ELSA-2024-10281

ULN >
Oracle Linux Errata repository >
ELSA-2024-10281

ELSA-2024-10281 - kernel:4.18.0 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2024-11-26

Description

- [4.18.0-553.30.1_10.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652]

[4.18.0-553.30.1_10]
- media: edia: dvbdev: fix a use-after-free (Kate Hsuan) [RHEL-35763] {CVE-2024-27043}
- blk-mq: fix missing blk_account_io_done() in error path (Ming Lei) [RHEL-61200]
- rbd: don't assume rbd_is_lock_owner() for exclusive mappings (Ilya Dryomov) [RHEL-52684]
- rbd: don't assume RBD_LOCK_STATE_LOCKED for exclusive mappings (Ilya Dryomov) [RHEL-52684]
- rbd: rename RBD_LOCK_STATE_RELEASING and releasing_wait (Ilya Dryomov) [RHEL-52684]
- smb: client: use actual path when queryfs (Paulo Alcantara) [RHEL-60363]
- cifs: Fix uninitialized memory reads for oparms.mode (Paulo Alcantara) [RHEL-60363]
- cifs: Fix uninitialized memory read for smb311 posix symlink create (Paulo Alcantara) [RHEL-60363]
- cifs: convert the path to utf16 in smb2_query_info_compound (Paulo Alcantara) [RHEL-60363]
- autofs: fix thinko in validate_dev_ioctl() (Ian Kent) [RHEL-62168]
- autofs: add per dentry expire timeout (Ian Kent) [RHEL-62168]
- bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE (Viktor Malik) [RHEL-44167] {CVE-2024-38564}

[4.18.0-553.29.1_10]
- Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout (cki-backport-bot) [RHEL-36372] {CVE-2024-27399}
- mptcp: pm: Fix uaf in __timer_delete_sync (Guillaume Nault) [RHEL-60614] {CVE-2024-46858}
- cifs: fix dfs link failover in cifs_tree_connect() (Paulo Alcantara) [RHEL-8002]

[4.18.0-553.28.1_10]
- s390/mm: Add cond_resched() to cmm_alloc/free_pages() (Mete Durlu) [RHEL-61702]
- smb: client: fix deadlock in smb2_find_smb_tcon() (Paulo Alcantara) [RHEL-61400]
- smb: client: fix potential deadlock when releasing mids (Paulo Alcantara) [RHEL-61400]
- cifs: remove useless DeleteMidQEntry() (Paulo Alcantara) [RHEL-61400]
- Bluetooth: af_bluetooth: Fix deadlock (CKI Backport Bot) [RHEL-58991]
- gitlab-ci: provide consistent kcidb_tree_name (Michael Hofmann)
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped. (Nico Pache) [RHEL-26709]
- audit: Send netlink ACK before setting connection in auditd_set (Richard Guy Briggs) [RHEL-14004]
- KVM: selftests: x86: Fix test failure on arch lbr capable platforms (Maxim Levitsky) [RHEL-23999]
- raid1: fix use-after-free for original bio in raid1_write_request() (Nigel Croxon) [RHEL-55263]

