[ELSA-2020-3218] kernel security and bug fix update
[4.18.0-193.14.3_2.OL8]
- Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-2.0.3.el7
[4.18.0-193.14.3_2]
- Reverse keys order for dual-signing (Frantisek Hrbata) [1837433 1837434] {CVE-2020-10713}
[4.18.0-193.14.2_2]
- [kernel] Move to dual-signing to split signing keys up better (pjones) [1837433 1837434] {CVE-2020-10713}
- [crypto] pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1837433 1837434] {CVE-2020-10713}
- [acpi] ACPI: configfs: Disallow loading ACPI tables when locked down (Lenny Szubowicz) [1852968 1852969] {CVE-2020-15780}
- [firmware] efi: Restrict efivar_ssdt_load when the kernel is locked down (Lenny Szubowicz) [1852948 1852949] {CVE-2019-20908}
[4.18.0-193.14.1_2]
- [md] dm mpath: add DM device name to Failing/Reinstating path log messages (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: enhance queue_if_no_path debugging (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: restrict queue_if_no_path state machine (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: simplify __must_push_back (Mike Snitzer) [1852050 1822975]
- [md] dm: use DMDEBUG macros now that they use pr_debug variants (Mike Snitzer) [1852050 1822975]
- [include] dm: use dynamic debug instead of compile-time config option (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: switch paths in dm_blk_ioctl() code path (Mike Snitzer) [1852050 1822975]
- [md] dm multipath: use updated MPATHF_QUEUE_IO on mapping for bio-based mpath (Mike Snitzer) [1852050 1822975]
- [md] dm: bump version of core and various targets (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: Add timeout mechanism for queue_if_no_path (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: use true_false for bool variable (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: remove harmful bio-based optimization (Mike Snitzer) [1852050 1822975]
- [scsi] scsi: libiscsi: fall back to sendmsg for slab pages (Maurizio Lombardi) [1852048 1825775]
- [s390] s390/mm: fix panic in gup_fast on large pud (Philipp Rudo) [1853336 1816980]
- ID
- ELSA-2020-3218
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2020-3218.html
- Published
-
2020-07-30T00:00:00
(4 years ago) - Modified
-
2020-07-30T00:00:00
(4 years ago) - Rights
- Copyright 2020 Oracle, Inc.
- Other Advisories
-
- ELSA-2020-5791
- ELSA-2020-5792
- ELSA-2020-5804
- MS:CVE-2020-15780
- openSUSE-SU-2020:1153-1
- openSUSE-SU-2020:1236-1
- openSUSE-SU-2021:0242-1
- RHSA-2020:3218
- RHSA-2020:3219
- SUSE-SU-2020:2027-1
- SUSE-SU-2020:2103-1
- SUSE-SU-2020:2105-1
- SUSE-SU-2020:2106-1
- SUSE-SU-2020:2107-1
- SUSE-SU-2020:2119-1
- SUSE-SU-2020:2121-1
- SUSE-SU-2020:2122-1
- SUSE-SU-2020:2478-1
- SUSE-SU-2020:2487-1
- SUSE-SU-2020:2505-1
- SUSE-SU-2020:2506-1
- SUSE-SU-2020:2507-1
- SUSE-SU-2020:2508-1
- SUSE-SU-2020:2509-1
- SUSE-SU-2020:2513-1
- SUSE-SU-2020:2515-1
- SUSE-SU-2020:2517-1
- SUSE-SU-2020:2524-1
- SUSE-SU-2020:2526-1
- SUSE-SU-2020:2531-1
- USN-4425-1
- USN-4426-1
- USN-4427-1
- USN-4439-1
- USN-4440-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2020-3218 | https://linux.oracle.com/errata/ELSA-2020-3218.html | |
CVE | CVE-2019-20908 | https://linux.oracle.com/cve/CVE-2019-20908.html | |
CVE | CVE-2020-15780 | https://linux.oracle.com/cve/CVE-2020-15780.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/python3-perf?distro=oraclelinux-8.2 | oraclelinux | python3-perf | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-8.2 | oraclelinux | perf | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-8.2 | oraclelinux | kernel | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-8.2 | oraclelinux | kernel-tools | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-8.2 | oraclelinux | kernel-tools-libs | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-8.2 | oraclelinux | kernel-tools-libs-devel | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-modules?distro=oraclelinux-8.2 | oraclelinux | kernel-modules | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-modules-extra?distro=oraclelinux-8.2 | oraclelinux | kernel-modules-extra | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-8.2 | oraclelinux | kernel-headers | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-8.2 | oraclelinux | kernel-doc | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-8.2 | oraclelinux | kernel-devel | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-8.2 | oraclelinux | kernel-debug | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-modules?distro=oraclelinux-8.2 | oraclelinux | kernel-debug-modules | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-modules-extra?distro=oraclelinux-8.2 | oraclelinux | kernel-debug-modules-extra | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-8.2 | oraclelinux | kernel-debug-devel | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-debug-core?distro=oraclelinux-8.2 | oraclelinux | kernel-debug-core | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-cross-headers?distro=oraclelinux-8.2 | oraclelinux | kernel-cross-headers | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-core?distro=oraclelinux-8.2 | oraclelinux | kernel-core | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-8.2 | oraclelinux | kernel-abi-whitelists | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/bpftool?distro=oraclelinux-8.2 | oraclelinux | bpftool | < 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |