OVMSA-2020-0004

OVMSA-2020-0004 - Unbreakable Enterprise kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2020-02-13

Description


[4.1.12-124.36.1]
- iscsi-target: graceful disconnect on invalid mapping to iovec (Imran Haider) [Orabug: 30459537]
- x86/microcode: Issue update message only once (Borislav Petkov) [Orabug: 30528904]
- x86/microcode/intel: Issue the revision updated message only on the BSP (Borislav Petkov) [Orabug: 30528904]
- KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332) (Paolo Bonzini) [Orabug: 30658695] {CVE-2019-19332}
- rtlwifi: Fix potential overflow on P2P code (Laura Abbott) [Orabug: 30807748] {CVE-2019-17666}

[4.1.12-124.35.5]
- x86: microcode: propagate return value to siblings (Mihai Carabas) [Orabug: 30557086]
- x86/bugs: TSX not disabled at late loading (Mihai Carabas) [Orabug: 30557086]
- mlx5: lock mlx5_core to prevent module unload (Brian Maly) [Orabug: 30566775]
- rds: RDS/TCP does not initiate a connection (Ka-Cheong Poon) [Orabug: 30576433]
- x86: bugs: replace static_ with boot_ for CPU bugs mitigations (Mihai Carabas) [Orabug: 30649400]

[4.1.12-124.35.4]
- IB/mlx4: Fix use after free in RDMA CM disconnect code path (Manjunath Patil)
- IB/mlx4: Fix leak in id_map_find_del (Hakon Bugge) [Orabug: 30800573]
- Revert 'IB/mlx4: Fix leak in id_map_find_del' (Manjunath Patil)

[4.1.12-124.35.3]
- mm/slub: don't wait for high-order page allocation (Mridula Shastry) [Orabug: 30651572]
- scsi: lpfc: Handle new link fault code returned by adapter firmware. (James Smart) [Orabug: 30708960]
- IB/mlx4: Fix leak in id_map_find_del (Hakon Bugge) [Orabug: 30778457]


Related CVEs


CVE-2019-19332
CVE-2019-17666

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle VM 3.4 (x86_64) kernel-uek-4.1.12-124.36.1.el6uek.src.rpmed7ceb48e89cd1bd9d67925cbbdf1a7fOVMSA-2021-0016
kernel-uek-4.1.12-124.36.1.el6uek.x86_64.rpm7aeb64a0ce289ff5aeb6d10d583a756dOVMSA-2021-0016
kernel-uek-firmware-4.1.12-124.36.1.el6uek.noarch.rpm415d0547a189bc983f96eeeb43556aa8OVMSA-2021-0016



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete