ELSA-2019-4670

ULN >
Oracle Linux Errata repository >
ELSA-2019-4670

ELSA-2019-4670 - Unbreakable Enterprise kernel security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2019-06-04

Description

[4.1.12-124.28.1]
- hugetlbfs: don't retry when pool page allocations start to fail (Mike Kravetz) [Orabug: 29324267]
- x86/speculation: RSB stuffing with retpoline on Skylake+ cpus (William Roche) [Orabug: 29660924]
- x86/speculation: reformatting RSB overwrite macro (William Roche) [Orabug: 29660924]
- x86/speculation: Dynamic enable and disable of RSB stuffing with IBRS&!SMEP (William Roche) [Orabug: 29660924]
- x86/speculation: STUFF_RSB dynamic enable (William Roche) [Orabug: 29660924]
- int3 handler better address space detection on interrupts (William Roche) [Orabug: 29660924]
- repairing out-of-tree build functionality (Mark Nicholson) [Orabug: 29755100]
- ext4: fix false negatives *and* false positives in ext4_check_descriptors() (Shuning Zhang) [Orabug: 29797007]

[4.1.12-124.27.3]
- ocfs2: fix ocfs2 read inode data panic in ocfs2_iget (Shuning Zhang) [Orabug: 29233739]
- Bluetooth: Verify that l2cap_get_conf_opt provides large enough buffer (Marcel Holtmann) [Orabug: 29526426] {CVE-2019-3459}
- Bluetooth: Check L2CAP option sizes returned from l2cap_get_conf_opt (Marcel Holtmann) [Orabug: 29526426] {CVE-2019-3459}
- HID: debug: fix the ring buffer implementation (Vladis Dronov) [Orabug: 29629481] {CVE-2019-3819} {CVE-2019-3819}
- scsi: target: iscsi: Use hex2bin instead of a re-implementation (Vincent Pelletier) [Orabug: 29778875] {CVE-2018-14633} {CVE-2018-14633}
- scsi: libsas: fix a race condition when smp task timeout (Jason Yan) [Orabug: 29783225] {CVE-2018-20836}
- scsi: megaraid_sas: return error when create DMA pool failed (Jason Yan) [Orabug: 29783254] {CVE-2019-11810}
- Bluetooth: hidp: fix buffer overflow (Young Xiao) [Orabug: 29786786] {CVE-2011-1079} {CVE-2019-11884}
- x86/speculation/mds: Add 'mitigations=' support for MDS (Kanth Ghatraju) [Orabug: 29791046]
- net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock(). (Mao Wenan) [Orabug: 29802785] {CVE-2019-11815}

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (x86_64)	kernel-uek-4.1.12-124.28.1.el6uek.src.rpm	ff3ccd668a04c90b304a4ca6944a9fcda455992abde7035c72e9be6c69c7c23c	ELSA-2025-20007	ol6_x86_64_UEKR4_archive
	kernel-uek-4.1.12-124.28.1.el6uek.x86_64.rpm	eaf7509791235aa95cd2ab2d40b4acc88fb8c795b0c440a0d48d85d929fd843e	ELSA-2025-20007	ol6_x86_64_UEKR4_archive
	kernel-uek-debug-4.1.12-124.28.1.el6uek.x86_64.rpm	d0bcd98b427c27b599236fced7d22763ebf3c6d2e7aada52f809e2896df3e325	ELSA-2025-20007	ol6_x86_64_UEKR4_archive
	kernel-uek-debug-devel-4.1.12-124.28.1.el6uek.x86_64.rpm	1eb978c05f400f3d1c1cc21919fe145b6795fff641c98fa6f4d5cc0ce5f4dc40	ELSA-2025-20007	ol6_x86_64_UEKR4_archive
	kernel-uek-devel-4.1.12-124.28.1.el6uek.x86_64.rpm	478d6170f2ec0829c4abaa0e8cfd63042ce30172b6430da8dc279a416836d638	ELSA-2025-20007	ol6_x86_64_UEKR4_archive
	kernel-uek-doc-4.1.12-124.28.1.el6uek.noarch.rpm	d9b14d5721d3af7188415705529022df72e9b3ccb01a6da3a3a80740a6b90d65	ELSA-2025-20007	ol6_x86_64_UEKR4_archive
	kernel-uek-firmware-4.1.12-124.28.1.el6uek.noarch.rpm	2f4464b4db55673ae6bd12d3a62725126729cd9a0b7a018a274e7a15a2c676cb	ELSA-2025-20007	ol6_x86_64_UEKR4_archive

Oracle Linux 7 (x86_64)	kernel-uek-4.1.12-124.28.1.el7uek.src.rpm	8de6182ba58e2831b6781541893a2d9f2aba72c6e8a445bb8cdb2e27d967c94b	ELSA-2025-20190	ol7_x86_64_UEKR4_archive
	kernel-uek-4.1.12-124.28.1.el7uek.x86_64.rpm	5756553182c1a3d43debe144e0f5548b4809dc59e30654272d1dfd1e0c1d7377	ELSA-2025-20190	ol7_x86_64_UEKR4_archive
	kernel-uek-debug-4.1.12-124.28.1.el7uek.x86_64.rpm	a0384376ef9ffda3e87a58adcf30b4ac5e7145915626b26ab9b1d915855083a8	ELSA-2025-20190	ol7_x86_64_UEKR4_archive
	kernel-uek-debug-devel-4.1.12-124.28.1.el7uek.x86_64.rpm	7a7800bd2f57731b97c37b73ada9a2f06b4a26d6eeaab4a523b964ab7ef666f3	ELSA-2025-20190	ol7_x86_64_UEKR4_archive
	kernel-uek-devel-4.1.12-124.28.1.el7uek.x86_64.rpm	8c6c1cf15c31958f9d11a340776beb5238142619b818f5e7b1f4cd084ae4cf49	ELSA-2025-20190	ol7_x86_64_UEKR4_archive
	kernel-uek-doc-4.1.12-124.28.1.el7uek.noarch.rpm	e6ce82206c84c7d1cf6d4c8d3e70ec5fc3b435634ea3bf5a7dda8a0d548ddddc	ELSA-2025-20190	ol7_x86_64_UEKR4_archive
	kernel-uek-firmware-4.1.12-124.28.1.el7uek.noarch.rpm	e09dba263d013340209f0d006f2033a1c04f4dcc7a6a813123440f4000d799f9	ELSA-2025-20007	ol7_x86_64_UEKR4_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691