ELBA-2020-3652

ULN >
Oracle Linux Errata repository >
ELBA-2020-3652

ELBA-2020-3652 - kernel bug fix update

Type:	BUG
Impact:	NA
Release Date:	2020-09-09

Description

[4.18.0-193.19.1_2.OL8]
- Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-2.0.3.el7

[4.18.0-193.19.1_2]
- [net] tcp: add sanity tests in tcp_add_backlog() (Guillaume Nault) [1861378 1790843]
- [net] tcp: implement coalescing on backlog queue (Guillaume Nault) [1861378 1790843]
- [include] tcp: make tcp_space() aware of socket backlog (Guillaume Nault) [1861378 1790843]
- [net] tcp: take care of compressed acks in tcp_add_reno_sack() (Guillaume Nault) [1861378 1790843]
- [include] tcp: hint compiler about sack flows (Guillaume Nault) [1861378 1790843]
- [net] tcp: drop dst in tcp_add_backlog() (Guillaume Nault) [1861378 1790843]

[4.18.0-193.18.1_2]
- [security] selinux: allow reading labels before policy is loaded (Ondrej Mosnacek) [1861721 1839819]
- [security] selinux: allow labeling before policy is loaded (Ondrej Mosnacek) [1861722 1777525]
- [mm] mm/memory_hotplug.c: only respect mem= parameter during boot stage (Baoquan He) [1854207 1838809]

[4.18.0-193.17.1_2]
- [net] netfilter: nf_tables: reintroduce the NFT_SET_CONCAT flag (Phil Sutter) [1854531 1847553]
- [net] netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type (Phil Sutter) [1854531 1847553]
- [s390] s390: prevent leaking kernel address in BEAR (Claudio Imbrenda) [1854986 1850907]
- [s390] scsi: zfcp: Fix panic on ERP timeout for previously dismissed ERP action (Philipp Rudo) [1861355 1857312]

[4.18.0-193.16.1_2]
- [infiniband] IB/rdmavt: Free kernel completion queue when done (Gopal Tiwari) [1857757 1805036]
- [kernel] Move to dual-signing to split signing keys up better (pjones) [1837433 1837434] {CVE-2020-10713}
- [crypto] pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1837433 1837434] {CVE-2020-10713}
- [acpi] ACPI: configfs: Disallow loading ACPI tables when locked down (Lenny Szubowicz) [1852968 1852969] {CVE-2020-15780}
- [firmware] efi: Restrict efivar_ssdt_load when the kernel is locked down (Lenny Szubowicz) [1852948 1852949] {CVE-2019-20908}

[4.18.0-193.15.1_2]
- [wireless] iwlwifi: pcie: handle QuZ configs with killer NICs as well (Jarod Wilson) [1857773 1844129]
- [wireless] iwlwifi: pcie: move power gating workaround earlier in the flow (Jarod Wilson) [1857773 1844129]
- [nvme] nvme: fix possible deadlock when nvme_update_formats fails (Gopal Tiwari) [1857115 1781927]
- [iommu] iommu: move flags field before ids in iommu_fwspec (Jerry Snitselaar) [1856966 1833512]
- [x86] kvm: x86: only do L1TF workaround on affected processors (Vitaly Kuznetsov) [1857796 1800673]
- [x86] kvm: x86: create mmu/ subdirectory (Vitaly Kuznetsov) [1857796 1800673]
- [kvm] KVM: SVM: Override default MMIO mask if memory encryption is enabled (Wei Huang) [1857796 1800673]

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	kernel-4.18.0-193.19.1.el8_2.src.rpm	546ce600cdc7b88da06366b66053643857fd03c33642071bfd6c48cf281a7e05	-	ol8_aarch64_baseos_latest
	kernel-4.18.0-193.19.1.el8_2.src.rpm	546ce600cdc7b88da06366b66053643857fd03c33642071bfd6c48cf281a7e05	-	ol8_aarch64_codeready_builder
	kernel-4.18.0-193.19.1.el8_2.src.rpm	546ce600cdc7b88da06366b66053643857fd03c33642071bfd6c48cf281a7e05	-	ol8_aarch64_u2_baseos_patch
	bpftool-4.18.0-193.19.1.el8_2.aarch64.rpm	f8bd133893e087d8597034dff30641739e30b2559abda65d5d6dbde3ec1dda6e	-	ol8_aarch64_baseos_latest
	bpftool-4.18.0-193.19.1.el8_2.aarch64.rpm	f8bd133893e087d8597034dff30641739e30b2559abda65d5d6dbde3ec1dda6e	-	ol8_aarch64_u2_baseos_patch
	kernel-cross-headers-4.18.0-193.19.1.el8_2.aarch64.rpm	7cc1ca84762720b2abe9d9de3cce7e38cdd2ffa72c392174516532b8c483db86	-	ol8_aarch64_baseos_latest
	kernel-cross-headers-4.18.0-193.19.1.el8_2.aarch64.rpm	7cc1ca84762720b2abe9d9de3cce7e38cdd2ffa72c392174516532b8c483db86	-	ol8_aarch64_u2_baseos_patch
	kernel-headers-4.18.0-193.19.1.el8_2.aarch64.rpm	ab04674bbf30a7ced5c4617bc33dd6720b1e7a6461b1f0c6b15c6634d1277ad7	-	ol8_aarch64_baseos_latest
	kernel-headers-4.18.0-193.19.1.el8_2.aarch64.rpm	ab04674bbf30a7ced5c4617bc33dd6720b1e7a6461b1f0c6b15c6634d1277ad7	-	ol8_aarch64_u2_baseos_patch
	kernel-tools-4.18.0-193.19.1.el8_2.aarch64.rpm	48c3e85aa6ea1cb81dc7ea13c1a707af1533e53c62704c1332a1dc5f1639b14b	-	ol8_aarch64_baseos_latest
	kernel-tools-4.18.0-193.19.1.el8_2.aarch64.rpm	48c3e85aa6ea1cb81dc7ea13c1a707af1533e53c62704c1332a1dc5f1639b14b	-	ol8_aarch64_u2_baseos_patch
	kernel-tools-libs-4.18.0-193.19.1.el8_2.aarch64.rpm	0dd3ae5b4a026b2e2362d858c4e78fb26cf4788e9be7151f726032831fde103e	-	ol8_aarch64_baseos_latest
	kernel-tools-libs-4.18.0-193.19.1.el8_2.aarch64.rpm	0dd3ae5b4a026b2e2362d858c4e78fb26cf4788e9be7151f726032831fde103e	-	ol8_aarch64_u2_baseos_patch
	perf-4.18.0-193.19.1.el8_2.aarch64.rpm	b507ae58ee600e2faf44a4cbeedec1ce5238ef62c41b2759e5cf1f0402101e73	-	ol8_aarch64_baseos_latest
	perf-4.18.0-193.19.1.el8_2.aarch64.rpm	b507ae58ee600e2faf44a4cbeedec1ce5238ef62c41b2759e5cf1f0402101e73	-	ol8_aarch64_u2_baseos_patch
	python3-perf-4.18.0-193.19.1.el8_2.aarch64.rpm	0a8be5866afa3fd8a304ec190269cdc0a625bcb4fe48c35527630d27f2a10f18	-	ol8_aarch64_baseos_latest
	python3-perf-4.18.0-193.19.1.el8_2.aarch64.rpm	0a8be5866afa3fd8a304ec190269cdc0a625bcb4fe48c35527630d27f2a10f18	-	ol8_aarch64_u2_baseos_patch

Oracle Linux 8 (x86_64)	kernel-4.18.0-193.19.1.el8_2.src.rpm	546ce600cdc7b88da06366b66053643857fd03c33642071bfd6c48cf281a7e05	-	ol8_x86_64_baseos_latest
	kernel-4.18.0-193.19.1.el8_2.src.rpm	546ce600cdc7b88da06366b66053643857fd03c33642071bfd6c48cf281a7e05	-	ol8_x86_64_codeready_builder
	kernel-4.18.0-193.19.1.el8_2.src.rpm	546ce600cdc7b88da06366b66053643857fd03c33642071bfd6c48cf281a7e05	-	ol8_x86_64_u2_baseos_patch
	bpftool-4.18.0-193.19.1.el8_2.x86_64.rpm	262d8ecbd5251b4f7286c89a234679546f425189ca8543d076227b6e11e33797	-	ol8_x86_64_baseos_latest
	bpftool-4.18.0-193.19.1.el8_2.x86_64.rpm	262d8ecbd5251b4f7286c89a234679546f425189ca8543d076227b6e11e33797	-	ol8_x86_64_u2_baseos_patch
	kernel-4.18.0-193.19.1.el8_2.x86_64.rpm	2fb9e36202d0428c67bd31968a6d2ff78a6b8d8b69cc0e5a2870f85e5504dd31	-	ol8_x86_64_baseos_latest
	kernel-4.18.0-193.19.1.el8_2.x86_64.rpm	2fb9e36202d0428c67bd31968a6d2ff78a6b8d8b69cc0e5a2870f85e5504dd31	-	ol8_x86_64_u2_baseos_patch
	kernel-abi-whitelists-4.18.0-193.19.1.el8_2.noarch.rpm	00d511392c15ce85ce45b9019a99b52e2b3e7eb49ab66118482af7c1c83d288e	-	ol8_x86_64_baseos_latest
	kernel-abi-whitelists-4.18.0-193.19.1.el8_2.noarch.rpm	00d511392c15ce85ce45b9019a99b52e2b3e7eb49ab66118482af7c1c83d288e	-	ol8_x86_64_u2_baseos_patch
	kernel-core-4.18.0-193.19.1.el8_2.x86_64.rpm	590206fcd23485bf3982654e3e62658dfeffcc6db9ef45a0062c43f1c7133d31	-	ol8_x86_64_baseos_latest
	kernel-core-4.18.0-193.19.1.el8_2.x86_64.rpm	590206fcd23485bf3982654e3e62658dfeffcc6db9ef45a0062c43f1c7133d31	-	ol8_x86_64_u2_baseos_patch
	kernel-cross-headers-4.18.0-193.19.1.el8_2.x86_64.rpm	16c429d6d6ac67862487efa9ecd6bc55211913e09a28eb021797f9548553217c	-	ol8_x86_64_baseos_latest
	kernel-cross-headers-4.18.0-193.19.1.el8_2.x86_64.rpm	16c429d6d6ac67862487efa9ecd6bc55211913e09a28eb021797f9548553217c	-	ol8_x86_64_u2_baseos_patch
	kernel-debug-4.18.0-193.19.1.el8_2.x86_64.rpm	89136bf60515202fc7a9b48ad9844c43c10e6a9e23e32dfba2df21a94f67b836	-	ol8_x86_64_baseos_latest
	kernel-debug-4.18.0-193.19.1.el8_2.x86_64.rpm	89136bf60515202fc7a9b48ad9844c43c10e6a9e23e32dfba2df21a94f67b836	-	ol8_x86_64_u2_baseos_patch
	kernel-debug-core-4.18.0-193.19.1.el8_2.x86_64.rpm	2ebfc78b49f02d0428b4adc13634e3b72867d8c2707fd54235d4b339199470be	-	ol8_x86_64_baseos_latest
	kernel-debug-core-4.18.0-193.19.1.el8_2.x86_64.rpm	2ebfc78b49f02d0428b4adc13634e3b72867d8c2707fd54235d4b339199470be	-	ol8_x86_64_u2_baseos_patch
	kernel-debug-devel-4.18.0-193.19.1.el8_2.x86_64.rpm	7ab1f5fce9c6090f55d5cd00392b9916c42e89a053c2c04c7a6be9eb9ec1c956	-	ol8_x86_64_baseos_latest
	kernel-debug-devel-4.18.0-193.19.1.el8_2.x86_64.rpm	7ab1f5fce9c6090f55d5cd00392b9916c42e89a053c2c04c7a6be9eb9ec1c956	-	ol8_x86_64_u2_baseos_patch
	kernel-debug-modules-4.18.0-193.19.1.el8_2.x86_64.rpm	928505473b7cbf526e4eef129a6d2c9df6425b6305b8716bb1f8d4004572ea8a	-	ol8_x86_64_baseos_latest
	kernel-debug-modules-4.18.0-193.19.1.el8_2.x86_64.rpm	928505473b7cbf526e4eef129a6d2c9df6425b6305b8716bb1f8d4004572ea8a	-	ol8_x86_64_u2_baseos_patch
	kernel-debug-modules-extra-4.18.0-193.19.1.el8_2.x86_64.rpm	544ab66da090aa0db9b8014e3cb172408342f47793dd802857a80735041330db	-	ol8_x86_64_baseos_latest
	kernel-debug-modules-extra-4.18.0-193.19.1.el8_2.x86_64.rpm	544ab66da090aa0db9b8014e3cb172408342f47793dd802857a80735041330db	-	ol8_x86_64_u2_baseos_patch
	kernel-devel-4.18.0-193.19.1.el8_2.x86_64.rpm	137e26db63d08fc00564499e12b7135c8f023c25679ff2f719e9e71e14c2ec47	-	ol8_x86_64_baseos_latest
	kernel-devel-4.18.0-193.19.1.el8_2.x86_64.rpm	137e26db63d08fc00564499e12b7135c8f023c25679ff2f719e9e71e14c2ec47	-	ol8_x86_64_u2_baseos_patch
	kernel-doc-4.18.0-193.19.1.el8_2.noarch.rpm	3ad06592b9fa8a28565d05e862c0a1655b79934221e87274b5c46e101f1a379a	-	ol8_x86_64_baseos_latest
	kernel-doc-4.18.0-193.19.1.el8_2.noarch.rpm	3ad06592b9fa8a28565d05e862c0a1655b79934221e87274b5c46e101f1a379a	-	ol8_x86_64_u2_baseos_patch
	kernel-headers-4.18.0-193.19.1.el8_2.x86_64.rpm	dcdecc305d38b93bcb895dda07f2c46279b872f2a7153273d31678e5915f729f	-	ol8_x86_64_baseos_latest
	kernel-headers-4.18.0-193.19.1.el8_2.x86_64.rpm	dcdecc305d38b93bcb895dda07f2c46279b872f2a7153273d31678e5915f729f	-	ol8_x86_64_u2_baseos_patch
	kernel-modules-4.18.0-193.19.1.el8_2.x86_64.rpm	141551528f4199c468436fa172a11626cad6a8c54c2a3ffffb64332df2df0397	-	ol8_x86_64_baseos_latest
	kernel-modules-4.18.0-193.19.1.el8_2.x86_64.rpm	141551528f4199c468436fa172a11626cad6a8c54c2a3ffffb64332df2df0397	-	ol8_x86_64_u2_baseos_patch
	kernel-modules-extra-4.18.0-193.19.1.el8_2.x86_64.rpm	232ff018ffc46fec8551b32b04177a437611c8060639604ec2cf1cb9129953d7	-	ol8_x86_64_baseos_latest
	kernel-modules-extra-4.18.0-193.19.1.el8_2.x86_64.rpm	232ff018ffc46fec8551b32b04177a437611c8060639604ec2cf1cb9129953d7	-	ol8_x86_64_u2_baseos_patch
	kernel-tools-4.18.0-193.19.1.el8_2.x86_64.rpm	b6a4d5a8f223031f4e2b61da898d7188c8f32e6438963a1e194d8fcecc32c70c	-	ol8_x86_64_baseos_latest
	kernel-tools-4.18.0-193.19.1.el8_2.x86_64.rpm	b6a4d5a8f223031f4e2b61da898d7188c8f32e6438963a1e194d8fcecc32c70c	-	ol8_x86_64_u2_baseos_patch
	kernel-tools-libs-4.18.0-193.19.1.el8_2.x86_64.rpm	13077a996fd55fb2f5e4587069887ed43b1c8c6ebea82cfda19e64c39fbbf078	-	ol8_x86_64_baseos_latest
	kernel-tools-libs-4.18.0-193.19.1.el8_2.x86_64.rpm	13077a996fd55fb2f5e4587069887ed43b1c8c6ebea82cfda19e64c39fbbf078	-	ol8_x86_64_u2_baseos_patch
	kernel-tools-libs-devel-4.18.0-193.19.1.el8_2.x86_64.rpm	450ab90c44be8a7bbec3caeaba536b77a37a97371954cd0477c7aea143b30ead	-	ol8_x86_64_codeready_builder
	perf-4.18.0-193.19.1.el8_2.x86_64.rpm	fdf3bf74b35a85c96a31081524d4fbef93b3ad5e796b492d2b11401904ab5d3a	-	ol8_x86_64_baseos_latest
	perf-4.18.0-193.19.1.el8_2.x86_64.rpm	fdf3bf74b35a85c96a31081524d4fbef93b3ad5e796b492d2b11401904ab5d3a	-	ol8_x86_64_u2_baseos_patch
	python3-perf-4.18.0-193.19.1.el8_2.x86_64.rpm	6910fa0cd063cc88f91d4db9ee1bc20bcc747132a7c2baae6b201bb9f43530bf	-	ol8_x86_64_baseos_latest
	python3-perf-4.18.0-193.19.1.el8_2.x86_64.rpm	6910fa0cd063cc88f91d4db9ee1bc20bcc747132a7c2baae6b201bb9f43530bf	-	ol8_x86_64_u2_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691