ELSA-2018-4011
- ULN >
- Oracle Linux Errata repository >
- ELSA-2018-4011
ELSA-2018-4011 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2018-01-12 |
Description
[4.1.12-112.14.11]
- x86/pti/efi: broken conversion from efi to kernel page table (Pavel Tatashin) [Orabug: 27363926] [Orabug: 27352353] {CVE-2017-5754}
- x86/spec: Always set IBRS to guest value on VMENTER and host on VMEXIT (redux) (Konrad Rzeszutek Wilk) [Orabug: 27369994]
- x86/IBRS: Make sure we restore MSR_IA32_SPEC_CTRL to a valid value (Boris Ostrovsky) [Orabug: 27362581]
- x86/IBRS/IBPB: Set sysctl_ibrs/ibpb_enabled properly (Boris Ostrovsky) [Orabug: 27363792]
- x86/spec_ctrl: Add missing 'lfence' when IBRS is not supported. (Konrad Rzeszutek Wilk) [Orabug: 27339995] {CVE-2017-5715}
- x86/entry_64: TRACE_IRQS_OFF before re-enabling. (Jamie Iles) [Orabug: 27339995] {CVE-2017-5715}
- ptrace: remove unlocked RCU dereference. (Jamie Iles) [Orabug: 27339995] {CVE-2017-5715}
- x86/ia32: Adds code hygiene for 32bit SYSCALL instruction entry. (Konrad Rzeszutek Wilk) [Orabug: 27339995] {CVE-2017-5715}
- x86/ia32: don't save registers on audit call (Konrad Rzeszutek Wilk) [Orabug: 27339995] {CVE-2017-5715}
- x86/spec/ia32: Sprinkle IBRS and RSB at the 32-bit SYSCALL (Konrad Rzeszutek Wilk) [Orabug: 27339995] {CVE-2017-5715}
- x86/ia32: Move STUFF_RSB And ENABLE_IBRS (Konrad Rzeszutek Wilk) [Orabug: 27339995] {CVE-2017-5715}
- x86/spec: Always set IBRS to guest value on VMENTER and host on VMEXIT. (Konrad Rzeszutek Wilk) [Orabug: 27365544] {CVE-2017-5715}
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 6 (x86_64) | kernel-uek-4.1.12-112.14.11.el6uek.src.rpm | 9c71d2689bcb29fdb24c91ee3e01e803 | ELSA-2021-9215 |
| kernel-uek-4.1.12-112.14.11.el6uek.x86_64.rpm | 3777bdedca3626d794d972456c80702e | ELSA-2021-9215 | |
| kernel-uek-debug-4.1.12-112.14.11.el6uek.x86_64.rpm | 03d4165564580f82b195af5c86d971d1 | ELSA-2021-9215 | |
| kernel-uek-debug-devel-4.1.12-112.14.11.el6uek.x86_64.rpm | 43a6445ab58a0bf4d896dc3502643031 | ELSA-2021-9215 | |
| kernel-uek-devel-4.1.12-112.14.11.el6uek.x86_64.rpm | c5aa054171160dad7f09b301c7ae3914 | ELSA-2021-9215 | |
| kernel-uek-doc-4.1.12-112.14.11.el6uek.noarch.rpm | aa439958e2bbde8c7da8498346574d1e | ELSA-2021-9215 | |
| kernel-uek-firmware-4.1.12-112.14.11.el6uek.noarch.rpm | 5e3ed3c170b89403f18a16408f8f43b4 | ELSA-2021-9215 | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.1.12-112.14.11.el7uek.src.rpm | 325b1536f8990198f3774100981ea674 | ELSA-2021-9220 |
| kernel-uek-4.1.12-112.14.11.el7uek.x86_64.rpm | 8112a20674358dcbbec9027625f1bb1d | ELSA-2021-9220 | |
| kernel-uek-debug-4.1.12-112.14.11.el7uek.x86_64.rpm | 95bbf14d5ed3cabf6147cb009b3eed14 | ELSA-2021-9220 | |
| kernel-uek-debug-devel-4.1.12-112.14.11.el7uek.x86_64.rpm | 70a42675824db4634c068d3e495401a1 | ELSA-2021-9220 | |
| kernel-uek-devel-4.1.12-112.14.11.el7uek.x86_64.rpm | 4528fcaf8764051d06ebd1c9004ffbde | ELSA-2021-9220 | |
| kernel-uek-doc-4.1.12-112.14.11.el7uek.noarch.rpm | 16d10a839cf79767000a82c68c721392 | ELSA-2021-9220 | |
| kernel-uek-firmware-4.1.12-112.14.11.el7uek.noarch.rpm | dd8d5a1fa8b9ac0a3635e766b234ed78 | ELSA-2021-9215 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
