[ELSA-2018-4288] Unbreakable Enterprise kernel security update
[4.1.12-124.22.4]
- Revert commit 8bd274934987 ('block: fix bdi vs gendisk lifetime mismatch') (Ashish Samant) [Orabug: 28968102]
- KVM/x86: Add IBPB support (Ashok Raj) [Orabug: 28703712]
- x86/intel/spectre_v2: Remove unnecessary retp_compiler() test (Boris Ostrovsky) [Orabug: 28814570]
- x86/intel/spectre_v4: Deprecate spec_store_bypass_disable=userspace (Boris Ostrovsky) [Orabug: 28814570]
- x86/speculation: x86_spec_ctrl_set needs to be called unconditionally (Boris Ostrovsky) [Orabug: 28814570]
- x86/speculation: Drop unused DISABLE_IBRS_CLOBBER macro (Boris Ostrovsky) [Orabug: 28814570]
- x86/intel/spectre_v4: Keep SPEC_CTRL_SSBD when IBRS is in use (Boris Ostrovsky) [Orabug: 28814570]
[4.1.12-124.22.3]
- net: net_failover: fix typo in net_failover_slave_register() (Liran Alon) [Orabug: 28122104]
- virtio_net: Extend virtio to use VF datapath when available (Sridhar Samudrala) [Orabug: 28122104]
- virtio_net: Introduce VIRTIO_NET_F_STANDBY feature bit (Sridhar Samudrala) [Orabug: 28122104]
- net: Introduce net_failover driver (Sridhar Samudrala) [Orabug: 28122104]
- net: Introduce generic failover module (Sridhar Samudrala) [Orabug: 28122104]
- net: introduce lower state changed info structure for LAG lowers (Jiri Pirko) [Orabug: 28122104]
- net: introduce change lower state notifier (Jiri Pirko) [Orabug: 28122104]
- net: add info struct for LAG changeupper (Jiri Pirko) [Orabug: 28122104]
- net: add possibility to pass information about upper device via notifier (Jiri Pirko) [Orabug: 28122104]
- net: Check CHANGEUPPER notifier return value (Ido Schimmel) [Orabug: 28122104]
- net: introduce change upper device notifier change info (Jiri Pirko) [Orabug: 28122104]
- x86/bugs: rework x86_spec_ctrl_set to make its changes explicit (Daniel Jordan) [Orabug: 28271063]
- x86/bugs: rename ssbd_ibrs_selected to ssbd_userspace_selected (Daniel Jordan) [Orabug: 28271063]
- x86/bugs: always use x86_spec_ctrl_base or _priv when setting spec ctrl MSR (Daniel Jordan) [Orabug: 28271063]
- xen-blkfront: fix kernel panic with negotiate_mq error path (Manjunath Patil) [Orabug: 28798861]
- scsi: lpfc: Correct MDS diag and nvmet configuration (James Smart) [Orabug: 28855939]
- scsi: virtio_scsi: let host do exception handling (Paolo Bonzini) [Orabug: 28856913]
- net/rds: Fix endless RNR situation (Venkat Venkatsubra) [Orabug: 28857027]
- scsi: sg: allocate with __GFP_ZERO in sg_build_indirect() (Alexander Potapenko) [Orabug: 28892656] {CVE-2018-1000204}
- cdrom: fix improper type cast, which can leat to information leak. (Young_X) [Orabug: 28929767] {CVE-2018-16658} {CVE-2018-10940} {CVE-2018-18710}
- ID
- ELSA-2018-4288
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2018-4288.html
- Published
-
2018-11-28T00:00:00
(5 years ago) - Modified
-
2018-11-28T00:00:00
(5 years ago) - Rights
- Copyright 2018 Oracle, Inc.
- Other Advisories
-
-
ALAS-2018-1133
-
ALAS2-2018-1133
-
ELSA-2018-4300
-
ELSA-2018-4301
-
ELSA-2018-4304
-
ELSA-2019-4316
-
FEDORA-2018-1621b2204a
-
FEDORA-2018-2645eb8dab
-
FEDORA-2018-3857a8b41a
-
FEDORA-2018-5904d0794d
-
FEDORA-2018-6e8c330d50
-
FEDORA-2018-87ba0312c2
-
FEDORA-2018-a0914af224
-
FEDORA-2018-b68776e5b0
-
FEDORA-2018-f55c305488
-
FEDORA-2019-164946aa7f
-
FEDORA-2019-16de0047d4
-
FEDORA-2019-196ab64d65
-
FEDORA-2019-1b986880ea
-
FEDORA-2019-1e8a4c6958
-
FEDORA-2019-20a89ca9af
-
FEDORA-2019-337484d88b
-
FEDORA-2019-3da64f3e61
-
FEDORA-2019-4002b91800
-
FEDORA-2019-48b34fc991
-
FEDORA-2019-509c133845
-
FEDORA-2019-65c6d11eba
-
FEDORA-2019-7462acf8ba
-
FEDORA-2019-7bdeed7fc5
-
FEDORA-2019-7d3500d712
-
FEDORA-2019-8169b57f28
-
FEDORA-2019-8219efa9f6
-
FEDORA-2019-87e7046631
-
FEDORA-2019-94dc902948
-
FEDORA-2019-96b31a9602
-
FEDORA-2019-a6cd583a8d
-
FEDORA-2019-aabdaa013d
-
FEDORA-2019-b0f7a7b74b
-
FEDORA-2019-be9add5b77
-
FEDORA-2019-c36afa818c
-
FEDORA-2019-ce2933b003
-
FEDORA-2019-e6bf55e821
-
FEDORA-2019-f812c9fb22
-
SSA:2019-030-01
-
SUSE-SU-2018:1761-1
-
SUSE-SU-2018:1762-1
-
SUSE-SU-2018:1855-1
-
SUSE-SU-2018:1855-2
-
SUSE-SU-2018:2092-1
-
SUSE-SU-2018:2332-1
-
SUSE-SU-2018:2366-1
-
SUSE-SU-2018:2637-1
-
SUSE-SU-2018:3688-1
-
SUSE-SU-2018:3689-1
-
SUSE-SU-2018:3746-1
-
SUSE-SU-2018:3773-1
-
SUSE-SU-2018:3869-1
-
SUSE-SU-2018:3934-1
-
SUSE-SU-2018:3961-1
-
SUSE-SU-2018:4069-1
-
SUSE-SU-2018:4072-1
-
SUSE-SU-2019:0095-1
-
SUSE-SU-2019:0224-1
-
SUSE-SU-2019:0439-1
-
SUSE-SU-2019:1245-1
-
SUSE-SU-2019:1289-1
-
USN-3696-1
-
USN-3696-2
-
USN-3752-1
-
USN-3752-2
-
USN-3752-3
-
USN-3754-1
-
USN-3846-1
-
USN-3847-1
-
USN-3847-2
-
USN-3847-3
-
USN-3848-1
-
USN-3848-2
-
USN-3849-1
-
USN-3849-2
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2018-4288 |
|
|
| CVE | CVE-2018-1000204 |
|
|
| CVE | CVE-2018-18710 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
 kernel-uek
|
< 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
kernel-uek
|
< 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 4.1.12-124.22.4.el6uek | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |