Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Confidential Computing kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52778: mptcp: deal with large GSO size bsc1224948. CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision...

CVE-2024-26741

In the Linux kernel, the following vulnerability has been resolved: dccp/tcp: Unhash sk from ehash for tb2 alloc failure after checkestalblished. syzkaller reported a warning 0 in inetcskdestroysock with no repro. WARNONinetsksk-inetnum && !inetcsksk-icskbindhash; However, the syzkaller's log...

CVE-2024-26741

In the Linux kernel, the following vulnerability has been resolved: dccp/tcp: Unhash sk from ehash for tb2 alloc failure after checkestalblished. syzkaller reported a warning 0 in inetcskdestroysock with no repro. WARNONinetsksk-inetnum && !inetcsksk-icskbindhash; However, the syzkaller's log...

CVE-2024-26741 dccp/tcp: Unhash sk from ehash for tb2 alloc failure after check_estalblished().

In the Linux kernel, the following vulnerability has been resolved: dccp/tcp: Unhash sk from ehash for tb2 alloc failure after checkestalblished. syzkaller reported a warning 0 in inetcskdestroysock with no repro. WARNONinetsksk-inetnum && !inetcsksk-icskbindhash; However, the syzkaller's log...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3595)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3595 advisory. - ALSA: timer: Fix missing queue indices reset at SNDRVTIMERIOCTLSELECT Takashi Iwai Orabug: 26403952 CVE-2017-1000380 - ALSA: timer: Fix race...

OracleVM 3.2 : Unbreakable / etc (OVMSA-2017-0121)

The remote OracleVM system is missing necessary patches to address critical security updates : - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366024 CVE-2017-7645 - dm mpath: allow ioctls to trigger pg init Mikulas Patocka Orabug: 25645229 - xen/manage: Always freeze/tha...

Unbreakable Enterprise kernel security update

2.6.39-400.297.3 - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366024 CVE-2017-7645 2.6.39-400.297.2 - dm mpath: allow ioctls to trigger pg init Mikulas Patocka Orabug: 25645229 - xen/manage: Always freeze/thaw processes when suspend/resuming Ross Lagerwall Orabug:...

OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0112)

The remote OracleVM system is missing necessary patches to address critical security updates : - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143552 CVE-2017-7308 -...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0111)

The remote OracleVM system is missing necessary patches to address critical security updates : - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143545 CVE-2017-7308 -...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3575)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-3575 advisory. kernel-uek 3.8.13-118.18.3 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26108571 CVE-2017-8890 Tenable has extracted the preceding...

Unbreakable Enterprise kernel security update

kernel-uek 4.1.12-94.3.5 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26132091 CVE-2017-8890...