The vulnerability of the audit_filter_rules() function in the kernel/auditsc.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the auditfilterrules function in the kernel/auditsc.c module of the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

Updated kernel-rt packages fix security vulnerabilities

This kernel-rt update provides as upgrade to upstream 3.14 longterm branch, currently based on 3.14.32 and fixes the following security issues: The microcode on AMD 16h 00h through 0Fh processors does not properly handle the interaction between locked instructions and write-combined memory types,...

Oracle Linux 7 : kernel (ELSA-2014-1281)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-1281 advisory. - kernel auditsc: auditkrule mask accesses need bounds checking Denys Vlasenko 1102708 1102710 CVE-2014-3917 - net l2tp: don't fall back on UDP get|setsockopt...

kernel security and bug fix update

3.10.0-123.8.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.8.1 - scsi fnic: fix broken FIP discovery by initializing multicast address Chris Leech 1119727 1100078 - scsi libfcoe: Make fcoesysfs optional / fix fnic NULL exception Chris Leech 1119727 1100078 - fs nfs: Don't mark the data...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2014-3072)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-3072 advisory. 3.8.13-44.1.1 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590596 CVE-2014-3917 Tenable has extracted the preceding...

unbreakable enterprise kernel security update

kernel-uek 2.6.32-400.36.8uek - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590638 CVE-2014-3917 - futex: Fix errors in nested key ref-counting Darren Hart Orabug: 19590443 CVE-2014-0205...

Unbreakable Enterprise kernel security update

3.8.13-44.1.1 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590596 CVE-2014-3917...

Oracle Linux 6 : kernel (ELSA-2014-1167)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1167 advisory. - kernel futex: Fix errors in nested key ref-counting Denys Vlasenko 1094457 1094458 CVE-2014-0205 - net vxlan: fix NULL pointer dereference Jiri Benc...

kernel security and bug fix update

2.6.32-431.29.2 - kernel futex: Fix errors in nested key ref-counting Denys Vlasenko 1094457 1094458 CVE-2014-0205 - net vxlan: fix NULL pointer dereference Jiri Benc 1114549 1096351 CVE-2014-3535 2.6.32-431.29.1 - mm hugetlb: ensure hugepage access is denied if hugepages are not supported Gustav...

Updated kernel packages fixes security vulnerabilities.

Updated kernel packages fixes security vulnerabilities. The kernel has been updated to the upstream 3.12.21 longterm kernel, and fixes the following security issues: media-device: fix infoleak in ioctl mediaenumentities CVE-2014-1739 The futexrequeue function in kernel/futex.c in the Linux kernel...