Unbreakable Enterprise Kernel Security Update for Oracle Linux 6
Posted on: 01/20/2018 09:31 AM

An updated enterprise kernel is available for Oracle Linux 6

Unbreakable Enterprise Kernel Security Update for Oracle Linux 6


Oracle Linux Security Advisory ELSA-2018-4017

http://linux.oracle.com/errata/ELSA-2018-4017.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

x86_64:
kernel-uek-4.1.12-112.14.13.el6uek.x86_64.rpm
kernel-uek-doc-4.1.12-112.14.13.el6uek.noarch.rpm
kernel-uek-firmware-4.1.12-112.14.13.el6uek.noarch.rpm
kernel-uek-devel-4.1.12-112.14.13.el6uek.x86_64.rpm
kernel-uek-debug-4.1.12-112.14.13.el6uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-112.14.13.el6uek.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-4.1.12-112.14.13.el6uek.src.rpm



Description of changes:

[4.1.12-112.14.13.el6uek]
- Revert "kernel.spec: Require the new microcode_ctl." (Brian Maly)

[4.1.12-112.14.12.el6uek]
- xen-blkback: add pending_req allocation stats (Ankur Arora) [Orabug:
27386890]
- xen-blkback: move indirect req allocation out-of-line (Ankur Arora)
[Orabug: 27386890]
- xen-blkback: pull nseg validation out in a function (Ankur Arora)
[Orabug: 27386890]
- xen-blkback: make struct pending_req less monolithic (Ankur Arora)
[Orabug: 27386890]
- x86: Clean up IBRS functionality resident in common code (Kanth
Ghatraju) [Orabug: 27403317]
- x86: Display correct settings for the SPECTRE_V2 bug (Kanth Ghatraju)
[Orabug: 27403317]
- Set CONFIG_GENERIC_CPU_VULNERABILITIES flag (Kanth Ghatraju) [Orabug:
27403317]
- x86/cpu: Implement CPU vulnerabilites sysfs functions (Thomas
Gleixner) [Orabug: 27403317]
- sysfs/cpu: Fix typos in vulnerability documentation (David Woodhouse)
[Orabug: 27403317]
- sysfs/cpu: Add vulnerability folder (Thomas Gleixner) [Orabug: 27403317]
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (David Woodhouse) [Orabug:
27403317]
- x86/cpufeatures: Add X86_BUG_CPU_MELTDOWN (Kanth Ghatraju) [Orabug:
27403317]
- KVM: x86: Add memory barrier on vmcs field lookup (Andrew Honig)
{CVE-2017-5753}
- KVM: VMX: remove I/O port 0x80 bypass on Intel hosts (Andrew Honig)
[Orabug: 27402301] {CVE-2017-1000407} {CVE-2017-1000407}
- xfs: give all workqueues rescuer threads (Chris Mason) [Orabug:
27397568]
- ixgbevf: handle mbox_api_13 in ixgbevf_change_mtu (Joao Martins)
[Orabug: 27397001]



Printed from Linux Compatible (https://www.linuxcompatible.org/news/story/unbreakable_enterprise_kernel_security_update_for_oracle_linux_6.html)