ELBA-2026-27353-1

ELBA-2026-27353-1 - kernel bug fix update

Type:BUG
Impact:NA
Release Date:2026-06-29

Description


[4.18.0-553.136.1.0.1]
- scsi: core: Restrict legal sdev_state transitions via sysfs (Uday Shankar) [Orabug: 37778230]

[4.18.0-553.136.1]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985772]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985772]

[4.18.0-553.136.1]
- net/sched: fix pedit partial COW leading to page cache corruption (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: free pedit keys on bail from offset check (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: rate limit datapath messages (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: remove extra check for key type (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- net/sched: act_pedit: check static offsets a priori (Ivan Vecera) [RHEL-177582] {CVE-2026-46331}
- nvmet-tcp: fix race between ICReq handling and queue teardown (Chris Leech) [RHEL-180103] {CVE-2026-46135}
- net: mana: fix use-after-free in add_adev() error path (CKI Backport Bot) [RHEL-172764] {CVE-2026-43056}

[4.18.0-553.135.1]
- drm/amd/display: Do not skip unrelated mode changes in DSC validation (Jose Exposito) [RHEL-178825] {CVE-2026-31488}
- sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting (Juri Lelli) [RHEL-178520]
- RDMA/mana_ib: Validate rx_hash_key_len to prevent buffer overflow (Gaurav Goklani) [RHEL-180089] {CVE-2026-46145}
- ALSA: aloop: Fix peer runtime UAF during format-change stop (Jaroslav Kysela) [RHEL-179304] {CVE-2026-46090}
- ALSA: usb-audio: Add sanity check for OOB writes at silencing (CKI Backport Bot) [RHEL-173939] {CVE-2026-43279}
- net: bonding: fix use-after-free in bond_xmit_broadcast() (Xin Long) [RHEL-168063] {CVE-2026-31419}




Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (x86_64) kernel-4.18.0-553.136.1.0.1.el8_10.src.rpm63d1263c3e549358f537c204b59ca45549af533360da80a8848d0f50250f179c-ol8_x86_64_MODRHCK
bpftool-4.18.0-553.136.1.0.1.el8_10.x86_64.rpmf13ed62b22b34a144f08c13f931fc5405e35e65594dab77117de213a883d47aa-ol8_x86_64_MODRHCK
kernel-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm663e6ed02c50497440d91d23c1fef87bc3ce784ab60b11b5297d129f7f32a91c-ol8_x86_64_MODRHCK
kernel-abi-stablelists-4.18.0-553.136.1.0.1.el8_10.noarch.rpmf1ab671c4c04ad2c60ab35055e4bfe8913ab70a9cd898905513190902d26e20d-ol8_x86_64_MODRHCK
kernel-core-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm6426cefbef878b091e599458269fa59e9080bffc5edcae709f20da5fff1e1e23-ol8_x86_64_MODRHCK
kernel-cross-headers-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm74e2bbc9250493926a4974a64b6eda2f6a05ab9ac7f5e0a1c7ae2c7adb822c35-ol8_x86_64_MODRHCK
kernel-debug-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm3d336045b590ea16c9ae2460b744803c94241fa6241faa6c1beacbc646fca653-ol8_x86_64_MODRHCK
kernel-debug-core-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm892272e58a92d04bd7c5f35ab48e0c48e245214789b08f39c93f869d0bf2630c-ol8_x86_64_MODRHCK
kernel-debug-devel-4.18.0-553.136.1.0.1.el8_10.x86_64.rpmb1ba505a8040c4a2a5d1f31e876c045dd52201a9fef92edf668603c6feb57d08-ol8_x86_64_MODRHCK
kernel-debug-modules-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm4f1a4a7bf84645e714b8421c3c1942635b367f350a3fa932bf829003ffff19a4-ol8_x86_64_MODRHCK
kernel-debug-modules-extra-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm4cdc1d876e395982fac18728a93dc8b3dc4c371b28f62d7b32f37ea344277151-ol8_x86_64_MODRHCK
kernel-devel-4.18.0-553.136.1.0.1.el8_10.x86_64.rpmb3db3c902043b32a6e4ce64f2a047acaafef8ef5b50d8e2d24f6e94814e4360f-ol8_x86_64_MODRHCK
kernel-doc-4.18.0-553.136.1.0.1.el8_10.noarch.rpm1de017224691036fd3be075b5167dd6a6473ed48afbae177a4ff15d5a30954e0-ol8_x86_64_MODRHCK
kernel-headers-4.18.0-553.136.1.0.1.el8_10.x86_64.rpmd9fd4e1094964fc5eef70c6639a7840087f527c675560abd5c049baa7bacd361-ol8_x86_64_MODRHCK
kernel-modules-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm4058330841e0849eb4ecf06d3eec13240b6c3373a5441e742aeaa3fe872fec94-ol8_x86_64_MODRHCK
kernel-modules-extra-4.18.0-553.136.1.0.1.el8_10.x86_64.rpmc4d156413ea4a0995097f425d909de34a9a8cb259622f138ba5d44aec9f966ec-ol8_x86_64_MODRHCK
kernel-tools-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm2265708559e61c2c008b7b93eed4d60f658402ab6f913997072ee3d2255886e4-ol8_x86_64_MODRHCK
kernel-tools-libs-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm455e1e2496744f73a67ef55cc2d6bba36e042c843baeb27ea5a7c258c350aa44-ol8_x86_64_MODRHCK
kernel-tools-libs-devel-4.18.0-553.136.1.0.1.el8_10.x86_64.rpmac96b134b27104df65013eab317af2973a5852187b1187784ceb2a71871e4a5b-ol8_x86_64_MODRHCK
perf-4.18.0-553.136.1.0.1.el8_10.x86_64.rpm90f5eeffbb709d30b9e3bb2177b29d39a7c5f45a342ffdc98e5dd72443c69d13-ol8_x86_64_MODRHCK
python3-perf-4.18.0-553.136.1.0.1.el8_10.x86_64.rpmc719b0ebcb34f1cb5214e6185fb99e6053c37146c645bdec5e74e0c118bf9b03-ol8_x86_64_MODRHCK



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete