ELBA-2017-3616
- ULN >
- Oracle Linux Errata repository >
- ELBA-2017-3616
ELBA-2017-3616 - Unbreakable Enterprise kernel bug fix update
| Type: | BUG |
| Severity: | NA |
| Release Date: | 2017-08-30 |
Description
kernel-uek
[4.1.12-61.51.1]
- SUNRPC: Handle EADDRNOTAVAIL on connection failures (Trond Myklebust) [Orabug: 25802249]
- xen-blkback: stop blkback thread of every queue in xen_blkif_disconnect (Annie Li)
[4.1.12-61.50.1]
- char: lp: fix possible integer overflow in lp_setup() (Willy Tarreau) [Orabug: 26403938] {CVE-2017-1000363}
- ALSA: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT (Takashi Iwai) [Orabug: 26403954] {CVE-2017-1000380}
- ALSA: timer: Fix race between read and ioctl (Takashi Iwai) [Orabug: 26403954] {CVE-2017-1000380}
- ipv6: Fix leak in ipv6_gso_segment(). (David S. Miller) [Orabug: 26403966] {CVE-2017-9074}
- ipv6: xfrm: Handle errors reported by xfrm6_find_1stfragopt() (Ben Hutchings) [Orabug: 26403966] {CVE-2017-9074}
- ipv6: Check ip6_find_1stfragopt() return value properly. (David S. Miller) [Orabug: 26403966] {CVE-2017-9074}
- ipv6: Prevent overrun when parsing v6 header options (Craig Gallek) [Orabug: 26403966] {CVE-2017-9074}
- ipv6/dccp: do not inherit ipv6_mc_list from parent (WANG Cong) [Orabug: 26404003] {CVE-2017-9077}
- scsi: libiscsi: use kvzalloc for iscsi_pool_init (Kyle Fortin) [Orabug: 26443597]
- mm: introduce kv[mz]alloc helpers (Kyle Fortin) [Orabug: 26443597]
[4.1.12-61.49.1]
- dccp/tcp: do not inherit mc_list from parent (Eric Dumazet) [Orabug: 26108563] {CVE-2017-8890}
- mlx4_core: Add func name to common error strings to locate uniquely (Mukesh Kacker) [Orabug: 26137675]
- RDS/IB: active bonding port state fix for intfs added late (Mukesh Kacker) [Orabug: 26139379]
- net/mlx4_core: Use round robin scheme to avoid stale caches (Santosh Shilimkar) [Orabug: 26361580]
[4.1.12-61.48.1]
- net/rds: Reduce memory footprint in rds_sendmsg (Wei Lin Guay) [Orabug: 26350952]
- nfsd: check for oversized NFSv2/v3 arguments (J. Bruce Fields) [Orabug: 26366015] {CVE-2017-7645}
[4.1.12-61.47.1]
- udp: properly support MSG_PEEK with truncated buffers (Eric Dumazet) [Orabug: 25876653] {CVE-2016-10229}
- HID: hid-cypress: validate length of report (Greg Kroah-Hartman) [Orabug: 25795985] {CVE-2017-7273}
- nfsd: stricter decoding of write-like NFSv2/v3 ops (J. Bruce Fields) [Orabug: 25986983] {CVE-2017-7895}
- net/packet: fix overflow in check for tp_reserve (Andrey Konovalov) [Orabug: 26143550] {CVE-2017-7308}
- net/packet: fix overflow in check for tp_frame_nr (Andrey Konovalov) [Orabug: 26143550] {CVE-2017-7308}
- net/packet: fix overflow in check for priv area size (Andrey Konovalov) [Orabug: 26143550] {CVE-2017-7308}
[4.1.12-61.46.1]
- mlx4: limit max MSIX allocations (Ajaykumar Hotchandani) [Orabug: 26331606]
- nvme: Handle PM1725 HIL reset (Martin K. Petersen) [Orabug: 26277595]
[4.1.12-61.45.1]
- xsigo: poor performance discovering 256 FC LUNs w/4 paths per LUN (Pradeep Gopanapalli) [Orabug: 25976641]
[4.1.12-61.44.1]
- xsigo: Compute node crash on FC failover (Pradeep Gopanapalli) [Orabug: 25981984]
- I/O ERROR WHEN A FILE ON ACFS FILESYSTEM IS ATTACHED TO THE GUEST DOMU (Joe Jin) [Orabug: 26096242]
[4.1.12-61.43.1]
- RDS/IB: 4KB receive buffers get posted by mistake on 16KB frag connections. (Venkat Venkatsubra) [Orabug: 26080015]
[4.1.12-61.42.1]
- Re-enable SDP for uek-nano kernel (Ashok Vairavan) [Orabug: 26000076]
[4.1.12-61.41.1]
- KVM: VMX: fix vmwrite to invalid VMCS (Radim Krcmar)
[4.1.12-61.40.1]
- block: fix use-after-free in seq file (Vegard Nossum) [Orabug: 25877511] {CVE-2016-7910}
[4.1.12-61.39.1]
- uek-rpm: enable CONFIG_KSPLICE. (Jamie Iles) [Orabug: 25698177]
- ksplice: add sysctls for determining Ksplice features. (Jamie Iles) [Orabug: 25698177]
- signal: protect SIGNAL_UNKILLABLE from unintentional clearing. (Jamie Iles) [Orabug: 25698177]
- KVM: x86: fix emulation of 'MOV SS, null selector' (Paolo Bonzini) [Orabug: 25719671] {CVE-2017-2583} {CVE-2017-2583}
- ext4: store checksum seed in superblock (Darrick J. Wong) [Orabug: 25719732] {CVE-2016-10208}
- ext4: reserve code points for the project quota feature (Theodore Tso) [Orabug: 25719732] {CVE-2016-10208}
- ext4: validate s_first_meta_bg at mount time (Eryu Guan) [Orabug: 25719732] {CVE-2016-10208}
- ext4: clean up feature test macros with predicate functions (Darrick J. Wong) [Orabug: 25719732] {CVE-2016-10208}
- sctp: avoid BUG_ON on sctp_wait_for_sndbuf (Marcelo Ricardo Leitner) [Orabug: 25719808] {CVE-2017-5986}
- tcp: avoid infinite loop in tcp_splice_read() (Eric Dumazet) [Orabug: 25720809] {CVE-2017-6214}
- ip: fix IP_CHECKSUM handling (Paolo Abeni) [Orabug: 25720845] {CVE-2017-6347}
- udp: fix IP_CHECKSUM handling (Eric Dumazet) [Orabug: 25720845] {CVE-2017-6347}
- udp: do not expect udp headers in recv cmsg IP_CMSG_CHECKSUM (Willem de Bruijn) [Orabug: 25720845] {CVE-2017-6347}
- ipc/shm: Fix shmat mmap nil-page protection (Davidlohr Bueso) [Orabug: 25797004] {CVE-2017-5669}
- xfrm_user: validate XFRM_MSG_NEWAE incoming ESN size harder (Andy Whitcroft) [Orabug: 25814649] {CVE-2017-7184}
- xfrm_user: validate XFRM_MSG_NEWAE XFRMA_REPLAY_ESN_VAL replay_window (Andy Whitcroft) [Orabug: 25814649] {CVE-2017-7184}
[4.1.12-61.38.1]
- xen-netfront: Rework the fix for Rx stall during OOM and network stress (Dongli Zhang) [Orabug: 25798673]
- xen-netfront: Fix Rx stall during network stress and OOM (Dongli Zhang) [Orabug: 25798673]
[4.1.12-61.37.1]
- Revert 'x86/mm: Expand the exception table logic to allow new handling options' (Brian Maly) [Orabug: 25790387] {CVE-2016-9644}
- Revert 'fix minor infoleak in get_user_ex()' (Brian Maly) [Orabug: 25790391] {CVE-2016-9644}
[4.1.12-61.36.1]
- x86/mm: Expand the exception table logic to allow new handling options (Tony Luck) [Orabug: 25790391] {CVE-2016-9644}
[4.1.12-61.35.1]
- xsigo: [errata] xve:Accessing proc entry l2table crashes system (Pradeep Gopanapalli) [Orabug: 25779590]
- xsigo: [backport] Fix race condition in freeing aging forwarding tables (Pradeep Gopanapalli) [Orabug: 25704632]
- xsigo: [errata] Optimize xsvnic module parameters for UEK4. (Pradeep Gopanapalli) [Orabug: 25779897]
- IB/CORE: sync the resouce access in fmr_pool (Wengang Wang) [Orabug: 25677461]
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
