Release Info

Advisory: CLSA-2022:1650377052

OS: CentOS 6 ELS

Public date: 2022-04-19 00:00:00

Project: kernel

Version: 2.6.32-754.35.8.el6.tuxcare.els9

Errata link: https://errata.cloudlinux.com/els6/CLSA-2022-1650377052.html

Changelog

- can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path [ELSCVE-3847] {CVE-2022-28390} - can: bcm: delay release of struct bcm_op after synchronize_rcu() [ELSCVE-1694] {CVE-2021-3609} - RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy [ELSCVE-2286] {CVE-2020-36385} - RDMA/ucma: Fix the locking of ctx->file [ELSCVE-2286] {CVE-2020-36385} - RDMA/cma: Add missing locking to rdma_accept() [ELSCVE-2286] {CVE-2020-36385} - RDMA/ucma: Put a lock around every call to the rdma_cm layer [ELSCVE-2286] {CVE-2020-36385} - sctp: validate chunk size in __rcv_asconf_lookup [ELSCVE-713] {CVE-2021-3655} - sctp: fix return value check in __sctp_rcv_asconf_lookup [ELSCVE-713] {CVE-2021-3655} - add size validation when walking chunks [ELSCVE-713] {CVE-2021-3655} - sctp: validate from_addr_param return [ELSCVE-713] {CVE-2021-3655} - sctp: fully initialize v4 addr in some functions [ELSCVE-713] {CVE-2021-3655} - sctp: simplify addr copy [ELSCVE-713] {CVE-2021-3655} - dm ioctl: fix out of bounds array access when no devices [ELSCVE-475] {CVE-2021-31916}

Update

Update command: yum update kernel*

Packages list

kernel-debug-2.6.32-754.35.8.el6.tuxcare.els9.x86_64.rpm perf-2.6.32-754.35.8.el6.tuxcare.els9.x86_64.rpm kernel-debug-devel-2.6.32-754.35.8.el6.tuxcare.els9.i686.rpm kernel-debug-devel-2.6.32-754.35.8.el6.tuxcare.els9.x86_64.rpm perf-2.6.32-754.35.8.el6.tuxcare.els9.i686.rpm python-perf-2.6.32-754.35.8.el6.tuxcare.els9.x86_64.rpm kernel-headers-2.6.32-754.35.8.el6.tuxcare.els9.x86_64.rpm kernel-2.6.32-754.35.8.el6.tuxcare.els9.x86_64.rpm kernel-devel-2.6.32-754.35.8.el6.tuxcare.els9.x86_64.rpm

CVEs

CVE-2020-36385
CVE-2021-4083
CVE-2021-3609
CVE-2021-3655
CVE-2021-31916
CVE-2022-28390