Oracle Linux Security Advisory ELSA-2022-9199

http://linux.oracle.com/errata/ELSA-2022-9199.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
kernel-uek-5.4.17-2136.304.4.4.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.304.4.4.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.304.4.4.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.304.4.4.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.304.4.4.el8uek.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.304.4.4.el8uek.src.rpm

Related CVEs:

CVE-2021-26341




Description of changes:

[5.4.17-2136.304.4.4.el8uek]
- arm64: Use the clearbhb instruction in mitigations (James Morse)  [Orabug: 33921646]
- arm64: add ID_AA64ISAR2_EL1 sys register (Joey Gouly)  [Orabug: 33921646]
- KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated (James Morse)  [Orabug: 33921646]
- arm64: Mitigate spectre style branch history side channels (James Morse)  [Orabug: 33921646]
- KVM: arm64: Add templates for BHB mitigation sequences (James Morse)  [Orabug: 33921646]
- arm64: Add Cortex-X2 CPU part definition (Anshuman Khandual)  [Orabug: 33921646]
- arm64: Add Neoverse-N2, Cortex-A710 CPU part definition (Suzuki K Poulose)  [Orabug: 33921646]
- arm64: Add part number for Arm Cortex-A77 (Rob Herring)  [Orabug: 33921646]
- arm64: proton-pack: Report Spectre-BHB vulnerabilities as part of Spectre-v2 (James Morse)  [Orabug: 33921646]
- arm64: Add percpu vectors for EL1 (James Morse)  [Orabug: 33921646]
- arm64: entry: Add macro for reading symbol addresses from the trampoline (James Morse)  [Orabug: 33921646]
- arm64: entry: Add vectors that have the bhb mitigation sequences (James Morse)  [Orabug: 33921646]
- arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations (James Morse)  [Orabug: 33921646]
- arm64: entry: Allow the trampoline text to occupy multiple pages (James Morse)  [Orabug: 33921646]
- arm64: entry: Make the kpti trampoline's kpti sequence optional (James Morse)  [Orabug: 33921646]
- arm64: entry: Move trampoline macros out of ifdef'd section (James Morse)  [Orabug: 33921646]
- arm64: entry: Don't assume tramp_vectors is the start of the vectors (James Morse)  [Orabug: 33921646]
- arm64: entry: Allow tramp_alias to access symbols after the 4K boundary (James Morse)  [Orabug: 33921646]
- arm64: entry: Move the trampoline data page before the text page (James Morse)  [Orabug: 33921646]
- arm64: entry: Free up another register on kpti's tramp_exit path (James Morse)  [Orabug: 33921646]
- arm64: entry: Make the trampoline cleanup optional (James Morse)  [Orabug: 33921646]
- arm64: entry.S: Add ventry overflow sanity checks (James Morse)  [Orabug: 33921646]
- Revert "BACKPORT: VARIANT 2: arm64: Add initial retpoline support" (Russell King)  [Orabug: 33921646]
- Revert "BACKPORT: VARIANT 2: arm64: asm: Use *_nospec variants for blr and br." (Russell King)  [Orabug: 33921646]
- Revert "BACKPORT: VARIANT 2: arm64: Add MIDR_APM_POTENZA." (Russell King)  [Orabug: 33921646]
- Revert "BACKPORT: VARIANT 2: arm64: insn: Add offset getter/setter for adr." (Russell King)  [Orabug: 33921646]
- Revert "BACKPORT: VARIANT 2: arm64: alternatives: Add support for adr/adrp with offset in alt block." (Russell King)  [Orabug: 33921646]
- Revert "BACKPORT: VARIANT 2: arm64: Use alternative framework for retpoline." (Russell King)  [Orabug: 33921646]
- Revert "Arm64: add retpoline to cpu_show_spectre_v2" (Russell King)  [Orabug: 33921646]
- Revert "arm64: retpoline: Don't use retpoline in KVM's HYP part." (Russell King)  [Orabug: 33921646]
- Revert "uek-rpm: aarch64 config enable RETPOLINE" (Russell King)  [Orabug: 33921646]
- Revert "uek-rpm: aarch64 config enable RETPOLINE OL8" (Russell King)  [Orabug: 33921646]
- x86/speculation: Add knob for eibrs_retpoline_enabled (Patrick Colp)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Extend our code to properly support eibrs+lfence and eibrs+retpoline (Patrick Colp)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Update link to AMD speculation whitepaper (Kim Phillips)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Use generic retpoline by default on AMD (Kim Phillips)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting (Josh Poimboeuf)  [Orabug: 33922121]  {CVE-2021-26341}
- Documentation/hw-vuln: Update spectre doc (Peter Zijlstra)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Add eIBRS + Retpoline options (Peter Zijlstra)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE (Peter Zijlstra (Intel))  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Merge one test in spectre_v2_user_select_mitigation() (Borislav Petkov)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Update ALTERNATIVEs to (more closely) match upstream (Patrick Colp)  [Orabug: 33922121]  {CVE-2021-26341}
- x86/speculation: Fix bug in retpoline mode on AMD with `spectre_v2=none` (Patrick Colp)  [Orabug: 33922121]  {CVE-2021-26341}
- bpf: Add kconfig knob for disabling unpriv bpf by default (Daniel Borkmann)  [Orabug: 33926314]


