-1: Linux kernel vulnerability | Cloud Foundry
2021-02-10 00:00:00
zdi
zdi
thn
thn
SAD DNS — New Flaws Re-Enable DNS Cache Poisoning Attacks
2020-11-13 07:12:00
mageia
mageia
Updated kernel packages fix security vulnerability
2021-01-21 01:45:57
debian
debian
[SECURITY] [DSA 4843-1] linux security update
2021-02-01 14:39:40
[SECURITY] [DSA 4843-1] linux security update
2021-02-01 14:39:40
[SECURITY] [DLA 2557-1] linux-4.19 security update
2021-02-12 19:25:34
centos
centos
bpftool, kernel, perf, python security update
2021-03-18 23:24:41
suse
suse
Security update for the Linux Kernel (important)
2021-02-05 00:00:00
amazon
amazon
Important: kernel
2021-01-26 00:11:00
Important: kernel
2021-01-25 23:09:00
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related for ELSA-2021-9006