Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3551)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote Oracle Linux host is missing one or more security updates.

Description :

Description of changes:

kernel-uek
[3.8.13-118.6.1.el7uek]
- skbuff: skb_segment: orphan frags before copying (Dongli Zhang)
[Orabug: 23018911]
- RDS/IB: VRPC DELAY / OSS RECONNECT CAUSES 5 MINUTE STALL ON PORT
FAILURE (Venkat Venkatsubra) [Orabug: 22888920]
- mlx4_core: Introduce restrictions for PD update (Ajaykumar Hotchandani)
- filename should be destroyed via final_putname() instead of
__putname() (John Sobecki) [Orabug: 22346320]
- RDS: Fix the atomicity for congestion map update (Wengang Wang)
[Orabug: 23141554]
- sctp: Prevent soft lockup when sctp_accept() is called during a
timeout event (Karl Heiss) [Orabug: 23222753] {CVE-2015-8767}

[3.8.13-118.5.1.el7uek]
- x86_64: expand kernel stack to 16K (Minchan Kim) [Orabug: 21140371]
- iommu/vt-d: add quirk for broken interrupt remapping on 55XX chipsets
(Neil Horman) [Orabug: 22534160]
- xen: remove unneeded variables and one constant (Daniel Kiper)
[Orabug: 22288700]
- Revert 'x86/xen: delay construction of mfn_list_list' (Daniel Kiper)
[Orabug: 22288700]
- ocfs2/dlm: fix misuse of list_move_tail() in dlm_run_purge_list()
(Tariq Saeed) [Orabug: 22898384]
- ocfs2/dlm: do not purge lockres that is queued for assert master (Xue
jiufei) [Orabug: 22898384]

See also :

https://oss.oracle.com/pipermail/el-errata/2016-May/006000.html
https://oss.oracle.com/pipermail/el-errata/2016-May/006001.html

Solution :

Update the affected unbreakable enterprise kernel packages.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: Oracle Linux Local Security Checks

Nessus Plugin ID: 90936 ()

Bugtraq ID:

CVE ID: CVE-2015-8767

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now