ELSA-2018-4242
- ULN >
- Oracle Linux Errata repository >
- ELSA-2018-4242
ELSA-2018-4242 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2018-10-10 |
Description
[4.14.35-1818.3.3]
- net: net_failover: fix typo in net_failover_slave_register() (Liran Alon) [Orabug: 28122110]
- virtio_net: Extend virtio to use VF datapath when available (Sridhar Samudrala) [Orabug: 28122110]
- virtio_net: Introduce VIRTIO_NET_F_STANDBY feature bit (Sridhar Samudrala) [Orabug: 28122110]
- net: Introduce net_failover driver (Sridhar Samudrala) [Orabug: 28122110]
- net: Introduce generic failover module (Sridhar Samudrala) [Orabug: 28122110]
- IB/ipoib: Improve filtering log message (Yuval Shaia) [Orabug: 28655435]
- IB/ipoib: Fix wrong update of arp_blocked counter (Yuval Shaia) [Orabug: 28655435]
- IB/ipoib: Update RX counters after ACL filtering (Yuval Shaia) [Orabug: 28655435]
- IB/ipoib: Filter RX packets before adding pseudo header (Yuval Shaia) [Orabug: 28655435]
- dm crypt: add middle-endian variant of plain64 IV (Konrad Rzeszutek Wilk) [Orabug: 28604629]
- uek-rpm: Disable deprecated CONFIG_ACPI_PROCFS_POWER (Victor Erminpour) [Orabug: 28644322]
- net/rds: Fix call to sleeping function in a non-sleeping context (Hakon Bugge) [Orabug: 28657397]
- cdrom: Fix info leak/OOB read in cdrom_ioctl_drive_status (Scott Bauer) [Orabug: 28664499] {CVE-2018-16658}
- ACPICA: acpi: acpica: fix acpi operand cache leak in nseval.c (Seunghun Han) [Orabug: 28664576] {CVE-2017-13695}
- usb: xhci: do not create and register shared_hcd when USB3.0 is disabled (Tung Nguyen) [Orabug: 28677854]
[4.14.35-1818.3.2]
- hwmon: (k10temp) Display both Tctl and Tdie (Guenter Roeck) [Orabug: 28143470]
- hwmon: (k10temp) Use API function to access System Management Network (Guenter Roeck) [Orabug: 28143470]
- hwmon: (k10temp) Fix reading critical temperature register (Guenter Roeck) [Orabug: 28143470]
- hwmon: (k10temp) Add temperature offset for Ryzen 2700X (Guenter Roeck) [Orabug: 28143470]
- hwmon: (k10temp) Add support for temperature offsets (Guenter Roeck) [Orabug: 28143470]
- hwmon: (k10temp) Add support for family 17h (Guenter Roeck) [Orabug: 28143470]
- hwmon: (k10temp) Move chip specific code into probe function (Guenter Roeck) [Orabug: 28143470]
- net/rds: make the source code clean (Zhu Yanjun) [Orabug: 28607913]
- net/rds: Use rdma_read_gids to get connection SGID/DGID in IPv6 (Zhu Yanjun) [Orabug: 28607913]
- net/rds: Use rdma_read_gids to read connection GIDs (Parav Pandit) [Orabug: 28607913]
- posix-timers: Sanitize overrun handling (Thomas Gleixner) [Orabug: 28642970] {CVE-2018-12896}
- crypto: ccp - Add support for new CCP/PSP device ID (Tom Lendacky) [Orabug: 28584386]
- crypto: ccp - Support register differences between PSP devices (Tom Lendacky) [Orabug: 28584386]
- crypto: ccp - Remove unused #defines (Tom Lendacky) [Orabug: 28584386]
- crypto: ccp - Add psp enabled message when initialization succeeds (Tom Lendacky) [Orabug: 28584386]
- crypto: ccp - Fix command completion detection race (Tom Lendacky) [Orabug: 28584386]
- iommu/amd: Add support for IOMMU XT mode (Suravee Suthikulpanit) [Orabug: 28584386]
- iommu/amd: Add support for higher 64-bit IOMMU Control Register (Suravee Suthikulpanit) [Orabug: 28584386]
- x86: irq_remapping: Move irq remapping mode enum (Suravee Suthikulpanit) [Orabug: 28584386]
- x86/CPU/AMD: Fix LLC ID bit-shift calculation (Suravee Suthikulpanit) [Orabug: 28584386]
- x86/CPU/AMD: Derive CPU topology from CPUID function 0xB when available (Suravee Suthikulpanit) [Orabug: 28584386]
- x86/CPU/AMD: Calculate last level cache ID from number of sharing threads (Suravee Suthikulpanit) [Orabug: 28584386]
- x86/CPU: Rename intel_cacheinfo.c to cacheinfo.c (Borislav Petkov) [Orabug: 28584386]
- perf/events/amd/uncore: Fix amd_uncore_llc ID to use pre-defined cpu_llc_id (Suravee Suthikulpanit) [Orabug: 28584386]
- x86/CPU/AMD: Have smp_num_siblings and cpu_llc_id always be present (Borislav Petkov) [Orabug: 28584386]
[4.14.35-1818.3.1]
- arm64: vdso: fix clock_getres for 4GiB-aligned res (Mark Rutland) [Orabug: 28603375]
- locking/qrwlock: Prevent slowpath writers getting held up by fastpath (Will Deacon) [Orabug: 28605196]
- locking/qrwlock, arm64: Move rwlock implementation over to qrwlocks (Will Deacon) [Orabug: 28605196]
- locking/qrwlock: Use atomic_cond_read_acquire() when spinning in qrwlock (Will Deacon) [Orabug: 28605196]
- locking/atomic: Add atomic_cond_read_acquire() (Will Deacon) [Orabug: 28605196]
- rds: CVE-2018-7492: Fix NULL pointer dereference in __rds_rdma_map (Hakon Bugge) [Orabug: 28565429] {CVE-2018-7492}
- irqchip/irq-bcm2836: Add support for DT interrupt polarity (Stefan Wahren) [Orabug: 28596168]
- dt-bindings/bcm2836-l1-intc: Add interrupt polarity support (Stefan Wahren) [Orabug: 28596168]
- dt-bindings/bcm283x: Define polarity of per-cpu interrupts (Stefan Wahren) [Orabug: 28596168]
- x86/spec_ctrl: Only set SPEC_CTRL_IBRS_FIRMWARE if IBRS is actually in use (Patrick Colp) [Orabug: 28610695]
[4.14.35-1818.2.2]
- x86/xen: Calculate __max_logical_packages on PV domains (Prarit Bhargava) [Orabug: 28476586]
- x86/entry/64: Remove %ebx handling from error_entry/exit (Andy Lutomirski) [Orabug: 28402921] {CVE-2018-14678}
- x86/pti: Don't report XenPV as vulnerable (Jiri Kosina) [Orabug: 28476680]
- x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ (Andi Kleen) [Orabug: 28488807] {CVE-2018-3620}
- x86/speculation/l1tf: Suggest what to do on systems with too much RAM (Vlastimil Babka) [Orabug: 28488807] {CVE-2018-3620}
- x86/speculation/l1tf: Fix off-by-one error when warning that system has too much RAM (Vlastimil Babka) [Orabug: 28488807] {CVE-2018-3620}
- x86/speculation/l1tf: Fix overflow in l1tf_pfn_limit() on 32bit (Vlastimil Babka) [Orabug: 28488807] {CVE-2018-3620}
- x86/speculation/l1tf: Exempt zeroed PTEs from inversion (Sean Christopherson) [Orabug: 28488807] {CVE-2018-3620}
- x86/l1tf: Fix build error seen if CONFIG_KVM_INTEL is disabled (Guenter Roeck) [Orabug: 28488807] {CVE-2018-3620}
- x86/spectre: Add missing family 6 check to microcode check (Andi Kleen) [Orabug: 28488807] {CVE-2018-3620}
- KVM: x86: SVM: Call x86_spec_ctrl_set_guest/host() with interrupts disabled (Thomas Gleixner) [Orabug: 28488807] {CVE-2018-3646}
- x86/microcode: Allow late microcode loading with SMT disabled (Josh Poimboeuf) [Orabug: 28488807] {CVE-2018-3620}
- PCI: Add ACS quirk for Ampere root ports (Feng Kan) [Orabug: 28525940]
- xfs: don't fail when converting shortform attr to long form during ATTR_REPLACE (Darrick J. Wong) [Orabug: 28573020]
- uek-rpm: Disable F2FS in the UEK5 config (Victor Erminpour) [Orabug: 28577123]
Related CVEs
| CVE-2018-14678 |
| CVE-2018-7492 |
| CVE-2018-12896 |
| CVE-2017-13695 |
| CVE-2018-16658 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (aarch64) | kernel-uek-4.14.35-1818.3.3.el7uek.src.rpm | 613739816413da807ccfc5a8194c77fa0daa2f86c904dc2e3ce98e3c35337ad7 | ELSA-2025-20190 | ol7_aarch64_latest |
| kernel-uek-4.14.35-1818.3.3.el7uek.aarch64.rpm | fb0df5f75aae4254e05cd9469c4b7da9987a2dc6fd60497f3019c94de2cd5d42 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-debug-4.14.35-1818.3.3.el7uek.aarch64.rpm | 7c1290cbeee36b9feb25389f72bf32d2728eaf835e2ce2a28d143802bceb585c | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-debug-devel-4.14.35-1818.3.3.el7uek.aarch64.rpm | 0bfa0598f63dcf989f8e752f6a0e0aff1309bce7e9dba6e41a15b302817a2c38 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-devel-4.14.35-1818.3.3.el7uek.aarch64.rpm | 6c266937947528d0b60704f7044baaa81b76be25446ee85b8eacfc212a969f8b | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-headers-4.14.35-1818.3.3.el7uek.aarch64.rpm | 5ea93222087098970d64e16d9ee71e61bc9a64e3ffc6840b021512e8d1f6b5bb | ELBA-2025-20014 | ol7_aarch64_latest | |
| kernel-uek-tools-4.14.35-1818.3.3.el7uek.aarch64.rpm | e27f84b7dfd03665ae13a61bc59eb160265269fe84e9b44c136cb425f3f7ed55 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-tools-libs-4.14.35-1818.3.3.el7uek.aarch64.rpm | f616488ed795a27b185d6748bc7a17298a2ce17b8a38f4468bac44511d49c1a5 | ELSA-2025-20019 | ol7_aarch64_latest | |
| kernel-uek-tools-libs-devel-4.14.35-1818.3.3.el7uek.aarch64.rpm | 996f5c15223a733a38b1b33a6152bedea3f0c20a70b3c9d9a3fb816a3588338a | ELBA-2025-20014 | ol7_aarch64_latest | |
| perf-4.14.35-1818.3.3.el7uek.aarch64.rpm | 37e06eb5e752a0525b9ec29372429f957608c6d178f48982b684dff51414ddbb | ELSA-2025-20019 | ol7_aarch64_latest | |
| python-perf-4.14.35-1818.3.3.el7uek.aarch64.rpm | 4d1366b518b9294d0cc7d65e1957ec682a921e131aa075845c529ee60565534c | ELSA-2025-20019 | ol7_aarch64_latest | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.14.35-1818.3.3.el7uek.src.rpm | 613739816413da807ccfc5a8194c77fa0daa2f86c904dc2e3ce98e3c35337ad7 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive |
| kernel-uek-4.14.35-1818.3.3.el7uek.x86_64.rpm | e4fd229a4fa9a8ed1d30408e669283bb4eb3ebea1364dd82397453eb0d0f34d8 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-debug-4.14.35-1818.3.3.el7uek.x86_64.rpm | 04870d7434076613d3a4694796dc6c402011d67d632402ed946537a15ed4f8ff | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-debug-devel-4.14.35-1818.3.3.el7uek.x86_64.rpm | a49585e4fbd6b0bab87df3d06e32795f4351b8ed5ce6b70d8849937ec91d52ef | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-devel-4.14.35-1818.3.3.el7uek.x86_64.rpm | ad83c79a4e9bc5b240acaf37b35f99d05a3e88d004b5e76f5257055c43b711e0 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-doc-4.14.35-1818.3.3.el7uek.noarch.rpm | 838cce8e3b4399e7e045feb1830dfc8aa553554e8b2aba826715139589b04482 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-tools-4.14.35-1818.3.3.el7uek.x86_64.rpm | ce7e51099389b4e12094f299bf2ea8778096d1770dcfbad9307d1cc29f91513d | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
