ELSA-2024-6569 Moderate: Oracle Linux 8 389-ds:1.4 security update
ELSA-2024-12612 Important: Oracle Linux 7 Unbreakable Enterprise kernel-container security update
ELSA-2024-12610 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
ELSA-2024-12611 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update (aarch64)
ELBA-2024-12621 Oracle Linux 8 initscripts bug fix update
ELBA-2024-12624 Oracle Linux 7 libvirt bug fix update (aarch64)
ELBA-2024-12620 Oracle Linux 7 initscripts bug fix update (aarch64)
ELBA-2024-12619 Oracle Linux 7 initscripts bug fix update
ELSA-2024-6569 Moderate: Oracle Linux 8 389-ds:1.4 security update
Oracle Linux Security Advisory ELSA-2024-6569
http://linux.oracle.com/errata/ELSA-2024-6569.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
389-ds-base-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.x86_64.rpm
389-ds-base-devel-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.x86_64.rpm
389-ds-base-legacy-tools-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.x86_64.rpm
389-ds-base-libs-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.x86_64.rpm
389-ds-base-snmp-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.x86_64.rpm
python3-lib389-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.noarch.rpm
aarch64:
389-ds-base-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.aarch64.rpm
389-ds-base-devel-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.aarch64.rpm
389-ds-base-legacy-tools-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.aarch64.rpm
389-ds-base-libs-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.aarch64.rpm
389-ds-base-snmp-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.aarch64.rpm
python3-lib389-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.noarch.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//389-ds-base-1.4.3.39-8.module+el8.10.0+90403+39ad56f1.src.rpm
Related CVEs:
CVE-2024-5953
Description of changes:
[1.4.3.39-8]
- Bump version to 1.4.3.39-8
- Resolves: RHEL-40943 - CVE-2024-5953 389-ds:1.4/389-ds-base: Malformed userPassword hash may cause Denial of Service [rhel-8.10.z]
- Resolves: RHEL-58069 - perf search result investigation for many large static groups and members [rhel-8.10.0.z]
ELSA-2024-12612 Important: Oracle Linux 7 Unbreakable Enterprise kernel-container security update
Oracle Linux Security Advisory ELSA-2024-12612
http://linux.oracle.com/errata/ELSA-2024-12612.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
kernel-uek-container-5.4.17-2136.335.4.el7.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.335.4.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-container-5.4.17-2136.335.4.el7.src.rpm
Related CVEs:
CVE-2024-40968
CVE-2024-41022
CVE-2024-36484
CVE-2024-41034
CVE-2024-41007
CVE-2023-52803
CVE-2024-42232
CVE-2024-41035
CVE-2024-42236
CVE-2024-41041
CVE-2024-41044
CVE-2024-41046
CVE-2024-41049
CVE-2024-42153
CVE-2024-42148
CVE-2024-42101
CVE-2024-42104
CVE-2024-42105
CVE-2024-42106
CVE-2024-39487
CVE-2024-42154
CVE-2024-42157
CVE-2024-42115
CVE-2024-42143
CVE-2024-42223
CVE-2024-42224
CVE-2024-42119
CVE-2024-42124
CVE-2024-42145
CVE-2024-42127
CVE-2022-3566
CVE-2022-3567
CVE-2024-42084
CVE-2024-41087
CVE-2024-41089
CVE-2024-41095
CVE-2024-42076
CVE-2024-41097
CVE-2024-42086
CVE-2024-42096
CVE-2024-42092
CVE-2024-42097
CVE-2024-42093
CVE-2024-42094
CVE-2024-42087
CVE-2024-42070
CVE-2024-42089
CVE-2024-40987
CVE-2024-42090
CVE-2024-40988
CVE-2024-40993
CVE-2024-40995
CVE-2024-40958
CVE-2024-40959
CVE-2024-40960
CVE-2024-40961
CVE-2024-41006
CVE-2024-40963
CVE-2024-40974
CVE-2024-40978
CVE-2024-40980
CVE-2024-40981
CVE-2024-38619
CVE-2024-39495
CVE-2023-4881
CVE-2023-52628
CVE-2024-37078
CVE-2024-40943
CVE-2024-39499
CVE-2024-40932
CVE-2024-39501
CVE-2024-39502
CVE-2024-39505
CVE-2024-39506
CVE-2024-40934
CVE-2024-40945
CVE-2024-39509
CVE-2024-40901
CVE-2024-40902
CVE-2024-40904
CVE-2024-39469
CVE-2024-36894
CVE-2024-40905
CVE-2024-36974
CVE-2024-36978
CVE-2024-40941
CVE-2024-40912
CVE-2024-40942
Description of changes:
[5.4.17-2136.335.4.el7]
- mm: memcg/slab: enable kmalloc-cg- caches for x86_64. (Imran Khan) [Orabug: 36951041]
- printk: add kthread for long-running print (Stephen Brennan) [Orabug: 36456582]
- kdb: Use the passed prompt in kdb_position_cursor() (Douglas Anderson)
- driver core: Fix uevent_show() vs driver detach race (Dan Williams)
- pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable() fails (Yang Yingliang)
- pinctrl: ti: ti-iodelay: Drop if block with always false condition (Uwe Kleine-König)
- pinctrl: single: fix possible memory leak when pinctrl_enable() fails (Yang Yingliang)
- pinctrl: core: fix possible memory leak when pinctrl_enable() fails (Yang Yingliang)
- ipvs: Avoid unnecessary calls to skb_is_gso_sctp (Ismael Luceno)
[5.4.17-2136.335.3.el7]
- MIPS: Octeon: Add PCIe link status check (Dave Kleikamp) [Orabug: 36947196]
[5.4.17-2136.335.2.el7]
- drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() (Dan Carpenter)
- net: relax socket state check at accept time. (Paolo Abeni)
- fsnotify: clear PARENT_WATCHED flags lazily (Amir Goldstein) [Orabug: 36922241]
- NFSD: Increase NFSD_MAX_OPS_PER_COMPOUND (Chuck Lever) [Orabug: 36908594]
- x86/cpu: Avoid cpuinfo-induced IPI pileups (Paul E. McKenney) [Orabug: 35773811]
[5.4.17-2136.335.1.el7]
- LTS tag: v5.4.280 (Alok Tiwari)
- i2c: rcar: bring hardware to known state when probing (Wolfram Sang)
- nilfs2: fix kernel bug on rename operation of broken directory (Ryusuke Konishi)
- tcp: avoid too many retransmit packets (Eric Dumazet)
- tcp: use signed arithmetic in tcp_rtx_probe0_timed_out() (Eric Dumazet)
- net: tcp: fix unexcepted socket die when snd_wnd is 0 (Menglong Dong)
- tcp: refactor tcp_retransmit_timer() (Eric Dumazet)
- SUNRPC: Fix RPC client cleaned up the freed pipefs dentries (felix)
- libceph: fix race between delayed_work() and ceph_monc_stop() (Ilya Dryomov)
- ALSA: hda/realtek: Limit mic boost on VAIO PRO PX (Edson Juliano Drosdeck)
- nvmem: meson-efuse: Fix return value of nvmem callbacks (Joy Chakraborty)
- hpet: Support 32-bit userspace (He Zhe)
- USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor (Alan Stern)
- usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() (Lee Jones)
- USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k (WangYuli)
- USB: serial: option: add Rolling RW350-GL variants (Vanillan Wang)
- USB: serial: option: add Netprisma LCUK54 series modules (Mank Wang)
- USB: serial: option: add support for Foxconn T99W651 (Slark Xiao)
- USB: serial: option: add Fibocom FM350-GL (Bjørn Mork)
- USB: serial: option: add Telit FN912 rmnet compositions (Daniele Palmas)
- USB: serial: option: add Telit generic core-dump composition (Daniele Palmas)
- ARM: davinci: Convert comma to semicolon (Chen Ni)
- s390: Mark psw in __load_psw_mask() as __unitialized (Sven Schnelle)
- udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port(). (Kuniyuki Iwashima)
- ppp: reject claimed-as-LCP but actually malformed packets (Dmitry Antipov)
- net: ethernet: lantiq_etop: fix double free in detach (Aleksander Jan Bajkowski)
- net: lantiq_etop: add blank line after declaration (Aleksander Jan Bajkowski)
- octeontx2-af: Fix incorrect value output on error path in rvu_check_rsrc_availability() (Aleksandr Mishin)
- tcp: fix incorrect undo caused by DSACK of TLP retransmit (Neal Cardwell)
- tcp: add TCP_INFO status for failed client TFO (Jason Baron)
- vfs: don't mod negative dentry count when on shrinker list (Brian Foster)
- fs/dcache: Re-use value stored to dentry->d_flags instead of re-reading (linke li)
- filelock: fix potential use-after-free in posix_lock_inode (Jeff Layton)
- nilfs2: fix incorrect inode allocation from reserved inodes (Ryusuke Konishi)
- nvme-multipath: find NUMA path only for online numa-node (Nilay Shroff)
- ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897 (Jian-Hong Pan)
- i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr (Piotr Wojtaszczyk)
- media: dw2102: fix a potential buffer overflow (Mauro Carvalho Chehab)
- bnx2x: Fix multiple UBSAN array-index-out-of-bounds (Ghadi Elie Rahme)
- drm/amdgpu/atomfirmware: silence UBSAN warning (Alex Deucher)
- drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes (Ma Ke)
- Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" (Jan Kara)
- fsnotify: Do not generate events for O_PATH file descriptors (Jan Kara)
- can: kvaser_usb: Explicitly initialize family in leafimx driver_info struct (Jimmy Assarsson)
- mm: optimize the redundant loop of mm_update_owner_next() (Jinliang Zheng)
- nilfs2: add missing check for inode numbers on directory entries (Ryusuke Konishi)
- nilfs2: fix inode number range checks (Ryusuke Konishi)
- inet_diag: Initialize pad field in struct inet_diag_req_v2 (Shigeru Yoshida)
- selftests: make order checking verbose in msg_zerocopy selftest (Zijian Zhang)
- selftests: fix OOM in msg_zerocopy selftest (Zijian Zhang)
- bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() (Sam Sun)
- tcp_metrics: validate source addr length (Jakub Kicinski)
- UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open() (Neal Cardwell)
- net: tcp better handling of reordering then loss cases (Yuchung Cheng)
- tcp: add ece_ack flag to reno sack functions (Yousuk Seung)
- tcp: tcp_mark_head_lost is only valid for sack-tcp (zhang kai)
- s390/pkey: Wipe sensitive data on failure (Holger Dengler)
- jffs2: Fix potential illegal address access in jffs2_free_inode (Wang Yong)
- powerpc/xmon: Check cpu id in commands "c#", "dp#" and "dx#" (Greg Kurz)
- orangefs: fix out-of-bounds fsid access (Mike Marshall)
- powerpc/64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n (Michael Ellerman)
- i2c: i801: Annotate apanel_addr as __ro_after_init (Heiner Kallweit)
- media: dvb-frontends: tda10048: Fix integer overflow (Ricardo Ribalda)
- media: s2255: Use refcount_t instead of atomic_t for num_channels (Ricardo Ribalda)
- media: dvb-frontends: tda18271c2dd: Remove casting during div (Ricardo Ribalda)
- net: dsa: mv88e6xxx: Correct check for empty list (Simon Horman)
- Input: ff-core - prefer struct_size over open coded arithmetic (Erick Archer)
- firmware: dmi: Stop decoding on broken entry (Jean Delvare)
- sctp: prefer struct_size over open coded arithmetic (Erick Archer)
- media: dw2102: Don't translate i2c read into write (Michael Bunk)
- drm/amd/display: Skip finding free audio for unknown engine_id (Alex Hung)
- drm/amdgpu: Initialize timestamp for some legacy SOCs (Ma Jun)
- scsi: qedf: Make qedf_execute_tmf() non-preemptible (John Meneghini)
- IB/core: Implement a limit on UMAD receive List (Michael Guralnik)
- media: dvb-usb: dib0700_devices: Add missing release_firmware() (Ricardo Ribalda)
- media: dvb: as102-fe: Fix as10x_register_addr packing (Ricardo Ribalda)
- drm/lima: fix shared irq handling on driver remove (Erico Nunes)
- LTS tag: v5.4.279 (Alok Tiwari)
- arm64: dts: rockchip: Add sound-dai-cells for RK3368 (Alex Bee)
- ARM: dts: rockchip: rk3066a: add #sound-dai-cells to hdmi node (Johan Jonker)
- tcp: Fix data races around icsk->icsk_af_ops. (Kuniyuki Iwashima)
- ipv6: Fix data races around sk->sk_prot. (Kuniyuki Iwashima)
- ipv6: annotate some data-races around sk->sk_prot (Eric Dumazet)
- nfs: Leave pages in the pagecache if readpage failed (Matthew Wilcox (Oracle))
- pwm: stm32: Refuse too small period requests (Uwe Kleine-König)
- mtd: spinand: macronix: Add support for serial NAND flash (Jaime Liao)
- ftruncate: pass a signed offset (Arnd Bergmann)
- ata: libata-core: Fix double free on error (Niklas Cassel)
- batman-adv: Don't accept TT entries for out-of-spec VIDs (Sven Eckelmann)
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (Ma Ke)
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (Ma Ke)
- hexagon: fix fadvise64_64 calling conventions (Arnd Bergmann)
- csky, hexagon: fix broken sys_sync_file_range (Arnd Bergmann)
- net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (Oleksij Rempel)
- net: can: j1939: recover socket queue on CAN bus error during BAM transmission (Oleksij Rempel)
- net: can: j1939: Initialize unused data in j1939_send_one() (Shigeru Yoshida)
- tty: mcf: MCF54418 has 10 UARTS (Jean-Michel Hautbois)
- usb: atm: cxacru: fix endpoint checking in cxacru_bind() (Nikita Zhandarovich)
- usb: musb: da8xx: fix a resource leak in probe() (Dan Carpenter)
- usb: gadget: printer: SS+ support (Oliver Neukum)
- net: usb: ax88179_178a: improve link status logs (Jose Ignacio Tornos Martinez)
- iio: chemical: bme680: Fix sensor data read operation (Vasileios Amoiridis)
- iio: chemical: bme680: Fix overflows in compensate() functions (Vasileios Amoiridis)
- iio: chemical: bme680: Fix calibration data variable (Vasileios Amoiridis)
- iio: chemical: bme680: Fix pressure value output (Vasileios Amoiridis)
- iio: adc: ad7266: Fix variable checking bug (Fernando Yang)
- mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (Adrian Hunter)
- mmc: sdhci: Do not invert write-protect twice (Adrian Hunter)
- mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (Ilpo Järvinen)
- x86: stop playing stack games in profile_pc() (Linus Torvalds)
- gpio: davinci: Validate the obtained number of IRQs (Aleksandr Mishin)
- nvme: fixup comment for nvme RDMA Provider Type (Hannes Reinecke)
- soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (Andrew Davis)
- media: dvbdev: Initialize sbuf (Ricardo Ribalda)
- ALSA: emux: improve patch ioctl data validation (Oswald Buddenhagen)
- net/dpaa2: Avoid explicit cpumask var allocation on stack (Dawei Li)
- net/iucv: Avoid explicit cpumask var allocation on stack (Dawei Li)
- mtd: partitions: redboot: Added conversion of operands to a larger type (Denis Arefev)
- drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (Laurent Pinchart)
- netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (Pablo Neira Ayuso)
- parisc: use correct compat recv/recvfrom syscalls (Arnd Bergmann)
- sparc: fix old compat_sys_select() (Arnd Bergmann)
- net: phy: micrel: add Microchip KSZ 9477 to the device table (Enguerrand de Ribaucourt)
- net: phy: mchp: Add support for LAN8814 QUAD PHY (Divya Koppera)
- net: dsa: microchip: fix initial port flush problem (Tristram Ha)
- ASoC: fsl-asoc-card: set priv->pdev before using it (Elinor Montmasson)
- netfilter: nf_tables: validate family when identifying table via handle (Pablo Neira Ayuso)
- drm/amdgpu: fix UBSAN warning in kv_dpm.c (Alex Deucher)
- pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (Huang-Huang Bao)
- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (Huang-Huang Bao)
- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (Huang-Huang Bao)
- pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (Hagar Hemdan)
- iio: dac: ad5592r: fix temperature channel scaling value (Marc Ferland)
- iio: dac: ad5592r: un-indent code-block for scale read (Alexandru Ardelean)
- iio: dac: ad5592r-base: Replace indio_dev->mlock with own device lock (Sergiu Cuciurean)
- x86/amd_nb: Check for invalid SMN reads (Yazen Ghannam)
- PCI: Add PCI_ERROR_RESPONSE and related definitions (Naveen Naidu)
- perf/core: Fix missing wakeup when waiting for context reference (Haifeng Xu)
- tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test (Jeff Johnson)
- arm64: dts: qcom: qcs404: fix bluetooth device address (Johan Hovold)
- ARM: dts: samsung: smdk4412: fix keypad no-autorepeat (Krzysztof Kozlowski)
- ARM: dts: samsung: exynos4412-origen: fix keypad no-autorepeat (Krzysztof Kozlowski)
- ARM: dts: samsung: smdkv310: fix keypad no-autorepeat (Krzysztof Kozlowski)
- i2c: ocores: set IACK bit after core is enabled (Grygorii Tertychnyi)
- gcov: add support for GCC 14 (Peter Oberparleiter)
- drm/radeon: fix UBSAN warning in kv_dpm.c (Alex Deucher)
- ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (Raju Rangoju)
- dmaengine: ioatdma: Fix missing kmem_cache_destroy() (Nikita Shubin)
- regulator: core: Fix modpost error "regulator_get_regmap" undefined (Biju Das)
- net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (Oliver Neukum)
- netfilter: ipset: Fix suspicious rcu_dereference_protected() (Jozsef Kadlecsik)
- virtio_net: checksum offloading handling fix (Heng Qi)
- net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (David Ruth)
- net/sched: act_api: rely on rcu in tcf_idr_check_alloc (Pedro Tammela)
- netns: Make get_net_ns() handle zero refcount net (Yue Haibing)
- xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (Eric Dumazet)
- ipv6: prevent possible NULL dereference in rt6_probe() (Eric Dumazet)
- ipv6: prevent possible NULL deref in fib6_nh_init() (Eric Dumazet)
- netrom: Fix a memory leak in nr_heartbeat_expiry() (Gavrilov Ilia)
- cipso: fix total option length computation (Ondrej Mosnacek)
- mips: bmips: BCM6358: make sure CBR is correctly set (Christian Marangi)
- MIPS: Routerboard 532: Fix vendor retry check code (Ilpo Järvinen)
- PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (Mario Limonciello)
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (Roman Smirnov)
- usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (Alex Henrie)
- powerpc/io: Avoid clang null pointer arithmetic warnings (Michael Ellerman)
- powerpc/pseries: Enforce hcall result buffer validity and size (Nathan Lynch)
- Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (Uri Arev)
- scsi: qedi: Fix crash while reading debugfs attribute (Manish Rangankar)
- drop_monitor: replace spin_lock by raw_spin_lock (Wander Lairson Costa)
- batman-adv: bypass empty buckets in batadv_purge_orig_ref() (Eric Dumazet)
- selftests/bpf: Prevent client connect before server bind in test_tc_tunnel.sh (Alessandro Carminati (Red Hat))
- rcutorture: Fix rcu_torture_one_read() pipe_count overflow comment (Paul E. McKenney)
- i2c: at91: Fix the functionality flags of the slave-only interface (Jean Delvare)
- usb-storage: alauda: Check whether the media is initialized (Shichao Lai)
- greybus: Fix use-after-free bug in gb_interface_release due to race condition. (Sicong Huang)
- netfilter: nftables: exthdr: fix 4-byte stack OOB write (Florian Westphal)
- hugetlb_encode.h: fix undefined behaviour (34 icsk_af_ops. (Kuniyuki Iwashima) [Orabug: 34719866] {CVE-2022-3566}
- ipv6: Fix data races around sk->sk_prot. (Kuniyuki Iwashima) [Orabug: 34719906] {CVE-2022-3567}
- ipv6: annotate some data-races around sk->sk_prot (Eric Dumazet)
- nfs: Leave pages in the pagecache if readpage failed (Matthew Wilcox (Oracle))
- pwm: stm32: Refuse too small period requests (Uwe Kleine-König)
- mtd: spinand: macronix: Add support for serial NAND flash (Jaime Liao)
- ftruncate: pass a signed offset (Arnd Bergmann) [Orabug: 36897558] {CVE-2024-42084}
- ata: libata-core: Fix double free on error (Niklas Cassel) [Orabug: 36897374] {CVE-2024-41087}
- batman-adv: Don't accept TT entries for out-of-spec VIDs (Sven Eckelmann)
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes (Ma Ke) [Orabug: 36897380] {CVE-2024-41089}
- drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes (Ma Ke) [Orabug: 36897444] {CVE-2024-41095}
- hexagon: fix fadvise64_64 calling conventions (Arnd Bergmann)
- csky, hexagon: fix broken sys_sync_file_range (Arnd Bergmann)
- net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new (Oleksij Rempel)
- net: can: j1939: recover socket queue on CAN bus error during BAM transmission (Oleksij Rempel)
- net: can: j1939: Initialize unused data in j1939_send_one() (Shigeru Yoshida) [Orabug: 36897516] {CVE-2024-42076}
- tty: mcf: MCF54418 has 10 UARTS (Jean-Michel Hautbois)
- usb: atm: cxacru: fix endpoint checking in cxacru_bind() (Nikita Zhandarovich) [Orabug: 36897451] {CVE-2024-41097}
- usb: musb: da8xx: fix a resource leak in probe() (Dan Carpenter)
- usb: gadget: printer: SS+ support (Oliver Neukum)
- net: usb: ax88179_178a: improve link status logs (Jose Ignacio Tornos Martinez)
- iio: chemical: bme680: Fix sensor data read operation (Vasileios Amoiridis)
- iio: chemical: bme680: Fix overflows in compensate() functions (Vasileios Amoiridis) [Orabug: 36897566] {CVE-2024-42086}
- iio: chemical: bme680: Fix calibration data variable (Vasileios Amoiridis)
- iio: chemical: bme680: Fix pressure value output (Vasileios Amoiridis)
- iio: adc: ad7266: Fix variable checking bug (Fernando Yang)
- mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro() (Adrian Hunter)
- mmc: sdhci: Do not invert write-protect twice (Adrian Hunter)
- mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos (Ilpo Järvinen)
- x86: stop playing stack games in profile_pc() (Linus Torvalds) [Orabug: 36897616] {CVE-2024-42096}
- gpio: davinci: Validate the obtained number of IRQs (Aleksandr Mishin) [Orabug: 36897599] {CVE-2024-42092}
- nvme: fixup comment for nvme RDMA Provider Type (Hannes Reinecke)
- soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message (Andrew Davis)
- media: dvbdev: Initialize sbuf (Ricardo Ribalda)
- ALSA: emux: improve patch ioctl data validation (Oswald Buddenhagen) [Orabug: 36897624] {CVE-2024-42097}
- net/dpaa2: Avoid explicit cpumask var allocation on stack (Dawei Li) [Orabug: 36897602] {CVE-2024-42093}
- net/iucv: Avoid explicit cpumask var allocation on stack (Dawei Li) [Orabug: 36897608] {CVE-2024-42094}
- mtd: partitions: redboot: Added conversion of operands to a larger type (Denis Arefev)
- drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep (Laurent Pinchart) [Orabug: 36897570] {CVE-2024-42087}
- netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers (Pablo Neira Ayuso) [Orabug: 36897500] {CVE-2024-42070}
- parisc: use correct compat recv/recvfrom syscalls (Arnd Bergmann)
- sparc: fix old compat_sys_select() (Arnd Bergmann)
- net: phy: micrel: add Microchip KSZ 9477 to the device table (Enguerrand de Ribaucourt)
- net: phy: mchp: Add support for LAN8814 QUAD PHY (Divya Koppera)
- net: dsa: microchip: fix initial port flush problem (Tristram Ha)
- ASoC: fsl-asoc-card: set priv->pdev before using it (Elinor Montmasson) [Orabug: 36897578] {CVE-2024-42089}
- netfilter: nf_tables: validate family when identifying table via handle (Pablo Neira Ayuso)
- drm/amdgpu: fix UBSAN warning in kv_dpm.c (Alex Deucher) [Orabug: 36835992] {CVE-2024-40987}
- pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set (Huang-Huang Bao)
- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins (Huang-Huang Bao)
- pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins (Huang-Huang Bao)
- pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER (Hagar Hemdan) [Orabug: 36897586] {CVE-2024-42090}
- iio: dac: ad5592r: fix temperature channel scaling value (Marc Ferland)
- iio: dac: ad5592r: un-indent code-block for scale read (Alexandru Ardelean)
- iio: dac: ad5592r-base: Replace indio_dev->mlock with own device lock (Sergiu Cuciurean)
- x86/amd_nb: Check for invalid SMN reads (Yazen Ghannam)
- PCI: Add PCI_ERROR_RESPONSE and related definitions (Naveen Naidu)
- perf/core: Fix missing wakeup when waiting for context reference (Haifeng Xu)
- tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test (Jeff Johnson)
- arm64: dts: qcom: qcs404: fix bluetooth device address (Johan Hovold)
- ARM: dts: samsung: smdk4412: fix keypad no-autorepeat (Krzysztof Kozlowski)
- ARM: dts: samsung: exynos4412-origen: fix keypad no-autorepeat (Krzysztof Kozlowski)
- ARM: dts: samsung: smdkv310: fix keypad no-autorepeat (Krzysztof Kozlowski)
- i2c: ocores: set IACK bit after core is enabled (Grygorii Tertychnyi)
- gcov: add support for GCC 14 (Peter Oberparleiter)
- drm/radeon: fix UBSAN warning in kv_dpm.c (Alex Deucher) [Orabug: 36835997] {CVE-2024-40988}
- ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is fine." (Raju Rangoju)
- dmaengine: ioatdma: Fix missing kmem_cache_destroy() (Nikita Shubin)
- regulator: core: Fix modpost error "regulator_get_regmap" undefined (Biju Das)
- net: usb: rtl8150 fix unintiatilzed variables in rtl8150_get_link_ksettings (Oliver Neukum)
- netfilter: ipset: Fix suspicious rcu_dereference_protected() (Jozsef Kadlecsik) [Orabug: 36838634] {CVE-2024-40993}
- virtio_net: checksum offloading handling fix (Heng Qi)
- net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (David Ruth) [Orabug: 36836019] {CVE-2024-40995}
- net/sched: act_api: rely on rcu in tcf_idr_check_alloc (Pedro Tammela)
- netns: Make get_net_ns() handle zero refcount net (Yue Haibing) [Orabug: 36835849] {CVE-2024-40958}
- xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (Eric Dumazet) [Orabug: 36835852] {CVE-2024-40959}
- ipv6: prevent possible NULL dereference in rt6_probe() (Eric Dumazet) [Orabug: 36835857] {CVE-2024-40960}
- ipv6: prevent possible NULL deref in fib6_nh_init() (Eric Dumazet) [Orabug: 36835862] {CVE-2024-40961}
- netrom: Fix a memory leak in nr_heartbeat_expiry() (Gavrilov Ilia) [Orabug: 36836086] {CVE-2024-41006}
- cipso: fix total option length computation (Ondrej Mosnacek)
- mips: bmips: BCM6358: make sure CBR is correctly set (Christian Marangi) [Orabug: 36835870] {CVE-2024-40963}
- MIPS: Routerboard 532: Fix vendor retry check code (Ilpo Järvinen)
- PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports (Mario Limonciello)
- udf: udftime: prevent overflow in udf_disk_stamp_to_time() (Roman Smirnov)
- usb: misc: uss720: check for incompatible versions of the Belkin F5U002 (Alex Henrie)
- powerpc/io: Avoid clang null pointer arithmetic warnings (Michael Ellerman)
- powerpc/pseries: Enforce hcall result buffer validity and size (Nathan Lynch) [Orabug: 36835926] {CVE-2024-40974}
- Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl (Uri Arev)
- scsi: qedi: Fix crash while reading debugfs attribute (Manish Rangankar) [Orabug: 36835947] {CVE-2024-40978}
- drop_monitor: replace spin_lock by raw_spin_lock (Wander Lairson Costa) [Orabug: 36835960] {CVE-2024-40980}
- batman-adv: bypass empty buckets in batadv_purge_orig_ref() (Eric Dumazet) [Orabug: 36835966] {CVE-2024-40981}
- selftests/bpf: Prevent client connect before server bind in test_tc_tunnel.sh (Alessandro Carminati (Red Hat))
- rcutorture: Fix rcu_torture_one_read() pipe_count overflow comment (Paul E. McKenney)
- i2c: at91: Fix the functionality flags of the slave-only interface (Jean Delvare)
- usb-storage: alauda: Check whether the media is initialized (Shichao Lai) [Orabug: 36753734] {CVE-2024-38619}
- greybus: Fix use-after-free bug in gb_interface_release due to race condition. (Sicong Huang) [Orabug: 36835564] {CVE-2024-39495}
- netfilter: nftables: exthdr: fix 4-byte stack OOB write (Florian Westphal) [Orabug: 35814445] {CVE-2023-4881} {CVE-2023-52628}
- hugetlb_encode.h: fix undefined behaviour (34 truesize (Eric Dumazet)
- af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (Breno Leitao) [Orabug: 36753600] {CVE-2024-38596}
- m68k: mac: Fix reboot hang on Mac IIci (Finn Thain)
- m68k/mac: Use '030 reset method on SE/30 (Finn Thain)
- m68k: Fix spinlock race in kernel thread creation (Michael Schmitz) [Orabug: 36753715] {CVE-2024-38613}
- net: usb: sr9700: stop lying about skb->truesize (Eric Dumazet)
- wifi: mwl8k: initialize cmd->addr[] properly (Dan Carpenter)
- scsi: qedf: Ensure the copied buf is NUL terminated (Bui Quang Minh) [Orabug: 36753468] {CVE-2024-38559}
- scsi: bfa: Ensure the copied buf is NUL terminated (Bui Quang Minh) [Orabug: 36753473] {CVE-2024-38560}
- Revert "sh: Handle calling csum_partial with misaligned data" (Guenter Roeck)
- sh: kprobes: Merge arch_copy_kprobe() into arch_prepare_kprobe() (Geert Uytterhoeven)
- wifi: ar5523: enable proper endpoint verification (Nikita Zhandarovich) [Orabug: 36753486] {CVE-2024-38565}
- wifi: carl9170: add a proper sanity check for endpoints (Nikita Zhandarovich) [Orabug: 36753509] {CVE-2024-38567}
- macintosh/via-macii: Fix "BUG: sleeping function called from invalid context" (Finn Thain)
- macintosh/via-macii, macintosh/adb-iop: Clean up whitespace (Finn Thain)
- m68k/mac: Add mutual exclusion for IOP interrupt polling (Finn Thain)
- macintosh/via-macii: Remove BUG_ON assertions (Finn Thain)
- wifi: ath10k: Fix an error code problem in ath10k_dbg_sta_write_peer_debug_trigger() (Su Hui)
- scsi: hpsa: Fix allocation size for Scsi_Host private data (Yuri Karpov)
- scsi: libsas: Fix the failure of adding phy with zero-address to port (Xingui Yang)
- ACPI: disable -Wstringop-truncation (Arnd Bergmann)
- irqchip/alpine-msi: Fix off-by-one in allocation error path (Zenghui Yu)
- scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL (Andrew Halaney)
- scsi: ufs: core: Perform read back after disabling interrupts (Andrew Halaney)
- scsi: ufs: qcom: Perform read back after writing reset bit (Andrew Halaney)
- wifi: ath10k: poll service ready message before failing (Baochen Qiang)
- nfsd: drop st_mutex before calling move_to_close_lru() (NeilBrown)
- null_blk: Fix missing mutex_destroy() at module removal (Zhu Yanjun)
- jffs2: prevent xattr node from overflowing the eraseblock (Ilya Denisyev) [Orabug: 36753652] {CVE-2024-38599}
- crypto: ccp - drop platform ifdef checks (Arnd Bergmann)
- parisc: add missing export of __cmpxchg_u8() (Al Viro)
- nilfs2: fix out-of-range warning (Arnd Bergmann)
- ecryptfs: Fix buffer size for tag 66 packet (Brian Kubisiak) [Orabug: 36753537] {CVE-2024-38578}
- firmware: raspberrypi: Use correct device for DMA mappings (Laurent Pinchart)
- crypto: bcm - Fix pointer arithmetic (Aleksandr Mishin) [Orabug: 36753542] {CVE-2024-38579}
- ASoC: da7219-aad: fix usage of device_get_named_child_node() (Pierre-Louis Bossart)
- ASoC: dt-bindings: rt5645: add cbj sleeve gpio property (Derek Fang)
- ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating (Derek Fang)
- net: usb: qmi_wwan: add Telit FN920C04 compositions (Daniele Palmas)
- wifi: cfg80211: fix the order of arguments for trace events of the tx_rx_evt class (Igor Artemiev)
- tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (Daniel Starke) [Orabug: 36678069] {CVE-2024-36016}
- nilfs2: fix potential hang in nilfs_detach_log_writer() (Ryusuke Konishi) [Orabug: 36753558] {CVE-2024-38582}
- nilfs2: fix unexpected freezing of nilfs_segctor_sync() (Ryusuke Konishi)
- ring-buffer: Fix a race between readers and resize checks (Petr Pavlu) [Orabug: 36753662] {CVE-2024-38601}
ELBA-2024-12621 Oracle Linux 8 initscripts bug fix update
Oracle Linux Bug Fix Advisory ELBA-2024-12621
http://linux.oracle.com/errata/ELBA-2024-12621.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
initscripts-10.00.18-1.0.2.el8.x86_64.rpm
netconsole-service-10.00.18-1.0.2.el8.noarch.rpm
network-scripts-10.00.18-1.0.2.el8.x86_64.rpm
readonly-root-10.00.18-1.0.2.el8.noarch.rpm
aarch64:
initscripts-10.00.18-1.0.2.el8.aarch64.rpm
netconsole-service-10.00.18-1.0.2.el8.noarch.rpm
network-scripts-10.00.18-1.0.2.el8.aarch64.rpm
readonly-root-10.00.18-1.0.2.el8.noarch.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//initscripts-10.00.18-1.0.2.el8.src.rpm
Description of changes:
[10.00.18-1.0.2]
- Fix a bug in is_nm_handling() [Orabug: 37019525]
ELBA-2024-12624 Oracle Linux 7 libvirt bug fix update (aarch64)
Oracle Linux Bug Fix Advisory ELBA-2024-12624
http://linux.oracle.com/errata/ELBA-2024-12624.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
aarch64:
libvirt-5.7.0-43.el7.aarch64.rpm
libvirt-bash-completion-5.7.0-43.el7.aarch64.rpm
libvirt-client-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-config-network-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-config-nwfilter-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-interface-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-lxc-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-network-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-nodedev-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-nwfilter-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-qemu-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-secret-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-core-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-disk-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-gluster-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-logical-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-mpath-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-rbd-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-driver-storage-scsi-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-kvm-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-qemu-5.7.0-43.el7.aarch64.rpm
libvirt-devel-5.7.0-43.el7.aarch64.rpm
libvirt-docs-5.7.0-43.el7.aarch64.rpm
libvirt-libs-5.7.0-43.el7.aarch64.rpm
libvirt-admin-5.7.0-43.el7.aarch64.rpm
libvirt-daemon-lxc-5.7.0-43.el7.aarch64.rpm
libvirt-lock-sanlock-5.7.0-43.el7.aarch64.rpm
libvirt-login-shell-5.7.0-43.el7.aarch64.rpm
libvirt-nss-5.7.0-43.el7.aarch64.rpm
python2-libvirt-5.7.0-43.el7.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//libvirt-5.7.0-43.el7.src.rpm
http://oss.oracle.com/ol7/SRPMS-updates//libvirt-python-5.7.0-43.el7.src.rpm
Description of changes:
libvirt
[5.7.0-43.el7]
- qemu_firmware: don't error out for unknown firmware features (Pavel Hrdina) [Orabug: 36931914]
- cfg.mk: ignore buildrpm directory for syntax checks (Shaleen Bathla)
- qemu_process: Postpone vcpu re-pinning after vcpuinfo refresh from qemu (Shaleen Bathla) [Orabug: 36588995]
libvirt-python
[5.7.0-43.el7]
- Bump version number to 5.7.0-43 to match libvirt. (Karl Heubaum)
ELBA-2024-12620 Oracle Linux 7 initscripts bug fix update (aarch64)
Oracle Linux Bug Fix Advisory ELBA-2024-12620
http://linux.oracle.com/errata/ELBA-2024-12620.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
aarch64:
initscripts-9.49.53-1.0.5.el7_9.1.aarch64.rpm
debugmode-9.49.53-1.0.5.el7_9.1.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//initscripts-9.49.53-1.0.5.el7_9.1.src.rpm
Description of changes:
[9.49.53-1.0.5.el7_9.1]
- Fix a bug in is_nm_handling() [Orabug: 37019525]
ELBA-2024-12619 Oracle Linux 7 initscripts bug fix update
Oracle Linux Bug Fix Advisory ELBA-2024-12619
http://linux.oracle.com/errata/ELBA-2024-12619.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
initscripts-9.49.53-1.0.5.el7_9.1.x86_64.rpm
debugmode-9.49.53-1.0.5.el7_9.1.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//initscripts-9.49.53-1.0.5.el7_9.1.src.rpm
Description of changes:
[9.49.53-1.0.5.el7_9.1]
- Fix a bug in is_nm_handling() [Orabug: 37019525]