[El-errata] ELSA-2018-4017 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Fri Jan 19 07:35:14 PST 2018


Oracle Linux Security Advisory ELSA-2018-4017

http://linux.oracle.com/errata/ELSA-2018-4017.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kernel-uek-doc-4.1.12-112.14.13.el7uek.noarch.rpm
kernel-uek-firmware-4.1.12-112.14.13.el7uek.noarch.rpm
kernel-uek-4.1.12-112.14.13.el7uek.x86_64.rpm
kernel-uek-devel-4.1.12-112.14.13.el7uek.x86_64.rpm
kernel-uek-debug-4.1.12-112.14.13.el7uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-112.14.13.el7uek.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-4.1.12-112.14.13.el7uek.src.rpm



Description of changes:

[4.1.12-112.14.13.el7uek]
- Revert "kernel.spec: Require the new microcode_ctl." (Brian Maly)

[4.1.12-112.14.12.el7uek]
- xen-blkback: add pending_req allocation stats (Ankur Arora)  [Orabug: 
27386890]
- xen-blkback: move indirect req allocation out-of-line (Ankur Arora) 
[Orabug: 27386890]
- xen-blkback: pull nseg validation out in a function (Ankur Arora) 
[Orabug: 27386890]
- xen-blkback: make struct pending_req less monolithic (Ankur Arora) 
[Orabug: 27386890]
- x86: Clean up IBRS functionality resident in common code (Kanth 
Ghatraju)  [Orabug: 27403317]
- x86: Display correct settings for the SPECTRE_V2 bug (Kanth Ghatraju) 
[Orabug: 27403317]
- Set CONFIG_GENERIC_CPU_VULNERABILITIES flag (Kanth Ghatraju)  [Orabug: 
27403317]
- x86/cpu: Implement CPU vulnerabilites sysfs functions (Thomas 
Gleixner)  [Orabug: 27403317]
- sysfs/cpu: Fix typos in vulnerability documentation (David Woodhouse) 
[Orabug: 27403317]
- sysfs/cpu: Add vulnerability folder (Thomas Gleixner)  [Orabug: 27403317]
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (David Woodhouse)  [Orabug: 
27403317]
- x86/cpufeatures: Add X86_BUG_CPU_MELTDOWN (Kanth Ghatraju)  [Orabug: 
27403317]
- KVM: x86: Add memory barrier on vmcs field lookup (Andrew Honig) 
{CVE-2017-5753}
- KVM: VMX: remove I/O port 0x80 bypass on Intel hosts (Andrew Honig) 
[Orabug: 27402301]  {CVE-2017-1000407} {CVE-2017-1000407}
- xfs: give all workqueues rescuer threads (Chris Mason)  [Orabug: 
27397568]
- ixgbevf: handle mbox_api_13 in ixgbevf_change_mtu (Joao Martins) 
[Orabug: 27397001]




More information about the El-errata mailing list