[El-errata] New Ksplice updates for UEKR4 4.1.12 on OL6 and OL7 (ELSA-2020-5535)

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Feb 18 02:29:40 PST 2020

Synopsis: ELSA-2020-5535 can now be patched using Ksplice
CVEs: CVE-2019-11135 CVE-2019-17666 CVE-2019-19332

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2020-5535.
More information about this errata can be found at


We recommend that all users of Ksplice Uptrack running UEKR4 4.1.12 on
OL6 and OL7 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


* CVE-2019-17666: Out-of-bounds access when using Realtek Wireless Network driver in P2P mode.

A logic error when using Realtek Wireless Network driver in P2P mode
could lead to an out-of-bounds access. A remote attacker within the
wireless radio range of the victim could use this flaw to cause a

Orabug: 30807748

* CVE-2019-19332: Denial-of-service in KVM cpuid emulation reporting.

A failure to correctly validate a request for KVM cpuid emulation
information a can lead to an out-of-bounds memory access, leading to a
kernel crash. A local user with the ability to use KVM could use this
flaw to cause a denial-of-service.

Orabug: 30658695

* Improved fix to CVE-2019-11135: Side-channel information leak in Intel TSX on late microcode update.

The original fix for CVE-2019-11135 would not correctly update the TSX
state on a late microcode update, potentially leaving the system

Orabug: 30557086, 30528904

* Missing CPU vulnerability mitigations on late microcode update.

Incorrect handling of microcode specific mitigations could result in
failure to completely mitigate a number of CPU vulnerabilities.

Orabug: 30649400

* Denial-of-service in iSCSI IO vector mapping.

Missing validation when mapping an IO vector for an iSCSI transfer could
result in a NULL pointer dereference and kernel crash under specific

Orabug: 30459537


Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the El-errata mailing list