ClickCease CentOS 6 ELS: kernel gradual rollout completed - TuxCare

Join Our Popular Newsletter

Join 4,500+ Linux & Open Source Professionals!

2x a month. No spam.

CentOS 6 ELS: kernel gradual rollout completed

September 20, 2021 - TuxCare PR Team

A new CentOS 6 kernel within CentOS 6 ELS has been rolled out to 100% and is now available for download from our production repository.

CHANGELOG

kernel-2.6.32-754.35.8.el6

  • ELSCVE-666: CVE-2021-34693: can: bcm: fix infoleak in struct bcm_msg_head
  • ELSCVE-705: CVE-2021-38160: virtio_console: Assure used length from device is limited
  • ELSCVE-769: CVE-2014-4508: x86_32, entry: Do syscall exit work on badsys (CVE-2014-4508)
  • ELSCVE-844: CVE-2021-3573: Bluetooth: use correct lock to prevent UAF of hdev object
  • ELSCVE-503: CVE-2021-32399: bluetooth: eliminate the potential race condition when removing the HCI controller
  • ELSCVE-451: CVE-2021-37159: hso: fix a use after free condition
  • ELSCVE-387: CVE-2021-38205: net: xilinx_emaclite: Do not print real IOMEM pointer
  • ELSCVE-547: CVE-2021-3178: nfsd4: readdirplus shouldn’t return parent of export
  • ELSCVE-547: nfsd: fix compose_entry_fh() failure exits
  • ELSCVE-547: nfsd: make local functions static
  • ELSCVE-682: CVE-2021-20265: af_unix: fix struct pid memory leak
  • ELSCVE-531: CVE-2021-20292: drm/ttm/nouveau: don’t call tt destroy callback on alloc failure.
  • ELSCVE-543: CVE-2021-28972: PCI: rpadlpar: Fix potential drc_name corruption in store functions
  • ELSCVE-575: CVE-2021-3612: Input: joydev – prevent use of not validated data in JSIOCSBTNMAP ioctl
  • ELSCVE-575: Input: joydev – prevent potential read overflow in ioctl
  • ELSCVE-575: Input: joydev – fix possible ERR_PTR() dereferencing
  • ELSCVE-575: Input: joydev – use memdup_user() to duplicate memory from user-space

UPDATE COMMAND

yum update kernel-*

 

Looking to automate vulnerability patching without kernel reboots, system downtime, or scheduled maintenance windows?

Learn About Live Patching with TuxCare

Related Articles

Strategies for Managing End-of-Life Operating...

End-of-life software is just a fact of our fast-paced technology...

January 30, 2023

Think You Can’t Afford Consistent...

Look, everyone knows that it’s a tough act. Thousands of...

January 17, 2023

Common Government Cybersecurity Standards –...

The public sector, including state and federal agencies, are at...

January 16, 2023

Which Linux Distro is Best...

If your organization deploys IoT solutions, you know that development...

December 1, 2022

The Bugs Behind the Vulnerabilities...

We continue to look at the code issues that cause...

November 14, 2022

Cybersecurity insurance and fine print:...

Catastrophic risks such as natural disasters and indeed cyberattacks require...

June 29, 2022