Difference between revisions of "Download/kernel/rhel6-testing/042stab117.6/changes"
< Download | kernel | rhel6-testing | 042stab117.6
(Created page with "== Changes == Since {{kernel link|rhel6-testing|042stab117.5}}: * Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result co...") |
(links to OVZ issues) |
||
| Line 3: | Line 3: | ||
* Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result could be kernel memory corruption, leading to elevation of privileges or kernel code execution. (CVE-2016-4997, CVE-2016-4998) | * Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result could be kernel memory corruption, leading to elevation of privileges or kernel code execution. (CVE-2016-4997, CVE-2016-4998) | ||
| − | * fs.mqueue.* sysctls can be changed inside containers. (OVZ | + | * fs.mqueue.* sysctls can be changed inside containers. ({{OVZ|6757}}) |
| − | * fixed work of iputils-ping-20150815 (debian-9) inside containers. (OVZ | + | * fixed work of iputils-ping-20150815 (debian-9) inside containers. ({{OVZ|6744}}) |
=== See also === | === See also === | ||
| − | http://seclists.org/oss-sec/2016/q2/599 | + | * http://seclists.org/oss-sec/2016/q2/599 |
Latest revision as of 18:11, 13 September 2016
Changes[edit]
Since 042stab117.5:
- Corrupted offset could allow for arbitrary decrements in compat IPT_SO_SET_REPLACE setsockopt. The result could be kernel memory corruption, leading to elevation of privileges or kernel code execution. (CVE-2016-4997, CVE-2016-4998)
- fs.mqueue.* sysctls can be changed inside containers. (OVZ-6757)
- fixed work of iputils-ping-20150815 (debian-9) inside containers. (OVZ-6744)
