The following updates has been released for Oracle Linux:
ELBA-2019-4784 Oracle Linux 7 libvirt bug fix update (aarch64)
ELSA-2019-2729 Critical: Oracle Linux 7 firefox security update (aarch64)
New Ksplice updates for UEKR2 2.6.39 on OL5 and OL6 (ELSA-2019-4777)
New Ksplice updates for UEKR3 3.8.13 on OL6 and OL7 (ELSA-2019-4775)
ELBA-2019-4784 Oracle Linux 7 libvirt bug fix update (aarch64)
ELSA-2019-2729 Critical: Oracle Linux 7 firefox security update (aarch64)
New Ksplice updates for UEKR2 2.6.39 on OL5 and OL6 (ELSA-2019-4777)
New Ksplice updates for UEKR3 3.8.13 on OL6 and OL7 (ELSA-2019-4775)
ELBA-2019-4784 Oracle Linux 7 libvirt bug fix update (aarch64)
Oracle Linux Bug Fix Advisory ELBA-2019-4784
http://linux.oracle.com/errata/ELBA-2019-4784.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
aarch64:
libvirt-5.0.0-15.el7.aarch64.rpm
libvirt-bash-completion-5.0.0-15.el7.aarch64.rpm
libvirt-client-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-config-network-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-config-nwfilter-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-interface-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-lxc-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-network-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-nodedev-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-nwfilter-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-qemu-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-secret-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-core-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-disk-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-gluster-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-logical-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-mpath-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-rbd-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-scsi-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-kvm-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-qemu-5.0.0-15.el7.aarch64.rpm
libvirt-devel-5.0.0-15.el7.aarch64.rpm
libvirt-docs-5.0.0-15.el7.aarch64.rpm
libvirt-libs-5.0.0-15.el7.aarch64.rpm
libvirt-admin-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-lxc-5.0.0-15.el7.aarch64.rpm
libvirt-lock-sanlock-5.0.0-15.el7.aarch64.rpm
libvirt-login-shell-5.0.0-15.el7.aarch64.rpm
libvirt-nss-5.0.0-15.el7.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/libvirt-5.0.0-15.el7.src.rpm
Description of changes:
[5.0.0-15.el7]
- qemu: ensure whole cores during hot(un)plug on Exadata (Menno Lageman)
[Orabug: 30239774]
- qemu: exadata KVM set vcpu granularity must be number of CPUs in core
(Menno Lageman) [Orabug: 30224846]
[5.0.0-14.el7]
- qemuxml2argvdata: Adjust a test for vNUMA nodes and threads per core
match (Wim ten Have) [Orabug: 30189275]
- qemu: Fix vNUMA hotplug request checking the node mapped cores. (Wim
ten Have) [Orabug: 30189275]
- libvirt: Add vNUMA online and hotplug rendered detail (Wim ten Have)
[Orabug: 30189275]
ELSA-2019-2729 Critical: Oracle Linux 7 firefox security update (aarch64)
Oracle Linux Security Advisory ELSA-2019-2729
http://linux.oracle.com/errata/ELSA-2019-2729.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
firefox-60.9.0-1.0.1.el7_7.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/firefox-60.9.0-1.0.1.el7_7.src.rpm
Description of changes:
[60.9.0-1.0.1]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red
Hat file
[60.9.0-1]
- Update to 60.9.0 ESR
New Ksplice updates for UEKR2 2.6.39 on OL5 and OL6 (ELSA-2019-4777)
Synopsis: ELSA-2019-4777 can now be patched using Ksplice
CVEs: CVE-2019-1125
Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2019-4777.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2019-4777.html
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running UEKR2 2.6.39 on
OL5 and OL6 install these updates.
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
DESCRIPTION
* CVE-2019-1125: Information leak in kernel entry code when swapping GS.
A local attacker could speculatively access percpu data using a user
defined GS and leak information about running kernel to facilitate an
attack.
Orabug: 30165287
SUPPORT
Ksplice support is available at ksplice-support_ww@oracle.com.
_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata
New Ksplice updates for UEKR3 3.8.13 on OL6 and OL7 (ELSA-2019-4775)
Synopsis: ELSA-2019-4775 can now be patched using Ksplice
CVEs: CVE-2019-1125
Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2019-4775.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2019-4775.html
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running UEKR3 3.8.13 on
OL6 and OL7 install these updates.
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
DESCRIPTION
* Improved KAISER/KPTI enablement for Ksplice.
* CVE-2019-1125: Information leak in kernel entry code when swapping GS.
A local attacker could speculatively access percpu data using a user
defined GS and leak information about running kernel to facilitate an
attack.
Orabug: 30165288
SUPPORT
Ksplice support is available at ksplice-support_ww@oracle.com.