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	kernel-4.18.0-553.30.1.el8_10.src.rpm	3c36e63e9ca27f9f9fd7736908a592c864353390c3c32bd895775d7da41e0bde	-	ol8_aarch64_baseos_latest
	kernel-4.18.0-553.30.1.el8_10.src.rpm	3c36e63e9ca27f9f9fd7736908a592c864353390c3c32bd895775d7da41e0bde	-	ol8_aarch64_codeready_builder
	kernel-4.18.0-553.30.1.el8_10.src.rpm	3c36e63e9ca27f9f9fd7736908a592c864353390c3c32bd895775d7da41e0bde	-	ol8_aarch64_u10_baseos_patch
	bpftool-4.18.0-553.30.1.el8_10.aarch64.rpm	f1153d45c1d0bee46a43a0691258ceac9475ac5169fd7553e042e7458baef8f7	-	ol8_aarch64_baseos_latest
	bpftool-4.18.0-553.30.1.el8_10.aarch64.rpm	f1153d45c1d0bee46a43a0691258ceac9475ac5169fd7553e042e7458baef8f7	-	ol8_aarch64_u10_baseos_patch
	kernel-cross-headers-4.18.0-553.30.1.el8_10.aarch64.rpm	fefbf61c87749b913dd83891fb9fc4d09eb5cc72ff30c814f822f43e98f12d25	-	ol8_aarch64_baseos_latest
	kernel-cross-headers-4.18.0-553.30.1.el8_10.aarch64.rpm	fefbf61c87749b913dd83891fb9fc4d09eb5cc72ff30c814f822f43e98f12d25	-	ol8_aarch64_u10_baseos_patch
	kernel-headers-4.18.0-553.30.1.el8_10.aarch64.rpm	1f4b68459ebcdfbd12db86e04edccc7d90a21b3f6e7c90c3c9f05457d40dccc5	-	ol8_aarch64_baseos_latest
	kernel-headers-4.18.0-553.30.1.el8_10.aarch64.rpm	1f4b68459ebcdfbd12db86e04edccc7d90a21b3f6e7c90c3c9f05457d40dccc5	-	ol8_aarch64_u10_baseos_patch
	kernel-tools-4.18.0-553.30.1.el8_10.aarch64.rpm	ea241a6cde029091f342723a7bd526b1eed72a7dfce2304823f9ae9f9c4f894d	-	ol8_aarch64_baseos_latest
	kernel-tools-4.18.0-553.30.1.el8_10.aarch64.rpm	ea241a6cde029091f342723a7bd526b1eed72a7dfce2304823f9ae9f9c4f894d	-	ol8_aarch64_u10_baseos_patch
	kernel-tools-libs-4.18.0-553.30.1.el8_10.aarch64.rpm	d01364c11536e99606da279b0789ae9b8065591347a75b40b72b434f99607c5c	-	ol8_aarch64_baseos_latest
	kernel-tools-libs-4.18.0-553.30.1.el8_10.aarch64.rpm	d01364c11536e99606da279b0789ae9b8065591347a75b40b72b434f99607c5c	-	ol8_aarch64_u10_baseos_patch
	kernel-tools-libs-devel-4.18.0-553.30.1.el8_10.aarch64.rpm	bfefb86fd094dd028240e4ccc9603a5a9923f50d3013e0e7e4a58164544b241e	-	ol8_aarch64_codeready_builder
	perf-4.18.0-553.30.1.el8_10.aarch64.rpm	c8b9f5adc564764a1ca2d11644a7cd681b6f45561cd65f8a1403b4f58fbb9b3a	-	ol8_aarch64_baseos_latest
	perf-4.18.0-553.30.1.el8_10.aarch64.rpm	c8b9f5adc564764a1ca2d11644a7cd681b6f45561cd65f8a1403b4f58fbb9b3a	-	ol8_aarch64_u10_baseos_patch
	python3-perf-4.18.0-553.30.1.el8_10.aarch64.rpm	bb530ef737bd26fc40d309de5472f8162472d070497b4ba7476a1fabf87478ee	-	ol8_aarch64_baseos_latest
	python3-perf-4.18.0-553.30.1.el8_10.aarch64.rpm	bb530ef737bd26fc40d309de5472f8162472d070497b4ba7476a1fabf87478ee	-	ol8_aarch64_u10_baseos_patch

Oracle Linux 8 (x86_64)	kernel-4.18.0-553.30.1.el8_10.src.rpm	3c36e63e9ca27f9f9fd7736908a592c864353390c3c32bd895775d7da41e0bde	-	ol8_x86_64_baseos_latest
	kernel-4.18.0-553.30.1.el8_10.src.rpm	3c36e63e9ca27f9f9fd7736908a592c864353390c3c32bd895775d7da41e0bde	-	ol8_x86_64_codeready_builder
	kernel-4.18.0-553.30.1.el8_10.src.rpm	3c36e63e9ca27f9f9fd7736908a592c864353390c3c32bd895775d7da41e0bde	-	ol8_x86_64_u10_baseos_patch
	bpftool-4.18.0-553.30.1.el8_10.x86_64.rpm	b60cdf97e14841a93a714f5e296f6d4f986bf0c626475758ebd0b06ccec2f6ef	-	ol8_x86_64_baseos_latest
	bpftool-4.18.0-553.30.1.el8_10.x86_64.rpm	b60cdf97e14841a93a714f5e296f6d4f986bf0c626475758ebd0b06ccec2f6ef	-	ol8_x86_64_u10_baseos_patch
	kernel-4.18.0-553.30.1.el8_10.x86_64.rpm	4f135e7846e25ee6cfa49a9481c7377a47fc647a0afd1f37485c4bfdc412c2c1	-	ol8_x86_64_baseos_latest
	kernel-4.18.0-553.30.1.el8_10.x86_64.rpm	4f135e7846e25ee6cfa49a9481c7377a47fc647a0afd1f37485c4bfdc412c2c1	-	ol8_x86_64_u10_baseos_patch
	kernel-abi-stablelists-4.18.0-553.30.1.el8_10.noarch.rpm	93248efb11bdd2163d353ba5659605c4c6505f8cc06afc3aa2433c3457065dfc	-	ol8_x86_64_baseos_latest
	kernel-abi-stablelists-4.18.0-553.30.1.el8_10.noarch.rpm	93248efb11bdd2163d353ba5659605c4c6505f8cc06afc3aa2433c3457065dfc	-	ol8_x86_64_u10_baseos_patch
	kernel-core-4.18.0-553.30.1.el8_10.x86_64.rpm	39fbc850b67b033f8d0d62d96454c5f0d0a811f2ada9e82e2a8f71887111629b	-	ol8_x86_64_baseos_latest
	kernel-core-4.18.0-553.30.1.el8_10.x86_64.rpm	39fbc850b67b033f8d0d62d96454c5f0d0a811f2ada9e82e2a8f71887111629b	-	ol8_x86_64_u10_baseos_patch
	kernel-cross-headers-4.18.0-553.30.1.el8_10.x86_64.rpm	6e62d4a808da4c3ddcf425664648ef9aeaa6045aba6db5665eb4e2dfb45c8fba	-	ol8_x86_64_baseos_latest
	kernel-cross-headers-4.18.0-553.30.1.el8_10.x86_64.rpm	6e62d4a808da4c3ddcf425664648ef9aeaa6045aba6db5665eb4e2dfb45c8fba	-	ol8_x86_64_u10_baseos_patch
	kernel-debug-4.18.0-553.30.1.el8_10.x86_64.rpm	f3d79309d97e539958946bee191a1d97664b932894138cd9b1546f9ac92d61ae	-	ol8_x86_64_baseos_latest
	kernel-debug-4.18.0-553.30.1.el8_10.x86_64.rpm	f3d79309d97e539958946bee191a1d97664b932894138cd9b1546f9ac92d61ae	-	ol8_x86_64_u10_baseos_patch
	kernel-debug-core-4.18.0-553.30.1.el8_10.x86_64.rpm	656c9d9cf5aec4fd67448ad1880d03c30c03e9d89eb8d482ea0ca9a8b5984879	-	ol8_x86_64_baseos_latest
	kernel-debug-core-4.18.0-553.30.1.el8_10.x86_64.rpm	656c9d9cf5aec4fd67448ad1880d03c30c03e9d89eb8d482ea0ca9a8b5984879	-	ol8_x86_64_u10_baseos_patch
	kernel-debug-devel-4.18.0-553.30.1.el8_10.x86_64.rpm	f904f861eb40758c64c02be3d748feeb1c5185a94d7c6ff469394fb83b674a3b	-	ol8_x86_64_baseos_latest
	kernel-debug-devel-4.18.0-553.30.1.el8_10.x86_64.rpm	f904f861eb40758c64c02be3d748feeb1c5185a94d7c6ff469394fb83b674a3b	-	ol8_x86_64_u10_baseos_patch
	kernel-debug-modules-4.18.0-553.30.1.el8_10.x86_64.rpm	01625c13a2dd73147f4513339947ca320541d78bb1688470f0f87a09bb41418e	-	ol8_x86_64_baseos_latest
	kernel-debug-modules-4.18.0-553.30.1.el8_10.x86_64.rpm	01625c13a2dd73147f4513339947ca320541d78bb1688470f0f87a09bb41418e	-	ol8_x86_64_u10_baseos_patch
