ELSA-2020-5804
- ULN >
- Oracle Linux Errata repository >
- ELSA-2020-5804
ELSA-2020-5804 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2020-08-10 |
Description
[4.14.35-1902.305.4]
- ptp: free ptp device pin descriptors properly (Vladis Dronov) [Orabug: 31710994]
[4.14.35-1902.305.3]
- fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Alexander Potapenko) [Orabug: 31350638] {CVE-2020-10732}
- PCI: vmd: Filter resource type bits from shadow register (Jon Derrick) [Orabug: 31674879]
- PCI: vmd: Add device id for VMD device 8086:9A0B (Jon Derrick) [Orabug: 31674879]
- PCI: vmd: Fix shadow offsets to reflect spec changes (Jon Derrick) [Orabug: 31674879]
- PCI: vmd: Fix config addressing when using bus offsets (Jon Derrick) [Orabug: 31674879]
- PCI/VMD: Configure MPS settings before adding devices (Jon Derrick) [Orabug: 31674879]
- PCI: vmd: Add an additional VMD device id to driver device id table (Jon Derrick) [Orabug: 31674879]
- PCI: vmd: Add offset to bus numbers if necessary (Jon Derrick) [Orabug: 31674879]
- PCI: vmd: Assign membar addresses from shadow registers (Jon Derrick) [Orabug: 31674879]
- PCI: Add Intel VMD devices to pci ids (Jon Derrick) [Orabug: 31674879]
- misc: pvpanic: add crash loaded event (zhenwei pi) [Orabug: 31677099]
- kvm: Increase KVM_USER_MEM_SLOTS for dense memory hotplug (Eric DeVolder) [Orabug: 31694369]
[4.14.35-1902.305.2]
- net-sysfs: call dev_hold if kobject_init_and_add success (YueHaibing) [Orabug: 31445419] {CVE-2019-20811}
- vfio-pci: protect remap_pfn_range() from simultaneous calls (Ankur Arora) [Orabug: 31663632] {CVE-2020-12888} {CVE-2020-12888}
- crypto: user - fix memory leak in crypto_report (Navid Emamdoost) [Orabug: 31351639] {CVE-2019-19062}
- iwlwifi: pcie: fix rb_allocator workqueue allocation (Johannes Berg) [Orabug: 31351807] {CVE-2019-16234}
- RDMA/netlink: Do not always generate an ACK for some netlink operations (Hakon Bugge) [Orabug: 31666974]
- Revert 'uek-rpm: Move grub boot menu update to posttrans stage.' (Somasundaram Krishnasamy) [Orabug: 31358100]
- net: dsa: Do not leave DSA master with NULL netdev_ops (Allen Pais) [Orabug: 31038233]
- rds/ib: Make i_{recv,send}_hdrs non-contigious (Hans Westgaard Ry) [Orabug: 30358057]
- certs: Remove Oracle cert compiled into the kernel (Eric Snowberg) [Orabug: 31555628]
- CIFS: dump IPC tcon in debug proc file (Aurelien Aptel) [Orabug: 31500374]
- CIFS: use tcon_ipc instead of use_ipc parameter of SMB2_ioctl (Aurelien Aptel) [Orabug: 31500374]
- CIFS: make IPC a regular tcon (Aurelien Aptel) [Orabug: 31500374]
- CIFS: dont log STATUS_NOT_FOUND errors for DFS (Aurelien Aptel) [Orabug: 31500374]
- efi: Restrict efivar_ssdt_load when the kernel is locked down (Matthew Garrett) [Orabug: 31643409] {CVE-2019-20908}
- uek-rpm: drivers: enable VMD PCIe controller (Todd Vierling) [Orabug: 30646928]
- ext4: fix ext4_empty_dir() for directories with holes (Jan Kara) [Orabug: 31265319] {CVE-2019-19037} {CVE-2019-19037}
- IB/sa: Resolv use-after-free in ib_nl_make_request() (Divya Indi) [Orabug: 31631531]
- ocfs2: change slot number type s16 to u16 (Junxiao Bi) [Orabug: 31480605]
- ocfs2: fix value of OCFS2_INVALID_SLOT (Junxiao Bi) [Orabug: 31480605]
- ocfs2: fix panic on nfs server over ocfs2 (Junxiao Bi) [Orabug: 31480605]
- ocfs2: load global_inode_alloc (Junxiao Bi) [Orabug: 31480605]
- ocfs2: avoid inode removal while nfsd is accessing it (Junxiao Bi) [Orabug: 31480605]
[4.14.35-1902.305.1]
- x86/{mce,mm}: Unmap the entire page if the whole page is affected and poisoned (Tony Luck) [Orabug: 31601132]
- libertas: fix a potential NULL pointer dereference (Allen Pais) [Orabug: 31351822] {CVE-2019-16232}
- ext4: work around deleting a file with i_nlink == 0 safely (Theodore Tso) [Orabug: 31351013] {CVE-2019-19447}
[4.14.35-1902.305.0]
- thermal: support for Marvell Octeon TX SoC temperature sensors (Eric Saint-Etienne) [Orabug: 31564706]
- thermal: support for Marvell Octeon TX2 SoC temperature sensors (Eric Saint-Etienne) [Orabug: 31564706]
- x86/speculation: Prevent rogue cross-process SSBD shutdown (Anthony Steinhauser) [Orabug: 31557902] {CVE-2020-10768}
- psi: Fix double free (Tom Hromatka) [Orabug: 31535640]
- vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [Orabug: 31439670] {CVE-2020-12888}
- vfio/pci: Mask buggy SR-IOV VF INTx support (Alex Williamson) [Orabug: 31439670] {CVE-2020-12888}
- vfio-pci: Invalidate mmaps and block MMIO access on disabled memory (Alex Williamson) [Orabug: 31439670] {CVE-2020-12888} {CVE-2020-12888}
- vfio/pci: call irq_bypass_unregister_producer() before freeing irq (Jiang Yi) [Orabug: 31439670] {CVE-2020-12888}
- vfio/pci: Pull BAR mapping setup from read-write path (Alex Williamson) [Orabug: 31439670] {CVE-2020-12888}
- vfio_pci: Enable memory accesses before calling pci_map_rom (Eric Auger) [Orabug: 31439670] {CVE-2020-12888}
- vfio-pci: Fault mmaps to enable vma tracking (Alex Williamson) [Orabug: 31439670] {CVE-2020-12888}
- vfio/type1: Support faulting PFNMAP vmas (Alex Williamson) [Orabug: 31439670] {CVE-2020-12888}
- vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() (Sean Christopherson) [Orabug: 31439670] {CVE-2020-12888}
- of: unittest: fix memory leak in unittest_data_add (Navid Emamdoost) [Orabug: 31351701] {CVE-2019-19049}
Related CVEs
| CVE-2019-19049 |
| CVE-2019-16234 |
| CVE-2019-19447 |
| CVE-2020-10732 |
| CVE-2019-16232 |
| CVE-2019-19037 |
| CVE-2019-19062 |
| CVE-2019-20908 |
| CVE-2020-10768 |
| CVE-2020-12888 |
| CVE-2019-20811 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (aarch64) | kernel-uek-4.14.35-1902.305.4.el7uek.src.rpm | 3e398a9bb1e37a0e9a21da830ea55a8126f0d33970a9189119f093fa004bdd6d | ELSA-2025-20190 | ol7_aarch64_latest |
| kernel-uek-4.14.35-1902.305.4.el7uek.aarch64.rpm | 3e10d8e75c151382868f040b52460ef944d79e27054de7bf6f0c911bbeb4d3ac | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-debug-4.14.35-1902.305.4.el7uek.aarch64.rpm | 5494135a296f75e19ec755412ee2d4eed47662ddb5087a8172405106d81d9460 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-debug-devel-4.14.35-1902.305.4.el7uek.aarch64.rpm | eb1a88a96b758e161f3f4952617a67fd40cd1ebdceb9e275f3cef32e7582831a | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-devel-4.14.35-1902.305.4.el7uek.aarch64.rpm | 4225e53d2dbb170cd240f23eae657441c0dc95583ac47d891668638875ed1ad8 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-headers-4.14.35-1902.305.4.el7uek.aarch64.rpm | 708bcddfb936fec651d301d0ddad1c0521ccbf88b8bcb49ff46917294f523444 | ELBA-2025-20014 | ol7_aarch64_latest | |
| kernel-uek-tools-4.14.35-1902.305.4.el7uek.aarch64.rpm | 14969e128c70892870cfc7eebd167008b93d52ebb024b9ec060ea462d7f491c6 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-tools-libs-4.14.35-1902.305.4.el7uek.aarch64.rpm | 846757c6a315ef154e4d6da14e19ac224191fb6d4487fdedaaa00203f50c11ec | ELSA-2025-20019 | ol7_aarch64_latest | |
| kernel-uek-tools-libs-devel-4.14.35-1902.305.4.el7uek.aarch64.rpm | 48fb82c1c511ad67335e19e334c3e44d20e768ca6b390f402741bd0c37983df7 | ELBA-2025-20014 | ol7_aarch64_latest | |
| perf-4.14.35-1902.305.4.el7uek.aarch64.rpm | 149875951889ce00deb2d5cecfb81fc0df527cc632ad8c0c6ac1a0258f348df6 | ELSA-2025-20019 | ol7_aarch64_latest | |
| python-perf-4.14.35-1902.305.4.el7uek.aarch64.rpm | d615a644652a55589bba27e36711b52d3842eb17f36c84ab3b98ffcacfa7e8e3 | ELSA-2025-20019 | ol7_aarch64_latest | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.14.35-1902.305.4.el7uek.src.rpm | 3e398a9bb1e37a0e9a21da830ea55a8126f0d33970a9189119f093fa004bdd6d | ELSA-2025-20190 | ol7_x86_64_UEKR5 |
| kernel-uek-4.14.35-1902.305.4.el7uek.src.rpm | 3e398a9bb1e37a0e9a21da830ea55a8126f0d33970a9189119f093fa004bdd6d | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-4.14.35-1902.305.4.el7uek.x86_64.rpm | 541952999a586cf99eaccc6a901de0e5b9038cc5f4512dbec36c3edec7c056b5 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-4.14.35-1902.305.4.el7uek.x86_64.rpm | 541952999a586cf99eaccc6a901de0e5b9038cc5f4512dbec36c3edec7c056b5 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-debug-4.14.35-1902.305.4.el7uek.x86_64.rpm | 04714034b931df62ae9c5e23628edf0718ab9102050810d880fad2b37e004e67 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-debug-4.14.35-1902.305.4.el7uek.x86_64.rpm | 04714034b931df62ae9c5e23628edf0718ab9102050810d880fad2b37e004e67 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-debug-devel-4.14.35-1902.305.4.el7uek.x86_64.rpm | 523cab2a8853b383c8a115bdd18680ddea5e7014d8153a27722f05373c66a214 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-debug-devel-4.14.35-1902.305.4.el7uek.x86_64.rpm | 523cab2a8853b383c8a115bdd18680ddea5e7014d8153a27722f05373c66a214 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-devel-4.14.35-1902.305.4.el7uek.x86_64.rpm | 1b5dd7bcf511e8cae0f5490a4180c3aafab75aaa2929b2465abae59d24c238f8 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-devel-4.14.35-1902.305.4.el7uek.x86_64.rpm | 1b5dd7bcf511e8cae0f5490a4180c3aafab75aaa2929b2465abae59d24c238f8 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-doc-4.14.35-1902.305.4.el7uek.noarch.rpm | da07865613db124bb4cd83a3a14789dae03a95990439bcde507dce9a547e0423 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-doc-4.14.35-1902.305.4.el7uek.noarch.rpm | da07865613db124bb4cd83a3a14789dae03a95990439bcde507dce9a547e0423 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-tools-4.14.35-1902.305.4.el7uek.x86_64.rpm | 12711c731bd611303c832371447f4ca0d29e735caf2d9b9c34f9ea1c6c740761 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-tools-4.14.35-1902.305.4.el7uek.x86_64.rpm | 12711c731bd611303c832371447f4ca0d29e735caf2d9b9c34f9ea1c6c740761 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
