ELSA-2026-50306

ULN >
Oracle Linux Errata repository >
ELSA-2026-50306

ELSA-2026-50306 - Unbreakable Enterprise kernel security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-06-07

Description

[5.4.17-2136.356.4.2]
- arm64: errata: Mitigate TLBI errata on various Arm CPUs (Mark Rutland) [Orabug: 39017592] {CVE-2025-10263}
- arm64: tlb: Add ARM64_WORKAROUND_REPEAT_TLBI_SYNC (Mark Rutland) [Orabug: 39017592]
- ARM: uek: Disable CONFIG_QCOM_FALKOR_ERRATUM_1003 (Boris Ostrovsky) [Orabug: 39017592]
- arm64: tlb: allow XZR argument to TLBI ops (Mark Rutland) [Orabug: 39017592]
- arm64: cputype: Add C1-Premium definitions (Mark Rutland) [Orabug: 39017592]
- arm64: cputype: Add C1-Ultra definitions (Mark Rutland) [Orabug: 39017592]

[5.4.17-2136.356.4.1]
- smb: client: reject userspace cifs.spnego descriptions (Asim Viladi Oglu Manizada) [Orabug: 39463669]

[5.4.17-2136.356.4]
- tun: free page on build_skb failure in tun_xdp_one() (Weiming Shi) [Orabug: 39429147]
- tap: free page on error paths in tap_get_user_xdp() (Weiming Shi) [Orabug: 39429147]
- tun: free page on short-frame rejection in tun_xdp_one() (Weiming Shi) [Orabug: 39429147]

[5.4.17-2136.356.3]
- ptrace: slightly saner 'get_dumpable()' logic (Linus Torvalds) [Orabug: 39384275,39391459] {CVE-2026-46333}
- net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim) [Orabug: 39368828,39441326] {CVE-2026-43503,CVE-2026-46300}
- net: skbuff: preserve shared-frag marker during coalescing (William Bowling) [Orabug: 39368828] {CVE-2026-46300}

[5.4.17-2136.356.2]
- nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (Jeff Layton) [Orabug: 39167617,39368718] {CVE-2026-31402}
- scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() (Maurizio Lombardi) [Orabug: 38985173,39368732] {CVE-2026-23216}
- scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (Maurizio Lombardi) [Orabug: 38970455,39368774] {CVE-2026-23193}
- xfrm: esp: avoid in-place decrypt on shared skb frags (Kuan-Ting Chen) [Orabug: 39334580,39367147] {CVE-2026-43284}
- x86/CPU/AMD: Add a fix for AMD-SB-7052 (Prathyushi Nangia) [Orabug: 39218897] {CVE-2025-54518}

[5.4.17-2136.356.1]
- arm64/kvm: Include linux/random.h in trng.c (Siddh Raman Pant) [Orabug: 39327096]
- i2c: designware: Disable TX_EMPTY irq while waiting for block length byte (Tam Nguyen) [Orabug: 39174662]
- i2c: designware: Handle invalid SMBus block data response length value (Tam Nguyen) [Orabug: 39174662]
- i2c: designware: fix __i2c_dw_disable() in case master is holding SCL low (Yann Sionneau) [Orabug: 39174662]

[5.4.17-2136.355.3]
- crypto: algif_aead - Fix minimum RX size check for decryption (Herbert Xu) [Orabug: 39250687,39331106] {CVE-2026-43077}
- crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl (Herbert Xu) [Orabug: 39250687,39331111] {CVE-2026-43078}
- crypto: authencesn - Fix src offset when decrypting in-place (Herbert Xu) [Orabug: 39250687]
- crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption (Herbert Xu) [Orabug: 39250687,39300911] {CVE-2026-43033}
- crypto: authenc - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39250687]
- crypto: algif_aead - snapshot IV for async AEAD requests (Douya Le) [Orabug: 39250687,39452217] {CVE-2026-46028}
- crypto: algif_aead - Revert to operating out-of-place (Herbert Xu) [Orabug: 39250687,39283868,39292250] {CVE-2026-31431}
- crypto: algif_aead - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39250687] {CVE-2026-31431}
- crypto: scatterwalk - Backport memcpy_sglist() (Eric Biggers) [Orabug: 39250687]
- crypto: doc - fix kernel-doc notation in chacha.c and af_alg.c (Randy Dunlap) [Orabug: 39250687]

[5.4.17-2136.355.2]
- Revert 'rds: Drop rds conn in connect worker if not in down state.' (Alok Tiwari) [Orabug: 39253770]
- x86/CPU: Fix FPDSS on Zen1 (Siddh Raman Pant) [Orabug: 39241225,39273723] {CVE-2026-31628}
- SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (Joshua Rogers) [Orabug: 38852342] {CVE-2025-71120}

[5.4.17-2136.355.1]
- net/sched: Enforce that teql can only be used as root qdisc (Jamal Hadi Salim) [Orabug: 38930950] {CVE-2026-23074}

[5.4.17-2136.354.4]
- macvlan: fix possible UAF in macvlan_forward_source() (Eric Dumazet) [Orabug: 38887731] {CVE-2026-23001}
- macvlan: Use 'hash' iterators to simplify code (Christophe Jaillet) [Orabug: 38887731] {CVE-2026-23001}
- macvlan: Add nodst option to macvlan type source (Jethro Beekman) [Orabug: 38887731] {CVE-2026-23001}
- macvlan: observe an RCU grace period in macvlan_common_newlink() error path (Eric Dumazet) [Orabug: 38970510,39188399] {CVE-2026-23209,CVE-2026-23273}
- macvlan: fix error recovery in macvlan_common_newlink() (Eric Dumazet) [Orabug: 38970510] {CVE-2026-23209}

Related CVEs

CVE-2025-10263

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	kernel-uek-5.4.17-2136.356.4.2.el7uek.src.rpm	2e57032f482b2c241d3f74fe0a6619724ca70213638fb07422b7d155ea7dfe5d	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-5.4.17-2136.356.4.2.el7uek.x86_64.rpm	b2f0f3f686cda7092dbe48654355fe96f5e5432247830d4c08bca646e4feea01	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-container-5.4.17-2136.356.4.2.el7uek.x86_64.rpm	97d2db8e6990ee80fa3de14437e56c3881ef83b71efa9f907bd30905ce4fcc0d	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-container-debug-5.4.17-2136.356.4.2.el7uek.x86_64.rpm	7144e0ab65c8c31026d775f4a8a8c83087e60fc41a07e628ccec5de9c07aeffb	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-debug-5.4.17-2136.356.4.2.el7uek.x86_64.rpm	353128531382d4301b8b870d33053ea1b846cfd9abf13abc5c622f0e555cd745	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-debug-devel-5.4.17-2136.356.4.2.el7uek.x86_64.rpm	3ae5875ceae39774e00b55f4dc065dfc668074a3622e8bd478422a1112e74785	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-devel-5.4.17-2136.356.4.2.el7uek.x86_64.rpm	5163ec771555a3d4d5e3bf54c41ae7786a98e03909c3c8778bb0fc2723cb81af	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-doc-5.4.17-2136.356.4.2.el7uek.noarch.rpm	2e443339a4597e422fbed784b8c64089e06005648c46e3abd9f7eef31b28bdc7	-	ol7_x86_64_UEKR6_ELS
	kernel-uek-tools-5.4.17-2136.356.4.2.el7uek.x86_64.rpm	67e5fc6c34ecb52d66399f86c6be3a503aebd6b312466d365ad68c5244ac4ba8	-	ol7_x86_64_UEKR6_ELS

Oracle Linux 8 (aarch64)	kernel-uek-5.4.17-2136.356.4.2.el8uek.src.rpm	83debea5d3b0969251c56f44635c174e978522d752d535ae760a9d7eaafc6df0	-	ol8_aarch64_baseos_latest
	kernel-uek-5.4.17-2136.356.4.2.el8uek.src.rpm	83debea5d3b0969251c56f44635c174e978522d752d535ae760a9d7eaafc6df0	-	ol8_aarch64_u10_baseos_patch
	kernel-uek-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	94f342a012e7aa965fb0a594fbb7e4d85701b805d9905ed08afd31f5c97bdc34	-	ol8_aarch64_baseos_latest
	kernel-uek-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	94f342a012e7aa965fb0a594fbb7e4d85701b805d9905ed08afd31f5c97bdc34	-	ol8_aarch64_u10_baseos_patch
	kernel-uek-debug-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	dae65f715e7c7c286800db072d90b09fd6387fee28379d865fe28aef2a40d355	-	ol8_aarch64_baseos_latest
	kernel-uek-debug-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	dae65f715e7c7c286800db072d90b09fd6387fee28379d865fe28aef2a40d355	-	ol8_aarch64_u10_baseos_patch
	kernel-uek-debug-devel-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	1a7047c7d885693b0d747395b24d76ef9a44f053bbeb5831167f07ae71151007	-	ol8_aarch64_baseos_latest
	kernel-uek-debug-devel-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	1a7047c7d885693b0d747395b24d76ef9a44f053bbeb5831167f07ae71151007	-	ol8_aarch64_u10_baseos_patch
	kernel-uek-devel-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	0f39f6f446fc837be53a76850da94d6801bfe7f6f9d78d0a69ffcf24840e2954	-	ol8_aarch64_baseos_latest
	kernel-uek-devel-5.4.17-2136.356.4.2.el8uek.aarch64.rpm	0f39f6f446fc837be53a76850da94d6801bfe7f6f9d78d0a69ffcf24840e2954	-	ol8_aarch64_u10_baseos_patch
	kernel-uek-doc-5.4.17-2136.356.4.2.el8uek.noarch.rpm	b1c9f8cf3fdad6acccc35c4b0ab66a9f997264b90321ce2d6947f528c594f6b2	-	ol8_aarch64_baseos_latest
	kernel-uek-doc-5.4.17-2136.356.4.2.el8uek.noarch.rpm	b1c9f8cf3fdad6acccc35c4b0ab66a9f997264b90321ce2d6947f528c594f6b2	-	ol8_aarch64_u10_baseos_patch

Oracle Linux 8 (x86_64)	kernel-uek-5.4.17-2136.356.4.2.el8uek.src.rpm	83debea5d3b0969251c56f44635c174e978522d752d535ae760a9d7eaafc6df0	-	ol8_x86_64_UEKR6
	kernel-uek-5.4.17-2136.356.4.2.el8uek.x86_64.rpm	22482a229d7d02b032121f5ee539405b5437127556f5e2afc97926fe98ea590a	-	ol8_x86_64_UEKR6
	kernel-uek-container-5.4.17-2136.356.4.2.el8uek.x86_64.rpm	0ccf6b282ddbce17daf7d97aa5dcf438e6699cc58350bfc7158dd467c2c961c8	-	ol8_x86_64_UEKR6
	kernel-uek-container-debug-5.4.17-2136.356.4.2.el8uek.x86_64.rpm	20456944903e9cef546718b56565456ed62225a4cbd2d75813544a42470cf765	-	ol8_x86_64_UEKR6
	kernel-uek-debug-5.4.17-2136.356.4.2.el8uek.x86_64.rpm	ee263d2be4f67676b81cbcdf57ba96ac1467f4509c8f1799dbaabf293e0177ec	-	ol8_x86_64_UEKR6
	kernel-uek-debug-devel-5.4.17-2136.356.4.2.el8uek.x86_64.rpm	2fe1aeeff06dcfec4690841ff485eb13ace44920ec765edc5cd70bebc2fb4eb4	-	ol8_x86_64_UEKR6
	kernel-uek-devel-5.4.17-2136.356.4.2.el8uek.x86_64.rpm	64c37ccb28e6527cfd073f7856069eabaed731e0b647b1865bda2fcbe1b3cd26	-	ol8_x86_64_UEKR6
	kernel-uek-doc-5.4.17-2136.356.4.2.el8uek.noarch.rpm	b1c9f8cf3fdad6acccc35c4b0ab66a9f997264b90321ce2d6947f528c594f6b2	-	ol8_x86_64_UEKR6

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691