Test ID:	1.3.6.1.4.1.25623.1.0.123581
Category:	Oracle Linux Local Security Checks
Title:	Oracle: Security Advisory (ELSA-2013-1173)
Summary:	The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2013-1173 advisory.
Description:	Summary: The remote host is missing an update for the 'kernel' package(s) announced via the ELSA-2013-1173 advisory. Vulnerability Insight: [2.6.32-358.18.1] - [x86] perf/x86: Fix offcore_rsp valid mask for SNB/IVB (Nikola Pajkovsky) [971314 971315] {CVE-2013-2146} - [net] br: fix schedule while atomic issue in br_features_recompute() (Jiri Pirko) [990464 980876] - [scsi] isci: Fix a race condition in the SSP task management path (David Milburn) [990470 978609] - [bluetooth] L2CAP - Fix info leak via getsockname() (Jacob Tanenbaum) [922417 922418] {CVE-2012-6544} - [bluetooth] HCI - Fix info leak in getsockopt() (Jacob Tanenbaum) [922417 922418] {CVE-2012-6544} - [net] tuntap: initialize vlan_features (Vlad Yasevich) [984524 951458] - [net] af_key: initialize satype in key_notify_policy_flush() (Thomas Graf) [981225 981227] {CVE-2013-2237} - [usb] uhci: fix for suspend of virtual HP controller (Gopal) [982697 960026] - [usb] uhci: Remove PCI dependencies from uhci-hub (Gopal) [982697 960026] - [netdrv] bnx2x: Change MDIO clock settings (Michal Schmidt) [982116 901747] - [scsi] st: Take additional queue ref in st_probe (Tomas Henzl) [979293 927988] - [kernel] audit: wait_for_auditd() should use TASK_UNINTERRUPTIBLE (Oleg Nesterov) [982472 962976] - [kernel] audit: avoid negative sleep durations (Oleg Nesterov) [982472 962976] - [fs] ext4/jbd2: don't wait (forever) for stale tid caused by wraparound (Eric Sandeen) [963557 955807] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Eric Sandeen) [963557 955807] - [fs] ext4: fix waiting and sending of a barrier in ext4_sync_file() (Eric Sandeen) [963557 955807] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Eric Sandeen) [963557 955807] - [fs] jbd2: fix sending of data flush on journal commit (Eric Sandeen) [963557 955807] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [963557 955807] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [963557 955807] - [fs] ext4: Rewrite __jbd2_log_start_commit logic to match upstream (Eric Sandeen) [963557 955807] - [net] bridge: Set vlan_features to allow offloads on vlans (Vlad Yasevich) [984524 951458] - [virt] virtio-net: initialize vlan_features (Vlad Yasevich) [984524 951458] - [mm] swap: avoid read_swap_cache_async() race to deadlock while waiting on discard I/O completion (Rafael Aquini) [977668 827548] - [dma] ioat: Fix excessive CPU utilization (John Feeney) [982758 883575] - [fs] vfs: revert most of dcache remove d_mounted (Ian Kent) [974597 907512] - [fs] xfs: don't free EFIs before the EFDs are committed (Carlos Maiolino) [975578 947582] - [fs] xfs: pass shutdown method into xfs_trans_ail_delete_bulk (Carlos Maiolino) [975576 805407] - [net] ipv6: bind() use stronger condition for bind_conflict (Flavio Leitner) [989923 917872] - [net] tcp: bind() use stronger condition for bind_conflict (Flavio Leitner) [977680 894683] - [x86] remove BUG_ON(TS_USEDFPU) in __sanitize_i387_state() (Oleg Nesterov) [956054 920445] - [fs] ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'kernel' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-6544 http://www.openwall.com/lists/oss-security/2013/03/05/13 RedHat Security Advisories: RHSA-2013:1173 http://rhn.redhat.com/errata/RHSA-2013-1173.html http://www.ubuntu.com/usn/USN-1805-1 http://www.ubuntu.com/usn/USN-1808-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2146 MDVSA-2013:176 http://www.mandriva.com/security/advisories?name=MDVSA-2013:176 RHSA-2013:1173 [oss-security] 20130605 Re: CVE Request: More perf security fixes http://www.openwall.com/lists/oss-security/2013/06/05/23 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f1923820c447e986a9da0fc6bf60c1dccdf0408e http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9 https://bugzilla.redhat.com/show_bug.cgi?id=971309 https://github.com/torvalds/linux/commit/f1923820c447e986a9da0fc6bf60c1dccdf0408e Common Vulnerability Exposure (CVE) ID: CVE-2013-2206 DSA-2766 http://www.debian.org/security/2013/dsa-2766 RHSA-2013:1166 http://rhn.redhat.com/errata/RHSA-2013-1166.html SUSE-SU-2013:1744 http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00020.html SUSE-SU-2013:1748 http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00021.html SUSE-SU-2013:1749 http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00023.html SUSE-SU-2013:1750 http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00024.html USN-1939-1 http://www.ubuntu.com/usn/USN-1939-1 [oss-security] 20130620 Re: CVE Request -- Linux kernel: sctp: duplicate cookie handling NULL pointer dereference http://www.openwall.com/lists/oss-security/2013/06/21/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f2815633504b442ca0b0605c16bf3d88a3a0fcea http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.5 https://bugzilla.redhat.com/show_bug.cgi?id=976562 https://github.com/torvalds/linux/commit/f2815633504b442ca0b0605c16bf3d88a3a0fcea openSUSE-SU-2013:1971 http://lists.opensuse.org/opensuse-updates/2013-12/msg00129.html Common Vulnerability Exposure (CVE) ID: CVE-2013-2224 RHSA-2013:1450 http://rhn.redhat.com/errata/RHSA-2013-1450.html [oss-security] 20130630 Re: CVE request: Kernel 2.6.32+ IP_RETOPTS Buffer Poisoning DoS http://www.openwall.com/lists/oss-security/2013/06/30/7 https://bugzilla.redhat.com/show_bug.cgi?id=979936 Common Vulnerability Exposure (CVE) ID: CVE-2013-2232 SUSE-SU-2013:1473 http://lists.opensuse.org/opensuse-security-announce/2013-09/msg00003.html SUSE-SU-2013:1474 http://lists.opensuse.org/opensuse-security-announce/2013-09/msg00004.html USN-1912-1 http://www.ubuntu.com/usn/USN-1912-1 USN-1913-1 http://www.ubuntu.com/usn/USN-1913-1 USN-1938-1 http://www.ubuntu.com/usn/USN-1938-1 USN-1941-1 http://www.ubuntu.com/usn/USN-1941-1 USN-1942-1 http://www.ubuntu.com/usn/USN-1942-1 USN-1943-1 http://www.ubuntu.com/usn/USN-1943-1 USN-1944-1 http://www.ubuntu.com/usn/USN-1944-1 USN-1945-1 http://www.ubuntu.com/usn/USN-1945-1 USN-1946-1 http://www.ubuntu.com/usn/USN-1946-1 USN-1947-1 http://www.ubuntu.com/usn/USN-1947-1 [oss-security] 20130702 Re: CVE Request: kernel: ipv6: using ipv4 vs ipv6 structure during routing lookup in sendmsg http://www.openwall.com/lists/oss-security/2013/07/02/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a963a37d384d71ad43b3e9e79d68d42fbe0901f3 https://github.com/torvalds/linux/commit/a963a37d384d71ad43b3e9e79d68d42fbe0901f3 https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.10.bz2 Common Vulnerability Exposure (CVE) ID: CVE-2013-2237 USN-1970-1 http://www.ubuntu.com/usn/USN-1970-1 USN-1972-1 http://www.ubuntu.com/usn/USN-1972-1 USN-1973-1 http://www.ubuntu.com/usn/USN-1973-1 USN-1992-1 http://www.ubuntu.com/usn/USN-1992-1 USN-1993-1 http://www.ubuntu.com/usn/USN-1993-1 USN-1995-1 http://www.ubuntu.com/usn/USN-1995-1 USN-1998-1 http://www.ubuntu.com/usn/USN-1998-1 [oss-security] 20130703 Re: CVE Request: Earlier AF_KEY in key_notify_policy_flush http://www.openwall.com/lists/oss-security/2013/07/04/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=85dfb745ee40232876663ae206cba35f24ab2a40 https://bugzilla.redhat.com/show_bug.cgi?id=981220 https://github.com/torvalds/linux/commit/85dfb745ee40232876663ae206cba35f24ab2a40 https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.9.bz2
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.