OracleVM 3.2 : Unbreakable / etc (OVMSA-2017-0106)

The remote OracleVM system is missing necessary patches to address critical security updates : - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995 CVE-2017-7895 - ocfs2/o2net: o2netlistendataready should do nothing if socket state is not TCPLISTEN Tariq Saeed...

Unbreakable Enterprise kernel security update

kernel-uek 4.1.12-61.1.34 - uek-rpm: enable CONFIGKSPLICE. Jamie Iles Orabug: 25698171 - ksplice: add sysctls for determining Ksplice features. Jamie Iles Orabug: 25698171 - signal: protect SIGNALUNKILLABLE from unintentional clearing. Jamie Iles Orabug: 25698171 - KVM: x86: fix emulation of 'MOV...

DEBIAN-CVE-2017-2583

The loadsegmentdescriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service guest OS crash or gain guest OS privileges via a crafted application...

CVE-2017-2583

The loadsegmentdescriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service guest OS crash or gain guest OS privileges via a crafted application...

UBUNTU-CVE-2017-2583

The loadsegmentdescriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service guest OS crash or gain guest OS privileges via a crafted application...