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle8: ELSA-2022-9199: kernel Important Security Update

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

[5.4.17-2136.304.4.4.el8uek] - arm64: Use the clearbhb instruction in mitigations (James Morse) [Orabug: 33921646] - arm64: add ID_AA64ISAR2_EL1 sys register (Joey Gouly) [Orabug: 33921646] - KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered and migrated (James Morse) [Orabug: 33921646] - arm64: Mitigate spectre style branch history side channels (James Morse) [Orabug: 33921646] - KVM: arm64: Add templates for BHB mitigation sequences (James Morse) [Orabug: 33921646] - arm64: Add Cortex-X2 CPU part definition (Anshuman Khandual) [Orabug: 33921646] - arm64: Add Neoverse-N2, Cortex-A710 CPU part definition (Suzuki K Poulose) [Orabug: 33921646] - arm64: Add part number for Arm Cortex-A77 (Rob Herring) [Orabug: 33921646] - arm64: proton-pack: Report Spectre-BHB vulnerabilities as part of Spectre-v2 (James Morse) [Orabug: 33921646] - arm64: Add percpu vectors for EL1 (James Morse) [Orabug: 33921646] - arm64: entry: Add macro for reading symbol addresses from the trampoline (James Morse) [Orabug: 33921646] - arm64: entry: Add vectors that have the bhb mitigation sequences (James Morse) [Orabug: 33921646] - arm64: entry: Add non-kpti __bp_harden_el1_vectors for mitigations (James Morse) [Orabug: 33921646] - arm64: entry: Allow the trampoline text to occupy multiple pages (James Morse) [Orabug: 33921646] - arm64: entry: Make the kpti trampoline's kpti sequence optional (James Morse) [Orabug: 33921646] - arm64: entry: Move trampoline macros out of ifdef'd section (James Morse) [Orabug: 33921646] - arm64: entry: Don't assume tramp_vectors is the start of the vectors (James Morse) [Orabug: 33921646] - arm64: entry: Allow tramp_alias to access symbols after the 4K boundary (James Morse) [Orabug: 33921646] - arm64: entry: Move the trampoline data page before the text page (James Morse) [Orabug: 33921646] - arm64: entry: Free up another register on kpti's tramp_exit path (James Morse) [Orabug: 33921646] - arm64: entry: Make the trampoline cleanup optional (James Morse) [Orabug: 33921646] - arm64: entry.S: Add ventry overflow sanity checks (James Morse) [Orabug: 33921646] - Revert "BACKPORT: VARIANT 2: arm64: Add initial retpoline support" (Russell King) [Orabug: 33921646] - Revert "BACKPORT: VARIANT 2: arm64: asm: Use *_nospec variants for blr and br." (Russell King) [Orabug: 33921646] - Revert "BACKPORT: VARIANT 2: arm64: Add MIDR_APM_POTENZA." (Russell King) [Orabug: 33921646] - Revert "BACKPORT: VARIANT 2: arm64: insn: Add offset getter/setter for adr." (Russell King) [Orabug: 33921646] - Revert "BACKPORT: VARIANT 2: arm64: alternatives: Add support for adr/adrp with offset in alt block." (Russell King) [Orabug: 33921646] - Revert "BACKPORT: VARIANT 2: arm64: Use alternative framework for retpoline." (Russell King) [Orabug: 33921646] - Revert "Arm64: add retpoline to cpu_show_spectre_v2" (Russell King) [Orabug: 33921646] - Revert "arm64: retpoline: Don't use retpoline in KVM's HYP part." (Russell King) [Orabug: 33921646] - Revert "uek-rpm: aarch64 config enable RETPOLINE" (Russell King) [Orabug: 33921646] - Revert "uek-rpm: aarch64 config enable RETPOLINE OL8" (Russell King) [Orabug: 33921646] - x86/speculation: Add knob for eibrs_retpoline_enabled (Patrick Colp) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Extend our code to properly support eibrs+lfence and eibrs+retpoline (Patrick Colp) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Update link to AMD speculation whitepaper (Kim Phillips) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Use generic retpoline by default on AMD (Kim Phillips) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting (Josh Poimboeuf) [Orabug: 33922121] {CVE-2021-26341} - Documentation/hw-vuln: Update spectre doc (Peter Zijlstra) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Add eIBRS + Retpoline options (Peter Zijlstra) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE (Peter Zijlstra (Intel)) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Merge one test in spectre_v2_user_select_mitigation() (Borislav Petkov) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Update ALTERNATIVEs to (more closely) match upstream (Patrick Colp) [Orabug: 33922121] {CVE-2021-26341} - x86/speculation: Fix bug in retpoline mode on AMD with `spectre_v2=none` (Patrick Colp) [Orabug: 33922121] {CVE-2021-26341} - bpf: Add kconfig knob for disabling unpriv bpf by default (Daniel Borkmann) [Orabug: 33926314]

SRPMs

http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.304.4.4.el8uek.src.rpm

x86_64

aarch64

kernel-uek-5.4.17-2136.304.4.4.el8uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.304.4.4.el8uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.304.4.4.el8uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.304.4.4.el8uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.304.4.4.el8uek.noarch.rpm

i386

Severity
Related CVEs: CVE-2021-26341

Related News

4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved