[El-errata] ELSA-2021-9420 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

Mon Aug 16 14:40:37 PDT 2021

Oracle Linux Security Advisory ELSA-2021-9420

http://linux.oracle.com/errata/ELSA-2021-9420.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
kernel-uek-5.4.17-2102.204.4.3.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2102.204.4.3.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2102.204.4.3.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2102.204.4.3.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2102.204.4.3.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2102.204.4.3.el8uek.src.rpm

Related CVEs:

CVE-2021-3653
CVE-2021-3656

Description of changes:

[5.4.17-2102.204.4.3.el8uek]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (Maxim Levitsky)  [Orabug: 33205365]  {CVE-2021-3656} {CVE-2021-3656}
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (Maxim Levitsky)  [Orabug: 33205443]  {CVE-2021-3653} {CVE-2021-3653}