An Unbreakable Enterprise kernel security update has been released for Oracle Linux 7.
Oracle Linux Security Advisory ELSA-2020-5528
http://linux.oracle.com/errata/ELSA-2020-5528.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
kernel-uek-4.14.35-1902.10.4.1.el7uek.x86_64.rpm
kernel-uek-debug-4.14.35-1902.10.4.1.el7uek.x86_64.rpm
kernel-uek-debug-devel-4.14.35-1902.10.4.1.el7uek.x86_64.rpm
kernel-uek-devel-4.14.35-1902.10.4.1.el7uek.x86_64.rpm
kernel-uek-tools-4.14.35-1902.10.4.1.el7uek.x86_64.rpm
kernel-uek-doc-4.14.35-1902.10.4.1.el7uek.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-4.14.35-1902.10.4.1.el7uek.src.rpm
Description of changes:
[4.14.35-1902.10.4.1.el7uek] - IB/mlx4: Fix use after free in RDMA CM
disconnect code path (Manjunath Patil) [Orabug: 30815818]
- IB/mlx4: Fix leak in id_map_find_del (Håkon Bugge) [Orabug: 30815811]
- RDMA/cma: Relax device check in cma_match_net_dev() (Håkon Bugge)
[Orabug: 30815802]
- KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID
(CVE-2019-19332) (Paolo Bonzini) [Orabug: 30815773] {CVE-2019-19332}