Oracle7: ELSA-2024-12780: kernel Important Security Advisory Updates
Summary
[5.4.17-2136.336.5.1.el7uek]
- vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (Haoran Zhang) [Orabug: 37138988]
[5.4.17-2136.336.5.el7uek]
- uek-rpm: Add skx_edac_common.ko to nano_modules (Sherry Yang) [Orabug: 37030127]
- EDAC, i10nm: make skx_common.o a separate module (Arnd Bergmann) [Orabug: 37030127]
- uek-rpm: Integrating the container build in UEK6 (Jack Vogel) [Orabug: 37021061]
- i40e: Change user notification of non-SFP module in i40e_get_module_info() (Andrii Staikov) [Orabug: 36988197]
- xsigo: Use NAPI in UD/TX flows for xve (Alok Tiwari) [Orabug: 35180168]
- xsigo: remove incorrect spin_unlock_irqrestore call in vhba_queuecommand (Alok Tiwari) [Orabug: 35180168]
- xsigo: Fix slab-out-of-bounds in vhba_create (Alok Tiwari) [Orabug: 35180168]
- xsigo: Fix memory free issue in dma mapping (Alok Tiwari) [Orabug: 35180168]
- xsigo: Fix use-after-free n xsvbha for srb *sp (Alok Tiwari) [Orabug: 35180168]
- xsigo: Fix mtu setting issue in xve netdev (Alok Tiwari) [Orabug: 35180168]
- xsigo: Add struct ib_mad_send_buf to recv_handler (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove tx_outstanding variable from xve xmit (Alok Tiwari) [Orabug: 35180168]
- xsigo: Add extack argument to dev_change_flags() (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove compare_data while calling ib_cm_listen() (Alok Tiwari) [Orabug: 35180168]
- xsigo: Ignore the return value of "ib_destroy_cq" (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove sif_verbs header (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace setup_timer with the timer_setup (Alok Tiwari) [Orabug: 35180168]
- xsigo: Use ib_ud_wr for xve_dev_priv instread of ib_send_wr (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove return from register event handler (Alok Tiwari) [Orabug: 35180168]
- xsigo: Add client_data for struct ib_client remove() (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace dev->trans_start update with helper netif_trans_update (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove usage of net_device last_rx member from xsigo (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace skb_frag page with bv_page in xve (Alok Tiwari) [Orabug: 35180168]
- xsigo: Use sg_next() to get the next sg instead of SG_NEXT (Alok Tiwari) [Orabug: 35180168]
- xsigo: Rename ib_init_ah_from_path to ib_init_ah_attr_from_path (Alok Tiwari) [Orabug: 35180168]
- xsigo: remove pointer dereference for ib_fmr_pool_map_phys (Alok Tiwari) [Orabug: 35180168]
- xsigo: ib_fmr_pool_map_phys does not need rargs (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove ib_sg_dma_address() and ib_sg_dma_len() (Alok Tiwari) [Orabug: 35180168]
- xsigo: Fix compiling error from xsvbha module (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove sg_copy_buffer from vhba_align (Alok Tiwari) [Orabug: 35180168]
- xsigo: Xve, replace .get_settings with ksettings() (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove LRO code from xve module (Alok Tiwari) [Orabug: 35180168]
- xsigo: Xsvnic, replace .get_settings with ksettings() (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove LRO code from xsvnic module (Alok Tiwari) [Orabug: 35180168]
- xsigo: Change port number from u8 to u32 (Alok Tiwari) [Orabug: 35180168]
- xsigo: Use frag->bv_offset in place of page_offset (Alok Tiwari) [Orabug: 35180168]
- xsigo: Rename skb_frag_t size to bv_len (Alok Tiwari) [Orabug: 35180168]
- xsigo: Fix compiling error due to Constify of ib_cm_event (Alok Tiwari) [Orabug: 35180168]
- xsigo: Add the $(srctree)/ prefix to xsigo Makefile (Alok Tiwari) [Orabug: 35180168]
- xsigo: Assign IB_MGMT_BASE_VERSION for ib_create_send_mad (Alok Tiwari) [Orabug: 35180168]
- xsigo: Assign rdma_ctxs and port_num for struct ib_qp_init_attr (Alok Tiwari) [Orabug: 35180168]
- xsigo: Use struct ib_cq_init_attr for ib_create_cq() (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace max_sge with max_send_sge for xscore_create_qp (Alok Tiwari) [Orabug: 35180168]
- xsigo: Remove ib_get_dma_mr and ib_dereg_mr (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace ib_query_device with callback "ops.query_device" (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace ib_query_gid with rdma_query_gid (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace ib_modify_cq with rdma_set_cq_moderation (Alok Tiwari) [Orabug: 35180168]
- xsigo: Assign path record type rec_type for sa_path_rec (Alok Tiwari) [Orabug: 35180168]
- xsigo: Rename ib_sa_path_rec to sa_path_rec (Alok Tiwari) [Orabug: 35180168]
- xsigo: Use struct ib_ud_wr ud_wr instead of ib_send_wr (Alok Tiwari) [Orabug: 35180168]
- xsigo: Replace struct ib_ah_attr with struct rdma_ah_attr (Alok Tiwari) [Orabug: 35180168]
- xsigo: Rename ib_create_ah and ib_destroy_ah (Alok Tiwari) [Orabug: 35180168]
- xsigo: Assign const argument for ib_post_send/recv() (Alok Tiwari) [Orabug: 35180168]
- uek-rpm: add xsigo module in ol7 and ol8 config file (Alok Tiwari) [Orabug: 35180168]
- Revert "RDMA/core/sa_query: Remove unused function" (Alok Tiwari) [Orabug: 35180168]
- xve: arm ud tx cq to generate completion interrupts (Ajaykumar Hotchandani) [Orabug: 28267050] [Orabug: 35180168]
- xscore: add dma address check (Zhu Yanjun) [Orabug: 27074085] [Orabug: 35180168]
- xsigo: PCA 2.3.1 Compute Node panics in xve_create_arp+430 (Pradeep Gopanapalli) [Orabug: 26474000] [Orabug: 35180168]
- xsigo: UEK4-master:poor performance discovering 256 FC LUNs w/4 paths per LUN (Pradeep Gopanapalli) [Orabug: 26199177] [Orabug: 35180168]
- xsigo: Compute node crash on FC failover (Pradeep Gopanapalli) [Orabug: 25981973] [Orabug: 35180168]
- xsigo: Fix spinlock release in case of error (Pradeep Gopanapalli) [Orabug: 25779803] [Orabug: 35180168]
- xsigo: Optimize xsvnic module parameters for UEK4 (Pradeep Gopanapalli) [Orabug: 25779865] [Orabug: 35180168]
- xsigo: Fix crash in accessing xve proc l2 entries (Pradeep Gopanapalli) [Orabug: 25165085] [Orabug: 35180168]
- xsigo: Fix race in freeing aged Forwarding table entry (Pradeep Gopanapalli) [Orabug: 25129729] [Orabug: 35180168]
- xsigo: Schedule while uninterruptible (Pradeep Gopanapalli) [Orabug: 25097469] [Orabug: 35180168]
- xsigo: supported SGE's for LSO QP (Pradeep Gopanapalli) [Orabug: 25029868] [Orabug: 35180168]
- xsigo: Hardening driver in handling remote QP failures (Pradeep Gopanapalli) [Orabug: 24929076] [Orabug: 35180168]
- xsigo: send nack codes (Pradeep Gopanapalli) [Orabug: 24442792] [Orabug: 35180168]
- xsigo: xve driver has excessive messages (Pradeep Gopanapalli) [Orabug: 24758335] [Orabug: 35180168]
- xsigo: hard LOCKUP in freeing paths (Pradeep Gopanapalli) [Orabug: 24669507] [Orabug: 35180168]
- xsigo: Crash in xscore_port_num (Pradeep Gopanapalli) [Orabug: 24760465] [Orabug: 35180168]
- xsigo: Resize uVNIC/PVI CQ size (Pradeep Gopanapalli) [Orabug: 24765034] [Orabug: 35180168]
- xsigo: Optimizing Transmit completions (Pradeep Gopanapalli) [Orabug: 24928865] [Orabug: 35180168]
- xsigo: Implementing Jumbo MTU support (Pradeep Gopanapalli) [Orabug: 24928804] [Orabug: 35180168]
- xsigo: EoiB QP support (Pradeep Gopanapalli) [Orabug: 24508359] [Orabug: 35180168]
- xsigo: Send Heart Beat Lost Operational state (Pradeep Gopanapalli) [Orabug: 23032392] [Orabug: 35180168]
- xsigo: SKB Frag cleanup (Pradeep Gopanapalli) [Orabug: 23514725] [Orabug: 35180168]
- xsigo: Tx_tail goes outof bound (Pradeep Gopanapalli) [Orabug: 23514725] [Orabug: 35180168]
- xsigo: Fixed Path locking issues (Pradeep Gopanapalli) [Orabug: 23514725] [Orabug: 35180168]
- Fixed vnic issue after saturn reset (Pradeep Gopanapalli) [Orabug: 22862488] [Orabug: 35180168]
- uvnic issues (Pradeep Gopanapalli) [Orabug: 22862488] [Orabug: 35180168]
- Fixed wrongly checked return type Added Debug print (Pradeep Gopanapalli) [Orabug: 22862488] [Orabug: 35180168]
- Integrate Uvnic functionality into uek-4.1 Revision 8008 (Pradeep Gopanapalli) [Orabug: 35180168]
- 1) S_IRWXU causing kernel soft crash changing to 0644 (Pradeep Gopanapalli) [Orabug: 35180168]
- 1) Support vnic for EDR based platform(uVnic) 2) Supported Types now Type 0 (Pradeep Gopanapalli) [Orabug: 35180168]
- Add Oracle virtual Networking Drivers for uek4 kernel (Pradeep Gopanapalli) [Orabug: 35180168]
[5.4.17-2136.336.4.el7uek]
- igb: Fix not clearing TimeSync interrupts for 82580 (Daiwei Li)
- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (David Fernandez Gonzalez) [Orabug: 37037205] {CVE-2024-46738}
- x86/speculation: Basic IBRS is enabled with AMD Automatic IBRS (Alexandre Chartre) [Orabug: 37044540]
[5.4.17-2136.336.3.el7uek]
- Compiler Attributes: Add __uninitialized macro (Heiko Carstens)
- filelock: Correct the filelock owner in fcntl_setlk/fcntl_setlk64 (Long Li)
- ALSA: timer: Relax start tick time check for slave timer elements (Takashi Iwai)
- ALSA: hda/realtek: Fix noise from speakers on Lenovo IdeaPad 3 15IAU7 (Parsa Poorshikhian)
- LTS tag: v5.4.282 (Sherry Yang)
- media: Revert "media: dvb-usb: Fix unexpected infinite loop in dvb_usb_read_remote_control()" (Sean Young)
- ARM: dts: imx6qdl-kontron-samx6i: fix phy-mode (Michael Walle)
- nvme/pci: Add APST quirk for Lenovo N60z laptop (WangYuli)
- exec: Fix ToCToU between perm check and set-uid/gid usage (Kees Cook) [Orabug: 36984017] {CVE-2024-43882}
- media: uvcvideo: Use entity get_cur in uvc_ctrl_set (Yunke Cao)
- arm64: cpufeature: Fix the visibility of compat hwcaps (Amit Daniel Kachhap)
- drm/i915/gem: Fix Virtual Memory mapping boundaries calculation (Andi Shyti) [Orabug: 36953969] {CVE-2024-42259}
- netfilter: nf_tables: prefer nft_chain_validate (Florian Westphal) [Orabug: 36896846] {CVE-2024-41042}
- netfilter: nf_tables: use timestamp to check for set element timeout (Pablo Neira Ayuso) [Orabug: 36630432] {CVE-2024-27397}
- netfilter: nf_tables: set element extended ACK reporting support (Pablo Neira Ayuso)
- kbuild: Fix '-S -c' in x86 stack protector scripts (Nathan Chancellor)
- Fix gcc 4.9 build issue in 5.4.y (Jari Ruusu)
- drm/mgag200: Set DDC timeout in milliseconds (Thomas Zimmermann)
- drm/bridge: analogix_dp: properly handle zero sized AUX transactions (Lucas Stach)
- x86/mtrr: Check if fixed MTRRs exist before saving them (Andi Kleen) [Orabug: 37028936] {CVE-2024-44948}
- tracing: Fix overflow in get_free_elt() (Tze-nan Wu) [Orabug: 36992998] {CVE-2024-43890}
- power: supply: axp288_charger: Round constant_charge_voltage writes down (Hans de Goede)
- power: supply: axp288_charger: Fix constant_charge_voltage writes (Hans de Goede)
- genirq/irqdesc: Honor caller provided affinity in alloc_desc() (Shay Drory)
- serial: core: check uartclk for zero to avoid divide by zero (George Kennedy) [Orabug: 36993009] {CVE-2024-43893}
- scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES (Damien Le Moal)
- ntp: Safeguard against time_constant overflow (Justin Stitt)
- ntp: Clamp maxerror and esterror to operating range (Justin Stitt)
- tick/broadcast: Move per CPU pointer access into the atomic section (Thomas Gleixner) [Orabug: 37036032] {CVE-2024-44968}
- scsi: ufs: core: Fix hba->last_dme_cmd_tstamp timestamp updating logic (Vamshi Gajjela)
- usb: gadget: core: Check for unset descriptor (Chris Wulff) [Orabug: 37028988] {CVE-2024-44960}
- USB: serial: debug: do not echo input by default (Marek Marczykowski-Górecki)
- usb: vhci-hcd: Do not drop references before new references are gained (Oliver Neukum) [Orabug: 36992971] {CVE-2024-43883}
- ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4 (Takashi Iwai)
- ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list (Steven 'Steve' Kendall)
- ALSA: line6: Fix racy access to midibuf (Takashi Iwai) [Orabug: 37028957] {CVE-2024-44954}
- drm/client: fix null pointer dereference in drm_client_modeset_probe (Ma Ke) [Orabug: 36993014] {CVE-2024-43894}
- spi: spi-fsl-lpspi: Fix scldiv calculation (Stefan Wahren)
- spi: fsl-lpspi: remove unneeded array (Oleksandr Suvorov)
- bpf: kprobe: remove unused declaring of bpf_kprobe_override (Menglong Dong)
- i2c: smbus: Send alert notifications to all devices if source not found (Guenter Roeck)
- i2c: smbus: Improve handling of stuck alerts (Guenter Roeck)
- i2c: smbus: Don't filter out duplicate alerts (Corey Minyard)
- arm64: errata: Expand speculative SSBS workaround (again) (Mark Rutland)
- arm64: cputype: Add Cortex-A725 definitions (Mark Rutland)
- arm64: cputype: Add Cortex-X1C definitions (Mark Rutland)
- arm64: errata: Expand speculative SSBS workaround (Mark Rutland)
- arm64: errata: Unify speculative SSBS errata logic (Mark Rutland)
- arm64: cputype: Add Cortex-X925 definitions (Mark Rutland)
- arm64: cputype: Add Cortex-A720 definitions (Mark Rutland)
- arm64: cputype: Add Cortex-X3 definitions (Mark Rutland)
- arm64: errata: Add workaround for Arm errata 3194386 and 3312417 (Mark Rutland)
- arm64: cputype: Add Neoverse-V3 definitions (Mark Rutland)
- arm64: cputype: Add Cortex-X4 definitions (Mark Rutland)
- arm64: Add Neoverse-V2 part (Besar Wicaksono)
- arm64: cpufeature: Force HWCAP to be based on the sysreg visible to user-space (James Morse)
- ext4: fix wrong unit use in ext4_mb_find_by_goal (Kemeng Shi)
- SUNRPC: Fix a race to wake a sync task (Benjamin Coddington)
- s390/sclp: Prevent release of buffer in I/O (Peter Oberparleiter) [Orabug: 37029020] {CVE-2024-44969}
- jbd2: avoid memleak in jbd2_journal_write_metadata_buffer (Kemeng Shi)
- media: uvcvideo: Fix the bandwdith quirk on USB 3.x (Michal Pecio)
- media: uvcvideo: Ignore empty TS packets (Ricardo Ribalda)
- drm/amdgpu: Fix the null pointer dereference to ras_manager (Ma Jun) [Orabug: 36993084] {CVE-2024-43908}
- btrfs: fix bitmap leak when loading free space cache on duplicate entry (Filipe Manana)
- wifi: nl80211: don't give key data to userspace (Johannes Berg)
- udf: prevent integer overflow in udf_bitmap_free_blocks() (Roman Smirnov)
- PCI: Add Edimax Vendor ID to pci_ids.h (FUJITA Tomonori)
- selftests/bpf: Fix send_signal test with nested CONFIG_PARAVIRT (Yonghong Song)
- ACPI: SBS: manage alarm sysfs attribute through psy core (Thomas WeiÃschuh)
- ACPI: battery: create alarm sysfs attribute atomically (Thomas WeiÃschuh)
- clocksource/drivers/sh_cmt: Address race condition for clock events (Niklas Söderlund)
- md/raid5: avoid BUG_ON() while continue reshape after reassembling (Yu Kuai) [Orabug: 36993127] {CVE-2024-43914}
- net: fec: Stop PPS on driver remove (Csókás, Bence)
- Bluetooth: l2cap: always unlock channel in l2cap_conless_channel() (Dmitry Antipov)
- net: linkwatch: use system_unbound_wq (Eric Dumazet)
- net: usb: qmi_wwan: fix memory leak for not ip packets (Daniele Palmas) [Orabug: 36983959] {CVE-2024-43861}
- sctp: Fix null-ptr-deref in reuseport_add_sock(). (Kuniyuki Iwashima) [Orabug: 36993147] {CVE-2024-44935}
- sctp: move hlist_node and hashent out of sctp_ep_common (Xin Long)
- x86/mm: Fix pti_clone_pgtable() alignment assumption (Peter Zijlstra) [Orabug: 37029012] {CVE-2024-44965}
- irqchip/mbigen: Fix mbigen node address layout (Yipeng Zou)
- genirq: Allow irq_chip registration functions to take a const irq_chip (Marc Zyngier)
- netfilter: ipset: Add list flush to cancel_gc (Alexander Maltsev)
- net: usb: sr9700: fix uninitialized variable use in sr_mdio_read (Ma Ke)
- ALSA: usb-audio: Correct surround channels in UAC1 channel map (Takashi Iwai)
- protect the fetch of ->fd[fd] in do_dup2() from mispredictions (Al Viro) [Orabug: 36963808] {CVE-2024-42265}
- HID: wacom: Modify pen IDs (Tatsunosuke Tobita)
- ipv6: fix ndisc_is_useropt() handling for PIO (Maciej Żenczykowski)
- net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys (Shahar Shitrit)
- net/iucv: fix use after free in iucv_sock_close() (Alexandra Winter) [Orabug: 36964006] {CVE-2024-42271}
- drm/vmwgfx: Fix overlay when using Screen Targets (Ian Forbes)
- drm/nouveau: prime: fix refcount underflow (Danilo Krummrich) [Orabug: 36983979] {CVE-2024-43867}
- remoteproc: imx_rproc: Skip over memory region when node value is NULL (Aleksandr Mishin) [Orabug: 36964537] {CVE-2024-43860}
- remoteproc: imx_rproc: Fix ignoring mapping vdev regions (Dong Aisheng)
- remoteproc: imx_rproc: ignore mapping vdev regions (Peng Fan)
- irqchip/imx-irqsteer: Handle runtime power management correctly (Shenwei Wang) [Orabug: 36964085] {CVE-2024-42290}
- irqchip/imx-irqsteer: Add runtime PM support (Lucas Stach)
- irqchip/imx-irqsteer: Constify irq_chip struct (Lucas Stach)
- genirq: Allow the PM device to originate from irq domain (Marc Zyngier)
- devres: Fix memory leakage caused by driver API devm_free_percpu() (Zijun Hu) [Orabug: 36983991] {CVE-2024-43871}
- driver core: Cast to (void *) with __force for __percpu pointer (Andy Shevchenko)
- dev/parport: fix the array out-of-bounds risk (tuhaowen) [Orabug: 36964223] {CVE-2024-42301}
- parport: Standardize use of printmode (Joe Perches)
to pr_
SRPMs
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.336.5.1.el7uek.src.rpm
x86_64
kernel-uek-5.4.17-2136.336.5.1.el7uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.336.5.1.el7uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.336.5.1.el7uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.336.5.1.el7uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.336.5.1.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.336.5.1.el7uek.x86_64.rpm
aarch64
kernel-uek-5.4.17-2136.336.5.1.el7uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.336.5.1.el7uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.336.5.1.el7uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.336.5.1.el7uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.336.5.1.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.336.5.1.el7uek.aarch64.rpm kernel-uek-tools-libs-5.4.17-2136.336.5.1.el7uek.aarch64.rpm perf-5.4.17-2136.336.5.1.el7uek.aarch64.rpm python-perf-5.4.17-2136.336.5.1.el7uek.aarch64.rpm
i386