Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2019-4839

Опубликовано: 12 нояб. 2019
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2019-4839: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.315.1.1]

  • x86/tsx: Add config options to set tsx=on|off|auto (Michal Hocko) [Orabug: 30419231] {CVE-2019-11135}
  • x86/speculation/taa: Add documentation for TSX Async Abort (Pawan Gupta) [Orabug: 30419231] {CVE-2019-11135}
  • x86/tsx: Add 'auto' option to TSX cmdline parameter (Pawan Gupta) [Orabug: 30419231] {CVE-2019-11135}
  • x86/speculation/taa: Add sysfs reporting for TSX Async Abort (Pawan Gupta) [Orabug: 30419231] {CVE-2019-11135}
  • x86/speculation/taa: Add mitigation for TSX Async Abort (Pawan Gupta) [Orabug: 30419231] {CVE-2019-11135}
  • x86/tsx: Add TSX cmdline option with TSX disabled by default (Pawan Gupta) [Orabug: 30419231] {CVE-2019-11135}
  • x86: Add helper function x86_read_arch_cap_msr() (Pawan Gupta) [Orabug: 30419231] {CVE-2019-11135}
  • x86/tsx: Add enumeration support for IA32_TSX_CTRL MSR (Pawan Gupta) [Orabug: 30419231] {CVE-2019-11135}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.315.1.1.el5uek

kernel-uek-debug

2.6.39-400.315.1.1.el5uek

kernel-uek-debug-devel

2.6.39-400.315.1.1.el5uek

kernel-uek-devel

2.6.39-400.315.1.1.el5uek

kernel-uek-doc

2.6.39-400.315.1.1.el5uek

kernel-uek-firmware

2.6.39-400.315.1.1.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.315.1.1.el5uek

kernel-uek-debug

2.6.39-400.315.1.1.el5uek

kernel-uek-debug-devel

2.6.39-400.315.1.1.el5uek

kernel-uek-devel

2.6.39-400.315.1.1.el5uek

kernel-uek-doc

2.6.39-400.315.1.1.el5uek

kernel-uek-firmware

2.6.39-400.315.1.1.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.315.1.1.el6uek

kernel-uek-debug

2.6.39-400.315.1.1.el6uek

kernel-uek-debug-devel

2.6.39-400.315.1.1.el6uek

kernel-uek-devel

2.6.39-400.315.1.1.el6uek

kernel-uek-doc

2.6.39-400.315.1.1.el6uek

kernel-uek-firmware

2.6.39-400.315.1.1.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.315.1.1.el6uek

kernel-uek-debug

2.6.39-400.315.1.1.el6uek

kernel-uek-debug-devel

2.6.39-400.315.1.1.el6uek

kernel-uek-devel

2.6.39-400.315.1.1.el6uek

kernel-uek-doc

2.6.39-400.315.1.1.el6uek

kernel-uek-firmware

2.6.39-400.315.1.1.el6uek

Связанные CVE

CVE-2019-11135

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2019-11135

CVSS3: 6.5
ubuntu
больше 5 лет назад

TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.

redhat логотип

CVE-2019-11135

CVSS3: 6.5
redhat
больше 5 лет назад

TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.

nvd логотип

CVE-2019-11135

CVSS3: 6.5
nvd
больше 5 лет назад

TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.

msrc логотип

CVE-2019-11135

CVSS3: 4.7
msrc
больше 5 лет назад

Windows Kernel Information Disclosure Vulnerability

debian логотип

CVE-2019-11135

CVSS3: 6.5
debian
больше 5 лет назад

TSX Asynchronous Abort condition on some CPUs utilizing speculative ex ...