Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9565)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9565 advisory. - LTS tag: v5.4.142 Jack Vogel CVE-2021-3653 CVE-2021-3656 - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested CVE-2021-3656 Maxim Levitsky -...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.508.3.el7 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33396682 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33392821 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33352735...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9487)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9487 advisory. - dccp: dont duplicate ccid when cloning dccp sock Lin, Zhenpeng Orabug: 33408808 CVE-2017-6074 CVE-2020-16119 CVE-2020-16119 - KVM: X86: MMU: Use...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9471)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2021-9471 advisory. - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33406810 CVE-2021-28950 Tenable has extracted the preceding description block directly from the Oracle...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.507.7.6.el7 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33406810 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33406819 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33406814 - net/mlx5...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9458)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9458 advisory. - Bluetooth: defer cleanup of resources in hciunregisterdev Tetsuo Handa Orabug: 33369947 CVE-2021-3573 - Bluetooth: fix the erroneous flushwork order...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.507.7.5.el7 - Bluetooth: defer cleanup of resources in hciunregisterdev Tetsuo Handa Orabug: 33369947 CVE-2021-3573 - Bluetooth: use correct lock to prevent UAF of hdev object Lin Ma Orabug: 33369947 - Bluetooth: fix the erroneous flushwork order Lin Ma Orabug: 33369947 CVE-2021-3564...

Unbreakable Enterprise kernel-container security update

5.4.17-2102.205.7.2.el7 - btrfs: fix race between marking inode needs to be logged and log syncing Filipe Manana Orabug: 33349276 5.4.17-2102.205.7.1 - RDMA/cma: Revert INIT-INIT patch Mike Marciniszyn Orabug: 33306518 5.4.17-2102.205.7 - rds: ib: Set SENDSIGNALED on the last WR posted Hakon Bugg...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9451)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9451 advisory. - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl CVE-2021-3653 Maxim Levitsky Orabug: 33226010 CVE-2021-3653 - Revert KVM: nSVM:...

Unbreakable Enterprise kernel-container security update

5.4.17-2102.204.4.3 - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205365 CVE-2021-3656 - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl Maxim Levitsky Orabug: 33205443 CVE-2021-3653...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9422)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9422 advisory. - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205367 CVE-2021-3656 Tenable has extracted the preceding description...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9406)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9406 advisory. - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135632 CVE-2021-33909 - Bluetooth: fix the erroneous flushwork...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.506.8.el7 - A/A Bonding: devhold/put the delayed GARP work handler's netdev in rdmaip Sharath Srinivasan Orabug: 33187189 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33187192 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33187195 - rds/ib:...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9372)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-9372 advisory. 5.4.17-2102.203.6.el7 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135632 CVE-2021-33909 Tenable has extracted the...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9370)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2021-9370 advisory. 4.14.35-2047.505.4.3.el7 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33142065 CVE-2021-33909 Tenable has extracted the...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9363)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9363 advisory. - bpf: Fix masking negation logic upon negative dst register Daniel Borkmann Orabug: 32911990 CVE-2021-31829 - Bluetooth: verify AMP hcichan before...

Unbreakable Enterprise kernel-container security update

5.4.17-2102.203.5 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044344 5.4.17-2102.203.4 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32974199 - Revert 'Allow mce to reset instead of panic on UE' William Roche Orabug: 32820275 - bpf...

Unbreakable Enterprise kernel-container security update

5.4.17-2102.201.3.el8 - locking/qrwlock: Fix ordering in queuedwritelockslowpath Ali Saidi Orabug: 32805544 5.4.17-2102.201.2.el8 - md/bitmap: wait for external bitmap writes to complete during tear down Sudhakar Panneerselvam Orabug: 32764237 - ocfs2: fix deadlock between setattr and dioendiowri...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9223)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-9223 advisory. - bpf, x86: Validate computation of branch displacements for x86-64 Piotr Krysiuk Orabug: 32759961 CVE-2021-29154 - ext4: handle error of...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9057)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9057 advisory. - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492109 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulic...