Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Oracle Linux 8 ELSA-2022-9481 Critical: Kernel Security Fix

oracle
Calendar Grey June 15, 2022
Oracle Linux Logo Esm H88
The Oracle Linux ELSA-2022-9482 notice underscores a crucial kernel revision targeting multiple significant vulnerabilities.
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

[5.4.17-2136.308.9.el8uek] - x86/speculation/mmio: Fix late microcode loading (Patrick Colp) [Orabug: 34276099] [5.4.17-2136.308.8.el8uek] - Add debugfs for controlling MMIO state data (Kanth Ghatraju) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166} - KVM: x86/speculation: Disable Fill buffer clear within guests (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166} - x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166} - x86/speculation/srbds: Update SRBDS mitigation selection (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166} - x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Pawan Gupta) [Orabug: 34202259] {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166} - x86/speculation/mmio: Enable CPU Fil...

Read the Full Advisory

SRPMs

https://oss.oracle.com:443/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.308.9.el8uek.src.rpm

x86_64

aarch64

kernel-uek-5.4.17-2136.308.9.el8uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.308.9.el8uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.308.9.el8uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.308.9.el8uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.308.9.el8uek.noarch.rpm

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2022-21123 CVE-2022-21125 CVE-2022-21127 CVE-2022-21166

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.