ELSA-2019-3836

ELSA-2019-3836 - kernel security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2019-11-13

Description


[2.6.32-754.24.2.OL6]
- Update genkey [bug 25599697]

[2.6.32-754.24.2]
- [documentation] Documentation: Add ITLB_MULTIHIT documentation (Paolo Bonzini) [1692385] {CVE-2018-12207}
- [kvm] KVM: introduce no_huge_pages module parameter (Paolo Bonzini) [1692385] {CVE-2018-12207}
- [x86] x86: Add ITLB_MULTIHIT bug infrastructure (Paolo Bonzini) [1692385] {CVE-2018-12207}
- [x86] x86/spec_ctrl/taa: Enable TAA status change after late microcode (Waiman Long) [1766531] {CVE-2019-11135}
- [documentation] x86/speculation/taa: Add documentation for TSX Async Abort (Waiman Long) [1766531] {CVE-2019-11135}
- [base] x86/speculation/taa: Add sysfs reporting for TSX Async Abort (Waiman Long) [1766531] {CVE-2019-11135}
- [x86] x86/speculation/taa: Add mitigation for TSX Async Abort (Waiman Long) [1766531] {CVE-2019-11135}
- [x86] x86/cpu: Add a helper function x86_read_arch_cap_msr() (Waiman Long) [1766531] {CVE-2019-11135}
- [x86] x86/msr: Add the IA32_TSX_CTRL MSR (Waiman Long) [1766531] {CVE-2019-11135}
- [drm] drm/i915: Lower RM timeout to avoid DSI hard hangs (Dave Airlie) [1756824] {CVE-2019-0154}
- [drm] drm/i915/gen8+: Add RC6 CTX corruption WA (Dave Airlie) [1756824] {CVE-2019-0154}
- [drm] drm/i915/cmdparser: Ignore Length operands during command matching (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915/cmdparser: Add support for backward jumps (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915: Add gen9 BCS cmdparsing (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915: Allow parsing of unsized batches (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915: Add support for mandatory cmdparsing (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915: Remove Master tables from cmdparser (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915: Disable Secure Batches for gen6+ (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915: Rename gen7 cmdparser tables (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915/gtt: Disable read-only support under GVT (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] erm/i915/gtt: Read-only pages for insert_entries on bdw+ (Dave Airlie) [1756891] {CVE-2019-0155}
- [drm] drm/i915/gtt: Add read only pages to gen8_pte_encode (Dave Airlie) [1756891] {CVE-2019-0155}

[2.6.32-754.24.1]
- [net] ip: Don't leak head fragment on queue timeout (Stefano Brivio) [1752536]
- [vhost] vhost_net: fix possible infinite loop (Eugenio Perez) [1702941]
- [vhost] vhost: introduce vhost_exceeds_weight() (Eugenio Perez) [1702941]
- [vhost] vhost_net: introduce vhost_exceeds_weight() (Eugenio Perez) [1702941]
- [vhost] vhost_net: use packet weight for rx handler, too (Eugenio Perez) [1702941]
- [vhost] vhost-net: set packet weight of tx polling to 2 * vq size (Eugenio Perez) [1702941]
- [x86] x86/pti: Fix incorrect global bit setting with PTI on (Waiman Long) [1645724]
- [x86] spec_ctrl: disable IBRS in idle, part 2 (Rafael Aquini) [1560787]


Related CVEs


CVE-2019-3900
CVE-2018-12207
CVE-2019-11135
CVE-2019-0154

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) kernel-2.6.32-754.24.2.el6.src.rpm2bf93f82f967043824b77067047b7d22ELSA-2021-9212
kernel-2.6.32-754.24.2.el6.i686.rpmc01767ccf9244e6bcf63be7358a71258ELSA-2021-9212
kernel-abi-whitelists-2.6.32-754.24.2.el6.noarch.rpm7fd965b66123cbf7b6219f98de14c759ELSA-2021-9212
kernel-debug-2.6.32-754.24.2.el6.i686.rpm87f6065e4e73dda9cd79870cdd8d9f18ELSA-2021-9212
kernel-debug-devel-2.6.32-754.24.2.el6.i686.rpm8af6b72542b0c589dee6d42ca92a8d7dELSA-2021-9212
kernel-devel-2.6.32-754.24.2.el6.i686.rpm9fa94c39f284677d3e13185f49814d22ELSA-2021-9212
kernel-doc-2.6.32-754.24.2.el6.noarch.rpm922e4a21b662616c8bb57bc6b0293beeELSA-2021-9212
kernel-firmware-2.6.32-754.24.2.el6.noarch.rpmd449945ae1877dbc57dc7f888c2495a5ELSA-2021-9212
kernel-headers-2.6.32-754.24.2.el6.i686.rpma82c3d80985764b611e6b7041b9d9989ELSA-2021-9212
perf-2.6.32-754.24.2.el6.i686.rpm99e06f1f54dfefabe4e017ecabe4d53dELSA-2021-9212
python-perf-2.6.32-754.24.2.el6.i686.rpm5fda4d78683a4cfa079bc498d4f11665ELSA-2021-9212
Oracle Linux 6 (x86_64) kernel-2.6.32-754.24.2.el6.src.rpm2bf93f82f967043824b77067047b7d22ELSA-2021-9212
kernel-2.6.32-754.24.2.el6.x86_64.rpm4dc89671b62756627f1a0d36d5dc90dbELSA-2021-9212
kernel-abi-whitelists-2.6.32-754.24.2.el6.noarch.rpm7fd965b66123cbf7b6219f98de14c759ELSA-2021-9212
kernel-debug-2.6.32-754.24.2.el6.x86_64.rpm320eefee65f4c7d710c67bdbec3c2f15ELSA-2021-9212
kernel-debug-devel-2.6.32-754.24.2.el6.i686.rpm8af6b72542b0c589dee6d42ca92a8d7dELSA-2021-9212
kernel-debug-devel-2.6.32-754.24.2.el6.x86_64.rpmd3fd0d4b3a2072408525d52210a27562ELSA-2021-9212
kernel-devel-2.6.32-754.24.2.el6.x86_64.rpm4aada4d86188a011b911fe0db74df276ELSA-2021-9212
kernel-doc-2.6.32-754.24.2.el6.noarch.rpm922e4a21b662616c8bb57bc6b0293beeELSA-2021-9212
kernel-firmware-2.6.32-754.24.2.el6.noarch.rpmd449945ae1877dbc57dc7f888c2495a5ELSA-2021-9212
kernel-headers-2.6.32-754.24.2.el6.x86_64.rpm8fb01776b665b7617db7418b70c8c1c4ELSA-2021-9212
perf-2.6.32-754.24.2.el6.x86_64.rpm2a4afd7bd7db8e8b775fc521cebe087dELSA-2021-9212
python-perf-2.6.32-754.24.2.el6.x86_64.rpm922e5257834f1d908b295442cb39e426ELSA-2021-9212



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete