Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2015-3013)
High Nessus Plugin ID 81871
Synopsis
The remote Oracle Linux host is missing one or more security updates.
Description
Description of changes:
kernel-uek [3.8.13-55.1.8.el7uek]
- kvm: fix excessive pages un-pinning in kvm_iommu_map error path. (Quentin Casasnovas) [Orabug: 20687313] {CVE-2014-3601} {CVE-2014-8369} {CVE-2014-3601}
[3.8.13-55.1.7.el7uek]
- ttusb-dec: buffer overflow in ioctl (Dan Carpenter) [Orabug: 20673376] {CVE-2014-8884}
- mm: Fix NULL pointer dereference in madvise(MADV_WILLNEED) support (Kirill A. Shutemov) [Orabug: 20673281] {CVE-2014-8173}
- netfilter: conntrack: disable generic tracking for known protocols (Florian Westphal) [Orabug: 20673239] {CVE-2014-8160}
- tracing/syscalls: Ignore numbers outside NR_syscalls' range (Rabin Vincent) [Orabug: 20673163] {CVE-2014-7826}
Solution
Update the affected unbreakable enterprise kernel packages.