| Description: | Summary:
The remote host is missing an update for the 'dtrace-modules-3.8.13-118.el6uek, dtrace-modules-3.8.13-118.el7uek, kernel-uek' package(s) announced via the ELSA-2015-3098 advisory.
Vulnerability Insight:
kernel-uek
[3.8.13-118]
- Update ql2400/ql2500 firmware version to 8.02.00 (Dan Duval) [Orabug: 22159505]
- update qla2400/ql2500 firmware version to 8.02.00 (Dan Duval) [Orabug: 22159505]
[3.8.13-117]
- virtio-net: drop NETIF_F_FRAGLIST (Jason Wang) [Orabug: 22145600] {CVE-2015-5156}
- team: check return value of team_get_port_by_index_rcu() for NULL (Jiri Pirko) [Orabug: 21944235]
- team: check return value of team_get_port_by_index_rcu() for NULL (Jiri Pirko) [Orabug: 21944235]
[3.8.13-116]
- team: check return value of team_get_port_by_index_rcu() for NULL (Jiri Pirko) [Orabug: 21944235]
[3.8.13-115]
- Disable VLAN 0 tagging for none VLAN traffic (Joe Jin) [Orabug: 20832922]
- x86/efi: Make efi virtual runtime map passing more robust (Borislav Petkov) [Orabug: 22020990]
- IB/rds_rdma: unloading of ofed stack causes page fault panic (Rama Nichanamatlu) [Orabug: 22039748]
- xen-blkfront: check for null drvdata in blkback_changed (XenbusStateClosing) (Cathy Avery) [Orabug: 21924428]
[3.8.13-114]
- rds: revert commit 4348013 (Rama Nichanamatlu) [Orabug: 22039425]
- qlcnic: Fix mailbox completion handling in spurious interrupt (Rajesh Borundia)
- xen-netfront: set max_queue default to 8 (Joe Jin) [Orabug: 21981690]
- xen-netfront: update num_queues to real created (Joe Jin) [Orabug: 21981690]
- lpfc: Update version to 11.0.0.1 for patch set (James Smart) [Orabug: 21860804]
- lpfc: Fix default RA_TOV and ED_TOV in the FC/FCoE driver for all topologies (James Smart) [Orabug: 21860804]
- lpfc: The linux driver does not reinitiate discovery after a failed FLOGI (James Smart) [Orabug: 21860804]
- lpfc: Fix for discovery failure in PT2PT when FLOGIs ELS ACC response gets aborted (James Smart) [Orabug: 21860804]
- lpfc: Add support for Lancer G6 and 32G FC links (James Smart) [Orabug: 21860804]
- fix: lpfc_send_rscn_event sends bigger buffer size (James Smart) [Orabug: 21860804]
- lpfc: Fix possible use-after-free and double free (James Smart) [Orabug: 21860804]
- lpfc: remove set but not used variables (James Smart) [Orabug: 21860804]
- lpfc: Make the function lpfc_sli4_mbox_completions_pending static (James Smart) [Orabug: 21860804]
- Fix kmalloc overflow in LPFC driver at large core count (James Smart) [Orabug: 21860804]
- lpfc: Destroy lpfc_hba_index IDR on module exit (James Smart) [Orabug: 21860804]
- lpfc: in sli3 use configured sg_seg_cnt for sg_tablesize (James Smart) [Orabug: 21860804]
- lpfc: Remove unnecessary cast (James Smart) [Orabug: 21860804]
- lpfc: fix model description (James Smart) [Orabug: 21860804]
- lpfc: Fix to drop PLOGIs from fabric node till LOGO proce ssing completes (James Smart) [Orabug: 21860804]
- lpfc: Fix scsi task management error message. (James Smart) [Orabug: 21860804]
- lpfc: Fix cq_id masking problem. (James Smart) [Orabug: 21860804]
- lpfc: Fix scsi prep dma buf error. (James Smart) [Orabug: 21860804]
- lpfc: Add support for using ... [Please see the references for more information on the vulnerabilities]
Affected Software/OS:
'dtrace-modules-3.8.13-118.el6uek, dtrace-modules-3.8.13-118.el7uek, kernel-uek' package(s) on Oracle Linux 6, Oracle Linux 7.
Solution:
Please install the updated package(s).
CVSS Score:
7.2
CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
