ELSA-2018-4088
- ULN >
- Oracle Linux Errata repository >
- ELSA-2018-4088
ELSA-2018-4088 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2018-05-01 |
Description
[2.6.39-400.298.6]
- perf/hwbp: Simplify the perf-hwbp code, fix documentation (Linus Torvalds) [Orabug: 27947612] {CVE-2018-100199}
[2.6.39-400.298.5]
- xen-netfront: fix rx stall when req_prod_pvt goes back to more than zero again (Dongli Zhang) [Orabug: 25053376]
- x86/IBRS: Remove support for IBRS_ENABLED_USER mode (Boris Ostrovsky) [Orabug: 27430615]
- x86/microcode/intel: Disable late loading on model 79 (Borislav Petkov) [Orabug: 27343579]
[2.6.39-400.298.4]
- ALSA: usb-audio: Kill stray URB at exiting (Takashi Iwai) [Orabug: 27148283] {CVE-2017-16527}
- uwb: properly check kthread_run return value (Andrey Konovalov) [Orabug: 27206900] {CVE-2017-16526}
- HID: usbhid: fix out-of-bounds bug (Jaejoong Kim) [Orabug: 27207935] {CVE-2017-16533}
- cx231xx-cards: fix NULL-deref on missing association descriptor (Johan Hovold) [Orabug: 27208080] {CVE-2017-16536}
- net: cdc_ether: fix divide by 0 on bad descriptors (Bjorn Mork) [Orabug: 27215206] {CVE-2017-16649}
- Bluetooth: bnep: bnep_add_connection() should verify that its dealing with l2cap socket (Al Viro) [Orabug: 27344787] {CVE-2017-15868}
- Bluetooth: hidp: verify l2cap sockets (David Herrmann) [Orabug: 27344787] {CVE-2017-15868}
- ALSA: pcm: prevent UAF in snd_pcm_info (Robb Glasser) [Orabug: 27344840] {CVE-2017-0861} {CVE-2017-0861}
- Addendum: x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early Spectre v2 microcodes (David Woodhouse) [Orabug: 27516441]
- x86/cpufeature: Add X86_FEATURE_IA32_ARCH_CAPS and X86_FEATURE_IBRS_ATT (David Woodhouse) [Orabug: 27649498] {CVE-2017-5715}
- x86/cpufeatures: Clean up Spectre v2 related CPUID flags (David Woodhouse) [Orabug: 27649510] {CVE-2017-5715}
- x86/spectre: Now that we expose 'stbibp' make sure it is correct. (Konrad Rzeszutek Wilk) [Orabug: 27649631] {CVE-2017-5715}
- x86/speculation: Add basic IBPB (Indirect Branch Prediction Barrier) support (KarimAllah Ahmed) [Orabug: 27649640] {CVE-2017-5715}
- x86: Add STIBP feature enumeration (David Woodhouse) [Orabug: 27649693] {CVE-2017-5715}
- x86/cpu/AMD: Add speculative control support for AMD (Tom Lendacky) [Orabug: 27649706] {CVE-2017-5715}
- x86/spectre_v2: Dont spam the console with these: (Konrad Rzeszutek Wilk) [Orabug: 27649723] {CVE-2017-5715}
- x86/spectre_v2: Remove 0xc2 from spectre_bad_microcodes (Darren Kenny) [Orabug: 27600848]
- Revert 'x86/spec_ctrl: Add 'nolfence' knob to disable fallback for spectre_v2 mitigation' (Konrad Rzeszutek Wilk) [Orabug: 27601773]
- x86/syscall: run syscall exit code with extra registers cleared (Alexandre Chartre) [Orabug: 27501176]
- x86/syscall: run syscall-specific code with extra registers cleared (Alexandre Chartre) [Orabug: 27501176]
- x86/syscall: run syscall entry code with extra registers cleared (Alexandre Chartre) [Orabug: 27501176]
- x86/spectre: Drop the warning about ibrs being obsolete (Konrad Rzeszutek Wilk) [Orabug: 27518974]
- x86: Include linux/device.h in bugs_64.c (Boris Ostrovsky) [Orabug: 27519044]
- x86: fix mitigation details of UEK2 spectre v1 (Konrad Rzeszutek Wilk) [Orabug: 27509909]
- x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early Spectre v2 microcodes (David Woodhouse) [Orabug: 27516441] {CVE-2017-5715}
- x86, intel: Output microcode revision in /proc/cpuinfo (Andi Kleen) [Orabug: 27516441]
- x86: intel-family.h: Add GEMINI_LAKE SOC (Len Brown) [Orabug: 27516441]
- x86/cpu/intel: Introduce macros for Intel family numbers (Dave Hansen) [Orabug: 27516441]
- x86/mitigation/spectre_v2: Add reporting of 'lfence' (Konrad Rzeszutek Wilk) [Orabug: 27525958]
- x86/spec: Add 'lfence_enabled' in sysfs (Konrad Rzeszutek Wilk) [Orabug: 27525954]
- x86/spec_ctrl: Add 'nolfence' knob to disable fallback for spectre_v2 mitigation (Konrad Rzeszutek Wilk) [Orabug: 27525923]
- x86/spec: Also print IBRS if IBPB is disabled (Konrad Rzeszutek Wilk) [Orabug: 27519083]
- x86: Use Indirect Branch Prediction Barrier in context switch (Tim Chen) [Orabug: 27516378]
Related CVEs
| CVE-2018-100199 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 5 (i386) | kernel-uek-2.6.39-400.298.6.el5uek.src.rpm | 4797a269e1256154a4183dcb9c1bc2b19c6d36292d8d8af4401607e5ca15bb0b | ELSA-2020-5936 | ol5_i386_UEK_ELS |
| kernel-uek-2.6.39-400.298.6.el5uek.i686.rpm | 7eec7e981a8aa9a19bd36d734604c6cfc7eea58f41254e4ac0aaec58644f7159 | ELSA-2020-5936 | ol5_i386_UEK_ELS | |
| kernel-uek-debug-2.6.39-400.298.6.el5uek.i686.rpm | 4a014fd292a1101ac502f686552989a9cc791869d11a346357facb9f60e2e976 | ELSA-2020-5936 | ol5_i386_UEK_ELS | |
| kernel-uek-debug-devel-2.6.39-400.298.6.el5uek.i686.rpm | 00101dfaa52f335020cb646f54c7e1647c38d7aaab5d8aa96f099642c0c50dff | ELSA-2020-5936 | ol5_i386_UEK_ELS | |
| kernel-uek-devel-2.6.39-400.298.6.el5uek.i686.rpm | 30985a8d0706ad30705cd285f1ccdae5143b3cb967369533d62fa8d665ade7e7 | ELSA-2020-5936 | ol5_i386_UEK_ELS | |
| kernel-uek-doc-2.6.39-400.298.6.el5uek.noarch.rpm | 752e2e827b1411b9d5b338014abff0b667e34ea5090f682347466a0f8decb92f | ELSA-2020-5936 | ol5_i386_UEK_ELS | |
| kernel-uek-firmware-2.6.39-400.298.6.el5uek.noarch.rpm | f5d4c8969be7d25b0d89f2428f07022901664d22ab3197f2ac2cff8972a0705b | ELSA-2020-5936 | ol5_i386_UEK_ELS | |
| Oracle Linux 5 (x86_64) | kernel-uek-2.6.39-400.298.6.el5uek.src.rpm | 4797a269e1256154a4183dcb9c1bc2b19c6d36292d8d8af4401607e5ca15bb0b | ELSA-2020-5936 | ol5_x86_64_UEK_ELS |
| kernel-uek-2.6.39-400.298.6.el5uek.x86_64.rpm | 360d27afbe8a79a30b81ddbbdee5c759610491b0dff2fe281276641a4c51f3fc | ELSA-2020-5936 | ol5_x86_64_UEK_ELS | |
| kernel-uek-debug-2.6.39-400.298.6.el5uek.x86_64.rpm | 379a06b5a0fd276992e44e27b1425ec5173bebfbd4881d9214f19224a5975f4b | ELSA-2020-5936 | ol5_x86_64_UEK_ELS | |
| kernel-uek-debug-devel-2.6.39-400.298.6.el5uek.x86_64.rpm | c5c2361a4f2408dbc00d94d13612367f0433e78b2ee24e757bad0fc264b257fe | ELSA-2020-5936 | ol5_x86_64_UEK_ELS | |
| kernel-uek-devel-2.6.39-400.298.6.el5uek.x86_64.rpm | 5780d61197e11e428f2a4146a339eb5293e62fc50ba8a5c7f9f71430c41d81c6 | ELSA-2020-5936 | ol5_x86_64_UEK_ELS | |
| kernel-uek-doc-2.6.39-400.298.6.el5uek.noarch.rpm | 752e2e827b1411b9d5b338014abff0b667e34ea5090f682347466a0f8decb92f | ELSA-2020-5936 | ol5_x86_64_UEK_ELS | |
| kernel-uek-firmware-2.6.39-400.298.6.el5uek.noarch.rpm | f5d4c8969be7d25b0d89f2428f07022901664d22ab3197f2ac2cff8972a0705b | ELSA-2020-5936 | ol5_x86_64_UEK_ELS | |
| Oracle Linux 6 (i386) | kernel-uek-2.6.39-400.298.6.el6uek.src.rpm | 860168b8257977a3ee6ec56eecc77d793bb37c091958f3d0fe55e04a60331739 | ELSA-2025-20007 | ol6_i386_UEK_latest |
| kernel-uek-2.6.39-400.298.6.el6uek.i686.rpm | 3ae3c2465506bbf623e426f9d765fc96fb8dcd096d61e9f08238b22dfcd6abf8 | ELSA-2025-20007 | ol6_i386_UEK_latest | |
| kernel-uek-debug-2.6.39-400.298.6.el6uek.i686.rpm | 221127f44928d0d6927d927ad3cd7649c2076643e442b3c4db8a9d43b64c3665 | ELSA-2025-20007 | ol6_i386_UEK_latest | |
| kernel-uek-debug-devel-2.6.39-400.298.6.el6uek.i686.rpm | 1fd3380679a7ccb6302f7edfaf23e3abff23f84a9778c3f0200400ba4f8aa6da | ELSA-2025-20007 | ol6_i386_UEK_latest | |
| kernel-uek-devel-2.6.39-400.298.6.el6uek.i686.rpm | b730008bfb1349b51e552cab1142c8257daed953dca698d8cab9474a94d6c06d | ELSA-2025-20007 | ol6_i386_UEK_latest | |
| kernel-uek-doc-2.6.39-400.298.6.el6uek.noarch.rpm | 10caf0ba259a2ff5cb2828f5b189d39e4f96793b9869ed074c674915c374ccc3 | ELSA-2025-20007 | ol6_i386_UEK_latest | |
| kernel-uek-firmware-2.6.39-400.298.6.el6uek.noarch.rpm | 1c2719dba65e012455ee92c0acb090955cec4f38eca32c9572317f4de16d7a4c | ELSA-2025-20007 | ol6_i386_UEK_latest | |
| Oracle Linux 6 (x86_64) | kernel-uek-2.6.39-400.298.6.el6uek.src.rpm | 860168b8257977a3ee6ec56eecc77d793bb37c091958f3d0fe55e04a60331739 | ELSA-2025-20007 | ol6_x86_64_UEK_latest |
| kernel-uek-2.6.39-400.298.6.el6uek.x86_64.rpm | 5d68cf85a47b997c2ce6467d22706945d53d043dfbbf0ecdf317cfa8d242e819 | ELSA-2025-20007 | ol6_x86_64_UEK_latest | |
| kernel-uek-debug-2.6.39-400.298.6.el6uek.x86_64.rpm | 3539b0771756c2f3615d4221383f928482815e9c19bbcf5ba01a82cf8461acae | ELSA-2025-20007 | ol6_x86_64_UEK_latest | |
| kernel-uek-debug-devel-2.6.39-400.298.6.el6uek.x86_64.rpm | 05f108489b7b88061a87afb387bde6d5141609f48a5bafca1965699faee03243 | ELSA-2025-20007 | ol6_x86_64_UEK_latest | |
| kernel-uek-devel-2.6.39-400.298.6.el6uek.x86_64.rpm | f4436473676ba9e990e5170ce59dffd840bc4f9697af3f0d5c05abfca93c7e00 | ELSA-2025-20007 | ol6_x86_64_UEK_latest | |
| kernel-uek-doc-2.6.39-400.298.6.el6uek.noarch.rpm | 10caf0ba259a2ff5cb2828f5b189d39e4f96793b9869ed074c674915c374ccc3 | ELSA-2025-20007 | ol6_x86_64_UEK_latest | |
| kernel-uek-firmware-2.6.39-400.298.6.el6uek.noarch.rpm | 1c2719dba65e012455ee92c0acb090955cec4f38eca32c9572317f4de16d7a4c | ELSA-2025-20007 | ol6_x86_64_UEK_latest | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