	kernel-debug-modules-extra-4.18.0-553.30.1.el8_10.x86_64.rpm	d720beaa055ca8f9ff09f4105125efd91fd0e87321ba0ccb21f8863d7f4fce1d	-	ol8_x86_64_baseos_latest
	kernel-debug-modules-extra-4.18.0-553.30.1.el8_10.x86_64.rpm	d720beaa055ca8f9ff09f4105125efd91fd0e87321ba0ccb21f8863d7f4fce1d	-	ol8_x86_64_u10_baseos_patch
	kernel-devel-4.18.0-553.30.1.el8_10.x86_64.rpm	0a57f49471640da494259f5750bf56fd889737dec2358897ba27370df4fbdf15	-	ol8_x86_64_baseos_latest
	kernel-devel-4.18.0-553.30.1.el8_10.x86_64.rpm	0a57f49471640da494259f5750bf56fd889737dec2358897ba27370df4fbdf15	-	ol8_x86_64_u10_baseos_patch
	kernel-doc-4.18.0-553.30.1.el8_10.noarch.rpm	82e0aa5e48eea9b76342bd7bf89ecf2439984c0c8da06a4481d9f8533a6152c3	-	ol8_x86_64_baseos_latest
	kernel-doc-4.18.0-553.30.1.el8_10.noarch.rpm	82e0aa5e48eea9b76342bd7bf89ecf2439984c0c8da06a4481d9f8533a6152c3	-	ol8_x86_64_u10_baseos_patch
	kernel-headers-4.18.0-553.30.1.el8_10.x86_64.rpm	b9298fe91308793e623842f58feda5323a0063749be84d74999f5925d43077b0	-	ol8_x86_64_baseos_latest
	kernel-headers-4.18.0-553.30.1.el8_10.x86_64.rpm	b9298fe91308793e623842f58feda5323a0063749be84d74999f5925d43077b0	-	ol8_x86_64_u10_baseos_patch
	kernel-modules-4.18.0-553.30.1.el8_10.x86_64.rpm	535823645fa4089c0bd009d79169b42168c306894adaf5365a6bc5ad9a446450	-	ol8_x86_64_baseos_latest
	kernel-modules-4.18.0-553.30.1.el8_10.x86_64.rpm	535823645fa4089c0bd009d79169b42168c306894adaf5365a6bc5ad9a446450	-	ol8_x86_64_u10_baseos_patch
	kernel-modules-extra-4.18.0-553.30.1.el8_10.x86_64.rpm	d7c24622514d060104ff2625d74b600666914a022c4bb7360d753c13efd512ff	-	ol8_x86_64_baseos_latest
	kernel-modules-extra-4.18.0-553.30.1.el8_10.x86_64.rpm	d7c24622514d060104ff2625d74b600666914a022c4bb7360d753c13efd512ff	-	ol8_x86_64_u10_baseos_patch
	kernel-tools-4.18.0-553.30.1.el8_10.x86_64.rpm	abd760875183656ad60a76bef6cc6a36033a2bde24d6434ea3289027a839b164	-	ol8_x86_64_baseos_latest
	kernel-tools-4.18.0-553.30.1.el8_10.x86_64.rpm	abd760875183656ad60a76bef6cc6a36033a2bde24d6434ea3289027a839b164	-	ol8_x86_64_u10_baseos_patch
	kernel-tools-libs-4.18.0-553.30.1.el8_10.x86_64.rpm	451937c508c2a338326b17c10c78cd9304e2ea430cbeb1740acb89deeee66200	-	ol8_x86_64_baseos_latest
	kernel-tools-libs-4.18.0-553.30.1.el8_10.x86_64.rpm	451937c508c2a338326b17c10c78cd9304e2ea430cbeb1740acb89deeee66200	-	ol8_x86_64_u10_baseos_patch
	kernel-tools-libs-devel-4.18.0-553.30.1.el8_10.x86_64.rpm	764054e389732fa22302c6cff44bb2cebe22dbfaff544f2f68669d77222b3fb9	-	ol8_x86_64_codeready_builder
	perf-4.18.0-553.30.1.el8_10.x86_64.rpm	227ce202980b973a909196ca53d24827391baa5ff34cad84bae63a2cb39290b9	-	ol8_x86_64_baseos_latest
	perf-4.18.0-553.30.1.el8_10.x86_64.rpm	227ce202980b973a909196ca53d24827391baa5ff34cad84bae63a2cb39290b9	-	ol8_x86_64_u10_baseos_patch
	python3-perf-4.18.0-553.30.1.el8_10.x86_64.rpm	749f3875a9f1f457a6ebbedc924355ff4f4afcb12d826c2c3b82af9a669e2b0b	-	ol8_x86_64_baseos_latest
	python3-perf-4.18.0-553.30.1.el8_10.x86_64.rpm	749f3875a9f1f457a6ebbedc924355ff4f4afcb12d826c2c3b82af9a669e2b0b	-	ol8_x86_64_u10_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691