Oracle alert ELSA-2025-20323 (kernel)
| From: | Errata Announcements for Oracle Linux via El-errata <el-errata@oss.oracle.com> | |
| To: | el-errata@oss.oracle.com | |
| Subject: | [El-errata] ELSA-2025-20323 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update | |
| Date: | Tue, 13 May 2025 11:07:04 -0700 | |
| Message-ID: | <mailman.19.1747159640.29.el-errata@oss.oracle.com> |
Oracle Linux Security Advisory ELSA-2025-20323 http://linux.oracle.com/errata/ELSA-2025-20323.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-core-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-debug-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-debug-core-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-debug-devel-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-debug-modules-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-debug-modules-extra-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-devel-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-doc-5.15.0-308.179.6.2.el8uek.noarch.rpm kernel-uek-modules-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-modules-extra-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-container-5.15.0-308.179.6.2.el8uek.x86_64.rpm kernel-uek-container-debug-5.15.0-308.179.6.2.el8uek.x86_64.rpm aarch64: bpftool-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-core-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-debug-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-debug-core-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-debug-devel-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-debug-modules-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-debug-modules-extra-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-devel-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-doc-5.15.0-308.179.6.2.el8uek.noarch.rpm kernel-uek-modules-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-modules-extra-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-container-5.15.0-308.179.6.2.el8uek.aarch64.rpm kernel-uek-container-debug-5.15.0-308.179.6.2.el8uek.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.15.... Related CVEs: CVE-2024-28956 Description of changes: [5.15.0-308.179.6.2.el8uek] - x86/bhi: Do not set BHI_DIS_S in 32-bit mode (Pawan Gupta) [Orabug: 37920681] - x86/bpf: Add IBHF call at end of classic BPF (Daniel Sneddon) [Orabug: 37920681] - x86/bpf: Call branch history clearing sequence on exit (Daniel Sneddon) [Orabug: 37920681] - selftest/x86/bugs: Add selftests for ITS (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - x86/its: Align RETs in BHB clear sequence to avoid thunking (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - x86/its: Add "vmexit" option to skip mitigation on some CPUs (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - x86/its: Enable Indirect Target Selection mitigation (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - x86/its: Add support for ITS-safe return thunk (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - x86/its: Add support for ITS-safe indirect thunk (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - x86/its: Enumerate Indirect Target Selection (ITS) bug (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - Documentation: x86/bugs/its: Add ITS documentation (Pawan Gupta) [Orabug: 37863726] {CVE-2024-28956} - x86/alternatives: Remove faulty optimization (Josh Poimboeuf) [Orabug: 37863726] {CVE-2024-28956} - x86/alternative: Optimize returns patching (Borislav Petkov (AMD)) [Orabug: 37863726] {CVE-2024-28956} _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata