ELSA-2024-12813

ELSA-2024-12813 - Unbreakable Enterprise kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2024-11-12

Description


[5.4.17-2136.337.5]
- net/mlx5: disable the 'fast unload' feature on Exadata systems (Qing Huang) [Orabug: 37093177]

[5.4.17-2136.337.4]
- ocfs2: reserve space for inline xattr before attaching reflink tree (Gautham Ananthakrishna) [Orabug: 37199020]
- Revert 'ocfs2: ocfs2 crash due to invalid h_next_leaf_blk value in extent block' (Gautham Ananthakrishna) [Orabug: 37199020]
- net/rds: Make send+receive IRQ assignments visible to user-space (Gerd Rausch) [Orabug: 36987151]
- igb: Do not free the irq resources if they are already freed by igb_close() (Yifei Liu) [Orabug: 37005245]
- A/A Bonding: check port count during RDMA device addition (Arumugam Kolappan) [Orabug: 36579195]

[5.4.17-2136.337.3]
- vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (Haoran Zhang) [Orabug: 37137548] {CVE-2024-49863}
- rds/ib: Count memory consumed by rds_page_frag (Hans Westgaard Ry) [Orabug: 37172717]
- fs/dcache: allow fractional values in fs.negative-dentry-limit (Gautham Ananthakrishna) [Orabug: 37156523]
- mm/hugetlb: fix DEBUG_LOCKS_WARN_ON(1) when dissolve_free_hugetlb_folio() (Miaohe Lin) [Orabug: 36683094] {CVE-2024-36028}
- uek: Disable /proc/uek under Xen and under non-Exadata systems (Konrad Rzeszutek Wilk) [Orabug: 37170992]
- uek: Add force_noio runtime option. (Konrad Rzeszutek Wilk) [Orabug: 37145327]
- treewide: Make the force_noio parameter be writable. (Konrad Rzeszutek Wilk) [Orabug: 37145327]
- treewide: Sample foo_bar_force_noio before use (Hakon Bugge) [Orabug: 37145327]
- workqueue: Add Oracle specific code to modify the flags of tasks. (Konrad Rzeszutek Wilk) [Orabug: 37145327]
- net/mlx5: Free IRQ rmap and notifier on kernel shutdown (Saeed Mahameed) [Orabug: 36706485]
- net/mlx5: Free irqs only on shutdown callback (Shay Drory) [Orabug: 36706485]
- kpcimgr: Add dynamic memory region allocation feature (Joe Dobosenski) [Orabug: 36983478]
- uek: kabi: Introduce APIs to hide/fake inclusion of headers (Saeed Mirzamohammadi) [Orabug: 37097450]
- RDMA/cma: Always set static rate to 0 for RoCE (Mark Zhang) [Orabug: 37100215]
- net/mlx5e: nullify cq->dbg pointer in mlx5_debug_cq_remove() (Valentine Fatiev) [Orabug: 37104450]
- net/mlx5e: Fix memory leak in mlx5_core_destroy_cq() error path (Valentine Fatiev) [Orabug: 37099359]

[5.4.17-2136.337.2]
- LTS tag: v5.4.284 (Sherry Yang)
- Revert 'parisc: Use irq_enter_rcu() to fix warning at kernel/context_tracking.c:367' (Greg Kroah-Hartman)
- cx82310_eth: fix error return code in cx82310_bind() (Zhang Changzhong)
- net, sunrpc: Remap EPERM in case of connection failure in xs_tcp_setup_socket (Daniel Borkmann)
- rtmutex: Drop rt_mutex::wait_lock before scheduling (Roland Xu) [Orabug: 37116446] {CVE-2024-46829}
- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (Andy Shevchenko)
- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (Andy Shevchenko)
- nvmet-tcp: fix kernel crash if commands allocation fails (Maurizio Lombardi) [Orabug: 37074465] {CVE-2024-46737}
- arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (Jonathan Cameron) [Orabug: 37116413] {CVE-2024-46822}
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (James Morse)
- ACPI: processor: Fix memory leaks in error paths of processor_add() (Jonathan Cameron)
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (Jonathan Cameron)
- nilfs2: protect references to superblock parameters exposed in sysfs (Ryusuke Konishi) [Orabug: 37074677] {CVE-2024-46780}
- nilfs2: replace snprintf in show functions with sysfs_emit (Qing Wang)
- tracing: Avoid possible softlockup in tracing_iter_reset() (Zheng Yejian)
- ring-buffer: Rename ring_buffer_read() to read_buffer_iter_advance() (Steven Rostedt (VMware))
- uprobes: Use kzalloc to allocate xol area (Sven Schnelle)
- clocksource/drivers/timer-of: Remove percpu irq related code (Daniel Lezcano)
- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (Jacky Bai)
- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (Jacky Bai)
- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (Naman Jain)
- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (Saurabh Sengar) [Orabug: 37074473] {CVE-2024-46739}
- nvmem: Fix return type of devm_nvmem_device_get() in kerneldoc (Geert Uytterhoeven)
- binder: fix UAF caused by offsets overwrite (Carlos Llamas) [Orabug: 37074477] {CVE-2024-46740}
- iio: fix scale application in iio_convert_raw_to_processed_unlocked (Matteo Martelli)
- iio: buffer-dmaengine: fix releasing dma channel on error (David Lechner)
- staging: iio: frequency: ad9834: Validate frequency parameter value (Aleksandr Mishin) [Orabug: 37159728] {CVE-2024-47663}
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (Trond Myklebust)
- ata: pata_macio: Use WARN instead of BUG (Michael Ellerman)
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (Kent Overstreet) [Orabug: 37159757] {CVE-2024-47668}
- of/irq: Prevent device address out-of-bounds read in interrupt map walk (Stefan Wiehler) [Orabug: 37074488] {CVE-2024-46743}
- Squashfs: sanity check symbolic link size (Phillip Lougher) [Orabug: 37074495] {CVE-2024-46744}
- usbnet: ipheth: race between ipheth_close and error handling (Oliver Neukum)
- Input: uinput - reject requests with unreasonable number of slots (Dmitry Torokhov) [Orabug: 37074503] {CVE-2024-46745}
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (Camila Alvarez) [Orabug: 37074513] {CVE-2024-46747}
- btrfs: initialize location to fix -Wmaybe-uninitialized in btrfs_lookup_dentry() (David Sterba)
- PCI: Add missing bridge lock to pci_bus_lock() (Dan Williams) [Orabug: 37074532] {CVE-2024-46750}
- btrfs: clean up our handling of refs == 0 in snapshot delete (Josef Bacik) [Orabug: 37116494] {CVE-2024-46840}
- btrfs: replace BUG_ON with ASSERT in walk_down_proc() (Josef Bacik)
- smp: Add missing destroy_work_on_stack() call in smp_call_on_cpu() (Zqiang)
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (Sascha Hauer) [Orabug: 37074561] {CVE-2024-46755}
- libbpf: Add NULL checks to bpf_object__{prev_map,next_map} (Andreas Ziegler)
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (Guenter Roeck) [Orabug: 37074566] {CVE-2024-46756}
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (Guenter Roeck) [Orabug: 37074571] {CVE-2024-46757}
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (Guenter Roeck) [Orabug: 37074579] {CVE-2024-46758}
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (Guenter Roeck) [Orabug: 37074584] {CVE-2024-46759}
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (Krishna Kumar) [Orabug: 37074595] {CVE-2024-46761}
- devres: Initialize an uninitialized struct member (Zijun Hu)
- um: line: always fill *error_out in setup_one_line() (Johannes Berg) [Orabug: 37116518] {CVE-2024-46844}
- cgroup: Protect css->cgroup write under css_set_lock (Waiman Long)
- iommu/vt-d: Handle volatile descriptor status read (Jacob Pan)
- dm init: Handle minors larger than 255 (Benjamin Marzinski)
- ASoC: topology: Properly initialize soc_enum values (Amadeusz Slawinski)
- net: dsa: vsc73xx: fix possible subblocks range of CAPT block (Pawel Dembicki)
- net: bridge: br_fdb_external_learn_add(): always set EXT_LEARN (Jonas Gorski)
- net: bridge: fdb: convert added_by_external_learn to use bitops (Nikolay Aleksandrov)
- net: bridge: fdb: convert added_by_user to bitops (Nikolay Aleksandrov)
- net: bridge: fdb: convert is_sticky to bitops (Nikolay Aleksandrov)
- net: bridge: fdb: convert is_static to bitops (Nikolay Aleksandrov)
- net: bridge: fdb: convert is_local to bitops (Nikolay Aleksandrov)
- usbnet: modern method to get random MAC (Oliver Neukum)
- net: usb: don't write directly to netdev->dev_addr (Jakub Kicinski)
- drivers/net/usb: Remove all strcpy() uses (Len Baker)
- cx82310_eth: re-enable ethernet mode after router reboot (Ondrej Zary)
- tcp_bpf: fix return value of tcp_bpf_sendmsg() (Cong Wang) [Orabug: 37074693] {CVE-2024-46783}
- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (Aleksandr Mishin)
- can: bcm: Remove proc entry when dev is unregistered. (Kuniyuki Iwashima) [Orabug: 37074625] {CVE-2024-46771}
- pcmcia: Use resource_size function on resource object (Jules Irenge)
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (Chen Ni)
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (Kishon Vijay Abraham I) [Orabug: 37159750] {CVE-2024-47667}
- usb: uas: set host status byte on data completion error (Shantanu Goel)
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (Arend van Spriel)
- udf: Avoid excessive partition lengths (Jan Kara) [Orabug: 37074665] {CVE-2024-46777}
- netfilter: nf_conncount: fix wrong variable type (Yunjian Wang)
- af_unix: Remove put_pid()/put_cred() in copy_peercred(). (Kuniyuki Iwashima)
- irqchip/armada-370-xp: Do not allow mapping IRQ 0 and 1 (Pali Rohar)
- smack: unix sockets: fix accept()ed socket label (Konstantin Andreev)
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (Takashi Iwai)
- nilfs2: fix state management in error path of log writing function (Ryusuke Konishi) [Orabug: 37159765] {CVE-2024-47669}
- nilfs2: fix missing cleanup on rollforward recovery error (Ryusuke Konishi) [Orabug: 37074684] {CVE-2024-46781}
- sched: sch_cake: fix bulk flow accounting logic for host fairness (Toke Hoiland-Jorgensen) [Orabug: 37116443] {CVE-2024-46828}
- ila: call nf_unregister_net_hooks() sooner (Eric Dumazet) [Orabug: 37074689] {CVE-2024-46782}
- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (Satya Priya Kakitapalli)
- clk: qcom: clk-alpha-pll: Fix the pll post div mask (Satya Priya Kakitapalli)
- clk: hi6220: use CLK_OF_DECLARE_DRIVER (Peter Griffin)
- reset: hi6220: Add support for AO reset controller (Peter Griffin)
- fuse: use unsigned type for getxattr/listxattr size truncation (Jann Horn)
- fuse: update stats for pages in dropped aux writeback list (Joanne Koong)
- mmc: sdhci-of-aspeed: fix module autoloading (Liao Chen)
- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (Sam Protsenko)
- irqchip/gic-v2m: Fix refcount leak in gicv2m_of_init() (Ma Ke)
- ata: libata: Fix memory leak for error path in ata_host_alloc() (Zheng Qixing)
- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (Christoffer Sandberg)
- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (robelin) [Orabug: 37074722] {CVE-2024-46798}
- sch/netem: fix use after free in netem_dequeue (Stephen Hemminger) [Orabug: 37074726] {CVE-2024-46800}
- i2c: Use IS_REACHABLE() for substituting empty ACPI functions (Richard Fitzgerald)
- udf: Limit file size to 4TB (Jan Kara)
- virtio_net: Fix napi_skb_cache_put warning (Breno Leitao) [Orabug: 36964474] {CVE-2024-43835}
- net: set SOCK_RCU_FREE before inserting socket into hashtable (Stanislav Fomichev)
- block: initialize integrity buffer to zero before writing it to media (Christoph Hellwig) [Orabug: 36964515] {CVE-2024-43854}
- media: uvcvideo: Enforce alignment of frame and interval (Ricardo Ribalda)
- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (Alex Hung) [Orabug: 37073032] {CVE-2024-46714}
- wifi: cfg80211: make hash table duplicates more survivable (Johannes Berg)
- smack: tcp: ipv4, fix incorrect labeling (Casey Schaufler)
- usb: typec: ucsi: Fix null pointer dereference in trace (Abhishek Pandit-Subedi) [Orabug: 37073065] {CVE-2024-46719}
- usbip: Don't submit special requests twice (Simon Holesch)
- ionic: fix potential irq name truncation (Shannon Nelson)
- apparmor: fix possible NULL pointer dereference (Leesoo Ahn) [Orabug: 37073078] {CVE-2024-46721}
- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (Michael Chen)
- drm/amdgpu: fix mc_data out-of-bounds read warning (Tim Huang) [Orabug: 37073083] {CVE-2024-46722}
- drm/amdgpu: fix ucode out-of-bounds read warning (Tim Huang) [Orabug: 37073088] {CVE-2024-46723}
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (Hersen Wu)
- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (Alex Hung) [Orabug: 37116366] {CVE-2024-46815}
- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (Hersen Wu) [Orabug: 37116376] {CVE-2024-46817}
- drm/amd/display: Check gpio_id before used as array index (Alex Hung) [Orabug: 37116385] {CVE-2024-46818}
- drm/amdgpu: fix overflowed array index read warning (Tim Huang)
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (Ma Jun)
- net: usb: qmi_wwan: add MeiG Smart SRM825L (ZHANG Yuntian)
- i2c: Fix conditional for substituting empty ACPI functions (Richard Fitzgerald)
- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (Philip Mueller)
- LTS tag: v5.4.283 (Sherry Yang)
- scsi: aacraid: Fix double-free on probe failure (Ben Hutchings) [Orabug: 37070700] {CVE-2024-46673}
- net: dsa: mv8e6xxx: Fix stub function parameters (Andrew Lunn)
- usb: core: sysfs: Unmerge @usb3_hardware_lpm_attr_group in remove_power_attributes() (Zijun Hu)
- usb: dwc3: st: add missing depopulate in probe error path (Krzysztof Kozlowski)
- usb: dwc3: st: fix probed platform device ref count on probe error path (Krzysztof Kozlowski) [Orabug: 37070705] {CVE-2024-46674}
- usb: dwc3: core: Prevent USB core invalid event buffer address access (Selvarasu Ganesan) [Orabug: 37070710] {CVE-2024-46675}
- usb: dwc3: omap: add missing depopulate in probe error path (Krzysztof Kozlowski)
- USB: serial: option: add MeiG Smart SRM825L (ZHANG Yuntian)
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (Ian Ray)
- soc: qcom: cmd-db: Map shared memory as WC, not WB (Volodymyr Babchuk)
- nfc: pn533: Add poll mod list filling check (Aleksandr Mishin) [Orabug: 37070717] {CVE-2024-46676}
- nfc: pn533: Add autopoll capability (Lars Poeschel)
- nfc: pn533: Add dev_up/dev_down hooks to phy_ops (Lars Poeschel)
- net: busy-poll: use ktime_get_ns() instead of local_clock() (Eric Dumazet)
- gtp: fix a potential NULL pointer dereference (Cong Wang) [Orabug: 37070722] {CVE-2024-46677}
- ethtool: check device is present when getting link settings (Jamie Bainbridge) [Orabug: 37070728] {CVE-2024-46679}
- r8152: Factor out OOB link list waits (Prashant Malani)
- soundwire: stream: fix programming slave ports for non-continous port maps (Krzysztof Kozlowski)
- cgroup/cpuset: Prevent UAF in proc_cpuset_show() (Chen Ridong) [Orabug: 36964510] {CVE-2024-43853}
- ata: libata-core: Fix null pointer dereference on error (Niklas Cassel) [Orabug: 36897457] {CVE-2024-41098}
- media: uvcvideo: Fix integer overflow calculating timestamp (Ricardo Ribalda)
- drm/amdkfd: don't allow mapping the MMIO HDP page with large pages (Alex Deucher) [Orabug: 36867631] {CVE-2024-41011}
- wifi: mwifiex: duplicate static structs used in driver instances (Sascha Hauer)
- pinctrl: single: fix potential NULL dereference in pcs_get_function() (Ma Ke) [Orabug: 37070744] {CVE-2024-46685}
- drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc (Jesse Zhang) [Orabug: 36898009] {CVE-2024-42228}
(Alexander Lobakin)
- Input: MT - limit max slots (Tetsuo Handa) [Orabug: 37029137] {CVE-2024-45008}
- Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO (Lee, Chun-Yi) [Orabug: 36654191] {CVE-2023-31083}
- mmc: dw_mmc: allow biu and ciu clocks to defer (Ben Whitten)
- cxgb4: add forgotten u64 ivlan cast before shift (Nikolay Kuratov)
- HID: microsoft: Add rumble support to latest xbox controllers (Siarhei Vishniakou)
- HID: wacom: Defer calculation of resolution until resolution_code is known (Jason Gerecke)
- Bluetooth: MGMT: Add error handling to pair_device() (Griffin Kroah-Hartman) [Orabug: 36992976] {CVE-2024-43884}
- mmc: mmc_test: Fix NULL dereference on allocation failure (Dan Carpenter) [Orabug: 37070691] {CVE-2024-45028}
- drm/msm/dpu: don't play tricks with debug macros (Dmitry Baryshkov)
- drm/msm: use drm_debug_enabled() to check for debug categories (Jani Nikula)
- net: xilinx: axienet: Fix dangling multicast addresses (Sean Anderson)
- net: xilinx: axienet: Always disable promiscuous mode (Sean Anderson)
- ipv6: prevent UAF in ip6_send_skb() (Eric Dumazet) [Orabug: 37029076] {CVE-2024-44987}
- netem: fix return value if duplicate enqueue fails (Stephen Hemminger) [Orabug: 37070660] {CVE-2024-45016}
- net: dsa: mv88e6xxx: Fix out-of-bound access (Joseph Huang) [Orabug: 37029082] {CVE-2024-44988}
- net: dsa: mv88e6xxx: replace ATU violation prints with trace points (Vladimir Oltean)
- net: dsa: mv88e6xxx: read FID when handling ATU violations (Hans J. Schultz)
- net: dsa: mv88e6xxx: global1_atu: Add helper for get next (Andrew Lunn)
- net: dsa: mv88e6xxx: global2: Expose ATU stats register (Andrew Lunn)
- netfilter: nft_counter: Synchronize nft_counter_reset() against reader. (Sebastian Andrzej Siewior)
- kcm: Serialise kcm_sendmsg() for the same socket. (Kuniyuki Iwashima) [Orabug: 37013761] {CVE-2024-44946}
- tc-testing: don't access non-existent variable on exception (Simon Horman)
- Bluetooth: hci_core: Fix LE quote calculation (Luiz Augusto von Dentz)
- Bluetooth: hci_core: Fix not handling link timeouts propertly (Luiz Augusto von Dentz)
- Bluetooth: Make use of __check_timeout on hci_sched_le (Luiz Augusto von Dentz)
- dm suspend: return -ERESTARTSYS instead of -EINTR (Mikulas Patocka)
- dm: do not use waitqueue for request-based DM (Ming Lei)
- dm mpath: pass IO start time to path selector (Gabriel Krisman Bertazi)
- media: solo6x10: replace max(a, min(b, c)) by clamp(b, a, c) (Aurelien Jarno)
- block: use 'unsigned long' for blk_validate_block_size(). (Tetsuo Handa)
- gtp: pull network headers in gtp_dev_xmit() (Eric Dumazet) [Orabug: 37029111] {CVE-2024-44999}
- hrtimer: Prevent queuing of hrtimer without a function callback (Phil Chang)
- nvmet-rdma: fix possible bad dereference when freeing rsps (Sagi Grimberg)
- ext4: set the type of max_zeroout to unsigned int to avoid overflow (Baokun Li)
- irqchip/gic-v3-its: Remove BUG_ON in its_vpe_irq_domain_alloc (Guanrui Huang)
- usb: dwc3: core: Skip setting event buffers for host only controllers (Krishna Kurapati)
- s390/iucv: fix receive buffer virtual vs physical address confusion (Alexander Gordeev)
- openrisc: Call setup_memory() earlier in the init sequence (Oreoluwa Babatunde)
- NFS: avoid infinite loop in pnfs_update_layout. (NeilBrown)
- nvmet-tcp: do not continue for invalid icreq (Hannes Reinecke)
- Bluetooth: bnep: Fix out-of-bound access (Luiz Augusto von Dentz)
- nvme: clear caller pointer on identify failure (Keith Busch)
- usb: gadget: fsl: Increase size of name buffer for endpoints (Uwe Kleine-Konig)
- f2fs: fix to do sanity check in update_sit_entry (Zhiguo Niu)
- btrfs: delete pointless BUG_ON check on quota root in btrfs_qgroup_account_extent() (David Sterba)
- btrfs: send: handle unexpected data in header buffer in begin_cmd() (David Sterba)
- btrfs: handle invalid root reference found in may_destroy_subvol() (David Sterba)
- btrfs: change BUG_ON to assertion when checking for delayed_node root (David Sterba)
- powerpc/boot: Only free if realloc() succeeds (Michael Ellerman)
- powerpc/boot: Handle allocation failure in simple_realloc() (Li zeming)
- parisc: Use irq_enter_rcu() to fix warning at kernel/context_tracking.c:367 (Helge Deller)
- x86: Increase brk randomness entropy for 64-bit systems (Kees Cook)
- md: clean up invalid BUG_ON in md_ioctl (Li Nan)
- virtiofs: forbid newlines in tags (Stefan Hajnoczi)
- drm/lima: set gp bus_stop bit before hard reset (Erico Nunes)
- net/sun3_82586: Avoid reading past buffer in debug output (Kees Cook)
- scsi: lpfc: Initialize status local variable in lpfc_sli4_repost_sgl_list() (Justin Tee)
- fs: binfmt_elf_efpic: don't use missing interpreter's properties (Max Filippov)
- media: pci: cx23885: check cx23885_vdev_init() return (Hans Verkuil)
- quota: Remove BUG_ON from dqget() (Jan Kara)
- ext4: do not trim the group with corrupted block bitmap (Baokun Li)
- nvmet-trace: avoid dereferencing pointer too early (Daniel Wagner)
- powerpc/xics: Check return value of kasprintf in icp_native_map_one_cpu (Kunwu Chan)
- IB/hfi1: Fix potential deadlock on &irq_src_lock and &dd->uctxt_lock (Chengfeng Ye)
- wifi: iwlwifi: abort scan when rfkill on but device enabled (Miri Korenblit)
- gfs2: setattr_chown: Add missing initialization (Andreas Gruenbacher)
- scsi: spi: Fix sshdr use (Mike Christie)
- binfmt_misc: cleanup on filesystem umount (Christian Brauner)
- staging: ks7010: disable bh on tx_dev_lock (Chengfeng Ye)
- media: radio-isa: use dev_name to fill in bus_info (Hans Verkuil)
- i2c: riic: avoid potential division by zero (Wolfram Sang)
- wifi: cw1200: Avoid processing an invalid TIM IE (Jeff Johnson)
- ssb: Fix division by zero issue in ssb_calc_clock_rate (Rand Deeb)
- net: hns3: fix a deadlock problem when config TC during resetting (Jie Wang) [Orabug: 37029098] {CVE-2024-44995}
- net: dsa: vsc73xx: pass value in phy_write operation (Pawel Dembicki)
- net: axienet: Fix register defines comment description (Radhey Shyam Pandey)
- net: axienet: Autodetect 64-bit DMA capability (Andre Przywara)
- net: axienet: Upgrade descriptors to hold 64-bit addresses (Andre Przywara)
- net: axienet: Wrap DMA pointer writes to prepare for 64 bit (Andre Przywara)
- net: axienet: Drop MDIO interrupt registers from ethtools dump (Andre Przywara)
- net: axienet: Check for DMA mapping errors (Andre Przywara)
- net: axienet: Factor out TX descriptor chain cleanup (Andre Przywara)
- net: axienet: Improve DMA error handling (Andre Przywara)
- net: axienet: Fix DMA descriptor cleanup path (Andre Przywara)
- atm: idt77252: prevent use after free in dequeue_rx() (Dan Carpenter) [Orabug: 37029105] {CVE-2024-44998}
- net/mlx5e: Correctly report errors for ethtool rx flows (Cosmin Ratiu)
- s390/uv: Panic for set and remove shared access UVC errors (Claudio Imbrenda)
- btrfs: rename bitmap_set_bits() -> btrfs_bitmap_set_bits() (Alexander Lobakin)
- s390/cio: rename bitmap_size() -> idset_bitmap_size() (Alexander Lobakin)
- overflow: Implement size_t saturating arithmetic helpers (Kees Cook)
- overflow.h: Add flex_array_size() helper (Gustavo A. R. Silva)
- memcg_write_event_control(): fix a user-triggerable oops (Al Viro) [Orabug: 37070672] {CVE-2024-45021}
- drm/amdgpu: Actually check flags for all context ops. (Bas Nieuwenhuizen)
- selinux: fix potential counting error in avc_add_xperms_decision() (Zhen Lei)
- fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (Al Viro) [Orabug: 37070680] {CVE-2024-45025}
- bitmap: introduce generic optimized bitmap_size() (Alexander Lobakin)
- vfs: Don't evict inode under the inode lru traversing context (Zhihao Cheng) [Orabug: 37029119] {CVE-2024-45003}
- dm persistent data: fix memory allocation failure (Mikulas Patocka)
- dm resume: don't return EINVAL when signalled (Khazhismel Kumykov)
- arm64: ACPI: NUMA: initialize all values of acpi_early_node_map to NUMA_NO_NODE (Haibo Xu)
- s390/dasd: fix error recovery leading to data corruption on ESE devices (Stefan Haberland) [Orabug: 37070687] {CVE-2024-45026}
- xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration (Mathias Nyman) [Orabug: 37029125] {CVE-2024-45006}
- ALSA: usb-audio: Support Yamaha P-125 quirk entry (Juan Jose Arboleda)
- fuse: Initialize beyond-EOF page contents before setting uptodate (Jann Horn) [Orabug: 37017951] {CVE-2024-44947}

[5.4.17-2136.337.1]
- wireguard: netlink: check for dangling peer via is_dead instead of empty list (Jason A. Donenfeld) [Orabug: 36596766] {CVE-2024-26951}
- xsigo: add prefix xve/xsvnic with gro and __path_find (Alok Tiwari) [Orabug: 37089693]


Related CVEs


CVE-2024-45021
CVE-2024-46757
CVE-2024-46777
CVE-2024-46780
CVE-2024-44947
CVE-2024-44987
CVE-2024-45003
CVE-2024-45026
CVE-2024-46676
CVE-2024-46737
CVE-2024-46844
CVE-2024-47669
CVE-2024-42228
CVE-2024-46743
CVE-2024-44995
CVE-2024-46721
CVE-2024-46783
CVE-2024-45006
CVE-2024-45016
CVE-2024-46817
CVE-2024-46840
CVE-2024-47663
CVE-2024-46722
CVE-2024-43854
CVE-2024-46744
CVE-2024-46747
CVE-2024-46815
CVE-2024-36028
CVE-2024-46758
CVE-2024-47668
CVE-2024-41011
CVE-2024-45025
CVE-2024-46714
CVE-2024-46723
CVE-2024-46759
CVE-2024-46781
CVE-2024-46800
CVE-2024-47667
CVE-2024-45008
CVE-2024-46719
CVE-2024-43853
CVE-2024-44946
CVE-2024-44988
CVE-2024-46675
CVE-2024-46679
CVE-2024-46755
CVE-2024-46798
CVE-2024-46818
CVE-2024-46828
CVE-2024-49863
CVE-2023-31083
CVE-2024-44998
CVE-2024-46822
CVE-2024-49958
CVE-2024-43884
CVE-2024-46673
CVE-2024-46756
CVE-2024-46829
CVE-2024-41098
CVE-2024-43835
CVE-2024-45028
CVE-2024-46685
CVE-2024-46745
CVE-2024-46750
CVE-2024-46771
CVE-2024-46782
CVE-2024-26951
CVE-2024-44999
CVE-2024-46674
CVE-2024-46677
CVE-2024-46739
CVE-2024-46740
CVE-2024-46761

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) kernel-uek-5.4.17-2136.337.5.el7uek.src.rpmdbb25097e2e0bfa2cd194b5ef279ba21-ol7_aarch64_UEKR6
kernel-uek-5.4.17-2136.337.5.el7uek.aarch64.rpmd32500f6e6e99218e3888e167c88ac7d-ol7_aarch64_UEKR6
kernel-uek-debug-5.4.17-2136.337.5.el7uek.aarch64.rpmd694d642dbd3cd04bd25adcd6142f048-ol7_aarch64_UEKR6
kernel-uek-debug-devel-5.4.17-2136.337.5.el7uek.aarch64.rpmfb4e8ba4176a5cf87d96900f25643445-ol7_aarch64_UEKR6
kernel-uek-devel-5.4.17-2136.337.5.el7uek.aarch64.rpm1c342cbe5d1a7428f4f5bfb5ceb3cb33-ol7_aarch64_UEKR6
kernel-uek-doc-5.4.17-2136.337.5.el7uek.noarch.rpmfdc6dd49a4c47b29d5034a5af94d8063-ol7_aarch64_UEKR6
kernel-uek-tools-5.4.17-2136.337.5.el7uek.aarch64.rpm6302ef37e1b434e0f3be27c7354f3fda-ol7_aarch64_UEKR6
kernel-uek-tools-libs-5.4.17-2136.337.5.el7uek.aarch64.rpmb4f4b2b6117cd909fc6d12d1b12f5ccf-ol7_aarch64_UEKR6
perf-5.4.17-2136.337.5.el7uek.aarch64.rpm7bbb1132f36e3b371216d45cf66e8dad-ol7_aarch64_UEKR6
python-perf-5.4.17-2136.337.5.el7uek.aarch64.rpmf3cbc16ef1b24fb48a1710c9c32d624b-ol7_aarch64_UEKR6
Oracle Linux 7 (x86_64) kernel-uek-5.4.17-2136.337.5.el7uek.src.rpmdbb25097e2e0bfa2cd194b5ef279ba21-ol7_x86_64_UEKR6
kernel-uek-5.4.17-2136.337.5.el7uek.x86_64.rpm6b9b61b29e7313914c3eaf2c8ba7bdb7-ol7_x86_64_UEKR6
kernel-uek-container-5.4.17-2136.337.5.el7uek.x86_64.rpm58dc3d0a86fc4269c34a370ade64c65e-ol7_x86_64_UEKR6
kernel-uek-container-debug-5.4.17-2136.337.5.el7uek.x86_64.rpm21a7bc17838a3cdd9349349f4a0b44b9-ol7_x86_64_UEKR6
kernel-uek-debug-5.4.17-2136.337.5.el7uek.x86_64.rpm885fae7b502c5e8e37a83309ae181277-ol7_x86_64_UEKR6
kernel-uek-debug-devel-5.4.17-2136.337.5.el7uek.x86_64.rpm32811f5d8fdf9e9062fcb78315ba2437-ol7_x86_64_UEKR6
kernel-uek-devel-5.4.17-2136.337.5.el7uek.x86_64.rpm95b696f6e2dc914b1fdbe40511c03566-ol7_x86_64_UEKR6
kernel-uek-doc-5.4.17-2136.337.5.el7uek.noarch.rpmfdc6dd49a4c47b29d5034a5af94d8063-ol7_x86_64_UEKR6
kernel-uek-tools-5.4.17-2136.337.5.el7uek.x86_64.rpm4f5a8af35198322c946febea28d25a84-ol7_x86_64_UEKR6
Oracle Linux 8 (aarch64) kernel-uek-5.4.17-2136.337.5.el8uek.src.rpmcfca6ca8df111522329e5aa09926de9b-ol8_aarch64_baseos_latest
kernel-uek-5.4.17-2136.337.5.el8uek.src.rpmcfca6ca8df111522329e5aa09926de9b-ol8_aarch64_u10_baseos_patch
kernel-uek-5.4.17-2136.337.5.el8uek.aarch64.rpmcf56c6977aa6ddfcdad684bffdf607b0-ol8_aarch64_baseos_latest
kernel-uek-5.4.17-2136.337.5.el8uek.aarch64.rpmcf56c6977aa6ddfcdad684bffdf607b0-ol8_aarch64_u10_baseos_patch
kernel-uek-debug-5.4.17-2136.337.5.el8uek.aarch64.rpmffa785c90efa5728cd04a5c15c4d865d-ol8_aarch64_baseos_latest
kernel-uek-debug-5.4.17-2136.337.5.el8uek.aarch64.rpmffa785c90efa5728cd04a5c15c4d865d-ol8_aarch64_u10_baseos_patch
kernel-uek-debug-devel-5.4.17-2136.337.5.el8uek.aarch64.rpm5fffdfd60be9d1e9eab4afff33ffe9bc-ol8_aarch64_baseos_latest
kernel-uek-debug-devel-5.4.17-2136.337.5.el8uek.aarch64.rpm5fffdfd60be9d1e9eab4afff33ffe9bc-ol8_aarch64_u10_baseos_patch
kernel-uek-devel-5.4.17-2136.337.5.el8uek.aarch64.rpm45e7765777b8f49f658aea1880cd0d59-ol8_aarch64_baseos_latest
kernel-uek-devel-5.4.17-2136.337.5.el8uek.aarch64.rpm45e7765777b8f49f658aea1880cd0d59-ol8_aarch64_u10_baseos_patch
kernel-uek-doc-5.4.17-2136.337.5.el8uek.noarch.rpm4d0e7d7f80ef4d4e89075e3bd3e3cf52-ol8_aarch64_baseos_latest
kernel-uek-doc-5.4.17-2136.337.5.el8uek.noarch.rpm4d0e7d7f80ef4d4e89075e3bd3e3cf52-ol8_aarch64_u10_baseos_patch
Oracle Linux 8 (x86_64) kernel-uek-5.4.17-2136.337.5.el8uek.src.rpmcfca6ca8df111522329e5aa09926de9b-ol8_x86_64_UEKR6
kernel-uek-5.4.17-2136.337.5.el8uek.x86_64.rpm0f72feb14fe00ecc7caa5837fc4443b3-ol8_x86_64_UEKR6
kernel-uek-container-5.4.17-2136.337.5.el8uek.x86_64.rpm415b0688da022978b41dfec7824bb1c3-ol8_x86_64_UEKR6
kernel-uek-container-debug-5.4.17-2136.337.5.el8uek.x86_64.rpm47b68c9eaaa318b2460b6acb5f496e08-ol8_x86_64_UEKR6
kernel-uek-debug-5.4.17-2136.337.5.el8uek.x86_64.rpm8574d0fd73cb5cd3d43d7efaeb44df98-ol8_x86_64_UEKR6
kernel-uek-debug-devel-5.4.17-2136.337.5.el8uek.x86_64.rpm70ffb571990eed68cf13eaf780524828-ol8_x86_64_UEKR6
kernel-uek-devel-5.4.17-2136.337.5.el8uek.x86_64.rpmb8ba6187967f4a691fdd9af1cb44e005-ol8_x86_64_UEKR6
kernel-uek-doc-5.4.17-2136.337.5.el8uek.noarch.rpm4d0e7d7f80ef4d4e89075e3bd3e3cf52-ol8_x86_64_UEKR6


This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

software.hardware.complete