OVMSA-2020-0008 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2020-03-06 |
Description
[4.1.12-124.37.1]
- Revert 'printk: Default console logging level should be set to 4' (Cesar Roque) [Orabug: 30931820]
- rds: If one path needs re-connection, check all and re-connect (Rao Shoaib) [Orabug: 30870743]
- xfs: Fix deadlock between AGI and AGF with RENAME_WHITEOUT (kaixuxia) [Orabug: 30902190]
[4.1.12-124.36.4]
- KVM: nVMX: Check IO instruction VM-exit conditions (Oliver Upton) [Orabug: 30944739] {CVE-2020-2732}
- KVM: nVMX: Refactor IO bitmap checks into helper function (Oliver Upton) [Orabug: 30944739] {CVE-2020-2732}
- KVM: nVMX: Don't emulate instructions in guest mode (Paolo Bonzini) [Orabug: 30944739] {CVE-2020-2732}
[4.1.12-124.36.3]
- Fix KABI error by keeping the struct field being removed by the below patch (Ritika Srivastava) [Orabug: 30902926]
- Revert 'PCI: Check pref compatible bit for mem64 resource of PCIe device' (Ritika Srivastava) [Orabug: 30902926]
[4.1.12-124.36.2]
- rds: Use bitmap to designate dropped connections (Hakon Bugge) [Orabug: 30868399]
- rds: Avoid flushing MRs in rds_rdma_drop_keys (aru kolappan) [Orabug: 29797476]
- CIFS: fix POSIX lock leak and invalid ptr deref (Aurelien Aptel) [Orabug: 30399972]
- mwifiex: Fix heap overflow in mmwifiex_process_tdls_action_frame() (qize wang) [Orabug: 30819439] {CVE-2019-14901}
- media: b2c2-flexcop-usb: add sanity checking (Oliver Neukum) [Orabug: 30864533] {CVE-2019-15291}
- rds: prevent use-after-free of rds conn in rds_send_drop_to() (Sharath Srinivasan) [Orabug: 30865080]
- KVM: vmx: use MSR_IA32_TSX_CTRL to hard-disable TSX on guest that lack it (Paolo Bonzini) [Orabug: 30867886]
- KVM: vmx: implement MSR_IA32_TSX_CTRL disable RTM functionality (Paolo Bonzini) [Orabug: 30867886]
- KVM: x86: implement MSR_IA32_TSX_CTRL effect on CPUID (Paolo Bonzini) [Orabug: 30867886]
- KVM: x86: do not modify masked bits of shared MSRs (Paolo Bonzini) [Orabug: 30867886]
- KVM: x86: fix presentation of TSX feature in ARCH_CAPABILITIES (Paolo Bonzini) [Orabug: 30867886]
- slub: do not sanity check if SLAB_DEBUG_FREE is not set (Dongli Zhang) [Orabug: 30903145]
- slub: extend slub debug to handle multiple slabs (Aaron Tomlin) [Orabug: 30903145]
- Fix kmalloc slab creation sequence (Christoph Lameter) [Orabug: 30903145]
- slab: correct size_index table before replacing the bootstrap kmem_cache_node (Daniel Sanders) [Orabug: 30903145]
- mm/slab_common: support the slub_debug boot option on specific object size (Gavin Guo) [Orabug: 30903145]
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle VM 3.4 (x86_64) | kernel-uek-4.1.12-124.37.1.el6uek.src.rpm | 35e929b24c76bb349135db315ea2bceb | OVMSA-2021-0016 |
| kernel-uek-4.1.12-124.37.1.el6uek.x86_64.rpm | 81bfb6decd4c125338a3611df9c28723 | OVMSA-2021-0016 |
| kernel-uek-firmware-4.1.12-124.37.1.el6uek.noarch.rpm | 5fcc5a1f4b442b941cff08d5033d8240 | OVMSA-2021-0016 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
