ELSA-2021-9084
- ULN >
- Oracle Linux Errata repository >
- ELSA-2021-9084
ELSA-2021-9084 - Unbreakable Enterprise kernel security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2021-03-12 |
Description
[4.14.35-2047.501.1.el7uek]
- ovl: restore creds in all return paths of ovl_iterate (Somasundaram Krishnasamy) [Orabug: 32620381]
[4.14.35-2047.501.0]
- block/diskstats: accumulate all per-cpu counters in one pass (Konstantin Khlebnikov) [Orabug: 32531559]
- uek-rpm: config-aarch-embedded2 update for Jan 2021 Elba patches (Dave Kleikamp) [Orabug: 32532588]
- dts/pensando: Fix compatile -> compatible typeo. (David Clear) [Orabug: 32532588]
- Interrupt domain controllers for Elba ASIC. (David Clear) [Orabug: 32532588]
- elba_defconfig: CONFIG_PTP_1588_CLOCK=y (David Clear) [Orabug: 32532588]
- soc/pensando: pcie driver (David Clear) [Orabug: 32532588]
- pcie: control access to pcie clock domain registers (David Clear) [Orabug: 32532588]
- mmc: sdhci-cadence-elba ADMA and HS200 tuning support (David Clear) [Orabug: 32532588]
- enable rcu callback offloading & adaptive tick mode to reduce jitter (David Clear) [Orabug: 32532588]
- uek-rpm: Enable perf trace support for OL7 kernel builds. (Mridula Shastry) [Orabug: 32528194]
- uek-rpm: update config-aarch-embedded2 for Elba (Dave Kleikamp) [Orabug: 32361844]
- elba: u-boot environment partitions in the device-tree (David Clear) [Orabug: 32361844]
- i2c: Add Elba Ortano Lattice RD1173 I2C controller driver. (David Clear) [Orabug: 32361844]
- elba: one more mnet for elba.dtsi (David Clear) [Orabug: 32361844]
- elba: Add IPv6 support to elba_defconfig (David Clear) [Orabug: 32361844]
- mmc: sdhci-cadence-elba sdhci driver cleanup (David Clear) [Orabug: 32361844]
- spi-dw: custom chip-select handler for elba (David Clear) [Orabug: 32361844]
- arch/arm64: Pensando elba dts and config files (David Clear) [Orabug: 32361844]
- drivers/soc/pensando: crash dump driver. (David Clear) [Orabug: 32361844]
- drivers/pensando/soc: Boot State Machine (BSM) integration. (David Clear) [Orabug: 32361844]
- drivers/soc/pensando: /dev/capmem driver. (David Clear) [Orabug: 32361844]
- drivers/mmc/host: Pensando Elba support in the Cadence EMMC host controller (David Clear) [Orabug: 32361844]
- drivers/gpio: support the Elba SPI chip-selects. (David Clear) [Orabug: 32361844]
- arch/arm64: Pensando Elba SoC declaration. (David Clear) [Orabug: 32361844]
- mmc: sdhci-cadence: fix PHY write (Vladimir Kondratiev) [Orabug: 32361844]
- mmc: sdhci-cadence: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN for UniPhier (Masahiro Yamada) [Orabug: 32361844]
- mmc: sdhci-cadence: remove unneeded 'inline' marker (Masahiro Yamada) [Orabug: 32361844]
- mmc: sdhci-cadence: use struct_size() helper (Gustavo A. R. Silva) [Orabug: 32361844]
- mmc: sdhci-cadence: fix logically and structurally dead code (Gustavo A. R. Silva) [Orabug: 32361844]
- mmc: sdhci-cadence: send tune request twice to work around errata (Masahiro Yamada) [Orabug: 32361844]
- mmc: sdhci-cadence: use bitfield access macros for cleanup (Masahiro Yamada) [Orabug: 32361844]
- Revert 'Support the reset pulse width from the device-tree.' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Initial Pensando Capri SoC declaration' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Add Capri EMMC phy and instantiate the driver in the dts' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Capri SPI driver' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Interrupt domain controllers for Capri ASIC.' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Add uio support for Capri PCIE and Link interrupts' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Pensando/Capri PCIE panic handler.' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Pensando crash dump driver' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Pensando Boot State Machine (BSM) integration.' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Add mnic nodes to the Pensando devicetree' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'mtd/spi-nor/cadence-quadspi.c: Speed up reads.' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Add /proc/xmaps' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Add Pensando Capri board .dts files and default configs' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Provide for precise control of pgprot for Pensando' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Kconfig option to disable outer-cache-allocate for Pensando' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Add /dev/capmem driver for Pensando' (Dave Kleikamp) [Orabug: 32361844]
- Revert 'Make low-speed APB bus accesses single threaded' (Dave Kleikamp) [Orabug: 32361844]
- sched/topology: Assert non-NUMA topology masks don't (partially) overlap (Valentin Schneider) [Orabug: 32485794]
- x86/msr: Add a pointer to an URL which contains further details (Borislav Petkov) [Orabug: 32409137]
- x86/msr: Downgrade unrecognized MSR message (Borislav Petkov) [Orabug: 32409137]
- x86/msr: Do not allow writes to MSR_IA32_ENERGY_PERF_BIAS (Borislav Petkov) [Orabug: 32409137]
- x86/msr: Prevent userspace MSR access from dominating the console (Chris Down) [Orabug: 32409137]
- x86/msr: Filter MSR writes (Borislav Petkov) [Orabug: 32409137]
- tools/power/x86_energy_perf_policy: Read energy_perf_bias from sysfs (Borislav Petkov) [Orabug: 32409137]
- tools/power/turbostat: Read energy_perf_bias from sysfs (Borislav Petkov) [Orabug: 32409137]
- tools/power/cpupower: Read energy_perf_bias from sysfs (Borislav Petkov) [Orabug: 32409137]
- uek-rpm: Enable Oracle Pilot BMC module (Eric Snowberg) [Orabug: 32422664]
- hwmon: Add a new Oracle Pilot BMC driver (Eric Snowberg) [Orabug: 32422664]
- ovl: verify permissions in ovl_path_open() (Miklos Szeredi) [Orabug: 32435220] {CVE-2020-16120}
- ovl: switch to mounter creds in readdir (Miklos Szeredi) [Orabug: 32435220] {CVE-2020-16120}
- ovl: pass correct flags for opening real directory (Miklos Szeredi) [Orabug: 32435220]
- l2tp: fix race in pppol2tp_release with session object destroy (James Chapman) [Orabug: 32435324]
- l2tp: fix races with tunnel socket close (James Chapman) [Orabug: 32435324]
- l2tp: don't use inet_shutdown on ppp session destroy (James Chapman) [Orabug: 32435324]
- l2tp: don't use inet_shutdown on tunnel destroy (James Chapman) [Orabug: 32435324]
- l2tp: exit_net cleanup check added (Vasily Averin) [Orabug: 32435324]
- l2tp: remove the .tunnel_sock field from struct pppol2tp_session (Guillaume Nault) [Orabug: 32435324]
- l2tp: avoid using ->tunnel_sock for getting session's parent tunnel (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove .tunnel_sock from struct l2tp_eth (Guillaume Nault) [Orabug: 32435324]
- l2tp: don't close sessions in l2tp_tunnel_destruct() (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove field 'dev' from struct l2tp_eth (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove l2tp_tunnel_count and l2tp_session_count (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove ->ref() and ->deref() (Guillaume Nault) [Orabug: 32435324]
- net: l2tp: mark expected switch fall-through (Gustavo A. R. Silva) [Orabug: 32435324]
- l2tp: initialise PPP sessions before registering them (Guillaume Nault) [Orabug: 32435324]
- rds: CONFIG_RDS_DEBUG + tracepoints breaks rds build (Alan Maguire) [Orabug: 32442506]
- futex: Handle faults correctly for PI futexes (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Simplify fixup_pi_state_owner() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Use pi_state_update_owner() in put_pi_state() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- rtmutex: Remove unused argument from rt_mutex_proxy_unlock() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Don't enable IRQs unconditionally in put_pi_state() (Dan Carpenter) [Orabug: 32447189] {CVE-2021-3347}
- nbd: freeze the queue while we're adding connections (Josef Bacik) [Orabug: 32447287] {CVE-2021-3348}
- rds: avoid crash on IB conn path shutdown prepare (Alan Maguire) [Orabug: 32457375]
- net/rds: WARNING in rds_conn_drop (Ka-Cheong Poon) [Orabug: 32481707]
- rds: tracepoints incorrectly reporting valid rds ping as drop (Alan Maguire) [Orabug: 32490010]
- rds: tracepoint-related KASAN: use-after-free Read in rds_send_xmit (Alan Maguire) [Orabug: 32490032]
- selinux: allow reading labels before policy is loaded (Jonathan Lebon) [Orabug: 32492279]
- selinux: allow labeling before policy is loaded (Jonathan Lebon) [Orabug: 32492279]
Related CVEs
| CVE-2021-3348 |
| CVE-2020-16120 |
| CVE-2021-3347 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (aarch64) | kernel-uek-4.14.35-2047.501.1.el7uek.src.rpm | 9c2714bbd62c984a64da1ca8c41c176767298f938a1f590117a5ebdaf377aa13 | ELSA-2025-20190 | ol7_aarch64_latest |
| kernel-uek-4.14.35-2047.501.1.el7uek.src.rpm | 9c2714bbd62c984a64da1ca8c41c176767298f938a1f590117a5ebdaf377aa13 | ELSA-2025-20190 | ol7_aarch64_u9_patch | |
| kernel-uek-4.14.35-2047.501.1.el7uek.aarch64.rpm | 209ada7deddbc28bb94d66d6ee274925b2cd93b5a75f031170f98a6d9ab9db55 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-4.14.35-2047.501.1.el7uek.aarch64.rpm | 209ada7deddbc28bb94d66d6ee274925b2cd93b5a75f031170f98a6d9ab9db55 | ELSA-2025-20190 | ol7_aarch64_u9_patch | |
| kernel-uek-debug-4.14.35-2047.501.1.el7uek.aarch64.rpm | 9b8086f95bb6562409a67b237c7cb746a3650c3671a2a83ce01f9eff7632e31d | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-debug-4.14.35-2047.501.1.el7uek.aarch64.rpm | 9b8086f95bb6562409a67b237c7cb746a3650c3671a2a83ce01f9eff7632e31d | ELSA-2025-20190 | ol7_aarch64_u9_patch | |
| kernel-uek-debug-devel-4.14.35-2047.501.1.el7uek.aarch64.rpm | b20abf7eee0179e57b7b4b7e198149d0f507e25839597a864fa7268ced0cee54 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-debug-devel-4.14.35-2047.501.1.el7uek.aarch64.rpm | b20abf7eee0179e57b7b4b7e198149d0f507e25839597a864fa7268ced0cee54 | ELSA-2025-20190 | ol7_aarch64_u9_patch | |
| kernel-uek-devel-4.14.35-2047.501.1.el7uek.aarch64.rpm | fb1d1c018081c24c30585bc811042321c1065473784dedea7f7af9a22f2652b1 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-devel-4.14.35-2047.501.1.el7uek.aarch64.rpm | fb1d1c018081c24c30585bc811042321c1065473784dedea7f7af9a22f2652b1 | ELSA-2025-20190 | ol7_aarch64_u9_patch | |
| kernel-uek-headers-4.14.35-2047.501.1.el7uek.aarch64.rpm | a42e0473029dae02752a85be3557de0d05d37aa330338a50a7cc30479ba3bf2b | ELBA-2025-20014 | ol7_aarch64_latest | |
| kernel-uek-headers-4.14.35-2047.501.1.el7uek.aarch64.rpm | a42e0473029dae02752a85be3557de0d05d37aa330338a50a7cc30479ba3bf2b | ELBA-2025-20014 | ol7_aarch64_u9_patch | |
| kernel-uek-tools-4.14.35-2047.501.1.el7uek.aarch64.rpm | 0655d027e8838de38200d9b0e179d9f381675233f93752d444180a192dcf34b3 | ELSA-2025-20190 | ol7_aarch64_latest | |
| kernel-uek-tools-4.14.35-2047.501.1.el7uek.aarch64.rpm | 0655d027e8838de38200d9b0e179d9f381675233f93752d444180a192dcf34b3 | ELSA-2025-20190 | ol7_aarch64_u9_patch | |
| kernel-uek-tools-libs-4.14.35-2047.501.1.el7uek.aarch64.rpm | 4354ff3d163fea0bebc0d8e2dd7877e2e33caada6c2d81b223e76a3b1e274e50 | ELSA-2025-20019 | ol7_aarch64_latest | |
| kernel-uek-tools-libs-4.14.35-2047.501.1.el7uek.aarch64.rpm | 4354ff3d163fea0bebc0d8e2dd7877e2e33caada6c2d81b223e76a3b1e274e50 | ELSA-2025-20019 | ol7_aarch64_u9_patch | |
| kernel-uek-tools-libs-devel-4.14.35-2047.501.1.el7uek.aarch64.rpm | 2bf20c10ff720819db070bad68b145501514e49858928d25838db9dd052bd657 | ELBA-2025-20014 | ol7_aarch64_latest | |
| kernel-uek-tools-libs-devel-4.14.35-2047.501.1.el7uek.aarch64.rpm | 2bf20c10ff720819db070bad68b145501514e49858928d25838db9dd052bd657 | ELBA-2025-20014 | ol7_aarch64_u9_patch | |
| perf-4.14.35-2047.501.1.el7uek.aarch64.rpm | 1fba424d7799f9b5c1a02ec4b38c5fdb1053eb27e8504d030fb8a62492ded733 | ELSA-2025-20019 | ol7_aarch64_latest | |
| perf-4.14.35-2047.501.1.el7uek.aarch64.rpm | 1fba424d7799f9b5c1a02ec4b38c5fdb1053eb27e8504d030fb8a62492ded733 | ELSA-2025-20019 | ol7_aarch64_u9_patch | |
| python-perf-4.14.35-2047.501.1.el7uek.aarch64.rpm | f15ec43070b1083edbf2fe4e9ca66371d4ceddab6ad00cdb97d63174b0882dbc | ELSA-2025-20019 | ol7_aarch64_latest | |
| python-perf-4.14.35-2047.501.1.el7uek.aarch64.rpm | f15ec43070b1083edbf2fe4e9ca66371d4ceddab6ad00cdb97d63174b0882dbc | ELSA-2025-20019 | ol7_aarch64_u9_patch | |
| Oracle Linux 7 (x86_64) | kernel-uek-4.14.35-2047.501.1.el7uek.src.rpm | 9c2714bbd62c984a64da1ca8c41c176767298f938a1f590117a5ebdaf377aa13 | ELSA-2025-20190 | ol7_x86_64_UEKR5 |
| kernel-uek-4.14.35-2047.501.1.el7uek.src.rpm | 9c2714bbd62c984a64da1ca8c41c176767298f938a1f590117a5ebdaf377aa13 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-4.14.35-2047.501.1.el7uek.x86_64.rpm | 0fee057fd5d5dd0fa87aa8d93a046beb01ab0e2fd7880ea78855d1ad40d5fdfd | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-4.14.35-2047.501.1.el7uek.x86_64.rpm | 0fee057fd5d5dd0fa87aa8d93a046beb01ab0e2fd7880ea78855d1ad40d5fdfd | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-debug-4.14.35-2047.501.1.el7uek.x86_64.rpm | 019528a26b96c74094689472cf735bf17ac09ea67c46a301b859135c59af733b | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-debug-4.14.35-2047.501.1.el7uek.x86_64.rpm | 019528a26b96c74094689472cf735bf17ac09ea67c46a301b859135c59af733b | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-debug-devel-4.14.35-2047.501.1.el7uek.x86_64.rpm | 3fdec7819092e172f3c76a924aba0f9d690e97bddd57c9f2021bc18316323e60 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-debug-devel-4.14.35-2047.501.1.el7uek.x86_64.rpm | 3fdec7819092e172f3c76a924aba0f9d690e97bddd57c9f2021bc18316323e60 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-devel-4.14.35-2047.501.1.el7uek.x86_64.rpm | a0ccd5dae9961034ccdb79a354b3ab33882eeb65665f9a50b709d19e3d5e3a0a | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-devel-4.14.35-2047.501.1.el7uek.x86_64.rpm | a0ccd5dae9961034ccdb79a354b3ab33882eeb65665f9a50b709d19e3d5e3a0a | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-doc-4.14.35-2047.501.1.el7uek.noarch.rpm | 512958a430e2f46ee8d091f63fb529de9d84a1c73ad112db4bebdcd44700cff0 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-doc-4.14.35-2047.501.1.el7uek.noarch.rpm | 512958a430e2f46ee8d091f63fb529de9d84a1c73ad112db4bebdcd44700cff0 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
| kernel-uek-tools-4.14.35-2047.501.1.el7uek.x86_64.rpm | eb32dce77459a787f8f653384b7326d08a6c94ae30f6e1ebf734d4569a6e86e6 | ELSA-2025-20190 | ol7_x86_64_UEKR5 | |
| kernel-uek-tools-4.14.35-2047.501.1.el7uek.x86_64.rpm | eb32dce77459a787f8f653384b7326d08a6c94ae30f6e1ebf734d4569a6e86e6 | ELSA-2025-20190 | ol7_x86_64_UEKR5_archive | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
