Oracle Linux 6277 Published by

The following updates has been released for Oracle Linux:

ELBA-2019-4784 Oracle Linux 7 libvirt bug fix update (aarch64)
ELSA-2019-2729 Critical: Oracle Linux 7 firefox security update (aarch64)
New Ksplice updates for UEKR2 2.6.39 on OL5 and OL6 (ELSA-2019-4777)
New Ksplice updates for UEKR3 3.8.13 on OL6 and OL7 (ELSA-2019-4775)



ELBA-2019-4784 Oracle Linux 7 libvirt bug fix update (aarch64)

Oracle Linux Bug Fix Advisory ELBA-2019-4784

http://linux.oracle.com/errata/ELBA-2019-4784.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

aarch64:
libvirt-5.0.0-15.el7.aarch64.rpm
libvirt-bash-completion-5.0.0-15.el7.aarch64.rpm
libvirt-client-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-config-network-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-config-nwfilter-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-interface-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-lxc-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-network-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-nodedev-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-nwfilter-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-qemu-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-secret-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-core-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-disk-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-gluster-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-logical-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-mpath-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-rbd-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-driver-storage-scsi-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-kvm-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-qemu-5.0.0-15.el7.aarch64.rpm
libvirt-devel-5.0.0-15.el7.aarch64.rpm
libvirt-docs-5.0.0-15.el7.aarch64.rpm
libvirt-libs-5.0.0-15.el7.aarch64.rpm
libvirt-admin-5.0.0-15.el7.aarch64.rpm
libvirt-daemon-lxc-5.0.0-15.el7.aarch64.rpm
libvirt-lock-sanlock-5.0.0-15.el7.aarch64.rpm
libvirt-login-shell-5.0.0-15.el7.aarch64.rpm
libvirt-nss-5.0.0-15.el7.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/libvirt-5.0.0-15.el7.src.rpm



Description of changes:

[5.0.0-15.el7]
- qemu: ensure whole cores during hot(un)plug on Exadata (Menno Lageman)
[Orabug: 30239774]
- qemu: exadata KVM set vcpu granularity must be number of CPUs in core
(Menno Lageman) [Orabug: 30224846]

[5.0.0-14.el7]
- qemuxml2argvdata: Adjust a test for vNUMA nodes and threads per core
match (Wim ten Have) [Orabug: 30189275]
- qemu: Fix vNUMA hotplug request checking the node mapped cores. (Wim
ten Have) [Orabug: 30189275]
- libvirt: Add vNUMA online and hotplug rendered detail (Wim ten Have)
[Orabug: 30189275]

ELSA-2019-2729 Critical: Oracle Linux 7 firefox security update (aarch64)

Oracle Linux Security Advisory ELSA-2019-2729

http://linux.oracle.com/errata/ELSA-2019-2729.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
firefox-60.9.0-1.0.1.el7_7.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/firefox-60.9.0-1.0.1.el7_7.src.rpm



Description of changes:

[60.9.0-1.0.1]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red
Hat file

[60.9.0-1]
- Update to 60.9.0 ESR

New Ksplice updates for UEKR2 2.6.39 on OL5 and OL6 (ELSA-2019-4777)

Synopsis: ELSA-2019-4777 can now be patched using Ksplice
CVEs: CVE-2019-1125

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2019-4777.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2019-4777.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running UEKR2 2.6.39 on
OL5 and OL6 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* CVE-2019-1125: Information leak in kernel entry code when swapping GS.

A local attacker could speculatively access percpu data using a user
defined GS and leak information about running kernel to facilitate an
attack.

Orabug: 30165287

SUPPORT

Ksplice support is available at ksplice-support_ww@oracle.com.


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata



New Ksplice updates for UEKR3 3.8.13 on OL6 and OL7 (ELSA-2019-4775)

Synopsis: ELSA-2019-4775 can now be patched using Ksplice
CVEs: CVE-2019-1125

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Security Advisory, ELSA-2019-4775.
More information about this errata can be found at
https://linux.oracle.com/errata/ELSA-2019-4775.html

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running UEKR3 3.8.13 on
OL6 and OL7 install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* Improved KAISER/KPTI enablement for Ksplice.


* CVE-2019-1125: Information leak in kernel entry code when swapping GS.

A local attacker could speculatively access percpu data using a user
defined GS and leak information about running kernel to facilitate an
attack.

Orabug: 30165288

SUPPORT

Ksplice support is available at ksplice-support_ww@oracle.com.