[Oraclevm-errata] OVMSA-2018-0258 Important: Oracle VM 3.4 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Wed Sep 26 11:31:49 PDT 2018


Oracle VM Security Advisory OVMSA-2018-0258

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kernel-uek-firmware-4.1.12-124.19.5.el6uek.noarch.rpm
kernel-uek-4.1.12-124.19.5.el6uek.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/kernel-uek-4.1.12-124.19.5.el6uek.src.rpm



Description of changes:

[4.1.12-124.19.5.el6uek]
- nsfs: mark dentry with DCACHE_RCUACCESS (Cong Wang)  [Orabug: 
28576290]  {CVE-2018-5873}
- dm crypt: add middle-endian variant of plain64 IV (Konrad Rzeszutek 
Wilk)  [Orabug: 28604628]
- IB/ipoib: Improve filtering log message (Yuval Shaia)  [Orabug: 28655409]
- IB/ipoib: Fix wrong update of arp_blocked counter (Yuval Shaia) 
[Orabug: 28655409]
- IB/ipoib: Update RX counters after ACL filtering (Yuval Shaia) 
[Orabug: 28655409]
- IB/ipoib: Filter RX packets before adding pseudo header (Yuval Shaia) 
[Orabug: 28655409]
- cdrom: Fix info leak/OOB read in cdrom_ioctl_drive_status (Scott 
Bauer)  [Orabug: 28664501]  {CVE-2018-16658}
- ACPICA: acpi: acpica: fix acpi operand cache leak in nseval.c 
(Seunghun Han)  [Orabug: 28664577]  {CVE-2017-13695}
- uek-rpm: Disable deprecated CONFIG_ACPI_PROCFS_POWER (Victor 
Erminpour)  [Orabug: 28680213]





More information about the Oraclevm-errata mailing list