ELSA-2020-3220

ULN >
Oracle Linux Errata repository >
ELSA-2020-3220

ELSA-2020-3220 - kernel security and bug fix update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2020-07-30

Description

[3.10.0-1127.18.2.OL7]
- Oracle Linux certificates (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)(alexey.petrenko@oracle.com)
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-2.0.3

[3.10.0-1127.18.2]
- [crypto] pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1837429 1837430] {CVE-2020-10713}
- [kernel] Move to dual-signing to split signing keys up better (pjones) [1837429 1837430] {CVE-2020-10713}

[3.10.0-1127.18.1]
- [fs] locks: allow filesystems to request that ->setlease be called without i_lock (Jeff Layton) [1838602 1830606]
- [fs] locks: move fasync setup into generic_add_lease (Jeff Layton) [1838602 1830606]

[3.10.0-1127.17.1]
- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1852245 1820632]
- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1850055 1845326]
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844069 1844070] {CVE-2020-12654}
- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844025 1844026] {CVE-2020-12653}
- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843436 1843437] {CVE-2020-10757}
- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843436 1843437] {CVE-2020-10757}
- [mm] mm: mremap: streamline move_page_tables()'s move_huge_pmd() corner case (Rafael Aquini) [1843436 1843437] {CVE-2020-10757}
- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843436 1843437] {CVE-2020-10757}

[3.10.0-1127.16.1]
- [kernel] sched/fair: Scale bandwidth quota and period without losing quota/period ratio precision (Artem Savkov) [1850500 1752067]
- [block] virtio-blk: improve virtqueue error to BLK_STS (Philipp Rudo) [1842994 1818001]
- [block] virtio-blk: fix hw_queue stopped on arbitrary error (Philipp Rudo) [1842994 1818001]

[3.10.0-1127.15.1]
- [fs] ext4: fix setting of referenced bit in ext4_es_lookup_extent() (Lukas Czerner) [1847343 1663720]
- [fs] ext4: introduce aging to extent status tree (Lukas Czerner) [1847343 1663720]
- [fs] ext4: cleanup flag definitions for extent status tree (Lukas Czerner) [1847343 1663720]
- [fs] ext4: limit number of scanned extents in status tree shrinker (Lukas Czerner) [1847343 1663720]
- [fs] ext4: move handling of list of shrinkable inodes into extent status code (Lukas Czerner) [1847343 1663720]
- [fs] ext4: change LRU to round-robin in extent status tree shrinker (Lukas Czerner) [1847343 1663720]
- [net] netfilter: nat: never update the UDP checksum when it's 0 (Guillaume Nault) [1847333 1834278]
- [char] ipmi_si: Only schedule continuously in the thread in maintenance mode (Alexey Klimov) [1841825 1837127]
- [scsi] scsi: ibmvfc: Fix NULL return compiler warning (Steve Best) [1830889 1810643]
- [scsi] scsi: ibmvfc: Avoid loss of all paths during SVC node reboot (Steve Best) [1830889 1810643]
- [hid] HID: hiddev: do cleanup in failure of opening a device (Torez Smith) [1803448 1814257] {CVE-2019-19527}
- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1803448 1814257] {CVE-2019-19527}

[3.10.0-1127.14.1]
- [fs] NFS: Fix a race between mmap() and O_DIRECT (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Remove a redundant call to unmap_mapping_range() (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Remove redundant waits for O_DIRECT in fsync() and write_begin() (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Cleanup nfs_direct_complete() (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Do not serialise O_DIRECT reads and writes (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Move buffered I/O locking into nfs_file_write() (Benjamin Coddington) [1845520 1813803]
- [fs] bdi: make inode_to_bdi() inline (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Remove racy size manipulations in O_DIRECT (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Don't hold the inode lock across fsync() (Benjamin Coddington) [1845520 1813803]
- [fs] nfs: remove nfs_inode_dio_wait (Benjamin Coddington) [1845520 1813803]
- [fs] nfs: remove nfs4_file_fsync (Benjamin Coddington) [1845520 1813803]
- [fs] NFS: Kill NFS_INO_NFS_INO_FLUSHING: it is a performance killer (Benjamin Coddington) [1845520 1813803]
- [infiniband] RDMA/bnxt_re: Fix chip number validation Broadcom's Gen P5 series (Jonathan Toppins) [1834190 1823679]

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	kernel-3.10.0-1127.18.2.el7.src.rpm	533566598acdcb750f273e51b0389b86b24c3e20001247b443f4b8f565ee33ed	ELSA-2025-1281	ol7_x86_64_latest
	kernel-3.10.0-1127.18.2.el7.src.rpm	533566598acdcb750f273e51b0389b86b24c3e20001247b443f4b8f565ee33ed	ELSA-2025-1281	ol7_x86_64_optional_latest
	kernel-3.10.0-1127.18.2.el7.src.rpm	533566598acdcb750f273e51b0389b86b24c3e20001247b443f4b8f565ee33ed	ELSA-2025-1281	ol7_x86_64_u8_patch
	bpftool-3.10.0-1127.18.2.el7.x86_64.rpm	0862527ad37dfaf26b9ea82fa95eddbb2a561934a28cf9b25d2565fc9174772c	ELSA-2025-1281	ol7_x86_64_latest
	bpftool-3.10.0-1127.18.2.el7.x86_64.rpm	0862527ad37dfaf26b9ea82fa95eddbb2a561934a28cf9b25d2565fc9174772c	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-3.10.0-1127.18.2.el7.x86_64.rpm	9e30611a7fe28d4b5bcd4fb8ef9f1f3ea323548cb8f7d410fec13e1412fd73ce	ELSA-2025-1281	ol7_x86_64_latest
	kernel-3.10.0-1127.18.2.el7.x86_64.rpm	9e30611a7fe28d4b5bcd4fb8ef9f1f3ea323548cb8f7d410fec13e1412fd73ce	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-abi-whitelists-3.10.0-1127.18.2.el7.noarch.rpm	0d0d711ea3f1af97bc847199d89c6f934ae01912aae70fc2ae05a7c8fb1691f8	ELSA-2025-1281	ol7_x86_64_latest
	kernel-abi-whitelists-3.10.0-1127.18.2.el7.noarch.rpm	0d0d711ea3f1af97bc847199d89c6f934ae01912aae70fc2ae05a7c8fb1691f8	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-debug-3.10.0-1127.18.2.el7.x86_64.rpm	13cc3bcb50dd97d6c5aa3c6e6daa8a3805f3dd2af71e54e89dec48043ea43671	ELSA-2025-1281	ol7_x86_64_latest
	kernel-debug-3.10.0-1127.18.2.el7.x86_64.rpm	13cc3bcb50dd97d6c5aa3c6e6daa8a3805f3dd2af71e54e89dec48043ea43671	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-debug-devel-3.10.0-1127.18.2.el7.x86_64.rpm	384057596a38949b98946e7467a1db4701c8df0d9070f75211bfea53309b6b94	ELSA-2025-1281	ol7_x86_64_latest
	kernel-debug-devel-3.10.0-1127.18.2.el7.x86_64.rpm	384057596a38949b98946e7467a1db4701c8df0d9070f75211bfea53309b6b94	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-devel-3.10.0-1127.18.2.el7.x86_64.rpm	678788b04257c9bf0c64d5cf32582aa4889e6458bffe72c6c99150b98ade303b	ELSA-2025-1281	ol7_x86_64_latest
	kernel-devel-3.10.0-1127.18.2.el7.x86_64.rpm	678788b04257c9bf0c64d5cf32582aa4889e6458bffe72c6c99150b98ade303b	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-doc-3.10.0-1127.18.2.el7.noarch.rpm	fd7dc0231bbee9492b1db5e9249402e40739bab548d14ea196cc3b38d0302a1b	ELSA-2025-1281	ol7_x86_64_latest
	kernel-doc-3.10.0-1127.18.2.el7.noarch.rpm	fd7dc0231bbee9492b1db5e9249402e40739bab548d14ea196cc3b38d0302a1b	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-headers-3.10.0-1127.18.2.el7.x86_64.rpm	ffb76ea17f703ce9bdc2234b17670300176e5e2e5be00651f294d8a80c210cdc	ELSA-2025-1281	exadata_dbserver_19.2.18.0.0_x86_64_base
	kernel-headers-3.10.0-1127.18.2.el7.x86_64.rpm	ffb76ea17f703ce9bdc2234b17670300176e5e2e5be00651f294d8a80c210cdc	ELSA-2025-1281	exadata_dbserver_19.3.12.0.0_x86_64_base
	kernel-headers-3.10.0-1127.18.2.el7.x86_64.rpm	ffb76ea17f703ce9bdc2234b17670300176e5e2e5be00651f294d8a80c210cdc	ELSA-2025-1281	exadata_dbserver_20.1.2.0.0_x86_64_base
	kernel-headers-3.10.0-1127.18.2.el7.x86_64.rpm	ffb76ea17f703ce9bdc2234b17670300176e5e2e5be00651f294d8a80c210cdc	ELSA-2025-1281	ol7_x86_64_latest
	kernel-headers-3.10.0-1127.18.2.el7.x86_64.rpm	ffb76ea17f703ce9bdc2234b17670300176e5e2e5be00651f294d8a80c210cdc	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-tools-3.10.0-1127.18.2.el7.x86_64.rpm	b2a1868e31111b82251a1e73c4002c62add8c50ea9d4ed12e3a0e56d30db8faf	ELSA-2025-1281	ol7_x86_64_latest
	kernel-tools-3.10.0-1127.18.2.el7.x86_64.rpm	b2a1868e31111b82251a1e73c4002c62add8c50ea9d4ed12e3a0e56d30db8faf	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-tools-libs-3.10.0-1127.18.2.el7.x86_64.rpm	59cca047447eae52fae9ce00c6ee6271076d190ce13d445a340126bd44af9210	ELSA-2025-1281	ol7_x86_64_latest
	kernel-tools-libs-3.10.0-1127.18.2.el7.x86_64.rpm	59cca047447eae52fae9ce00c6ee6271076d190ce13d445a340126bd44af9210	ELSA-2025-1281	ol7_x86_64_u8_patch
	kernel-tools-libs-devel-3.10.0-1127.18.2.el7.x86_64.rpm	8bc99f523117533e343c3639b79c6f84c52aaef31748fba116d82786a096da96	ELSA-2025-1281	ol7_x86_64_optional_latest
	perf-3.10.0-1127.18.2.el7.x86_64.rpm	af7756423164857e65100c004d253c92379a9fbab5d9b918bd21f5d46078f99b	ELSA-2025-20019	ol7_x86_64_latest
	perf-3.10.0-1127.18.2.el7.x86_64.rpm	af7756423164857e65100c004d253c92379a9fbab5d9b918bd21f5d46078f99b	ELSA-2025-20019	ol7_x86_64_u8_patch
	python-perf-3.10.0-1127.18.2.el7.x86_64.rpm	ab9cd6b7e9395b7f006b5f13542a43753324dc1e55a7874ea5766ff05a866f2e	ELSA-2025-20019	ol7_x86_64_latest
	python-perf-3.10.0-1127.18.2.el7.x86_64.rpm	ab9cd6b7e9395b7f006b5f13542a43753324dc1e55a7874ea5766ff05a866f2e	ELSA-2025-20019	ol7_x86_64_u8_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691