ELSA-2022-9481

ULN >
Oracle Linux Errata repository >
ELSA-2022-9481

ELSA-2022-9481 - Unbreakable Enterprise kernel security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2022-06-14

Description

[5.4.17-2136.308.9]
- x86/speculation/mmio: Fix late microcode loading (Patrick Colp) [Orabug: 34276099]

[5.4.17-2136.308.8]
- Add debugfs for controlling MMIO state data (Kanth Ghatraju) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	kernel-uek-5.4.17-2136.308.9.el7uek.src.rpm	ed400117f5679c1cc87179cf1099cac2	-
	kernel-uek-5.4.17-2136.308.9.el7uek.aarch64.rpm	2b860ab3feb168bebd4d2c22fc76240f	-
	kernel-uek-debug-5.4.17-2136.308.9.el7uek.aarch64.rpm	2db2b01dbc0c6ad6cd025b1c62ed514b	-
	kernel-uek-debug-devel-5.4.17-2136.308.9.el7uek.aarch64.rpm	9629738c0b630117003ac5e54617094b	-
	kernel-uek-devel-5.4.17-2136.308.9.el7uek.aarch64.rpm	72a98e41f9324f6a883b6d28cc1b261f	-
	kernel-uek-doc-5.4.17-2136.308.9.el7uek.noarch.rpm	b750a23baf47ffc58c7f8563e28b1915	-
	kernel-uek-tools-5.4.17-2136.308.9.el7uek.aarch64.rpm	48f02e0183bc38dfa43d96565bbaf439	-
	kernel-uek-tools-libs-5.4.17-2136.308.9.el7uek.aarch64.rpm	e6c08e857d8717fc5bd28e9a08b8fb9c	-
	perf-5.4.17-2136.308.9.el7uek.aarch64.rpm	7db73f40dd2f30202c9dc730658065df	-
	python-perf-5.4.17-2136.308.9.el7uek.aarch64.rpm	6f93cc3531977785db9f306a9f8d35fa	-

Oracle Linux 7 (x86_64)	kernel-uek-5.4.17-2136.308.9.el7uek.src.rpm	ed400117f5679c1cc87179cf1099cac2	-
	kernel-uek-5.4.17-2136.308.9.el7uek.x86_64.rpm	00aa6ce2e119df93e53c245213094f04	-
	kernel-uek-debug-5.4.17-2136.308.9.el7uek.x86_64.rpm	8548af6d7642dfde2db06a5102c88cc6	-
	kernel-uek-debug-devel-5.4.17-2136.308.9.el7uek.x86_64.rpm	0580d19ab255efda61bf3de1ec02d70f	-
	kernel-uek-devel-5.4.17-2136.308.9.el7uek.x86_64.rpm	e71b298ce1d5dcbf1ac21001722e5ddb	-
	kernel-uek-doc-5.4.17-2136.308.9.el7uek.noarch.rpm	b750a23baf47ffc58c7f8563e28b1915	-
	kernel-uek-tools-5.4.17-2136.308.9.el7uek.x86_64.rpm	9dacf185a3ca55d05e7735c448203958	-

Oracle Linux 8 (aarch64)	kernel-uek-5.4.17-2136.308.9.el8uek.src.rpm	e1ba54d39fecefb16ca2264d2c378f07	-
	kernel-uek-5.4.17-2136.308.9.el8uek.aarch64.rpm	1df6b22c68c97dc316385d5929542672	-
	kernel-uek-debug-5.4.17-2136.308.9.el8uek.aarch64.rpm	b525e06f40136078dad52d51fc15f8bc	-
	kernel-uek-debug-devel-5.4.17-2136.308.9.el8uek.aarch64.rpm	f691296e13249b08faaa61febd1aaa50	-
	kernel-uek-devel-5.4.17-2136.308.9.el8uek.aarch64.rpm	e26f6398ec997ad5ee6fbd6ec017b90f	-
	kernel-uek-doc-5.4.17-2136.308.9.el8uek.noarch.rpm	f0a45956b12c05cec77861f184b0df1b	-

Oracle Linux 8 (x86_64)	kernel-uek-5.4.17-2136.308.9.el8uek.src.rpm	e1ba54d39fecefb16ca2264d2c378f07	-
	kernel-uek-5.4.17-2136.308.9.el8uek.x86_64.rpm	af229762da4582b9a1ebbb65bf6f7548	-
	kernel-uek-debug-5.4.17-2136.308.9.el8uek.x86_64.rpm	437cc06fc0f1caed0e6e693bc6a2ca76	-
	kernel-uek-debug-devel-5.4.17-2136.308.9.el8uek.x86_64.rpm	0e9250f46c2b8382e7335bdd63e38d7a	-
	kernel-uek-devel-5.4.17-2136.308.9.el8uek.x86_64.rpm	bcb58802a01ff59dc030b9bbcf5c7165	-
	kernel-uek-doc-5.4.17-2136.308.9.el8uek.noarch.rpm	f0a45956b12c05cec77861f184b0df1b	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691