OVMSA-2021-0006

OVMSA-2021-0006 - Unbreakable Enterprise kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2021-02-17

Description


[4.1.12-124.48.3.1]
- xen-blkback: fix error handling in xen_blkbk_map() (Jan Beulich) [Orabug: 32492113] {CVE-2021-26930}
- xen-scsiback: don't 'handle' error by BUG() (Jan Beulich) [Orabug: 32492105] {CVE-2021-26931}
- xen-netback: don't 'handle' error by BUG() (Jan Beulich) [Orabug: 32492105] {CVE-2021-26931}
- xen-blkback: don't 'handle' error by BUG() (Jan Beulich) [Orabug: 32492105] {CVE-2021-26931}
- Xen/gntdev: correct error checking in gntdev_map_grant_pages() (Jan Beulich) [Orabug: 32492098] {CVE-2021-26932}
- Xen/gntdev: correct dev_bus_addr handling in gntdev_map_grant_pages() (Jan Beulich) [Orabug: 32492098] {CVE-2021-26932}
- Xen/x86: also check kernel mapping in set_foreign_p2m_mapping() (Jan Beulich) [Orabug: 32492098] {CVE-2021-26932}
- Xen/x86: don't bail early from clear_foreign_p2m_mapping() (Jan Beulich) [Orabug: 32492098] {CVE-2021-26932}

[4.1.12-124.48.3]
- bnxt_en: Fix ethtool -x crash when device is down. (Michael Chan) [Orabug: 32466092]

[4.1.12-124.48.2]
- vhost scsi: alloc vhost_scsi with kvzalloc() to avoid delay (Dongli Zhang) [Orabug: 32471166]

[4.1.12-124.48.1]
- nfs: Fix security label length not being reset (Jeffrey Mitchell) [Orabug: 32350996]
- rds: Add code to debug rds_tcp loopback hang (Rao Shoaib) [Orabug: 32382656]


Related CVEs


CVE-2021-26932
CVE-2021-26930
CVE-2021-26931

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle VM 3.4 (x86_64) kernel-uek-4.1.12-124.48.3.1.el6uek.src.rpm198d6fc18646d97b224269930c75f610OVMSA-2021-0016
kernel-uek-4.1.12-124.48.3.1.el6uek.x86_64.rpm22ce5c6f7717a5d1dd9601c0a5e21dfbOVMSA-2021-0016
kernel-uek-firmware-4.1.12-124.48.3.1.el6uek.noarch.rpm7796c7b6d89597993d4d9dcb15caaf5dOVMSA-2021-0016



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete