ELSA-2017-3315

ELSA-2017-3315 - kernel security and bug fix update

Type:SECURITY
Impact:IMPORTANT
Release Date:2017-11-30

Description


- [3.10.0-693.11.1.OL7]
- Oracle Linux certificates (Alexey Petrenko)
- Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)(alexey.petrenko@oracle.com)
- Update x509.genkey [bug 24817676]

[3.10.0-693.11.1]
- [powerpc] perf: Fix book3s kernel to userspace backtraces (Gustavo Duarte) [1506143 1492669]

[3.10.0-693.10.1]
- [mm] mm, hugetlb: use pte_present() instead of pmd_present() in follow_huge_pmd() (Rafael Aquini) [1505164 1472460]
- [mm] fix invalid node in alloc_migrate_target() (Rafael Aquini) [1505164 1472460]
- [mm] add !pte_present() check on existing hugetlb_entry callbacks (Rafael Aquini) [1505164 1472460]
- [fs] ceph: avoid accessing freeing inode in ceph_check_delayed_caps() (Ilya Dryomov) [1505163 1489426]
- [fs] nfsd: Fix general protection fault in release_lock_stateid() (J. Bruce Fields) [1505160 1500815]
- [fs] cifs: Reconnect expired SMB sessions (Leif Sahlberg) [1501526 1477052]
- [fs] cifs: Separate SMB2 header structure (Leif Sahlberg) [1501526 1429710]

[3.10.0-693.9.1]
- [fs] ext4: fix off-by-one on max nr_pages in ext4_find_unwritten_pgoff() (Bill O'Donnell) [1504115 1458728]
- [fs] ext4: fix off-by-in loop termination in ext4_find_unwritten_pgoff() (Bill O'Donnell) [1501387 1469363]
- [fs] ext4: fix SEEK_HOLE (Bill O'Donnell) [1501387 1469363]
- [fs] xfs: Move handling of missing page into one place in xfs_find_get_desired_pgoff() (Bill O'Donnell) [1498736 1460446]
- [fs] xfs: Fix off-by-in in loop termination in xfs_find_get_desired_pgoff() (Bill O'Donnell) [1498736 1460446]
- [fs] xfs: Fix missed holes in SEEK_HOLE implementation (Bill O'Donnell) [1498736 1460446]
- [fs] xfs: fix off-by-one on max nr_pages in xfs_find_get_desired_pgoff() (Eryu Guan) [1502731 1458997]
- [nvme] Test unit Ready broken for nvme drvices (David Milburn) [1502733 1478457]
- [hv] vmbus: Increase the time between retries in vmbus_post_msg() (Mohammed Gamal) [1495763 1491843]
- [hv] vmbus: Fix error code returned by vmbus_post_msg() (Mohammed Gamal) [1495763 1467258]
- [netdrv] netvsc: propagate MAC address change to VF slave (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: delay setup of VF device (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: make sure and unregister datapath (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: fix rtnl deadlock on unregister of vf (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: transparent VF management (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] hv_netvsc: Fix the carrier state error when data path is off (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] hv_netvsc: Fix the queue index computation in forwarding case (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: handle select_queue when device is being removed (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: report per-channel stats in ethtool statistics (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: account for packets/bytes transmitted after completion (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: group all per-channel state together (Vitaly Kuznetsov) [1500321 1477784]
- [netdrv] netvsc: enhance transmit select_queue (Vitaly Kuznetsov) [1500321 1477784]

[3.10.0-693.8.1]
- [x86] kvm: x86: Fix potential preemption when get the current kvmclock timestamp (Marcelo Tosatti) [1503459 1496522]
- [x86] kvm: x86: remove irq disablement around KVM_SET_CLOCK/KVM_GET_CLOCK (Marcelo Tosatti) [1503459 1496522]

[3.10.0-693.7.1]
- [mm] page_cgroup: Fix Kernel bug during boot with memory cgroups enabled (Larry Woodman) [1491970 1483747]
- Revert: [mm] Fix Kernel bug during boot with memory cgroups enabled (Larry Woodman) [1491970 1483747]

[3.10.0-693.6.1]
- [netdrv] mlx5: Avoid using pending command interface slots (Don Dutile) [1497604 1463367]
- [x86] amd: Limit cpu_core_id fixup to families older than F17h (Suravee Suthikulpanit) [1497603 1477397]
- [x86] cpu/amd: Fix Zen SMT topology (Suravee Suthikulpanit) [1497603 1477397]
- [x86] cpu/amd: Bring back Compute Unit ID (Suravee Suthikulpanit) [1497603 1477397]
- [x86] cpu/amd: Fix Bulldozer topology (Suravee Suthikulpanit) [1497603 1477397]
- [x86] cpu/amd: Clean up cpu_llc_id assignment per topology feature (Suravee Suthikulpanit) [1497603 1477397]
- [x86] cpu: Get rid of compute_unit_id (Suravee Suthikulpanit) [1497603 1477397]
- [x86] amd: Derive L3 shared_cpu_map from cpu_llc_shared_mask (Suravee Suthikulpanit) [1497238 1477399]
- [net] ipv6: only call ip6_route_dev_notify() once for NETDEV_UNREGISTER (Matteo Croce) [1497121 1468935]
- [fs] gfs2: Fix debugfs glocks dump (Andreas Grunbacher) [1497078 1493067]
- [fs] gfs2: Replace rhashtable_walk_init with rhashtable_walk_enter (Andreas Grunbacher) [1497078 1493067]
- [fs] gfs2: Deduplicate gfs2_{glocks,glstats}_open (Andreas Grunbacher) [1497078 1493067]
- [cpufreq] intel_pstate: Fix unsafe HWP MSR access (Steve Best) [1497058 1457552]
- [s390] af_iucv: correctly copy SKB data (add missing hunk from 04d0ec) (Hendrik Brueckner) [1494354 1459782]
- [sound] alsa: timer: Use common error handling code in alsa_timer_init() (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Adjust a condition check in snd_timer_resolution() (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Follow standard EXPORT_SYMBOL() declarations (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Wrap with spinlock for queue access (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Improve user queue reallocation (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Fix missing queue indices reset at SNDRV_TIMER_IOCTL_SELECT (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Fix race between read and ioctl (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Info leak in snd_timer_user_tinterrupt() (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: remove some dead code (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}
- [sound] alsa: timer: Reject user params with too small ticks (Jaroslav Kysela) [1465998 1465999] {CVE-2017-1000380}


Related CVEs


CVE-2017-1000380

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (x86_64) kernel-3.10.0-693.11.1.el7.src.rpmb8734d7c7356716dc525da7a5dcb12b4b2ec9d1c0530a23e4b2e4003d1ea2c62ELSA-2025-1281ol7_x86_64_latest_archive
kernel-3.10.0-693.11.1.el7.src.rpmb8734d7c7356716dc525da7a5dcb12b4b2ec9d1c0530a23e4b2e4003d1ea2c62ELSA-2025-1281ol7_x86_64_optional_archive
kernel-3.10.0-693.11.1.el7.src.rpmb8734d7c7356716dc525da7a5dcb12b4b2ec9d1c0530a23e4b2e4003d1ea2c62ELSA-2025-1281ol7_x86_64_u4_patch
kernel-3.10.0-693.11.1.el7.x86_64.rpma1bd655deb98f131f6071565bbe2e4a75cdf6f2513ab8dcd8538394dc54b292fELSA-2025-1281ol7_x86_64_latest_archive
kernel-3.10.0-693.11.1.el7.x86_64.rpma1bd655deb98f131f6071565bbe2e4a75cdf6f2513ab8dcd8538394dc54b292fELSA-2025-1281ol7_x86_64_u4_patch
kernel-abi-whitelists-3.10.0-693.11.1.el7.noarch.rpmece4af9d6f618d4eb0042f575bcd1032c7143746e4d7ca6e0135f34bdf4fab3bELSA-2025-1281ol7_x86_64_latest_archive
kernel-abi-whitelists-3.10.0-693.11.1.el7.noarch.rpmece4af9d6f618d4eb0042f575bcd1032c7143746e4d7ca6e0135f34bdf4fab3bELSA-2025-1281ol7_x86_64_u4_patch
kernel-debug-3.10.0-693.11.1.el7.x86_64.rpm457c991a9252d756b4f5e3ff58b4cbc6d31821b8ee03b3e648a6fdf5f0f99363ELSA-2025-1281ol7_x86_64_latest_archive
kernel-debug-3.10.0-693.11.1.el7.x86_64.rpm457c991a9252d756b4f5e3ff58b4cbc6d31821b8ee03b3e648a6fdf5f0f99363ELSA-2025-1281ol7_x86_64_u4_patch
kernel-debug-devel-3.10.0-693.11.1.el7.x86_64.rpm2af269758753dbd21c6611bc2189ce9a84e46263047ae6694f8336acf700f5d1ELSA-2025-1281ol7_x86_64_latest_archive
kernel-debug-devel-3.10.0-693.11.1.el7.x86_64.rpm2af269758753dbd21c6611bc2189ce9a84e46263047ae6694f8336acf700f5d1ELSA-2025-1281ol7_x86_64_u4_patch
kernel-devel-3.10.0-693.11.1.el7.x86_64.rpm5456a454ccd6de02a150d4086f469b366b15e8fb0a9d2349b159cc637b96648fELSA-2025-1281ol7_x86_64_latest_archive
kernel-devel-3.10.0-693.11.1.el7.x86_64.rpm5456a454ccd6de02a150d4086f469b366b15e8fb0a9d2349b159cc637b96648fELSA-2025-1281ol7_x86_64_u4_patch
kernel-doc-3.10.0-693.11.1.el7.noarch.rpm9c9f3a23740d955e34763ad53cc556958e3068bc6a0f2a42ae0f52a30d17c848ELSA-2025-1281ol7_x86_64_latest_archive
kernel-doc-3.10.0-693.11.1.el7.noarch.rpm9c9f3a23740d955e34763ad53cc556958e3068bc6a0f2a42ae0f52a30d17c848ELSA-2025-1281ol7_x86_64_u4_patch
kernel-headers-3.10.0-693.11.1.el7.x86_64.rpma544484442dbb7ce4f83531efd5e902b94f6f7acb27907a1527d95018a0cf447ELSA-2025-1281ol7_x86_64_latest_archive
kernel-headers-3.10.0-693.11.1.el7.x86_64.rpma544484442dbb7ce4f83531efd5e902b94f6f7acb27907a1527d95018a0cf447ELSA-2025-1281ol7_x86_64_u4_patch
kernel-tools-3.10.0-693.11.1.el7.x86_64.rpma9cfd84efbddf0ef757b08de1258370be392620838b4f75f1a8aee18893f567bELSA-2025-1281ol7_x86_64_latest_archive
kernel-tools-3.10.0-693.11.1.el7.x86_64.rpma9cfd84efbddf0ef757b08de1258370be392620838b4f75f1a8aee18893f567bELSA-2025-1281ol7_x86_64_u4_patch
kernel-tools-libs-3.10.0-693.11.1.el7.x86_64.rpm80a0c9684a954e07350347655a2c8ea005ad8abd7bf3ed9e88a06d9088c0c4f4ELSA-2025-1281ol7_x86_64_latest_archive
kernel-tools-libs-3.10.0-693.11.1.el7.x86_64.rpm80a0c9684a954e07350347655a2c8ea005ad8abd7bf3ed9e88a06d9088c0c4f4ELSA-2025-1281ol7_x86_64_u4_patch
kernel-tools-libs-devel-3.10.0-693.11.1.el7.x86_64.rpm8abf3dce496dafb6921b7adedddd13ad0fce2289a9f9da9f4ef482b2e894229bELSA-2025-1281ol7_x86_64_optional_archive
perf-3.10.0-693.11.1.el7.x86_64.rpm227e3f0781384d81018507339f1699e9b1566f4d9889fcfa9593cc9b362df604ELSA-2025-20019ol7_x86_64_latest_archive
perf-3.10.0-693.11.1.el7.x86_64.rpm227e3f0781384d81018507339f1699e9b1566f4d9889fcfa9593cc9b362df604ELSA-2025-20019ol7_x86_64_u4_patch
python-perf-3.10.0-693.11.1.el7.x86_64.rpma90243b046534b6b3f144de8e7b35a1b008581c4fd598a68c5cb6fa8af2c5aa2ELSA-2025-20019ol7_x86_64_latest_archive
python-perf-3.10.0-693.11.1.el7.x86_64.rpma90243b046534b6b3f144de8e7b35a1b008581c4fd598a68c5cb6fa8af2c5aa2ELSA-2025-20019ol7_x86_64_u4_patch



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete