[ELSA-2020-3218] kernel security and bug fix update
[4.18.0-193.14.3_2.OL8]
- Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-2.0.3.el7
[4.18.0-193.14.3_2]
- Reverse keys order for dual-signing (Frantisek Hrbata) [1837433 1837434] {CVE-2020-10713}
[4.18.0-193.14.2_2]
- [kernel] Move to dual-signing to split signing keys up better (pjones) [1837433 1837434] {CVE-2020-10713}
- [crypto] pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1837433 1837434] {CVE-2020-10713}
- [acpi] ACPI: configfs: Disallow loading ACPI tables when locked down (Lenny Szubowicz) [1852968 1852969] {CVE-2020-15780}
- [firmware] efi: Restrict efivar_ssdt_load when the kernel is locked down (Lenny Szubowicz) [1852948 1852949] {CVE-2019-20908}
[4.18.0-193.14.1_2]
- [md] dm mpath: add DM device name to Failing/Reinstating path log messages (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: enhance queue_if_no_path debugging (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: restrict queue_if_no_path state machine (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: simplify __must_push_back (Mike Snitzer) [1852050 1822975]
- [md] dm: use DMDEBUG macros now that they use pr_debug variants (Mike Snitzer) [1852050 1822975]
- [include] dm: use dynamic debug instead of compile-time config option (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: switch paths in dm_blk_ioctl() code path (Mike Snitzer) [1852050 1822975]
- [md] dm multipath: use updated MPATHF_QUEUE_IO on mapping for bio-based mpath (Mike Snitzer) [1852050 1822975]
- [md] dm: bump version of core and various targets (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: Add timeout mechanism for queue_if_no_path (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: use true_false for bool variable (Mike Snitzer) [1852050 1822975]
- [md] dm mpath: remove harmful bio-based optimization (Mike Snitzer) [1852050 1822975]
- [scsi] scsi: libiscsi: fall back to sendmsg for slab pages (Maurizio Lombardi) [1852048 1825775]
- [s390] s390/mm: fix panic in gup_fast on large pud (Philipp Rudo) [1853336 1816980]
- ID
- ELSA-2020-3218
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2020-3218.html
- Published
-
2020-07-30T00:00:00
(4 years ago) - Modified
-
2020-07-30T00:00:00
(4 years ago) - Rights
- Copyright 2020 Oracle, Inc.
- Other Advisories
-
-
ELSA-2020-5791
-
ELSA-2020-5792
-
ELSA-2020-5804
-
MS:CVE-2020-15780
-
openSUSE-SU-2020:1153-1
-
openSUSE-SU-2020:1236-1
-
openSUSE-SU-2021:0242-1
-
RHSA-2020:3218
-
RHSA-2020:3219
-
SUSE-SU-2020:2027-1
-
SUSE-SU-2020:2103-1
-
SUSE-SU-2020:2105-1
-
SUSE-SU-2020:2106-1
-
SUSE-SU-2020:2107-1
-
SUSE-SU-2020:2119-1
-
SUSE-SU-2020:2121-1
-
SUSE-SU-2020:2122-1
-
SUSE-SU-2020:2478-1
-
SUSE-SU-2020:2487-1
-
SUSE-SU-2020:2505-1
-
SUSE-SU-2020:2506-1
-
SUSE-SU-2020:2507-1
-
SUSE-SU-2020:2508-1
-
SUSE-SU-2020:2509-1
-
SUSE-SU-2020:2513-1
-
SUSE-SU-2020:2515-1
-
SUSE-SU-2020:2517-1
-
SUSE-SU-2020:2524-1
-
SUSE-SU-2020:2526-1
-
SUSE-SU-2020:2531-1
-
USN-4425-1
-
USN-4426-1
-
USN-4427-1
-
USN-4439-1
-
USN-4440-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2020-3218 |
|
|
| CVE | CVE-2019-20908 |
|
|
| CVE | CVE-2020-15780 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python3-perf?distro=oraclelinux-8.2 | oraclelinux |
 python3-perf
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-8.2 | oraclelinux |
perf
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-8.2 | oraclelinux |
kernel
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-8.2 | oraclelinux |
kernel-tools
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-8.2 | oraclelinux |
kernel-tools-libs
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-8.2 | oraclelinux |
kernel-tools-libs-devel
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-modules?distro=oraclelinux-8.2 | oraclelinux |
kernel-modules
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-modules-extra?distro=oraclelinux-8.2 | oraclelinux |
kernel-modules-extra
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-8.2 | oraclelinux |
kernel-headers
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-8.2 | oraclelinux |
kernel-doc
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-8.2 | oraclelinux |
kernel-devel
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-8.2 | oraclelinux |
kernel-debug
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-modules?distro=oraclelinux-8.2 | oraclelinux |
kernel-debug-modules
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-modules-extra?distro=oraclelinux-8.2 | oraclelinux |
kernel-debug-modules-extra
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-8.2 | oraclelinux |
kernel-debug-devel
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-core?distro=oraclelinux-8.2 | oraclelinux |
kernel-debug-core
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-cross-headers?distro=oraclelinux-8.2 | oraclelinux |
kernel-cross-headers
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-core?distro=oraclelinux-8.2 | oraclelinux |
kernel-core
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-abi-whitelists?distro=oraclelinux-8.2 | oraclelinux |
kernel-abi-whitelists
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/bpftool?distro=oraclelinux-8.2 | oraclelinux |
bpftool
|
< 4.18.0-193.14.3.el8_2 | oraclelinux-8.2 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |