[El-errata] ELSA-2019-1268 Important: Oracle Linux 8 virt:rhel security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Aug 1 07:01:20 PDT 2019 

Oracle Linux Security Advisory ELSA-2019-1268

http://linux.oracle.com/errata/ELSA-2019-1268.html

The following updated rpms for Oracle Linux 8 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
libvirt-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-admin-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-bash-completion-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-client-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-config-network-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-config-nwfilter-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-interface-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-network-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-nodedev-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-nwfilter-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-qemu-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-secret-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-core-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-disk-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-gluster-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-iscsi-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-logical-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-mpath-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-rbd-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-driver-storage-scsi-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-daemon-kvm-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-devel-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-docs-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-libs-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-lock-sanlock-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm
libvirt-nss-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.x86_64.rpm

aarch64:
libvirt-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-admin-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-bash-completion-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-client-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-config-network-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-config-nwfilter-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-interface-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-network-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-nodedev-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-nwfilter-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-qemu-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-secret-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-core-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-disk-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-gluster-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-logical-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-mpath-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-rbd-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-driver-storage-scsi-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-daemon-kvm-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-devel-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-docs-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-libs-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-lock-sanlock-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm
libvirt-nss-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/libvirt-4.5.0-23.2.0.1.module+el8.0.0+5225+ce2eb65e.src.rpm



Description of changes:

[4.5.0-23.2.0.1.el8]
- added librbd1 as dependency (Keshav Sharma)

[4.5.0-23.2.el8]
- admin: reject clients unless their UID matches the current UID 
(CVE-2019-10132)
- locking: restrict sockets to mode 0600 (CVE-2019-10132)
- logging: restrict sockets to mode 0600 (CVE-2019-10132)

[4.5.0-23.1.el8]
- cpu_x86: Do not cache microcode version (CVE-2018-12130, 
CVE-2018-12126, CVE-2018-11091, CVE-2018-12127)
- qemu: Don't cache microcode version (CVE-2018-12130, CVE-2018-12126, 
CVE-2018-11091, CVE-2018-12127)
- cputest: Add data for Intel(R) Xeon(R) CPU E3-1225 v5 (CVE-2018-12130, 
CVE-2018-12126, CVE-2018-11091, CVE-2018-12127)
- cpu_map: Define md-clear CPUID bit (CVE-2018-12130, CVE-2018-12126, 
CVE-2018-11091, CVE-2018-12127)

More information about the El-errata mailing list