[ELSA-2022-9198] Unbreakable Enterprise kernel security update
[4.14.35-2047.511.5.4]
- x86/speculation: Add knob for eibrs_retpoline_enabled (Patrick Colp) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Extend our code to properly support eibrs+lfence and eibrs+retpoline (Patrick Colp) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Update link to AMD speculation whitepaper (Kim Phillips) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Use generic retpoline by default on AMD (Kim Phillips) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting (Josh Poimboeuf) [Orabug: 33922122] {CVE-2021-26341}
- Documentation/hw-vuln: Update spectre doc (Peter Zijlstra) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Add eIBRS + Retpoline options (Peter Zijlstra) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE (Peter Zijlstra (Intel)) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Merge one test in spectre_v2_user_select_mitigation() (Borislav Petkov) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Update ALTERNATIVEs to (more closely) match upstream (Patrick Colp) [Orabug: 33922122] {CVE-2021-26341}
- x86/speculation: Fix bug in retpoline mode on AMD with (Patrick Colp) [Orabug: 33922122] {CVE-2021-26341}
- bpf: Add kconfig knob for disabling unpriv bpf by default (Daniel Borkmann) [Orabug: 33926438]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/perf?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools-libs?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools-libs-devel?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7
|
< 4.14.35-2047.511.5.4.el7uek |
- ID
- ELSA-2022-9198
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2022-9198.html
- Published
-
2022-03-08T00:00:00
(2 years ago) - Modified
-
2022-03-08T00:00:00
(2 years ago) - Rights
- Copyright 2022 Oracle, Inc.
- Other Advisories
-
-
ALAS-2022-1571
-
ALAS2-2022-1761
-
ALSA-2023:2458
-
ALSA-2023:2951
-
ELSA-2022-9199
-
ELSA-2022-9200
-
ELSA-2022-9201
-
ELSA-2022-9273
-
ELSA-2022-9274
-
ELSA-2023-2458
-
ELSA-2023-2951
-
openSUSE-SU-2022:2549-1
-
RHSA-2023:2148
-
RHSA-2023:2458
-
RHSA-2023:2736
-
RHSA-2023:2951
-
SUSE-SU-2022:2376-1
-
SUSE-SU-2022:2379-1
-
SUSE-SU-2022:2393-1
-
SUSE-SU-2022:2407-1
-
SUSE-SU-2022:2411-1
-
SUSE-SU-2022:2424-1
-
SUSE-SU-2022:2424-2
-
SUSE-SU-2022:2478-1
-
SUSE-SU-2022:2520-1
-
SUSE-SU-2022:2549-1
-
SUSE-SU-2022:2615-1
-
SUSE-SU-2022:2629-1
-
SUSE-SU-2022:2723-1
-
SUSE-SU-2022:2808-1
-
SUSE-SU-2022:2809-1
-
SUSE-SU-2023:0416-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2022-9198 |
|
|
| CVE | CVE-2021-26341 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7 | oraclelinux |
python-perf
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-7 | oraclelinux |
perf
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
kernel-uek
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools-libs?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools-libs
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools-libs-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools-libs-devel
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-7 | oraclelinux |
kernel-uek-headers
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 4.14.35-2047.511.5.4.el7uek | oraclelinux-7 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |