ELSA-2018-4017

Описание

[4.1.12-112.14.13]

• Revert 'kernel.spec: Require the new microcode_ctl.' (Brian Maly)

[4.1.12-112.14.12]

• xen-blkback: add pending_req allocation stats (Ankur Arora) [Orabug: 27386890]
• xen-blkback: move indirect req allocation out-of-line (Ankur Arora) [Orabug: 27386890]
• xen-blkback: pull nseg validation out in a function (Ankur Arora) [Orabug: 27386890]
• xen-blkback: make struct pending_req less monolithic (Ankur Arora) [Orabug: 27386890]
• x86: Clean up IBRS functionality resident in common code (Kanth Ghatraju) [Orabug: 27403317]
• x86: Display correct settings for the SPECTRE_V2 bug (Kanth Ghatraju) [Orabug: 27403317]
• Set CONFIG_GENERIC_CPU_VULNERABILITIES flag (Kanth Ghatraju) [Orabug: 27403317]
• x86/cpu: Implement CPU vulnerabilites sysfs functions (Thomas Gleixner) [Orabug: 27403317]
• sysfs/cpu: Fix typos in vulnerability documentation (David Woodhouse) [Orabug: 27403317]
• sysfs/cpu: Add vulnerability folder (Thomas Gleixner) [Orabug: 27403317]
• x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (David Woodhouse) [Orabug: 27403317]
• x86/cpufeatures: Add X86_BUG_CPU_MELTDOWN (Kanth Ghatraju) [Orabug: 27403317]
• KVM: x86: Add memory barrier on vmcs field lookup (Andrew Honig) {CVE-2017-5753}
• KVM: VMX: remove I/O port 0x80 bypass on Intel hosts (Andrew Honig) [Orabug: 27402301] {CVE-2017-1000407} {CVE-2017-1000407}
• xfs: give all workqueues rescuer threads (Chris Mason) [Orabug: 27397568]
• ixgbevf: handle mbox_api_13 in ixgbevf_change_mtu (Joao Martins) [Orabug: 27397001]