[El-errata] ELSA-2018-4110 Important: Oracle Linux 5 Extended Lifecycle Support (ELS) Unbreakable Enterprise kernel security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Wed May 16 07:28:04 PDT 2018


Oracle Linux Security Advisory ELSA-2018-4110

http://linux.oracle.com/errata/ELSA-2018-4110.html

The following updated rpms for Oracle Linux 5 Extended Lifecycle Support 
(ELS) have been uploaded to the Unbreakable Linux Network:

i386:
kernel-uek-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-debug-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-debug-devel-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-devel-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-doc-2.6.39-400.299.1.el5uek.noarch.rpm
kernel-uek-firmware-2.6.39-400.299.1.el5uek.noarch.rpm

x86_64:
kernel-uek-firmware-2.6.39-400.299.1.el5uek.noarch.rpm
kernel-uek-doc-2.6.39-400.299.1.el5uek.noarch.rpm
kernel-uek-2.6.39-400.299.1.el5uek.x86_64.rpm
kernel-uek-devel-2.6.39-400.299.1.el5uek.x86_64.rpm
kernel-uek-debug-devel-2.6.39-400.299.1.el5uek.x86_64.rpm
kernel-uek-debug-2.6.39-400.299.1.el5uek.x86_64.rpm




Description of changes:

[2.6.39-400.299.1.el5uek]
- ext4/jbd2: don't wait (forever) for stale tid caused by wraparound 
(Theodore Ts'o)  [Orabug: 26424268]
- jbd2: don't wake kjournald unnecessarily (Eric Sandeen)  [Orabug: 
26424268]
- ext4: fix data corruption in inodes with journalled data (Jan Kara) 
[Orabug: 26424268]
- media: imon: Fix null-ptr-deref in imon_probe (Arvind Yadav)  [Orabug: 
27208383]  {CVE-2017-16537}
- Input: gtco - fix potential out-of-bound access (Dmitry Torokhov) 
[Orabug: 27215095]  {CVE-2017-16643}
- RDS: IB: Fix null pointer issue (Guanglei Li)  [Orabug: 27241654]
- usb: usbtest: fix NULL pointer dereference (Alan Stern)  [Orabug: 
27602321]  {CVE-2017-16532}
- vfs,proc: guarantee unique inodes in /proc (Linus Torvalds)  [Orabug: 
27637293]
- vfs: dont chain pipe/anon/socket on superblock s_inodes list (Eric 
Dumazet)  [Orabug: 27637293]
- fuse: fix deadlock caused by wrong locking order (Junxiao Bi) 
[Orabug: 27719848]
- jbd: don't wait (forever) for stale tid caused by wraparound (Jan 
Kara)  [Orabug: 27734012]
- netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets 
(Florian Westphal)  [Orabug: 27774010]  {CVE-2018-1068}
- x86/spec: set_ibrs[ibpb]_disabled() should disable 
ibrs[ibpb]_admin_disabled (Krish Sadhukhan)  [Orabug: 27788624]
- x86/spec: Fix wrong output from sysfs (Krish Sadhukhan)  [Orabug: 
27795350]
- x86/spec: Fix spectre_v1 bug and mitigation indicators (John Haxby) 
[Orabug: 27811437]
- ext4: add validity checks for bitmap block numbers (Theodore Ts'o) 
[Orabug: 27854370]  {CVE-2018-1093} {CVE-2018-1093}
- x86/microcode: probe CPU features on microcode update (Ankur Arora) 
[Orabug: 27878228]
- x86/microcode: microcode_write() should not reference boot_cpu_data 
(Ankur Arora)  [Orabug: 27878228]
- x86/cpufeatures: use cpu_data in scan_spec_ctrl_features and 
rescan_spec_ctrl_features (Ankur Arora)  [Orabug: 27878228]
- USB: core: prevent malicious bNumInterfaces overflow (Alan Stern) 
[Orabug: 27898064]  {CVE-2017-17558}
- retpoline: microcode incorrectly reported as broken during early boot 
(Chuck Anderson)  [Orabug: 27915293]
- x86/spec: scan_spec_ctrl_feature should be executed only for cpu_index 
0 (Krish Sadhukhan)  [Orabug: 27915355]
- RDS: Heap OOB write in rds_message_alloc_sgs() (Mohamed Ghannam) 
[Orabug: 27934081]  {CVE-2018-5332}
- xfs: set format back to extents if xfs_bmap_extents_to_btree (Eric 
Sandeen)  [Orabug: 27989490]  {CVE-2018-10323}
- net/rds: Fix endless RNR situation (Håkon Bugge)  [Orabug: 27645402]
- x86/entry/64: Dont use IST entry for #BP stack (Andy Lutomirski) 
{CVE-2018-8897}
- perf/hwbp: Simplify the perf-hwbp code, fix documentation (Linus 
Torvalds)  [Orabug: 27947612]  {CVE-2018-100199}
- xen-netfront: fix rx stall when req_prod_pvt goes back to more than 
zero again (Dongli Zhang)  [Orabug: 25053376]
- x86/IBRS: Remove support for IBRS_ENABLED_USER mode (Boris Ostrovsky) 
[Orabug: 27430615]
- x86/microcode/intel: Disable late loading on model 79 (Borislav 
Petkov)  [Orabug: 27343579]
- ALSA: usb-audio: Kill stray URB at exiting (Takashi Iwai)  [Orabug: 
27148283]  {CVE-2017-16527}
- uwb: properly check kthread_run return value (Andrey Konovalov) 
[Orabug: 27206900]  {CVE-2017-16526}
- HID: usbhid: fix out-of-bounds bug (Jaejoong Kim)  [Orabug: 27207935] 
{CVE-2017-16533}
- cx231xx-cards: fix NULL-deref on missing association descriptor (Johan 
Hovold)  [Orabug: 27208080]  {CVE-2017-16536}
- net: cdc_ether: fix divide by 0 on bad descriptors (Bjørn Mork) 
[Orabug: 27215206]  {CVE-2017-16649}
- Bluetooth: bnep: bnep_add_connection() should verify that it's dealing 
with l2cap socket (Al Viro)  [Orabug: 27344787]  {CVE-2017-15868}
- Bluetooth: hidp: verify l2cap sockets (David Herrmann)  [Orabug: 
27344787]  {CVE-2017-15868}
- ALSA: pcm: prevent UAF in snd_pcm_info (Robb Glasser)  [Orabug: 
27344840]  {CVE-2017-0861} {CVE-2017-0861}
- Addendum: x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early 
Spectre v2 microcodes (David Woodhouse)  [Orabug: 27516441]
- x86/cpufeature: Add X86_FEATURE_IA32_ARCH_CAPS and 
X86_FEATURE_IBRS_ATT (David Woodhouse)  [Orabug: 27649498]  {CVE-2017-5715}
- x86/cpufeatures: Clean up Spectre v2 related CPUID flags (David 
Woodhouse)  [Orabug: 27649510]  {CVE-2017-5715}
- x86/spectre: Now that we expose 'stbibp' make sure it is correct. 
(Konrad Rzeszutek Wilk)  [Orabug: 27649631]  {CVE-2017-5715}
- x86/speculation: Add basic IBPB (Indirect Branch Prediction Barrier) 
support (KarimAllah Ahmed)  [Orabug: 27649640]  {CVE-2017-5715}
- x86: Add STIBP feature enumeration (David Woodhouse)  [Orabug: 
27649693]  {CVE-2017-5715}
- x86/cpu/AMD: Add speculative control support for AMD (Tom Lendacky) 
[Orabug: 27649706]  {CVE-2017-5715}
- x86/spectre_v2: Don't spam the console with these: (Konrad Rzeszutek 
Wilk)  [Orabug: 27649723]  {CVE-2017-5715}
- x86/spectre_v2: Remove 0xc2 from spectre_bad_microcodes (Darren Kenny) 
  [Orabug: 27600848]
- Revert "x86/spec_ctrl: Add 'nolfence' knob to disable fallback for 
spectre_v2 mitigation" (Konrad Rzeszutek Wilk)  [Orabug: 27601773]
- x86/syscall: run syscall exit code with extra registers cleared 
(Alexandre Chartre)  [Orabug: 27501176]
- x86/syscall: run syscall-specific code with extra registers cleared 
(Alexandre Chartre)  [Orabug: 27501176]
- x86/syscall: run syscall entry code with extra registers cleared 
(Alexandre Chartre)  [Orabug: 27501176]
- x86/spectre: Drop the warning about ibrs being obsolete (Konrad 
Rzeszutek Wilk)  [Orabug: 27518974]
- x86: Include linux/device.h in bugs_64.c (Boris Ostrovsky)  [Orabug: 
27519044]
- x86: fix mitigation details of UEK2 spectre v1 (Konrad Rzeszutek Wilk) 
  [Orabug: 27509909]
- x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early Spectre v2 
microcodes (David Woodhouse)  [Orabug: 27516441]  {CVE-2017-5715}
- x86, intel: Output microcode revision in /proc/cpuinfo (Andi Kleen) 
[Orabug: 27516441]
- x86: intel-family.h: Add GEMINI_LAKE SOC (Len Brown)  [Orabug: 27516441]
- x86/cpu/intel: Introduce macros for Intel family numbers (Dave Hansen) 
  [Orabug: 27516441]
- x86/mitigation/spectre_v2: Add reporting of 'lfence' (Konrad Rzeszutek 
Wilk)  [Orabug: 27525958]
- x86/spec: Add 'lfence_enabled' in sysfs (Konrad Rzeszutek Wilk) 
[Orabug: 27525954]
- x86/spec_ctrl: Add 'nolfence' knob to disable fallback for spectre_v2 
mitigation (Konrad Rzeszutek Wilk)  [Orabug: 27525923]
- x86/spec: Also print IBRS if IBPB is disabled (Konrad Rzeszutek Wilk) 
[Orabug: 27519083]
- x86: Use Indirect Branch Prediction Barrier in context switch (Tim 
Chen)  [Orabug: 27516378]
- ext4: limit group search loop for non-extent files (Lachlan McIlroy) 
[Orabug: 17488415]
- ext4: fixup 64-bit divides in 3.0-stable backport of upstream fix 
(Todd Poynor)  [Orabug: 17488415]
- ext4: use atomic64_t for the per-flexbg free_clusters count (Theodore 
Ts'o)  [Orabug: 17488415]
- ext4: init pagevec in ext4_da_block_invalidatepages (Eric Sandeen) 
[Orabug: 17488415]
- ext4: do not try to write superblock on ro remount w/o journal 
(Michael Tokarev)  [Orabug: 17488415]
- xen-netback: fix grant_copy_op array size (Niranjan Patil)  [Orabug: 
25653941]
- xen-netback: explicitly check max_slots_needed against meta_prod 
counter (Niranjan Patil)  [Orabug: 25653941]
- xen-netback: Fix handling of skbs requiring too many slots (Zoltan 
Kiss)  [Orabug: 25653941]
- xen-netback: worse-case estimate in xenvif_rx_action is 
underestimating (Paul Durrant)  [Orabug: 25653941]
- xen-netback: Add worse-case estimates of max_slots_needed in 
netbk_rx_action (Niranjan Patil)  [Orabug: 25653941]
- KEYS: Remove key_type::match in favour of overriding default by 
match_preparse (Tim Tianyang Chen)  [Orabug: 25757946]  {CVE-2017-6951}
- xen/mmu: Call xen_cleanhighmap() with 4MB aligned for page tables 
mapping (Zhenzhong Duan)  [Orabug: 26737475]
- tcp: initialize rcv_mss to TCP_MIN_MSS instead of 0 (Wei Wang) 
[Orabug: 26813391]  {CVE-2017-14106}
- rxrpc: Fix several cases where a padded len isn't checked in ticket 
decode (David Howells)  [Orabug: 26880520]  {CVE-2017-7482} {CVE-2017-7482}
- ocfs2: fstrim: Fix start offset of first cluster group during fstrim 
(Ashish Samant)  [Orabug: 27099836]
- Check validity of cl_rpcclient in nfs_server_list_show (Malahal 
Naineni)  [Orabug: 27112186]
- USB: serial: console: fix use-after-free after failed setup (Johan 
Hovold)  [Orabug: 27206839]  {CVE-2017-16525}
- ALSA: usb-audio: Check out-of-bounds access by corrupted buffer 
descriptor (Takashi Iwai)  [Orabug: 27206934]  {CVE-2017-16529}
- USB: fix out-of-bounds in usb_set_configuration (Greg Kroah-Hartman) 
[Orabug: 27207243]  {CVE-2017-16531}
- dccp: CVE-2017-8824: use-after-free in DCCP code (Mohamed Ghannam) 
[Orabug: 27290308]  {CVE-2017-8824}
- x86: Use PRED_CMD MSR when ibpb is enabled (Konrad Rzeszutek Wilk) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/spec: Don't print the Missing arguments for option spectre_v2 
(Konrad Rzeszutek Wilk)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86: Move ENABLE_IBRS in the interrupt macro (Konrad Rzeszutek Wilk) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- Add set_ibrs_disabled and set_ibpb_disabled (Konrad Rzeszutek Wilk) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/boot: Add early cmdline parsing for options with arguments (Tom 
Lendacky)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86, boot: Carve out early cmdline parsing function (Borislav Petkov) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86: Fix kABI build breakage (Konrad Rzeszutek Wilk)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86: Add command-line options 'spectre_v2' and 'nospectre_v2' (Kanth 
Ghatraju)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/mm: Set IBPB upon context switch (Brian Maly)  [Orabug: 27369777] 
{CVE-2017-5715} {CVE-2017-5753}
- x86: Display correct settings for the SPECTRE_V2 bug (Kanth Ghatraju) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- Set CONFIG_GENERIC_CPU_VULNERABILITIES flag (Kanth Ghatraju)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/cpu: Implement CPU vulnerabilites sysfs functions (Thomas 
Gleixner)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- sysfs/cpu: Fix typos in vulnerability documentation (David Woodhouse) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- sysfs/cpu: Add vulnerability folder (Thomas Gleixner)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86, cpu: Expand cpufeature facility to include cpu bugs (Borislav 
Petkov)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (David Woodhouse)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/cpufeatures: Add X86_BUG_CPU_MELTDOWN (Kanth Ghatraju)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/spec: STUFF_RSB _before_ ENABLE_IBRS (Konrad Rzeszutek Wilk) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86: Move STUFF_RSB in to the idt macro (Konrad Rzeszutek Wilk) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/IBRS/IBPB: Set sysctl_ibrs/ibpb_enabled properly (Boris Ostrovsky) 
  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/IBRS: Make sure we restore MSR_IA32_SPEC_CTRL to a valid value 
(Boris Ostrovsky)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Add missing 'lfence' when IBRS is not supported (Konrad 
Rzeszutek Wilk)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/ia32: Move STUFF_RSB And ENABLE_IBRS (Konrad Rzeszutek Wilk) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform (Tim 
Chen)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86: Use IBRS for firmware update path (David Woodhouse)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Disable if running as Xen PV guest (Konrad Rzeszutek 
Wilk)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/microcode: Recheck IBRS features on microcode reload (Tim Chen) 
[Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/idle: Disable IBRS entering idle and enable it on wakeup (Tim 
Chen)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature 
(Tim Chen)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/enter: Use IBRS on syscall and interrupts (Tim Chen)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/enter: MACROS to set/clear IBRS and set IBPB (Tim Chen)  [Orabug: 
27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86/feature: Detect the x86 IBRS feature to control Speculation (Tim 
Chen)  [Orabug: 27369777]  {CVE-2017-5715} {CVE-2017-5753}
- x86: fix build breakage (Brian Maly)  [Orabug: 27346425]  {CVE-2017-5753}
- kaiser: rename X86_FEATURE_KAISER to X86_FEATURE_PTI to match upstream 
(Mike Kravetz)   {CVE-2017-5754}
- x86/kaiser: Check boottime cmdline params (Mike Kravetz)  [Orabug: 
27333761]  {CVE-2017-5754}
- x86/kaiser: Rename and simplify X86_FEATURE_KAISER handling (Borislav 
Petkov)  [Orabug: 27333761]  {CVE-2017-5754}
- KPTI: Report when enabled (Mike Kravetz)  [Orabug: 27333761] 
{CVE-2017-5754}
- PTI: unbreak EFI old_memmap (Jiri Kosina)  [Orabug: 27333761] [Orabug: 
27333760]  {CVE-2017-5754}
- kaiser: Set _PAGE_NX only if supported (Guenter Roeck)  [Orabug: 
27333761] [Orabug: 27333760]  {CVE-2017-5754}
- KPTI: Rename to PAGE_TABLE_ISOLATION (Kees Cook)  [Orabug: 27333761] 
{CVE-2017-5754}
- kaiser: kaiser_flush_tlb_on_return_to_user() check PCID (Hugh Dickins) 
  [Orabug: 27333761]  {CVE-2017-5754}
- kaiser: asm/tlbflush.h handle noPGE at lower level (Hugh Dickins) 
[Orabug: 27333761]  {CVE-2017-5754}
- kaiser: use ALTERNATIVE instead of x86_cr3_pcid_noflush (Hugh Dickins) 
  [Orabug: 27333761]  {CVE-2017-5754}
- x86/alternatives: add asm ALTERNATIVE macro (Mike Kravetz)  [Orabug: 
27333761]  {CVE-2017-5754}
- x86/kaiser: Reenable PARAVIRT, dynamically disable KAISER if PARAVIRT 
(Borislav Petkov)  [Orabug: 27333761]  {CVE-2017-5754}
- kaiser: add "nokaiser" boot option, using ALTERNATIVE (Hugh Dickins) 
[Orabug: 27333761]  {CVE-2017-5754}
- x86-32: Fix boot with CONFIG_X86_INVD_BUG (Andy Lutomirski)  [Orabug: 
27333761]  {CVE-2017-5754}
- kaiser: alloc_ldt_struct() use get_zeroed_page() (Hugh Dickins) 
[Orabug: 27333761]  {CVE-2017-5754}
- kaiser: user_map __kprobes_text too (Hugh Dickins)  [Orabug: 27333761] 
  {CVE-2017-5754}
- x86/mm/kaiser: re-enable vsyscalls (Andrea Arcangeli)  [Orabug: 
27333761]  {CVE-2017-5754}
- KAISER: Kernel Address Isolation (Hugh Dickins)  [Orabug: 27333761] 
{CVE-2017-5754}
- x86/mm: fix bad backport to disable PCID on Xen (Borislav Petkov) 
[Orabug: 27333761]  {CVE-2017-5754}
- x86/mm/64: Fix reboot interaction with CR4.PCIDE (Andy Lutomirski) 
[Orabug: 27333761]  {CVE-2017-5754}
- x86/mm: Enable CR4.PCIDE on supported systems (Andy Lutomirski) 
[Orabug: 27333761]  {CVE-2017-5754}
- x86/mm: Add the 'nopcid' boot option to turn off PCID (Andy 
Lutomirski)  [Orabug: 27333761]  {CVE-2017-5754}
- x86/mm: Disable PCID on 32-bit kernels (Andy Lutomirski)  [Orabug: 
27333761]  {CVE-2017-5754}
- x86/mm: Remove the UP asm/tlbflush.h code, always use the (formerly) 
SMP code (Andy Lutomirski)  [Orabug: 27333761]  {CVE-2017-5754}
- sched/core: Idle_task_exit() shouldn't use switch_mm_irqs_off() (Andy 
Lutomirski)  [Orabug: 27333761]  {CVE-2017-5754}
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Andy Lutomirski) 
[Orabug: 27333761]  {CVE-2017-5754}
- x86/mm, sched/core: Uninline switch_mm() (Andy Lutomirski)  [Orabug: 
27333761]  {CVE-2017-5754}
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Andy Lutomirski) 
[Orabug: 27333761]  {CVE-2017-5754}
- sched/core: Add switch_mm_irqs_off() and use it in the scheduler (Andy 
Lutomirski)  [Orabug: 27333761]  {CVE-2017-5754}
- mm/mmu_context, sched/core: Fix mmu_context.h assumption (Ingo Molnar) 
  [Orabug: 27333761]  {CVE-2017-5754}
- x86/mm: If INVPCID is available, use it to flush global mappings (Andy 
Lutomirski)  [Orabug: 27333761]  {CVE-2017-5754}
- x86/mm: Add a 'noinvpcid' boot option to turn off INVPCID (Andy 
Lutomirski)  [Orabug: 27333761]  {CVE-2017-5754}
- x86/mm: Fix INVPCID asm constraint (Borislav Petkov)  [Orabug: 
27333761]  {CVE-2017-5754}
- x86/mm: Add INVPCID helpers (Andy Lutomirski)  [Orabug: 27333761] 
{CVE-2017-5754}
- x86, cpufeature: Add CPU features from Intel document 319433-012A (H. 
Peter Anvin)  [Orabug: 27333761]  {CVE-2017-5754}
- x86/paravirt: Dont patch flush_tlb_single (Thomas Gleixner)  [Orabug: 
27333761]  {CVE-2017-5754}
- x86-64: Map the HPET NX (Andy Lutomirski)  [Orabug: 27333761] 
{CVE-2017-5754}
- x86/ldt: Make modify_ldt synchronous (Andy Lutomirski)  [Orabug: 
27333761]  {CVE-2017-5754} {CVE-2015-5157}
- x86, cpu: Add cpufeature flag for PCIDs (Arun Thomas)  [Orabug: 
27333761]  {CVE-2017-5754}
- x86/mm: Disable preemption during CR3 read+write (Sebastian Andrzej 
Siewior)  [Orabug: 27333761]  {CVE-2017-5754}
- locking/barriers: fix compile issue (Brian Maly)  [Orabug: 27346425] 
{CVE-2017-5753}
- x86: Add another set of MSR accessor functions (Borislav Petkov) 
[Orabug: 27346425]  {CVE-2017-5753}
- udf: prevent speculative execution (Elena Reshetova)  [Orabug: 
27346425]  {CVE-2017-5753}
- fs: prevent speculative execution (Elena Reshetova)  [Orabug: 
27346425]  {CVE-2017-5753}
- qla2xxx: prevent speculative execution (Elena Reshetova)  [Orabug: 
27346425]  {CVE-2017-5753}
- p54: prevent speculative execution (Elena Reshetova)  [Orabug: 
27346425]  {CVE-2017-5753}
- carl9170: prevent speculative execution (Elena Reshetova)  [Orabug: 
27346425]  {CVE-2017-5753}
- uvcvideo: prevent speculative execution (Elena Reshetova)  [Orabug: 
27346425]  {CVE-2017-5753}
- locking/barriers: introduce new observable speculation barrier (Elena 
Reshetova)  [Orabug: 27346425]  {CVE-2017-5753}
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature 
(Elena Reshetova)  [Orabug: 27346425]  {CVE-2017-5753}
- x86/cpu/AMD: Make the LFENCE instruction serialized (Elena Reshetova) 
[Orabug: 27346425]  {CVE-2017-5753}




More information about the El-errata mailing list