Oracle Linux 7 ELSA-2024-12274 Crucial: Kernel Container Security Patch
oracle
April 10, 2024
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
Summary
[5.4.17-2136.330.7.1.el7] - KVM: x86: Add BHI_NO (Daniel Sneddon) [Orabug: 36384803] {CVE-2024-2201} - x86/bhi: Mitigate KVM by default (Pawan Gupta) [Orabug: 36384803] {CVE-2024-2201} - x86/bhi: Add BHI mitigation knob (Pawan Gupta) [Orabug: 36384803] {CVE-2024-2201} - x86/bhi: Enumerate Branch History Injection (BHI) bug (Pawan Gupta) [Orabug: 36384803] {CVE-2024-2201} - x86/bhi: Define SPEC_CTRL_BHI_DIS_S (Daniel Sneddon) [Orabug: 36384803] {CVE-2024-2201} - x86/bhi: Add support for clearing branch history at syscall entry (Pawan Gupta) [Orabug: 36384803] {CVE-2024-2201} - x86/cpufeature: Add missing leaf enumeration (Daniel Sneddon) [Orabug: 36384803] {CVE-2024-2201} - KVM: x86: Use a switch statement and macros in __feature_translate() (Jim Mattson) [Orabug: 36384803] {CVE-2024-2201} - KVM: x86: Advertise CPUID.(EAX=7,ECX=2):EDX[5:0] to userspace (Jim Mattson) [Orabug: 36384803] {CVE-2024-2201} - KVM: x86: Update KVM-only leaf handling to allow for 100% KVM-o...
Read the Full Advisory
SRPMs
https://oss.oracle.com:443/ol7/SRPMS-updates//kernel-uek-container-5.4.17-2136.330.7.1.el7.src.rpm
x86_64
kernel-uek-container-5.4.17-2136.330.7.1.el7.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.330.7.1.el7.x86_64.rpm
aarch64
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Related CVEs: CVE-2024-2201
CVE-2024-0607
CVE-2024-0340
CVE-2024-1086
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!