Oracle8: ELSA-2022-9481: kernel Important Security Update

Oracle Linux Security Advisory ELSA-2022-9481

https://linux.oracle.com/errata/ELSA-2022-9481.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:


aarch64:
kernel-uek-5.4.17-2136.308.9.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.308.9.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.308.9.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.308.9.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.308.9.el8uek.noarch.rpm


SRPMS:
https://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.308.9.el8uek.src.rpm

Related CVEs:

CVE-2022-21123
CVE-2022-21125
CVE-2022-21127
CVE-2022-21166




Description of changes:

[5.4.17-2136.308.9.el8uek]
- x86/speculation/mmio: Fix late microcode loading (Patrick Colp)  [Orabug: 34276099]

[5.4.17-2136.308.8.el8uek]
- Add debugfs for controlling MMIO state data (Kanth Ghatraju)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- KVM: x86/speculation: Disable Fill buffer clear within guests (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Reuse SRBDS mitigation for SBDS (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/srbds: Update SRBDS mitigation selection (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Add sysfs reporting for Processor MMIO Stale Data (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Enable CPU Fill buffer clearing on idle (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/bugs: Group MDS, TAA & Processor MMIO Stale Data mitigations (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation: Add a common function for MD_CLEAR mitigation update (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- x86/speculation/mmio: Enumerate Processor MMIO Stale Data bug (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}
- Documentation: Add documentation for Processor MMIO Stale Data (Pawan Gupta)  [Orabug: 34202259]  {CVE-2022-21123} {CVE-2022-21127} {CVE-2022-21125} {CVE-2022-21166}

_______________________________________________
El-errata mailing list
[email protected]
https://oss.oracle.com/mailman/listinfo/el-errata

What Are You Looking For?

Popular Tags

Oracle8: ELSA-2022-9481: kernel Important Security Update

Summary

SRPMs

x86_64

aarch64

i386

Important Linux Kernel DoS, Code Execution Bugs Fixed

New GobRAT Remote Access Trojan Targeting Linux Routers in Japan

New Ransomware Group Uses Repurposed LockBit, Babuk Variants

Linux Kernel DoS, Info Disclosure Bugs Fixed

News

Advisories

HOWTOs

Features

Linux Container Security Primer

Email Phishing Using Kali Linux

Is Linux A More Secure Option Than Windows For Businesses?

How Secure Is Linux?

How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation

About Us

Powered By

What Are You Looking For?

Popular Tags

Oracle8: ELSA-2022-9481: kernel Important Security Update

Summary

SRPMs

x86_64

aarch64

i386

Get the Latest News & Insights

Related News

News

Advisories

HOWTOs

Features

About Us

Powered By