Updated Kernel packages has been released for Oracle Linux 7
Oracle Linux Security Advisory ELSA-2018-4017Unbreakable Enterprise kernel Security Update for Oracle Linux 7
http://linux.oracle.com/errata/ELSA-2018-4017.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
kernel-uek-doc-4.1.12-112.14.13.el7uek.noarch.rpm
kernel-uek-firmware-4.1.12-112.14.13.el7uek.noarch.rpm
kernel-uek-4.1.12-112.14.13.el7uek.x86_64.rpm
kernel-uek-devel-4.1.12-112.14.13.el7uek.x86_64.rpm
kernel-uek-debug-4.1.12-112.14.13.el7uek.x86_64.rpm
kernel-uek-debug-devel-4.1.12-112.14.13.el7uek.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-4.1.12-112.14.13.el7uek.src.rpm
Description of changes:
[4.1.12-112.14.13.el7uek]
- Revert "kernel.spec: Require the new microcode_ctl." (Brian Maly)
[4.1.12-112.14.12.el7uek]
- xen-blkback: add pending_req allocation stats (Ankur Arora) [Orabug:
27386890]
- xen-blkback: move indirect req allocation out-of-line (Ankur Arora)
[Orabug: 27386890]
- xen-blkback: pull nseg validation out in a function (Ankur Arora)
[Orabug: 27386890]
- xen-blkback: make struct pending_req less monolithic (Ankur Arora)
[Orabug: 27386890]
- x86: Clean up IBRS functionality resident in common code (Kanth
Ghatraju) [Orabug: 27403317]
- x86: Display correct settings for the SPECTRE_V2 bug (Kanth Ghatraju)
[Orabug: 27403317]
- Set CONFIG_GENERIC_CPU_VULNERABILITIES flag (Kanth Ghatraju) [Orabug:
27403317]
- x86/cpu: Implement CPU vulnerabilites sysfs functions (Thomas
Gleixner) [Orabug: 27403317]
- sysfs/cpu: Fix typos in vulnerability documentation (David Woodhouse)
[Orabug: 27403317]
- sysfs/cpu: Add vulnerability folder (Thomas Gleixner) [Orabug: 27403317]
- x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] (David Woodhouse) [Orabug:
27403317]
- x86/cpufeatures: Add X86_BUG_CPU_MELTDOWN (Kanth Ghatraju) [Orabug:
27403317]
- KVM: x86: Add memory barrier on vmcs field lookup (Andrew Honig)
{CVE-2017-5753}
- KVM: VMX: remove I/O port 0x80 bypass on Intel hosts (Andrew Honig)
[Orabug: 27402301] {CVE-2017-1000407} {CVE-2017-1000407}
- xfs: give all workqueues rescuer threads (Chris Mason) [Orabug:
27397568]
- ixgbevf: handle mbox_api_13 in ixgbevf_change_mtu (Joao Martins)
[Orabug: 27397001]