ELSA-2020-5801
- ULN >
- Oracle Linux Errata repository >
- ELSA-2020-5801
ELSA-2020-5801 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Severity: | IMPORTANT |
| Release Date: | 2020-08-06 |
Description
[4.1.12-124.41.4]
- uek-rpm: Add OL6 shim conflict for new signing key (Eric Snowberg) [Orabug: 31688239]
- Revert 'certs: Add Oracle's new X509 cert into the kernel keyring' (Eric Snowberg) [Orabug: 31688223]
- blk-mq: don't overwrite rq->mq_ctx (Jens Axboe) [Orabug: 31457304]
- blk-mq: mark ctx as pending at batch in flush plug path (Ming Lei) [Orabug: 31457304]
[4.1.12-124.41.3]
- scsi: qla2xxx: Fix stuck session in GNL (Quinn Tran) [Orabug: 31561461]
- scsi: qla2xxx: Serialize session free in qlt_free_session_done (Quinn Tran) [Orabug: 31561461]
- scsi: qla2xxx: v2: Change abort wait_loop from msleep to wait_event_timeout (Giridhar Malavali) [Orabug: 26932683]
- scsi: qla2xxx: v2: Move ABTS code behind qpair (Quinn Tran) [Orabug: 31517449]
- ocfs2: change slot number type s16 to u16 (Junxiao Bi) [Orabug: 31027042]
- ocfs2: fix value of OCFS2_INVALID_SLOT (Junxiao Bi) [Orabug: 31027042]
- ocfs2: fix panic on nfs server over ocfs2 (Junxiao Bi) [Orabug: 31027042]
- ocfs2: load global_inode_alloc (Junxiao Bi) [Orabug: 31027042]
- ocfs2: avoid inode removal while nfsd is accessing it (Junxiao Bi) [Orabug: 31027042]
- block_dev: don't test bdev->bd_contains when it is not stable (NeilBrown) [Orabug: 31554143]
- KVM: x86: Remove spurious semicolon (Joao Martins) [Orabug: 31584727]
[4.1.12-124.41.2]
- media: rc: prevent memory leak in cx23888_ir_probe (Navid Emamdoost) [Orabug: 31351672] {CVE-2019-19054}
- vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [Orabug: 31439671] {CVE-2020-12888}
- vfio/pci: Mask buggy SR-IOV VF INTx support (Alex Williamson) [Orabug: 31439671] {CVE-2020-12888}
- vfio-pci: Invalidate mmaps and block MMIO access on disabled memory (Alex Williamson) [Orabug: 31439671] {CVE-2020-12888} {CVE-2020-12888}
- vfio/pci: Pull BAR mapping setup from read-write path (Alex Williamson) [Orabug: 31439671] {CVE-2020-12888}
- vfio_pci: Enable memory accesses before calling pci_map_rom (Eric Auger) [Orabug: 31439671] {CVE-2020-12888}
- vfio-pci: Fault mmaps to enable vma tracking (Alex Williamson) [Orabug: 31439671] {CVE-2020-12888}
- vfio/type1: Support faulting PFNMAP vmas (Alex Williamson) [Orabug: 31439671] {CVE-2020-12888}
- mm: bring in additional flag for fixup_user_fault to signal unlock (Dominik Dingel) [Orabug: 31439671] {CVE-2020-12888}
- vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() (Sean Christopherson) [Orabug: 31439671] {CVE-2020-12888}
- x86/mitigations: reset default value for srbds_mitigation (Mihai Carabas) [Orabug: 31514993]
- x86/cpu: clear X86_BUG_SRBDS before late loading (Mihai Carabas) [Orabug: 31514993]
- x86/mitigations: update MSRs on all CPUs for SRBDS (Mihai Carabas) [Orabug: 31514993]
- Revert 'x86/efi: Request desired alignment via the PE/COFF headers' (Matt Fleming) [Orabug: 31602576]
[4.1.12-124.41.1]
- can, slip: Protect tty->disc_data in write_wakeup and close with RCU (Richard Palethorpe) [Orabug: 31516085] {CVE-2020-14416}
- scsi: qla2xxx: Fix warning in qla2x00_async_iocb_timeout() (himanshu.madhani@cavium.com) [Orabug: 31530589]
- scsi: qla2xxx: Fix NULL pointer access for fcport structure (Quinn Tran) [Orabug: 31530589]
Related CVEs
| CVE-2020-12888 |
| CVE-2019-19054 |
| CVE-2020-14416 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 6 (x86_64) | kernel-uek-4.1.12-124.41.4.el6uek.src.rpm | 1fe3a9563e5ce210e70e1beebaa23015 | ELSA-2021-9215 |
| kernel-uek-4.1.12-124.41.4.el6uek.x86_64.rpm | c7ca13be9ed9d5602033ea9c44e0bd82 | ELSA-2021-9215 | |
| kernel-uek-debug-4.1.12-124.41.4.el6uek.x86_64.rpm | f3ae68d5e249d2dac3d0815037cafda1 | ELSA-2021-9215 | |
| kernel-uek-debug-devel-4.1.12-124.41.4.el6uek.x86_64.rpm | 5f30653bb27677c8321da3cf40ae86be | ELSA-2021-9215 | |
| kernel-uek-devel-4.1.12-124.41.4.el6uek.x86_64.rpm | e8e6947da0ffbdb19ae4c09842c4e719 | ELSA-2021-9215 | |
| kernel-uek-doc-4.1.12-124.41.4.el6uek.noarch.rpm | e8b8cfb0b09977a6c2ae32b91cfe09f2 | ELSA-2021-9215 | |
| kernel-uek-firmware-4.1.12-124.41.4.el6uek.noarch.rpm | a015ebe7aca52a67f735efdf71d88326 | ELSA-2021-9215 | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.1.12-124.41.4.el7uek.src.rpm | e4bad53cb38c4894a9e3e4283a644313 | ELSA-2021-9220 |
| kernel-uek-4.1.12-124.41.4.el7uek.x86_64.rpm | 85c584da1e5fecff904538262e30c161 | ELSA-2021-9220 | |
| kernel-uek-debug-4.1.12-124.41.4.el7uek.x86_64.rpm | bc42045134d1f590e86e2a93c16fccc6 | ELSA-2021-9220 | |
| kernel-uek-debug-devel-4.1.12-124.41.4.el7uek.x86_64.rpm | 33c58202f9fed3bd66d36d9060490de7 | ELSA-2021-9220 | |
| kernel-uek-devel-4.1.12-124.41.4.el7uek.x86_64.rpm | 558c518355c595ceaafe901be807ba9a | ELSA-2021-9220 | |
| kernel-uek-doc-4.1.12-124.41.4.el7uek.noarch.rpm | 5c85d9194064dd334f963125827341b4 | ELSA-2021-9220 | |
| kernel-uek-firmware-4.1.12-124.41.4.el7uek.noarch.rpm | 0cea132f9f3a421c11572a29c18689f3 | ELSA-2021-9215 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
