An Unbreakable Enterprise kernel security update has been released for Oracle Linux 7.

El-errata: ELSA-2020-5791 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2020-5791

  http://linux.oracle.com/errata/ELSA-2020-5791.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
kernel-uek-4.14.35-1902.304.6.3.el7uek.x86_64.rpm
kernel-uek-debug-4.14.35-1902.304.6.3.el7uek.x86_64.rpm
kernel-uek-debug-devel-4.14.35-1902.304.6.3.el7uek.x86_64.rpm
kernel-uek-devel-4.14.35-1902.304.6.3.el7uek.x86_64.rpm
kernel-uek-tools-4.14.35-1902.304.6.3.el7uek.x86_64.rpm
kernel-uek-doc-4.14.35-1902.304.6.3.el7uek.noarch.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-4.14.35-1902.304.6.3.el7uek.src.rpm


Description of changes:

[4.14.35-1902.304.6.3.el7uek]
- Revert "uek-rpm: Move grub boot menu update to posttrans stage." (Somasundaram Krishnasamy) [Orabug: 31358100]

[4.14.35-1902.304.6.2.el7uek]
- certs: Remove Oracle cert compiled into the kernel (Eric Snowberg) [Orabug: 31668611]
- efi: Restrict efivar_ssdt_load when the kernel is locked down (Matthew Garrett) [Orabug: 31662729] {CVE-2019-20908}

[4.14.35-1902.304.6.1.el7uek]
- IB/sa: Resolv use-after-free in ib_nl_make_request() (Divya Indi) [Orabug: 31652801]