Oracle Linux 6276 Published by

An unbreakable Enterprise kernel security update (aarch64) has been released for Oracle Linux 7.



El-errata: ELSA-2021-9035 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update (aarch64)


Oracle Linux Security Advisory ELSA-2021-9035

  http://linux.oracle.com/errata/ELSA-2021-9035.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

aarch64:
kernel-uek-4.14.35-2025.405.3.el7uek.aarch64.rpm
kernel-uek-debug-4.14.35-2025.405.3.el7uek.aarch64.rpm
kernel-uek-debug-devel-4.14.35-2025.405.3.el7uek.aarch64.rpm
kernel-uek-devel-4.14.35-2025.405.3.el7uek.aarch64.rpm
kernel-uek-tools-4.14.35-2025.405.3.el7uek.aarch64.rpm
kernel-uek-tools-libs-4.14.35-2025.405.3.el7uek.aarch64.rpm
kernel-uek-tools-libs-devel-4.14.35-2025.405.3.el7uek.aarch64.rpm
perf-4.14.35-2025.405.3.el7uek.aarch64.rpm
python-perf-4.14.35-2025.405.3.el7uek.aarch64.rpm
kernel-uek-headers-4.14.35-2025.405.3.el7uek.aarch64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-4.14.35-2025.405.3.el7uek.src.rpm


Description of changes:

[4.14.35-2025.405.3.el7uek]
- Revert "rds: Deregister all FRWR mr with free_mr" (aru kolappan)
[Orabug: 32426280]

[4.14.35-2025.405.2.el7uek]
- nfs: Fix security label length not being reset (Jeffrey Mitchell)
[Orabug: 32350995]

[4.14.35-2025.405.1.el7uek]
- net/rds: Fix gfp_t parameter (Hans Westgaard Ry) [Orabug: 32372162]
- uek-rpm: update kABI lists for new symbol (Dan Duval) [Orabug: 32378208]
- sysctl: handle overflow in proc_get_long (Christian Brauner) [Orabug:
32382641]
- net/mlx5: Use a single MSIX vector for all control EQs in VFs (Ariel
Levkovich) [Orabug: 31785275]
- net/mlx5: Fix available EQs FW used to reserve (Denis Drozdov)
[Orabug: 31785275]
- net/mlx5: Use max_num_eqs for calculation of required MSIX vectors
(Denis Drozdov) [Orabug: 31785275]
- net/mlx5: Expose DEVX specification (Yishai Hadas) [Orabug: 31785275]
- x86/process: Mark cpu inactive before offlining (Mridula Shastry)
[Orabug: 32245085]
- target: fix XCOPY NAA identifier lookup (David Disseldorp) [Orabug:
32248040] {CVE-2020-28374}

[4.14.35-2025.405.0.el7uek]
- KVM: x86: clflushopt should be treated as a no-op by emulation (David
Edmondson) [Orabug: 32251913]
- tty: Fix ->session locking (Jann Horn) [Orabug: 32266681] {CVE-2020-29660}
- tty: Fix ->pgrp locking in tiocspgrp() (Jann Horn) [Orabug: 32266681]
{CVE-2020-29660}
- lockd: don't use interval-based rebinding over TCP (Calum Mackay)
[Orabug: 32337718]
- mwifiex: Fix possible buffer overflows in
mwifiex_cmd_802_11_ad_hoc_start (Zhang Xiaohui) [Orabug: 32349207]
{CVE-2020-36158}
- add license checking to kABI checker (Dan Duval) [Orabug: 32355210]