ELSA-2021-9037
- ULN >
- Oracle Linux Errata repository >
- ELSA-2021-9037
ELSA-2021-9037 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2021-02-08 |
Description
[5.4.17-2036.103.3]
- Revert 'rds: Deregister all FRWR mr with free_mr' (aru kolappan) [Orabug: 32426610]
[5.4.17-2036.103.2]
- A/A Bonding: Fix a one-byte-off kmalloc (Hakon Bugge) [Orabug: 32380824]
- netfilter: add and use nf_hook_slow_list() (Florian Westphal) [Orabug: 32372530] {CVE-2021-20177}
- net/rds: Fix gfp_t parameter (Hans Westgaard Ry) [Orabug: 32372158]
- uek-rpm: Report removed symbols also during kabi check (Somasundaram Krishnasamy) [Orabug: 32380061]
- uek-rpm: update kABI lists for new symbol (Dan Duval) [Orabug: 32378206]
- A/A Bonding: Introduce selective interface name inclusion (Hakon Bugge) [Orabug: 32350974]
- uek-rpm: add nfs_ssc to nano_modules (Calum Mackay) [Orabug: 32346419]
- target: fix XCOPY NAA identifier lookup (David Disseldorp) [Orabug: 32248035] {CVE-2020-28374}
[5.4.17-2036.103.1]
- mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start (Zhang Xiaohui) [Orabug: 32349203] {CVE-2020-36158}
- x86/process: Mark cpu inactive before offlining (Mridula Shastry) [Orabug: 32234812]
- add license checking to kABI checker (Dan Duval) [Orabug: 32355206]
[5.4.17-2036.103.0]
- lockd: don't use interval-based rebinding over TCP (Calum Mackay) [Orabug: 32337715]
- tools: update header files in the tools directory (Thomas Tai) [Orabug: 32321484]
- perf: Fix a kABI breakage in perf_event.h (Thomas Tai) [Orabug: 32321484]
- perf/x86: Fix n_metric for cancelled txn (Peter Zijlstra) [Orabug: 32321484]
- perf/x86: Fix n_pair for cancelled txn (Peter Zijlstra) [Orabug: 32321484]
- perf/x86/intel: Check perf metrics feature for each CPU (Kan Liang) [Orabug: 32321484]
- perf/x86/intel: Support per-thread RDPMC TopDown metrics (Kan Liang) [Orabug: 32321484]
- perf/x86/intel: Support TopDown metrics on Ice Lake (Kan Liang) [Orabug: 32321484]
- perf/x86: Use event_base_rdpmc for the RDPMC userspace support (Kan Liang) [Orabug: 32321484]
- perf/x86: Add a macro for RDPMC offset of fixed counters (Kan Liang) [Orabug: 32321484]
- perf/x86/intel: Generic support for hardware TopDown metrics (Kan Liang) [Orabug: 32321484]
- perf/core: Add a new PERF_EV_CAP_SIBLING event capability (Kan Liang) [Orabug: 32321484]
- perf/core: Unify {pinned,flexible}_sched_in() (Peter Zijlstra) [Orabug: 32321484]
- perf/x86/intel: Use switch in intel_pmu_disable/enable_event (Kan Liang) [Orabug: 32321484]
- perf/x86: Keep LBR records unchanged in host context for guest usage (Like Xu) [Orabug: 32321484]
- perf/x86/intel: Fix the name of perf METRICS (Kan Liang) [Orabug: 32321484]
- perf/x86/intel: Move BTS index to 47 (Kan Liang) [Orabug: 32321484]
- perf/x86/intel: Introduce the fourth fixed counter (Kan Liang) [Orabug: 32321484]
- perf/x86/intel: Name the global status bit in NMI handler (Kan Liang) [Orabug: 32321484]
- perf/x86: Add constraint to create guest LBR event without hw counter (Like Xu) [Orabug: 32321484]
- perf/x86/lbr: Add interface to get LBR information (Like Xu) [Orabug: 32321484]
- perf/x86/core: Refactor hw->idx checks and cleanup (Like Xu) [Orabug: 32321484]
- perf/x86/intel: Avoid unnecessary PEBS_ENABLE MSR access in PMI (Kan Liang) [Orabug: 32321484]
- perf/x86: Provide stubs of KVM helpers for non-Intel CPUs (Sean Christopherson) [Orabug: 32321484]
- partitions/efi: Enable no warning option for the GPT warnings related to alternative header (Saeed Mirzamohammadi) [Orabug: 32302136]
- Revert 'cpu/hotplug: avoid race between cpuset_hotplug_workfn and later hotplug' (Daniel Jordan) [Orabug: 32295229]
- cpuset: fix race between hotplug work and later CPU offline (Daniel Jordan) [Orabug: 32295229]
- uek-rpm: aarch64: update PMU configs for Altra (Dave Kleikamp) [Orabug: 32290034]
- driver/perf: Add PMU driver for the ARM DMC-620 memory controller (Tuan Phan) [Orabug: 32290034]
- perf: arm-cmn: Fix conversion specifiers for node type (Will Deacon) [Orabug: 32290034]
- perf: arm-cmn: Fix unsigned comparison to less than zero (Will Deacon) [Orabug: 32290034]
- perf: Add Arm CMN-600 PMU driver (Robin Murphy) [Orabug: 32290034]
- perf: Add Arm CMN-600 DT binding (Robin Murphy) [Orabug: 32290034]
- perf: arm_dsu: Support DSU ACPI devices (Tuan Phan) [Orabug: 32290034]
- arm64: acpi: Make apei_claim_sea() synchronise with APEI's irq work (James Morse) [Orabug: 32290034]
- ACPI: APEI: Kick the memory_failure() queue for synchronous errors (James Morse) [Orabug: 32290034]
- iommu/arm-smmu-v3: Don't reserve implementation defined register space (Jean-Philippe Brucker) [Orabug: 32290034]
- Revert 'BACKPORT: perf: Add Arm CMN-600 DT binding' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'BACKPORT: WIP: perf: Add Arm CMN-600 PMU driver' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'BACKPORT: WIP: perf/arm-cmn: Add ACPI support' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'perf: Add ARM DMC-620 PMU driver.' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'BACKPORT: ACPI / APEI: Kick the memory_failure() queue for synchronous errors' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'BACKPORT: arm64: acpi: Make apei_claim_sea() synchronise with APEI's irq work' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'Perf: arm-cmn: Allow irq to be shared.' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'perf: arm_cmn: improve and make it work on 2P.' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'perf: arm_dsu: Allow IRQ to be shared among devices.' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'perf: arm_dsu: Support ACPI mode.' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'perf: arm_dmc620: Update ACPI ID.' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'perf: avoid breaking KABI by reusing enum' (Dave Kleikamp) [Orabug: 32290034]
- Revert 'perf/smmuv3: Allow sharing MMIO registers with the SMMU driver' (Dave Kleikamp) [Orabug: 32290034]
- tty: Fix ->session locking (Jann Horn) [Orabug: 32266677] {CVE-2020-29660}
- tty: Fix ->pgrp locking in tiocspgrp() (Jann Horn) [Orabug: 32266677] {CVE-2020-29660}
- xen-blkback: set ring->xenblkd to NULL after kthread_stop() (Pawel Wieczorkiewicz) [Orabug: 32260252] {CVE-2020-29569}
- xenbus/xenbus_backend: Disallow pending watch messages (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus: Count pending messages for each watch (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus/xen_bus_type: Support will_handle watch callback (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus: Add 'will_handle' callback support in xenbus_watch_path() (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- xen/xenbus: Allow watches discard events before queueing (SeongJae Park) [Orabug: 32253409] {CVE-2020-29568}
- KVM: x86: clflushopt should be treated as a no-op by emulation (David Edmondson) [Orabug: 32251910]
Related CVEs
| CVE-2020-28374 |
| CVE-2020-36158 |
| CVE-2020-29569 |
| CVE-2021-20177 |
| CVE-2020-29660 |
| CVE-2020-29568 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (aarch64) | kernel-uek-5.4.17-2036.103.3.el7uek.src.rpm | a5f1130546f4c75c9aa9297d1dc9b8adfdca9a83d188bac3d02952c45bb9d5f4 | ELSA-2025-20190 | ol7_aarch64_UEKR6 |
| kernel-uek-5.4.17-2036.103.3.el7uek.aarch64.rpm | 2e7f6960bd5a10c5ee553de2c141794e49805d5c7ac6af0c152f1161515abd42 | ELSA-2025-20190 | ol7_aarch64_UEKR6 | |
| kernel-uek-debug-5.4.17-2036.103.3.el7uek.aarch64.rpm | 87f89da4f55c46739c1672d725dcffc060e76c7abb49e3da64871059b90df943 | ELSA-2025-20190 | ol7_aarch64_UEKR6 | |
| kernel-uek-debug-devel-5.4.17-2036.103.3.el7uek.aarch64.rpm | 47bc0c85dd140dc8fe79c8d69c74d9c2ca0d4b519db93dbb52e805ee5146fa3d | ELSA-2025-20190 | ol7_aarch64_UEKR6 | |
| kernel-uek-devel-5.4.17-2036.103.3.el7uek.aarch64.rpm | ef05656982b96955dd397f8e65f7031e2bf0591a8eec3d9953a8f232259d7fee | ELSA-2025-20190 | ol7_aarch64_UEKR6 | |
| kernel-uek-doc-5.4.17-2036.103.3.el7uek.noarch.rpm | 5c723bb75c70d9a0600e60ac24dec56dd070da950ba05f81f172e610de85a7ee | ELSA-2025-20190 | ol7_aarch64_UEKR6 | |
| kernel-uek-tools-5.4.17-2036.103.3.el7uek.aarch64.rpm | d3acc1b542b970495b6051955d833cb6126f2d54e97179160da592a9f9aae23f | ELSA-2025-20190 | ol7_aarch64_UEKR6 | |
| kernel-uek-tools-libs-5.4.17-2036.103.3.el7uek.aarch64.rpm | 8477b7a6a3f23aa88133ad5aed034fc5f0d0e1291fb619c4bec83c675c93c2c8 | ELSA-2025-20019 | ol7_aarch64_UEKR6 | |
| perf-5.4.17-2036.103.3.el7uek.aarch64.rpm | 020a00ecc149ae487769ac2cf91139db41bd81817b51850d405f575a43468ce5 | ELSA-2025-20019 | ol7_aarch64_UEKR6 | |
| python-perf-5.4.17-2036.103.3.el7uek.aarch64.rpm | 714cef9e32fcd724023c45ef2c0a53457f60341545e828ae3cd65a67b71203cc | ELSA-2025-20019 | ol7_aarch64_UEKR6 | |
| Oracle Linux 7 (x86_64) | kernel-uek-5.4.17-2036.103.3.el7uek.src.rpm | a5f1130546f4c75c9aa9297d1dc9b8adfdca9a83d188bac3d02952c45bb9d5f4 | ELSA-2025-20190 | ol7_x86_64_UEKR6 |
| kernel-uek-5.4.17-2036.103.3.el7uek.x86_64.rpm | c20df251435b85fa8f6bce10aef12024eb1db8f76192c3040f9ba44fca06ae4a | ELSA-2025-20190 | ol7_x86_64_UEKR6 | |
| kernel-uek-debug-5.4.17-2036.103.3.el7uek.x86_64.rpm | 6d9260ef469badb9f146c7e68d413634addf3d225d9e8085e67c9d51d78d8510 | ELSA-2025-20190 | ol7_x86_64_UEKR6 | |
| kernel-uek-debug-devel-5.4.17-2036.103.3.el7uek.x86_64.rpm | b9df835d21ca61788a37b3ff94fc48ba6ba9321918fa48252c65a6847e9c7031 | ELSA-2025-20190 | ol7_x86_64_UEKR6 | |
| kernel-uek-devel-5.4.17-2036.103.3.el7uek.x86_64.rpm | 7653df055d2eb3c8d22dbb49e0dea29b864d4914134ec9f00ba0c9e4fe907d2e | ELSA-2025-20190 | ol7_x86_64_UEKR6 | |
| kernel-uek-doc-5.4.17-2036.103.3.el7uek.noarch.rpm | 5c723bb75c70d9a0600e60ac24dec56dd070da950ba05f81f172e610de85a7ee | ELSA-2025-20190 | ol7_x86_64_UEKR6 | |
| kernel-uek-tools-5.4.17-2036.103.3.el7uek.x86_64.rpm | 1a7c1b87a669b5136d6cd5e863c2bf040e598dd97400e7af5653f416db58163a | ELSA-2025-20190 | ol7_x86_64_UEKR6 | |
| Oracle Linux 8 (aarch64) | kernel-uek-5.4.17-2036.103.3.el8uek.src.rpm | d7ed47c3e1d67e0571ab4d10f09bc4037bf850b8c9d939a32dba728b5b93496c | - | ol8_aarch64_baseos_latest |
| kernel-uek-5.4.17-2036.103.3.el8uek.src.rpm | d7ed47c3e1d67e0571ab4d10f09bc4037bf850b8c9d939a32dba728b5b93496c | - | ol8_aarch64_u3_baseos_patch | |
| kernel-uek-5.4.17-2036.103.3.el8uek.aarch64.rpm | b86b3c0511cc034a56585698c90b2e0877748f9f66bfc20df236226169a79917 | - | ol8_aarch64_baseos_latest | |
| kernel-uek-5.4.17-2036.103.3.el8uek.aarch64.rpm | b86b3c0511cc034a56585698c90b2e0877748f9f66bfc20df236226169a79917 | - | ol8_aarch64_u3_baseos_patch | |
| kernel-uek-debug-5.4.17-2036.103.3.el8uek.aarch64.rpm | 7a9f7846b9012841a55bade5ba08d49939f82380118c339cccafab1ee857f31b | - | ol8_aarch64_baseos_latest | |
| kernel-uek-debug-5.4.17-2036.103.3.el8uek.aarch64.rpm | 7a9f7846b9012841a55bade5ba08d49939f82380118c339cccafab1ee857f31b | - | ol8_aarch64_u3_baseos_patch | |
| kernel-uek-debug-devel-5.4.17-2036.103.3.el8uek.aarch64.rpm | 5138fa3fd98dee286ba13b3b616a26b41e0b954bb60c582e5379d70ff6cb6707 | - | ol8_aarch64_baseos_latest | |
| kernel-uek-debug-devel-5.4.17-2036.103.3.el8uek.aarch64.rpm | 5138fa3fd98dee286ba13b3b616a26b41e0b954bb60c582e5379d70ff6cb6707 | - | ol8_aarch64_u3_baseos_patch | |
| kernel-uek-devel-5.4.17-2036.103.3.el8uek.aarch64.rpm | 6d1b7c423d23ee7808991abd63586bbf182bfb0fd0596b45e976d2579cd0b496 | - | ol8_aarch64_baseos_latest | |
| kernel-uek-devel-5.4.17-2036.103.3.el8uek.aarch64.rpm | 6d1b7c423d23ee7808991abd63586bbf182bfb0fd0596b45e976d2579cd0b496 | - | ol8_aarch64_u3_baseos_patch | |
| kernel-uek-doc-5.4.17-2036.103.3.el8uek.noarch.rpm | 7a96c1b2cea27282a96b21c2baf5c4e94a98baff3bc07b67c753659bc564c067 | - | ol8_aarch64_baseos_latest | |
| kernel-uek-doc-5.4.17-2036.103.3.el8uek.noarch.rpm | 7a96c1b2cea27282a96b21c2baf5c4e94a98baff3bc07b67c753659bc564c067 | - | ol8_aarch64_u3_baseos_patch | |
| Oracle Linux 8 (x86_64) | kernel-uek-5.4.17-2036.103.3.el8uek.src.rpm | d7ed47c3e1d67e0571ab4d10f09bc4037bf850b8c9d939a32dba728b5b93496c | - | ol8_x86_64_UEKR6 |
| kernel-uek-5.4.17-2036.103.3.el8uek.src.rpm | d7ed47c3e1d67e0571ab4d10f09bc4037bf850b8c9d939a32dba728b5b93496c | - | ol8_x86_64_baseos_latest | |
| kernel-uek-5.4.17-2036.103.3.el8uek.src.rpm | d7ed47c3e1d67e0571ab4d10f09bc4037bf850b8c9d939a32dba728b5b93496c | - | ol8_x86_64_u3_baseos_patch | |
| kernel-uek-5.4.17-2036.103.3.el8uek.x86_64.rpm | 3a280ece91684055f6042b287af907492f58e040a10e9d23ea237ae579c128ef | - | ol8_x86_64_UEKR6 | |
| kernel-uek-debug-5.4.17-2036.103.3.el8uek.x86_64.rpm | 33e8c63203ec68d440449501a345506b5352116e6b3b66919ff983634ed311c9 | - | ol8_x86_64_UEKR6 | |
| kernel-uek-debug-devel-5.4.17-2036.103.3.el8uek.x86_64.rpm | a784fe8537a0a78292479e0856d8111bad485c7b82e8efdd8b84064036360de0 | - | ol8_x86_64_UEKR6 | |
| kernel-uek-devel-5.4.17-2036.103.3.el8uek.x86_64.rpm | 251320836e918fd3ff666b74d39138a4c3e97d5f8162324e34a04604a72e96ea | - | ol8_x86_64_UEKR6 | |
| kernel-uek-doc-5.4.17-2036.103.3.el8uek.noarch.rpm | 7a96c1b2cea27282a96b21c2baf5c4e94a98baff3bc07b67c753659bc564c067 | - | ol8_x86_64_UEKR6 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
