Unbreakable Enterprise kernel-container security update

5.4.17-2136.335.4.1.el7 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37035558...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2024-12585)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12585 advisory. - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879157 CVE-2024-41090 CVE-2024-41091 Tenable has extracted the preceding descripti...

Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12275)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12275 advisory. - KVM: x86: Add BHINO Daniel Sneddon Orabug: 36384803 CVE-2024-2201 - x86/bhi: Mitigate KVM by default Pawan Gupta Orabug: 36384803 CVE-2024-2201 -...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2024-12259)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12259 advisory. 5.4.17-2136.329.3.2.el7 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36465920 CVE-2024-1086 Tenable has extracted the...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2023-13048)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-13048 advisory. - nvmet-tcp: Fix a possible UAF in queue intialization setup Sagi Grimberg Orabug: 36028026 CVE-2023-5178 - Bluetooth: Reject connection with the device which...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2023-12802)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12802 advisory. 5.4.17-2136.323.8.1.el7 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024 Tenable has extracte...

Unbreakable Enterprise kernel-container security update

5.4.17-2136.323.8.1.el7 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2023-12412)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12412 advisory. - netfilter: nftables: deactivate anonymous set from preparation phase Pablo Neira Ayuso Orabug: 35382084 CVE-2023-32233 - KVM: nVMX: add missing...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2023-12118)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-12118 advisory. - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC Sasha Levin Orabug: 34653896 CVE-2022-3303 - Bluetooth: L2CAP: Fix accepting connection request for invali...

Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2022-10080)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-10080 advisory. - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883037 CVE-2022-4378 - proc: avoid integer type confusion i...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9699)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-9699 advisory. - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460938 CVE-2022-2588 - KVM: x86: Avoid theoretical NULL pointer...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9480)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9480 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34211086 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 342110...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9478)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-9478 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.513.2.1.el7 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34175592 CVE-2022-1729...

Unbreakable Enterprise kernel-container security update

5.4.17-2136.304.4.2.el7 - netfilter: nftablesoffload: incorrect flow offload action array size Pablo Neira Ayuso Orabug: 33899500 CVE-2022-25636...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.507.7.5.el7 - Bluetooth: defer cleanup of resources in hciunregisterdev Tetsuo Handa Orabug: 33369947 CVE-2021-3573 - Bluetooth: use correct lock to prevent UAF of hdev object Lin Ma Orabug: 33369947 - Bluetooth: fix the erroneous flushwork order Lin Ma Orabug: 33369947 CVE-2021-3564...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9451)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9451 advisory. - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl CVE-2021-3653 Maxim Levitsky Orabug: 33226010 CVE-2021-3653 - Revert KVM: nSVM:...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9406)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9406 advisory. - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135632 CVE-2021-33909 - Bluetooth: fix the erroneous flushwork...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9057)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9057 advisory. - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492109 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulic...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9068)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9068 advisory. - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich...