Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2019-4669

Опубликовано: 31 мая 2019
Источник: oracle-oval
Платформа: Oracle Linux 6
Платформа: Oracle Linux 7

Описание

ELSA-2019-4669: Unbreakable Enterprise kernel security update (IMPORTANT)

[4.1.12-124.27.2]

  • x86/speculation/mds: Check for the right microcode before setting mitigation (Kanth Ghatraju) [Orabug: 29797118]
  • vxlan: test dev->flags & IFF_UP before accessing vxlan->dev->dev_addr (Venkat Venkatsubra) [Orabug: 29710939]
  • vxlan: test dev->flags & IFF_UP before calling gro_cells_receive() (Eric Dumazet) [Orabug: 29710939]
  • nvme: allow timed-out ios to retry (James Smart) [Orabug: 29301607]
  • rds: Introduce a pool of worker threads for connection management (Hakon Bugge) [Orabug: 29391909]
  • rds: Use rds_conn_path cp_wq when applicable (Hakon Bugge) [Orabug: 29391909]
  • rds: ib: Implement proper cm_id compare (Hakon Bugge) [Orabug: 29391909]
  • Revert 'net/rds: prevent RDS connections using stale ARP entries' (Hakon Bugge) [Orabug: 29391909]
  • rds: ib: Flush ARP cache when needed (Hakon Bugge) [Orabug: 29391909]
  • rds: Add simple heuristics to determine connect delay (Hakon Bugge) [Orabug: 29391909]
  • rds: Fix one-sided connect (Hakon Bugge) [Orabug: 29391909]
  • rds: Consolidate and align ftrace related to connection management (Hakon Bugge) [Orabug: 29391909]
  • rds: ib: Fix gratuitous ARP storm (Hakon Bugge) [Orabug: 29391909]
  • IB/mlx4: Increase the timeout for CM cache (Hakon Bugge) [Orabug: 29391909]
  • kvm/speculation: Allow KVM guests to use SSBD even if host does not (Alejandro Jimenez) [Orabug: 29423804]
  • x86/speculation: Keep enhanced IBRS on when spec_store_bypass_disable=on is used (Alejandro Jimenez) [Orabug: 29423804]
  • x86/speculation: Clean up enhanced IBRS checks in bugs_64.c (Alejandro Jimenez) [Orabug: 29423804]
  • mm: thp: relax __GFP_THISNODE for MADV_HUGEPAGE mappings (Andrea Arcangeli) [Orabug: 29510356]
  • bnxt_en: Reset device on RX buffer errors. (Michael Chan) [Orabug: 29651238]
  • x86/mitigations: Fix the test for Xen PV guest (Boris Ostrovsky) [Orabug: 29774291]
  • x86/speculation/mds: Fix verw usage to use memory operand (Kanth Ghatraju) [Orabug: 29791036] {CVE-2018-12127} {CVE-2018-12130}

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

4.1.12-124.27.2.el6uek

kernel-uek-debug

4.1.12-124.27.2.el6uek

kernel-uek-debug-devel

4.1.12-124.27.2.el6uek

kernel-uek-devel

4.1.12-124.27.2.el6uek

kernel-uek-doc

4.1.12-124.27.2.el6uek

kernel-uek-firmware

4.1.12-124.27.2.el6uek

Oracle Linux 7

Oracle Linux x86_64

kernel-uek

4.1.12-124.27.2.el7uek

kernel-uek-debug

4.1.12-124.27.2.el7uek

kernel-uek-debug-devel

4.1.12-124.27.2.el7uek

kernel-uek-devel

4.1.12-124.27.2.el7uek

kernel-uek-doc

4.1.12-124.27.2.el7uek

kernel-uek-firmware

4.1.12-124.27.2.el7uek

Связанные CVE

CVE-2018-12127
CVE-2018-12130

Ссылки на источники

Связанные уязвимости

suse-cvrf логотип

openSUSE-SU-2019:1806-1

suse-cvrf
почти 6 лет назад

Security update for ucode-intel

suse-cvrf логотип

openSUSE-SU-2019:1805-1

suse-cvrf
почти 6 лет назад

Security update for ucode-intel

suse-cvrf логотип

openSUSE-SU-2019:1505-1

suse-cvrf
около 6 лет назад

Security update for libvirt

suse-cvrf логотип

openSUSE-SU-2019:1468-1

suse-cvrf
около 6 лет назад

Security update for ucode-intel

suse-cvrf логотип

openSUSE-SU-2019:1420-1

suse-cvrf
около 6 лет назад

Security update for qemu