[ELSA-2018-4288] Unbreakable Enterprise kernel security update
[4.1.12-124.22.4]
- Revert commit 8bd274934987 ('block: fix bdi vs gendisk lifetime mismatch') (Ashish Samant) [Orabug: 28968102]
- KVM/x86: Add IBPB support (Ashok Raj) [Orabug: 28703712]
- x86/intel/spectre_v2: Remove unnecessary retp_compiler() test (Boris Ostrovsky) [Orabug: 28814570]
- x86/intel/spectre_v4: Deprecate spec_store_bypass_disable=userspace (Boris Ostrovsky) [Orabug: 28814570]
- x86/speculation: x86_spec_ctrl_set needs to be called unconditionally (Boris Ostrovsky) [Orabug: 28814570]
- x86/speculation: Drop unused DISABLE_IBRS_CLOBBER macro (Boris Ostrovsky) [Orabug: 28814570]
- x86/intel/spectre_v4: Keep SPEC_CTRL_SSBD when IBRS is in use (Boris Ostrovsky) [Orabug: 28814570]
[4.1.12-124.22.3]
- net: net_failover: fix typo in net_failover_slave_register() (Liran Alon) [Orabug: 28122104]
- virtio_net: Extend virtio to use VF datapath when available (Sridhar Samudrala) [Orabug: 28122104]
- virtio_net: Introduce VIRTIO_NET_F_STANDBY feature bit (Sridhar Samudrala) [Orabug: 28122104]
- net: Introduce net_failover driver (Sridhar Samudrala) [Orabug: 28122104]
- net: Introduce generic failover module (Sridhar Samudrala) [Orabug: 28122104]
- net: introduce lower state changed info structure for LAG lowers (Jiri Pirko) [Orabug: 28122104]
- net: introduce change lower state notifier (Jiri Pirko) [Orabug: 28122104]
- net: add info struct for LAG changeupper (Jiri Pirko) [Orabug: 28122104]
- net: add possibility to pass information about upper device via notifier (Jiri Pirko) [Orabug: 28122104]
- net: Check CHANGEUPPER notifier return value (Ido Schimmel) [Orabug: 28122104]
- net: introduce change upper device notifier change info (Jiri Pirko) [Orabug: 28122104]
- x86/bugs: rework x86_spec_ctrl_set to make its changes explicit (Daniel Jordan) [Orabug: 28271063]
- x86/bugs: rename ssbd_ibrs_selected to ssbd_userspace_selected (Daniel Jordan) [Orabug: 28271063]
- x86/bugs: always use x86_spec_ctrl_base or _priv when setting spec ctrl MSR (Daniel Jordan) [Orabug: 28271063]
- xen-blkfront: fix kernel panic with negotiate_mq error path (Manjunath Patil) [Orabug: 28798861]
- scsi: lpfc: Correct MDS diag and nvmet configuration (James Smart) [Orabug: 28855939]
- scsi: virtio_scsi: let host do exception handling (Paolo Bonzini) [Orabug: 28856913]
- net/rds: Fix endless RNR situation (Venkat Venkatsubra) [Orabug: 28857027]
- scsi: sg: allocate with __GFP_ZERO in sg_build_indirect() (Alexander Potapenko) [Orabug: 28892656] {CVE-2018-1000204}
- cdrom: fix improper type cast, which can leat to information leak. (Young_X) [Orabug: 28929767] {CVE-2018-16658} {CVE-2018-10940} {CVE-2018-18710}
- ID
- ELSA-2018-4288
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2018-4288.html
- Published
-
2018-11-28T00:00:00
(5 years ago) - Modified
-
2018-11-28T00:00:00
(5 years ago) - Rights
- Copyright 2018 Oracle, Inc.
- Other Advisories
-
- ALAS-2018-1133
- ALAS2-2018-1133
- ELSA-2018-4300
- ELSA-2018-4301
- ELSA-2018-4304
- ELSA-2019-4316
- FEDORA-2018-1621b2204a
- FEDORA-2018-2645eb8dab
- FEDORA-2018-3857a8b41a
- FEDORA-2018-5904d0794d
- FEDORA-2018-6e8c330d50
- FEDORA-2018-87ba0312c2
- FEDORA-2018-a0914af224
- FEDORA-2018-b68776e5b0
- FEDORA-2018-f55c305488
- FEDORA-2019-164946aa7f
- FEDORA-2019-16de0047d4
- FEDORA-2019-196ab64d65
- FEDORA-2019-1b986880ea
- FEDORA-2019-1e8a4c6958
- FEDORA-2019-20a89ca9af
- FEDORA-2019-337484d88b
- FEDORA-2019-3da64f3e61
- FEDORA-2019-4002b91800
- FEDORA-2019-48b34fc991
- FEDORA-2019-509c133845
- FEDORA-2019-65c6d11eba
- FEDORA-2019-7462acf8ba
- FEDORA-2019-7bdeed7fc5
- FEDORA-2019-7d3500d712
- FEDORA-2019-8169b57f28
- FEDORA-2019-8219efa9f6
- FEDORA-2019-87e7046631
- FEDORA-2019-94dc902948
- FEDORA-2019-96b31a9602
- FEDORA-2019-a6cd583a8d
- FEDORA-2019-aabdaa013d
- FEDORA-2019-b0f7a7b74b
- FEDORA-2019-be9add5b77
- FEDORA-2019-c36afa818c
- FEDORA-2019-ce2933b003
- FEDORA-2019-e6bf55e821
- FEDORA-2019-f812c9fb22
- SSA:2019-030-01
- SUSE-SU-2018:1761-1
- SUSE-SU-2018:1762-1
- SUSE-SU-2018:1855-1
- SUSE-SU-2018:1855-2
- SUSE-SU-2018:2092-1
- SUSE-SU-2018:2332-1
- SUSE-SU-2018:2366-1
- SUSE-SU-2018:2637-1
- SUSE-SU-2018:3688-1
- SUSE-SU-2018:3689-1
- SUSE-SU-2018:3746-1
- SUSE-SU-2018:3773-1
- SUSE-SU-2018:3869-1
- SUSE-SU-2018:3934-1
- SUSE-SU-2018:3961-1
- SUSE-SU-2018:4069-1
- SUSE-SU-2018:4072-1
- SUSE-SU-2019:0095-1
- SUSE-SU-2019:0224-1
- SUSE-SU-2019:0439-1
- SUSE-SU-2019:1245-1
- SUSE-SU-2019:1289-1
- USN-3696-1
- USN-3696-2
- USN-3752-1
- USN-3752-2
- USN-3752-3
- USN-3754-1
- USN-3846-1
- USN-3847-1
- USN-3847-2
- USN-3847-3
- USN-3848-1
- USN-3848-2
- USN-3849-1
- USN-3849-2
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2018-4288 | http://linux.oracle.com/errata/ELSA-2018-4288.html | |
CVE | CVE-2018-1000204 | http://linux.oracle.com/cve/CVE-2018-1000204.html | |
CVE | CVE-2018-18710 | http://linux.oracle.com/cve/CVE-2018-18710.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux | kernel-uek | < 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux | kernel-uek | < 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-7 | oraclelinux | kernel-uek-firmware | < 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux | kernel-uek-firmware | < 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux | kernel-uek-doc | < 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux | kernel-uek-doc | < 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux | kernel-uek-devel | < 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-devel | < 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux | kernel-uek-debug | < 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug | < 4.1.12-124.22.4.el6uek | oraclelinux-6 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux | kernel-uek-debug-devel | < 4.1.12-124.22.4.el7uek | oraclelinux-7 | ||
Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux | kernel-uek-debug-devel | < 4.1.12-124.22.4.el6uek | oraclelinux-6 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |