Test ID:	1.3.6.1.4.1.25623.1.0.123058
Category:	Oracle Linux Local Security Checks
Title:	Oracle: Security Advisory (ELSA-2015-1272)
Summary:	The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2015-1272 advisory.
Description:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2015-1272 advisory. Vulnerability Insight: [2.6.32-573] - [security] selinux: don't waste ebitmap space when importing NetLabel categories (Paul Moore) [1130197] - [x86] Revert Add driver auto probing for x86 features v4 (Prarit Bhargava) [1231280] - [net] bridge: netfilter: don't call iptables on vlan packets if sysctl is off (Florian Westphal) [1236551] - [net] ebtables: Allow filtering of hardware accelerated vlan frames (Florian Westphal) [1236551] [2.6.32-572] - [fs] Revert fuse: use clear_highpage and KM_USER0 instead of KM_USER1 (Brian Foster) [1229562] [2.6.32-571] - [netdrv] bnx2x: Move statistics implementation into semaphores (Michal Schmidt) [1231348] - [scsi] storvsc: Set the SRB flags correctly when no data transfer is needed (Vitaly Kuznetsov) [1221404] [2.6.32-570] - [block] fix ext_dev_lock lockdep report (Jeff Moyer) [1230927] - [md] Revert md dm: run queue on re-queue (Mike Snitzer) [1232007] - [firmware] another cxgb4 firmware load fixup (Sai Vemuri) [1189255] - [char] tty: Don't protect atomic operation with mutex (Aristeu Rozanski) [1184182] - [edac] i5100 add 6 ranks per channel (Aristeu Rozanski) [1171333] - [edac] i5100 clean controller to channel terms (Aristeu Rozanski) [1171333] - [crypto] rng - Remove krng (Herbert Xu) [1226418] - [crypto] drbg - Add stdrng alias and increase priority (Herbert Xu) [1226418] - [crypto] seqiv - Move IV seeding into init function (Herbert Xu) [1226418] - [crypto] eseqiv - Move IV seeding into init function (Herbert Xu) [1226418] - [crypto] chainiv - Move IV seeding into init function (Herbert Xu) [1226418] [2.6.32-569] - [gpu] drm/radeon: fix freeze for laptop with Turks/Thames GPU (Jerome Glisse) [1213297] - [md] dm: fix casting bug in dm_merge_bvec (Mike Snitzer) [1226453] - [fs] nfs: Send the size attribute on open(O_TRUNC) (Benjamin Coddington) [1208065] - [net] inet: fix processing of ICMP frag_needed messages (Sabrina Dubroca) [1210321] - [net] tcp: double default TSQ output bytes limit (Hannes Frederic Sowa) [1140590] - [hv] hv_balloon: correctly handle num_pages>INT_MAX case (Vitaly Kuznetsov) [1006234] - [hv] hv_balloon: correctly handle val.freeram- [hv] hv_balloon: survive ballooning request with num_pages=0 (Vitaly Kuznetsov) [1006234]- [hv] hv_balloon: eliminate jumps in piecewise linear floor function (Vitaly Kuznetsov) [1006234]- [hv] hv_balloon: do not online pages in offline blocks (Vitaly Kuznetsov) [1006234]- [hv] hv_balloon: don't lose memory when onlining order is not natural (Vitaly Kuznetsov) [1006234][2.6.32-568]- [base] reduce boot delay on large memory systems (Seth Jennings) [1221389]- [md] dm: run queue on re-queue (Mike Snitzer) [1225158]- [fs] take i_mutex during prepare_binprm for setid executables (Mateusz Guzik) [1216269] {CVE-2015-3339}- [netdrv] i40e: Make sure to be in VEB mode if SRIOV is enabled at probe (Stefan Assmann) [1206000]- [netdrv] i40e: start up in VEPA mode by default (Stefan Assmann) [1206000]- ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'kernel' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 6.2 CVSS Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3184 BugTraq ID: 69768 http://www.securityfocus.com/bid/69768 https://code.google.com/p/google-security-research/issues/detail?id=91 http://www.openwall.com/lists/oss-security/2014/09/11/21 RedHat Security Advisories: RHSA-2014:1318 http://rhn.redhat.com/errata/RHSA-2014-1318.html RedHat Security Advisories: RHSA-2015:1272 http://rhn.redhat.com/errata/RHSA-2015-1272.html SuSE Security Announcement: SUSE-SU-2015:0481 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html SuSE Security Announcement: SUSE-SU-2015:0652 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.html SuSE Security Announcement: SUSE-SU-2015:0812 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html SuSE Security Announcement: openSUSE-SU-2015:0566 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html http://www.ubuntu.com/usn/USN-2374-1 http://www.ubuntu.com/usn/USN-2375-1 http://www.ubuntu.com/usn/USN-2376-1 http://www.ubuntu.com/usn/USN-2377-1 http://www.ubuntu.com/usn/USN-2378-1 http://www.ubuntu.com/usn/USN-2379-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-3940 BugTraq ID: 67786 http://www.securityfocus.com/bid/67786 https://lkml.org/lkml/2014/3/18/784 http://www.openwall.com/lists/oss-security/2014/06/02/5 RedHat Security Advisories: RHSA-2015:0290 http://rhn.redhat.com/errata/RHSA-2015-0290.html http://secunia.com/advisories/59011 http://secunia.com/advisories/61310 Common Vulnerability Exposure (CVE) ID: CVE-2014-4652 http://www.openwall.com/lists/oss-security/2014/06/26/6 RedHat Security Advisories: RHSA-2014:1083 http://rhn.redhat.com/errata/RHSA-2014-1083.html http://secunia.com/advisories/59434 http://secunia.com/advisories/59777 http://secunia.com/advisories/60545 http://secunia.com/advisories/60564 http://www.ubuntu.com/usn/USN-2334-1 http://www.ubuntu.com/usn/USN-2335-1 XForce ISS Database: linux-kernel-cve20144652-info-disc(94412) https://exchange.xforce.ibmcloud.com/vulnerabilities/94412 Common Vulnerability Exposure (CVE) ID: CVE-2014-8133 62801 http://secunia.com/advisories/62801 71684 http://www.securityfocus.com/bid/71684 DSA-3128 http://www.debian.org/security/2015/dsa-3128 MDVSA-2015:058 http://www.mandriva.com/security/advisories?name=MDVSA-2015:058 RHSA-2015:1272 SUSE-SU-2015:0736 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.html USN-2490-1 http://www.ubuntu.com/usn/USN-2490-1 USN-2491-1 http://www.ubuntu.com/usn/USN-2491-1 USN-2492-1 http://www.ubuntu.com/usn/USN-2492-1 USN-2493-1 http://www.ubuntu.com/usn/USN-2493-1 USN-2515-1 http://www.ubuntu.com/usn/USN-2515-1 USN-2516-1 http://www.ubuntu.com/usn/USN-2516-1 USN-2517-1 http://www.ubuntu.com/usn/USN-2517-1 USN-2518-1 http://www.ubuntu.com/usn/USN-2518-1 [oss-security] 20141215 Linux kernel: multiple x86_64 vulnerabilities http://www.openwall.com/lists/oss-security/2014/12/15/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=41bdc78544b8a93a9c6814b8bbbfef966272abbe https://bugzilla.redhat.com/show_bug.cgi?id=1172797 https://github.com/torvalds/linux/commit/41bdc78544b8a93a9c6814b8bbbfef966272abbe openSUSE-SU-2015:0566 Common Vulnerability Exposure (CVE) ID: CVE-2014-8709 BugTraq ID: 70965 http://www.securityfocus.com/bid/70965 http://www.openwall.com/lists/oss-security/2014/11/09/1 http://www.securitytracker.com/id/1037968 XForce ISS Database: linux-kernel-cve20148709-info-disclsoure(98922) https://exchange.xforce.ibmcloud.com/vulnerabilities/98922 Common Vulnerability Exposure (CVE) ID: CVE-2014-9683 BugTraq ID: 72643 http://www.securityfocus.com/bid/72643 Debian Security Information: DSA-3170 (Google Search) http://www.debian.org/security/2015/dsa-3170 http://www.openwall.com/lists/oss-security/2015/02/17/9 http://www.securitytracker.com/id/1031860 SuSE Security Announcement: SUSE-SU-2015:1478 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html http://www.ubuntu.com/usn/USN-2541-1 http://www.ubuntu.com/usn/USN-2542-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-0239 72842 http://www.securityfocus.com/bid/72842 DSA-3170 USN-2513-1 http://www.ubuntu.com/usn/USN-2513-1 USN-2514-1 http://www.ubuntu.com/usn/USN-2514-1 [bk-commits-head] 20150123 KVM: x86: SYSENTER emulation is broken http://permalink.gmane.org/gmane.linux.kernel.commits.head/502245 [oss-security] 20150127 KVM SYSENTER emulation vulnerability - CVE-2015-0239 http://www.openwall.com/lists/oss-security/2015/01/27/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3747379accba8e95d70cec0eae0582c8c182050 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.5 http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html https://bugzilla.redhat.com/show_bug.cgi?id=1186448 https://github.com/torvalds/linux/commit/f3747379accba8e95d70cec0eae0582c8c182050 Common Vulnerability Exposure (CVE) ID: CVE-2015-3339 Debian Security Information: DSA-3237 (Google Search) http://www.debian.org/security/2015/dsa-3237 http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157897.html http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158804.html http://www.openwall.com/lists/oss-security/2015/04/20/5 http://www.securitytracker.com/id/1032412 SuSE Security Announcement: SUSE-SU-2015:1487 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00007.html SuSE Security Announcement: SUSE-SU-2015:1488 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00008.html SuSE Security Announcement: SUSE-SU-2015:1489 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00009.html SuSE Security Announcement: SUSE-SU-2015:1491 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00011.html SuSE Security Announcement: SUSE-SU-2016:2074 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html SuSE Security Announcement: openSUSE-SU-2015:1382 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00011.html
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.