Stay Connected:

ELSA-2023-7423

ELSA-2023-7423 - kernel security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2023-11-22

Description


[3.10.0-1160.105.1.0.1.OL7]
- debug: lock down kgdb [Orabug: 34270798] {CVE-2022-21499}

[3.10.0-1160.105.1.OL7]
- Update Oracle Linux certificates (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)(alexey.petrenko@oracle.com)
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-2.0.9
- Update oracle(kernel-sig-key) value to match new certificate (Ilya Okomin)

[3.10.0-1160.105.1]
- net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}

[3.10.0-1160.104.1]
- CI: Remove unused kpet_tree_family (Nikolai Kondrashov)
- xen/x86: don't lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
- Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
- KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
- Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
- docs/kernel-parameters: Update descriptions for 'mitigations=' param with retbleed (Waiman Long) [2229893]
- x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
- x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]

[3.10.0-1160.103.1]
- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
- net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
- redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)


Related CVEs


CVE-2023-3776
CVE-2023-4206
CVE-2023-4128
CVE-2022-40982
CVE-2023-4208
CVE-2023-3611
CVE-2023-4207

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (x86_64) kernel-3.10.0-1160.105.1.0.1.el7.src.rpm0662ccf81dad0b1f12a95346427c1a3b2ae0c38ffc9819194bc330823b06190bELSA-2025-1281ol7_x86_64_latest
kernel-3.10.0-1160.105.1.0.1.el7.src.rpm0662ccf81dad0b1f12a95346427c1a3b2ae0c38ffc9819194bc330823b06190bELSA-2025-1281ol7_x86_64_optional_latest
kernel-3.10.0-1160.105.1.0.1.el7.src.rpm0662ccf81dad0b1f12a95346427c1a3b2ae0c38ffc9819194bc330823b06190bELSA-2025-1281ol7_x86_64_u9_patch
bpftool-3.10.0-1160.105.1.0.1.el7.x86_64.rpm294533774780c2bf3e1a2720420b4ba9ef15e5f7b0ed8df23d112b5b7c27648fELSA-2025-1281ol7_x86_64_latest
bpftool-3.10.0-1160.105.1.0.1.el7.x86_64.rpm294533774780c2bf3e1a2720420b4ba9ef15e5f7b0ed8df23d112b5b7c27648fELSA-2025-1281ol7_x86_64_u9_patch
kernel-3.10.0-1160.105.1.0.1.el7.x86_64.rpm2bdd75b8c955e9acc8441528315c1839c8a74aface1a67280e30c74c0968fd99ELSA-2025-1281ol7_x86_64_latest
kernel-3.10.0-1160.105.1.0.1.el7.x86_64.rpm2bdd75b8c955e9acc8441528315c1839c8a74aface1a67280e30c74c0968fd99ELSA-2025-1281ol7_x86_64_u9_patch
kernel-abi-whitelists-3.10.0-1160.105.1.0.1.el7.noarch.rpmfa90a9fbfb3793ce3e046d8b1441b8d16aad4274442dd021f814cf2b32322a31ELSA-2025-1281ol7_x86_64_latest
kernel-abi-whitelists-3.10.0-1160.105.1.0.1.el7.noarch.rpmfa90a9fbfb3793ce3e046d8b1441b8d16aad4274442dd021f814cf2b32322a31ELSA-2025-1281ol7_x86_64_u9_patch
kernel-debug-3.10.0-1160.105.1.0.1.el7.x86_64.rpme98a43d1b74dab6e2b937a55ab70a3ce2b1759cf9f335bdab1ea232a93c6a603ELSA-2025-1281ol7_x86_64_latest
kernel-debug-3.10.0-1160.105.1.0.1.el7.x86_64.rpme98a43d1b74dab6e2b937a55ab70a3ce2b1759cf9f335bdab1ea232a93c6a603ELSA-2025-1281ol7_x86_64_u9_patch
kernel-debug-devel-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc72a312756a72a2afd4f28005f318c8923863dff11a6e7e4a9fc6b2988d518f6ELSA-2025-1281ol7_x86_64_latest
kernel-debug-devel-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc72a312756a72a2afd4f28005f318c8923863dff11a6e7e4a9fc6b2988d518f6ELSA-2025-1281ol7_x86_64_u9_patch
kernel-devel-3.10.0-1160.105.1.0.1.el7.x86_64.rpm4c1a78ddd6c3b2e0a82b94671dcc8fe7a713b26b09ac0996cb81af497d49420eELSA-2025-1281ol7_x86_64_latest
kernel-devel-3.10.0-1160.105.1.0.1.el7.x86_64.rpm4c1a78ddd6c3b2e0a82b94671dcc8fe7a713b26b09ac0996cb81af497d49420eELSA-2025-1281ol7_x86_64_u9_patch
kernel-doc-3.10.0-1160.105.1.0.1.el7.noarch.rpmc603a5f5f058ed862cc0f08facc119888325ab0b078746360971068c3a53ff8aELSA-2025-1281ol7_x86_64_latest
kernel-doc-3.10.0-1160.105.1.0.1.el7.noarch.rpmc603a5f5f058ed862cc0f08facc119888325ab0b078746360971068c3a53ff8aELSA-2025-1281ol7_x86_64_u9_patch
kernel-headers-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc08bf3249839f8caa67986b60d789ae83420b8b3de4b3da7236cae52cdc206b5ELSA-2025-1281exadata_dbserver_22.1.18.0.0_x86_64_base
kernel-headers-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc08bf3249839f8caa67986b60d789ae83420b8b3de4b3da7236cae52cdc206b5ELSA-2025-1281exadata_dbserver_22.1.19.0.0_x86_64_base
kernel-headers-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc08bf3249839f8caa67986b60d789ae83420b8b3de4b3da7236cae52cdc206b5ELSA-2025-1281exadata_dbserver_22.1.20.0.0_x86_64_base
kernel-headers-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc08bf3249839f8caa67986b60d789ae83420b8b3de4b3da7236cae52cdc206b5ELSA-2025-1281exadata_dbserver_22.1.21.0.0_x86_64_base
kernel-headers-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc08bf3249839f8caa67986b60d789ae83420b8b3de4b3da7236cae52cdc206b5ELSA-2025-1281ol7_x86_64_latest
kernel-headers-3.10.0-1160.105.1.0.1.el7.x86_64.rpmc08bf3249839f8caa67986b60d789ae83420b8b3de4b3da7236cae52cdc206b5ELSA-2025-1281ol7_x86_64_u9_patch
kernel-tools-3.10.0-1160.105.1.0.1.el7.x86_64.rpmcdab550f396ecae9e826c64de7a9f5746459a34ffd47ce419d54c9f5e55ca7feELSA-2025-1281exadata_dbserver_22.1.18.0.0_x86_64_base
kernel-tools-3.10.0-1160.105.1.0.1.el7.x86_64.rpmcdab550f396ecae9e826c64de7a9f5746459a34ffd47ce419d54c9f5e55ca7feELSA-2025-1281exadata_dbserver_22.1.19.0.0_x86_64_base
kernel-tools-3.10.0-1160.105.1.0.1.el7.x86_64.rpmcdab550f396ecae9e826c64de7a9f5746459a34ffd47ce419d54c9f5e55ca7feELSA-2025-1281exadata_dbserver_22.1.20.0.0_x86_64_base
kernel-tools-3.10.0-1160.105.1.0.1.el7.x86_64.rpmcdab550f396ecae9e826c64de7a9f5746459a34ffd47ce419d54c9f5e55ca7feELSA-2025-1281exadata_dbserver_22.1.21.0.0_x86_64_base
kernel-tools-3.10.0-1160.105.1.0.1.el7.x86_64.rpmcdab550f396ecae9e826c64de7a9f5746459a34ffd47ce419d54c9f5e55ca7feELSA-2025-1281ol7_x86_64_latest
kernel-tools-3.10.0-1160.105.1.0.1.el7.x86_64.rpmcdab550f396ecae9e826c64de7a9f5746459a34ffd47ce419d54c9f5e55ca7feELSA-2025-1281ol7_x86_64_u9_patch
kernel-tools-libs-3.10.0-1160.105.1.0.1.el7.x86_64.rpm0ba0d8dcb30274d2cb6acd47fa2c5f8db183be178c26ffc4c6d285f44cb8e8bcELSA-2025-1281exadata_dbserver_22.1.18.0.0_x86_64_base
kernel-tools-libs-3.10.0-1160.105.1.0.1.el7.x86_64.rpm0ba0d8dcb30274d2cb6acd47fa2c5f8db183be178c26ffc4c6d285f44cb8e8bcELSA-2025-1281exadata_dbserver_22.1.19.0.0_x86_64_base
kernel-tools-libs-3.10.0-1160.105.1.0.1.el7.x86_64.rpm0ba0d8dcb30274d2cb6acd47fa2c5f8db183be178c26ffc4c6d285f44cb8e8bcELSA-2025-1281exadata_dbserver_22.1.20.0.0_x86_64_base
kernel-tools-libs-3.10.0-1160.105.1.0.1.el7.x86_64.rpm0ba0d8dcb30274d2cb6acd47fa2c5f8db183be178c26ffc4c6d285f44cb8e8bcELSA-2025-1281exadata_dbserver_22.1.21.0.0_x86_64_base
kernel-tools-libs-3.10.0-1160.105.1.0.1.el7.x86_64.rpm0ba0d8dcb30274d2cb6acd47fa2c5f8db183be178c26ffc4c6d285f44cb8e8bcELSA-2025-1281ol7_x86_64_latest
kernel-tools-libs-3.10.0-1160.105.1.0.1.el7.x86_64.rpm0ba0d8dcb30274d2cb6acd47fa2c5f8db183be178c26ffc4c6d285f44cb8e8bcELSA-2025-1281ol7_x86_64_u9_patch
kernel-tools-libs-devel-3.10.0-1160.105.1.0.1.el7.x86_64.rpmd7455f89ff4ce027e8d0adc20d3f4290b19bc6748e65be416dd9953aa97bb4c4ELSA-2025-1281ol7_x86_64_optional_latest
perf-3.10.0-1160.105.1.0.1.el7.x86_64.rpm83649775411cd7aa09e3341827900f9316a1a9a9fad24df789394125566cb4acELSA-2025-20019ol7_x86_64_latest
perf-3.10.0-1160.105.1.0.1.el7.x86_64.rpm83649775411cd7aa09e3341827900f9316a1a9a9fad24df789394125566cb4acELSA-2025-20019ol7_x86_64_u9_patch
python-perf-3.10.0-1160.105.1.0.1.el7.x86_64.rpmf68973261860e7965b7a1c0a56a19583ab833af2cef1460abe8b58861269e548ELSA-2025-20019ol7_x86_64_latest
python-perf-3.10.0-1160.105.1.0.1.el7.x86_64.rpmf68973261860e7965b7a1c0a56a19583ab833af2cef1460abe8b58861269e548ELSA-2025-20019ol7_x86_64_u9_patch



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights