Oracle Linux 6279 Published by

Updated kernels has been released for Oracle Linux 5 and 6:

ELSA-2018-4110 Important: Oracle Linux 5 Extended Lifecycle Support (ELS) Unbreakable Enterprise kernel security update
ELSA-2018-4110 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update



ELSA-2018-4110 Important: Oracle Linux 5 Extended Lifecycle Support (ELS) Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2018-4110

http://linux.oracle.com/errata/ELSA-2018-4110.html

The following updated rpms for Oracle Linux 5 Extended Lifecycle Support
(ELS) have been uploaded to the Unbreakable Linux Network:

i386:
kernel-uek-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-debug-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-debug-devel-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-devel-2.6.39-400.299.1.el5uek.i686.rpm
kernel-uek-doc-2.6.39-400.299.1.el5uek.noarch.rpm
kernel-uek-firmware-2.6.39-400.299.1.el5uek.noarch.rpm

x86_64:
kernel-uek-firmware-2.6.39-400.299.1.el5uek.noarch.rpm
kernel-uek-doc-2.6.39-400.299.1.el5uek.noarch.rpm
kernel-uek-2.6.39-400.299.1.el5uek.x86_64.rpm
kernel-uek-devel-2.6.39-400.299.1.el5uek.x86_64.rpm
kernel-uek-debug-devel-2.6.39-400.299.1.el5uek.x86_64.rpm
kernel-uek-debug-2.6.39-400.299.1.el5uek.x86_64.rpm




Description of changes:

[2.6.39-400.299.1.el5uek]
- ext4/jbd2: don't wait (forever) for stale tid caused by wraparound
(Theodore Ts'o) [Orabug: 26424268]
- jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [Orabug:
26424268]
- ext4: fix data corruption in inodes with journalled data (Jan Kara)
[Orabug: 26424268]
- media: imon: Fix null-ptr-deref in imon_probe (Arvind Yadav) [Orabug:
27208383] {CVE-2017-16537}
- Input: gtco - fix potential out-of-bound access (Dmitry Torokhov)
[Orabug: 27215095] {CVE-2017-16643}
- RDS: IB: Fix null pointer issue (Guanglei Li) [Orabug: 27241654]
- usb: usbtest: fix NULL pointer dereference (Alan Stern) [Orabug:
27602321] {CVE-2017-16532}
- vfs,proc: guarantee unique inodes in /proc (Linus Torvalds) [Orabug:
27637293]
- vfs: dont chain pipe/anon/socket on superblock s_inodes list (Eric
Dumazet) [Orabug: 27637293]
- fuse: fix deadlock caused by wrong locking order (Junxiao Bi)
[Orabug: 27719848]
- jbd: don't wait (forever) for stale tid caused by wraparound (Jan
Kara) [Orabug: 27734012]
- netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
(Florian Westphal) [Orabug: 27774010] {CVE-2018-1068}
- x86/spec: set_ibrs[ibpb]_disabled() should disable
ibrs[ibpb]_admin_disabled (Krish Sadhukhan) [Orabug: 27788624]
- x86/spec: Fix wrong output from sysfs (Krish Sadhukhan) [Orabug:
27795350]
- x86/spec: Fix spectre_v1 bug and mitigation indicators (John Haxby)
[Orabug: 27811437]
- ext4: add validity checks for bitmap block numbers (Theodore Ts'o)
[Orabug: 27854370] {CVE-2018-1093} {CVE-2018-1093}
- x86/microcode: probe CPU features on microcode update (Ankur Arora)
[Orabug: 27878228]
- x86/microcode: microcode_write() should not reference boot_cpu_data
(Ankur Arora) [Orabug: 27878228]
- x86/cpufeatures: use cpu_data in scan_spec_ctrl_features and
rescan_spec_ctrl_features (Ankur Arora) [Orabug: 27878228]
- USB: core: prevent malicious bNumInterfaces overflow (Alan Stern)
[Orabug: 27898064] {CVE-2017-17558}
- retpoline: microcode incorrectly reported as broken during early boot
(Chuck Anderson) [Orabug: 27915293]
- x86/spec: scan_spec_ctrl_feature should be executed only for cpu_index
0 (Krish Sadhukhan) [Orabug: 27915355]
- RDS: Heap OOB write in rds_message_alloc_sgs() (Mohamed Ghannam)
[Orabug: 27934081] {CVE-2018-5332}
- xfs: set format back to extents if xfs_bmap_extents_to_btree (Eric
Sandeen) [Orabug: 27989490] {CVE-2018-10323}
- net/rds: Fix endless RNR situation (Håkon Bugge) [Orabug: 27645402]
- x86/entry/64: Dont use IST entry for #BP stack (Andy Lutomirski)
{CVE-2018-8897}
- perf/hwbp: Simplify the perf-hwbp code, fix documentation (Linus
Torvalds) [Orabug: 27947612] {CVE-2018-100199}
- xen-netfront: fix rx stall when req_prod_pvt goes back to more than
zero again (Dongli Zhang) [Orabug: 25053376]
- x86/IBRS: Remove support for IBRS_ENABLED_USER mode (Boris Ostrovsky)
[Orabug: 27430615]
- x86/microcode/intel: Disable late loading on model 79 (Borislav
Petkov) [Orabug: 27343579]
- ALSA: usb-audio: Kill stray URB at exiting (Takashi Iwai) [Orabug:
27148283] {CVE-2017-16527}
- uwb: properly check kthread_run return value (Andrey Konovalov)
[Orabug: 27206900] {CVE-2017-16526}
- HID: usbhid: fix out-of-bounds bug (Jaejoong Kim) [Orabug: 27207935]
{CVE-2017-16533}
- cx231xx-cards: fix NULL-deref on missing association descriptor (Johan
Hovold) [Orabug: 27208080] {CVE-2017-16536}
- net: cdc_ether: fix divide by 0 on bad descriptors (Bjørn Mork)
[Orabug: 27215206] {CVE-2017-16649}
- Bluetooth: bnep: bnep_add_connection() should verify that it's dealing
with l2cap socket (Al Viro) [Orabug: 27344787] {CVE-2017-15868}
- Bluetooth: hidp: verify l2cap sockets (David Herrmann) [Orabug:
27344787] {CVE-2017-15868}
- ALSA: pcm: prevent UAF in snd_pcm_info (Robb Glasser) [Orabug:
27344840] {CVE-2017-0861} {CVE-2017-0861}
- Addendum: x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early
Spectre v2 microcodes (David Woodhouse) [Orabug: 27516441]
- x86/cpufeature: Add X86_FEATURE_IA32_ARCH_CAPS and
X86_FEATURE_IBRS_ATT (David Woodhouse) [Orabug: 27649498] {CVE-2017-5715}
- x86/cpufeatures: Clean up Spectre v2 related CPUID flags (David
Woodhouse) [Orabug: 27649510] {CVE-2017-5715}
- x86/spectre: Now that we expose 'stbibp' make sure it is correct.
(Konrad Rzeszutek Wilk) [Orabug: 27649631] {CVE-2017-5715}
- x86/speculation: Add basic IBPB (Indirect Branch Prediction Barrier)
support (KarimAllah Ahmed) [Orabug: 27649640] {CVE-2017-5715}
- x86: Add STIBP feature enumeration (David Woodhouse) [Orabug:
27649693] {CVE-2017-5715}
- x86/cpu/AMD: Add speculative control support for AMD (Tom Lendacky)
[Orabug: 27649706] {CVE-2017-5715}
- x86/spectre_v2: Don't spam the console with these: (Konrad Rzeszutek
Wilk) [Orabug: 27649723] {CVE-2017-5715}
- x86/spectre_v2: Remove 0xc2 from spectre_bad_microcodes (Darren Kenny)
[Orabug: 27600848]
- Revert "x86/spec_ctrl: Add 'nolfence' knob to disable fallback for
spectre_v2 mitigation" (Konrad Rzeszutek Wilk) [Orabug: 27601773]
- x86/syscall: run syscall exit code with extra registers cleared
(Alexandre Chartre) [Orabug: 27501176]
- x86/syscall: run syscall-specific code with extra registers cleared
(Alexandre Chartre) [Orabug: 27501176]
- x86/syscall: run syscall entry code with extra registers cleared
(Alexandre Chartre) [Orabug: 27501176]
- x86/spectre: Drop the warning about ibrs being obsolete (Konrad
Rzeszutek Wilk) [Orabug: 27518974]
- x86: Include linux/device.h in bugs_64.c (Boris Ostrovsky) [Orabug:
27519044]
- x86: fix mitigation details of UEK2 spectre v1 (Konrad Rzeszutek Wilk)
[Orabug: 27509909]
- x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early Spectre v2
microcodes (David Woodhouse) [Orabug: 27516441] {CVE-2017-5715}
- x86, intel: Output microcode revision in /proc/cpuinfo (Andi Kleen)
[Orabug: 27516441]
- x86: intel-family.h: Add GEMINI_LAKE SOC (Len Brown) [Orabug: 27516441]
- x86/cpu/intel: Introduce macros for Intel family numbers (Dave Hansen)
[Orabug: 27516441]
- x86/mitigation/spectre_v2: Add reporting of 'lfence' (Konrad Rzeszutek
Wilk) [Orabug: 27525958]
- x86/spec: Add 'lfence_enabled' in sysfs (Konrad Rzeszutek Wilk)
[Orabug: 27525954]
- x86/spec_ctrl: Add 'nolfence' knob to disable fallback for spectre_v2
mitigation (Konrad Rzeszutek Wilk) [Orabug: 27525923]
- x86/spec: Also print IBRS if IBPB is disabled (Konrad Rzeszutek Wilk)
[Orabug: 27519083]
- x86: Use Indirect Branch Prediction Barrier in context switch (Tim
Chen) [Orabug: 27516378]
- ext4: limit group search loop for non-extent files (Lachlan McIlroy)
[Orabug: 17488415]
- ext4: fixup 64-bit divides in 3.0-stable backport of upstream fix
(Todd Poynor) [Orabug: 17488415]
- ext4: use atomic64_t for the per-flexbg free_clusters count (Theodore
Ts'o) [Orabug: 17488415]
- ext4: init pagevec in ext4_da_block_invalidatepages (Eric Sandeen)
[Orabug: 17488415]
- ext4: do not try to write superblock on ro remount w/o journal
(Michael Tokarev) [Orabug: 17488415]
- xen-netback: fix grant_copy_op array size (Niranjan Patil) [Orabug:
25653941]
- xen-netback: explicitly check max_slots_needed against meta_prod
counter (Niranjan Patil) [Orabug: 25653941]
- xen-netback: Fix handling of skbs requiring too many slots (Zoltan
Kiss) [Orabug: 25653941]
- xen-netback: worse-case estimate in xenvif_rx_action is
underestimating (Paul Durrant) [Orabug: 25653941]
- xen-netback: Add worse-case estimates of max_slots_needed in
netbk_rx_action (Niranjan Patil) [Orabug: 25653941]
- KEYS: Remove key_type::match in favour of overriding default by
match_preparse (Tim Tianyang Chen) [Orabug: 25757946] {CVE-2017-6951}
- xen/mmu: Call xen_cleanhighmap() with 4MB aligned for page tables
mapping (Zhenzhong Duan) [Orabug: 26737475]
- tcp: initialize rcv_mss to TCP_MIN_MSS instead of 0 (Wei Wang)
[Orabug: 26813391] {CVE-2017-14106}
- rxrpc: Fix several cases where a padded len isn't checked in ticket
decode (David Howells) [Orabug: 26880520] {CVE-2017-7482} {CVE-2017-7482}
- ocfs2: fstrim: Fix start offset of first cluster group during fstrim
(Ashish Samant) [Orabug: 27099836]
- Check validity of cl_rpcclient in nfs_server_list_show (Malahal
Naineni) [Orabug: 27112186]
- USB: serial: console: fix use-after-free after failed setup (Johan
Hovold) [Orabug: 27206839] {CVE-2017-16525}
- ALSA: usb-audio: Check out-of-bounds access by corrupted buffer
descriptor (Takashi Iwai) [Orabug: 27206934] {CVE-2017-16529}
- USB: fix out-of-bounds in usb_set_configuration (Greg Kroah-Hartman)
[Orabug: 27207243] {CVE-2017-16531}
- dccp: CVE-2017-8824: use-after-free in DCCP code (Mohamed Ghannam)
[Orabug: 27290308] {CVE-2017-8824}
- x86: Use PRED_CMD MSR when ibpb is enabled (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec: Don't print the Missing arguments for option spectre_v2
(Konrad Rzeszutek Wilk) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Move ENABLE_IBRS in the interrupt macro (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- Add set_ibrs_disabled and set_ibpb_disabled (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/boot: Add early cmdline parsing for options with arguments (Tom
Lendacky) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86, boot: Carve out early cmdline parsing function (Borislav Petkov)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Fix kABI build breakage (Konrad Rzeszutek Wilk) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Add command-line options 'spectre_v2' and 'nospectre_v2' (Kanth
Ghatraju) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/mm: Set IBPB upon context switch (Brian Maly) [Orabug: 27369777]
{CVE-2017-5715} {CVE-2017-5753}
- x86: Display correct settings for the SPECTRE_V2 bug (Kanth Ghatraju)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- Set CONFIG_GENERIC_CPU_VULNERABILITIES flag (Kanth Ghatraju) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/cpu: Implement CPU vulnerabilites sysfs functions (Thomas
Gleixner) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- sysfs/cpu: Fix typos in vulnerability documentation (David Woodhouse)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- sysfs/cpu: Add vulnerability folder (Thomas Gleixner) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86, cpu: Expand cpufeature facility to include cpu bugs (Borislav
Petkov) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (David Woodhouse) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/cpufeatures: Add X86_BUG_CPU_MELTDOWN (Kanth Ghatraju) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec: STUFF_RSB _before_ ENABLE_IBRS (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Move STUFF_RSB in to the idt macro (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/IBRS/IBPB: Set sysctl_ibrs/ibpb_enabled properly (Boris Ostrovsky)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/IBRS: Make sure we restore MSR_IA32_SPEC_CTRL to a valid value
(Boris Ostrovsky) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Add missing 'lfence' when IBRS is not supported (Konrad
Rzeszutek Wilk) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/ia32: Move STUFF_RSB And ENABLE_IBRS (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform (Tim
Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Use IBRS for firmware update path (David Woodhouse) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Disable if running as Xen PV guest (Konrad Rzeszutek
Wilk) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/microcode: Recheck IBRS features on microcode reload (Tim Chen)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/idle: Disable IBRS entering idle and enable it on wakeup (Tim
Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
(Tim Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/enter: Use IBRS on syscall and interrupts (Tim Chen) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/enter: MACROS to set/clear IBRS and set IBPB (Tim Chen) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/feature: Detect the x86 IBRS feature to control Speculation (Tim
Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: fix build breakage (Brian Maly) [Orabug: 27346425] {CVE-2017-5753}
- kaiser: rename X86_FEATURE_KAISER to X86_FEATURE_PTI to match upstream
(Mike Kravetz) {CVE-2017-5754}
- x86/kaiser: Check boottime cmdline params (Mike Kravetz) [Orabug:
27333761] {CVE-2017-5754}
- x86/kaiser: Rename and simplify X86_FEATURE_KAISER handling (Borislav
Petkov) [Orabug: 27333761] {CVE-2017-5754}
- KPTI: Report when enabled (Mike Kravetz) [Orabug: 27333761]
{CVE-2017-5754}
- PTI: unbreak EFI old_memmap (Jiri Kosina) [Orabug: 27333761] [Orabug:
27333760] {CVE-2017-5754}
- kaiser: Set _PAGE_NX only if supported (Guenter Roeck) [Orabug:
27333761] [Orabug: 27333760] {CVE-2017-5754}
- KPTI: Rename to PAGE_TABLE_ISOLATION (Kees Cook) [Orabug: 27333761]
{CVE-2017-5754}
- kaiser: kaiser_flush_tlb_on_return_to_user() check PCID (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- kaiser: asm/tlbflush.h handle noPGE at lower level (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- kaiser: use ALTERNATIVE instead of x86_cr3_pcid_noflush (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- x86/alternatives: add asm ALTERNATIVE macro (Mike Kravetz) [Orabug:
27333761] {CVE-2017-5754}
- x86/kaiser: Reenable PARAVIRT, dynamically disable KAISER if PARAVIRT
(Borislav Petkov) [Orabug: 27333761] {CVE-2017-5754}
- kaiser: add "nokaiser" boot option, using ALTERNATIVE (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- x86-32: Fix boot with CONFIG_X86_INVD_BUG (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754}
- kaiser: alloc_ldt_struct() use get_zeroed_page() (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- kaiser: user_map __kprobes_text too (Hugh Dickins) [Orabug: 27333761]
{CVE-2017-5754}
- x86/mm/kaiser: re-enable vsyscalls (Andrea Arcangeli) [Orabug:
27333761] {CVE-2017-5754}
- KAISER: Kernel Address Isolation (Hugh Dickins) [Orabug: 27333761]
{CVE-2017-5754}
- x86/mm: fix bad backport to disable PCID on Xen (Borislav Petkov)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm/64: Fix reboot interaction with CR4.PCIDE (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Enable CR4.PCIDE on supported systems (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Add the 'nopcid' boot option to turn off PCID (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Disable PCID on 32-bit kernels (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Remove the UP asm/tlbflush.h code, always use the (formerly)
SMP code (Andy Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- sched/core: Idle_task_exit() shouldn't use switch_mm_irqs_off() (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm, sched/core: Uninline switch_mm() (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- sched/core: Add switch_mm_irqs_off() and use it in the scheduler (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- mm/mmu_context, sched/core: Fix mmu_context.h assumption (Ingo Molnar)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm: If INVPCID is available, use it to flush global mappings (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Add a 'noinvpcid' boot option to turn off INVPCID (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Fix INVPCID asm constraint (Borislav Petkov) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Add INVPCID helpers (Andy Lutomirski) [Orabug: 27333761]
{CVE-2017-5754}
- x86, cpufeature: Add CPU features from Intel document 319433-012A (H.
Peter Anvin) [Orabug: 27333761] {CVE-2017-5754}
- x86/paravirt: Dont patch flush_tlb_single (Thomas Gleixner) [Orabug:
27333761] {CVE-2017-5754}
- x86-64: Map the HPET NX (Andy Lutomirski) [Orabug: 27333761]
{CVE-2017-5754}
- x86/ldt: Make modify_ldt synchronous (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754} {CVE-2015-5157}
- x86, cpu: Add cpufeature flag for PCIDs (Arun Thomas) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Disable preemption during CR3 read+write (Sebastian Andrzej
Siewior) [Orabug: 27333761] {CVE-2017-5754}
- locking/barriers: fix compile issue (Brian Maly) [Orabug: 27346425]
{CVE-2017-5753}
- x86: Add another set of MSR accessor functions (Borislav Petkov)
[Orabug: 27346425] {CVE-2017-5753}
- udf: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- fs: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- qla2xxx: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- p54: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- carl9170: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- uvcvideo: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- locking/barriers: introduce new observable speculation barrier (Elena
Reshetova) [Orabug: 27346425] {CVE-2017-5753}
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
(Elena Reshetova) [Orabug: 27346425] {CVE-2017-5753}
- x86/cpu/AMD: Make the LFENCE instruction serialized (Elena Reshetova)
[Orabug: 27346425] {CVE-2017-5753}

ELSA-2018-4110 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2018-4110

http://linux.oracle.com/errata/ELSA-2018-4110.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
kernel-uek-2.6.39-400.299.1.el6uek.i686.rpm
kernel-uek-debug-2.6.39-400.299.1.el6uek.i686.rpm
kernel-uek-debug-devel-2.6.39-400.299.1.el6uek.i686.rpm
kernel-uek-devel-2.6.39-400.299.1.el6uek.i686.rpm
kernel-uek-doc-2.6.39-400.299.1.el6uek.noarch.rpm
kernel-uek-firmware-2.6.39-400.299.1.el6uek.noarch.rpm

x86_64:
kernel-uek-firmware-2.6.39-400.299.1.el6uek.noarch.rpm
kernel-uek-doc-2.6.39-400.299.1.el6uek.noarch.rpm
kernel-uek-2.6.39-400.299.1.el6uek.x86_64.rpm
kernel-uek-devel-2.6.39-400.299.1.el6uek.x86_64.rpm
kernel-uek-debug-devel-2.6.39-400.299.1.el6uek.x86_64.rpm
kernel-uek-debug-2.6.39-400.299.1.el6uek.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-2.6.39-400.299.1.el6uek.src.rpm



Description of changes:

[2.6.39-400.299.1.el6uek]
- ext4/jbd2: don't wait (forever) for stale tid caused by wraparound
(Theodore Ts'o) [Orabug: 26424268]
- jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [Orabug:
26424268]
- ext4: fix data corruption in inodes with journalled data (Jan Kara)
[Orabug: 26424268]
- media: imon: Fix null-ptr-deref in imon_probe (Arvind Yadav) [Orabug:
27208383] {CVE-2017-16537}
- Input: gtco - fix potential out-of-bound access (Dmitry Torokhov)
[Orabug: 27215095] {CVE-2017-16643}
- RDS: IB: Fix null pointer issue (Guanglei Li) [Orabug: 27241654]
- usb: usbtest: fix NULL pointer dereference (Alan Stern) [Orabug:
27602321] {CVE-2017-16532}
- vfs,proc: guarantee unique inodes in /proc (Linus Torvalds) [Orabug:
27637293]
- vfs: dont chain pipe/anon/socket on superblock s_inodes list (Eric
Dumazet) [Orabug: 27637293]
- fuse: fix deadlock caused by wrong locking order (Junxiao Bi)
[Orabug: 27719848]
- jbd: don't wait (forever) for stale tid caused by wraparound (Jan
Kara) [Orabug: 27734012]
- netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
(Florian Westphal) [Orabug: 27774010] {CVE-2018-1068}
- x86/spec: set_ibrs[ibpb]_disabled() should disable
ibrs[ibpb]_admin_disabled (Krish Sadhukhan) [Orabug: 27788624]
- x86/spec: Fix wrong output from sysfs (Krish Sadhukhan) [Orabug:
27795350]
- x86/spec: Fix spectre_v1 bug and mitigation indicators (John Haxby)
[Orabug: 27811437]
- ext4: add validity checks for bitmap block numbers (Theodore Ts'o)
[Orabug: 27854370] {CVE-2018-1093} {CVE-2018-1093}
- x86/microcode: probe CPU features on microcode update (Ankur Arora)
[Orabug: 27878228]
- x86/microcode: microcode_write() should not reference boot_cpu_data
(Ankur Arora) [Orabug: 27878228]
- x86/cpufeatures: use cpu_data in scan_spec_ctrl_features and
rescan_spec_ctrl_features (Ankur Arora) [Orabug: 27878228]
- USB: core: prevent malicious bNumInterfaces overflow (Alan Stern)
[Orabug: 27898064] {CVE-2017-17558}
- retpoline: microcode incorrectly reported as broken during early boot
(Chuck Anderson) [Orabug: 27915293]
- x86/spec: scan_spec_ctrl_feature should be executed only for cpu_index
0 (Krish Sadhukhan) [Orabug: 27915355]
- RDS: Heap OOB write in rds_message_alloc_sgs() (Mohamed Ghannam)
[Orabug: 27934081] {CVE-2018-5332}
- xfs: set format back to extents if xfs_bmap_extents_to_btree (Eric
Sandeen) [Orabug: 27989490] {CVE-2018-10323}
- net/rds: Fix endless RNR situation (Håkon Bugge) [Orabug: 27645402]
- x86/entry/64: Dont use IST entry for #BP stack (Andy Lutomirski)
{CVE-2018-8897}
- perf/hwbp: Simplify the perf-hwbp code, fix documentation (Linus
Torvalds) [Orabug: 27947612] {CVE-2018-100199}
- xen-netfront: fix rx stall when req_prod_pvt goes back to more than
zero again (Dongli Zhang) [Orabug: 25053376]
- x86/IBRS: Remove support for IBRS_ENABLED_USER mode (Boris Ostrovsky)
[Orabug: 27430615]
- x86/microcode/intel: Disable late loading on model 79 (Borislav
Petkov) [Orabug: 27343579]
- ALSA: usb-audio: Kill stray URB at exiting (Takashi Iwai) [Orabug:
27148283] {CVE-2017-16527}
- uwb: properly check kthread_run return value (Andrey Konovalov)
[Orabug: 27206900] {CVE-2017-16526}
- HID: usbhid: fix out-of-bounds bug (Jaejoong Kim) [Orabug: 27207935]
{CVE-2017-16533}
- cx231xx-cards: fix NULL-deref on missing association descriptor (Johan
Hovold) [Orabug: 27208080] {CVE-2017-16536}
- net: cdc_ether: fix divide by 0 on bad descriptors (Bjørn Mork)
[Orabug: 27215206] {CVE-2017-16649}
- Bluetooth: bnep: bnep_add_connection() should verify that it's dealing
with l2cap socket (Al Viro) [Orabug: 27344787] {CVE-2017-15868}
- Bluetooth: hidp: verify l2cap sockets (David Herrmann) [Orabug:
27344787] {CVE-2017-15868}
- ALSA: pcm: prevent UAF in snd_pcm_info (Robb Glasser) [Orabug:
27344840] {CVE-2017-0861} {CVE-2017-0861}
- Addendum: x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early
Spectre v2 microcodes (David Woodhouse) [Orabug: 27516441]
- x86/cpufeature: Add X86_FEATURE_IA32_ARCH_CAPS and
X86_FEATURE_IBRS_ATT (David Woodhouse) [Orabug: 27649498] {CVE-2017-5715}
- x86/cpufeatures: Clean up Spectre v2 related CPUID flags (David
Woodhouse) [Orabug: 27649510] {CVE-2017-5715}
- x86/spectre: Now that we expose 'stbibp' make sure it is correct.
(Konrad Rzeszutek Wilk) [Orabug: 27649631] {CVE-2017-5715}
- x86/speculation: Add basic IBPB (Indirect Branch Prediction Barrier)
support (KarimAllah Ahmed) [Orabug: 27649640] {CVE-2017-5715}
- x86: Add STIBP feature enumeration (David Woodhouse) [Orabug:
27649693] {CVE-2017-5715}
- x86/cpu/AMD: Add speculative control support for AMD (Tom Lendacky)
[Orabug: 27649706] {CVE-2017-5715}
- x86/spectre_v2: Don't spam the console with these: (Konrad Rzeszutek
Wilk) [Orabug: 27649723] {CVE-2017-5715}
- x86/spectre_v2: Remove 0xc2 from spectre_bad_microcodes (Darren Kenny)
[Orabug: 27600848]
- Revert "x86/spec_ctrl: Add 'nolfence' knob to disable fallback for
spectre_v2 mitigation" (Konrad Rzeszutek Wilk) [Orabug: 27601773]
- x86/syscall: run syscall exit code with extra registers cleared
(Alexandre Chartre) [Orabug: 27501176]
- x86/syscall: run syscall-specific code with extra registers cleared
(Alexandre Chartre) [Orabug: 27501176]
- x86/syscall: run syscall entry code with extra registers cleared
(Alexandre Chartre) [Orabug: 27501176]
- x86/spectre: Drop the warning about ibrs being obsolete (Konrad
Rzeszutek Wilk) [Orabug: 27518974]
- x86: Include linux/device.h in bugs_64.c (Boris Ostrovsky) [Orabug:
27519044]
- x86: fix mitigation details of UEK2 spectre v1 (Konrad Rzeszutek Wilk)
[Orabug: 27509909]
- x86/cpufeature: Blacklist SPEC_CTRL/PRED_CMD on early Spectre v2
microcodes (David Woodhouse) [Orabug: 27516441] {CVE-2017-5715}
- x86, intel: Output microcode revision in /proc/cpuinfo (Andi Kleen)
[Orabug: 27516441]
- x86: intel-family.h: Add GEMINI_LAKE SOC (Len Brown) [Orabug: 27516441]
- x86/cpu/intel: Introduce macros for Intel family numbers (Dave Hansen)
[Orabug: 27516441]
- x86/mitigation/spectre_v2: Add reporting of 'lfence' (Konrad Rzeszutek
Wilk) [Orabug: 27525958]
- x86/spec: Add 'lfence_enabled' in sysfs (Konrad Rzeszutek Wilk)
[Orabug: 27525954]
- x86/spec_ctrl: Add 'nolfence' knob to disable fallback for spectre_v2
mitigation (Konrad Rzeszutek Wilk) [Orabug: 27525923]
- x86/spec: Also print IBRS if IBPB is disabled (Konrad Rzeszutek Wilk)
[Orabug: 27519083]
- x86: Use Indirect Branch Prediction Barrier in context switch (Tim
Chen) [Orabug: 27516378]
- ext4: limit group search loop for non-extent files (Lachlan McIlroy)
[Orabug: 17488415]
- ext4: fixup 64-bit divides in 3.0-stable backport of upstream fix
(Todd Poynor) [Orabug: 17488415]
- ext4: use atomic64_t for the per-flexbg free_clusters count (Theodore
Ts'o) [Orabug: 17488415]
- ext4: init pagevec in ext4_da_block_invalidatepages (Eric Sandeen)
[Orabug: 17488415]
- ext4: do not try to write superblock on ro remount w/o journal
(Michael Tokarev) [Orabug: 17488415]
- xen-netback: fix grant_copy_op array size (Niranjan Patil) [Orabug:
25653941]
- xen-netback: explicitly check max_slots_needed against meta_prod
counter (Niranjan Patil) [Orabug: 25653941]
- xen-netback: Fix handling of skbs requiring too many slots (Zoltan
Kiss) [Orabug: 25653941]
- xen-netback: worse-case estimate in xenvif_rx_action is
underestimating (Paul Durrant) [Orabug: 25653941]
- xen-netback: Add worse-case estimates of max_slots_needed in
netbk_rx_action (Niranjan Patil) [Orabug: 25653941]
- KEYS: Remove key_type::match in favour of overriding default by
match_preparse (Tim Tianyang Chen) [Orabug: 25757946] {CVE-2017-6951}
- xen/mmu: Call xen_cleanhighmap() with 4MB aligned for page tables
mapping (Zhenzhong Duan) [Orabug: 26737475]
- tcp: initialize rcv_mss to TCP_MIN_MSS instead of 0 (Wei Wang)
[Orabug: 26813391] {CVE-2017-14106}
- rxrpc: Fix several cases where a padded len isn't checked in ticket
decode (David Howells) [Orabug: 26880520] {CVE-2017-7482} {CVE-2017-7482}
- ocfs2: fstrim: Fix start offset of first cluster group during fstrim
(Ashish Samant) [Orabug: 27099836]
- Check validity of cl_rpcclient in nfs_server_list_show (Malahal
Naineni) [Orabug: 27112186]
- USB: serial: console: fix use-after-free after failed setup (Johan
Hovold) [Orabug: 27206839] {CVE-2017-16525}
- ALSA: usb-audio: Check out-of-bounds access by corrupted buffer
descriptor (Takashi Iwai) [Orabug: 27206934] {CVE-2017-16529}
- USB: fix out-of-bounds in usb_set_configuration (Greg Kroah-Hartman)
[Orabug: 27207243] {CVE-2017-16531}
- dccp: CVE-2017-8824: use-after-free in DCCP code (Mohamed Ghannam)
[Orabug: 27290308] {CVE-2017-8824}
- x86: Use PRED_CMD MSR when ibpb is enabled (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec: Don't print the Missing arguments for option spectre_v2
(Konrad Rzeszutek Wilk) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Move ENABLE_IBRS in the interrupt macro (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- Add set_ibrs_disabled and set_ibpb_disabled (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/boot: Add early cmdline parsing for options with arguments (Tom
Lendacky) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86, boot: Carve out early cmdline parsing function (Borislav Petkov)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Fix kABI build breakage (Konrad Rzeszutek Wilk) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Add command-line options 'spectre_v2' and 'nospectre_v2' (Kanth
Ghatraju) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/mm: Set IBPB upon context switch (Brian Maly) [Orabug: 27369777]
{CVE-2017-5715} {CVE-2017-5753}
- x86: Display correct settings for the SPECTRE_V2 bug (Kanth Ghatraju)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- Set CONFIG_GENERIC_CPU_VULNERABILITIES flag (Kanth Ghatraju) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/cpu: Implement CPU vulnerabilites sysfs functions (Thomas
Gleixner) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- sysfs/cpu: Fix typos in vulnerability documentation (David Woodhouse)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- sysfs/cpu: Add vulnerability folder (Thomas Gleixner) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86, cpu: Expand cpufeature facility to include cpu bugs (Borislav
Petkov) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (David Woodhouse) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/cpufeatures: Add X86_BUG_CPU_MELTDOWN (Kanth Ghatraju) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec: STUFF_RSB _before_ ENABLE_IBRS (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Move STUFF_RSB in to the idt macro (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/IBRS/IBPB: Set sysctl_ibrs/ibpb_enabled properly (Boris Ostrovsky)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/IBRS: Make sure we restore MSR_IA32_SPEC_CTRL to a valid value
(Boris Ostrovsky) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Add missing 'lfence' when IBRS is not supported (Konrad
Rzeszutek Wilk) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/ia32: Move STUFF_RSB And ENABLE_IBRS (Konrad Rzeszutek Wilk)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/entry: Stuff RSB for entry to kernel for non-SMEP platform (Tim
Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: Use IBRS for firmware update path (David Woodhouse) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Disable if running as Xen PV guest (Konrad Rzeszutek
Wilk) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/microcode: Recheck IBRS features on microcode reload (Tim Chen)
[Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/idle: Disable IBRS entering idle and enable it on wakeup (Tim
Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature
(Tim Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/enter: Use IBRS on syscall and interrupts (Tim Chen) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/enter: MACROS to set/clear IBRS and set IBPB (Tim Chen) [Orabug:
27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86/feature: Detect the x86 IBRS feature to control Speculation (Tim
Chen) [Orabug: 27369777] {CVE-2017-5715} {CVE-2017-5753}
- x86: fix build breakage (Brian Maly) [Orabug: 27346425] {CVE-2017-5753}
- kaiser: rename X86_FEATURE_KAISER to X86_FEATURE_PTI to match upstream
(Mike Kravetz) {CVE-2017-5754}
- x86/kaiser: Check boottime cmdline params (Mike Kravetz) [Orabug:
27333761] {CVE-2017-5754}
- x86/kaiser: Rename and simplify X86_FEATURE_KAISER handling (Borislav
Petkov) [Orabug: 27333761] {CVE-2017-5754}
- KPTI: Report when enabled (Mike Kravetz) [Orabug: 27333761]
{CVE-2017-5754}
- PTI: unbreak EFI old_memmap (Jiri Kosina) [Orabug: 27333761] [Orabug:
27333760] {CVE-2017-5754}
- kaiser: Set _PAGE_NX only if supported (Guenter Roeck) [Orabug:
27333761] [Orabug: 27333760] {CVE-2017-5754}
- KPTI: Rename to PAGE_TABLE_ISOLATION (Kees Cook) [Orabug: 27333761]
{CVE-2017-5754}
- kaiser: kaiser_flush_tlb_on_return_to_user() check PCID (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- kaiser: asm/tlbflush.h handle noPGE at lower level (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- kaiser: use ALTERNATIVE instead of x86_cr3_pcid_noflush (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- x86/alternatives: add asm ALTERNATIVE macro (Mike Kravetz) [Orabug:
27333761] {CVE-2017-5754}
- x86/kaiser: Reenable PARAVIRT, dynamically disable KAISER if PARAVIRT
(Borislav Petkov) [Orabug: 27333761] {CVE-2017-5754}
- kaiser: add "nokaiser" boot option, using ALTERNATIVE (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- x86-32: Fix boot with CONFIG_X86_INVD_BUG (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754}
- kaiser: alloc_ldt_struct() use get_zeroed_page() (Hugh Dickins)
[Orabug: 27333761] {CVE-2017-5754}
- kaiser: user_map __kprobes_text too (Hugh Dickins) [Orabug: 27333761]
{CVE-2017-5754}
- x86/mm/kaiser: re-enable vsyscalls (Andrea Arcangeli) [Orabug:
27333761] {CVE-2017-5754}
- KAISER: Kernel Address Isolation (Hugh Dickins) [Orabug: 27333761]
{CVE-2017-5754}
- x86/mm: fix bad backport to disable PCID on Xen (Borislav Petkov)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm/64: Fix reboot interaction with CR4.PCIDE (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Enable CR4.PCIDE on supported systems (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Add the 'nopcid' boot option to turn off PCID (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Disable PCID on 32-bit kernels (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Remove the UP asm/tlbflush.h code, always use the (formerly)
SMP code (Andy Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- sched/core: Idle_task_exit() shouldn't use switch_mm_irqs_off() (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm, sched/core: Uninline switch_mm() (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Andy Lutomirski)
[Orabug: 27333761] {CVE-2017-5754}
- sched/core: Add switch_mm_irqs_off() and use it in the scheduler (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- mm/mmu_context, sched/core: Fix mmu_context.h assumption (Ingo Molnar)
[Orabug: 27333761] {CVE-2017-5754}
- x86/mm: If INVPCID is available, use it to flush global mappings (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Add a 'noinvpcid' boot option to turn off INVPCID (Andy
Lutomirski) [Orabug: 27333761] {CVE-2017-5754}
- x86/mm: Fix INVPCID asm constraint (Borislav Petkov) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Add INVPCID helpers (Andy Lutomirski) [Orabug: 27333761]
{CVE-2017-5754}
- x86, cpufeature: Add CPU features from Intel document 319433-012A (H.
Peter Anvin) [Orabug: 27333761] {CVE-2017-5754}
- x86/paravirt: Dont patch flush_tlb_single (Thomas Gleixner) [Orabug:
27333761] {CVE-2017-5754}
- x86-64: Map the HPET NX (Andy Lutomirski) [Orabug: 27333761]
{CVE-2017-5754}
- x86/ldt: Make modify_ldt synchronous (Andy Lutomirski) [Orabug:
27333761] {CVE-2017-5754} {CVE-2015-5157}
- x86, cpu: Add cpufeature flag for PCIDs (Arun Thomas) [Orabug:
27333761] {CVE-2017-5754}
- x86/mm: Disable preemption during CR3 read+write (Sebastian Andrzej
Siewior) [Orabug: 27333761] {CVE-2017-5754}
- locking/barriers: fix compile issue (Brian Maly) [Orabug: 27346425]
{CVE-2017-5753}
- x86: Add another set of MSR accessor functions (Borislav Petkov)
[Orabug: 27346425] {CVE-2017-5753}
- udf: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- fs: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- qla2xxx: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- p54: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- carl9170: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- uvcvideo: prevent speculative execution (Elena Reshetova) [Orabug:
27346425] {CVE-2017-5753}
- locking/barriers: introduce new observable speculation barrier (Elena
Reshetova) [Orabug: 27346425] {CVE-2017-5753}
- x86/cpu/AMD: Remove now unused definition of MFENCE_RDTSC feature
(Elena Reshetova) [Orabug: 27346425] {CVE-2017-5753}
- x86/cpu/AMD: Make the LFENCE instruction serialized (Elena Reshetova)
[Orabug: 27346425] {CVE-2017-5753}