Oracle Linux 6149 Published by

The following updates has been released for both Oracle Linux 6 and 7:

ELSA-2018-0101 Important: Oracle Linux 6 bind security update
ELSA-2018-0102 Important: Oracle Linux 7 bind security update
ELSA-2018-4018 Important: Oracle Linux 7 microcode_ctl security update
ELSA-2018-4019 Important: Oracle Linux 6 microcode_ctl security update



ELSA-2018-0101 Important: Oracle Linux 6 bind security update

Oracle Linux Security Advisory ELSA-2018-0101

http://linux.oracle.com/errata/ELSA-2018-0101.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
bind-9.8.2-0.62.rc1.el6_9.5.i686.rpm
bind-chroot-9.8.2-0.62.rc1.el6_9.5.i686.rpm
bind-devel-9.8.2-0.62.rc1.el6_9.5.i686.rpm
bind-libs-9.8.2-0.62.rc1.el6_9.5.i686.rpm
bind-sdb-9.8.2-0.62.rc1.el6_9.5.i686.rpm
bind-utils-9.8.2-0.62.rc1.el6_9.5.i686.rpm

x86_64:
bind-9.8.2-0.62.rc1.el6_9.5.x86_64.rpm
bind-chroot-9.8.2-0.62.rc1.el6_9.5.x86_64.rpm
bind-devel-9.8.2-0.62.rc1.el6_9.5.i686.rpm
bind-devel-9.8.2-0.62.rc1.el6_9.5.x86_64.rpm
bind-libs-9.8.2-0.62.rc1.el6_9.5.i686.rpm
bind-libs-9.8.2-0.62.rc1.el6_9.5.x86_64.rpm
bind-sdb-9.8.2-0.62.rc1.el6_9.5.x86_64.rpm
bind-utils-9.8.2-0.62.rc1.el6_9.5.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/bind-9.8.2-0.62.rc1.el6_9.5.src.rpm



Description of changes:

[32:9.8.2-0.62.rc1.5]
- Fix CVE-2017-3145


ELSA-2018-0102 Important: Oracle Linux 7 bind security update

Oracle Linux Security Advisory ELSA-2018-0102

http://linux.oracle.com/errata/ELSA-2018-0102.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
bind-9.9.4-51.el7_4.2.x86_64.rpm
bind-chroot-9.9.4-51.el7_4.2.x86_64.rpm
bind-devel-9.9.4-51.el7_4.2.i686.rpm
bind-devel-9.9.4-51.el7_4.2.x86_64.rpm
bind-libs-9.9.4-51.el7_4.2.i686.rpm
bind-libs-9.9.4-51.el7_4.2.x86_64.rpm
bind-libs-lite-9.9.4-51.el7_4.2.i686.rpm
bind-libs-lite-9.9.4-51.el7_4.2.x86_64.rpm
bind-license-9.9.4-51.el7_4.2.noarch.rpm
bind-lite-devel-9.9.4-51.el7_4.2.i686.rpm
bind-lite-devel-9.9.4-51.el7_4.2.x86_64.rpm
bind-pkcs11-9.9.4-51.el7_4.2.x86_64.rpm
bind-pkcs11-devel-9.9.4-51.el7_4.2.i686.rpm
bind-pkcs11-devel-9.9.4-51.el7_4.2.x86_64.rpm
bind-pkcs11-libs-9.9.4-51.el7_4.2.i686.rpm
bind-pkcs11-libs-9.9.4-51.el7_4.2.x86_64.rpm
bind-pkcs11-utils-9.9.4-51.el7_4.2.x86_64.rpm
bind-sdb-9.9.4-51.el7_4.2.x86_64.rpm
bind-sdb-chroot-9.9.4-51.el7_4.2.x86_64.rpm
bind-utils-9.9.4-51.el7_4.2.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/bind-9.9.4-51.el7_4.2.src.rpm



Description of changes:

[32:9.9.4-51.2]
- Fix CVE-2017-3145


ELSA-2018-4018 Important: Oracle Linux 7 microcode_ctl security update

Oracle Linux Security Advisory ELSA-2018-4018

http://linux.oracle.com/errata/ELSA-2018-4018.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
microcode_ctl-2.1-22.5.0.3.el7_4.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/microcode_ctl-2.1-22.5.0.3.el7_4.src.rpm



Description of changes:

[2.1-22.5.0.3]
- Revert Intel 20180108 microcode for CPUIDs: {CVE-2017-5715}
306c3 (06-3c-03 rev 0x23, Haswell);
306d4 (06-3d-04 rev 0x28, Broadwell);
306f2 (06-3f-02 rev 0x3b, Haswell);
306f4 (06-3f-04 rev 0x10, Haswell);
306e4 (06-3e-04 rev 0x42a, Ivy Bridge);
40651 (06-45-01 rev 0x21, Haswell);
40661 (06-46-01 rev 0x18, Haswell);
40671 (06-47-01 rev 0x1b, Broadwell);
406e3 (06-4e-03 rev 0xc2, Skylake);
406f1 (06-4f-01 rev 0xb000025, Broadwell);
50654 (06-55-04 rev 0x200003c, Skylake);
50662 (06-56-02 rev 0x14, Broadwell);
50663 (06-56-03 rev 0x7000011, Broadwell);
506e3 (06-5e-03 rev 0xc2, Skylake);
706a1 (06-7a-01 rev 0x22);
806e9 (06-8e-09 rev 0x80, Kaby Lake);
806ea (06-8e-0a rev 0x80);
906e9 (06-9e-09 rev 0x80, Kaby Lake)
906ea (06-9e-0a rev 0x80);
906eb (06-9e-0b rev 0x80)

ELSA-2018-4019 Important: Oracle Linux 6 microcode_ctl security update

Oracle Linux Security Advisory ELSA-2018-4019

http://linux.oracle.com/errata/ELSA-2018-4019.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
microcode_ctl-1.17-25.4.0.2.el6_9.i686.rpm

x86_64:
microcode_ctl-1.17-25.4.0.2.el6_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/microcode_ctl-1.17-25.4.0.2.el6_9.src.rpm



Description of changes:

[1:1.17-25.4.0.2]
- Revert: early microcode load to allow updating Broadwell model 79
- Revert: Make sure "modprobe microcode" is not executed on Broadwell
model 79
- Revert: Run dracut upon microcode update
- Revert updated Intel 20180108 microcode for CPUIDs: {CVE-2017-5715}
306c3 (06-3c-03 rev 0x23, Haswell);
306d4 (06-3d-04 rev 0x28, Broadwell);
306f2 (06-3f-02 rev 0x3b, Haswell);
306f4 (06-3f-04 rev 0x10, Haswell);
306e4 (06-3e-04 rev 0x42a, Ivy Bridge);
40651 (06-45-01 rev 0x21, Haswell);
40661 (06-46-01 rev 0x18, Haswell);
40671 (06-47-01 rev 0x1b, Broadwell);
406e3 (06-4e-03 rev 0xc2, Skylake);
406f1 (06-4f-01 rev 0xb000025, Broadwell);
50654 (06-55-04 rev 0x200003c, Skylake);
50662 (06-56-02 rev 0x14, Broadwell);
50663 (06-56-03 rev 0x7000011, Broadwell);
506e3 (06-5e-03 rev 0xc2, Skylake);
706a1 (06-7a-01 rev 0x22);
806e9 (06-8e-09 rev 0x80, Kaby Lake);
806ea (06-8e-0a rev 0x80);
906e9 (06-9e-09 rev 0x80, Kaby Lake)
906ea (06-9e-0a rev 0x80);
906eb (06-9e-0b rev 0x80)