Friday, August 20, 2021

Oracle Linux: (CVE-2021-3656) (Multiple Advisories): Unbreakable Enterprise kernel-container security update

Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.From ELSA-2021-9422:[4.14.35-2047.506.10.el7] - Revert 'rds/ib: reap tx completions during connection shutdown' (Manjunath Patil) [Orabug: 33220435] - Revert 'rds/ib: handle posted ACK during connection shutdown' (Manjunath Patil) [Orabug: 33220435] - Revert 'rds/ib: recover rds connection from interrupt loss scenario' (Manjunath Patil) [Orabug: 33220435] - Revert 'rds/ib: move rds_ib_clear_irq_miss() to .h file' (Manjunath Patil) [Orabug: 33220435] - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (Maxim Levitsky) [Orabug: 33205367] {CVE-2021-3656} - KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (Maxim Levitsky) [Orabug: 33205444] {CVE-2021-3653}
Solution(s)
  • oracle-linux-upgrade-kernel-uek
  • oracle-linux-upgrade-kernel-uek-container
  • oracle-linux-upgrade-kernel-uek-container-debug
  • oracle-linux-upgrade-kernel-uek-debug
  • oracle-linux-upgrade-kernel-uek-debug-devel
  • oracle-linux-upgrade-kernel-uek-devel
  • oracle-linux-upgrade-kernel-uek-doc
  • oracle-linux-upgrade-kernel-uek-headers
  • oracle-linux-upgrade-kernel-uek-tools
  • oracle-linux-upgrade-kernel-uek-tools-libs
  • oracle-linux-upgrade-kernel-uek-tools-libs-devel
  • oracle-linux-upgrade-perf
  • oracle-linux-upgrade-python-perf


  • References
  • ELSA-2021-9421
  • ELSA-2021-9422
  • CVE-2021-3656




  •  

    Copyright © 2021 Vulnerability Database | Cyber Details™

    thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore