[ELSA-2019-4509] Unbreakable Enterprise kernel security update
[4.14.35-1844.1.3]
- net: rds: fix rds_ib_sysctl_max_recv_allocation error (Zhu Yanjun) [Orabug: 29003422]
- nfs: dont dirty kernel pages read by direct-io (Dave Kleikamp) [Orabug: 29122062]
- KVM: X86: Fix scan ioapic use-before-initialization (Wanpeng Li) [Orabug: 29026132] {CVE-2018-19407}
- hugetlb: take PMD sharing into account when flushing tlb/caches (Mike Kravetz) [Orabug: 28951436]
- mm: migration: fix migration of huge PMD shared pages (Mike Kravetz) [Orabug: 28951436]
- mm/mmu_notifier: avoid double notification when it is useless (Jerome Glisse) [Orabug: 28951436]
[4.14.35-1844.1.2]
- ALSA: usb-audio: Fix UAF decrement if card has no live interfaces in card.c (Hui Peng) [Orabug: 29042979] {CVE-2018-19824}
- arm64/kernel: kaslr: reduce module randomization range to 4 GB (Ard Biesheuvel) [Orabug: 28954789]
- xfs: enhance dinode verifier (Eric Sandeen) [Orabug: 28997653] {CVE-2018-10322}
- xfs: move inode fork verifiers to xfs_dinode_verify (Darrick J. Wong) [Orabug: 28997653] {CVE-2018-10322}
- Revert 'xfs: move inode fork verifiers to xfs_dinode_verify' (Shan Hai) [Orabug: 28997653]
- Revert 'xfs: enhance dinode verifier' (Shan Hai) [Orabug: 28997653]
[4.14.35-1844.1.1]
- arm64: disable /dev/port on 64 bit ARM (Eric Saint-Etienne) [Orabug: 28961247]
- crypto: ccp - add timeout support in the SEV command (Brijesh Singh) [Orabug: 29029018]
- crypto: ccp - Add GET_ID SEV command (Janakarajan Natarajan) [Orabug: 29029018]
- crypto: ccp - Add DOWNLOAD_FIRMWARE SEV command (Janakarajan Natarajan) [Orabug: 29029018]
- net: phy: mdio-bcm-unimac: fix potential NULL dereference in unimac_mdio_probe() (Wei Yongjun) [Orabug: 27677743] {CVE-2018-8043}
- vti6: remove !skb->ignore_df check from vti6_xmit() (Alexey Kodanev) [Orabug: 28940590]
- A/A failback does not work in concert with ibacm (Hakon Bugge) [Orabug: 28972800]
- ACPICA: Reference Counts: increase max to 0x4000 for large servers (Erik Schmauss) [Orabug: 29019053]
[4.14.35-1844.1.0]
- wil6210: missing length check in wmi_set_ie (Lior David) [Orabug: 28951264] {CVE-2018-5848}
- [PATCH UEK5 u1 v3] dtrace: add DTRACEACT_PCAP for packet capture for later pcap_dump() (Alan Maguire) [Orabug: 28951771]
- floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl (Andy Whitcroft) {CVE-2018-7755} {CVE-2018-7755}
- [PATCH UEK5 u1 v2] dtrace: fix ip provider inconsistencies between IPv4/IPv6 (Alan Maguire) [Orabug: 28956807]
- x86/speculation: Make enhanced IBRS the default spectre v2 mitigation (Alejandro Jimenez) [Orabug: 28992002]
- x86/speculation: Enable enhanced IBRS usage (Alejandro Jimenez) [Orabug: 28992002]
- x86/speculation: functions for supporting enhanced IBRS (Alejandro Jimenez) [Orabug: 28992002]
- Add forward declaration of tlb_flush, required for asm-generic. (Jack Vogel) [Orabug: 28866513]
- x86/mm: Page size aware flush_tlb_mm_range() (Peter Zijlstra) [Orabug: 28866513]
- mm/memory: Move mmu_gather and TLB invalidation code into its own file (Peter Zijlstra) [Orabug: 28866513]
- asm-generic/tlb: Track which levels of the page tables have been cleared (Will Deacon) [Orabug: 28866513]
- asm-generic/tlb: Track freeing of page-table directories in struct mmu_gather (Peter Zijlstra) [Orabug: 28866513]
- mm: mmu_notifier fix for tlb_end_vma (Nicholas Piggin) [Orabug: 28866513]
- mm: update comment describing tlb_gather_mmu (Mike Rapoport) [Orabug: 28866513]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/perf?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools-libs?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools-libs-devel?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7
|
< 4.14.35-1844.1.3.el7uek |
- ID
- ELSA-2019-4509
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2019-4509.html
- Published
-
2019-01-15T00:00:00
(5 years ago) - Modified
-
2019-01-15T00:00:00
(5 years ago) - Rights
- Copyright 2019 Oracle, Inc.
- Other Advisories
-
-
ALAS-2018-1133
-
ALAS-2019-1279
-
ALAS2-2018-1133
-
ALAS2-2019-1279
-
ALAS2-2020-1480
-
DSA-4308-1
-
ELSA-2018-3083
-
ELSA-2018-4299
-
ELSA-2018-4300
-
ELSA-2018-4301
-
ELSA-2018-4304
-
ELSA-2018-4307
-
ELSA-2019-2029
-
ELSA-2019-2703
-
ELSA-2019-4316
-
ELSA-2019-4510
-
FEDORA-2018-0edb45d9db
-
FEDORA-2018-1621b2204a
-
FEDORA-2018-1c80fea1cd
-
FEDORA-2018-1e033dc308
-
FEDORA-2018-2645eb8dab
-
FEDORA-2018-2a0f8b2c9d
-
FEDORA-2018-2c6bd93875
-
FEDORA-2018-2ee3411cb8
-
FEDORA-2018-2f6df9abfb
-
FEDORA-2018-3857a8b41a
-
FEDORA-2018-49bda79bd5
-
FEDORA-2018-4ca01704a2
-
FEDORA-2018-50075276e8
-
FEDORA-2018-537c8312fc
-
FEDORA-2018-5904d0794d
-
FEDORA-2018-59e4747e0f
-
FEDORA-2018-6367a17aa3
-
FEDORA-2018-6e8c330d50
-
FEDORA-2018-79d7c3d2df
-
FEDORA-2018-8422d94975
-
FEDORA-2018-8484550fff
-
FEDORA-2018-87ba0312c2
-
FEDORA-2018-884a105c04
-
FEDORA-2018-8ce90c8b24
-
FEDORA-2018-93af520878
-
FEDORA-2018-93c2e74446
-
FEDORA-2018-94315e9a6b
-
FEDORA-2018-9d0e4e40b5
-
FEDORA-2018-9f4381d8c4
-
FEDORA-2018-a0914af224
-
FEDORA-2018-ac3b4c7605
-
FEDORA-2018-b57db4753c
-
FEDORA-2018-b68776e5b0
-
FEDORA-2018-b997780dca
-
FEDORA-2018-bb7aab12cb
-
FEDORA-2018-bf60ec1389
-
FEDORA-2018-c0a1284064
-
FEDORA-2018-c449dc1c9c
-
FEDORA-2018-ca0e10fc6e
-
FEDORA-2018-cc812838fb
-
FEDORA-2018-cf76003e1f
-
FEDORA-2018-d77cc41f35
-
FEDORA-2018-d82a45d9ab
-
FEDORA-2018-d92fde52d7
-
FEDORA-2018-db0d3e157e
-
FEDORA-2018-ddbaca855e
-
FEDORA-2018-e71875c4aa
-
FEDORA-2018-e820fccd83
-
FEDORA-2018-e8f793bbfc
-
FEDORA-2018-f1b818a5c9
-
FEDORA-2018-f8cba144ae
-
FEDORA-2019-164946aa7f
-
FEDORA-2019-16de0047d4
-
FEDORA-2019-196ab64d65
-
FEDORA-2019-1b986880ea
-
FEDORA-2019-1e8a4c6958
-
FEDORA-2019-20a89ca9af
-
FEDORA-2019-337484d88b
-
FEDORA-2019-3da64f3e61
-
FEDORA-2019-4002b91800
-
FEDORA-2019-41e28660ae
-
FEDORA-2019-48b34fc991
-
FEDORA-2019-509c133845
-
FEDORA-2019-65c6d11eba
-
FEDORA-2019-69c132b061
-
FEDORA-2019-6bda4c81f4
-
FEDORA-2019-7462acf8ba
-
FEDORA-2019-7a3fc17778
-
FEDORA-2019-7bdeed7fc5
-
FEDORA-2019-7d3500d712
-
FEDORA-2019-7ec378191e
-
FEDORA-2019-8169b57f28
-
FEDORA-2019-8219efa9f6
-
FEDORA-2019-83858fc57b
-
FEDORA-2019-87e7046631
-
FEDORA-2019-914542e05c
-
FEDORA-2019-94dc902948
-
FEDORA-2019-96b31a9602
-
FEDORA-2019-97380355ae
-
FEDORA-2019-a570a92d5a
-
FEDORA-2019-a6cd583a8d
-
FEDORA-2019-a95015e60f
-
FEDORA-2019-aabdaa013d
-
FEDORA-2019-b0f7a7b74b
-
FEDORA-2019-be9add5b77
-
FEDORA-2019-c36afa818c
-
FEDORA-2019-ce2933b003
-
FEDORA-2019-e6bf55e821
-
FEDORA-2019-f812c9fb22
-
openSUSE-SU-2019:0065-1
-
RHSA-2018:3083
-
RHSA-2018:3096
-
RHSA-2019:2029
-
RHSA-2019:2043
-
RHSA-2019:2703
-
RHSA-2019:2741
-
SSA:2019-030-01
-
SSA:2020-295-01
-
SUSE-SU-2018:1048-1
-
SUSE-SU-2018:1173-1
-
SUSE-SU-2018:1173-2
-
SUSE-SU-2018:1217-1
-
SUSE-SU-2018:1761-1
-
SUSE-SU-2018:1762-1
-
SUSE-SU-2018:1772-1
-
SUSE-SU-2018:1816-1
-
SUSE-SU-2018:1855-1
-
SUSE-SU-2018:1855-2
-
SUSE-SU-2018:2092-1
-
SUSE-SU-2018:4069-1
-
SUSE-SU-2018:4072-1
-
SUSE-SU-2018:4127-1
-
SUSE-SU-2018:4153-1
-
SUSE-SU-2018:4157-1
-
SUSE-SU-2018:4195-1
-
SUSE-SU-2018:4208-1
-
SUSE-SU-2018:4238-1
-
SUSE-SU-2019:0148-1
-
SUSE-SU-2019:0150-1
-
SUSE-SU-2019:0196-1
-
SUSE-SU-2019:0222-1
-
SUSE-SU-2019:0224-1
-
SUSE-SU-2019:0320-1
-
SUSE-SU-2019:0439-1
-
SUSE-SU-2019:0541-1
-
SUSE-SU-2019:1287-1
-
SUSE-SU-2019:1289-1
-
SUSE-SU-2022:1651-1
-
SUSE-SU-2022:1668-1
-
SUSE-SU-2022:1686-1
-
SUSE-SU-2022:2077-1
-
SUSE-SU-2022:2082-1
-
SUSE-SU-2022:2111-1
-
SUSE-SU-2023:0416-1
-
USN-3619-1
-
USN-3619-2
-
USN-3630-1
-
USN-3630-2
-
USN-3632-1
-
USN-3695-1
-
USN-3695-2
-
USN-3696-1
-
USN-3696-2
-
USN-3697-1
-
USN-3697-2
-
USN-3698-1
-
USN-3698-2
-
USN-3871-1
-
USN-3871-3
-
USN-3871-4
-
USN-3871-5
-
USN-3872-1
-
USN-3878-1
-
USN-3878-2
-
USN-3879-1
-
USN-3879-2
-
USN-3930-1
-
USN-3930-2
-
USN-3931-1
-
USN-3931-2
-
USN-3933-1
-
USN-3933-2
-
USN-4578-1
-
USN-4579-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2019-4509 |
|
|
| CVE | CVE-2018-5848 |
|
|
| CVE | CVE-2018-10322 |
|
|
| CVE | CVE-2018-7755 |
|
|
| CVE | CVE-2018-8043 |
|
|
| CVE | CVE-2018-19824 |
|
|
| CVE | CVE-2018-19407 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7 | oraclelinux |
python-perf
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-7 | oraclelinux |
perf
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
kernel-uek
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools-libs?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools-libs
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools-libs-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools-libs-devel
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-7 | oraclelinux |
kernel-uek-headers
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 4.14.35-1844.1.3.el7uek | oraclelinux-7 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |