ELSA-2021-2314

ULN >
Oracle Linux Errata repository >
ELSA-2021-2314

ELSA-2021-2314 - kernel security and bug fix update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2021-06-10

Description

[3.10.0-1160.31.1.OL7]
- Update Oracle Linux certificates (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)(alexey.petrenko@oracle.com)
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-2.0.9
- Update oracle(kernel-sig-key) value to match new certificate (Ilya Okomin)

[3.10.0-1160.31.1]
- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]

[3.10.0-1160.30.1]
- pf: Prohibit alu ops for pointer types not defining ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Add sanity check for upper ptr_limit (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Simplify alu_limit masking for pointer arithmetic (Jiri Olsa) [1942689] {CVE-2020-27170}
- bpf: Fix off-by-one for area size in creating mask to left (Jiri Olsa) [1942689] {CVE-2020-27170}
- netxen_nic: fix MSI/MSI-x interrupts (Tony Camuso) [1894274]
- block: fix use-after-free on cached last_lookup partition (Ming Lei) [1898596]
- mm: reduce struct page_cgroup overhead when page_owner is not enabled (Rafael Aquini) [1948451]
- vt: selection, close sel_buffer race (Chris von Recklinghausen) [1831034] {CVE-2020-8648}

[3.10.0-1160.29.1]
- drm/i915: warn on guc enable about CVE (Dave Airlie) [1935277] {CVE-2020-12362}
- sched: prevent divide by zero error in scale_rt_power() (Phil Auld) [1910763]
- x86/efi: reset the correct tlb_state in efi_switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Turn off IRQs in switch_mm() (Rafael Aquini) [1837531]
- x86/mm, sched/core: Uninline switch_mm() (Rafael Aquini) [1837531]
- x86/mm: Build arch/x86/mm/tlb.c even on !SMP (Rafael Aquini) [1837531]
- hpsa: fix regression issue for old controllers (Joseph Szczypek) [1830268]
- scsi: hpsa: Correct dev cmds outstanding for retried cmds (Joseph Szczypek) [1830268]

[3.10.0-1160.28.1]
- i40e: acquire VSI pointer only after VF is initialized (Stefan Assmann) [1886003]
- ACPICA: Store GPE register enable masks upfront (Al Stone) [1883174]
- netfilter: nf_tables: validate NFTA_SET_TABLE parameter (Phil Sutter) [1873171]
- sctp: change to hold/put transport for proto_unreach_timer (Xin Long) [1707184]

[3.10.0-1160.27.1]
- video: hyperv: hyperv_fb: Obtain screen resolution from Hyper-V host (Mohammed Gamal) [1941841]
- Drivers: hv: vmbus: enable VMBus protocol version 5.0 (Mohammed Gamal) [1941841]
- redhat: Add git suffix to realtime_check merge_tree (Juri Lelli)

[3.10.0-1160.26.1]
- selinux: fix deadlock in security_set_bools() (Ondrej Mosnacek) [1939091]
- md: fix md io stats accounting broken (Ming Lei) [1927106]
- redhat: Fix realtime_check for -private (Juri Lelli)

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	kernel-3.10.0-1160.31.1.el7.src.rpm	15f9f86676ba3545934ea1dbde50ceb1d6e8120d59e5c53b38759a3a572305e3	ELSA-2025-1281	ol7_x86_64_latest
	kernel-3.10.0-1160.31.1.el7.src.rpm	15f9f86676ba3545934ea1dbde50ceb1d6e8120d59e5c53b38759a3a572305e3	ELSA-2025-1281	ol7_x86_64_optional_latest
	kernel-3.10.0-1160.31.1.el7.src.rpm	15f9f86676ba3545934ea1dbde50ceb1d6e8120d59e5c53b38759a3a572305e3	ELSA-2025-1281	ol7_x86_64_u9_patch
	bpftool-3.10.0-1160.31.1.el7.x86_64.rpm	eb13e8e498b3d12322ae98eac673d5971916871b24ea984b74d0f332a90ffb18	ELSA-2025-1281	ol7_x86_64_latest
	bpftool-3.10.0-1160.31.1.el7.x86_64.rpm	eb13e8e498b3d12322ae98eac673d5971916871b24ea984b74d0f332a90ffb18	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-3.10.0-1160.31.1.el7.x86_64.rpm	a79b0c75ed28dc3a259e9769efd52c38caf888f91ff50fa84bfab961c365d61e	ELSA-2025-1281	ol7_x86_64_latest
	kernel-3.10.0-1160.31.1.el7.x86_64.rpm	a79b0c75ed28dc3a259e9769efd52c38caf888f91ff50fa84bfab961c365d61e	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-abi-whitelists-3.10.0-1160.31.1.el7.noarch.rpm	41664661b6ec181c8496af2112828bb818c07060399a09dd25b4724305a56301	ELSA-2025-1281	ol7_x86_64_latest
	kernel-abi-whitelists-3.10.0-1160.31.1.el7.noarch.rpm	41664661b6ec181c8496af2112828bb818c07060399a09dd25b4724305a56301	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-debug-3.10.0-1160.31.1.el7.x86_64.rpm	3b9a8fa8b0f54692f896c9697e10f1e7bd49391cc498fc6b1aee5cadb5484ef6	ELSA-2025-1281	ol7_x86_64_latest
	kernel-debug-3.10.0-1160.31.1.el7.x86_64.rpm	3b9a8fa8b0f54692f896c9697e10f1e7bd49391cc498fc6b1aee5cadb5484ef6	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-debug-devel-3.10.0-1160.31.1.el7.x86_64.rpm	e612d0d6fb67a9e5229afbe65bfe4fd3e1753e7b4245bfe9de46d9decd710f95	ELSA-2025-1281	ol7_x86_64_latest
	kernel-debug-devel-3.10.0-1160.31.1.el7.x86_64.rpm	e612d0d6fb67a9e5229afbe65bfe4fd3e1753e7b4245bfe9de46d9decd710f95	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-devel-3.10.0-1160.31.1.el7.x86_64.rpm	cc6c9908a1599a30aa1f43b68d9083501cdc1ea6378461e7c06ea2d0c35b4edc	ELSA-2025-1281	ol7_x86_64_latest
	kernel-devel-3.10.0-1160.31.1.el7.x86_64.rpm	cc6c9908a1599a30aa1f43b68d9083501cdc1ea6378461e7c06ea2d0c35b4edc	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-doc-3.10.0-1160.31.1.el7.noarch.rpm	6a77334b368eb7af2bd460cec7b995ef6f3a95908bceabc71cae3541cb90f25e	ELSA-2025-1281	ol7_x86_64_latest
	kernel-doc-3.10.0-1160.31.1.el7.noarch.rpm	6a77334b368eb7af2bd460cec7b995ef6f3a95908bceabc71cae3541cb90f25e	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm	8006422684d16d37de47a18856c66aa144679abd7af8070ca47c00e2b708736d	ELSA-2025-1281	exadata_dbserver_19.3.20.0.0_x86_64_base
	kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm	8006422684d16d37de47a18856c66aa144679abd7af8070ca47c00e2b708736d	ELSA-2025-1281	exadata_dbserver_20.1.12.0.0_x86_64_base
	kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm	8006422684d16d37de47a18856c66aa144679abd7af8070ca47c00e2b708736d	ELSA-2025-1281	exadata_dbserver_21.2.2.0.0_x86_64_base
	kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm	8006422684d16d37de47a18856c66aa144679abd7af8070ca47c00e2b708736d	ELSA-2025-1281	ol7_x86_64_latest
	kernel-headers-3.10.0-1160.31.1.el7.x86_64.rpm	8006422684d16d37de47a18856c66aa144679abd7af8070ca47c00e2b708736d	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-tools-3.10.0-1160.31.1.el7.x86_64.rpm	3af5ece9847f74e95660f2a5485bdd3fd210b3f7e524baeebf90266ff1901b68	ELSA-2025-1281	exadata_dbserver_21.2.2.0.0_x86_64_base
	kernel-tools-3.10.0-1160.31.1.el7.x86_64.rpm	3af5ece9847f74e95660f2a5485bdd3fd210b3f7e524baeebf90266ff1901b68	ELSA-2025-1281	ol7_x86_64_latest
	kernel-tools-3.10.0-1160.31.1.el7.x86_64.rpm	3af5ece9847f74e95660f2a5485bdd3fd210b3f7e524baeebf90266ff1901b68	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-tools-libs-3.10.0-1160.31.1.el7.x86_64.rpm	68007bc792058da2696a8d199bc083d65a09d20ffd58c7f4aa45f1460d741734	ELSA-2025-1281	exadata_dbserver_21.2.2.0.0_x86_64_base
	kernel-tools-libs-3.10.0-1160.31.1.el7.x86_64.rpm	68007bc792058da2696a8d199bc083d65a09d20ffd58c7f4aa45f1460d741734	ELSA-2025-1281	ol7_x86_64_latest
	kernel-tools-libs-3.10.0-1160.31.1.el7.x86_64.rpm	68007bc792058da2696a8d199bc083d65a09d20ffd58c7f4aa45f1460d741734	ELSA-2025-1281	ol7_x86_64_u9_patch
	kernel-tools-libs-devel-3.10.0-1160.31.1.el7.x86_64.rpm	75f334b6756cf1e72cd9ba64c3e8e28715e697ea8582db96b1664f402665267e	ELSA-2025-1281	ol7_x86_64_optional_latest
	perf-3.10.0-1160.31.1.el7.x86_64.rpm	9edde9e6b4319326b1d00b2748779ebc3de2a4da5971a2d0887067ae04392e70	ELSA-2025-20019	ol7_x86_64_latest
	perf-3.10.0-1160.31.1.el7.x86_64.rpm	9edde9e6b4319326b1d00b2748779ebc3de2a4da5971a2d0887067ae04392e70	ELSA-2025-20019	ol7_x86_64_u9_patch
	python-perf-3.10.0-1160.31.1.el7.x86_64.rpm	6a0cd74d4615f13bf3ae724fcbe36643be54544597b53fab8db73f3325fa59b7	ELSA-2025-20019	ol7_x86_64_latest
	python-perf-3.10.0-1160.31.1.el7.x86_64.rpm	6a0cd74d4615f13bf3ae724fcbe36643be54544597b53fab8db73f3325fa59b7	ELSA-2025-20019	ol7_x86_64_u9_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691