A kernel security and bug fix update has been released for AlmaLinux.
ALSA-2021:2714 Important: kernel security and bug fix update
Type:
security
Severity:
important
Release date:
2021-07-20
Description
Security Fix(es):
* kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909)
* kernel: race condition for removal of the HCI controller (CVE-2021-32399)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* pinctrl_emmitsburg: improper configuration (BZ#1963984)
* Ampere locking/qrwlock: Fix ordering in queued_write_lock_slowpath (BZ#1964419)
* RHEL8.4 - P10 NPIV Multi queue Test kernel- 4.18.0-283.el8.ibmvfc_11022021.ppc64le DLPAR operation fails for ibmvfc on Denali (ibmvfc/dlpar/RHEL8.4) (BZ#1964697)
* Every server is displaying the same power levels for all of our i40e 25G interfaces. 10G interfaces seem to be correct. Ethtool version is 5.0 (BZ#1967099)
* backport fixes for Connection Tracking offload (BZ#1968679)
* fm10k: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969910)
* ixgbevf: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969911)
* ena: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969913)
* b44, bnx2, bnx2x, bnxt, tg3: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969914)
* e1000, e1000e: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969915)
* ice: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969917)
* igb: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969919)
* igbvf: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969920)
* igc: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969921)
* ixgbe: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969922)
* i40e: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969923)
* iavf: removal of MODULE_VERSION deemed improper for y-stream release (BZ#1969925)
* Backport netlink extack tracepoint (BZ#1972938)
* RHEL8.4 kernel panic when create NPIV port on qedf driver (BZ#1974968)
References:
CVE-2021-32399
CVE-2021-33909
Updates packages:
bpftool-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-abi-stablelists-4.18.0-305.10.2.el8_4.noarch.rpm
kernel-core-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-cross-headers-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-debug-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-debug-core-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-debug-devel-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-debug-modules-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-debug-modules-extra-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-devel-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-doc-4.18.0-305.10.2.el8_4.noarch.rpm
kernel-headers-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-modules-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-modules-extra-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-tools-4.18.0-305.10.2.el8_4.x86_64.rpm
kernel-tools-libs-4.18.0-305.10.2.el8_4.x86_64.rpm
perf-4.18.0-305.10.2.el8_4.x86_64.rpm
python3-perf-4.18.0-305.10.2.el8_4.x86_64.rpm
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.
ALSA-2021:2714 Important: kernel security and bug fix update