[El-errata] ELSA-2021-9419 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Mon Aug 16 14:40:48 PDT 2021


Oracle Linux Security Advisory ELSA-2021-9419

http://linux.oracle.com/errata/ELSA-2021-9419.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-4.14.35-2047.506.10.el7uek.x86_64.rpm
kernel-uek-debug-4.14.35-2047.506.10.el7uek.x86_64.rpm
kernel-uek-debug-devel-4.14.35-2047.506.10.el7uek.x86_64.rpm
kernel-uek-devel-4.14.35-2047.506.10.el7uek.x86_64.rpm
kernel-uek-tools-4.14.35-2047.506.10.el7uek.x86_64.rpm
kernel-uek-doc-4.14.35-2047.506.10.el7uek.noarch.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-4.14.35-2047.506.10.el7uek.src.rpm

Related CVEs:

CVE-2021-3656
CVE-2021-3653




Description of changes:

[4.14.35-2047.506.10.el7uek]
- Revert "rds/ib: reap tx completions during connection shutdown" (Manjunath Patil)  [Orabug: 33220435]
- Revert "rds/ib: handle posted ACK during connection shutdown" (Manjunath Patil)  [Orabug: 33220435]
- Revert "rds/ib: recover rds connection from interrupt loss scenario" (Manjunath Patil)  [Orabug: 33220435]
- Revert "rds/ib: move rds_ib_clear_irq_miss() to .h file" (Manjunath Patil)  [Orabug: 33220435]

[4.14.35-2047.506.9.el7uek]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (Maxim Levitsky)  [Orabug: 33205367]  {CVE-2021-3656} {CVE-2021-3656}
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (Maxim Levitsky)  [Orabug: 33205444]  {CVE-2021-3653} {CVE-2021-3653}



More information about the El-errata mailing list