[ELSA-2019-4601] Unbreakable Enterprise kernel security update
[2.6.39-400.308.1]
- x86/fpu: Fix 32-bit signal frame handling (Dave Hansen) [Orabug: 28874707]
- x86/fpu: Factor out memset(xstate, 0) in fpu_finit() paths (Oleg Nesterov) [Orabug: 28874707]
- x86/fpu: Always allow FPU in interrupt if use_eager_fpu() (Oleg Nesterov) [Orabug: 28874707]
- x86/fpu: Don't do __thread_fpu_end() if use_eager_fpu() (Oleg Nesterov) [Orabug: 28874707]
- x86/fpu: Don't reset thread.fpu_counter (Oleg Nesterov) [Orabug: 28874707]
- x86, fpu: Fix math_state_restore() race with kernel_fpu_begin() (Oleg Nesterov) [Orabug: 28874707]
- x86, fpu: Don't abuse has_fpu in __kernel_fpu_begin/end() (Oleg Nesterov) [Orabug: 28874707]
- x86, fpu: Introduce per-cpu in_kernel_fpu state (Oleg Nesterov) [Orabug: 28874707]
- x86, fpu: Check tsk_used_math() in kernel_fpu_end() for eager FPU (Suresh Siddha) [Orabug: 28874707]
- x86: Allow FPU to be used at interrupt time even with eagerfpu (Pekka Riikonen) [Orabug: 28874707]
- ext4: verify the depth of extent tree in ext4_find_extent() (Theodore Ts'o) [Orabug: 29396714] {CVE-2018-10877} {CVE-2018-10877}
- ext4: add more inode number paranoia checks (Theodore Ts'o) [Orabug: 29545568] {CVE-2018-10882} {CVE-2018-10882}
- ID
- ELSA-2019-4601
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2019-4601.html
- Published
-
2019-04-09T00:00:00
(5 years ago) - Modified
-
2019-04-09T00:00:00
(5 years ago) - Rights
- Copyright 2019 Oracle, Inc.
- Other Advisories
-
-
ELSA-2019-4575
-
ELSA-2019-4596
-
ELSA-2019-4600
-
SUSE-SU-2018:2380-1
-
SUSE-SU-2018:2381-1
-
SUSE-SU-2018:2450-1
-
SUSE-SU-2018:2596-1
-
SUSE-SU-2018:2775-1
-
SUSE-SU-2018:2776-1
-
SUSE-SU-2018:2858-1
-
SUSE-SU-2018:2908-1
-
SUSE-SU-2018:2908-2
-
SUSE-SU-2018:3083-1
-
SUSE-SU-2018:3084-1
-
USN-3753-1
-
USN-3753-2
-
USN-3754-1
-
USN-3871-1
-
USN-3871-3
-
USN-3871-4
-
USN-3871-5
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2019-4601 |
|
|
| CVE | CVE-2018-10877 |
|
|
| CVE | CVE-2018-10882 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-6 | oraclelinux |
 kernel-uek
|
< 2.6.39-400.308.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-5 | oraclelinux |
kernel-uek
|
< 2.6.39-400.308.1.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-uek-firmware
|
< 2.6.39-400.308.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-firmware?distro=oraclelinux-5 | oraclelinux |
kernel-uek-firmware
|
< 2.6.39-400.308.1.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-6 | oraclelinux |
kernel-uek-doc
|
< 2.6.39-400.308.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-5 | oraclelinux |
kernel-uek-doc
|
< 2.6.39-400.308.1.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-devel
|
< 2.6.39-400.308.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-devel
|
< 2.6.39-400.308.1.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug
|
< 2.6.39-400.308.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug
|
< 2.6.39-400.308.1.el5uek | oraclelinux-5 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.39-400.308.1.el6uek | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-5 | oraclelinux |
kernel-uek-debug-devel
|
< 2.6.39-400.308.1.el5uek | oraclelinux-5 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |