Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2025-20318

Опубликовано: 12 мая 2025
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2025-20318: Unbreakable Enterprise kernel security update (IMPORTANT)

[6.12.0-1.23.3.1]

  • x86/bhi: Do not set BHI_DIS_S in 32-bit mode (Pawan Gupta) [Orabug: 37920680]
  • x86/bpf: Add IBHF call at end of classic BPF (Daniel Sneddon) [Orabug: 37920680]
  • x86/bpf: Call branch history clearing sequence on exit (Daniel Sneddon) [Orabug: 37920680]
  • selftest/x86/bugs: Add selftests for ITS (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • x86/its: Align RETs in BHB clear sequence to avoid thunking (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • x86/its: Add support for RSB stuffing mitigation (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • x86/its: Add 'vmexit' option to skip mitigation on some CPUs (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • x86/its: Enable Indirect Target Selection mitigation (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • x86/its: Add support for ITS-safe return thunk (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • x86/its: Add support for ITS-safe indirect thunk (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • x86/its: Enumerate Indirect Target Selection (ITS) bug (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}
  • Documentation: x86/bugs/its: Add ITS documentation (Pawan Gupta) [Orabug: 37863725] {CVE-2024-28956}

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

kernel-uek

6.12.0-1.23.3.1.el9uek

kernel-uek-core

6.12.0-1.23.3.1.el9uek

kernel-uek-debug

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-core

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-devel

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-core

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-deprecated

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-desktop

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-extra

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-extra-netfilter

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-usb

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-wireless

6.12.0-1.23.3.1.el9uek

kernel-uek-devel

6.12.0-1.23.3.1.el9uek

kernel-uek-modules

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-core

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-deprecated

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-desktop

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-extra

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-extra-netfilter

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-usb

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-wireless

6.12.0-1.23.3.1.el9uek

kernel-uek64k

6.12.0-1.23.3.1.el9uek

kernel-uek64k-core

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules-core

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules-deprecated

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules-desktop

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules-extra

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules-extra-netfilter

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules-usb

6.12.0-1.23.3.1.el9uek

kernel-uek64k-modules-wireless

6.12.0-1.23.3.1.el9uek

Oracle Linux x86_64

kernel-uek

6.12.0-1.23.3.1.el9uek

kernel-uek-core

6.12.0-1.23.3.1.el9uek

kernel-uek-debug

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-core

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-devel

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-core

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-deprecated

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-desktop

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-extra

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-extra-netfilter

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-usb

6.12.0-1.23.3.1.el9uek

kernel-uek-debug-modules-wireless

6.12.0-1.23.3.1.el9uek

kernel-uek-devel

6.12.0-1.23.3.1.el9uek

kernel-uek-doc

6.12.0-1.23.3.1.el9uek

kernel-uek-modules

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-core

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-deprecated

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-desktop

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-extra

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-extra-netfilter

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-usb

6.12.0-1.23.3.1.el9uek

kernel-uek-modules-wireless

6.12.0-1.23.3.1.el9uek

Связанные CVE

CVE-2024-28956

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2024-28956

CVSS3: 5.6
ubuntu
около 1 месяца назад

Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

redhat логотип

CVE-2024-28956

CVSS3: 5.6
redhat
около 1 месяца назад

Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

nvd логотип

CVE-2024-28956

CVSS3: 5.6
nvd
около 1 месяца назад

Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

debian логотип

CVE-2024-28956

CVSS3: 5.6
debian
около 1 месяца назад

Exposure of Sensitive Information in Shared Microarchitectural Structu ...

suse-cvrf логотип

SUSE-SU-2025:01703-1

suse-cvrf
28 дней назад

Security update for xen