ELSA-2022-0188

ULN >
Oracle Linux Errata repository >
ELSA-2022-0188

ELSA-2022-0188 - kernel security and bug fix update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2022-01-21

Description

[4.18.0-348.12.2_5.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-11.0.5

[4.18.0-348.12.2_5]
- vfs: Out-of-bounds write of heap buffer in fs_context.c (Frantisek Hrbata) [2040585 2040586] {CVE-2022-0185}
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Bruno Meneguele) [2034864 2034865] {CVE-2021-4155}

[4.18.0-348.12.1_5]
- tcp: don't free a FIN sk_buff in tcp_remove_empty_skb() (Guillaume Nault) [2021574 2016210]
- kernel.spec: Add support to use vmlinux.h (Jiri Olsa) [2031053 1989087]
- spec: Add vmlinux.h to kernel-devel package (Jiri Olsa) [2031053 1989087]
- x86/mce: Avoid infinite loop for copy from user recovery (Prarit Bhargava) [2008789 1999550]
- x86/mce: Rename kill_it to kill_current_task (Prarit Bhargava) [2008789 1999550]
- x86/mce: Recover from poison found while copying from user space (Prarit Bhargava) [2008789 1999550]
- x86/mce: Delay clearing IA32_MCG_STATUS to the end of do_machine_check() (Prarit Bhargava) [2008789 1999550]
- x86/mce: Send #MC singal from task work (Prarit Bhargava) [2008789 1999550]

[4.18.0-348.11.1_5]
- blk-mq: avoid to iterate over stale request (Ming Lei) [2034396 1997338]
- rcu: Tighten rcu_advance_cbs_nowake() checks (Daniel Vacek) [2032579 2013408]

[4.18.0-348.10.1_5]
- selftests: add a test case for mirred egress to ingress (Xin Long) [2024411 1983894]
- net: sched: act_mirred: drop dst for the direction from egress to ingress (Xin Long) [2024411 1983894]

[4.18.0-348.9.1_5]
- ixgbe: Revert 'bpf, devmap: Move drop error path to devmap for XDP_REDIRECT' (Ken Cox) [2029845 2024240]
- i40e: Revert 'bpf, devmap: Move drop error path to devmap for XDP_REDIRECT' (Stefan Assmann) [2029845 2024225]
- rcu/nocb: Perform deferred wake up before last idle's need_resched() check (Waiman Long) [2029449 2008340]

[4.18.0-348.8.1_5]
- ice: Fix VF true promiscuous mode (Jonathan Toppins) [2026698 1970643]
- ice: Remove toggling of antispoof for VF trusted promiscuous mode (Jonathan Toppins) [2026698 1970643]
- ice: Fix replacing VF hardware MAC to existing MAC filter (Jonathan Toppins) [2026698 1970643]
- ice: Fix not stopping Tx queues for VFs (Jonathan Toppins) [2026698 1970643]
- ice: Fix race conditions between virtchnl handling and VF ndo ops (Jonathan Toppins) [2026698 1970643]
- net/netif_receive_skb_core: Use migrate_disable() (Luis Claudio R. Goncalves) [2027689 2024168]
- crypto: jitter - consider 32 LSB for APT (Herbert Xu) [2029365 1994390]
- xfs: fix I_DONTCACHE (Carlos Maiolino) [2028534 2024969]

Related CVEs

CVE-2021-4155

CVE-2022-0185

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	kernel-4.18.0-348.12.2.el8_5.src.rpm	81565f226928b667f5b631b9cde72093782e2ebab0cbdcf3bb8dd2e6c8ea8de9	-	ol8_aarch64_baseos_latest
	kernel-4.18.0-348.12.2.el8_5.src.rpm	81565f226928b667f5b631b9cde72093782e2ebab0cbdcf3bb8dd2e6c8ea8de9	-	ol8_aarch64_codeready_builder
	kernel-4.18.0-348.12.2.el8_5.src.rpm	81565f226928b667f5b631b9cde72093782e2ebab0cbdcf3bb8dd2e6c8ea8de9	-	ol8_aarch64_u5_baseos_patch
	bpftool-4.18.0-348.12.2.el8_5.aarch64.rpm	b7ed8b79c5c35b7df2f6cf8f5959cd4a9ccecb616681e7fb4132e4fddc0ad993	-	ol8_aarch64_baseos_latest
	bpftool-4.18.0-348.12.2.el8_5.aarch64.rpm	b7ed8b79c5c35b7df2f6cf8f5959cd4a9ccecb616681e7fb4132e4fddc0ad993	-	ol8_aarch64_u5_baseos_patch
	kernel-cross-headers-4.18.0-348.12.2.el8_5.aarch64.rpm	09a005333c5138c4ffedfd3fb736b008c3c25fce242a0cccfbeab74d0900a931	-	ol8_aarch64_baseos_latest
	kernel-cross-headers-4.18.0-348.12.2.el8_5.aarch64.rpm	09a005333c5138c4ffedfd3fb736b008c3c25fce242a0cccfbeab74d0900a931	-	ol8_aarch64_u5_baseos_patch
	kernel-headers-4.18.0-348.12.2.el8_5.aarch64.rpm	e16e4c9a9a036c3fc6900af2015f93d66edb19ed460e3da60fb3e0ea33cf5cd5	-	ol8_aarch64_baseos_latest
	kernel-headers-4.18.0-348.12.2.el8_5.aarch64.rpm	e16e4c9a9a036c3fc6900af2015f93d66edb19ed460e3da60fb3e0ea33cf5cd5	-	ol8_aarch64_u5_baseos_patch
	kernel-tools-4.18.0-348.12.2.el8_5.aarch64.rpm	7fa192f3ba5f6c9113670afc3d74eb8cbe43220a69c83b11140c597e455eb627	-	ol8_aarch64_baseos_latest
	kernel-tools-4.18.0-348.12.2.el8_5.aarch64.rpm	7fa192f3ba5f6c9113670afc3d74eb8cbe43220a69c83b11140c597e455eb627	-	ol8_aarch64_u5_baseos_patch
	kernel-tools-libs-4.18.0-348.12.2.el8_5.aarch64.rpm	be1c49d89d988f4182d2ed0809bccc842ca77ae49d61b3b6df2522fa4c80bfe0	-	ol8_aarch64_baseos_latest
	kernel-tools-libs-4.18.0-348.12.2.el8_5.aarch64.rpm	be1c49d89d988f4182d2ed0809bccc842ca77ae49d61b3b6df2522fa4c80bfe0	-	ol8_aarch64_u5_baseos_patch
	kernel-tools-libs-devel-4.18.0-348.12.2.el8_5.aarch64.rpm	3867a7e8349fb5186594f6456f86c45001d49fa7f939ad57af29200dfbcd797d	-	ol8_aarch64_codeready_builder
	perf-4.18.0-348.12.2.el8_5.aarch64.rpm	1f8993fc98a79c01d767fae8a1507155f7174b80f12456c9a96e31a95840505f	-	ol8_aarch64_baseos_latest
	perf-4.18.0-348.12.2.el8_5.aarch64.rpm	1f8993fc98a79c01d767fae8a1507155f7174b80f12456c9a96e31a95840505f	-	ol8_aarch64_u5_baseos_patch
	python3-perf-4.18.0-348.12.2.el8_5.aarch64.rpm	77d88afd43391b10607c17c4e734571767d7175102a29c890265daac178887d8	-	ol8_aarch64_baseos_latest
	python3-perf-4.18.0-348.12.2.el8_5.aarch64.rpm	77d88afd43391b10607c17c4e734571767d7175102a29c890265daac178887d8	-	ol8_aarch64_u5_baseos_patch

Oracle Linux 8 (x86_64)	kernel-4.18.0-348.12.2.el8_5.src.rpm	81565f226928b667f5b631b9cde72093782e2ebab0cbdcf3bb8dd2e6c8ea8de9	-	ol8_x86_64_baseos_latest
	kernel-4.18.0-348.12.2.el8_5.src.rpm	81565f226928b667f5b631b9cde72093782e2ebab0cbdcf3bb8dd2e6c8ea8de9	-	ol8_x86_64_codeready_builder
	kernel-4.18.0-348.12.2.el8_5.src.rpm	81565f226928b667f5b631b9cde72093782e2ebab0cbdcf3bb8dd2e6c8ea8de9	-	ol8_x86_64_u5_baseos_patch
	bpftool-4.18.0-348.12.2.el8_5.x86_64.rpm	79d19d4339fc03f5202e9d3256aaeda054740f9aa5c90a4cbdbd2bc0647b1329	-	ol8_x86_64_baseos_latest
	bpftool-4.18.0-348.12.2.el8_5.x86_64.rpm	79d19d4339fc03f5202e9d3256aaeda054740f9aa5c90a4cbdbd2bc0647b1329	-	ol8_x86_64_u5_baseos_patch
	kernel-4.18.0-348.12.2.el8_5.x86_64.rpm	7a7f5c237b09068807ce321aa76e65f34e952d9a63fff36699b2c6c7748e9706	-	ol8_x86_64_baseos_latest
	kernel-4.18.0-348.12.2.el8_5.x86_64.rpm	7a7f5c237b09068807ce321aa76e65f34e952d9a63fff36699b2c6c7748e9706	-	ol8_x86_64_u5_baseos_patch
	kernel-abi-stablelists-4.18.0-348.12.2.el8_5.noarch.rpm	9ca132fd68c0c357a4137e7cab8e43b58f2958e7c0b17b12c0e48074241e5baf	-	ol8_x86_64_baseos_latest
	kernel-abi-stablelists-4.18.0-348.12.2.el8_5.noarch.rpm	9ca132fd68c0c357a4137e7cab8e43b58f2958e7c0b17b12c0e48074241e5baf	-	ol8_x86_64_u5_baseos_patch
	kernel-core-4.18.0-348.12.2.el8_5.x86_64.rpm	b8b011c896069a3b425660f8008bf3bbe6504a15290af340ea8e2fba5d49a136	-	ol8_x86_64_baseos_latest
	kernel-core-4.18.0-348.12.2.el8_5.x86_64.rpm	b8b011c896069a3b425660f8008bf3bbe6504a15290af340ea8e2fba5d49a136	-	ol8_x86_64_u5_baseos_patch
	kernel-cross-headers-4.18.0-348.12.2.el8_5.x86_64.rpm	219449e5ba8bd594592fee1cecd3ec300fa9da8b534c10b79192f6589df6c64a	-	ol8_x86_64_baseos_latest
	kernel-cross-headers-4.18.0-348.12.2.el8_5.x86_64.rpm	219449e5ba8bd594592fee1cecd3ec300fa9da8b534c10b79192f6589df6c64a	-	ol8_x86_64_u5_baseos_patch
	kernel-debug-4.18.0-348.12.2.el8_5.x86_64.rpm	1196aa0bbde7ca9987e7821ca2cc4327ec42f9c85aa3d98d1ca9da494d8d8aa5	-	ol8_x86_64_baseos_latest
	kernel-debug-4.18.0-348.12.2.el8_5.x86_64.rpm	1196aa0bbde7ca9987e7821ca2cc4327ec42f9c85aa3d98d1ca9da494d8d8aa5	-	ol8_x86_64_u5_baseos_patch
	kernel-debug-core-4.18.0-348.12.2.el8_5.x86_64.rpm	9986bffc440f9e7d516b4356fb5655511ee78bd3bc26293602338fe1a4aece39	-	ol8_x86_64_baseos_latest
	kernel-debug-core-4.18.0-348.12.2.el8_5.x86_64.rpm	9986bffc440f9e7d516b4356fb5655511ee78bd3bc26293602338fe1a4aece39	-	ol8_x86_64_u5_baseos_patch
	kernel-debug-devel-4.18.0-348.12.2.el8_5.x86_64.rpm	66c2a1cb1bd7d4716e1e271db7a97f3f1cf61b73feee4cb0c0f862ec667b6f41	-	ol8_x86_64_baseos_latest
	kernel-debug-devel-4.18.0-348.12.2.el8_5.x86_64.rpm	66c2a1cb1bd7d4716e1e271db7a97f3f1cf61b73feee4cb0c0f862ec667b6f41	-	ol8_x86_64_u5_baseos_patch
	kernel-debug-modules-4.18.0-348.12.2.el8_5.x86_64.rpm	e8786ad9a8680c7429cc2dac9123f1aed3dc0c1056d6c0b671301f5adf00a6c2	-	ol8_x86_64_baseos_latest
	kernel-debug-modules-4.18.0-348.12.2.el8_5.x86_64.rpm	e8786ad9a8680c7429cc2dac9123f1aed3dc0c1056d6c0b671301f5adf00a6c2	-	ol8_x86_64_u5_baseos_patch
	kernel-debug-modules-extra-4.18.0-348.12.2.el8_5.x86_64.rpm	61a5eeddd4e6929c8970593d984a48a032721856fe33c04bd207293899e714bd	-	ol8_x86_64_baseos_latest
	kernel-debug-modules-extra-4.18.0-348.12.2.el8_5.x86_64.rpm	61a5eeddd4e6929c8970593d984a48a032721856fe33c04bd207293899e714bd	-	ol8_x86_64_u5_baseos_patch
	kernel-devel-4.18.0-348.12.2.el8_5.x86_64.rpm	fbf9d8418d63fcab02fbab255e313a33d1d1b77bfcd29c15be7c55bc8856fb61	-	ol8_x86_64_baseos_latest
	kernel-devel-4.18.0-348.12.2.el8_5.x86_64.rpm	fbf9d8418d63fcab02fbab255e313a33d1d1b77bfcd29c15be7c55bc8856fb61	-	ol8_x86_64_u5_baseos_patch
	kernel-doc-4.18.0-348.12.2.el8_5.noarch.rpm	1b8946c36a4e6785471aab299c1ee60bc59d638f2e9b33201ac7c9184b6d4905	-	ol8_x86_64_baseos_latest
	kernel-doc-4.18.0-348.12.2.el8_5.noarch.rpm	1b8946c36a4e6785471aab299c1ee60bc59d638f2e9b33201ac7c9184b6d4905	-	ol8_x86_64_u5_baseos_patch
	kernel-headers-4.18.0-348.12.2.el8_5.x86_64.rpm	21a5ff9be10517f39fe321a8a8ba8360a44691c0ed17771aedec84121e068c4e	-	ol8_x86_64_baseos_latest
	kernel-headers-4.18.0-348.12.2.el8_5.x86_64.rpm	21a5ff9be10517f39fe321a8a8ba8360a44691c0ed17771aedec84121e068c4e	-	ol8_x86_64_u5_baseos_patch
	kernel-modules-4.18.0-348.12.2.el8_5.x86_64.rpm	17192c3394481091e023fcbe749d550a642607dae95e390426f0aac20bdd4ce6	-	ol8_x86_64_baseos_latest
	kernel-modules-4.18.0-348.12.2.el8_5.x86_64.rpm	17192c3394481091e023fcbe749d550a642607dae95e390426f0aac20bdd4ce6	-	ol8_x86_64_u5_baseos_patch
	kernel-modules-extra-4.18.0-348.12.2.el8_5.x86_64.rpm	203d96bf1bedca0c58099db5a4ed8432bc29a710862befce5a4cc79b7977f01d	-	ol8_x86_64_baseos_latest
	kernel-modules-extra-4.18.0-348.12.2.el8_5.x86_64.rpm	203d96bf1bedca0c58099db5a4ed8432bc29a710862befce5a4cc79b7977f01d	-	ol8_x86_64_u5_baseos_patch
	kernel-tools-4.18.0-348.12.2.el8_5.x86_64.rpm	e8dbde58d601cfec84fe27208ccb44183d2b7cea2fdfea1b0a0796d2de9381a2	-	ol8_x86_64_baseos_latest
	kernel-tools-4.18.0-348.12.2.el8_5.x86_64.rpm	e8dbde58d601cfec84fe27208ccb44183d2b7cea2fdfea1b0a0796d2de9381a2	-	ol8_x86_64_u5_baseos_patch
	kernel-tools-libs-4.18.0-348.12.2.el8_5.x86_64.rpm	241b6d7750a728d2200f468880d5f990a018c06c2181c3772edf4c7e04c4bd99	-	ol8_x86_64_baseos_latest
	kernel-tools-libs-4.18.0-348.12.2.el8_5.x86_64.rpm	241b6d7750a728d2200f468880d5f990a018c06c2181c3772edf4c7e04c4bd99	-	ol8_x86_64_u5_baseos_patch
	kernel-tools-libs-devel-4.18.0-348.12.2.el8_5.x86_64.rpm	6ce8a72289d88e6ce33509fffbaee3006fc1426e035ab54fc2cd59fc359d2d6f	-	ol8_x86_64_codeready_builder
	perf-4.18.0-348.12.2.el8_5.x86_64.rpm	5830ead8030cf2fea76d7b8d9f8c3647652c2558ab5931850e01b53f6eff1d0a	-	ol8_x86_64_baseos_latest
	perf-4.18.0-348.12.2.el8_5.x86_64.rpm	5830ead8030cf2fea76d7b8d9f8c3647652c2558ab5931850e01b53f6eff1d0a	-	ol8_x86_64_u5_baseos_patch
	python3-perf-4.18.0-348.12.2.el8_5.x86_64.rpm	5d5147f77def4f914e6e9327e0a213916b5e06ba24bc6303879e12d59b08d2c5	-	ol8_x86_64_baseos_latest
	python3-perf-4.18.0-348.12.2.el8_5.x86_64.rpm	5d5147f77def4f914e6e9327e0a213916b5e06ba24bc6303879e12d59b08d2c5	-	ol8_x86_64_u5_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691