Oracle Linux 6278 Published by

A linux-firmware security update has been released for Oracle Linux 9.



ELSA-2023-5068 Moderate: Oracle Linux 9 linux-firmware security update


Oracle Linux Security Advisory ELSA-2023-5068

http://linux.oracle.com/errata/ELSA-2023-5068.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
iwl1000-firmware-39.31.5.1-999.27.el9.noarch.rpm
iwl100-firmware-39.31.5.1-999.27.el9.noarch.rpm
iwl105-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl135-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl2000-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl2030-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl3160-firmware-25.30.13.0-999.27.el9.noarch.rpm
iwl3945-firmware-15.32.2.9-999.27.el9.noarch.rpm
iwl4965-firmware-228.61.2.24-999.27.el9.noarch.rpm
iwl5000-firmware-8.83.5.1_1-999.27.el9.noarch.rpm
iwl5150-firmware-8.24.2.2-999.27.el9.noarch.rpm
iwl6000-firmware-9.221.4.1-999.27.el9.noarch.rpm
iwl6000g2a-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl6000g2b-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl6050-firmware-41.28.5.1-999.27.el9.noarch.rpm
iwl7260-firmware-25.30.13.0-999.27.el9.noarch.rpm
iwlax2xx-firmware-20230516-999.27.el9.noarch.rpm
libertas-sd8686-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
libertas-sd8787-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
libertas-usb8388-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
libertas-usb8388-olpc-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
linux-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
linux-firmware-core-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
linux-firmware-whence-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
liquidio-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
netronome-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm

aarch64:
iwl1000-firmware-39.31.5.1-999.27.el9.noarch.rpm
iwl100-firmware-39.31.5.1-999.27.el9.noarch.rpm
iwl105-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl135-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl2000-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl2030-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl3160-firmware-25.30.13.0-999.27.el9.noarch.rpm
iwl3945-firmware-15.32.2.9-999.27.el9.noarch.rpm
iwl4965-firmware-228.61.2.24-999.27.el9.noarch.rpm
iwl5000-firmware-8.83.5.1_1-999.27.el9.noarch.rpm
iwl5150-firmware-8.24.2.2-999.27.el9.noarch.rpm
iwl6000-firmware-9.221.4.1-999.27.el9.noarch.rpm
iwl6000g2a-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl6000g2b-firmware-18.168.6.1-999.27.el9.noarch.rpm
iwl6050-firmware-41.28.5.1-999.27.el9.noarch.rpm
iwl7260-firmware-25.30.13.0-999.27.el9.noarch.rpm
iwlax2xx-firmware-20230516-999.27.el9.noarch.rpm
libertas-sd8686-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
libertas-sd8787-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
libertas-usb8388-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
libertas-usb8388-olpc-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
linux-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
linux-firmware-core-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
linux-firmware-whence-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
liquidio-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm
netronome-firmware-20230516-999.27.git6c9e0ed5.el9.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//linux-firmware-20230516-999.27.git6c9e0ed5.el9.src.rpm

Related CVEs:

CVE-2023-20593

Description of changes:

[20230516-999.27.git6c9e0ed5.el9]
- Update firmware for qat_4xxx devices (Orabug: 35811008)

[20230516-999.26.git6c9e0ed5.el9]
- Run dracut -f in %posttrans instead of %post (Orabug: 35661938)
- Drop latest AMD microcode commits to family 19 file to include Milan microcode but not Genoa (Orabug: 35708511)

[20230516-999.25.git6c9e0ed5.el9]
- Add missing amd-ucode/ files to nano and core rpm (Orabug: 35642190)
- Add posttrans scriptlet to reload microcode on AMD (Orabug: 35636951)
- Recreate initramfs for AMD systems (Orabug: 35636951)

[20230516-999.24.git6c9e0ed5.el7]
- 8a07fa49 linux-firmware: Update AMD fam19h cpu microcode (Orabug: 35659485)

[20230516-999.23.git6c9e0ed5.el9]
- Firmware files need to be uncompressed for early kernel load to work
- Resolves "Zenbleed" (Orabug: 35650345) {CVE-2023-20593}