Oracle Linux 6277 Published by

An Oracle Linux Cloud Native Environment 1.0 Unbreakable Enterprise kernel-container security update has been released.



El-errata: ELSA-2021-9422 Important: Oracle Linux Cloud Native Environment 1.0 Unbreakable Enterprise kernel-container security update


Oracle Linux Cloud Native Environment Security Advisory ELSA-2021-9422

  http://linux.oracle.com/errata/ELSA-2021-9422.html

The following updated rpms for Oracle Linux Cloud Native Environment 1.0 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-container-4.14.35-2047.506.10.el7.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-container-4.14.35-2047.506.10.el7.src.rpm

Related CVEs:

CVE-2021-3653
CVE-2021-3656



Description of changes:

[4.14.35-2047.506.10.el7]
- Revert "rds/ib: reap tx completions during connection shutdown" (Manjunath Patil) [Orabug: 33220435]
- Revert "rds/ib: handle posted ACK during connection shutdown" (Manjunath Patil) [Orabug: 33220435]
- Revert "rds/ib: recover rds connection from interrupt loss scenario" (Manjunath Patil) [Orabug: 33220435]
- Revert "rds/ib: move rds_ib_clear_irq_miss() to .h file" (Manjunath Patil) [Orabug: 33220435]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested (Maxim Levitsky) [Orabug: 33205367] {CVE-2021-3656}
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (Maxim Levitsky) [Orabug: 33205444] {CVE-2021-3653}