Oracle Errata System Oracle Linux 5.3 2014-12-30T00:00:00 Oracle Linux 6 [1.0.1e-16.4] - fix CVE-2013-4353 - Invalid TLS handshake crash [1.0.1e-16.3] - fix CVE-2013-6450 - possible MiTM attack on DTLS1 [1.0.1e-16.2] - fix CVE-2013-6449 - crash when version in SSL structure is incorrect IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-4353 CVE-2013-6449 CVE-2013-6450 Oracle Linux 5 [1.4.5-18.1] - fix CVE-2013-4576 acoustic side channel attack on RSA private keys MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4576 Oracle Linux 5 Oracle Linux 6 [1.4.5-3] - cve-2013-6462.patch: sscanf overflow (bug 1049684) - sscanf-hardening.patch: Some other sscanf hardening fixes (1049684) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-6462 Oracle Linux 6 [1.7.0.51-2.4.4.1.0.1.el6_5] - Update DISTRO_NAME in specfile [1.7.0.51-2.4.4.1.el6] - restored java7 provides - bumped release (builds exists) - Resolves: rhbz#1050935 [1.7.0.51-2.4.4.0.el6] - updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 0 - sync with fedora - added and applied patch411 1029588.patch (rh 1029588) - added aand applied patch410, 1015432 (rh 1015432) - Resolves: rhbz#1050935 CRITICAL Copyright 2014 Oracle, Inc. CVE-2013-5878 CVE-2013-5884 CVE-2013-5893 CVE-2013-5896 CVE-2013-5907 CVE-2013-5910 CVE-2014-0368 CVE-2014-0373 CVE-2014-0376 CVE-2014-0411 CVE-2014-0416 CVE-2014-0422 CVE-2014-0423 CVE-2014-0428 Oracle Linux 5 [1.7.0.51-2.4.4.1.0.1.el5_10] - Add oracle-enterprise.patch - Fix DISTRO_NAME to 'Enterprise Linux' [1.7.0.51-2.4.4.1.el5] - updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-5878 CVE-2013-5884 CVE-2013-5893 CVE-2013-5896 CVE-2013-5907 CVE-2013-5910 CVE-2014-0368 CVE-2014-0373 CVE-2014-0376 CVE-2014-0411 CVE-2014-0416 CVE-2014-0422 CVE-2014-0423 CVE-2014-0428 Oracle Linux 6 [32:9.8.2-0.23.rc1.1] - Fix CVE-2014-0591 [32:9.8.2-0.23.rc1] - Fix gssapictx memory leak (#911167) [32:9.8.2-0.22.rc1] - fix CVE-2013-4854 [32:9.8.2-0.21.rc1] - fix CVE-2013-2266 - ship dns/rrl.h in -devel subpkg [32:9.8.2-0.20.rc1] - remove one bogus file from /usr/share/doc, introduced by RRL patch [32:9.8.2-0.19.rc1] - fix CVE-2012-5689 [32:9.8.2-0.18.rc1] - add response rate limit patch (#873624) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0591 Oracle Linux 6 [1.0.0-5.1] - Fix CVE-2013-6412, incorrect permissions under strict umask (RHBZ#1036079) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-6412 Oracle Linux 5 Oracle Linux 6 [1:1.6.0.1-3.1.13.0] - updated to icedtea 1.13.1 - http://blog.fuseyism.com/index.php/2014/01/23/security-icedtea-1-12-8-1-13-1-for-openjdk-6-released/ - updated to jdk6, b30, 21_jan_2014 - https://openjdk6.java.net/OpenJDK6-B30-Changes.html - adapted patch7 1.13_fixes.patch - pre 2011 changelog moved to (till now wrong) pre-2009-spec-changelog (rh1043611) - added --disable-system-lcms to configure options to pass build - adapted patch3 java-1.6.0-openjdk-java-access-bridge-security.patch - Resolves: rhbz#1050190 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-5878 CVE-2013-5884 CVE-2013-5896 CVE-2013-5907 CVE-2013-5910 CVE-2014-0368 CVE-2014-0373 CVE-2014-0376 CVE-2014-0411 CVE-2014-0416 CVE-2014-0422 CVE-2014-0423 CVE-2014-0428 Oracle Linux 6 [0.10.2-29.0.1.el6_5.3] - Replace docs/et.png in tarball with blank image [0.10.2-29.el6_5.3] - qemu: Avoid operations on NULL monitor if VM fails early (rhbz#1055578) - qemu: Do not access stale data in virDomainBlockStats (CVE-2013-6458) - qemu: Avoid using stale data in virDomainGetBlockInfo (CVE-2013-6458) - qemu: Fix job usage in qemuDomainBlockJobImpl (CVE-2013-6458) - qemu: Fix job usage in qemuDomainBlockCopy (rhbz#1054804) - qemu: Fix job usage in virDomainGetBlockIoTune (CVE-2013-6458) - Don't crash if a connection closes early (CVE-2014-1447) - Really don't crash if a connection closes early (CVE-2014-1447) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-6458 CVE-2014-1447 Oracle Linux 5 kernel [2.6.18-371.4.1.0.1] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4494 Oracle Linux 5 kernel [2.6.18-371.4.1] - [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494} MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4494 Oracle Linux 6 [2.4.23-34.1] - fix: segfault on certain queries with rwm overlay (#1058250) [2.4.23-34] - fix: deadlock during SSL_ForceHandshake (#996373) + revert nss-handshake-threadsafe.patch MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4449 Oracle Linux 6 [2.26.0-6.3] - Fix add-permission-check.patch to update all rsvg_pixbuf_new_from_href() callers [2.26.0-6.1] - Fix build by linking in -lm - io: Implement strict network policy (CVE-2013-1881) Resolves: #1049155 [2.26.0-6] - Store node type separately in RsvgNode (CVE-2011-3146) Resolves: #735267 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-1881 Oracle Linux 5 Oracle Linux 6 [24.3.0-2.0.1.el6_5] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel >= 4.10.0 to fix build failure [24.3.0-2] - Update to 24.3.0 ESR Build 2 [24.3.0-1] - Update to 24.3.0 ESR CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1477 CVE-2014-1479 CVE-2014-1481 CVE-2014-1482 CVE-2014-1486 CVE-2014-1487 Oracle Linux 5 Oracle Linux 6 [24.3.0-2.0.1.el6_5] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Make sure build with nspr-devel >= 4.10.0 [24.3.0-2] - Update to 24.3.0 ESR Build 2 [24.3.0-1] - Update to 24.3.0 [24.2.0-2] - Fixed requested nspr/nss versions IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1477 CVE-2014-1479 CVE-2014-1481 CVE-2014-1482 CVE-2014-1486 CVE-2014-1487 Oracle Linux 6 [2.7.9-27.el6] - Fix regression in CVE-2013-6483. [2.7.9-26.el6] - Fix patch for CVE-2012-6152 (RH bug #1058242). [2.7.9-25.el6] - Add patch for CVE-2014-0020 (RH bug #1058242). [2.7.9-24.el6] - Add patch for CVE-2013-6490 (RH bug #1058242). [2.7.9-23.el6] - Add patch for CVE-2013-6489 (RH bug #1058242). [2.7.9-22.el6] - Add patch for CVE-2013-6487 (RH bug #1058242). [2.7.9-21.el6] - Add patch for CVE-2013-6477 (RH bug #1058242). [2.7.9-20.el6] - Add patch for CVE-2013-6485 (RH bug #1058242). [2.7.9-19.el6] - Add patch for CVE-2013-6484 (RH bug #1058242). [2.7.9-18.el6] - Add patch for CVE-2013-6483 (RH bug #1058242). [2.7.9-17.el6] - Add patch for CVE-2013-6482 (RH bug #1058242). [2.7.9-16.el6] - Add patch for CVE-2013-6481 (RH bug #1058242). [2.7.9-15.el6] - Add patch for CVE-2013-6479 (RH bug #1058242). [2.7.9-14.el6] - Turns out the previous patch is actually for CVE-2013-6478. [2.7.9-13.el6] - Add patch for CVE-2013-6477 (RH bug #1058242). [2.7.9-12.el6] - Add patch for CVE-2012-6152 (RH bug #1058242). MODERATE Copyright 2014 Oracle, Inc. CVE-2012-6152 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6487 CVE-2013-6489 CVE-2013-6490 CVE-2014-0020 Oracle Linux 6 [1.12-1.11] - Add --trust-server-names option to fix CVE-2010-2252 (#833831) [1.12-1.10] - Build wget again with partial RELRO. LDFLAGS changed due to openssl rebase. [1.12-1.9] - Fix wget to recognize certificates with alternative names (#1060113) LOW Copyright 2014 Oracle, Inc. CVE-2010-2252 Oracle Linux 6 [2.6.32-431.5.1] - [net] sctp: fix checksum marking for outgoing packets (Daniel Borkmann) [1046041 1040385] - [kernel] ptrace: Cleanup useless header (Aaron Tomlin) [1046043 1036312] - [kernel] ptrace: kill BKL in ptrace syscall (Aaron Tomlin) [1046043 1036312] - [fs] nfs: Prevent a 3-way deadlock between layoutreturn, open and state recovery (Steve Dickson) [1045094 1034487] - [fs] nfs: Ensure that rmdir() waits for sillyrenames to complete (Steve Dickson) [1051395 1034348] - [fs] nfs: wait on recovery for async session errors (Steve Dickson) [1051393 1030049] - [fs] nfs: Re-use exit code in nfs4_async_handle_error() (Steve Dickson) [1051393 1030049] - [fs] nfs: Update list of irrecoverable errors on DELEGRETURN (Steve Dickson) [1051393 1030049] - [exec] ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039486 1039487] {CVE-2013-2929} - [net] ipv6: router reachability probing (Jiri Benc) [1043779 1029585] - [net] ipv6: remove the unnecessary statement in find_match() (Jiri Benc) [1043779 1029585] - [net] ipv6: fix route selection if kernel is not compiled with CONFIG_IPV6_ROUTER_PREF (Jiri Benc) [1043779 1029585] - [net] ipv6: Fix default route failover when CONFIG_IPV6_ROUTER_PREF=n (Jiri Benc) [1043779 1029585] - [net] ipv6: probe routes asynchronous in rt6_probe (Jiri Benc) [1040826 1030094] - [net] ndisc: Update neigh->updated with write lock (Jiri Benc) [1040826 1030094] - [net] ipv6: prevent fib6_run_gc() contention (Jiri Benc) [1040826 1030094] - [net] netfilter: push reasm skb through instead of original frag skbs (Jiri Pirko) [1049590 1011214] - [net] ip6_output: fragment outgoing reassembled skb properly (Jiri Pirko) [1049590 1011214] - [net] netfilter: nf_conntrack_ipv6: improve fragmentation handling (Jiri Pirko) [1049590 1011214] - [net] ipv4: fix path MTU discovery with connection tracking (Jiri Pirko) [1049590 1011214] - [net] ipv6: Make IP6CB(skb)->nhoff 16-bit (Jiri Pirko) [1049590 1011214] - [edac] Add error decoding support for AMD Fam16h processors (Prarit Bhargava) [1051394 1020290] - [netdrv] bnx2x: correct VF-PF channel locking scheme (Michal Schmidt) [1040498 1029203] - [netdrv] bnx2x: handle known but unsupported VF messages (Michal Schmidt) [1040498 1029203] - [netdrv] bnx2x: Lock DMAE when used by statistic flow (Michal Schmidt) [1040497 1029200] - [net] ipv6: fix leaking uninitialized port number of offender sockaddr (Florian Westphal) [1035882 1035883] {CVE-2013-6405} - [net] inet: fix addr_len/msg->msg_namelen assignment in recv_error functions (Florian Westphal) [1035882 1035883] {CVE-2013-6405} - [net] inet: prevent leakage of uninitialized memory to user in recv syscalls (Florian Westphal) [1035882 1035883] {CVE-2013-6405} - [net] ipvs: Add boundary check on ioctl arguments (Denys Vlasenko) [1030817 1030818] {CVE-2013-4588} - [s390] qeth: avoid buffer overflow in snmp ioctl (Hendrik Brueckner) [1038935 1034266] - [md] fix calculation of stacking limits on level change (Jes Sorensen) [1035347 1026864] - [ata] ahci: fix turning on LEDs in ahci_start_port() (David Milburn) [1035339 1017105] - [ata] libata: implement cross-port EH exclusion (David Milburn) [1035339 1017105] - [ata] libata add ap to ata_wait_register and intro ata_msleep (David Milburn) [1035339 1017105] - [netdrv] igb: Update link modes display in ethtool (Stefan Assmann) [1032389 1019578] [2.6.32-431.4.1] - [powerpc] signals: Improved mark VSX not saved with small contexts fix (Seth Jennings) [1044566 1044117] - [powerpc] signals: Mark VSX not saved with small contexts (Seth Jennings) [1044566 1044117] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-2929 CVE-2013-6381 CVE-2013-7263 CVE-2013-7265 Oracle Linux 5 [kvm-83-266.0.1.el5_10.1] - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch [kvm-83-266_10.1.el5] - KVM: x86: prevent cross page vapic_addr access (CVE-2013-6368) [bz#1032219] - KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) [bz#1032216] - Resolves: bz#1032219 (CVE-2013-6368 kvm: cross page vapic_addr access [rhel-5.10]) - Resolves: bz#1032216 CVE-2013-6367 kvm: division by zero in apic_get_tmcct() [rhel-5.10.z] [kvm-83-266.el5] - Updated kversion to 2.6.18-348.4.1.el5 - kvm-fix-l1_map-buffer-overflow.patch [bz#956511] - Resolves: bz#956511 (qemu-kvm segfault in tb_invalidate_phys_page_range()) [kvm-83-265.el5] - kvm-kernel-kvm-accept-unaligned-MSR_KVM_SYSTEM_TIME-writes.patch [bz#924597] - Resolves: bz#924597 (RHEL.5.8.32 guest hang when installing) [kvm-83-264.el5] - kvm-kernel-KVM-Fix-for-buffer-overflow-in-handling-of-MSR_KVM_S.patch [bz#917019] - kvm-kernel-KVM-Convert-MSR_KVM_SYSTEM_TIME-to-use-kvm_write_gue.patch [bz#917023] - kvm-kernel-KVM-Fix-bounds-checking-in-ioapic-indirect-register-.patch [bz#917029] - kvm-kernel-do-not-GP-on-unaligned-MSR_KVM_SYSTEM_TIME-write.patch [bz#bz917019] - Resolves: bz#917019 (CVE-2013-1796 kernel: kvm: buffer overflow in handling of MSR_KVM_SYSTEM_TIME [rhel-5.10]) - Resolves: bz#917023 (CVE-2013-1797 kernel: kvm: after free issue with the handling of MSR_KVM_SYSTEM_TIME [rhel-5.10]) - Resolves: bz#917029 (CVE-2013-1798 kernel: kvm: out-of-bounds access in ioapic indirect register reads [rhel-5.10]) [kvm-83-263.el5] - kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch [bz#910840] - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch [bz#910840] - Resolves: bz#910840 (CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled [rhel-5.10]) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-6367 CVE-2013-6368 Oracle Linux 6 [5.1.73-3] - Fixes for CVE-2014-0001 Resolves: #1055880 [5.1.73-2] - Make mysqld init script more robust and ignore existing but non-being-used unix socket file Resolves: #1058719 [5.1.73-1] - Update to MySQL 5.1.73, for various fixes described at http://dev.mysql.com/doc/relnotes/mysql/5.1/en/news-5-1-73.html (CVE-2014-0412, CVE-2014-0437, CVE-2013-5908, CVE-2014-0393, CVE-2014-0386, CVE-2014-0401, CVE-2014-0402) Resolves: #1055880 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-5908 CVE-2014-0001 CVE-2014-0386 CVE-2014-0393 CVE-2014-0401 CVE-2014-0402 CVE-2014-0412 CVE-2014-0437 Oracle Linux 5 [0.8.4-26.1.0.1] - Replace web/web/RedHat.gif with updated image in tarball [0.8.4-26.1] - Resolves: #1061903 - require authentication for all HTTP methods [0.8.4-26] - Resolves: #886361 - add SIGCHLD handler to pulse for lvs mode IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-6492 Oracle Linux 5 Oracle Linux 6 [2.6.32-27.2] - Resolves: rhbz#1050337 (CVE-2013-6466 refix for delete/notify code) [2.6.32-27.1] - Resolves: rhbz#1050337 (CVE-2013-6466) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-6466 Oracle Linux 5 [5.5.36-2] - Fix CVE-2014-0001 Related: #1055875 [5.5.36-1] - Update to MySQL 5.5.36, for various fixes described at http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-36.html Including fixes for CVE-2014-0412, CVE-2014-0437, CVE-2013-5908, CVE-2013-5807, CVE-2014-0420, CVE-2014-0393, CVE-2013-5891, CVE-2014-0386, CVE-2013-3839, CVE-2014-0401, CVE-2014-0402, Resolves: #1055875 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-5908 CVE-2014-0001 CVE-2014-0386 CVE-2014-0393 CVE-2014-0401 CVE-2014-0402 CVE-2014-0412 CVE-2014-0437 CVE-2013-3839 CVE-2013-5807 CVE-2013-5891 CVE-2014-0420 Oracle Linux 5 [2.3.43-27] - fix: CVE-2013-4449 segfault on certain queries with rwm overlay (#1064145) [2.3.43-26] - fix: do not send IPv6 DNS queries when IPv6 is disabled on the host (#812772) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4449 Oracle Linux 5 Oracle Linux 6 [8.4.20-1] - Update to PostgreSQL 8.4.20 (#1065843) for fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-19.html http://www.postgresql.org/docs/8.4/static/release-8-4-20.html IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 Oracle Linux 6 [3.9.4-10] - Resolves: #1063464. Several CVEs for libtiff MODERATE Copyright 2014 Oracle, Inc. CVE-2010-2596 CVE-2013-1960 CVE-2013-1961 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 Oracle Linux 5 [3.8.2-19] - Resolves: #1063460 CVE-2013-1960 CVE-2013-1961 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 libtiff various flaws MODERATE Copyright 2014 Oracle, Inc. CVE-2013-1960 CVE-2013-1961 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244 Oracle Linux 6 [2.8.5-13] - fix CVE-2014-0092 (#1069890) [2.8.5-12] - fix CVE-2013-2116 - fix DoS regression in CVE-2013-1619 upstream patch (#966754) [2.8.5-11] - fix CVE-2013-1619 - fix TLS-CBC timing attack (#908238) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0092 Oracle Linux 5 [1.4.1-14] - Renamed gnutls-1.4.1-cve-2014-0092-1.patch to cve-2014-5138.patch - Renamed gnutls-1.4.1-cve-2014-0092-2.patch to cve-2014-0092.patch [1.4.1-13] - fix issues of CVE-2014-0092 (#1069888) [1.4.1-12] - fix CVE-2013-2116 - fix DoS regression in CVE-2013-1619 upstream patch (#966754) [1.4.1-11] - fix CVE-2013-1619 - fix TLS-CBC timing attack (#908238) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0092 CVE-2009-5138 Oracle Linux 5 [8.1.23-10] - related #1065840: CVE-2014-0062 [8.1.23-9] - fix #1065840: CVE-2014-0060, CVE-2014-0061, CVE-2014-0063, CVE-2014-0064, CVE-2014-0065 - better incorporate strlcpy function (upstream git diff c92f7e..062421) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 Oracle Linux 5 Oracle Linux 6 [1.6.11-10] - add security fixes for CVE-2013-1968, CVE-2013-2112, CVE-2014-0032 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-1968 CVE-2013-2112 CVE-2014-0032 Oracle Linux 5 [1.7.2p1-29] - added patch for CVE-2014-0106: certain environment variables not sanitized when env_reset is disabled Resolves: rhbz#1072210 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0106 Oracle Linux 5 kernel [2.6.18-371.6.1.0.1] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-4554 CVE-2013-2929 CVE-2013-6381 CVE-2013-7263 CVE-2013-4483 CVE-2013-6383 CVE-2013-6885 Oracle Linux 5 kernel [2.6.18-371.6.1] - [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size < 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929} [2.6.18-371.5.1] - [fs] cifs: stop trying to use virtual circuits (Sachin Prabhu) [1044328 1013469] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-4554 CVE-2013-2929 CVE-2013-6381 CVE-2013-7263 CVE-2013-4483 CVE-2013-6383 CVE-2013-6885 Oracle Linux 6 [1.2.11.15-32] - Resolves: bug 1074847 - EMBARGOED CVE-2014-0132 389-ds-base: 389-ds: flaw in parsing authzid can lead to privilege escalation [rhel-6.5.z] (Ticket 47739 - directory server is insecurely misinterpreting authzid on a SASL/GSSAPI bind) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0132 Oracle Linux 6 [1.0.1-7.el6_5] - Make sure doc subpackage is noarch [1.0.1-6.el6_5] - Put devel-docs in a separate package (related: rhbz#1070145) . [1.0.1-5.el6_5] - Related: rhbz#1070145. IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0004 Oracle Linux 6 [5:1.5.20-4.20091214hg736b6a] - Resolves: #1075872 (CVE-2014-0467, heap-based buffer overflow when parsing certain headers) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0467 Oracle Linux 5 [3.0.33-3.40.el5] - Security Release, fixes CVE-2013-0213 and CVE-2013-4124 - resolves: #1073350 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-0213 CVE-2013-0214 CVE-2013-4124 Oracle Linux 5 Oracle Linux 6 [24.4.0-1.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel >= 4.10.0 to fix build failure [24.4.0-1] - Update to 24.4.0 ESR [24.3.0-4] - Fixed rhbz#1070467 - Enable Add Ons by default in Firefox [24.3.0-3] - Fixed rhbz#1054832 - Firefox does not support Camellia cipher CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1493 CVE-2014-1497 CVE-2014-1505 CVE-2014-1508 CVE-2014-1509 CVE-2014-1510 CVE-2014-1511 CVE-2014-1512 CVE-2014-1513 CVE-2014-1514 Oracle Linux 5 [5.1.6-44] - add security fixes for CVE-2006-7243, CVE-2009-0689 CRITICAL Copyright 2014 Oracle, Inc. CVE-2009-0689 CVE-2006-7243 Oracle Linux 5 Oracle Linux 6 [24.4.0-1.0.1] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [24.4.0-1] - Update to 24.4.0 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1493 CVE-2014-1497 CVE-2014-1505 CVE-2014-1508 CVE-2014-1509 CVE-2014-1510 CVE-2014-1511 CVE-2014-1512 CVE-2014-1513 CVE-2014-1514 Oracle Linux 6 [1:5.5-49.0.1.el6_5.1] - snmptrapd: Fix crash due to access of freed memory (John Haxby) [orabug 14404682] [1:5.5-49.1] - added 'diskio' option to snmpd.conf, it's possible to monitor only selected devices in diskIOTable (#990674) - fixed CVE-2014-2284: denial of service flaw in Linux implementation of ICMP-MIB (#1073222) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2284 Oracle Linux 5 [5.3.2.2-22.0.2.el5_10.1] - hrProcessorLoad returns incorrect values for CPUs greater than 100 (Jason Luan) [Orabug 17792842] - snmptrapd: Fix crash due to access of freed memory (John Haxby) [orabug 14391194] - suppress spurious asserts on 32bit [Greg Marsden] [5.3.2.2-20.1] - Fixed CVE-2012-6151: snmpd crashing when AgentX subagent disconnects in the middle of request processing (#1073224) - Fixed CVE-2014-2285: snmptrapd crash when using a trap with empty community string (#1073224) MODERATE Copyright 2014 Oracle, Inc. CVE-2012-6151 CVE-2014-2285 Oracle Linux 6 [2.6.32-431.11.2] - [net] sctp: fix sctp_sf_do_5_1D_ce to verify if peer is AUTH capable (Daniel Borkmann) [1070715 1067451] {CVE-2014-0101} - [vhost] validate vhost_get_vq_desc return value (Michael S. Tsirkin) [1062579 1058677] {CVE-2014-0055} [2.6.32-431.11.1] - [net] netpoll: take rcu_read_lock_bh() in netpoll_send_skb_on_dev() (Florian Westphal) [1063271 1049052] - [fs] cifs: sanity check length of data to send before sending (Sachin Prabhu) [1065668 1062590] {CVE-2014-0069} - [fs] cifs: ensure that uncached writes handle unmapped areas correctly (Sachin Prabhu) [1065668 1062590] {CVE-2014-0069} - [infiniband] ipoib: Report operstate consistently when brought up without a link (Michal Schmidt) [1064464 995300] - [security] selinux: fix broken peer recv check (Paul Moore) [1059991 1043051] - [fs] GFS2: Fix slab memory leak in gfs2_bufdata (Robert S Peterson) [1064913 1024024] - [fs] GFS2: Fix use-after-free race when calling gfs2_remove_from_ail (Robert S Peterson) [1064913 1024024] - [fs] nfs: always make sure page is up-to-date before extending a write to cover the entire page (Scott Mayhew) [1066942 1054493] - [fs] xfs: ensure we capture IO errors correctly (Lachlan McIlroy) [1058418 1021325] - [mm] get rid of unnecessary pageblock scanning in setup_zone_migrate_reserve (Motohiro Kosaki) [1062113 1043353] - [security] selinux: process labeled IPsec TCP SYN-ACK packets properly in selinux_ip_postroute() (Paul Moore) [1055364 1024631] - [security] selinux: look for IPsec labels on both inbound and outbound packets (Paul Moore) [1055364 1024631] - [security] selinux: handle TCP SYN-ACK packets correctly in selinux_ip_postroute() (Paul Moore) [1055364 1024631] - [security] selinux: handle TCP SYN-ACK packets correctly in selinux_ip_output() (Paul Moore) [1055364 1024631] - [edac] e752x_edac: Fix pci_dev usage count (Aristeu Rozanski) [1058420 1029530] - [s390] mm: handle asce-type exceptions as normal page fault (Hendrik Brueckner) [1057164 1034268] - [s390] mm: correct tlb flush on page table upgrade (Hendrik Brueckner) [1057165 1034269] - [net] fix memory information leaks in recv protocol handlers (Florian Westphal) [1039868 1039869] - [usb] cdc-wdm: fix buffer overflow (Alexander Gordeev) [922000 922001] {CVE-2013-1860} - [usb] cdc-wdm: Fix race between autosuspend and reading from the device (Alexander Gordeev) [922000 922001] {CVE-2013-1860} [2.6.32-431.10.1] - [fs] xfs: xfs_remove deadlocks due to inverted AGF vs AGI lock ordering (Brian Foster) [1067775 1059334] - [x86] apic: Map the local apic when parsing the MP table (Prarit Bhargava) [1063507 1061873] [2.6.32-431.9.1] - [netdrv] bonding: add NETIF_F_NO_CSUM vlan_features (Ivan Vecera) [1063199 1059777] [2.6.32-431.8.1] - [netdrv] enic: remove enic->vlan_group check (Stefan Assmann) [1064115 1057704] [2.6.32-431.7.1] - [char] n_tty: Fix unsafe update of available buffer space (Jiri Benc) [1060491 980188] - [char] n_tty: Fix stuck throttled driver (Jiri Benc) [1060491 980188] - [char] tty: Add safe tty throttle/unthrottle functions (Jiri Benc) [1060491 980188] - [char] tty: note race we need to fix (Jiri Benc) [1060491 980188] [2.6.32-431.6.1] - [mm] memcg: fix oom schedule_timeout() (Ulrich Obergfell) [1054072 1034237] - [mm] memcg: change memcg_oom_mutex to spinlock (Ulrich Obergfell) [1054072 1034237] - [mm] memcg: fix hierarchical oom locking (Ulrich Obergfell) [1054072 1034237] - [mm] memcg: make oom_lock 0 and 1 based rather than counter (Ulrich Obergfell) [1054072 1034237] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-1860 CVE-2014-0055 CVE-2014-0069 CVE-2014-0101 Oracle Linux 5 Oracle Linux 6 [3.6.9-168] - resolves: #1073905 - Fix CVE-2012-6150. - resolves: #1073905 - Fix CVE-2013-4496. MODERATE Copyright 2014 Oracle, Inc. CVE-2012-6150 CVE-2013-4496 Oracle Linux 5 [1.0.15-6.0.1.el5] - Added oracle-ocfs2-network.patch - increase max packet size to 65536 (Herbert van den Bergh) [orabug 13542633] [1.0.15-6] - security patches - Resolves: CVE-2012-6056 CVE-2012-6060 CVE-2012-6061 CVE-2012-6062 CVE-2013-3557 CVE-2013-3559 CVE-2013-4081 CVE-2013-4083 CVE-2013-4927 CVE-2013-4931 CVE-2013-4932 CVE-2013-4933 CVE-2013-4934 CVE-2013-4935 CVE-2013-5721 CVE-2013-7112 CVE-2014-2281 CVE-2014-2299 MODERATE Copyright 2014 Oracle, Inc. CVE-2012-5595 CVE-2012-5598 CVE-2012-5599 CVE-2012-5600 CVE-2012-6056 CVE-2012-6060 CVE-2012-6061 CVE-2012-6062 CVE-2013-3557 CVE-2013-3559 CVE-2013-4081 CVE-2013-4083 CVE-2013-4927 CVE-2013-4931 CVE-2013-4932 CVE-2013-4933 CVE-2013-4934 CVE-2013-4935 CVE-2013-5721 CVE-2013-7112 CVE-2014-2281 CVE-2014-2299 Oracle Linux 6 [1.8.10-7.0.1.el6] - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect [1.8.10-7] - security patches - Resolves: CVE-2013-6337 [1.8.10-6] - security patches - Resolves: CVE-2014-2281 CVE-2014-2283 CVE-2014-2299 [1.8.10-5] - security patches - Resolves: CVE-2013-6336 CVE-2013-6338 CVE-2013-6339 CVE-2013-6340 CVE-2013-7112 CVE-2013-7114 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-6336 CVE-2013-6337 CVE-2013-6338 CVE-2013-6339 CVE-2013-6340 CVE-2013-7112 CVE-2013-7114 CVE-2014-2281 CVE-2014-2283 CVE-2014-2299 Oracle Linux 5 Oracle Linux 6 [0:2.7.0-9.9] - Add patch to fix remote code execution vulnerability - Resolves: CVE-2014-0107 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0107 Oracle Linux 5 [2.2.3-85.0.1.el5_10] - fix mod_ssl always performing full renegotiation (Joe Jin) [orabug 12423387] - replace index.html with Oracle's index page oracle_index.html - update vstring and distro in specfile [2.2.3-85] - mod_log_config: add security fix for CVE-2014-0098 (#1078176) [2.2.3-84] - mod_dav: add security fix for CVE-2013-6438 (#1078176) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-6438 CVE-2014-0098 Oracle Linux 6 [2.2.15-30.0.1.el6_5] - replace index.html with Oracle's index page oracle_index.html update vstring in specfile [2.2.15-30] - mod_dav: add security fix for CVE-2013-6438 (#1078174) - mod_log_config: add security fix for CVE-2014-0098 (#1078174) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-6438 CVE-2014-0098 Oracle Linux 6 [1.0.1e-16.7] - fix CVE-2014-0160 - information disclosure in TLS heartbeat extension IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0160 Oracle Linux 6 [4.0.0-61.rc4] - resolves: #1073913 - Fix CVE-2012-6150. - resolves: #1073913 - Fix CVE-2013-4496. - resolves: #1073913 - Fix CVE-2013-6442. MODERATE Copyright 2014 Oracle, Inc. CVE-2012-6150 CVE-2013-4496 CVE-2013-6442 Oracle Linux 6 [1.7.0.51-2.4.7.1.0.1.el6_5] - Update DISTRO_NAME in specfile [1.7.0.51-2.4.7.1.el6] - regenerated sources to fix TCK failure - Resolves: rhbz#1085002 [1.7.0.51-2.4.7.0.el6] - bumped to future icedtea-forest 2.4.7 - updatever set to 55, buildver se to 13, release reset to 0 - removed upstreamed patch402 gstackbounds.patch - removed BuildRequires on pulseaudio >= 0.9.1, devel is enough - removed Requires: rhino, BuildRequires is enough - added JRE_RELEASE_VERSION and ALT_PARALLEL_COMPILE_JOBS - fixed FT2_CFLAGS and FT2_LIBS - ppc64 repalced by power64 macro - patch111 applied as dry-run (6.5 forward port) - Resolves: rhbz#1085002 CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-0454 CVE-2014-0455 CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0459 CVE-2014-0460 CVE-2014-0461 CVE-2014-1876 CVE-2014-2397 CVE-2014-2398 CVE-2014-2402 CVE-2014-2403 CVE-2014-2412 CVE-2014-2413 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427 CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 Oracle Linux 5 [1.7.0.55-2.4.7.1.0.1.el5_10] - Add oracle-enterprise.patch - Fix DISTRO_NAME to 'Enterprise Linux' [1.7.0.55-2.4.7.1.el5] - regenerated sources to fix TCK failure - Resolves: rhbz#1085000 [1.7.0.55-2.4.7.0.el5] - bumped to future icedtea-forest 2.4.7 - updatever set to 55, buildver se to 13, release reset to 0 - removed BuildRequires on pulseaudio >= 0.9.1, devel is enough - removed Requires: rhino, BuildRequires is enough - updated patch400, java-1.7.0-openjdk-remove-gstabs.patch - added JRE_RELEASE_VERSION and ALT_PARALLEL_COMPILE_JOBS - ppc64 repalced by power64 macro - patch111 applied as dry-run (6.5 forward port) - Resolves: rhbz#1085000 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0454 CVE-2014-0455 CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0459 CVE-2014-0460 CVE-2014-0461 CVE-2014-1876 CVE-2014-2397 CVE-2014-2398 CVE-2014-2402 CVE-2014-2403 CVE-2014-2412 CVE-2014-2413 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427 CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 Oracle Linux 5 Oracle Linux 6 [1:1.6.0.1-5.1.13.3] - updated to icedtea 1.13.3 - updated to openjdk-6-src-b31-15_apr_2014 - renmoved upstreamed patch7, 1.13_fixes.patch - Resolves: rhbz#1085009 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0460 CVE-2014-0461 CVE-2014-1876 CVE-2014-2397 CVE-2014-2398 CVE-2014-2403 CVE-2014-2412 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427 CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 Oracle Linux 6 [0.12.1.2-2.415.el6_5.8] - kvm-virtio-net-fix-guest-triggerable-buffer-overrun.patch [bz#1078605 bz#1078849] - kvm-qcow2-Check-backing_file_offset-CVE-2014-0144.patch [bz#1079452 bz#1079453] - kvm-qcow2-Check-refcount-table-size-CVE-2014-0144.patch [bz#1079452 bz#1079453] - kvm-qcow2-Validate-refcount-table-offset.patch [bz#1079518 bz#1086678] - kvm-qcow2-Validate-snapshot-table-offset-size-CVE-2014-0.patch [bz#1079452 bz#1079453] - kvm-qcow2-Validate-active-L1-table-offset-and-size-CVE-2.patch [bz#1079452 bz#1079453] - kvm-qcow2-Fix-backing-file-name-length-check.patch [bz#1079518 bz#1086678] - kvm-qcow2-Don-t-rely-on-free_cluster_index-in-alloc_refc.patch [bz#1079337 bz#1079338] - kvm-qcow2-Avoid-integer-overflow-in-get_refcount-CVE-201.patch [bz#1079318 bz#1079319] - kvm-qcow2-Check-new-refcount-table-size-on-growth.patch [bz#1079518 bz#1086678] - kvm-qcow2-Fix-types-in-qcow2_alloc_clusters-and-alloc_cl.patch [bz#1079518 bz#1086678] - kvm-qcow2-Protect-against-some-integer-overflows-in-bdrv.patch [bz#1079518 bz#1086678] - kvm-qcow2-Catch-some-L1-table-index-overflows.patch [bz#1079518 bz#1086678] - kvm-qcow2-Fix-new-L1-table-size-check-CVE-2014-0143.patch [bz#1079318 bz#1079319] - kvm-qcow2-Fix-NULL-dereference-in-qcow2_open-error-path-.patch [bz#1079330 bz#1079331] - kvm-qcow2-Limit-snapshot-table-size.patch [bz#1079518 bz#1086678] - kvm-block-cloop-validate-block_size-header-field-CVE-201.patch [bz#1079452 bz#1079453] - kvm-block-cloop-prevent-offsets_size-integer-overflow-CV.patch [bz#1079318 bz#1079319] - kvm-block-cloop-refuse-images-with-huge-offsets-arrays-C.patch [bz#1079452 bz#1079453] - kvm-block-cloop-Fix-coding-style.patch [bz#1079518 bz#1086678] - kvm-cloop-Fix-bdrv_open-error-handling.patch [bz#1079518 bz#1086678] - kvm-block-cloop-refuse-images-with-bogus-offsets-CVE-201.patch [bz#1079452 bz#1079453] - kvm-block-cloop-Use-g_free-instead-of-free.patch [bz#1079518 bz#1086678] - kvm-block-cloop-fix-offsets-size-off-by-one.patch [bz#1079518 bz#1086678] - kvm-bochs-Fix-bdrv_open-error-handling.patch [bz#1079518 bz#1086678] - kvm-bochs-Unify-header-structs-and-make-them-QEMU_PACKED.patch [bz#1079518 bz#1086678] - kvm-bochs-Use-unsigned-variables-for-offsets-and-sizes-C.patch [bz#1079337 bz#1079338] - kvm-bochs-Check-catalog_size-header-field-CVE-2014-0143.patch [bz#1079318 bz#1079319] - kvm-bochs-Check-extent_size-header-field-CVE-2014-0142.patch [bz#1079313 bz#1079314] - kvm-bochs-Fix-bitmap-offset-calculation.patch [bz#1079518 bz#1086678] - kvm-vpc-vhd-add-bounds-check-for-max_table_entries-and-b.patch [bz#1079452 bz#1079453] - kvm-vpc-Validate-block-size-CVE-2014-0142.patch [bz#1079313 bz#1079314] - kvm-vdi-add-bounds-checks-for-blocks_in_image-and-disk_s.patch [bz#1079452 bz#1079453] - kvm-vhdx-Bounds-checking-for-block_size-and-logical_sect.patch [bz#1079343 bz#1079344] - kvm-curl-check-data-size-before-memcpy-to-local-buffer.-.patch [bz#1079452 bz#1079453] - kvm-dmg-Fix-bdrv_open-error-handling.patch [bz#1079518 bz#1086678] - kvm-dmg-coding-style-and-indentation-cleanup.patch [bz#1079518 bz#1086678] - kvm-dmg-prevent-out-of-bounds-array-access-on-terminator.patch [bz#1079518 bz#1086678] - kvm-dmg-drop-broken-bdrv_pread-loop.patch [bz#1079518 bz#1086678] - kvm-dmg-use-appropriate-types-when-reading-chunks.patch [bz#1079518 bz#1086678] - kvm-dmg-sanitize-chunk-length-and-sectorcount-CVE-2014-0.patch [bz#1079323 bz#1079324] - kvm-dmg-use-uint64_t-consistently-for-sectors-and-length.patch [bz#1079518 bz#1086678] - kvm-dmg-prevent-chunk-buffer-overflow-CVE-2014-0145.patch [bz#1079323 bz#1079324] - kvm-block-Limit-request-size-CVE-2014-0143.patch [bz#1079318 bz#1079319] - kvm-parallels-Fix-catalog-size-integer-overflow-CVE-2014.patch [bz#1079318 bz#1079319] - kvm-parallels-Sanity-check-for-s-tracks-CVE-2014-0142.patch [bz#1079313 bz#1079314] - kvm-bochs-Fix-memory-leak-in-bochs_open-error-path.patch [bz#1079518 bz#1086678] - kvm-bochs-Fix-catalog-size-check.patch [bz#1079518 bz#1086678] - Resolves: bz#1078849 (EMBARGOED CVE-2014-0150 qemu-kvm: qemu: virtio-net: buffer overflow in virtio_net_handle_mac() function [rhel-6.5.z]) - Resolves: bz#1079313 (CVE-2014-0142 qemu-kvm: qemu: crash by possible division by zero [rhel-6.5.z]) - Resolves: bz#1079318 (CVE-2014-0143 qemu-kvm: Qemu: block: multiple integer overflow flaws [rhel-6.5.z]) - Resolves: bz#1079323 (CVE-2014-0145 qemu-kvm: Qemu: prevent possible buffer overflows [rhel-6.5.z]) - Resolves: bz#1079330 (CVE-2014-0146 qemu-kvm: Qemu: qcow2: NULL dereference in qcow2_open() error path [rhel-6.5.z]) - Resolves: bz#1079337 (CVE-2014-0147 qemu-kvm: Qemu: block: possible crash due signed types or logic error [rhel-6.5.z]) - Resolves: bz#1079343 (CVE-2014-0148 qemu-kvm: Qemu: vhdx: bounds checking for block_size and logical_sector_size [rhel-6.5.z]) - Resolves: bz#1079452 (CVE-2014-0144 qemu-kvm: Qemu: block: missing input validation [rhel-6.5.z]) - Resolves: bz#1086678 (qemu-kvm: include leftover patches from block layer security audit) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0142 CVE-2014-0143 CVE-2014-0144 CVE-2014-0145 CVE-2014-0146 CVE-2014-0147 CVE-2014-0148 CVE-2014-0150 Oracle Linux 6 [0:6.0.24-64] - Resolves: CVE-2014-0050 [0:6.0.24-63] - Resolves: CVE-2013-4322 CVE-2013-4286 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4286 CVE-2013-4322 CVE-2014-0050 Oracle Linux 5 kernel [2.6.18-371.8.1.0.1] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] MODERATE Copyright 2014 Oracle, Inc. CVE-2012-6638 CVE-2013-2888 Oracle Linux 5 kernel [2.6.18-371.8.1] - [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126] [2.6.18-371.7.1] - [s390x] af_iucv: Kernel panic during connect (IUCV transport) (Hendrik Brueckner) [1077045 1026388] MODERATE Copyright 2014 Oracle, Inc. CVE-2012-6638 CVE-2013-2888 Oracle Linux 5 Oracle Linux 6 [24.5.0-1.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel >= 4.10.0 to fix build failure [24.5.0-1] - Update to 24.5.0 ESR [24.4.0-3] - Added a workaround for Bug 1054242 - RHEVM: Extremely high memory usage in Firefox 24 ESR on RHEL 6.5 [24.4.0-2] - fixed rhbz#1067343 - Broken languagepack configuration after firefox update CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1518 CVE-2014-1523 CVE-2014-1524 CVE-2014-1529 CVE-2014-1530 CVE-2014-1531 CVE-2014-1532 Oracle Linux 5 Oracle Linux 6 [24.5.0-1.0.1] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [24.5.0-1] - Update to 24.5.0 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1518 CVE-2014-1523 CVE-2014-1524 CVE-2014-1529 CVE-2014-1530 CVE-2014-1531 CVE-2014-1532 Oracle Linux 5 [1.2.9-4jpp.7] - Resolves: rhbz#1092457 - CVE-2014-0114: Fixed ClassLoader manipulation vulnerability - Added dist tag to release IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0114 Oracle Linux 6 [2.6.32-431.17.1] - [scsi] qla2xxx: Fixup looking for a space in the outstanding_cmds array in qla2x00_alloc_iocbs() (Chad Dupuis) [1085660 1070856] - [scsi] isci: fix reset timeout handling (David Milburn) [1080600 1040393] - [scsi] isci: correct erroneous for_each_isci_host macro (David Milburn) [1074855 1059325] - [kernel] sched: Fix small race where child->se.parent, cfs_rq might point to invalid ones (Naoya Horiguchi) [1081907 1032350] - [kernel] sched: suppress RCU lockdep splat in task_fork_fair (Naoya Horiguchi) [1081907 1032350] - [kernel] sched: add local variable to store task_group() to avoid kernel stall (Naoya Horiguchi) [1081908 1043733] - [fs] cifs: mask off top byte in get_rfc1002_length() (Sachin Prabhu) [1085358 1069737] - [kernel] Prevent deadlock when post_schedule_rt() results in calling wakeup_kswapd() on multiple CPUs (Larry Woodman) [1086095 1009626] - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033533 1033534] {CVE-2013-6383} - [md] dm-thin: fix rcu_read_lock being held in code that can sleep (Mike Snitzer) [1086007 1060381] - [md] dm-thin: irqsave must always be used with the pool->lock spinlock (Mike Snitzer) [1086007 1060381] - [md] dm-thin: sort the per thin deferred bios using an rb_tree (Mike Snitzer) [1086007 1060381] - [md] dm-thin: use per thin device deferred bio lists (Mike Snitzer) [1086007 1060381] - [md] dm-thin: simplify pool_is_congested (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix dangling bio in process_deferred_bios error path (Mike Snitzer) [1086007 1060381] - [md] dm-thin: take care to copy the space map root before locking the superblock (Mike Snitzer) [1086007 1060381] - [md] dm-transaction-manager: fix corruption due to non-atomic transaction commit (Mike Snitzer) [1086007 1060381] - [md] dm-space-map-metadata: fix refcount decrement below 0 which caused corruption (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix Documentation for held metadata root feature (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix noflush suspend IO queueing (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix deadlock in __requeue_bio_list (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix out of data space handling (Mike Snitzer) [1086007 1060381] - [md] dm-thin: ensure user takes action to validate data and metadata consistency (Mike Snitzer) [1086007 1060381] - [md] dm-thin: synchronize the pool mode during suspend (Mike Snitzer) [1086007 1060381] - [md] fix Kconfig indentation (Mike Snitzer) [1086007 1060381] - [md] dm-thin: allow metadata space larger than supported to go unused (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix the error path for the thin device constructor (Mike Snitzer) [1086007 1060381] - [md] dm-thin: avoid metadata commit if a pool's thin devices haven't changed (Mike Snitzer) [1086007 1060381] - [md] dm-space-map-metadata: fix bug in resizing of thin metadata (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix pool feature parsing (Mike Snitzer) [1086007 1060381] - [md] dm-space-map-metadata: fix extending the space map (Mike Snitzer) [1086007 1060381] - [md] dm-space-map-common: make sure new space is used during extend (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix set_pool_mode exposed pool operation races (Mike Snitzer) [1086007 1060381] - [md] dm-thin: eliminate the no_free_space flag (Mike Snitzer) [1086007 1060381] - [md] dm-thin: add error_if_no_space feature (Mike Snitzer) [1086007 1060381] - [md] dm-thin: requeue bios to DM core if no_free_space and in read-only mode (Mike Snitzer) [1086007 1060381] - [md] dm-thin: cleanup and improve no space handling (Mike Snitzer) [1086007 1060381] - [md] dm-thin: log info when growing the data or metadata device (Mike Snitzer) [1086007 1060381] - [md] dm-thin: handle metadata failures more consistently (Mike Snitzer) [1086007 1060381] - [md] dm-thin: factor out check_low_water_mark and use bools (Mike Snitzer) [1086007 1060381] - [md] dm-thin: add mappings to end of prepared_* lists (Mike Snitzer) [1086007 1060381] - [md] dm-thin: return error from alloc_data_block if pool is not in write mode (Mike Snitzer) [1086007 1060381] - [md] dm-thin: use bool rather than unsigned for flags in structures (Mike Snitzer) [1086007 1060381] - [md] dm-persistent-data: cleanup dm-thin specific references in text (Mike Snitzer) [1086007 1060381] - [md] dm-space-map-metadata: limit errors in sm_metadata_new_block (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix discard support to a previously shared block (Mike Snitzer) [1086007 1060381] - [md] dm-thin: initialize dm_thin_new_mapping returned by get_next_mapping (Mike Snitzer) [1086007 1060381] - [md] dm-space-map: disallow decrementing a reference count below zero (Mike Snitzer) [1086007 1060381] - [md] dm-thin: allow pool in read-only mode to transition to read-write mode (Mike Snitzer) [1086007 1060381] - [md] dm-thin: re-establish read-only state when switching to fail mode (Mike Snitzer) [1086007 1060381] - [md] dm-thin: always fallback the pool mode if commit fails (Mike Snitzer) [1086007 1060381] - [md] dm-thin: switch to read-only mode if metadata space is exhausted (Mike Snitzer) [1086007 1060381] - [md] dm-thin: switch to read only mode if a mapping insert fails (Mike Snitzer) [1086007 1060381] - [md] dm-space-map-metadata: return on failure in sm_metadata_new_block (Mike Snitzer) [1086007 1060381] - [md] dm-space-map-disk: optimise sm_disk_dec_block (Mike Snitzer) [1086007 1060381] - [md] dm-table: print error on preresume failure (Mike Snitzer) [1086007 1060381] - [md] dm-thin: do not expose non-zero discard limits if discards disabled (Mike Snitzer) [1086007 1060381] - [md] dm-thin: always return -ENOSPC if no_free_space is set (Mike Snitzer) [1086007 1060381] - [md] dm-thin: set pool read-only if breaking_sharing fails block allocation (Mike Snitzer) [1086007 1060381] - [md] dm-thin: prefix pool error messages with pool device name (Mike Snitzer) [1086007 1060381] - [md] dm-space-map: optimise sm_ll_dec and sm_ll_inc (Mike Snitzer) [1086007 1060381] - [md] dm-btree: prefetch child nodes when walking tree for a dm_btree_del (Mike Snitzer) [1086007 1060381] - [md] dm-btree: use pop_frame in dm_btree_del to cleanup code (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix stacking of geometry limits (Mike Snitzer) [1086007 1060381] - [md] dm-thin: add data block size limits to Documentation (Mike Snitzer) [1086007 1060381] - [md] dm-thin: fix metadata dev resize detection (Mike Snitzer) [1086007 1060381] - [md] dm-thin: generate event when metadata threshold passed (Mike Snitzer) [1086007 1060381] - [md] dm-persistent-metadata: add space map threshold callback (Mike Snitzer) [1086007 1060381] - [md] dm-persistent-data: add threshold callback to space map (Mike Snitzer) [1086007 1060381] - [md] dm-thin: detect metadata device resizing (Mike Snitzer) [1086007 1060381] - [md] dm-persistent-data: support space map resizing (Mike Snitzer) [1086007 1060381] - [md] dm-thin: refactor data dev resize (Mike Snitzer) [1086007 1060381] - [md] dm-bufio: initialize read-only module parameters (Mike Snitzer) [1086007 1060381] - [md] dm-bufio: submit writes outside lock (Mike Snitzer) [1086007 1060381] - [md] dm-bufio: add recursive IO request BUG_ON (Mike Snitzer) [1086007 1060381] - [md] dm-bufio: prefetch (Mike Snitzer) [1086007 1060381] - [md] dm-bufio: fix slow IO latency issue specific to RHEL6 (Mike Snitzer) [1086490 1058528] - [netdrv] mlx4_en: Fixed crash when port type is changed (Amir Vadai) [1085658 1059586] - [netdrv] vmxnet3: fix netpoll race condition (Neil Horman) [1083175 1073218] - [net] netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (Jiri Pirko) [1077345 1077346] {CVE-2014-2523} - [scsi] megaraid_sas: fix a small problem when reading state value from hw (Tomas Henzl) [1078641 1065187] - [fs] gfs2: Increase the max number of ACLs (Robert S Peterson) [1078874 1075713] - [net] filter: let bpf_tell_extensions return SKF_AD_MAX (Daniel Borkmann) [1079872 960275] - [net] introduce SO_BPF_EXTENSIONS (Daniel Borkmann) [1079872 960275] - [scsi] scsi_dh: cosmetic change to sizeof() (Ewan Milne) [1075554 1062494] - [acpi] thermal: Check for thermal zone requirement (Nigel Croxon) [1075651 1021044] - [acpi] thermal: Don't invalidate thermal zone if critical trip point is bad (Nigel Croxon) [1075651 1021044] - [mm] flush pages from pagevec of offlined CPU (Naoya Horiguchi) [1078007 1037467] - [fs] xfs: deprecate nodelaylog option (Eric Sandeen) [1076056 1055644] - [fs] Fix mountpoint reference leakage in linkat (Jeff Layton) [1069848 1059943] - [net] sock: Fix release_cb kABI brekage (Thomas Graf) [1066535 1039723] - [vhost] fix total length when packets are too short (Michael S. Tsirkin) [1064442 1064444] {CVE-2014-0077} - [net] sctp: fix sctp_sf_do_5_1D_ce to verify if peer is AUTH capable (Daniel Borkmann) [1070715 1067451] {CVE-2014-0101} - [vhost] validate vhost_get_vq_desc return value (Michael S. Tsirkin) [1062579 1058677] {CVE-2014-0055} [2.6.32-431.16.1] - [scsi] vmw_pvscsi: Fix pvscsi_abort() function (Ewan Milne) [1077874 1002727] [2.6.32-431.15.1] - [kernel] sched: Avoid throttle_cfs_rq() racing with period_timer stopping (Seth Jennings) [1083350 844450] [2.6.32-431.14.1] - [net] ip_tunnel: (revert old)/fix ecn decapsulation behaviour (Jiri Pirko) [1078011 1059402] - [net] ipv6: del unreachable route when an addr is deleted on lo (Vivek Dasgupta) [1078798 1028372] - [net] ipv6: add ip6_route_lookup (Vivek Dasgupta) [1078798 1028372] - [net] packet: improve socket create/bind latency in some cases (Daniel Borkmann) [1079870 1045150] [2.6.32-431.13.1] - [fs] dcache: fix cleanup on warning in d_splice_alias (J. Bruce Fields) [1063201 1042731] - [net] sctp: fix sctp_connectx abi for ia32 emulation/compat mode (Daniel Borkmann) [1076242 1053547] [2.6.32-431.12.1] - [mm] vmscan: re-introduce the ZONE_RECLAIM_NOSCAN bailout for zone_reclaim() (Rafael Aquini) [1073562 1039534] - [mm] vmscan: compaction works against zones, not lruvecs (Johannes Weiner) [1073564 982770] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0077 CVE-2013-6383 CVE-2014-2523 Oracle Linux 6 [2.7.6-14.0.1.el6_5.1] - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball [2-2.7.6-14.el6_5.1] - Improve handling of xmlStopParser(CVE-2013-2877) - Do not fetch external parameter entities (CVE-2014-0191) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-2877 CVE-2014-0191 Oracle Linux 5 [5.5.37-1] - Update to MySQL 5.5.37, for various fixes described at http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-37.html Includes fixes for: CVE-2014-2440 CVE-2014-0384 CVE-2014-2432 CVE-2014-2431 CVE-2014-2430 CVE-2014-2436 CVE-2014-2438 CVE-2014-2419 Resolves: #1089202 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0384 CVE-2014-2419 CVE-2014-2430 CVE-2014-2431 CVE-2014-2432 CVE-2014-2436 CVE-2014-2438 CVE-2014-2440 Oracle Linux 6 [0.10.2-29.0.1.el6_5.8] - Replace docs/et.png in tarball with blank image [0.10.2-29.el6_5.8] - LSN-2014-0003: Don't expand entities when parsing XML (CVE-2014-0179) - QoS: make tc filters match all traffic (rhbz#1096806) - use virBitmapFree instead of VIR_FREE for cpumask (rhbz#1091206) - Properly free vcpupin info for unplugged CPUs (rhbz#1091206) - sanlock: code movement in virLockManagerSanlockAcquire (rhbz#1097227) - sanlock: don't fail with unregistered domains (rhbz#1097227) - sanlock: avoid leak in acquire() (rhbz#1097227) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0179 Oracle Linux 6 [7.19.7-37.el6_5.3] - fix re-use of wrong HTTP NTLM connection (CVE-2014-0015) - fix connection re-use when using different log-in credentials (CVE-2014-0138) [7.19.7-37.el6_5.2] - fix authentication failure when server offers multiple auth options (#1096797) [7.19.7-37.el6_5.1] - refresh expired cookie in test172 from upstream test-suite (#1092486) - fix a memory leak caused by write after close (#1092479) - nss: implement non-blocking SSL handshake (#1092480) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0015 CVE-2014-0138 Oracle Linux 5 [1.4.1-16] - added missing check for null pointer (#1102355) [1.4.1-15] - fix session ID length check and null pointer dereference (#1102355) - fix minitasn1 issues (#1102355) - Renamed gnutls-1.4.1-cve-2014-5138.patch to cve-2009-5138.patch IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3466 CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 Oracle Linux 6 [2.8.5-14] - fix session ID length check (#1102024) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3466 Oracle Linux 6 [2.3-6] - added check for null pointer (#1102336) [2.3-5] - fix various DER decoding issues (#1102336) [2.3-4] - fix CVE-2012-1569 - missing length check when decoding DER lengths (#804920) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 Oracle Linux 6 [7:3.1.10-20.3] - Resolves: #1098134 - CVE-2014-0128 squid: denial of service when using SSL-Bump [7:3.1.10-20.2] - revert: Resolves: #1039088 - issues with timeout on HTTPS connections [7:3.1.10-20.1] - Resolves: #1093072 - issues with timeout on HTTPS connections MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0128 Oracle Linux 5 [0.9.8e-27.3] - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability [0.9.8e-27.1] - replace expired GlobalSign Root CA certificate in ca-bundle.crt IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0224 Oracle Linux 6 [1.0.1e-16.14] - fix CVE-2010-5298 - possible use of memory after free - fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment - fix CVE-2014-0198 - possible NULL pointer dereference - fix CVE-2014-0221 - DoS from invalid DTLS handshake packet - fix CVE-2014-0224 - SSL/TLS MITM vulnerability - fix CVE-2014-3470 - client-side DoS when using anonymous ECDH IMPORTANT Copyright 2014 Oracle, Inc. CVE-2010-5298 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-3470 Oracle Linux 5 Oracle Linux 6 [0.9.8e-18.0.1.el6_5.2] - Updated the description [0.9.8e-18.2] - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability [0.9.8e-18] - fix for CVE-2012-2110 - memory corruption in asn1_d2i_read_bio() (#814185) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0224 Oracle Linux 7 [1.7.0.55-2.4.7.2.0.1.el7_0] - Update DISTRO_NAME in specfile [1.7.0.55-2.4.7.2] - Remove NSS patches. Issues with PKCS11 provider mean it shouldn't be enabled. - Always setup nss.cfg and depend on nss-devel at build-time to do so. - This allows users who wish to use PKCS11+NSS to just add it to java.security. - Patches to PKCS11 provider will be included upstream in 2.4.8 (ETA July 2014) - Resolves: rhbz#1099565 [1.7.0.55-2.4.7.0.el7] - bumped to future icedtea-forest 2.4.7 - updatever set to 55, buildver se to 13, release reset to 0 - removed upstreamed patch402 gstackbounds.patch - removed Requires: rhino, BuildRequires is enough - ppc64 repalced by power64 macro - patch111 applied as dry-run (6.6 forward port) - nss enabled, but notused as default (6.6 forward port) - Resolves: rhbz#1099565 CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-0454 CVE-2014-0455 CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0459 CVE-2014-0460 CVE-2014-0461 CVE-2014-1876 CVE-2014-2397 CVE-2014-2398 CVE-2014-2402 CVE-2014-2403 CVE-2014-2412 CVE-2014-2413 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427 CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 Oracle Linux 7 [3.10.0-123.1.2] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.1.2] - [tty] n_tty: Fix n_tty_write crash when echoing in raw mode (Aristeu Rozanski) [1094241 1094242] {CVE-2014-0196} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0196 Oracle Linux 7 [1.0.1e-34.3] - fix CVE-2010-5298 - possible use of memory after free - fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment - fix CVE-2014-0198 - possible NULL pointer dereference - fix CVE-2014-0221 - DoS from invalid DTLS handshake packet - fix CVE-2014-0224 - SSL/TLS MITM vulnerability - fix CVE-2014-3470 - client-side DoS when using anonymous ECDH IMPORTANT Copyright 2014 Oracle, Inc. CVE-2010-5298 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-3470 Oracle Linux 7 [0.9.8e-29.2] - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0224 Oracle Linux 7 [3.1.18-9] - fix session ID length check (#1102027) - fixes null pointer dereference (#1101727) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3466 CVE-2014-3465 Oracle Linux 7 [1:1.6.0.1-6.1.13.3] - updated to icedtea 1.13.3 - updated to openjdk-6-src-b31-15_apr_2014 - renmoved upstreamed patch7, 1.13_fixes.patch - renmoved upstreamed patch9, 1051245.patch - Resolves: rhbz#1099563 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0460 CVE-2014-0461 CVE-2014-1876 CVE-2014-2397 CVE-2014-2398 CVE-2014-2403 CVE-2014-2412 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427 CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 Oracle Linux 7 [0:7.0.42-5] - Related: CVE-2013-4286 - Related: CVE-2013-4322 - Related: CVE-2014-0050 - revisit patches for above. IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-4286 CVE-2013-4322 CVE-2014-0186 Oracle Linux 7 [3.3-5] - Added missing check for null pointer (#1102338) [3.3-4] - Fix multiple decoding issues (#1102338) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 Oracle Linux 7 [1:5.5.37-1] - Rebase to 5.5.37 https://kb.askmonty.org/en/mariadb-5537-changelog/ Also fixes: CVE-2014-2440 CVE-2014-0384 CVE-2014-2432 CVE-2014-2431 CVE-2014-2430 CVE-2014-2436 CVE-2014-2438 CVE-2014-2419 Resolves: #1101062 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0384 CVE-2014-2419 CVE-2014-2430 CVE-2014-2431 CVE-2014-2432 CVE-2014-2436 CVE-2014-2438 CVE-2014-2440 Oracle Linux 7 [0.11-4] - fix has collision CVE-2013-6371 - fix buffer overflow CVE-2013-6370 - enable upstream test suite MODERATE Copyright 2014 Oracle, Inc. CVE-2013-6371 CVE-2013-6370 Oracle Linux 7 [1.5.3-60.el7_0.2] - kvm-pc-add-hot_add_cpu-callback-to-all-machine-types.patch [bz#1094820] - Resolves: bz#1094820 (Hot plug CPU not working with RHEL6 machine types running on RHEL7 host.) [1.5.3-60.el7_0.1] - kvm-iscsi-fix-indentation.patch [bz#1090978] - kvm-iscsi-correctly-propagate-errors-in-iscsi_open.patch [bz#1090978] - kvm-block-iscsi-query-for-supported-VPD-pages.patch [bz#1090978] - kvm-block-iscsi-fix-segfault-if-writesame-fails.patch [bz#1090978] - kvm-iscsi-recognize-invalid-field-ASCQ-from-WRITE-SAME-c.patch [bz#1090978] - kvm-iscsi-ignore-flushes-on-scsi-generic-devices.patch [bz#1090978] - kvm-iscsi-always-query-max-WRITE-SAME-length.patch [bz#1090978] - kvm-iscsi-Don-t-set-error-if-already-set-in-iscsi_do_inq.patch [bz#1090978] - kvm-iscsi-Remember-to-set-ret-for-iscsi_open-in-error-ca.patch [bz#1090978] - kvm-qemu_loadvm_state-shadow-SeaBIOS-for-VM-incoming-fro.patch [1091322] - kvm-uhci-UNfix-irq-routing-for-RHEL-6-machtypes-RHEL-onl.patch [bz#1090981] - kvm-ide-Correct-improper-smart-self-test-counter-reset-i.patch [bz#1093612] - Resolves: bz#1091322 (fail to reboot guest after migration from RHEL6.5 host to RHEL7.0 host) - Resolves: bz#1090981 (Guest hits call trace migrate from RHEL6.5 to RHEL7.0 host with -M 6.1 & balloon & uhci device) - Resolves: bz#1090978 (qemu-kvm: iSCSI: Failure. SENSE KEY:ILLEGAL_REQUEST(5) ASCQ:INVALID_FIELD_IN_CDB(0x2400)) - Resolves: bz#1093612 (CVE-2014-2894 qemu-kvm: QEMU: out of bounds buffer accesses, guest triggerable via IDE SMART [rhel-7.0.z]) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2894 Oracle Linux 5 kernel [2.6.18-371.9.1.0.1] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-7339 CVE-2014-1737 CVE-2014-1738 Oracle Linux 5 kernel [2.6.18-371.9.1] - [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-7339 CVE-2014-1737 CVE-2014-1738 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [24.6.0-1.0.1.el6_5] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one [24.6.0-1] - Update to 24.6.0 ESR [24.5.0-2] - Disabled unused patches CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1533 CVE-2014-1538 CVE-2014-1541 Oracle Linux 5 Oracle Linux 6 [24.6.0-1.0.1.el6_5] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [24.6.0-1] - Update to 24.6.0 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1533 CVE-2014-1538 CVE-2014-1541 Oracle Linux 6 [0.12.1.2-2.415.el6_5.10] - kvm-virtio-out-of-bounds-buffer-write-on-invalid-state-l.patch [bz#1095692] - kvm-usb-sanity-check-setup_index-setup_len-in-post_load.patch [bz#1095743] - kvm-usb-sanity-check-setup_index-setup_len-in-post_load-2.patch [bz#1095743] - kvm-virtio-scsi-fix-buffer-overrun-on-invalid-state-load.patch [bz#1095739] - kvm-virtio-avoid-buffer-overrun-on-incoming-migration.patch [bz#1095735] - kvm-virtio-validate-num_sg-when-mapping.patch [bz#1095763 bz#1096124] - kvm-virtio-allow-mapping-up-to-max-queue-size.patch [bz#1095763 bz#1096124] - kvm-enable-PCI-multiple-segments-for-pass-through-device.patch [bz#1099941] - kvm-virtio-net-fix-buffer-overflow-on-invalid-state-load.patch [bz#1095675] - kvm-virtio-validate-config_len-on-load.patch [bz#1095779] - kvm-usb-fix-up-post-load-checks.patch [bz#1096825] - kvm-CPU-hotplug-use-apic_id_for_cpu-round-2-RHEL-6-only.patch [bz#1100575] - Resolves: bz#1095675 () - Resolves: bz#1095692 () - Resolves: bz#1095735 () - Resolves: bz#1095739 () - Resolves: bz#1095743 () - Resolves: bz#1095763 () - Resolves: bz#1095779 () - Resolves: bz#1096124 () - Resolves: bz#1096825 () - Resolves: bz#1099941 () - Resolves: bz#1100575 (Some vCPU topologies not accepted by libvirt) [0.12.1.2-2.415.el6_5.9] - kvm-ide-Correct-improper-smart-self-test-counter-reset-i.patch [bz#1087978] - Resolves: bz#1087978 (CVE-2014-2894 qemu-kvm: QEMU: out of bounds buffer accesses, guest triggerable via IDE SMART [rhel-6.5.z]) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4148 CVE-2013-4151 CVE-2013-4535 CVE-2013-4536 CVE-2013-4541 CVE-2013-4542 CVE-2013-6399 CVE-2014-0182 CVE-2014-2894 CVE-2014-3461 Oracle Linux 6 [2.2.1-2] - Fix CVE-2014-1402 Resolves: rhbz#1102889 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-1402 Oracle Linux 6 [2.6.32-431.20.3] - [kernel] futex: Make lookup_pi_state more robust (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [kernel] futex: Always cleanup owner tid in unlock_pi (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [kernel] futex: Validate atomic acquisition in futex_lock_pi_atomic() (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [kernel] futex: prevent requeue pi on same futex (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [fs] autofs4: fix device ioctl mount lookup (Ian Kent) [1069630 999708] - [fs] vfs: introduce kern_path_mountpoint() (Ian Kent) [1069630 999708] - [fs] vfs: rename user_path_umountat() to user_path_mountpoint_at() (Ian Kent) [1069630 999708] - [fs] vfs: massage umount_lookup_last() a bit to reduce nesting (Ian Kent) [1069630 999708] - [fs] vfs: allow umount to handle mountpoints without revalidating them (Ian Kent) [1069630 999708] - Revert: [fs] vfs: allow umount to handle mountpoints without revalidating them (Ian Kent) [1069630 999708] - Revert: [fs] vfs: massage umount_lookup_last() a bit to reduce nesting (Ian Kent) [1069630 999708] - Revert: [fs] vfs: rename user_path_umountat() to user_path_mountpoint_at() (Ian Kent) [1069630 999708] - Revert: [fs] vfs: introduce kern_path_mountpoint() (Ian Kent) [1069630 999708] - Revert: [fs] autofs4: fix device ioctl mount lookup (Ian Kent) [1069630 999708] [2.6.32-431.20.2] - [block] floppy: don't write kernel-only members to FDRAWCMD ioctl output (Denys Vlasenko) [1094308 1094310] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD ioctl input (Denys Vlasenko) [1094308 1094310] {CVE-2014-1738 CVE-2014-1737} - [fs] vfs: fix autofs/afs/etc magic mountpoint breakage (Frantisek Hrbata) [1094370 1079347] {CVE-2014-0203} - [char] n_tty: Fix n_tty_write crash when echoing in raw mode (Aristeu Rozanski) [1094236 1094237] {CVE-2014-0196} [2.6.32-431.20.1] - [net] rtnetlink: Only supply IFLA_VF_PORTS information when RTEXT_FILTER_VF is set (Jiri Pirko) [1092870 1081282] - [net] rtnetlink: Warn when interface's information won't fit in our packet (Jiri Pirko) [1092870 1081282] - [net] bridge: Correctly receive hw-accelerated vlan traffic (Vlad Yasevich) [1096214 1067722] - [net] vlan: Allow accelerated packets to flow through the bridge (Vlad Yasevich) [1096214 1067722] - [infiniband] qib: Add missing serdes init sequence (Doug Ledford) [1080104 1005491] - [infiniband] qib: Fix txselect regression (Doug Ledford) [1080104 1005491] - [netdrv] ixgbevf: fix vlan acceleration (Nikolay Aleksandrov) [1094287 1069028] - [security] selinux: Fix kernel BUG on empty security contexts (Paul Moore) [1062502 1064545] {CVE-2014-1874} - [netdrv] libertas: potential oops in debugfs (Denys Vlasenko) [1034176 1034177] {CVE-2013-6378} - [kernel] cgroup: move put_css_set() after setting CGRP_RELEASABLE bit to fix notify_on_release (Naoya Horiguchi) [1081909 1037465] - [kernel] sched: Use exit hook to avoid use-after-free crash (Naoya Horiguchi) [1081914 1032347] - [kernel] cgroup: replace list_del() with list_del_init() to avoid panic (Naoya Horiguchi) [1081915 1032343] - [x86] turbostat: display C8, C9, C10 residency (Neil Horman) [1096711 1080637] - [scsi] lpfc 8.3.44: Fix kernel panics from corrupted ndlp list (Rob Evers) [1086839 1063699] - [s390] fix kernel crash due to linkage stack instructions (Hendrik Brueckner) [1067678 1067679] {CVE-2014-2039} - [x86] kvm: rate-limit global clock updates (Andrew Jones) [1090750 1072373] - [kernel] hrtimers: Move SMP function call to thread context (Mateusz Guzik) [1079869 1073129] - [kernel] hrtimers: Support resuming with two or more CPUs online (Mateusz Guzik) [1079869 1073129] - [fs] autofs4: fix device ioctl mount lookup (Ian Kent) [1069630 999708] - [fs] vfs: introduce kern_path_mountpoint() (Ian Kent) [1069630 999708] - [fs] vfs: rename user_path_umountat() to user_path_mountpoint_at() (Ian Kent) [1069630 999708] - [fs] vfs: massage umount_lookup_last() a bit to reduce nesting (Ian Kent) [1069630 999708] - [fs] vfs: allow umount to handle mountpoints without revalidating them (Ian Kent) [1069630 999708] - [fs] ext4: fix WARN_ON from ext4_releasepage() (Carlos Maiolino) [1063508 1036814] - [fs] vfs: fix getname() && do_getname() interaction (Oleg Nesterov) [1075653 1024689] - [x86] apic: Make disabled_cpu_apicid static read_mostly, fix typos (Nigel Croxon) [1082622 980621] - [x86] kexec: Add disable_cpu_apicid kernel parameter (Nigel Croxon) [1082622 980621] - [kvm] x86: use kvm_read/write_guest_virt_system in task switch (Paolo Bonzini) [1070296 1018581] - [kvm] x86: small cleanups to kvm_task_switch (Paolo Bonzini) [1070296 1018581] - [kvm] x86: propagate error from kvm_load_segment_descriptor (Paolo Bonzini) [1070296 1018581] - [kvm] x86: improve save_guest_segment_descriptor (Paolo Bonzini) [1070296 1018581] - [kvm] x86: introduce kvm_write_guest_virt_system (Paolo Bonzini) [1070296 1018581] - [kvm] x86: Fix task switch privilege checks (Paolo Bonzini) [1070296 1018581] - [powerpc] Make function that parses RTAS error logs global (Steve Best) [1091424 1028682] - [powerpc] pseries: Add RTAS event log v6 definition (Steve Best) [1091424 1028682] - [powerpc] pseries: Parse and handle EPOW interrupts (Steve Best) [1091424 1028682] - [fs] nfsd: don't try to reuse an expired DRC entry off the list (Jeff Layton) [1088779 1036972] - [fs] nfsd: when reusing an existing repcache entry, unhash it first (Jeff Layton) [1088779 1036972] [2.6.32-431.19.1] - [kernel] sched: fix cpu_power initialization (Radim Krcmar) [1091826 1065304] - [fs] gfs2: Fix uninitialized VFS inode in gfs2_create_inode (Abhijith Das) [1092002 1059808] [2.6.32-431.18.1] - [block] fix race between request completion and timeout handling (Jeff Moyer) [1089915 919756] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3153 CVE-2014-1737 CVE-2014-1738 CVE-2013-6378 CVE-2014-0203 CVE-2014-1874 CVE-2014-2039 Oracle Linux 7 [3.10.0-123.4.2] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.4.2] - [fs] aio: fix plug memory disclosure and fix reqs_active accounting backport (Jeff Moyer) [1094604 1094605] {CVE-2014-0206} - [fs] aio: plug memory disclosure and fix reqs_active accounting (Mateusz Guzik) [1094604 1094605] {CVE-2014-0206} [3.10.0-123.4.1] - [kernel] futex: Make lookup_pi_state more robust (Larry Woodman) [1104519 1104520] {CVE-2014-3153} - [kernel] futex: Always cleanup owner tid in unlock_pi (Larry Woodman) [1104519 1104520] {CVE-2014-3153} - [kernel] futex: Validate atomic acquisition in futex_lock_pi_atomic() (Larry Woodman) [1104519 1104520] {CVE-2014-3153} - [kernel] futex: prevent requeue pi on same futex (Larry Woodman) [1104519 1104520] {CVE-2014-3153} - [ethernet] qlcnic: Fix ethtool statistics length calculation (Michal Schmidt) [1104972 1099634] - Revert: [kernel] cputime: Default implementation of nsecs -> cputime conversion (Frederic Weisbecker) [1090974 1047732] - Revert: [kernel] cputime: Bring cputime -> nsecs conversion (Frederic Weisbecker) [1090974 1047732] - Revert: [kernel] cputime: Fix jiffies based cputime assumption on steal accounting (Frederic Weisbecker) [1090974 1047732] [3.10.0-123.3.1] - [kernel] mutexes: Give more informative mutex warning in the !lock->owner case (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] mutex: replace CONFIG_HAVE_ARCH_MUTEX_CPU_RELAX with simple ifdef (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] locking/mutexes: Introduce cancelable MCS lock for adaptive spinning (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] locking/mutexes: Modify the way optimistic spinners are queued (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] locking/mutexes: Return false if task need_resched() in mutex_can_spin_on_owner() (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] Restructure the MCS lock defines and locking & Move mcs_spinlock.h into kernel/locking/ (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [misc] arch: Introduce smp_load_acquire(), smp_store_release() (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] locking/mutex: Fix debug_mutexes (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] locking/mutex: Fix debug checks (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] - [kernel] locking/mutexes: Unlock the mutex without the wait_lock (Larry Woodman) [1103629 1087655] [1103630 1087919] [1103631 1087922] [3.10.0-123.2.1] - [net] filter: prevent nla extensions to peek beyond the end of the message (Jiri Benc) [1096780 1096781] {CVE-2014-3144 CVE-2014-3145} - [block] floppy: don't write kernel-only members to FDRAWCMD ioctl output (Denys Vlasenko) [1094316 1094318] {CVE-2014-1737 CVE-2014-1738} - [block] floppy: ignore kernel-only members in FDRAWCMD ioctl input (Denys Vlasenko) [1094316 1094318] {CVE-2014-1737 CVE-2014-1738} - [net] core, nfqueue, openvswitch: Orphan frags in skb_zerocopy and handle errors (Jiri Pirko) [1091345 1079014] {CVE-2014-2568} - [net] ipv4: current group_info should be put after using (Jiri Benc) [1087415 1087416] {CVE-2014-2851} - [fs] dcache: make prepend_name() work correctly when called with negative *buflen (Mikulas Patocka) [1099048 1092746] - [fs] dcache: __dentry_path() fixes (Mikulas Patocka) [1099048 1092746] - [fs] dcache: prepend_path() needs to reinitialize dentry/vfsmount/mnt on restarts (Mikulas Patocka) [1099048 1092746] - [target] tcm_fc: Fix use-after-free of ft_tpg (Andy Grover) [1088110 1071340] - [s390] af_iucv: wrong mapping of sent and confirmed skbs (Hendrik Brueckner) [1103064 1098513] - [s390] kernel: avoid page table walk on user space access (Hendrik Brueckner) [1103062 1097687] - [s390] crypto: fix aes, des ctr mode concurrency finding (Hendrik Brueckner) [1103060 1097686] - [net] openvswitch: fix a possible deadlock and lockdep warning (Flavio Leitner) [1103318 1094867] - [mm] filemap: update find_get_pages_tag() to deal with shadow entries (Johannes Weiner) [1103065 1091795] - [mm] page-writeback: fix divide by zero in pos_ratio_polynom (Rik van Riel) [1103067 1091784] - [mm] page-writeback: add strictlimit feature (Rik van Riel) [1103067 1091784] - [fs] xfs: log vector rounding leaks log space (Brian Foster) [1103059 1091136] - [fs] xfs: truncate_setsize should be outside transactions (Brian Foster) [1103059 1091136] - [fs] gfs2: Fix uninitialized VFS inode in gfs2_create_inode (Abhijith Das) [1097407 1087995] - [kernel] futex: Fix pthread_cond_broadcast() to wake up all threads (Larry Woodman) [1103066 1084757] - [net] ip: generate unique IP identificator if local fragmentation is allowed (Jiri Pirko) [1090490 1076106] - [kernel] cputime: Fix jiffies based cputime assumption on steal accounting (Frederic Weisbecker) [1090974 1047732] - [kernel] cputime: Bring cputime -> nsecs conversion (Frederic Weisbecker) [1090974 1047732] - [kernel] cputime: Default implementation of nsecs -> cputime conversion (Frederic Weisbecker) [1090974 1047732] - [x86] irq, pic: Probe for legacy PIC and set legacy_pic appropriately (Vivek Goyal) [1094973 1037957] - [virt] hyperv/vmbus: Negotiate version 3.0 when running on ws2012r2 hosts (Vivek Goyal) [1094973 1037957] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2851 CVE-2014-3153 CVE-2014-1737 CVE-2014-1738 CVE-2014-2568 CVE-2014-3144 CVE-2014-0206 CVE-2014-3145 Oracle Linux 6 [3.2-6] - fix for CVE-2014-0242 (#1104685) [3.2-4] - fix for CVE-2014-0240 (#1104687) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0240 CVE-2014-0242 Oracle Linux 6 Oracle Linux 7 [1:2.0.9-7.1] - fix CVE-2014-3430: denial of service through maxxing out SSL connections (#1108001) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3430 Oracle Linux 7 [0:7.0.42-6] - Resolves: CVE-2014-0099 Fix possible overflow when parsing - long values from byte array - Resolves: CVE-2014-0096 Information discloser process XSLT - files not subject to same constraint running under - java security manager - Resolves: CVE-2014-0075 Avoid overflow in ChunkedInputFilter. MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0075 CVE-2014-0096 CVE-2014-0099 Oracle Linux 6 Oracle Linux 7 [2.03-3.1.1] - Fixed integer overflow in decompressor Resolves: CVE-2014-4607 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-4607 Oracle Linux 6 [0:6.0.24-72] - Related: CVE-2014-0075 - rebuild to generate javadoc - correctly. previous build generated 0-length javadoc [0:6.0.24-69] - Related: CVE-2014-0075 incomplete [0:6.0.24-68] - Related: CVE-2013-4322. arches needs to be specified - as in arches noarch, so docs/webapps will produce - full files. building for ppc will generate empty - javadoc. [0:6.0.24-67] - Related: CVE-2014-0050 - Related: CVE-2013-4322 [0:6.0.24-66] - Resolves: CVE-2014-0099 - Resolves: CVE-2014-0096 - Resolves: CVE-2014-0075 [0:6.0.24-65] - Related: CVE-2014-0050 copy paste error MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0075 CVE-2014-0096 CVE-2014-0099 Oracle Linux 5 Oracle Linux 6 [3.6.9-169] - resolves: #1105499 - CVE-2014-0244: DoS in nmbd. - resolves: #1108840 - CVE-2014-3493: DoS in smbd with unicode path names. MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0244 CVE-2014-3493 Oracle Linux 7 [4.1.1-35] - resolves: #1105504 - CVE-2014-0244: DoS in nmbd. - resolves: #1108844 - CVE-2014-3493: DoS in smbd with unicode path names. - resolves: #1105573 - CVE-2014-0178: Uninitialized memory exposure. [4.1.1-33] - related: #717484 - Add missing configure line to enable profiling data support. [4.1.1-32] - related: #1082653 - Reuse IPv6 address during the AD domain join. MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0244 CVE-2014-3493 CVE-2014-0178 Oracle Linux 6 Oracle Linux 7 [1.7.0.65-2.5.1.2.0.1.el6_5] - Update DISTRO_NAME in specfile [1.7.0.65-2.5.1.2] - added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115874 [1.7.0.65-2.5.1.1.el6] - updated to security patched icedtea7-forest 2.5.1 - Resolves: rhbz#1115874 [1.7.0.60-2.5.0.1.el6] - update to icedtea7-forest 2.5.0 - Resolves: rhbz#1115874 CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-2483 CVE-2014-2490 CVE-2014-4209 CVE-2014-4216 CVE-2014-4218 CVE-2014-4219 CVE-2014-4221 CVE-2014-4223 CVE-2014-4244 CVE-2014-4252 CVE-2014-4262 CVE-2014-4263 CVE-2014-4266 Oracle Linux 5 [1.7.0.65-2.5.1.2.0.1.el5_10] - Add oracle-enterprise.patch - Fix DISTRO_NAME to 'Enterprise Linux' [1.7.0.65-2.5.1.2] - added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872 [1.7.0.65-2.5.1.1.el5] - updated to security patched icedtea7-forest 2.5.1 - Resolves: rhbz#1115872 [1.7.0.60-2.5.0.1.el5] - update to icedtea7-forest 2.5.0 (rh1114937) - Resolves: rhbz#1115872 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2483 CVE-2014-2490 CVE-2014-4209 CVE-2014-4216 CVE-2014-4218 CVE-2014-4219 CVE-2014-4221 CVE-2014-4223 CVE-2014-4244 CVE-2014-4252 CVE-2014-4262 CVE-2014-4263 CVE-2014-4266 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [1:1.6.0.1-6.1.13.4] - moved to icedteaver 1.13.4 - moved to openjdkver b32 and openjdkdate 15_jul_2014 - added upstreamed patch patch9 rh1115580-unsyncHashMap.patch - Resolves: rhbz#1115580 - Resolves: rhbz#1115867 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2490 CVE-2014-4209 CVE-2014-4216 CVE-2014-4218 CVE-2014-4219 CVE-2014-4244 CVE-2014-4252 CVE-2014-4262 CVE-2014-4263 CVE-2014-4266 Oracle Linux 7 [1.1.1-29.0.1.el7_0.1] - Replace docs/et.png in tarball with blank image [1.1.1-29.el7_0.1] - LSN-2014-0003: Don't expand entities when parsing XML (CVE-2014-0179) - virNetClientSetTLSSession: Restore original signal mask (rhbz#1112689) - Don't use AI_ADDRCONFIG when binding to wildcard addresses (rhbz#1112692) - qemu: Unlock the NWFilter update lock by leaving via the cleanup label (rhbz#1112690) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0179 Oracle Linux 5 Oracle Linux 7 nspr [4.10.2-4] - Rebase to nspr-4.10.6 - Resolves: Bug 1116199 [4.10.2-3] - Retagging - Resolves: rhbz#1032466 nss [3.15.3-7] - Remove an unused patch - Related: Bug 1116199 [3.15.3-6] - Fix race-condition in certificate validation - Resolves: Bug 1116199 [3.15.3-5] - Remove two unused patches - Resolves: Bug 1042683 - nss: Mis-issued ANSSI/DCSSI certificate (MFSA 2013-117) CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1544 Oracle Linux 6 nspr [4.10.6-1] - Rebase to nspr-4.10.6 - Resolves: rhbz#1112135 nss [3.16.1-4.0.1.el6_5] - Added nss-vendor.patch to change vendor [3.16.1-4] - Update some patches on account of the rebase - Resolves: Bug 1099619 [3.16.1-3] - Backport nss-3.12.6 upstream fix required by Firefox 31 - Resolves: Bug 1099619 [3.16.1-2] - Remove two unused patches and apply a needed one that was missed - Resolves: Bug 1112136 - Rebase nss in RHEL 6.5.Z to NSS 3.16.1 [3.16.1-1] - Update to nss-3.16.1 - Resolves: Bug 1112136 - Rebase nss in RHEL 6.5.Z to NSS 3.16.1 nss-util [3.15.6-1] - Update to nss-3.16.1 - Resolves: rhbz#1112136 CRITICAL Copyright 2014 Oracle, Inc. CVE-2013-1740 CVE-2014-1490 CVE-2014-1491 CVE-2014-1492 CVE-2014-1544 CVE-2014-1545 Oracle Linux 5 Oracle Linux 6 [24.7.0-1.0.1.el6_5] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [24.7.0-1] - Update to 24.7.0 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1547 CVE-2014-1555 CVE-2014-1556 CVE-2014-1557 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [24.7.0-1.0.1.el6_5] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one [24.7.0-1] - Update to 24.7.0 ESR CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1547 CVE-2014-1555 CVE-2014-1556 CVE-2014-1557 Oracle Linux 5 Oracle Linux 6 [2.2.15-31.0.1.el6_5] - replace index.html with Oracle's index page oracle_index.html - update vstring in specfile [2.2.15-31] - mod_cgid: add security fix for CVE-2014-0231 - mod_deflate: add security fix for CVE-2014-0118 - mod_status: add security fix for CVE-2014-0226 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0118 CVE-2014-0226 CVE-2014-0231 Oracle Linux 7 [2.4.6-18.0.1.el7_0] - replace index.html with Oracle's index page oracle_index.html [2.4.6-18] - mod_cgid: add security fix for CVE-2014-0231 (#1120607) - mod_proxy: add security fix for CVE-2014-0117 (#1120607) - mod_deflate: add security fix for CVE-2014-0118 (#1120607) - mod_status: add security fix for CVE-2014-0226 (#1120607) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120607) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0118 CVE-2014-0226 CVE-2014-0231 CVE-2013-4352 CVE-2014-0117 Oracle Linux 7 [3.10.0-123.4.4] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.4.4] - [net] l2tp_ppp: fail when socket option level is not SOL_PPPOL2TP (Petr Matousek) [1119465 1119466] {CVE-2014-4943} [3.10.0-123.4.3] - [x86] ptrace: force IRET path after a ptrace_stop() (Oleg Nesterov) [1115934 1115935] {CVE-2014-4699} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4943 CVE-2014-4699 Oracle Linux 6 [2.6.32-431.20.5] - [netdrv] pppol2tp: fail when socket option level is not SOL_PPPOL2TP [1119461 1119462] {CVE-2014-4943} [2.6.32-431.20.4] - [kernel] utrace: force IRET path after utrace_finish_vfork() (Oleg Nesterov) [1115932 1115933] {CVE-2014-4699} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4943 CVE-2014-4699 Oracle Linux 5 kernel [2.6.18-371.11.1.0.1] - ocfs2: dlm: fix recovery hung (Junxiao Bi) [orabug 13956772] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] [2.6.18-371.11.1] - [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021} [2.6.18-371.10.1] - [net] ipv6: fix overlap check for fragments (Francesco Fusco) [1107932 995277] MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2678 CVE-2014-4021 Oracle Linux 5 kernel [2.6.18-371.11.1] - [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021} [2.6.18-371.10.1] - [net] ipv6: fix overlap check for fragments (Francesco Fusco) [1107932 995277] MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2678 CVE-2014-4021 Oracle Linux 7 [1.5.3-60.el7_0.5] - kvm-Allow-mismatched-virtio-config-len.patch [bz#1095782] - Resolves: bz#1095782 (CVE-2014-0182 qemu-kvm: qemu: virtio: out-of-bounds buffer write on state load with invalid config_len [rhel-7.0.z]) [1.5.3-60.el7_0.4] - kvm-zero-initialize-KVM_SET_GSI_ROUTING-input.patch [bz#1110693] - kvm-skip-system-call-when-msi-route-is-unchanged.patch [bz#1110693] - Resolves: bz#1110693 (2x RHEL 5.10 VM running on RHEL 7 KVM have low TCP_STREAM throughput) [1.5.3-60.el7_0.3] - kvm-virtio-net-fix-buffer-overflow-on-invalid-state-load.patch [bz#1095677] - kvm-virtio-net-out-of-bounds-buffer-write-on-load.patch [bz#1095684] - kvm-virtio-net-out-of-bounds-buffer-write-on-invalid-sta.patch [bz#1095689] - kvm-virtio-out-of-bounds-buffer-write-on-invalid-state-l.patch [bz#1095694] - kvm-virtio-avoid-buffer-overrun-on-incoming-migration.patch [bz#1095737] - kvm-virtio-scsi-fix-buffer-overrun-on-invalid-state-load.patch [bz#1095741] - kvm-virtio-validate-config_len-on-load.patch [bz#1095782] - kvm-virtio-validate-num_sg-when-mapping.patch [bz#1095765] - kvm-virtio-allow-mapping-up-to-max-queue-size.patch [bz#1095765] - kvm-vmstate-add-VMS_MUST_EXIST.patch [bz#1095706] - kvm-vmstate-add-VMSTATE_VALIDATE.patch [bz#1095706] - kvm-hpet-fix-buffer-overrun-on-invalid-state-load.patch [bz#1095706] - kvm-hw-pci-pcie_aer.c-fix-buffer-overruns-on-invalid-sta.patch [bz#1095714] - kvm-usb-sanity-check-setup_index-setup_len-in-post_load.patch [bz#1095746] - kvm-usb-sanity-check-setup_index-setup_len-in-post_l2.patch [bz#1095746] - kvm-usb-fix-up-post-load-checks.patch [bz#1096828] - kvm-XBZRLE-Fix-qemu-crash-when-resize-the-xbzrle-cache.patch [bz#1110191] - kvm-Provide-init-function-for-ram-migration.patch [bz#1110191] - kvm-Init-the-XBZRLE.lock-in-ram_mig_init.patch [bz#1110191] - kvm-XBZRLE-Fix-one-XBZRLE-corruption-issues.patch [bz#1110191] - kvm-Count-used-RAMBlock-pages-for-migration_dirty_pages.patch [bz#1110189] - kvm-qcow-correctly-propagate-errors.patch [bz#1097229] - kvm-qcow1-Make-padding-in-the-header-explicit.patch [bz#1097229] - kvm-qcow1-Check-maximum-cluster-size.patch [bz#1097229] - kvm-qcow1-Validate-L2-table-size-CVE-2014-0222.patch [bz#1097229] - kvm-qcow1-Validate-image-size-CVE-2014-0223.patch [bz#1097236] - kvm-qcow1-Stricter-backing-file-length-check.patch [bz#1097236] - kvm-char-restore-read-callback-on-a-reattached-hotplug-c.patch [bz#1110219] - kvm-qcow2-Free-preallocated-zero-clusters.patch [bz#1110188] - kvm-qemu-iotests-Discard-preallocated-zero-clusters.patch [bz#1110188] - Resolves: bz#1095677 (CVE-2013-4148 qemu-kvm: qemu: virtio-net: buffer overflow on invalid state load [rhel-7.0.z]) - Resolves: bz#1095684 (CVE-2013-4149 qemu-kvm: qemu: virtio-net: out-of-bounds buffer write on load [rhel-7.0.z]) - Resolves: bz#1095689 (CVE-2013-4150 qemu-kvm: qemu: virtio-net: out-of-bounds buffer write on invalid state load [rhel-7.0.z]) - Resolves: bz#1095694 (CVE-2013-4151 qemu-kvm: qemu: virtio: out-of-bounds buffer write on invalid state load [rhel-7.0.z]) - Resolves: bz#1095706 (CVE-2013-4527 qemu-kvm: qemu: hpet: buffer overrun on invalid state load [rhel-7.0.z]) - Resolves: bz#1095714 (CVE-2013-4529 qemu-kvm: qemu: hw/pci/pcie_aer.c: buffer overrun on invalid state load [rhel-7.0.z]) - Resolves: bz#1095737 (CVE-2013-6399 qemu-kvm: qemu: virtio: buffer overrun on incoming migration [rhel-7.0.z]) - Resolves: bz#1095741 (CVE-2013-4542 qemu-kvm: qemu: virtio-scsi: buffer overrun on invalid state load [rhel-7.0.z]) - Resolves: bz#1095746 (CVE-2013-4541 qemu-kvm: qemu: usb: insufficient sanity checking of setup_index+setup_len in post_load [rhel-7.0.z]) - Resolves: bz#1095765 (CVE-2013-4535 CVE-2013-4536 qemu-kvm: qemu: virtio: insufficient validation of num_sg when mapping [rhel-7.0.z]) - Resolves: bz#1095782 (CVE-2014-0182 qemu-kvm: qemu: virtio: out-of-bounds buffer write on state load with invalid config_len [rhel-7.0.z]) - Resolves: bz#1096828 (CVE-2014-3461 qemu-kvm: Qemu: usb: fix up post load checks [rhel-7.0.z]) - Resolves: bz#1097229 (CVE-2014-0222 qemu-kvm: Qemu: qcow1: validate L2 table size to avoid integer overflows [rhel-7.0.z]) - Resolves: bz#1097236 (CVE-2014-0223 qemu-kvm: Qemu: qcow1: validate image size to avoid out-of-bounds memory access [rhel-7.0.z]) - Resolves: bz#1110188 (qcow2 corruptions (leaked clusters after installing a rhel7 guest using virtio_scsi)) - Resolves: bz#1110189 (migration can not finish with 1024k 'remaining ram' left after hotunplug 4 nics) - Resolves: bz#1110191 (Reduce the migrate cache size during migration causes qemu segment fault) - Resolves: bz#1110219 (Guest can't receive any character transmitted from host after hot unplugging virtserialport then hot plugging again) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4148 CVE-2013-4151 CVE-2013-4535 CVE-2013-4536 CVE-2013-4541 CVE-2013-4542 CVE-2013-6399 CVE-2014-0182 CVE-2014-3461 CVE-2013-4149 CVE-2013-4150 CVE-2013-4527 CVE-2013-4529 CVE-2014-0222 CVE-2014-0223 Oracle Linux 6 [2.6.32-431.23.3] - [netdrv] pppol2tp: fail when socket option level is not SOL_PPPOL2TP [1119461 1119462] {CVE-2014-4943} [2.6.32-431.23.2] - [kernel] utrace: force IRET path after utrace_finish_vfork() (Oleg Nesterov) [1115932 1115933] {CVE-2014-4699} [2.6.32-431.23.1] - [net] ip_tunnel: fix ip_tunnel_find to return NULL in case the tunnel is not there (Jiri Pirko) [1107931 1104503] - [netdrv] bnx2x: Fix kernel crash and data miscompare after EEH recovery (Michal Schmidt) [1109269 1029600] - [netdrv] bnx2x: Adapter not recovery from EEH error injection (Michal Schmidt) [1109269 1029600] - [scsi] qla2xxx: Don't check for firmware hung during the reset context for ISP82XX (Chad Dupuis) [1110658 1054299] - [scsi] qla2xxx: Clear loop_id for ports that are marked lost during fabric scanning (Chad Dupuis) [1110658 1054299] - [scsi] qla2xxx: Issue abort command for outstanding commands during cleanup when only firmware is alive (Chad Dupuis) [1110658 1054299] - [scsi] qla2xxx: Reduce the time we wait for a command to complete during SCSI error handling (Chad Dupuis) [1110658 1054299] - [scsi] qla2xxx: Avoid escalating the SCSI error handler if the command is not found in firmware (Chad Dupuis) [1110658 1054299] - [scsi] qla2xxx: Set host can_queue value based on available resources (Chad Dupuis) [1110658 1054299] - [net] filter: prevent nla extensions to peek beyond the end of the message (Jiri Benc) [1096778 1096779] {CVE-2014-3144 CVE-2014-3145} - [net] bridge: add empty br_mdb_init() and br_mdb_uninit() definitions (Vlad Yasevich) [1106472 1097915] - [net] bridge: Correctly unregister MDB rtnetlink handlers (Vlad Yasevich) [1106472 1097915] - [net] rds: prevent dereference of a NULL device in rds_iw_laddr_check (Radomir Vrbovsky) [1083276 1083277] {CVE-2014-2678} - [s390] crypto: fix aes, des ctr mode concurrency finding (Hendrik Brueckner) [1110168 1096328] - [s390] crypto: fix des and des3_ede ctr concurrency issue (Hendrik Brueckner) [1109885 1065404] - [s390] crypto: fix des and des3_ede cbc concurrency issue (Hendrik Brueckner) [1109883 1065398] - [kernel] futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi() (Mateusz Guzik) [1097759 1097760] {CVE-2012-6647} - [libata] ahci: accommodate tag ordered controller (David Milburn) [1099725 1083748] - [net] mac80211: crash dues to AP powersave TX vs. wakeup race (Jacob Tanenbaum) [1083531 1083532] {CVE-2014-2706} - [netdrv] ath9k: tid->sched race in ath_tx_aggr_sleep() (Jacob Tanenbaum) [1083249 1083250] {CVE-2014-2672} - [kernel] hrtimer: Prevent all reprogramming if hang detected (Prarit Bhargava) [1096059 1075805] - [net] ipv4: current group_info should be put after using (Jiri Benc) [1087412 1087414] {CVE-2014-2851} - [kernel] tracing: Reset ring buffer when changing trace_clocks (Marcelo Tosatti) [1093984 1018138] - [net] rds: dereference of a NULL device (Jacob Tanenbaum) [1079218 1079219] {CVE-2013-7339} - [s390] crypto: fix concurrency issue in aes-ctr mode (Hendrik Brueckner) [1110169 1063478] - [net] ipv4: processing ancillary IP_TOS or IP_TTL (Francesco Fusco) [1094403 990694] - [net] ipv4: IP_TOS and IP_TTL can be specified as ancillary data (Francesco Fusco) [1094403 990694] - [s390] crypto: Fix aes-xts parameter corruption (Hendrik Brueckner) [1110170 1043540] - [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [1103068 1007459] - [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [1103068 1007459] - [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [1103068 1007459] - [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [1103068 1007459] - [fs] ext4: replace cut'n'pasted llseek code with generic_file_llseek_size (Eric Sandeen) [1103068 1007459] - [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [1103068 1007459] - [net] bridge: disable snooping if there is no querier (Vlad Yasevich) [1090749 1090670] - [net] Revert 'bridge: only expire the mdb entry when query is received' (Vlad Yasevich) [1090749 1090670] - [net] Revert 'bridge: fix some kernel warning in multicast timer' (Vlad Yasevich) [1090749 1090670] - [net] Revert 'bridge: do not call setup_timer() multiple times' (Vlad Yasevich) [1090749 1090670] - [net] Revert 'bridge: update mdb expiration timer upon reports' (Vlad Yasevich) [1090749 1090670] - [kernel] futex: Make lookup_pi_state more robust (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [kernel] futex: Always cleanup owner tid in unlock_pi (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [kernel] futex: Validate atomic acquisition in futex_lock_pi_atomic() (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [kernel] futex: prevent requeue pi on same futex (Jerome Marchand) [1104516 1104517] {CVE-2014-3153} - [fs] autofs4: fix device ioctl mount lookup (Ian Kent) [1069630 999708] - [fs] vfs: introduce kern_path_mountpoint() (Ian Kent) [1069630 999708] - [fs] vfs: rename user_path_umountat() to user_path_mountpoint_at() (Ian Kent) [1069630 999708] - [fs] vfs: massage umount_lookup_last() a bit to reduce nesting (Ian Kent) [1069630 999708] - [fs] vfs: allow umount to handle mountpoints without revalidating them (Ian Kent) [1069630 999708] - Revert: [fs] vfs: allow umount to handle mountpoints without revalidating them (Ian Kent) [1069630 999708] - Revert: [fs] vfs: massage umount_lookup_last() a bit to reduce nesting (Ian Kent) [1069630 999708] - Revert: [fs] vfs: rename user_path_umountat() to user_path_mountpoint_at() (Ian Kent) [1069630 999708] - Revert: [fs] vfs: introduce kern_path_mountpoint() (Ian Kent) [1069630 999708] - Revert: [fs] autofs4: fix device ioctl mount lookup (Ian Kent) [1069630 999708] - [block] floppy: don't write kernel-only members to FDRAWCMD ioctl output (Denys Vlasenko) [1094308 1094310] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD ioctl input (Denys Vlasenko) [1094308 1094310] {CVE-2014-1738 CVE-2014-1737} - [fs] vfs: fix autofs/afs/etc magic mountpoint breakage (Frantisek Hrbata) [1094370 1079347] {CVE-2014-0203} [2.6.32-431.22.1] - [fs] cifs: Check if prefixpath starts with '\' in cifs_parse_mount_options (Sachin Prabhu) [1107503 1104268] - [virt] kvm: enable PCI multiple-segments for pass-through device (Michael S. Tsirkin) [1103972 1103471] - [fs] GFS2: Lock i_mutex and use a local gfs2_holder for fallocate (Robert S Peterson) [1102313 1061910] [2.6.32-431.21.1] - [kvm] mmu: fix incorrect check of guest cr4 bits (Bandan Das) [1103821 1007164] - [drm] nouveau: fix nasty bug which can clobber SOR0's clock setup (Ben Skeggs) [1100574 1095796] - [net] tcp: tsq: restore minimal amount of queueing (Jiri Pirko) [1103825 1044053] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2851 CVE-2013-7339 CVE-2014-3144 CVE-2014-3145 CVE-2014-2678 CVE-2012-6647 CVE-2014-2672 CVE-2014-2706 Oracle Linux 5 [1:0.9-6] - updatesd: prevent installing unsigned packages. - Resolves: rhbz#1125185 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0022 Oracle Linux 7 [4.1.1-37] - resolves: #1126013 - CVE-2014-3560: remote code execution in nmbd. [4.1.1-36] - resolves: #1115490 - Fix potential Samba file corruption. IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3560 Oracle Linux 6 [4.0.0-63.rc4] - resolves: #1126011 - CVE-2014-3560: remote code execution in nmbd. [4.0.0-62.rc4] - resolves: #1105501 - CVE-2014-0244: DoS in nmbd. - resolves: #1108842 - CVE-2014-3493: DoS in smbd with unicode path names. - resolves: #1105571 - CVE-2014-0178: Uninitialized memory exposure. IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3560 Oracle Linux 7 [2.3.5-3] - Resolves: rhbz1121917 - CVE-2014-3490: XXE via parameter entities MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3490 Oracle Linux 5 Oracle Linux 6 [5.3.3-27.1] - core: type confusion issue in phpinfo(). CVE-2014-4721 - date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712 - core: fix heap-based buffer overflow in DNS TXT record parsing. CVE-2014-4049 - core: unserialize() SPL ArrayObject / SPLObjectStorage type confusion flaw. CVE-2014-3515 - fileinfo: out-of-bounds memory access in fileinfo. CVE-2014-2270 - fileinfo: unrestricted recursion in handling of indirect type rules. CVE-2014-1943 - fileinfo: out of bounds read in CDF parser. CVE-2012-1571 - fileinfo: cdf_check_stream_offset boundary check. CVE-2014-3479 - fileinfo: cdf_count_chain insufficient boundary check. CVE-2014-3480 - fileinfo: cdf_unpack_summary_info() excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0237 CVE-2014-0238 CVE-2014-3479 CVE-2014-3480 CVE-2014-3515 CVE-2014-4049 CVE-2014-4721 CVE-2012-1571 CVE-2013-6712 CVE-2014-1943 CVE-2014-2270 Oracle Linux 7 [5.4.16-23] - fileinfo: cdf_unpack_summary_info() excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 - fileinfo: cdf_check_stream_offset insufficient boundary check. CVE-2014-3479 - fileinfo: cdf_count_chain insufficient boundary check CVE-2014-3480 - fileinfo: cdf_read_short_sector insufficient boundary check. CVE-2014-0207 - fileinfo: cdf_read_property_info insufficient boundary check. CVE-2014-3487 - fileinfo: fix extensive backtracking CVE-2013-7345 - core: type confusion issue in phpinfo(). CVE-2014-4721 - core: fix heap-based buffer overflow in DNS TXT record parsing. CVE-2014-4049 - core: unserialize() SPL ArrayObject / SPLObjectStorage type confusion flaw. CVE-2014-3515 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-7345 CVE-2014-0207 CVE-2014-0237 CVE-2014-0238 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 CVE-2014-3515 CVE-2014-4049 CVE-2014-4721 Oracle Linux 7 [3.10.0-123.6.3] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.6.3] - [net] l2tp_ppp: fail when socket option level is not SOL_PPPOL2TP (Petr Matousek) [1119465 1119466] {CVE-2014-4943} [3.10.0-123.6.2.el7] - [s390] ptrace: correct insufficient sanitization when setting psw mask (Hendrik Brueckner) [1114090 1113673] [3.10.0-123.6.1.el7] - [x86] ptrace: force IRET path after a ptrace_stop() (Oleg Nesterov) [1115934 1115935] {CVE-2014-4699} [3.10.0-123.5.1.el7] - [net] ipv4/tunnels: fix an oops when using ipip/sit with IPsec (Jiri Pirko) [1114957 1108857] - [scsi] Add timeout to avoid infinite command retry (Ewan Milne) [1114468 1061871] - [net] filter: let bpf_tell_extensions return SKF_AD_MAX (Jiri Benc) [1114404 1079524] - [net] filter: introduce SO_BPF_EXTENSIONS (Jiri Benc) [1114404 1079524] - [net] sctp: Fix sk_ack_backlog wrap-around problem (Daniel Borkmann) [1113971 1112726] {CVE-2014-4667} - [tty] Set correct tty name in 'active' sysfs attribute (Denys Vlasenko) [1113467 1066403] - [powerpc] tm: Disable IRQ in tm_recheckpoint (Larry Woodman) [1113150 1088224] - [scsi] qla2xxx: Update version number to 8.06.00.08.07.0-k3 (Chad Dupuis) [1112389 1090378] - [scsi] qla2xxx: Reduce the time we wait for a command to complete during SCSI error handling (Chad Dupuis) [11123 89 1090378] - [scsi] qla2xxx: Clear loop_id for ports that are marked lost during fabric scanning (Chad Dupuis) [1112389 109037 8] - [scsi] qla2xxx: Avoid escalating the SCSI error handler if the command is not found in firmware (Chad Dupuis) [11 12389 1090378] - [scsi] qla2xxx: Don't check for firmware hung during the reset context for ISP82XX (Chad Dupuis) [1112389 1090378 ] - [scsi] qla2xxx: Issue abort command for outstanding commands during cleanup when only firmware is alive (Chad Dup uis) [1112389 1090378] - [fs] nfs: Apply NFS_MOUNT_CMP_FLAGMASK to nfs_compare_remount_data() (Scott Mayhew) [1109407 1103805] - [ethernet] bnx2x: Fix kernel crash and data miscompare after EEH recovery (Michal Schmidt) [1107721 1101808] - [net] gro: restore frag0 optimization (and fix crash) (Michal Schmidt) [1099950 1069741] - [watchdog] hpwdt: display informative string (Nigel Croxon) [1096961 1074038] - [net] Use netlink_ns_capable to verify the permisions of netlink messages (Jiri Benc) [1094271 1094272] {CVE-2014 -0181} - [net] netlink: Add variants of capable for use on netlink messages (Jiri Benc) [1094271 1094272] {CVE-2014-0181} - [net] diag: Move the permission check in sock_diag_put_filterinfo to packet_diag_dump (Jiri Benc) [1094271 109427 2] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094271 1094272] {CVE-2014-0181} - [net] diag: Fix ns_capable check in sock_diag_put_filterinfo (Jiri Benc) [1094271 1094272] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094271 1094272] {CVE-2014-0181} - [kernel] cputime: Fix jiffies based cputime assumption on steal accounting (Frederic Weisbecker) [1090974 1047732 ] - [kernel] cputime: Bring cputime -> nsecs conversion (Frederic Weisbecker) [1090974 1047732] - [kernel] cputime: Default implementation of nsecs -> cputime conversion (Frederic Weisbecker) [1090974 1047732] - [net] mac80211: fix crash due to AP powersave TX vs. wakeup race (Jacob Tanenbaum) [1083533 1083534] {CVE-2014-27 06} - [wireless] ath9k: tid->sched race in ath_tx_aggr_sleep() (Jacob Tanenbaum) [1083251 1083252] {CVE-2014-2672} - [powerpc] tm: Fix crash when forking inside a transaction (Radomir Vrbovsky) [1083214 1083215] {CVE-2014-2673} - [fs] aio: fix plug memory disclosure and fix reqs_active accounting backport (Jeff Moyer) [1094604 1094605] {CVE- 2014-0206} - [fs] aio: plug memory disclosure and fix reqs_active accounting (Mateusz Guzik) [1094604 1094605] {CVE-2014-0206} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2672 CVE-2014-2706 CVE-2014-0181 CVE-2014-2673 CVE-2014-3534 CVE-2014-4667 Oracle Linux 6 Oracle Linux 7 [1.2.11.15-34] - Release 1.2.11.15-34 - Resolves: #1123861 EMBARGOED CVE-2014-3562 unauthenticated information disclosure [rhel-6.5.z] (DS 616, BZ 1123477) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3562 Oracle Linux 7 [0:7.0.42-8] - Resolves: CVE-2013-4590 - Resolves: CVE-2014-0119 [0:7.0.42-7] - Related: CVE-2014-0099 incrementing release so rpmdiff doesn't complain about - no new entries in the changelog [0:7.0.42-6] - Resolves: CVE-2014-0099 Fix possible overflow when parsing - long values from byte array - Resolves: CVE-2014-0096 Information discloser process XSLT - files not subject to same constraint running under - java security manager - Resolves: CVE-2014-0075 Avoid overflow in ChunkedInputFilter. LOW Copyright 2014 Oracle, Inc. CVE-2014-0119 Oracle Linux 6 [0:6.0.24-78] - Related: CVE-2013-4590 - remove xml schema names javaee_5, - javaee_web_services_1_2, and javaee_web_services_1_2_client - from descriptor.DigesterFactory initialization. These - schema definitions are not relevant to 6.0.24 as the version - of their spec did not exist at the time. [0:6.0.24-77] - Resolves: CVE-2014-0227 [0:6.0.24-76] - Related: CVE-2013-4590 incrementing release. added - excludearch to the spec file for ppc and ppc64. building - on ppc produces empty javadoc files. [0:6.0.24-74] - Related: CVE-2013-4590 incrementing release [0:6.0.24-73] - Resolves: CVE-2013-4590 - Resolves: CVE-2014-0119 LOW Copyright 2014 Oracle, Inc. CVE-2014-0119 CVE-2013-4590 Oracle Linux 6 Oracle Linux 7 [1.0.1e-34.4] - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3507 - avoid memory leak in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3509 - fix race condition when parsing server hello - fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS - fix CVE-2014-3511 - disallow protocol downgrade via fragmentation MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3509 CVE-2014-3510 CVE-2014-3511 Oracle Linux 5 [0.9.8e-27.4] - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS [0.9.8e-27.3] - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability [0.9.8e-27.1] - replace expired GlobalSign Root CA certificate in ca-bundle.crt MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0221 CVE-2014-3505 CVE-2014-3506 CVE-2014-3508 CVE-2014-3510 Oracle Linux 7 nss [3.16.2-2.0.1.el7_0] - Added nss-vendor.patch to change vendor [3.16.2-2] - Restore missing options descriptions fix for certutil manpage - Document certutil options --dump-ext-val, --extGeneric, and --extSAN - Related: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 [3.16.2-1] - Rebase to nss-3.16.2 - Resolves: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 (FF 31) - Fix test failure detection in the %check section - Move removal of unwanted source directories to the end of the %prep section - Update various patches on account of the rebase - Remove unused patches rendered obsolete by the rebase - Fix libssl and test patches that disable ssl2 support - Replace expired PayPal test certificate that breaks the build nss-softokn [3.16.2-1] - Update to nss-3.16.2 - Resolves: Bug 1124659 - Rebase RHEL 7.1 to at least NSS-SOFTOKN 3.16.1 (FF 31) nss-util [3.16.2-1] - Update to nss-3.16.2 - Resolves: Bug 1124659 - Rebase RHEL-7.0 to at least NSS 3.16.1 (FF 31) LOW Copyright 2014 Oracle, Inc. CVE-2014-1492 Oracle Linux 6 [0.12.1.2-2.415.el6_5.14] - The commit for zrelease .13 was incomplete; the changes to qemu-kvm.spec did not include the '%patchNNNN -p1' lines for patches 4647 through 4655; so although the patch files themselves were committed, the srpm build did not pick them up. In addition, the commit log did not describe the patches. This commit corrects these problems and bumps the zrelease to .14. [0.12.1.2-2.415.el6_5.13] - kvm-block-Create-proper-size-file-for-disk-mirror.patch [bz#1109715] - kvm-block-Fix-bdrv_is_allocated-return-value.patch [bz#1109715] - kvm-scsi-bus-prepare-scsi_req_new-for-introduction-of-pars.patch [bz#1125131] - kvm-scsi-bus-introduce-parse_cdb-in-SCSIDeviceClass-and-SC.patch [bz#1125131] - kvm-scsi-block-extract-scsi_block_is_passthrough.patch [bz#1125131] - kvm-scsi-block-scsi-generic-implement-parse_cdb.patch [bz#1125131] - kvm-virtio-scsi-implement-parse_cdb.patch [bz#1125131] - kvm-virtio-scsi-Fix-reset-callback-for-virtio-scsi.patch [bz#1123271] - kvm-virtio-scsi-add-ioeventfd-support.patch [bz#1123271] - Resolves: bz#1109715 (live incremental migration of vm with common shared base, size(disk) > size(base) transfers unallocated sectors, explodes disk on dest) - Resolves: bz#1123271 (Enable ioenventfd for virtio-scsi-pci) - Resolves: bz#1125131 ([FJ6.5 Bug] SCSI command issued from KVM guest doesn't reach target device) [0.12.1.2-2.415.el6_5.12] - kvm-qcow-Return-real-error-code-in-qcow_open.txt [bz#1097225] - kvm-qcow1-Make-padding-in-the-header-explicit.txt [bz#1097225] - kvm-qcow1-Check-maximum-cluster-size.txt [bz#1097225] - kvm-qcow1-Validate-L2-table-size-CVE-2014-0222.txt [bz#1097225] - kvm-qcow1-Validate-image-size-CVE-2014-0223.txt [bz#1097234] - kvm-qcow1-Stricter-backing-file-length-check.txt [bz#1097234] - Resolves: bz#1097225 (CVE-2014-0222 qemu-kvm: Qemu: qcow1: validate L2 table size to avoid integer overflows [rhel-6.5.z]) - Resolves: bz#1097234 (CVE-2014-0223 qemu-kvm: Qemu: qcow1: validate image size to avoid out-of-bounds memory access [rhel-6.5.z]) [0.12.1.2-2.415.el6_5.11] - kvm-block-Fix-bdrv_is_allocated-for-short-backing-files.patch [bz#1109715] - Resolves: bz#1109715 (live incremental migration of vm with common shared base, size(disk) > size(base) transfers unallocated sectors, explodes disk on dest) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0222 CVE-2014-0223 Oracle Linux 7 [3.4-12] - fix possible privilege escalation in setuid() (CVE-2014-0240) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0240 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [2.12-1.132.4] - Remove gconv transliteration loadable modules support (CVE-2014-5119, - _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475, IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0475 CVE-2014-5119 Oracle Linux 5 kernel [2.6.18-371.12.1.0.1] - ocfs2: dlm: fix recovery hung (Junxiao Bi) [orabug 13956772] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3917 Oracle Linux 5 kernel [2.6.18-371.12.1] - [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768] MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3917 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 firefox [24.8.0-1.0.1.el7_0] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one [24.8.0-1] - Update to 24.8.0 ESR xulrunner [24.8.0-1.0.1.el7_0] - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNER_VERSION from SOURCE21 [24.8.0-1] - Update to 24.8.0 ESR CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1562 CVE-2014-1567 Oracle Linux 5 Oracle Linux 6 [24.8.0-1.0.1.el6_5] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [24.8.0-1] - Update to 24.8.0 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1562 CVE-2014-1567 Oracle Linux 7 [4.2.5-5] - Fix MITM security vulnerability - Resolves: CVE-2014-3577 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3577 Oracle Linux 7 [7:3.3.8-12] - Resolves: #1134933 - CVE-2014-3609 assertion failure in header processing IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3609 Oracle Linux 5 Oracle Linux 6 [7:3.1.10-22] - Resolves: #1134936 - CVE-2013-4115 buffer overflow when processing overly long DNS names [7:3.1.10-21] - Resolves: #1134936 - CVE-2014-3609 assertion failure in header processing IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3609 CVE-2013-4115 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [1:3.1-16] - Fix MITM security vulnerability - Resolves: CVE-2014-3577 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3577 Oracle Linux 6 [2.6.32-431.29.2] - [kernel] futex: Fix errors in nested key ref-counting (Denys Vlasenko) [1094457 1094458] {CVE-2014-0205} - [net] vxlan: fix NULL pointer dereference (Jiri Benc) [1114549 1096351] {CVE-2014-3535} [2.6.32-431.29.1] - [mm] hugetlb: ensure hugepage access is denied if hugepages are not supported (Gustavo Duarte) [1118782 1086450] - [security] keys: Increase root_maxkeys and root_maxbytes sizes (Steve Dickson) [1115542 1113607] - [fs] lockd: Ensure that nlmclnt_block resets block->b_status after a server reboot (Steve Dickson) [1110180 959006] - [net] filter: add vlan tag access (Jiri Benc) [1108526 1082097] - [net] filter: add XOR operation (Jiri Benc) [1108526 1082097] - [net] filter: add SKF_AD_RXHASH and SKF_AD_CPU (Jiri Benc) [1108526 1082097] - [net] filter: Socket filter ancilliary data access for skb->dev->type (Jiri Benc) [1108526 1082097] - [net] filter: Add SKF_AD_QUEUE instruction (Jiri Benc) [1108526 1082097] - [net] filter: ingress socket filter by mark (Jiri Benc) [1108526 1082097] - [netdrv] bonding: look for bridge IPs in arp monitoring (Veaceslav Falico) [1102794 704190] - [s390] af_iucv: wrong mapping of sent and confirmed skbs (Hendrik Brueckner) [1112390 1102248] - [s390] af_iucv: recvmsg problem for SOCK_STREAM sockets (Hendrik Brueckner) [1112390 1102248] - [s390] af_iucv: fix recvmsg by replacing skb_pull() function (Hendrik Brueckner) [1112390 1102248] - [s390] kernel: avoid page table walk on user space access (Hendrik Brueckner) [1111194 1099146] - [s390] qeth: postpone freeing of qdio memory (Hendrik Brueckner) [1112134 1094379] - [s390] qeth: Fix retry logic in hardsetup (Hendrik Brueckner) [1112134 1094379] - [s390] qeth: Recognize return codes of ccw_device_set_online (Hendrik Brueckner) [1112134 1094379] - [s390] qdio: remove API wrappers (Hendrik Brueckner) [1112134 1094379] - [scsi] Ensure medium access timeout counter resets (David Jeffery) [1117153 1036884] - [scsi] Fix error handling when no ULD is attached (David Jeffery) [1117153 1036884] - [scsi] Handle disk devices which can not process medium access commands (David Jeffery) [1117153 1036884] - [fs] nfs: Fix calls to drop_nlink() (Steve Dickson) [1099607 1093819] - [mm] swap: do not skip lowest_bit in scan_swap_map() scan loop (Rafael Aquini) [1099728 1060886] - [mm] swap: fix shmem swapping when more than 8 areas (Rafael Aquini) [1099728 1060886] - [mm] swap: fix swapon size off-by-one (Rafael Aquini) [1099728 1060886] - [md] avoid deadlock when dirty buffers during md_stop (Jes Sorensen) [1121541 994724] - [x86] hyperv: bypass the timer_irq_works() check (Jason Wang) [1112226 1040349] [2.6.32-431.28.1] - [kernel] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102704 1102705] {CVE-2014-3917} - [net] ipv4: fix route cache rebuilds (Jiri Pirko) [1113824 1111631] - [fs] nfsd: notify_change needs elevated write count (Mateusz Guzik) [1110177 1105057] - [fs] nfsv4: close needs to handle NFS4ERR_ADMIN_REVOKED (Dave Wysochanski) [1096397 1082127] - [fs] pipe: skip file_update_time on frozen fs (Eric Sandeen) [1114405 1093077] - [fs] nfs: Fail the truncate() if the lock/open stateid is invalid (Steve Dickson) [1090613 1075123] - [fs] nfs: Servers should only check SETATTR stateid open mode on size change (Steve Dickson) [1090613 1075123] - [fs] nfs: Fail data server I/O if stateid represents a lost lock (Steve Dickson) [1090613 1075123] - [fs] nfs: Fix the return value of nfs4_select_rw_stateid (Steve Dickson) [1090613 1075123] - [fs] nfs: Use the open stateid if the delegation has the wrong mode (Steve Dickson) [1090613 1075123] - [fs] nfs: nfs4_stateid_is_current should return 'true' for an invalid stateid (Steve Dickson) [1090613 1075123] - [fs] nfs: fix error return in nfs4_select_rw_stateid (Steve Dickson) [1090613 1075123] - [fs] nfs: Document the recover_lost_locks kernel parameter (Jeff Layton) [1089359 963785] - [fs] nfs: Don't try to recover NFSv4 locks when they are lost (Jeff Layton) [1089359 963785] - [fs] nfs: Fix handling of partially delegated locks (Jeff Layton) [1120074 959788] - [fs] nfs: Convert the nfs4_lock_state->ls_flags to a bit field (Jeff Layton) [1120074 959788] - [x86] Optimize switch_mm() for multi-threaded workloads (Rik van Riel) [1115821 991518] - [netdrv] pppol2tp: fail when socket option level is not SOL_PPPOL2TP [1119461 1119462] {CVE-2014-4943} - [kernel] utrace: force IRET path after utrace_finish_vfork() (Oleg Nesterov) [1115932 1115933] {CVE-2014-4699} [2.6.32-431.27.1] - [scsi] fix performance regression due to inverted blk_get_queue return (Mike Snitzer) [1117582 1098658] - [net] openvswitch: fix use-after-free bug in netns (Flavio Leitner) [1120651 1100127] [2.6.32-431.26.1] - [net] gro: fix deliver of trunk packets to VLAN interfaces (Marcelo Ricardo Leitner) [1116231 1112324] [2.6.32-431.25.1] - [net] sctp: Fix sk_ack_backlog wrap-around problem (Daniel Borkmann) [1113969 1085932] {CVE-2014-4667} [2.6.32-431.24.1] - [alsa] aloop: Close races at restarting the stream (Jaroslav Kysela) [1112492 1078592] - [alsa] aloop: Export snd_pcm_constraint_mask64() (Jaroslav Kysela) [1112492 1078592] - [alsa] pcm: Warn when buffer preallocation fails (Jaroslav Kysela) [1112492 1078592] - [alsa] aloop: Add SNDRV_PCM_STATE_PAUSED case in wait_for_avail function (Jaroslav Kysela) [1112492 1078592] - [alsa] jack: Unregister input device at disconnection (Jaroslav Kysela) [1112492 1078592] - [alsa] aloop: Optimize module name check (Jaroslav Kysela) [1112492 1078592] - [alsa] pcm: Add fallthru comments (Jaroslav Kysela) [1112492 1078592] - [alsa] aloop: Fix Oops while PM resume (Jaroslav Kysela) [1112492 1078592] - [alsa] aloop: add locking to timer access (Jaroslav Kysela) [1112492 1078592] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4667 CVE-2014-3917 CVE-2014-0205 CVE-2014-3535 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [3.22-34.1] - Fixed buffer overflow in formail Resolves: CVE-2014-3618 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3618 Oracle Linux 5 Oracle Linux 6 [0:1.2.1-7.5] - Fix MITM security vulnerability - Use GCJ friendly patch - Resolves: CVE-2014-3596 [0:1.2.1-7.4] - Fix MITM security vulnerability - Resolves: CVE-2014-3596 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3596 Oracle Linux 5 [0.12.2-81.0.2.el5] - Replaced redhat logo image in Data.fs [0.12.2-81.0.1.el5] - Added conga-enterprise-Carthage.patch to support OEL5 - Replaced redhat logo image in conga-0.12.2.tar.gz [0.12.2-81] - luci: prevent non-admin user from unauthorized executive access Resolves: rhbz#1089310 [0.12.2-79] - luci: drop unsuccessful monkey patch application wrt. Plone 20121106 advisory Related: rhbz#956861 [0.12.2-78] - luci: reflect startup_wait parameter added in postgres-8 RA Resolves: rhbz#1065263 - luci: Multiple information leak flaws in various luci site extensions Resolves: rhbz#1076148 [0.12.2-72] - luci: fix mishandling of distro release string Resolves: rhbz#1072075 - luci: fix initscript does not check return values correctly Resolves: rhbz#970288 - ricci: fix end-use modules do not handle stdin polling correctly Resolves: rhbz#1076711 [0.12.2-69] - luci: apply relevant parts of Plone 20121106 advisory (multiple vectors) Resolves: rhbz#956861 MODERATE Copyright 2014 Oracle, Inc. CVE-2012-5498 CVE-2012-5499 CVE-2012-5500 CVE-2013-6496 CVE-2014-3521 CVE-2012-5485 CVE-2012-5486 CVE-2012-5488 CVE-2012-5497 Oracle Linux 5 [1.9.6-3] - fix for CVE-2012-3386 -- 'make distcheck' was making the directory distdir world-writeable (#848470) LOW Copyright 2014 Oracle, Inc. CVE-2012-3386 Oracle Linux 5 [32:9.7.0-21.P2] - Fix CVE-2014-0591 [32:9.7.0-20.P2] - Fix init script to not unmount filesystem when ROOTDIR is empty (#1059118) [32:9.7.0-19.P2] - fix for CVE-2013-4854 [32:9.7.0-18.P2] - fix CVE-2013-2266 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0591 Oracle Linux 5 [1.6.1-78.el5] - gssapi: pull in upstream fix for a possible NULL dereference in spnego (CVE-2014-4344, #1121509) [1.6.1-77.el5] - fix what appears to be a cosmetic error in the patch for self-tests for CVE-2014-4341 [1.6.1-76.el5] - run the backported self-tests, such as they are, for CVE-2014-4341 [1.6.1-75.el5] - pull in backported fix for denial of service by injection of malformed GSSAPI tokens (CVE-2014-4341, #1121509) [1.6.1-74.el5] - add patch based on one from Filip Krska to not call poll() with a negative timeout when the caller's intent is for us to just stop calling it (#1089732) [1.6.1-73.el5] - incorporate backported upstream patch for remote crash of KDCs which serve multiple realms simultaneously (RT#7756, CVE-2013-1418/CVE-2013-6800, [1.6.1-72.el5] - add part-backported fix to avoid possible use-after-free when encrypting delegated creds (Jatin Nansi, #1004632) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-1418 CVE-2013-6800 CVE-2014-4341 CVE-2014-4344 Oracle Linux 5 [3.16.1-2] - Backport nss-3.12.6 upstream fix required by Firefox 31 ESR - Resolves: Bug 1110860 [3.16.1-1] - Rebase to nss-3.16.1 for FF31 - Resolves: Bug 1110860 - Rebase nss in RHEL 5.11 to NSS 3.16.1, required for FF 31 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-1740 CVE-2014-1490 CVE-2014-1491 CVE-2014-1492 CVE-2014-1545 Oracle Linux 5 [1.6.1-80.el5] - rebuild [1.6.1-79.el5] - incorporate fix for MITKRB5-SA-2014-001 (CVE-2014-4345, #1132785) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-4345 Oracle Linux 7 [3.10.0-123.8.1] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.8.1] - [scsi] fnic: fix broken FIP discovery by initializing multicast address (Chris Leech) [1119727 1100078] - [scsi] libfcoe: Make fcoe_sysfs optional / fix fnic NULL exception (Chris Leech) [1119727 1100078] - [fs] nfs: Don't mark the data cache as invalid if it has been flushed (Scott Mayhew) [1115817 1114054] - [fs] nfs: Clear NFS_INO_REVAL_PAGECACHE when we update the file size (Scott Mayhew) [1115817 1114054] - [fs] nfs: Fix cache_validity check in nfs_write_pageuptodate() (Scott Mayhew) [1115817 1114054] - [mm] hugetlb: ensure hugepage access is denied if hugepages are not supported (David Gibson) [1122115 1081671] - [kernel] hrtimer: Prevent all reprogramming if hang detected (Prarit Bhargava) [1113175 1094732] [3.10.0-123.7.1] - [scsi] set DID_TIME_OUT correctly (Ewan Milne) [1122575 1103881] - [scsi] fix invalid setting of host byte (Ewan Milne) [1122575 1103881] - [scsi] More USB deadlock fixes (Ewan Milne) [1122575 1103881] - [scsi] Fix USB deadlock caused by SCSI error handling (Ewan Milne) [1122575 1103881] - [scsi] Fix command result state propagation (Ewan Milne) [1122575 1103881] - [scsi] Fix spurious request sense in error handling (Ewan Milne) [1122575 1103881] - [input] synaptics: fix resolution for manually provided min/max (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: change min/max quirk table to pnp-id matching (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: add a matches_pnp_id helper function (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: T540p - unify with other LEN0034 models (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: add min/max quirk for the ThinkPad W540 (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: add min/max quirk for ThinkPad Edge E431 (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: add min/max quirk for ThinkPad T431s, L440, L540, S1 Yoga and X1 (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: report INPUT_PROP_TOPBUTTONPAD property (Benjamin Tissoires) [1122559 1093449] - [input] Add INPUT_PROP_TOPBUTTONPAD device property (Benjamin Tissoires) [1122559 1093449] - [input] i8042: add firmware_id support (Benjamin Tissoires) [1122559 1093449] - [input] serio: add firmware_id sysfs attribute (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: add manual min/max quirk for ThinkPad X240 (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: add manual min/max quirk (Benjamin Tissoires) [1122559 1093449] - [input] synaptics: fix incorrect placement of __initconst (Benjamin Tissoires) [1122559 1093449] - [ethernet] be2net: Fix invocation of be_close() after be_clear() (Ivan Vecera) [1122558 1066644] - [ethernet] be2net: enable interrupts in EEH resume (Ivan Vecera) [1121712 1076682] - [ethernet] sfc: PIO:Restrict to 64bit arch and use 64-bit writes (Nikolay Aleksandrov) [1119725 1089024] - [kernel] ftrace: Hardcode ftrace_module_init() call into load_module() (Takahiro MUNEDA) [1119721 1061553] - [kernel] trace: Make register/unregister_ftrace_command __init (Takahiro MUNEDA) [1119721 1061553] - [block] nvme: Initialize device reference count earlier (David Milburn) [1119720 1081734] - [ata] ahci: accommodate tag ordered controller (David Milburn) [1117154 1083746] - [s390] af_iucv: recvmsg problem for SOCK_STREAM sockets (Hendrik Brueckner) [1115585 1109703] - [s390] af_iucv: correct cleanup if listen backlog is full (Hendrik Brueckner) [1115584 1109033] - [mm] Revert: vmscan: do not swap anon pages just because free+file is low (Johannes Weiner) [1114938 1102991] - [drm] nouveau/bios: fix a bit shift error introduced by recent commit (Ulrich Obergfell) [1114869 1089936] - [ethernet] bnx2x: Adapter not recovery from EEH error injection (Michal Schmidt) [1107722 1067154] - [kernel] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102708 1102710] {CVE-2014-3917} - [block] mtip32xx: mtip_async_complete() bug fixes (Jeff Moyer) [1125776 1102281] - [block] mtip32xx: Unmap the DMA segments before completing the IO request (Jeff Moyer) [1125776 1102281] - [net] l2tp: don't fall back on UDP [get|set]sockopt (Petr Matousek) [1119465 1119466] {CVE-2014-4943} - [s390] ptrace: correct insufficient sanitization when setting psw mask (Hendrik Brueckner) [1114090 1113673] {CVE-2014-3534} MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3917 Oracle Linux 7 [1.5.2-3] - Fix remote client denial of service vulnerability (#1138191) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-6269 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [4.1.2-15.1] - Check for fishy environment Resolves: #1141645 CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-6271 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [4.2.45-5.4] - CVE-2014-7169 Resolves: #1146324 [4.2.45-5.3] - amend patch to match upstream's Related: #1146324 [4.2.45-5.2] - Fix-up the patch Related: #1141647 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 nss [3.16.2-7.0.1.el7_0] - Added nss-vendor.patch to change vendor [3.16.2-7] - Resolves: Bug 1145433 - CVE-2014-1568 [3.16.2-6] - Rolling back to commit e5fb6e476c179665976e906604496cbbb24f22a7 - Related: Bug 1145433 nss-softokn [3.16.2-3] - Resolves: Bug 1145433 - CVE-2014-1568 nss-util [3.16.2-2] - Resolves: bug 1145433 - CVE-2014-1568 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1568 Oracle Linux 6 Oracle Linux 7 [2.11.0-17] - Fix XML parsing bug (JAXP, 8017298) - Resolves: CVE-2013-4002 MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4002 Oracle Linux 5 Oracle Linux 6 [5.3.3-27.2] - spl: fix use-after-free in ArrayIterator due to object change during sorting. CVE-2014-4698 - spl: fix use-after-free in SPL Iterators. CVE-2014-4670 - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - fileinfo: fix incomplete fix for CVE-2012-1571 in cdf_read_property_info. CVE-2014-3587 - core: fix incomplete fix for CVE-2014-4049 DNS TXT record parsing. CVE-2014-3597 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2497 CVE-2014-3587 CVE-2014-3597 CVE-2014-4670 CVE-2014-4698 Oracle Linux 7 [5.4.16-23.1] - gd: fix NULL pointer dereference in gdImageCreateFromXpm(). CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix extensive backtracking in regular expression (incomplete fix for CVE-2013-7345). CVE-2014-3538 - fileinfo: fix mconvert incorrect handling of truncated pascal string size. CVE-2014-3478 - fileinfo: fix cdf_read_property_info (incomplete fix for CVE-2012-1571). CVE-2014-3587 - spl: fix use-after-free in ArrayIterator due to object change during sorting. CVE-2014-4698 - spl: fix use-after-free in SPL Iterators. CVE-2014-4670 - network: fix segfault in dns_get_record (incomplete fix for CVE-2014-4049). CVE-2014-3597 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2497 CVE-2014-3478 CVE-2014-3538 CVE-2014-3587 CVE-2014-3597 CVE-2014-4670 CVE-2014-4698 CVE-2014-5120 Oracle Linux 7 [1.1.1-29.0.1.el7_0.3] - Replace docs/et.png in tarball with blank image [1.1.1-29.el7_0.3] - domain_conf: fix domain deadlock (CVE-2014-3657) [1.1.1-29.el7_0.2] - qemu: split out cpuset.mems setting (rhbz#1135871) - qemu: leave restricting cpuset.mems after initialization (rhbz#1135871) - qemu: blkiotune: Use correct definition when looking up disk (CVE-2014-3633) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3633 CVE-2014-3657 Oracle Linux 7 [0.103.0-10] - Resolves: #1147368 (CVE-2014-5033) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-5033 Oracle Linux 6 [1:1.4.2-67] - Revert change to whitelist /rss/ resources, as this was not used upstream. [1:1.4.2-66] - More STR #4461 fixes from upstream: make rss feeds world-readable, but cachedir private. - Fix icon display in web interface during server restart (STR #4475). [1:1.4.2-65] - Fixes for upstream patch for STR #4461: allow /rss/ requests for files we created. [1:1.4.2-64] - Use upstream patch for STR #4461. [1:1.4.2-63] - Applied upstream patch to fix CVE-2014-5029 (bug #1122600), CVE-2014-5030 (bug #1128764), CVE-2014-5031 (bug #1128767). - Fix conf/log file reading for authenticated users (STR #4461). [1:1.4.2-62] - Fix CGI handling (STR #4454, bug #1120419). [1:1.4.2-61] - fix patch for CVE-2014-3537 (bug #1117794) [1:1.4.2-60] - CVE-2014-2856: cross-site scripting flaw (bug #1117798) - CVE-2014-3537: insufficient checking leads to privilege escalation (bug #1117794) [1:1.4.2-59] - Removed package description changes. [1:1.4.2-58] - Applied patch to fix 'Bad request' errors as a result of adding in httpSetTimeout (STR #4440, also part of svn revision 9967). [1:1.4.2-57] - Fixed timeout issue with cupsd reading when there is no data ready (bug #1110045). [1:1.4.2-56] - Fixed synconclose patch to avoid 'too many arguments for format' warning. - Fixed settimeout patch to include math.h for fmod declaration. [1:1.4.2-55] - Fixed typo preventing web interface from changing driver (bug #1104483, STR #3601). - Fixed SyncOnClose patch (bug #984883). [1:1.4.2-54] - Use upstream patch to avoid replaying GSS credentials (bug #1040293). [1:1.4.2-53] - Prevent BrowsePoll problems across suspend/resume (bug #769292): - Eliminate indefinite wait for response (svn revision 9688). - Backported httpSetTimeout API function from CUPS 1.5 and use it in the ipp backend so that we wait indefinitely until the printer responds, we get a hard error, or the job is cancelled. - cups-polld: reconnect on error. - Added new SyncOnClose directive to use fsync() after altering configuration files: defaults to 'Yes'. Adjust in cupsd.conf (bug #984883). - Fix cupsctl man page typo (bug #1011076). - Use more portable rpm specfile syntax for conditional php building (bug #988598). - Fix SetEnv directive in cupsd.conf (bug #986495). - Fix 'collection' attribute sending (bug #978387). - Prevent format_log segfault (bug #971079). - Prevent stringpool corruption (bug #884851). - Don't crash when job queued for printer that times out (bug #855431). - Upstream patch for broken multipart handling (bug #852846). - Install /etc/cron.daily/cups with correct permissions (bug #1012482). MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2856 CVE-2014-3537 CVE-2014-5029 CVE-2014-5030 CVE-2014-5031 Oracle Linux 6 [1.10.3-33] - actually apply that last patch [1.10.3-32] - incorporate fix for MITKRB5-SA-2014-001 (CVE-2014-4345, #1128157) [1.10.3-31] - ksu: when evaluating .k5users, don't throw away data from .k5users when we're not passed a command to run, which implicitly means we're attempting to run the target user's shell (#1026721, revised) [1.10.3-30] - ksu: when evaluating .k5users, treat lines with just a principal name as if they contained the principal name followed by '*', and don't throw away data from .k5users when we're not passed a command to run, which implicitly means we're attempting to run the target user's shell (#1026721, revised) [1.10.3-29] - gssapi: pull in upstream fix for a possible NULL dereference in spnego (CVE-2014-4344, #1121510) - gssapi: pull in proposed-and-accepted fix for a double free in initiators (David Woodhouse, CVE-2014-4343, #1121510) [1.10.3-28] - correct a type mistake in the backported fix for CVE-2013-1418/CVE-2013-6800 [1.10.3-27] - pull in backported fix for denial of service by injection of malformed GSSAPI tokens (CVE-2014-4341, CVE-2014-4342, #1121510) - incorporate backported patch for remote crash of KDCs which serve multiple realms simultaneously (RT#7756, CVE-2013-1418/CVE-2013-6800, more of [1.10.3-26] - pull in backport of patch to not subsequently always require that responses come from master KDCs if we get one from a master somewhere along the way while chasing referrals (RT#7650, #1113652) [1.10.3-25] - ksu: if the -e flag isn't used, use the target user's shell when checking for authorization via the target user's .k5users file (#1026721) [1.10.3-24] - define _GNU_SOURCE in files where we use EAI_NODATA, to make sure that it's declared (#1059730) [1.10.3-23] - spnego: pull in patch from master to restore preserving the OID of the mechanism the initiator requested when we have multiple OIDs for the same mechanism, so that we reply using the same mechanism OID and the initiator doesn't get confused (#1087068, RT#7858) [1.10.3-22] - add patch from Jatin Nansi to avoid attempting to clear memory at the NULL address if krb5_encrypt_helper() returns an error when called from encrypt_credencpart() (#1055329, pull #158) [1.10.3-21] - drop patch to add additional access() checks to ksu - they shouldn't be resulting in any benefit [1.10.3-20] - apply patch from Nikolai Kondrashov to pass a default realm set in /etc/sysconfig/krb5kdc to the kdb_check_weak helper, so that it doesn't produce an error if there isn't one set in krb5.conf (#1009389) [1.10.3-19] - packaging: don't Obsoletes: older versions of krb5-pkinit-openssl and virtual Provide: krb5-pkinit-openssl on EL6, where we don't need to bother with any of that (#1001961) [1.10.3-18] - pkinit: backport tweaks to avoid trying to call the prompter callback when one isn't set (part of #965721) - pkinit: backport the ability to use a prompter callback to prompt for a password when reading private keys (the rest of #965721) [1.10.3-17] - backport fix to not spin on a short read when reading the length of a response over TCP (RT#7508, #922884) [1.10.3-16] - backport fix for trying all compatible keys when not being strict about acceptor names while reading AP-REQs (RT#7883, #1070244) MODERATE Copyright 2014 Oracle, Inc. CVE-2013-1418 CVE-2013-6800 CVE-2014-4341 CVE-2014-4344 CVE-2014-4345 CVE-2014-4342 CVE-2014-4343 Oracle Linux 6 [2.12-1.149] - Remove gconv transliteration loadable modules support (CVE-2014-5119, - _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475, [2.12-1.148] - Switch gettimeofday from INTUSE to libc_hidden_proto (#1099025). [2.12-1.147] - Fix stack overflow due to large AF_INET6 requests (CVE-2013-4458, #1111460). - Fix buffer overflow in readdir_r (CVE-2013-4237, #1111460). [2.12-1.146] - Fix memory order when reading libgcc handle (#905941). - Fix format specifier in malloc_info output (#1027261). - Fix nscd lookup for innetgr when netgroup has wildcards (#1054846). [2.12-1.145] - Add mmap usage to malloc_info output (#1027261). [2.12-1.144] - Use NSS_STATUS_TRYAGAIN to indicate insufficient buffer (#1087833). [2.12-1.143] - [ppc] Add VDSO IFUNC for gettimeofday (#1028285). - [ppc] Fix ftime gettimeofday internal call returning bogus data (#1099025). [2.12-1.142] - Also relocate in dependency order when doing symbol dependency testing (#1019916). [2.12-1.141] - Fix infinite loop in nscd when netgroup is empty (#1085273). - Provide correct buffer length to netgroup queries in nscd (#1074342). - Return NULL for wildcard values in getnetgrent from nscd (#1085289). - Avoid overlapping addresses to stpcpy calls in nscd (#1082379). - Initialize all of datahead structure in nscd (#1074353). [2.12-1.140] - Return EAI_AGAIN for AF_UNSPEC when herrno is TRY_AGAIN (#1044628). [2.12-1.139] - Do not fail if one of the two responses to AF_UNSPEC fails (#845218). [2.12-1.138] - nscd: Make SELinux checks dynamic (#1025933). [2.12-1.137] - Fix race in free() of fastbin chunk (#1027101). [2.12-1.136] - Fix copy relocations handling of unique objects (#1032628). [2.12-1.135] - Fix encoding name for IDN in getaddrinfo (#981942). [2.12-1.134] - Fix return code from getent netgroup when the netgroup is not found (#1039988). - Fix handling of static TLS in dlopen'ed objects (#995972). [2.12-1.133] - Don't use alloca in addgetnetgrentX (#1043557). - Adjust pointers to triplets in netgroup query data (#1043557). MODERATE Copyright 2014 Oracle, Inc. CVE-2013-4237 CVE-2013-4458 Oracle Linux 6 [2.6.32-504] - [netdrv] revert 'cxgb4: set skb->rxhash' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Use netif_set_real_num_rx/tx_queues()' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Turn on delayed ACK' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use ULP_MODE_TCPDDP' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Debugfs dump_qp() updates' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Drop peer_abort when no endpoint found' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Detect DB FULL events and notify RDMA ULD' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Common platform specific changes for DB Drop Recovery' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: DB Drop Recovery for RDMA and LLD queues' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add debugfs RDMA memory stats' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add DB Overflow Avoidance' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: DB Drop Recovery for RDMA and LLD queues' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use vmalloc() for debugfs QP dump' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Remove kfifo usage' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Include vmalloc.h for vmalloc and vfree' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: set maximal number of default RSS queues' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Remove duplicate register definitions' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Update RDMA/cxgb4 due to macro definition removal in cxgb4 driver' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Move dereference below NULL test' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix incorrect values for MEMWIN*_APERTURE and MEMWIN*_BASE' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add functions to read memory via PCIE memory window' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Code cleanup to enable T4 Configuration File support' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add support for T4 configuration file' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add support for T4 hardwired driver configuration settings' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Don't attempt to upgrade T4 firmware when cxgb4 will end up as a slave' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix error handling in create_qp()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Dynamically allocate memory in t4_memory_rw() and get_vpd_params()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix build error due to missing linux/vmalloc.h include' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: allocate enough data in t4_memory_rw()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Address various sparse warnings' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Remove unnecessary #ifdef condition' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Don't free chunk that we have failed to allocate' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix unable to get UP event from the LLD' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix initialization of SGE_CONTROL register' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: use WARN' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Chelsio FCoE offload driver submission' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: remove __dev* attributes' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add T4 filter support' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add LE hash collision bug fix path in LLD driver' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix LE hash collision bug for active open connection' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix LE hash collision bug for passive open connection' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix bug for active and passive LE hash collision path' (Prarit Bhargava) [1140743] and pr_<level>' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix incorrect PFVF CMASK' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Abort connections that receive unexpected streaming mode data' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Abort connections when moving to ERROR state' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Display streaming mode error only if detected in RTS' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Keep QP referenced until TID released' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Always log async errors' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Only log rx_data warnings if cpl status is non-zero' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix endpoint timeout race condition' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Don't reconnect on abort for mpa_rev 1' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Don't wakeup threads for MPAv2' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Insert hwtid in pass_accept_req instead in pass_establish' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Address sparse warnings' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: 'cookie' can stay in host endianness' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix cast warning' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Allow for backward compatibility with new VPD scheme' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add register definations for T5' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add macros, structures and inline functions for T5' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Initialize T5' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Dump T5 registers' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add T5 write combining support' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Enable doorbell drop recovery only for T4 adapter' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add T5 debugfs support' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add T5 PCI ids' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Update driver version and description' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Disable SR-IOV support for PF4-7 for T5' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add Support for Chelsio T5 adapter' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Turn off db coalescing when RDMA QPs are in use' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add module_params to enable DB FC & Coalescing on T5' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use DSGLs for fastreg and adapter memory writes for T5' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Map pbl buffers for dma if using DSGL' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Bump tcam_full stat and WR reply timeout' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix onchip queue support for T5' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix error return code in create_qp()' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix SQ allocation when on-chip SQ is disabled' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix pci_device_id structure initialization with correct PF number' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Support CPL_SGE_EGR_UPDATEs encapsulated in a CPL_FW4_MSG' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Support CPL_SGE_EGR_UPDATEs encapsulated in a CPL_FW4_MSG' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: fix error recovery when t4_fw_hello returns a positive value' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Force uninitialized state if FW_ON_ADAPTER is < FW_VERSION and we're the MASTER_PF' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Correct comparisons and calculations using skb->tail and skb-transport_header' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Do not set net_device::dev_id to VI index' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix stack info leak in c4iw_create_qp()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add routines to create and remove listening IPv6 servers' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add CLIP support to store compressed IPv6 address' (Prarit Bhargava) [1140743] - [infiniband] revert 'cma: Add IPv6 support for iWARP' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add support for active and passive open connection with IPv6 address' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Handle newer firmware changes' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use correct bit shift macros for vlan filter tuples' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix QP flush logic' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix accounting for unsignaled SQ WRs to deal with wrap' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Set arp error handler for PASS_ACCEPT_RPL messages' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Always do GTS write if cidx_inc == CIDXINC_MASK' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Advertise ~0ULL as max MR size' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Issue RI.FINI before closing when entering TERM' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: remove workqueue when driver registration fails' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: remove unnecessary pci_set_drvdata()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cgxb4: remove duplicate include in cxgb4.h' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Much cleaner implementation of is_t4()/is_t5()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: added much cleaner implementation of is_t4()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add new scheme to update T4/T5 firmware' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix formatting of physical address' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Make _c4iw_write_mem_dma() static' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: calls skb_set_hash' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Reserve stid 0 for T4/T5 adapters' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Include TCP as protocol when creating server filters' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Assign filter server TIDs properly' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Account for stid entries properly in case of IPv6' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add API to correctly calculate tuple fields' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: make functions static and remove dead code' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Calculate the filter server TID properly' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Server filters are supported only for IPv4' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use cxgb4_select_ntuple to correctly calculate ntuple fields' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: allow large buffer size to have page size' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Changed FW check version to match FW binary version' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: silence shift wrapping static checker warning' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Avoid disabling PCI device for towice' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Don't retrieve stats during recovery' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix gcc warning on 32-bit arch' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix referencing freed adapter' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add missing neigh_release in LE-Workaround path' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Use pci_enable_msix_range() instead of pci_enable_msix()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add support to recognize 40G links' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Print adapter VPD Part Number instead of Engineering Change field' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Allow >10G ports to have multiple queues' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: LE-Workaround is not atomic in firmware' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Query firmware for T5 ULPTX MEMWRITE DSGL capabilities' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Remove unused registers and add missing ones' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Don't assume LSO only uses SGL path in t4_eth_xmit()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add more PCI device ids' (Prarit Bhargava) [1140743] - [netdrv] revert 'cgxb4: Stop using ethtool SPEED_* constants' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: use remove handler as shutdown handler' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix some small bugs in t4_sge_init_soft() when our Page Size is 64KB' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add code to dump SGE registers when hitting idma hangs' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Rectify emitting messages about SGE Ingress DMA channels being potentially stuck' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Updates for T5 SGE's Egress Congestion Threshold' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Calculate len properly for LSO path' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Treat CPL_ERR_KEEPALV_NEG_ADVICE as negative advice' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Doorbell Drop Avoidance Bug Fixes' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix underflows in c4iw_create_qp()' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix four byte info leak in c4iw_create_cq()' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Cap CQ size at T4_MAX_IQ_SIZE' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Allow loopback connections' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Always release neigh entry' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix incorrect BUG_ON conditions' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Mind the sq_sig_all/sq_sig_type QP attributes' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Default peer2peer mode to 1' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Save the correct map length for fast_reg_page_lists' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Don't leak skb in c4iw_uld_rx_handler()' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix possible memory leak in RX_PKT processing' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Ignore read reponse type 1 CQEs' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Connect_request_upcall fixes' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Update snd_seq when sending MPA messages' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Call dev_kfree/consume_skb_any instead of kfree_skb' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxbg4: Remove addressof casts to same type' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Adds device ID for few more Chelsio Adapters' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: set error code on kmalloc() failure' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Lock around accept/reject downcalls' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Drop RX_DATA packets if the endpoint is gone' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: rx_data() needs to hold the ep mutex' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Disable DSGL use by default' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use the BAR2/WC path for kernel QPs and T5 devices' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Endpoint timeout fixes' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: rmb() after reading valid gen bit' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: SQ flush fix' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Max fastreg depth depends on DSGL support' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use pr_warn_ratelimited' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Initialize reserved fields in a FW work request' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add missing debug stats' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Use uninitialized_var()' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix over-dereference when terminating' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Save the correct mac addr for hw-loopback connections in the L2T' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: use the correct max size for firmware flash' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix endpoint mutex deadlocks' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Force T5 connections to use TAHOE congestion control' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Only allow kernel db ringing for T4 devs' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Update Kconfig to include Chelsio T5 adapter' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Decode PCIe Gen3 link speed' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix memory leaks in c4iw_alloc() error paths' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Fix vlan support' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: Add missing padding at end of struct c4iw_create_cq_resp' (Prarit Bhargava) [1140743] - [infiniband] revert 'cxgb4: add missing padding at end of struct c4iw_alloc_ucontext_resp' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Decode the firmware port and module type a bit more for ethtool' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Check if rx checksum offload is enabled, while reading hardware calculated checksum' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: Allocate and use IQs specifically for indirect interrupts' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: Choose appropriate hw mtu index and ISS for iWARP connections' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: don't truncate the recv window size' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Change default Interrupt Holdoff Packet Count Threshold' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fixes cxgb4 probe failure in VM when PF is exposed through PCI Passthrough' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Use FW interface to get BAR0 value' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Replaced the backdoor mechanism to access the HW memory with PCIe Window method' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Adds device ID for few more Chelsio T4 Adapters' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: remove unnecessary null test before debugfs_remove_recursive' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: Detect Ing. Padding Boundary at run-time' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: use firmware ord/ird resource limits' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: display TPTE on errors' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: work request logging feature' (Prarit Bhargava) [1140743] - [netdrv] revert 'iw_cxgb4: Move common defines to cxgb4' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Add the MC1 registers to read in the interrupt handler' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fixed incorrect check for memory operation in t4_memory_rw' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: only free allocated fls' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Fix possible race condition in cleanup' (Prarit Bhargava) [1140743] - [infiniband] revert 'iw_cxgb4: fix for 64-bit integer division' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Add core T4 PCI-E SR-IOV Virtual Function hardware definitions and device communication code' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Add T4 Virtual Function Scatter-Gather Engine DMA code' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Add main T4 PCI-E SR-IOV Virtual Function driver for cxgb4vf' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Add new Makefile for T4 PCI-E SR-IOV Virtual Function driver cxgb4vf' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Stitch new T4 PCI-E SR-IOV Virtual Function driver into the build' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Remove obsolete comment about the lack of a TX Timer Callback' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Use correct shift factor for extracting the SGE DMA Ingress Padding Boundary' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: remove obsolete DECLARE_PCI_UNMAP_ADDR usage' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Implement 'Unhandled Interrupts' statistic' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: fix TX Queue restart' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: fix SGE resource resource deallocation bug' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Fix off-by-one error checking for the end of the mailbox delay array' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Fix bug where we were only allocating one queue in MSI mode' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: do not use PCI resources before pci_enable_device()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Use netif_set_real_num_rx/tx_queues()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: make single bit signed bitfields unsigned' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: remove call to stop TX queues at load time' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: don't implement trivial (and incorrect) ndo_select_queue()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: fix bug in Generic Receive Offload' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: fix some errors in Gather List to skb conversion' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: flesh out PCI Device ID Table' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Fail open if link_start() fails' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: add call to Firmware to reset VF State' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: minor comment/symbolic name cleanup' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: add ethtool statistics for GRO' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: fix up 'Section Mismatch' compiler warning' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Advertise NETIF_F_TSO_ECN' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: fix setting unicast/multicast addresses' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Ingress Queue Entry Size needs to be 64 bytes' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: fix mailbox data/control coherency domain race' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: recover from failure in cxgb4vf_open()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Check driver parameters in the right place' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Behave properly when CONFIG_DEBUG_FS isn't defined' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Quiesce Virtual Interfaces on shutdown' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Use defined Mailbox Timeout' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: improve Kconfig dependencies' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: do vlan cleanup' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: remove __dev* attributes' (Prarit Bhargava) [1140743] and pr_<level>' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Fix extraction of cpl_rx_pkt from the response queue descriptor' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Fix VLAN extraction counter increment' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Add support for Chelsio T5 adapter' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Support CPL_SGE_EGR_UPDATEs encapsulated in a CPL_FW4_MSG' (Prarit Bhargava) [1140743] - [netdrv] revert 'net: cxgb4vf: Staticize local symbols' (Prarit Bhargava) [1140743] - [netdrv] revert 'net: cxgb4vf: remove unnecessary pci_set_drvdata()' (Prarit Bhargava) [1140743] - [netdrv] revert 'net: cxgb4vf: use DEFINE_PCI_DEVICE_TABLE' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: added much cleaner implementation of is_t4()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: make functions static and remove dead code' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Remove superfluous call to pci_disable_msix()' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4vf: Adds device Id for few more Chelsio adapters' (Prarit Bhargava) [1140743] - [netdrv] revert 'cxgb4: Export symbols required by cxgb4i for ipv6 support and required defines' (Prarit Bhargava) [1140743] - [scsi] revert 'libcxgbi: Add ipv6 api to driver' (Prarit Bhargava) [1140743] - [scsi] revert 'cxgb4i: Add ipv6 code to driver, call into libcxgbi ipv6 api' (Prarit Bhargava) [1140743] - [scsi] revert 'cxgb4i: Fix ipv6 build failure caught with randconfig' (Prarit Bhargava) [1140743] - [scsi] revert 'cxgb4i: remove spurious use of rcu' (Prarit Bhargava) [1140743] - [scsi] revert 'cxgb4i: Guard ipv6 code with a config check' (Prarit Bhargava) [1140743] [2.6.32-503] - [kernel] futex: Fix errors in nested key ref-counting (Denys Vlasenko) [1094458] {CVE-2014-0205} - [fs] vfs: add missing __putname() in patch_mountpoint() (Ian Kent) [1135165] - [fs] nfs: Don't busy-wait on SIGKILL in __nfs_iocounter_wait (Benjamin Coddington) [1113269] - [netdrv] mlx4: add vlan_rx_register to the master ops (Doug Ledford) [1133506] - [infiniband] ocrdma: use right macro in query ah (Doug Ledford) [1133506] - [infiniband] ocrdma: resolve L2 address when creating user AH (Doug Ledford) [1133506] - [infiniband] ocrdma: get vlan tag from ib_qp_attrs (Doug Ledford) [1133506] - [infiniband] ocrdma: add default gid at index 0 (Doug Ledford) [1133506] - [infiniband] ocrdma: obtain sl from deivce structure (Doug Ledford) [1133506] - [infiniband] ocrdma: do not skip setting deffered_arm (Doug Ledford) [1133506] - [infiniband] ocrdma: Initialize the GID table while registering the device (Doug Ledford) [1133506] - [infiniband] ocrdma: Increase the size of STAG array in dev structure to 16K (Doug Ledford) [1133506] - [infiniband] ocrdma: Add missing adapter mailbox opcodes (Doug Ledford) [1133506] - [infiniband] ocrdma: Return proper value for max_mr_size (Doug Ledford) [1133506] - [infiniband] ocrdma: Allow only SEND opcode in case of UD QPs (Doug Ledford) [1133506] - [infiniband] ocrdma: Avoid reporting wrong completions in case of error CQEs (Doug Ledford) [1133506] - [infiniband] ocrdma: Query and initalize the PFC SL (Doug Ledford) [1133506] - [infiniband] ocrdma: Avoid posting DPP requests for RDMA READ (Doug Ledford) [1133506] - [infiniband] core: When marsheling uverbs path, clear unused fields (Amir Vadai) [1130394] - [infiniband] mlx4: Avoid executing gid task when device is being removed (Amir Vadai) [1130394] - [infiniband] mlx4: Fix lockdep splat for the iboe lock (Amir Vadai) [1130394] - [infiniband] mlx4: Get upper dev addresses as RoCE GIDs when port comes up (Amir Vadai) [1130394] - [infiniband] mlx4: Reorder steps in RoCE GID table initialization (Amir Vadai) [1130394] - [infiniband] mlx4: Don't duplicate the default RoCE GID (Amir Vadai) [1130394] - [infiniband] mlx4: Avoid null pointer dereference in mlx4_ib_scan_netdevs() (Amir Vadai) [1130394] - [netdrv] b43: fix the wrong assignment of status.freq in b43_rx() (John Greene) [1132160] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-4483 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 CVE-2014-5077 CVE-2014-3601 CVE-2014-3122 CVE-2013-2596 CVE-2014-4608 CVE-2014-5045 CVE-2014-0181 Oracle Linux 7 [7.4.7-7.0.1] - use setsid() to get a controlling session and process group [Orabug: 17346261] (Todd Vierling) [7.4.7-7] - fix CVE-2014-3634 resolves: #1149152 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3634 Oracle Linux 6 [0.3.13-2] - Fix strict alias warning [0.3.13-1] - New upstream bug fix release resolves: #633584 - Pick up latest TrouSerS package resolves: #1074634 - Buffer overflow detected in TrouSerS daemon LOW Copyright 2014 Oracle, Inc. CVE-2012-0698 Oracle Linux 6 [5.3p1-104] - ignore SIGXFSZ in postauth monitor child (#1133906) [5.3p1-103] - don't try to generate DSA keys in the init script in FIPS mode (#1118735) [5.3p1-102] - ignore SIGPIPE in ssh-keyscan (#1108836) [5.3p1-101] - ssh-add: fix fatal exit when removing card (#1042519) [5.3p1-100] - fix race in backported ControlPersist patch (#953088) [5.3p1-99.2] - skip requesting smartcard PIN when removing keys from agent (#1042519) [5.3p1-98] - add possibility to autocreate only RSA key into initscript (#1111568) - fix several issues reported by coverity [5.3p1-97] - x11 forwarding - be less restrictive when can't bind to one of available addresses (#1027197) - better fork error detection in audit patch (#1028643) - fix openssh-5.3p1-x11.patch for non-linux platforms (#1100913) [5.3p1-96] - prevent a server from skipping SSHFP lookup (#1081338) CVE-2014-2653 - ignore environment variables with embedded '=' or '\0' characters CVE-2014-2532 - backport ControlPersist option (#953088) - log when a client requests an interactive session and only sftp is allowed (#997377) - don't try to load RSA1 host key in FIPS mode (#1009959) - restore Linux oom_adj setting when handling SIGHUP to maintain behaviour over restart (#1010429) - ssh-keygen -V - relative-specified certificate expiry time should be relative to current time (#1022459) [5.3p1-95] - adjust the key echange DH groups and ssh-keygen according to SP800-131A (#993580) - log failed integrity test if /etc/system-fips exists (#1020803) - backport ECDSA and ECDH support (#1028335) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-2532 CVE-2014-2653 Oracle Linux 6 [5.04-21] - fix typographical error in changelog [5.04-20] - fix #1037279 - better patch for the bug from previous release [5.04-19] - fix #1037279 - display 'from' field on 32bit ppc core [5.04-18] - fix #664513 - trim white-spaces during ISO9660 detection [5.04-17] - fix CVE-2014-3479 (cdf_check_stream_offset boundary check) - fix CVE-2014-3480 (cdf_count_chain insufficient boundary check) - fix CVE-2014-0237 (cdf_unpack_summary_info() excessive looping DoS) - fix CVE-2014-0238 (CDF property info parsing nelements infinite loop) - fix CVE-2014-2270 (out-of-bounds access in search rules with offsets) - fix CVE-2014-1943 (unrestricted recursion in handling of indirect type rules) - fix CVE-2012-1571 (out of bounds read in CDF parser) [5.04-16] - fix #873997 - improve Minix detection pattern to fix false positives - fix #884396 - improve PBM pattern to fix misdetection with x86 boot sector - fix #980941 - improve Bio-Rad pattern to fix false positives - fix #849621 - tweak strength of XML, Latex and Python patterns to execute them in the proper order - fix #1067771 - detect qcow version 3 images - fix #1064463 - treat RRDTool files as binary files MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0237 CVE-2014-0238 CVE-2014-3479 CVE-2014-3480 CVE-2012-1571 CVE-2014-1943 CVE-2014-2270 Oracle Linux 6 Oracle Linux 7 [1:1.7.0.65-2.5.3.1.0.1.el7_0] - Update DISTRO_NAME in specfile [1:1.7.0.65-2.5.3.1] - Bump to 2.5.3 for latest security fixes. - Remove obsolete patches. - Add hsbootstrap option to pre-build HotSpot when required. - Resolves: rhbz#1148893 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 Oracle Linux 5 [1:1.7.0.71-2.5.3.1.0.1.el5_11] - Add oracle-enterprise.patch - Fix DISTRO_NAME to 'Enterprise Linux' [1:1.7.0.71-2.5.3.1] - Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [1:1.6.0.33-1.13.5.0] - Update to IcedTea 1.13.5 - Remove upstreamed patches. - Regenerate add-final-location-rpaths patch against new release. - Change versioning to match java-1.7.0-openjdk so revisions work. - Use xz for tarballs to reduce file size. - No need to explicitly disable system LCMS any more (bug fixed upstream). - Add icedteasnapshot to setup lines so they work with pre-release tarballs. - Resolves: rhbz#1148901 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 firefox [31.2.0-3.0.1.el7_0] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one [31.2.0-3] - Update to 31.2.0 ESR - Fix for mozbz#1042889 [31.1.0-7] - Enable WebM on all arches xulrunner [31.2.0-1.0.1] - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNER_VERSION from SOURCE21 [31.2.0-1] - Update to 31.2.0 [31.1.0-3] - move /sdk/bin to xulrunner libdir [31.1.0-2] - Sync preferences with Firefox package [31.1.0-1] - Update to 31.1.0 ESR [31.0-2] - Fix header wrapper for aarch64 [31.0-1] - Update to 31.0 ESR CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1574 CVE-2014-1576 CVE-2014-1577 CVE-2014-1578 CVE-2014-1581 CVE-2014-1583 Oracle Linux 6 [1:1.8.0.25-1.b17] - Update to October CPU patch update. - Resolves: RHBZ#1148896 [1:1.8.0.20-3.b26] - fixed headless (policytool moved to normal) - jre/bin/policytool added to not headless exclude list - updated aarch694 source - ppc64le synced from fedora - Resolves: rhbz#1081073 [1:1.8.0.20-2.b26] - forcing build by itself (jdk8 by jdk8) - Resolves: rhbz#1081073 [1:1.8.0.20-1.b26] - updated to u20-b26 - adapted patch9999 enableArm64.patch - adapted patch100 s390-java-opts.patch - adapted patch102 size_t.patch - removed upstreamed patch 0001-PPC64LE-arch-support-in-openjdk-1.8.patch - adapted system-lcms.patch - removed patch8 set-active-window.patch - removed patch9 javadoc-error-jdk-8029145.patch - removed patch10 javadoc-error-jdk-8037484.patch - removed patch99 applet-hole.patch - itw 1.5.1 is able to ive without it - Resolves: rhbz#1081073 [1:1.8.0.11-19.b12] - fixed desktop icons - Icon set to java-1.8.0 - Development removed from policy tool - Resolves: rhbz#1081073 [1:1.8.0.11-18.b12] - fixed jstack - Resolves: rhbz#1081073 [1:1.8.0.11-15.b12] - fixed provides/obsolates - Resolves: rhbz#1081073 [1:1.8.0.11-14.b12] - mayor rework of specfile - sync with f21 - accessibility kept removed - lua script kept unsync - priority and epoch kept on 0 - not included disable-doclint patch - kept bundled lcms - unused OrderWithRequires - used with-stdcpplib instead of with-stdc++lib - Resolves: rhbz#1081073 [1:1.8.0.11-4.b13] - Added security patches - Resolves: rhbz#1081073 [1:1.8.0.5-6.b13] - Removed accessibility package - removed patch3 java-atk-wrapper-security.patch - removed its files and declaration - removed creation of libatk-wrapper.so and java-atk-wrapper.jar symlinks - removed generation of accessibility.properties - Resolves: rhbz#1113078 [1:1.8.0.5-5.b13] - priority lowered to 00000 - Resolves: rhbz#1081073 [1:1.8.0.5-4.b13] - Initial import from fedora - Used bundled lcms2 - added java-1.8.0-openjdk-disable-system-lcms.patch - --with-lcms changed to bundled - removed build requirement - excluded removal of lcms from remove-intree-libraries.sh - removed --with-extra-cflags="-fno-devirtualize" and --with-extra-cxxflags="-fn o-devirtualize"--- - added patch998, rhel6-built.patch to - fool autotools - replace all ++ chars in autoconfig files by pp - --with-stdc++lib=dynamic replaced by --with-stdcpplib=dynamic - Bumped release - Set epoch to 0 - removed patch6, disable-doclint-by-default.patch - Resolves: rhbz#1081073 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 CVE-2014-6468 CVE-2014-6562 Oracle Linux 6 [31.2.0-3.0.1.el6_5] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [31.2.0-3] - Enabled jemalloc on ppc(64) and s390(x) [31.2.0-2] - Update to 31.2.0 [31.1.1-2] - Sync preferences with Firefox [31.1.1-1] - Update to 31.1.1 [31.1.0-1] - Update to 31.1.0 [31.0-1] - Rebase to 31 ESR IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1574 CVE-2014-1577 CVE-2014-1578 CVE-2014-1581 Oracle Linux 6 Oracle Linux 7 [1.0.1e-30.2] - fix CVE-2014-3567 - memory leak when handling session tickets - fix CVE-2014-3513 - memory leak in srtp support - add support for fallback SCSV to partially mitigate CVE-2014-3566 (padding attack on SSL3) [1.0.1e-30] - add ECC TLS extensions to DTLS (#1119800) [1.0.1e-29] - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3507 - avoid memory leak in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3509 - fix race condition when parsing server hello - fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS - fix CVE-2014-3511 - disallow protocol downgrade via fragmentation [1.0.1e-28] - fix CVE-2014-0224 fix that broke EAP-FAST session resumption support [1.0.1e-26] - drop EXPORT, RC2, and DES from the default cipher list (#1057520) - print ephemeral key size negotiated in TLS handshake (#1057715) - do not include ECC ciphersuites in SSLv2 client hello (#1090952) - properly detect encryption failure in BIO (#1100819) - fail on hmac integrity check if the .hmac file is empty (#1105567) - FIPS mode: make the limitations on DSA, DH, and RSA keygen length enforced only if OPENSSL_ENFORCE_MODULUS_BITS environment variable is set [1.0.1e-25] - fix CVE-2010-5298 - possible use of memory after free - fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment - fix CVE-2014-0198 - possible NULL pointer dereference - fix CVE-2014-0221 - DoS from invalid DTLS handshake packet - fix CVE-2014-0224 - SSL/TLS MITM vulnerability - fix CVE-2014-3470 - client-side DoS when using anonymous ECDH [1.0.1e-24] - add back support for secp521r1 EC curve [1.0.1e-23] - fix CVE-2014-0160 - information disclosure in TLS heartbeat extension [1.0.1e-22] - use 2048 bit RSA key in FIPS selftests [1.0.1e-21] - add DH_compute_key_padded needed for FIPS CAVS testing - make 3des strength to be 128 bits instead of 168 (#1056616) - FIPS mode: do not generate DSA keys and DH parameters < 2048 bits - FIPS mode: use approved RSA keygen (allows only 2048 and 3072 bit keys) - FIPS mode: add DH selftest - FIPS mode: reseed DRBG properly on RAND_add() - FIPS mode: add RSA encrypt/decrypt selftest - FIPS mode: add hard limit for 2^32 GCM block encryptions with the same key - use the key length from configuration file if req -newkey rsa is invoked [1.0.1e-20] - fix CVE-2013-4353 - Invalid TLS handshake crash [1.0.1e-19] - fix CVE-2013-6450 - possible MiTM attack on DTLS1 [1.0.1e-18] - fix CVE-2013-6449 - crash when version in SSL structure is incorrect [1.0.1e-17] - add back some no-op symbols that were inadvertently dropped IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3513 CVE-2014-3567 Oracle Linux 5 [0.9.8e-31] - add support for fallback SCSV to partially mitigate CVE-2014-3566 (padding attack on SSL3) [0.9.8e-30] - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3510 - fix DoS in anonymous (EC)DH handling in DTLS [0.9.8e-29] - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability [0.9.8e-28] - replace expired GlobalSign Root CA certificate in ca-bundle.crt MODERATE Copyright 2014 Oracle, Inc. Oracle Linux 6 [7.4.10-3] - fix CVE-2014-3634 resolves: #1149150 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3634 Oracle Linux 6 Oracle Linux 7 [2.9.1-5.0.1.el7_0.1] - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball [2.9.1-5.1] - CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149087) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3660 Oracle Linux 7 [1.5.3-60.el7_0.10] - kvm-block-add-helper-function-to-determine-if-a-BDS-is-i.patch [bz#1122925] - kvm-block-extend-block-commit-to-accept-a-string-for-the.patch [bz#1122925] - kvm-block-add-backing-file-option-to-block-stream.patch [bz#1122925] - kvm-block-add-__com.redhat_change-backing-file-qmp-comma.patch [bz#1122925] - Resolves: bz#1122925 (Maintain relative path to backing file image during live merge (block-commit)) [1.5.3-60.el7_0.9] - kvm-scsi-disk-fix-bug-in-scsi_block_new_request-introduc.patch [bz#1141189] - Resolves: bz#1141189 (bug in scsi_block_new_request() function introduced by upstream commit 137745c5c60f083ec982fe9e861e8c16ebca1ba8) [1.5.3-60.el7_0.8] - kvm-vmstate_xhci_event-fix-unterminated-field-list.patch [bz#1145055] - kvm-vmstate_xhci_event-bug-compat-with-RHEL-7.0-RHEL-onl.patch [bz#1145055] - kvm-vbe-make-bochs-dispi-interface-return-the-correct-me.patch [bz#1139117] - kvm-vbe-rework-sanity-checks.patch [bz#1139117] - kvm-spice-display-add-display-channel-id-to-the-debug-me.patch [bz#1139117] - kvm-spice-make-sure-we-don-t-overflow-ssd-buf.patch [bz#1139117] - Resolves: bz#1139117 (CVE-2014-3615 qemu-kvm: Qemu: crash when guest sets high resolution [rhel-7.0.z]) - Resolves: bz#1145055 (vmstate_xhci_event: fix unterminated field list [rhel-7.0.z]) LOW Copyright 2014 Oracle, Inc. CVE-2014-3615 Oracle Linux 5 Oracle Linux 6 [5.8.12-5.0.1] - use setsid() to get a controlling session and process group [Orabug: 17364545] [5.8.12-5] - fix CVE-2014-3634 resolves: #1149158 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3634 Oracle Linux 6 Oracle Linux 7 [1.10.3-12.0.1.el7] - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect [1.10.3-12] - security patches - Related: #1148266 [1.10.3-11] - security patches - Resolves: CVE-2014-6421 CVE-2014-6423 CVE-2014-6424 CVE-2014-6425 CVE-2014-6426 CVE-2014-6427 CVE-2014-6428 CVE-2014-6429 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-6421 CVE-2014-6422 CVE-2014-6423 CVE-2014-6424 CVE-2014-6425 CVE-2014-6426 CVE-2014-6427 CVE-2014-6428 CVE-2014-6429 CVE-2014-6430 CVE-2014-6431 CVE-2014-6432 Oracle Linux 5 [1.0.15-7.0.1.el5] - Added oracle-ocfs2-network.patch - increase max packet size to 65536 (Herbert van den Bergh) [orabug 13542633] [1.0.15-7] - security patches - Resolves: CVE-2014-6421 CVE-2014-6423 CVE-2014-6425 CVE-2014-6428 CVE-2014-6429 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-6421 CVE-2014-6422 CVE-2014-6423 CVE-2014-6425 CVE-2014-6428 CVE-2014-6429 CVE-2014-6430 CVE-2014-6431 CVE-2014-6432 Oracle Linux 7 [3.10.0-123.9.2] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.9.2] - [virt] kvm: fix PIT timer race condition (Petr Matousek) [1144879 1144880] {CVE-2014-3611} - [virt] kvm/vmx: handle invept and invvpid vm exits gracefully (Petr Matousek) [1145449 1116936] [1144828 1144829] {CVE-2014-3645 CVE-2014-3646} [3.10.0-123.9.1] - [md] raid6: avoid data corruption during recovery of double-degraded RAID6 (Jes Sorensen) [1143850 1130905] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1140978 1091055] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1140978 1091055] - [powerpc] sched: stop updating inside arch_update_cpu_topology() when nothing to be update (Gustavo Duarte) [1140300 1098372] - [powerpc] 64bit sendfile is capped at 2GB (Gustavo Duarte) [1139126 1107774] - [s390] fix restore of invalid floating-point-control (Hendrik Brueckner) [1138733 1121965] - [kernel] sched/fair: Rework sched_fair time accounting (Rik van Riel) [1134717 1123731] - [kernel] math64: Add mul_u64_u32_shr() (Rik van Riel) [1134717 1123731] - [kernel] workqueue: zero cpumask of wq_numa_possible_cpumask on init (Motohiro Kosaki) [1134715 1117184] - [cpufreq] acpi-cpufreq: skip loading acpi_cpufreq after intel_pstate (Motohiro Kosaki) [1134716 1123250] - [security] selinux: Increase ebitmap_node size for 64-bit configuration (Paul Moore) [1132076 922752] - [security] selinux: Reduce overhead of mls_level_isvalid() function call (Paul Moore) [1132076 922752] - [ethernet] cxgb4: allow large buffer size to have page size (Gustavo Duarte) [1130548 1078977] - [kernel] sched/autogroup: Fix race with task_groups list (Gustavo Duarte) [1129990 1081406] - [net] sctp: inherit auth_capable on INIT collisions (Daniel Borkmann) [1124337 1123763] {CVE-2014-5077} - [sound] alsa/control: Don't access controls outside of protected regions (Radomir Vrbovsky) [1117330 1117331] {CVE-2014-4653} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4653 CVE-2014-5077 CVE-2014-3611 CVE-2014-3645 CVE-2014-3646 Oracle Linux 6 Oracle Linux 7 [1.14-10.1] - Fix CVE-2014-4877 wget: FTP symlink arbitrary filesystem access (#1156135) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-4877 Oracle Linux 6 Oracle Linux 7 [5.4.16-23.3] - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 [5.4.16-23.2] - xmlrpc: fix out-of-bounds read flaw in mkgmtime() CVE-2014-3668 - core: fix integer overflow in unserialize() CVE-2014-3669 - exif: fix heap corruption issue in exif_thumbnail() CVE-2014-3670 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3668 CVE-2014-3669 CVE-2014-3670 CVE-2014-3710 Oracle Linux 5 [5.3.3-26] - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 [5.3.3-25] - xmlrpc: fix out-of-bounds read flaw in mkgmtime() CVE-2014-3668 - core: fix integer overflow in unserialize() CVE-2014-3669 - exif: fix heap corruption issue in exif_thumbnail() CVE-2014-3670 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3668 CVE-2014-3669 CVE-2014-3670 CVE-2014-3710 Oracle Linux 7 [1.0.35-15:.1] - Applied upstream patch to fix BrowseAllow parsing issue (CVE-2014-4338, bug #1091568). - Applied upstream patch for cups-browsed DoS via process_browse_data() out-of-bounds read (CVE-2014-4337, bug #1111510). MODERATE Copyright 2014 Oracle, Inc. CVE-2014-4337 CVE-2014-4338 Oracle Linux 7 shim [0.7-8.0.1] - update Oracle Linux certificates (Alexey Petrenko) - replace securebootca.cer (Alexey Petrenko) [0.7-8] - out-of-bounds memory read flaw in DHCPv6 packet processing Resolves: CVE-2014-3675 - heap-based buffer overflow flaw in IPv6 address parsing Resolves: CVE-2014-3676 - memory corruption flaw when processing Machine Owner Keys (MOKs) Resolves: CVE-2014-3677 [0.7-7] - Use the right key for ARM Aarch64. [0.7-6] - Preliminary build for ARM Aarch64. shim-signed [0.7-8.0.1] - Oracle Linux certificates (Alexey Petrenko) [0.7-8] - out-of-bounds memory read flaw in DHCPv6 packet processing Resolves: CVE-2014-3675 - heap-based buffer overflow flaw in IPv6 address parsing Resolves: CVE-2014-3676 - memory corruption flaw when processing Machine Owner Keys (MOKs) Resolves: CVE-2014-3677 [0.7-5.2] - Get the right signatures on shim-redhat.efi Related: rhbz#1064449 [0.7-5.1] - Update for signed shim for RHEL 7 Resolves: rhbz#1064449 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3675 CVE-2014-3676 CVE-2014-3677 Oracle Linux 6 [0.8.0-3] - CVE-2014-8566 CVE-2014-8567 - Resolves: bz1157283 - Resolves: bz1157956 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-8566 CVE-2014-8567 Oracle Linux 5 [5.1.6-45] - core: fix integer overflow in unserialize() CVE-2014-3669 - exif: fix heap corruption issue in exif_thumbnail() CVE-2014-3670 - xmlrpc: fix buffer overflow in date parser #1155607 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3669 CVE-2014-3670 CVE-2014-8626 Oracle Linux 6 Oracle Linux 7 [0.9.7-7.1] - Fix CVE-2014-6051 (integer overflow in screen size handling) (bug #1157668) - Fix CVE-2014-6052 (NULL pointer dereference in framebuffer setup) (bug #1157668) - Fix CVE-2014-6053 (NULL pointer dereference in ClientCutText message handling) (bug #1157668) - Fix CVE-2014-6054 (server divide-by-zero in scaling factor handling) (bug #1157668) - Fix CVE-2014-6055 (server stacked-based buffer overflow in file transfer handling) (bug #1157668) [0.9.7-7] - Revert CVE-2011-0904 and CVE-2011-0905 patch because libvncserver is not vulnerable (bug #696767) [0.9.7-6] - Fix CVE-2011-0904 and CVE-2011-0905 in more generic way (bug #696767) [0.9.7-5] - Fix CVE-2011-0904 (bug #696767) - Fix CVE-2011-0905 (bug #696767) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-6051 CVE-2014-6052 CVE-2014-6053 CVE-2014-6054 CVE-2014-6055 Oracle Linux 7 [7:4.10.5-8] - Resolves: CVE-2014-6055 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-6053 CVE-2014-6054 CVE-2014-6055 Oracle Linux 6 [2.6.32-504.1.3] - Revert: [net] revert 'bridge: Set vlan_features to allow offloads on vlans' (Vlad Yasevich) [1144442 1121991] [2.6.32-504.1.2] - [x86] kvm: fix PIT timer race condition (mguzik) [1149592 1149593] {CVE-2014-3611} - [x86] kvm: vmx: handle invept and invvpid vm exits gracefull (mguzik) [1144826 1144837 1144827 1144838] {CVE-2014-3646 CVE-2014-3645} [2.6.32-504.1.1] - [fs] call d_op->d_hash on last component of umount path (Abhijith Das) [1145193 1129712] - [usb] serial: memory corruption flaw (Jacob Tanenbaum) [1141401 1141402] {CVE-2014-3185} - [char] ipmi: Clear drvdata when interface is removed (Tony Camuso) [1149578 1135910] - [char] ipmi: init shadow_ipmi_smi_handlers early in ipmi_si_intf (Tony Camuso) [1149580 1139464] - [net] ipsec: update MAX_AH_AUTH_LEN to support sha512 (Herbert Xu) [1149083 1140103] - [net] revert 'bridge: Set vlan_features to allow offloads on vlans' (Vlad Yasevich) [1144442 1121991] - [netdrv] virtio-net: fix big buffer receiving (Jason Wang) [1148693 1144073] - [netdrv] tg3: prevent ifup/ifdown during PCI error recovery (Ivan Vecera) [1142570 1117009] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3611 CVE-2014-3645 CVE-2014-3646 CVE-2014-3185 Oracle Linux 7 [3.1.18-10] - Applied fix for CVE-2014-8564 (#1161472) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-8564 Oracle Linux 5 [5.5.40-2] filter perl(GD) from Requires (perl-gd is not available for RHEL5) Resolves: #1160514 [5.5.40-1] - Rebase to 5.5.40 Also fixes: CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 Resolves: #1160514 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2494 CVE-2014-4207 CVE-2014-4243 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 Oracle Linux 7 [1:5.5.40-1] - Rebase to 5.5.40 Also fixes: CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 Resolves: #1160548 [1:5.5.37-1] - Rebase to 5.5.37 https://kb.askmonty.org/en/mariadb-5537-changelog/ Also fixes: CVE-2014-2440 CVE-2014-0384 CVE-2014-2432 CVE-2014-2431 CVE-2014-2430 CVE-2014-2436 CVE-2014-2438 CVE-2014-2419 Resolves: #1101062 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2494 CVE-2014-4207 CVE-2014-4243 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 Oracle Linux 6 Oracle Linux 7 [1.4.5-4] - CVE-2014-0209: integer overflow of allocations in font metadata file parsing (bug 1163602, bug 1163601) - CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies (bug 1163602, bug 1163601) - CVE-2014-0211: integer overflows calculating memory needs for xfs replies (bug 1163602, bug 1163601) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0209 CVE-2014-0210 CVE-2014-0211 Oracle Linux 6 [0.10.2-46.0.1.el6_6.2] - Replace docs/et.png in tarball with blank image [0.10.2-46.el6_6.2] - qemu: allow restore with non-migratable XML input (rhbz#1155564) - qemu: Introduce qemuDomainDefCheckABIStability (rhbz#1155564) - Make ABI stability issue easier to debug (rhbz#1155564) - CVE-2014-3633: qemu: blkiotune: Use correct definition when looking up disk (CVE-2014-3633) - domain_conf: fix domain deadlock (CVE-2014-3657) - CVE-2014-7823: dumpxml: security hole with migratable flag (CVE-2014-7823) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3633 CVE-2014-3657 CVE-2014-7823 Oracle Linux 5 [2.6.26-2.1.25.0.1.el5_11] - Add libxml2-enterprise.patch - Replaced doc/redhat.gif in tarball with updated image [2.6.26-2.1.25.el5] - CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1161841) [2.6.26-2.1.24.el5] - fixed one regexp bug and added a (rhbz#922450) - Another small change on the algorithm for the elimination of epsilon (rhbz#922450) [2.6.26-2.1.23.el5] - detect and stop excessive entities expansion upon replacement (rhbz#912573) [2.6.26-2.1.22.el5] - fix validation issues with some XSD (rhbz#877348) - xmlDOMWrapCloneNode discards namespace of the node parameter (rhbz#884707) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3660 Oracle Linux 5 [1.2.2-1.0.6] - CVE-2014-0209: integer overflow of allocations in font metadata file parsing (bug 1163602, bug 1163601) - CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies (bug 1163602, bug 1163601) - CVE-2014-0211: integer overflows calculating memory needs for xfs replies (bug 1163602, bug 1163601) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0209 CVE-2014-0210 CVE-2014-0211 Oracle Linux 6 [1.8.7.374-3] - Fix REXML billion laughs attack via parameter entity expansion (CVE-2014-8080). Resolves: rhbz#1163993 - REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090). Resolves: rhbz#1163993 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-8080 CVE-2014-8090 Oracle Linux 7 [2.0.0.353-22] - Fix REXML billion laughs attack via parameter entity expansion (CVE-2014-8080). Resolves: rhbz#1163998 - REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090). Resolves: rhbz#1163998 [2.0.0.353-21] - Fix off-by-one stack-based buffer overflow in the encodes() function (CVE-2014-4975) Resolves: rhbz#1163998 [2.0.0.353-21] - Fix FTBFS with new tzdata Related: rhbz#1163998 MODERATE Copyright 2014 Oracle, Inc. CVE-2014-8080 CVE-2014-8090 CVE-2014-4975 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [31.3.0-4.0.1] - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones [31.3.0-4] - Update to 31.3.0 ESR Build 2 - Fix for geolocation API (rhbz#1063739) [31.2.0-5] - splice workaround (rhbz#1150082) [31.2.0-4] - ppc build fix (rhbz#1151959) CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-1587 CVE-2014-1590 CVE-2014-1592 CVE-2014-1593 CVE-2014-1594 Oracle Linux 6 [31.3.0-1.0.1.el6_6] - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js [31.3.0-1] - Update to 31.3.0 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1587 CVE-2014-1590 CVE-2014-1592 CVE-2014-1593 CVE-2014-1594 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 nss [3.16.2.3-2.0.1.el7_0] - Added nss-vendor.patch to change vendor [3.16.2.3-2] - Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 [3.16.2.3-1] - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 - Support TLS_FALLBACK_SCSV in tstclnt and ssltap [3.16.2-8] - Fix crash in stan_GetCERTCertificate - Resolves: Bug 1139349 nss-softokn [3.16.2-3] - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 [3.16.2-3] - Resolves: Bug 1145433 - CVE-2014-1568 [3.16.2-1] - Update to nss-3.16.2 - Resolves: Bug 1124659 - Rebase RHEL 7.1 to at least NSS-SOFTOKN 3.16.1 (FF 31) [3.15.4-2] - Mass rebuild 2014-01-24 [3.15.3-4] - Rebase to nss-3.15.4 - Resolves: Bug 1054457 - CVE-2013-1740 - Update softokn splitting script to oparate on the upstream pristine source - Using the .gz archives directly, not repackaging as .bz2 ones - Avoid unneeded manual steps that could introduce errors - Update the iquote and build softoken only patches on account of the rebase [3.15.3-3] - Fix to allow level 1 fips mode if the db has no password - Resolves: Bug 852023 - FIPS mode detection does not work [3.15.3-2] - Mass rebuild 2013-12-27 [3.15.3-1] - Rebase to NSS_3_15_3_RTM - Related: Bug 1031463 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 [3.15.2-2] - Resolves: rhbz#1020395 - Allow Level 1 FIPS mode if the nss db has no password [3.15.2-1] - Rebase to nss-softoken from nss-3.15.2 - Resolves: rhbz#1012679 - pick up NSS-SOFTOKN 3.15.2 (required for bug 1012656) [3.15.1-3] - Add export NSS_ENABLE_ECC=1 rto the %build and %check sections - Resolves: rhbz#752980 - [7.0 FEAT] Support ECDSA algorithm in the nss packag [3.15.1-2] - Remove an obsolete script and adjust the sources numbering accordingly [3.15.1-1] - Update to NSS_3_15_1_RTM [3.15-4] - Split off nss-softokn from the unstripped nss source tar ball [3.15-3] - Update to NSS_3_15_RTM - Require nspr-4.10 or greater - Fix patch that selects tests to run [3.15-0.1.beta.3] - Reverse the last changes since pk11gcmtest properly belongs to nss [3.15-0.1.beta.2] - Add lowhashtest and pk11gcmtest as unsupported tools - Modify nss-softoken-split script to include them in the split [3.15-0.1.beta.1] - Update to NSS_3_15_BETA1 - Update spec file, patches, and helper scrips on account of a shallwer source tree nss-util [3.16.2.1-1] - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 IMPORTANT Copyright 2014 Oracle, Inc. Oracle Linux 7 [1:2.0-13] - Use os_exec() for action script execution (CVE-2014-3686) MODERATE Copyright 2014 Oracle, Inc. CVE-2014-3686 Oracle Linux 5 kernel [2.6.18-400.0.0.0.1] - [net] fix tcp_trim_head() (James Li) [orabug 14512145, 19219078] - ocfs2: dlm: fix recovery hung (Junxiao Bi) [orabug 13956772] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0181 Oracle Linux 5 kernel [2.6.18-400] - [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181} [2.6.18-399] - [kernel] do_setitimer: cancel real_timer if try_to_cancel fails (Oleg Nesterov) [1134654] MODERATE Copyright 2014 Oracle, Inc. CVE-2014-0181 Oracle Linux 7 [3.10.0-123.13.1] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.13.1] - [powerpc] mm: Make sure a local_irq_disable prevent a parallel THP split (Don Zickus) [1151057 1083296] - [powerpc] Implement __get_user_pages_fast() (Don Zickus) [1151057 1083296] - [scsi] vmw_pvscsi: Some improvements in pvscsi driver (Ewan Milne) [1144016 1075090] - [scsi] vmw_pvscsi: Add support for I/O requests coalescing (Ewan Milne) [1144016 1075090] - [scsi] vmw_pvscsi: Fix pvscsi_abort() function (Ewan Milne) [1144016 1075090] [3.10.0-123.12.1] - [alsa] control: Make sure that id->index does not overflow (Jaroslav Kysela) [1117313 1117314] {CVE-2014-4656} - [alsa] control: Handle numid overflow (Jaroslav Kysela) [1117313 1117314] {CVE-2014-4656} - [alsa] control: Protect user controls against concurrent access (Jaroslav Kysela) [1117338 1117339] {CVE-2014-4652} - [alsa] control: Fix replacing user controls (Jaroslav Kysela) [1117323 1117324] {CVE-2014-4654 CVE-2014-4655} - [net] sctp: fix remote memory pressure from excessive queueing (Daniel Borkmann) [1155750 1152755] {CVE-2014-3688} - [net] sctp: fix panic on duplicate ASCONF chunks (Daniel Borkmann) [1155737 1152755] {CVE-2014-3687} - [net] sctp: fix skb_over_panic when receiving malformed ASCONF chunks (Daniel Borkmann) [1147856 1152755] {CVE-2014-3673} - [net] sctp: handle association restarts when the socket is closed (Daniel Borkmann) [1147856 1152755] [1155737 1152755] [1155750 1152755] - [pci] Add ACS quirk for Intel 10G NICs (Alex Williamson) [1156447 1141399] - [pci] Add ACS quirk for Solarflare SFC9120 & SFC9140 (Alex Williamson) [1158316 1131552] - [lib] assoc_array: Fix termination condition in assoc array garbage collection (David Howells) [1155136 1139431] {CVE-2014-3631} - [block] cfq-iosched: Add comments on update timing of weight (Vivek Goyal) [1152874 1116126] - [block] cfq-iosched: Fix wrong children_weight calculation (Vivek Goyal) [1152874 1116126] - [powerpc] mm: Check paca psize is up to date for huge mappings (Gustavo Duarte) [1151927 1107337] - [x86] perf/intel: ignore CondChgd bit to avoid false NMI handling (Don Zickus) [1146819 1110264] - [x86] smpboot: initialize secondary CPU only if master CPU will wait for it (Phillip Lougher) [1144295 968147] - [x86] smpboot: Log error on secondary CPU wakeup failure at ERR level (Igor Mammedov) [1144295 968147] - [x86] smpboot: Fix list/memory corruption on CPU hotplug (Igor Mammedov) [1144295 968147] - [acpi] processor: do not mark present at boot but not onlined CPU as onlined (Igor Mammedov) [1144295 968147] - [fs] udf: Avoid infinite loop when processing indirect ICBs (Jacob Tanenbaum) [1142321 1142322] {CVE-2014-6410} - [hid] picolcd: fix memory corruption via OOB write (Jacob Tanenbaum) [1141408 1141409] {CVE-2014-3186} - [usb] serial/whiteheat: fix memory corruption flaw (Jacob Tanenbaum) [1141403 1141404] {CVE-2014-3185} - [hid] fix off by one error in various _report_fixup routines (Jacob Tanenbaum) [1141393 1141394] {CVE-2014-3184} - [hid] logitech-dj: fix OOB array access (Jacob Tanenbaum) [1141211 1141212] {CVE-2014-3182} - [hid] fix OOB write in magicmouse driver (Jacob Tanenbaum) [1141176 1141177] {CVE-2014-3181} - [acpi] Fix bug when ACPI reset register is implemented in system memory (Nigel Croxon) [1136525 1109971] - [fs] vfs: fix ref count leak in path_mountpoint() (Ian Kent) [1122481 1122376] {CVE-2014-5045} - [kernel] ptrace: get_dumpable() incorrect tests (Jacob Tanenbaum) [1111605 1111606] {CVE-2013-2929} - [media] media-device: fix an information leakage (Jacob Tanenbaum) [1109776 1109777] {CVE-2014-1739} - [target] rd: Refactor rd_build_device_space + rd_release_device_space (Denys Vlasenko) [1108754 1108755] {CVE-2014-4027} - [block] blkcg: fix use-after-free in __blkg_release_rcu() by making blkcg_gq refcnt an atomic_t (Vivek Goyal) [1158313 1118436] - [virt] kvm: fix PIT timer race condition (Petr Matousek) [1144879 1144880] {CVE-2014-3611} - [virt] kvm/vmx: handle invept and invvpid vm exits gracefully (Petr Matousek) [1145449 1116936] [1144828 1144829] {CVE-2014-3645 CVE-2014-3646} [3.10.0-123.11.1] - [net] fix UDP tunnel GSO of frag_list GRO packets (Phillip Lougher) [1149661 1119392] [3.10.0-123.10.1] - [pci] hotplug: Prevent NULL dereference during pciehp probe (Myron Stowe) [1142393 1133107] - [kernel] workqueue: apply __WQ_ORDERED to create_singlethread_workqueue() (Tomas Henzl) [1151314 1131563] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-2929 CVE-2014-4654 CVE-2014-4655 CVE-2014-5045 CVE-2014-3185 CVE-2014-3181 CVE-2014-3687 CVE-2014-3673 CVE-2014-3184 CVE-2014-1739 CVE-2014-3182 CVE-2014-3186 CVE-2014-3631 CVE-2014-3688 CVE-2014-4027 CVE-2014-4652 CVE-2014-4656 CVE-2014-6410 Oracle Linux 5 Oracle Linux 6 [4.4.2.3-36.0.1] - Add missing files in /usr/share/doc/ [4.8.0-36] - Fix warning when applying the patch for #1163057 [4.8.0-35] - Fix race condidition where unchecked data is exposed in the file system (CVE-2013-6435)(#1163057) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-6435 Oracle Linux 7 [4.11.1-18] - Add check against malicious CPIO file name size (#1163060) - Fixes CVE-2014-8118 [4.11.1-17] - Fix race condidition where unchecked data is exposed in the file system (#1163060) - Fixes CVE-2013-6435 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-6435 CVE-2014-8118 Oracle Linux 5 [1.1.1-48.107.0.1.el5_11] - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file [1.1.1-48.107] - CVE-2014-8091 denial of service due to unchecked malloc in client authentication (#1168680) - CVE-2014-8092 integer overflow in X11 core protocol requests when calculating memory needs for requests (#1168684) - CVE-2014-8097 out of bounds access due to not validating length or offset values in DBE extension (#1168705) - CVE-2014-8095 out of bounds access due to not validating length or offset values in XInput extension (#1168694) - CVE-2014-8096 out of bounds access due to not validating length or offset values in XC-MISC extension(#1168700) - CVE-2014-8099 out of bounds access due to not validating length or offset values in XVideo extension (#1168710) - CVE-2014-8100 out of bounds access due to not validating length or offset values in Render extension (#1168711) - CVE-2014-8102 out of bounds access due to not validating length or offset values in XFixes extension (#1168714) - CVE-2014-8101 out of bounds access due to not validating length or offset values in RandR extension (#1168713) - CVE-2014-8093 xorg-x11-server: integer overflow in GLX extension requests when calculating memory needs for requests (#1168688) - CVE-2014-8098 xorg-x11-server: out of bounds access due to not validating length or offset values in GLX extension (#1168707) [1.1.1-48.104] - xserver-1.1.1-randr-config-timestamps.patch: Backport timestamp comparison fix from upstream RANDR code (#1006076) [1.1.1-48.103] - CVE-2013-6424: Fix OOB in trapezoid rasterization IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-8091 CVE-2014-8092 CVE-2014-8093 CVE-2014-8095 CVE-2014-8096 CVE-2014-8097 CVE-2014-8098 CVE-2014-8099 CVE-2014-8100 CVE-2014-8101 CVE-2014-8102 Oracle Linux 6 Oracle Linux 7 [1.15.0-7.0.1.el7_0.3] - Invalid BUG_RETURN_VAL fix, upstream patch (orabug 18896390) [1.15.0-7.3] - CVE fixes for: CVE-2014-8099, CVE-2014-8098, CVE-2014-8097, CVE-2014-8096, CVE-2014-8095, CVE-2014-8094, CVE-2014-8093, CVE-2014-8092, CVE-2014-8091, CVE-2014-8101, CVE-2014-8100, CVE-2014-8103, CVE-2014-8102 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-8091 CVE-2014-8092 CVE-2014-8093 CVE-2014-8094 CVE-2014-8095 CVE-2014-8096 CVE-2014-8097 CVE-2014-8098 CVE-2014-8099 CVE-2014-8100 CVE-2014-8101 CVE-2014-8102 CVE-2014-8103 Oracle Linux 5 Oracle Linux 6 Oracle Linux 7 [32:9.9.4-14.0.1.el7_0.1] - Rebuild to fix libmysqlclient dependency [32:9.9.4-14.1] - Fix CVE-2014-8500 (#1171975) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-8500 Oracle Linux 5 [32:9.7.0-21.P2.1] - Fix CVE-2014-8500 (#1171972) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-8500 Oracle Linux 6 [2.6.32-504.3.3] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172810 1172811] {CVE-2014-9322} [2.6.32-504.3.2] - [md] dm-thin: fix pool_io_hints to avoid looking at max_hw_sectors (Mike Snitzer) [1161420 1161421 1142773 1145230] [2.6.32-504.3.1] - [s390] zcrypt: toleration of new crypto adapter hardware (Hendrik Brueckner) [1158311 1134984] - [s390] zcrypt: support for extended number of ap domains (Hendrik Brueckner) [1158311 1134984] - [md] dm-thin: fix potential for infinite loop in pool_io_hints (Mike Snitzer) [1161420 1161421 1142773 1145230] [2.6.32-504.2.1] - [fs] udf: Avoid infinite loop when processing indirect ICBs (Jacob Tanenbaum) [1142319 1142320] {CVE-2014-6410} - [fs] isofs: unbound recursion when processing relocated directories (Jacob Tanenbaum) [1142268 1142269] {CVE-2014-5472 CVE-2014-5471} - [net] ipv6: delete expired route in ip6_pmtu_deliver (Hannes Frederic Sowa) [1161418 1156137] - [net] sctp: fix remote memory pressure from excessive queueing (Daniel Borkmann) [1155746 1154676] {CVE-2014-3688} - [net] sctp: fix panic on duplicate ASCONF chunks (Daniel Borkmann) [1155733 1154676] {CVE-2014-3687} - [net] sctp: fix skb_over_panic when receiving malformed ASCONF chunks (Daniel Borkmann) [1147857 1154676] {CVE-2014-3673} - [net] sctp: handle association restarts when the socket is closed (Daniel Borkmann) [1147857 1154676] - [md] dm-thin: refactor requeue_io to eliminate spinlock bouncing (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: optimize retry_bios_on_resume (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: sort the deferred cells (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: direct dispatch when breaking sharing (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: remap the bios in a cell immediately (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: defer whole cells rather than individual bios (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: factor out remap_and_issue_overwrite (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: performance improvement to discard processing (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: grab a virtual cell before looking up the mapping (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: implement thin_merge (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm: improve documentation and code clarity in dm_merge_bvec (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: adjust max_sectors_kb based on thinp blocksize (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] block: fix alignment_offset math that assumes io_min is a power-of-2 (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: throttle incoming IO (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: prefetch missing metadata pages (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-transaction-manager: add support for prefetching blocks of metadata (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin-metadata: change dm_thin_find_block to allow blocking, but not issuing, IO (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-bio-prison: switch to using a red black tree (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-bufio: evict buffers that are past the max age but retain some buffers (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-bufio: switch from a huge hash table to an rbtree (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-bufio: update last_accessed when relinking a buffer (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-bufio: use kzalloc when allocating dm_bufio_client (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin-metadata: do not allow the data block size to change (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: cleanup noflush_work to use a proper completion (Mike Snitzer) [1161420 1161421 1142773 1145230] - [md] dm-thin: fix DMERR typo in pool_status error path (Mike Snitzer) [1161420 1161421 1142773 1145230] - [fs] xfs: xlog_cil_force_lsn doesn't always wait correctly (Eric Sandeen) [1158325 1133304] - [netdrv] ixgbe: allow TXDCTL.WRTHRESH to be 1 will small ITR values (John Greene) [1158326 1132267] - [netdrv] ixgbe: Intel Change to allow itr changes without CONFIG_BQL support (John Greene) [1158326 1132267] - [video] offb: Fix setting of the pseudo-palette for >8bpp (Gerd Hoffmann) [1158328 1142450] - [video] offb: Add palette hack for qemu 'standard vga' framebuffer (Gerd Hoffmann) [1158328 1142450] - [video] offb: Fix bug in calculating requested vram size (Gerd Hoffmann) [1158328 1142450] - [net] sock_queue_err_skb() dont mess with sk_forward_alloc (Jiri Benc) [1155427 1148257] - [net] guard tcp_set_keepalive() to tcp sockets (Florian Westphal) [1141744 1141746] {CVE-2012-6657} - Revert: [net] revert 'bridge: Set vlan_features to allow offloads on vlans' (Vlad Yasevich) [1144442 1121991] - [x86] kvm: fix PIT timer race condition (mguzik) [1149592 1149593] {CVE-2014-3611} - [x86] kvm: vmx: handle invept and invvpid vm exits gracefull (mguzik) [1144826 1144837 1144827 1144838] {CVE-2014-3646 CVE-2014-3645} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3687 CVE-2014-3673 CVE-2014-3688 CVE-2014-6410 CVE-2012-6657 CVE-2014-5471 CVE-2014-5472 CVE-2014-9322 Oracle Linux 6 Oracle Linux 7 [12.4-8] - CVE-2004-2771 mailx: command execution flaw resolves: #1171175 MODERATE Copyright 2014 Oracle, Inc. CVE-2004-2771 CVE-2014-7844 Oracle Linux 5 kernel [2.6.18-400.1.1.0.1] - [net] fix tcp_trim_head() (James Li) [orabug 14512145, 19219078] - ocfs2: dlm: fix recovery hung (Junxiao Bi) [orabug 13956772] - i386: fix MTRR code (Zhenzhong Duan) [orabug 15862649] - [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030] - [oprofile] export __get_user_pages_fast() function [orabug 14277030] - [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug 14277030] - [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030] - [oprofile] oprofile: i386 add get_user_pages_fast support [orabug 14277030] - [kernel] Initialize the local uninitialized variable stats. [orabug 14051367] - [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug 13477763] - [x86 ] fix fpu context corrupt when preempt in signal context [orabug 14038272] - [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075] - fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan) - [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan) - [x86] Fix lvt0 reset when hvm boot up with noapic param - [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason) [orabug 12342275] - [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346] - [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566] - [net] net: Redo the broken redhat netconsole over bonding (Tina Yang) [orabug 12740042] - [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646] - fix filp_close() race (Joe Jin) [orabug 10335998] - make xenkbd.abs_pointer=1 by default [orabug 67188919] - [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514] - [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug 10315433] - [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258] - [mm] Patch shrink_zone to yield during severe mempressure events, avoiding hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839] - [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug 9245919] - fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042] - [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465] - [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220] - Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615] - fix overcommit memory to use percpu_counter for (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033] - [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208] - [ib] fix memory corruption (Andy Grover) [orabug 9972346] - [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi) [orabug 14795203] - [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi) [orabug 14795203] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-9322 Oracle Linux 5 kernel [2.6.18-400.1.1] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-9322 Oracle Linux 7 [3.10.0-123.13.2] - Oracle Linux certificates (Alexey Petrenko) [3.10.0-123.13.2] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172812 1172813] {CVE-2014-9322} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-9322 Oracle Linux 6 Oracle Linux 7 [1.900.1-16.2] - CVE-2014-8137 - double-free in in jas_iccattrval_destroy (#1173566) - CVE-2014-8138 - heap overflow in jp2_decode (#1173566) [1.900.1-16.1] - CVE-2014-9029 - incorrect component number check in COC, RGN and QCC marker segment decoders (#1171208) [1.900.1-16] - CERT VU#887409: heap buffer overflow flaws lead to arbitrary code execution (#749150) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-8137 CVE-2014-8138 CVE-2014-9029 Oracle Linux 7 [2.17-55.0.4.el7_0.3] - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. (Jose E. Marchesi) [2.17-55.3] - Fix wordexp() to honour WRDE_NOCMD (CVE-2014-7817, #1170118) [2.17-55.2] - ftell: seek to end only when there are unflushed bytes (#1170187). [2.17-55.1] - Remove gconv transliteration loadable modules support (CVE-2014-5119, - _nl_find_locale: Improve handling of crafted locale names (CVE-2014-0475, MODERATE Copyright 2014 Oracle, Inc. CVE-2014-7817 Oracle Linux 6 Oracle Linux 7 [4.2.6p5-2] - don't generate weak control key for resolver (CVE-2014-9293) - don't generate weak MD5 keys in ntp-keygen (CVE-2014-9294) - fix buffer overflows via specially-crafted packets (CVE-2014-9295) - don't mobilize passive association when authentication fails (CVE-2014-9296) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 Oracle Linux 5 [4.2.2p1-18.el5] - don't generate weak control key for resolver (CVE-2014-9293) - don't generate weak MD5 keys in ntp-keygen (CVE-2014-9294) - fix buffer overflows via specially-crafted packets (CVE-2014-9295) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 Oracle Linux 6 [3.8.13-26.el6uek] - spec: Don't remove crashkernel=auto setting (Jerry Snitselaar) [Orabug: 18137993] [3.8.13-25.el6uek] - ocfs2: fix i_mutex deadlock between aio_write and sync_file (Darrick J. Wong) [Orabug: 18068931] - Revert 'x86, mm: Revert back good_end setting for 64bit' (Jerry Snitselaar) [Orabug: 18128986] [3.8.13-24.el6uek] - tg3: remove spin_lock_bh() in tg3_get_stats64() to fix dead lock (Ethan Zhao) [Orabug: 18070676] - net/core: use GFP_NOWAIT allocation flag in rtmsg_ifinfo() to fix lockup warning (Ethan Zhao) [Orabug: 18070676] - mptsas: do not call __mptsas_probe in kthread (Jerry Snitselaar) [Orabug: 18120337] - config: enable CONFIG_KEXEC_AUTO_RESERVE (Jerry Snitselaar) [Orabug: 17616874] - Btrfs: allow compressed extents to be merged during defragment (Liu Bo) [Orabug: 18098511] - Btrfs: reset ret in record_one_backref (Josef Bacik) [Orabug: 18098511] - Btrfs: fix a crash when running balance and defrag concurrently (Liu Bo) [Orabug: 18098511] - Btrfs: fix a bug of snapshot-aware defrag to make it work on partial extents (Liu Bo) [Orabug: 18098511] - Btrfs: get better concurrency for snapshot-aware defrag work (Liu Bo) [Orabug: 18098511] - Btrfs: snapshot-aware defrag (Liu Bo) [Orabug: 18098511] - btrfs: add cancellation points to defrag (David Sterba) [Orabug: 18098511] - qla4xxx: Updated driver version to 5.04.00.02.06.02-uek3 (Vikas Chaudhary) [Orabug: 18103905] - qla4xxx: Fix memory leak in qla4xxx_destroy_ddb (Vikas Chaudhary) [Orabug: 18103905] - x86: add support for crashkernel=auto (Brian Maly) - x86, mm: Revert back good_end setting for 64bit (Yinghai Lu) [Orabug: 17648536] [3.8.13-23.el6uek] - [SCSI] storvsc: avoid usage of WRITE_SAME (Olaf Hering) [Orabug: 18037923] - Fix balloon driver to work properly with balloon_hugepages but no superpage flag (Dave McCracken) - config: disable BUILD_DOCSRC (Jerry Snitselaar) [Orabug: 17504426] - ext4: Fix non-O_SYNC AIO DIO unwritten extent conversion after dio finishes (Darrick J. Wong) [Orabug: 18069802] - memcg: don't initialize kmem-cache destroying work for root caches (Andrey Vagin) [Orabug: 17791895] - ocfs2: ocfs2 punch hole retrun EINVAL if the length argument in ioctl is negative (Tariq Saeed) [Orabug: 14789508] - writeback: fix data corruption on NFS (Jan Kara) [Orabug: 16677609] - Btrfs: handle a bogus chunk tree nicely (Josef Bacik) [Orabug: 17334825] - Drivers: hv: Execute shutdown in a thread context (K. Y. Srinivasan) [Orabug: 18053264] - Increase scsi_mod parameter max_report_luns to 1023. (Zhigang Wang) [Orabug: 17445498] - NFSv4.1 Fix gdia_maxcount calculation to fit in ca_maxresponsesize (Andy Adamson) [Orabug: 17419831] - config: disable fragile PSTORE options (Ethan Zhao) [Orabug: 17928723] - ocfs2/o2net: o2net_listen_data_ready should do nothing if socket state is not TCP_LISTEN (Tariq Saeed) [Orabug: 17330860] - qla4xxx: Updated driver version to 5.04.00.01.06.02-uek3 (Tej Parkash) [Orabug: 18050491] - qla4xxx: Fix sparse warnings (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Handle IPv6 AEN notifications (Nilesh Javali) [Orabug: 18050491] - qla4xxx: Update print statements in func qla4xxx_do_dpc() (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Update print statements in func qla4xxx_eh_abort() (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Update print statements in qla4xxx_mailbox_command() (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Updated print for device login, logout path (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Remove unused code from qla4xxx_set_ifcb() (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Fix failure of mbox 0x31 (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Reduce rom-lock contention during reset recovery. (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Fix pending IO completion in reset path before initiating chip reset (Tej Parkash) [Orabug: 18050491] - qla4xxx: Fix processing response queue during probe (Tej Parkash) [Orabug: 18050491] - qla4xxx: Fix failure of IDC Time Extend mailbox command (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Clear DDB index map upon connection close failure (Nilesh Javali) [Orabug: 18050491] - qla4xxx: Return correct error status from func qla4xxx_request_irqs() (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Fixed AER reset sequence for ISP83xx/ISP84xx (Tej Parkash) [Orabug: 18050491] - qla4xxx: Correctly handle msleep_interruptible (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Rename ACB_STATE macros with IP_ADDRSTATE macros (Nilesh Javali) [Orabug: 18050491] - qla4xxx: Improve loopback failure messages (Nilesh Javali) [Orabug: 18050491] - qla4xxx: Use IDC_CTRL bit1 directly instead of AF_83XX_NO_FWDUMP flag. (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Fix comments in code (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: Print WARN_ONCE() if iSCSI function presence bit removed (Vikas Chaudhary) [Orabug: 18050491] - qla4xxx: ISP8xxx: Correct retry of adapter initialization (Nilesh Javali) [Orabug: 18050491] - qla4xxx: Recreate chap data list during get chap operation (Adheer Chandravanshi) [Orabug: 18050491] - qla4xxx: Add support for ISCSI_PARAM_LOCAL_IPADDR sysfs attr (Adheer Chandravanshi) [Orabug: 18050491] - libiscsi: Add local_ipaddr parameter in iscsi_conn struct (Adheer Chandravanshi) [Orabug: 18050491] - IB/iser: Add Discovery support (Or Gerlitz) [Orabug: 18050491] - scsi_transport_iscsi: Export ISCSI_PARAM_LOCAL_IPADDR attr for iscsi_connection (Adheer Chandravanshi) [Orabug: 18050491] - qla4xxx: Add host statistics support (Lalit Chandivade) [Orabug: 18050491] - scsi_transport_iscsi: Add host statistics support (Lalit Chandivade) [Orabug: 18050491] - qla4xxx: Added support for Diagnostics MBOX command (Vikas Chaudhary) [Orabug: 18050491] - ocfs2: update inode size after zeroed the hole (Junxiao Bi) [Orabug: 18043432] [3.8.13-22.el6uek] - Revert 'sparc64: Fix __copy_{to,from}_user_inatomic defines.' (Dave Kleikamp) [Orabug: 18038851] - sparc64: prevent solaris control domain warnings about Domain Service handles (chris hyser) [Orabug: 18038829] - libfcoe: Make fcoe_sysfs optional / fix fnic NULL exception (ethan.zhao) [Orabug: 17960129] - scsi/fnic: update to version 1.6.0.8 from 1.5.0.45 (ethan.zhao) [Orabug: 17960129] - sctp: sctp_close: fix release of bindings for deferred call_rcu's (Daniel Borkmann) [Orabug: 17886746] - dtrace: vtimestamp implementation (Kris Van Hees) [Orabug: 17741477] - dtrace: implement SDT in kernel modules (Kris Van Hees) [Orabug: 17851716] - qla4xxx: Driver not able to collect minidump in ISP84xx (Tej Parkash) [Orabug: 17960365] - Modify UEFI anti-bricking code (Matthew Garrett) [Orabug: 17792954] - ocfs2: make 'buffered' as the default coherency option (Wengang Wang) [Orabug: 17988729] - Fixing kABI breakages in struct sock (Thomas Tanaka) [Orabug: 17901058] - tcp: TSQ can use a dynamic limit (Eric Dumazet) [Orabug: 17901058] - tcp: TSO packets automatic sizing (Eric Dumazet) [Orabug: 17901058] - bonding: fix two race conditions in bond_store_updelay/downdelay (Nikolay Aleksandrov) [Orabug: 17931850] - Update lpfc version for 8.3.7.34.4p driver release (Gairy Grannum) - Fixed unassigned variable in ELS timeout message (James Smart) - Fixed incorrect allocation of iDiags directories/files in debugfs (James Smart) - Fix Crash in lpfc_els_timeout_handler (James Smart) - Fix kernel panics from corrupted ndlp list. (James Smart) - Fix Crash in lpfc_els_timeout_handler (James Smart) - Fix Crash in lpfc_els_timeout_handler (James Smart) - [SCSI] lpfc: Fix typo on NULL assignment (Felipe Pena) - Fixed stopped FCF discovery on failed FCF record read. (James Smart) - Fixed IO hang when in msi mode. (James Smart) - tg3: update to broadcom version v3.134f (Jerry Snitselaar) [Orabug: 18037870] - bnx2x: update to broadcom version 1.78.80 (Jerry Snitselaar) [Orabug: 18037860] - PCI: Use pci_wait_for_pending_transaction() instead of for loop (Casey Leedom) [Orabug: 18037860] - PCI: Add pci_wait_for_pending_transaction() (Casey Leedom) [Orabug: 18037860] - bnx2i: update to broadcom version 2.7.8.2b (Jerry Snitselaar) [Orabug: 18037845] - bnx2fc: update to broadcom verison 2.4.1e (Jerry Snitselaar) [Orabug: 18037838] - cnic: update to broadcom version 2.5.18c (Jerry Snitselaar) [Orabug: ] - bnx2: update to broadcom version 2.2.4g (Jerry Snitselaar) [Orabug: ] - qla2xxx: update from mainline 8.05.00.03.39.0-k to qlogic version 8.06.00.14.39.0-k (Guangyu Sun) [Orabug: 17952066] [3.8.13-21.el6uek] - be2iscsi: Bump driver version (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix SGL posting for unaligned ICD values (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix AER handling in driver (Brian Maly) [Orabug: 17799766] - be2iscsi: Invalidate WRB in Abort/Reset Path (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix Insufficient Buffer Error returned in MBX Completion (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix log level for protocol specific logs (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix MSIx creation for SKH-R adapter (Brian Maly) [Orabug: 17799766] - be2iscsi: Display Port Identifier for each iSCSI function (Brian Maly) [Orabug: 17799766] - be2iscsi: Dispaly CID available for connection offload (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix chute cleanup during drivers unload. (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix connection offload to support Dual Chute. (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix CID allocation/freeing to support Dual chute mode (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix WRB_Q posting to support Dual Chute mode (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix SGL Initilization and posting Pages for Dual Chute (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix Template HDR support for Dual Chute mode (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix changes in ASYNC Path for SKH-R adapter (Brian Maly) [Orabug: 17799766] - be2iscsi: Config parameters update for Dual Chute Support (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix soft lock up issue during UE or if FW taking time to respond (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix locking mechanism in Unsol Path (Brian Maly) [Orabug: 17799766] - Subject: [PATCH 04/23] be2iscsi: Fix negotiated parameters upload to FW (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix repeated issue of MAC ADDR get IOCTL (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix the MCCQ count leakage (Brian Maly) [Orabug: 17799766] - be2iscsi: Fix Template HDR IOCTL (Brian Maly) [Orabug: 17799766] - cifs: enable SMB2 support (Jerry Snitselaar) [Orabug: 17486287] - [SCSI] Derive the FLUSH_TIMEOUT from the basic I/O timeout (James Bottomley) [Orabug: 17853273] - hyperv: Fix RNDIS send_completion code path (Haiyang Zhang) [Orabug: 17784576] - [SCSI] fix kabi break (Jerry Snitselaar) [Orabug: 17940334] - [SCSI] Disable WRITE SAME for RAID and virtual host adapter drivers (Martin K. Petersen) [Orabug: 17940334] - qlcnic: update to qlogic version 5.3.52.3 (Sucheta Chakraborty) [Orabug: 17937392] - netxen: update to qlogic version 4.0.82 (Sucheta Chakraborty) [Orabug: 17937454] - be2net: Warn users of possible broken functionality on BE2 cards with very old FW versions with latest driver (Somnath Kotur) [Orabug: 17937784] - net: be2net: remove unnecessary pci_set_drvdata() (Jingoo Han) [Orabug: 17937784] - be2net: Rework PCIe error report log messaging (Ajit Khaparde) [Orabug: 17937784] - be2net: change the driver version number to 4.9.224.0 (Ajit Khaparde) [Orabug: 17937784] - be2net: Display RoCE specific counters in ethtool -S (Ajit Khaparde) [Orabug: 17937784] - be2net: Call version 2 of GET_STATS ioctl for Skyhawk-R (Ajit Khaparde) [Orabug: 17937784] - be2net: add a counter for pkts dropped in xmit path (Sathya Perla) [Orabug: 17937784] - be2net: fix adaptive interrupt coalescing (Sathya Perla) [Orabug: 17937784] - be2net: call ENABLE_VF cmd for Skyhawk-R too (Vasundhara Volam) [Orabug: 17937784] - be2net: Create single TXQ on BE3-R 1G ports (Vasundhara Volam) [Orabug: 17937784] - be2net: Call be_vf_setup() even when VFs are enbaled from previous load (Vasundhara Volam) [Orabug: 17937784] - be2net: Fix to display the VLAN priority for a VF (Ajit Khaparde) [Orabug: 17937784] - be2net: Fix to configure VLAN priority for a VF interface. (Ajit Khaparde) [Orabug: 17937784] - be2net: Fix to allow VLAN configuration on VF interfaces. (Ajit Khaparde) [Orabug: 17937784] - be2net: Fix number of VLANs supported in UMC mode for BE3-R. (Ajit Khaparde) [Orabug: 17937784] - be2net: Fix VLAN promiscuous mode programming (Ajit Khaparde) [Orabug: 17937784] - be2net: Fix the size of be_nic_res_desc structure (Ajit Khaparde) [Orabug: 17937784] - be2net: Fix to prevent Tx stall on SH-R when packet size < 32 (Ajit Khaparde) [Orabug: 17937784] - emulex: Remove extern from function prototypes (Joe Perches) [Orabug: 17937784] - be2net: missing variable initialization (Antonio Alecrim Jr) [Orabug: 17937784] - be2net: set and query VEB/VEPA mode of the PF interface (Ajit Khaparde) [Orabug: 17937784] - drivers:net: Convert dma_alloc_coherent(...__GFP_ZERO) to dma_zalloc_coherent (Joe Perches) [Orabug: 17937784] - be2net: implement ethtool set/get_channel hooks (Sathya Perla) [Orabug: 17937784] - be2net: refactor be_setup() to consolidate queue creation routines (Sathya Perla) [Orabug: 17937784] - be2net: Fix be_cmd_if_create() to use MBOX if MCCQ is not created (Sathya Perla) [Orabug: 17937784] - be2net: refactor be_get_resources() code (Sathya Perla) [Orabug: 17937784] - be2net: Fixup profile management routines (Vasundhara Volam) [Orabug: 17937784] - be2net: use EQ_CREATEv2 for SH-R (Sathya Perla) [Orabug: 17937784] - be2net: Check for POST state in suspend-resume sequence (Sarveshwar Bandi) [Orabug: 17937784] - be2net: fix disabling TX in be_close() (Sathya Perla) [Orabug: 17937784] - be2net: Clear any capability flags that driver is not interested in. (Sarveshwar Bandi) [Orabug: 17937784] - be2net: Initialize 'status' in be_cmd_get_die_temperature() (Vasundhara Volam) [Orabug: 17937784] - be2net: fixup log msgs for async events (Vasundhara Volam) [Orabug: 17937784] - be2net: Missing changes from 'fix a Tx stall bug caused by a specific ipv6 packet' (Ravikumar Nelavelli) [Orabug: 17937784] - be2net: Fix displaying supported speeds for BE2 (Vasundhara Volam) [Orabug: 17937784] - be2net: don't limit max MAC and VLAN counts (Vasundhara Volam) [Orabug: 17937784] - be2net: Do not call get_die_temperature cmd for VF (Vasundhara Volam) [Orabug: 17937784] - be2net: Adding more speeds reported by get_settings (Vasundhara Volam) [Orabug: 17937784] - be2net: Staticize local functions (Jingoo Han) [Orabug: 17937784] - be2net: don't use dev_err when AER enabling fails (Ivan Vecera) [Orabug: 17937784] - be2net: delete primary MAC address while unloading (Sathya Perla) [Orabug: 17937784] - be2net: use SET/GET_MAC_LIST for SH-R (Sathya Perla) [Orabug: 17937784] - be2net: refactor MAC-addr setup code (Sathya Perla) [Orabug: 17937784] - be2net: fix pmac_id for BE3 VFs (Sathya Perla) [Orabug: 17937784] - be2net: allow VFs to program MAC and VLAN filters (Sathya Perla) [Orabug: 17937784] - be2net: fix MAC address modification for VF (Sathya Perla) [Orabug: 17937784] - [SCSI] sd: Reduce buffer size for vpd request (Bernd Schubert) [Orabug: 17940334] - [SCSI] sd: fix array cache flushing bug causing performance problems (James Bottomley) [Orabug: 17940334] - [SCSI] Fix race between starved list and device removal (James Bottomley) [Orabug: 17940334] - [SCSI] enable destruction of blocked devices which fail LUN scanning (Bart Van Assche) [Orabug: 17940334] - ixgbevf: upgrade from 2.8.7 to 2.11.3 (ethan.zhao) [Orabug: 17718254] - igb: set default RSS to 0 for performance tuning (ethan.zhao) [Orabug: 175934190] - igb: upgrade from 4.3.0 to 5.0.6 (ethan.zhao) [Orabug: 17711645] - e1000e: Avoid kernel crash during shutdown (Li Zhang) [Orabug: 17854071] - e1000e: upgrade from 2.4.14 to 2.5.4 (ethan.zhao) [Orabug: 17718216] - Btrfs: skip subvol entries when checking if we've created a dir already (Josef Bacik) [Orabug: 17661845] - Btrfs: fix incorrect inode acl reset (Filipe David Borba Manana) [Orabug: 17669341] - Btrfs: allow running defrag in parallel to administrative tasks (Stefan Behrens) [Orabug: 17886022] - zram: allow request end to coincide with disksize (Sergey Senozhatsky) [Orabug: 17879183] - configfs: fix race between dentry put and lookup (Junxiao Bi) [Orabug: 17931342] - xfs: fix sgid inheritance for subdirectories inheriting default acls [V3] (Carlos Maiolino) [Orabug: 17354234] - Revert 'sg: use rwsem to solve race during exclusive open' (Jerry Snitselaar) [Orabug: 17579131] - Revert 'sg: no need sg_open_exclusive_lock' (Jerry Snitselaar) [Orabug: 17579131] - Revert 'sg: checking sdp->detached isn't protected when open' (Jerry Snitselaar) [Orabug: 17579131] - Revert 'sg: push file descriptor list locking down to per-device locking' (Jerry Snitselaar) [Orabug: 17579131] - NVMe: Merge issue on character device bring-up (Keith Busch) [Orabug: 17940296] - NVMe: Handle ioremap failure (Keith Busch) [Orabug: 17940296] - NVMe: Add pci suspend/resume driver callbacks (Keith Busch) [Orabug: 17940296] - NVMe: Use normal shutdown (Keith Busch) [Orabug: 17940296] - NVMe: Separate controller init from disk discovery (Keith Busch) [Orabug: 17940296] - NVMe: Separate queue alloc/free from create/delete (Keith Busch) [Orabug: 17940296] - NVMe: Group pci related actions in functions (Keith Busch) [Orabug: 17940296] - NVMe: Disk stats for read/write commands only (Keith Busch) [Orabug: 17940296] - NVMe: Bring up cdev on set feature failure (Keith Busch) [Orabug: 17940296] - NVMe: Fix checkpatch issues (Keith Busch) [Orabug: 17940296] - NVMe: Namespace IDs are unsigned (Matthew Wilcox) [Orabug: 17940296] - NVMe: Call nvme_process_cq from submission path (Matthew Wilcox) [Orabug: 17940296] - NVMe: Remove 'process_cq did something' message (Matthew Wilcox) [Orabug: 17940296] - NVMe: Return correct value from interrupt handler (Matthew Wilcox) [Orabug: 17940296] - NVMe: Disk IO statistics (Keith Busch) [Orabug: 17940296] - NVMe: Restructure MSI / MSI-X setup (Matthew Wilcox) [Orabug: 17940296] - NVMe: Use kzalloc instead of kmalloc+memset (Tushar Behera) [Orabug: 17940296] - [SCSI] megaraid_sas: Fix synchronization problem between sysPD IO path and AEN path (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: fixes for few endianess issues (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: addded support for big endian architecture (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Version and Changelog update (Adam Radford) [Orabug: 17940378] - [SCSI] megaraid_sas: Add High Availability clustering support using shared Logical Disks (Adam Radford) [Orabug: 17940378] - scsi/megaraid fixed several typos in comments (Matthias Schid) [Orabug: 17940378] - [SCSI] megaraid_sas: megaraid_sas driver init fails in kdump kernel (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: fix a bug for 64 bit arches (Dan Carpenter) [Orabug: 17940378] - [SCSI] megaraid_sas: fix memory leak if SGL has zero length entries (Bj?rn Mork) [Orabug: 17940378] - [SCSI] megaraid: minor cut and paste error fixed. (James Georgas) [Orabug: 17940378] - [SCSI] megaraid_sas: Changelog and driver version update (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Add support to differentiate between iMR vs MR Firmware (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Add support for Uneven Span PRL11 (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Add support for Extended MSI-x vectors for 12Gb/s controller (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Set IoFlags to enable Fast Path for JBODs for 12 Gb/s controllers (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Add support to display Customer branding details in syslog (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Add support for MegaRAID Fury (device ID-0x005f) 12Gb/s controllers (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Set IO request timeout value provided by OS timeout for Tape devices (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Free event detail memory without device ID check (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Update balance count in driver to be in sync of firmware (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Fix the interrupt mask for Gen2 controller (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: Return DID_ERROR for SCSI IO, when controller is in critical h/w error (Sumit.Saxena@lsi.com) [Orabug: 17940378] - [SCSI] megaraid_sas: release lock on error path (Dan Carpenter) [Orabug: 17940378] - [SCSI] megaraid_sas: Use correct #define for MSI-X capability (Bjorn Helgaas) [Orabug: 17940378] - [SCSI] megaraid_sas: Version and Changelog update (Adam Radford) [Orabug: 17940378] - [SCSI] megaraid_sas: Dont load DevHandle unless FastPath enabled (Adam Radford) [Orabug: 17940378] - [SCSI] megaraid_sas: Add 4k FastPath DIF support (Adam Radford) [Orabug: 17940378] - megaraid: Revert driver update (Martin K. Petersen) [Orabug: 17940378] - cciss: fix broken mutex usage in ioctl (Stephen M. Cameron) [Orabug: 17763620] - cciss: add cciss_mutex (Arnd Bergmann) [Orabug: 17763620] - cciss: remove cciss_kernel_compat.h (Vaughan Cao) [Orabug: 17763620] - block: add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [Orabug: 17763620] - cciss: add small delay when using PCI Power Management to reset for kump (Mike Miller) [Orabug: 17763620] - cciss: set max scatter gather entries to 32 on P600 (Mike Miller) [Orabug: 17763620] - cciss: bug fix to prevent cciss from loading in kdump crash kernel (Mike Miller) [Orabug: 17763620] - cciss: change lowercase to uppercase for P700M def in products (Vaughan Cao) [Orabug: 17763620] - cciss: remove __dev* markings (Vaughan Cao) [Orabug: 17763620] - cciss: upgrade to 4.6.28 (Vaughan Cao) [Orabug: 17763620] - Revert 'SPEC: Fix xen multiboot support' (Jerry Snitselaar) [Orabug: 17792303] - kbuild: Set objects.builtin dependency to bzImage for CONFIG_CTF (Jerry Snitselaar) [Orabug: 17510915] - ubifs: wait for page writeback to provide stable pages (Jan Kara) [Orabug: 17939878] - ocfs2: wait for page writeback to provide stable pages (Jan Kara) [Orabug: 17939878] - block: optionally snapshot page contents to provide stable pages during write (Darrick J. Wong) [Orabug: 17939878] - mm: only enforce stable page writes if the backing device requires it (Darrick J. Wong) [Orabug: 17939878] - bdi: allow block devices to say that they require stable page writes (Darrick J. Wong) [Orabug: 17939878] - netfilter: enable log target (Jerry Snitselaar) [Orabug: 17885348] - qla4xxx: Updated driver version to 5.04.00.00.06.02-uek3 (Tej Parkash) [Orabug: 17960427] - qla4xxx: overflow in qla4xxx_set_chap_entry() (Dan Carpenter) [Orabug: 17960427] - qla4xxx: Add support for additional network parameters settings (Harish Zunjarrao) [Orabug: 17960427] - iscsi_transport: Additional parameters for network settings (Harish Zunjarrao) [Orabug: 17960427] - iscsi_transport: Remove net param enum values (Harish Zunjarrao) [Orabug: 17960427] - qla4xxx: Add support to get CHAP details for flash target session (Adheer Chandravanshi) [Orabug: 17960427] - qla4xxx: Add support to set CHAP entries (Adheer Chandravanshi) [Orabug: 17960427] - scsi_transport_iscsi: Add support to set CHAP entries (Adheer Chandravanshi) [Orabug: 17960427] - qla4xxx: Use offset based on adapter type to set CHAP entry in flash (Adheer Chandravanshi) [Orabug: 17960427] - qla4xxx: Populate local CHAP credentials for flash target sessions (Adheer Chandravanshi) [Orabug: 17960427] - qla4xxx: Support setting of local CHAP index for flash target entry (Adheer Chandravanshi) [Orabug: 17960427] - qla4xxx: Correct the check for local CHAP entry type (Adheer Chandravanshi) [Orabug: 17960427] - qla4xxx: correctly update session discovery_parent_idx. (Manish Rangankar) [Orabug: 17960427] - qla4xxx: Return error if minidump data collection fails (Vikas Chaudhary) [Orabug: 17960427] - qla4xxx: Fix the minidump data collection check in for loop (Santosh Vernekar) [Orabug: 17960427] - qla4xxx: Add pex-dma support for capturing minidump (Santosh Vernekar) [Orabug: 17960427] - qla4xxx: Update Copyright header (Vikas Chaudhary) [Orabug: 17960427] - qla4xxx: Implementation of ACB configuration during Loopback for ISP8042 (Nilesh Javali) [Orabug: 17960427] - qla4xxx: Added support for ISP8042 (Vikas Chaudhary) [Orabug: 17960427] - ip_output: do skb ufo init for peeked non ufo skb as well (Jiri Pirko) [Orabug: 17951078] {CVE-2013-4470} - ip6_output: do skb ufo init for peeked non ufo skb as well (Jiri Pirko) [Orabug: 17951080] {CVE-2013-4470} - KVM: x86: fix guest-initiated crash with x2apic (CVE-2013-6376) (Gleb Natapov) [Orabug: 17951067] {CVE-2013-6376} - KVM: x86: Convert vapic synchronization to _cached functions (CVE-2013-6368) (Andy Honig) [Orabug: 17951071] {CVE-2013-6368} - KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) (Andy Honig) [Orabug: 17951073] {CVE-2013-6367} - SUNRPC: don't map EKEYEXPIRED to EACCES in call_refreshresult (Andy Adamson) [Orabug: 17931738] - NFSv4: Fix state reference counting in _nfs4_opendata_reclaim_to_nfs4_state (Trond Myklebust) [Orabug: 17931293] - NFSv4: don't reprocess cached open CLAIM_PREVIOUS (Weston Andros Adamson) [Orabug: 17931292] - NFSv4: don't fail on missing fattr in open recover (Weston Andros Adamson) [Orabug: 17931290] - NFSv4: fix NULL dereference in open recover (Weston Andros Adamson) [Orabug: 17931281] - NFSv4: Fix a use-after-free situation in _nfs4_proc_getlk() (Trond Myklebust) [Orabug: 17931272] - xen/blkback: fix reference counting (Vegard Nossum) [Orabug: 17931209] - blk-core: Fix memory corruption if blkcg_init_queue fails (Mikulas Patocka) [Orabug: 17931205] - xfs: add capability check to free eofblocks ioctl (Dwight Engen) [Orabug: 17931096] - compiler-gcc.h: Add gcc-recommended GCC_VERSION macro (Daniel Santos) [Orabug: 17882877] - fix kabi breakage (Darrick J. Wong) [Orabug: 14548775] - direct-io: Handle O_(D)SYNC AIO (Darrick J. Wong) [Orabug: 14548775] - direct-io: Implement generic deferred AIO completions for ext4 (Darrick J. Wong) [Orabug: 14548775] - direct-io: Implement generic deferred AIO completions (Darrick J. Wong) [Orabug: 14548775] [3.8.13-20.el6uek] - KVM: Fix iommu map/unmap to handle memory slot moves (Alex Williamson) [Orabug: 17841960] {CVE-2013-4592} - ansi_cprng: Fix off by one error in non-block size request (Jerry Snitselaar) [Orabug: 17837997] {CVE-2013-4345} - ixgbe: update from 3.15.1 to 3.18.7 (ethan.zhao) [Orabug: 17718073] - x86, mtrr: Fix original mtrr range get for mtrr_cleanup (Yinghai Lu) [Orabug: 17812759] - SUNRPC: Fix a data corruption issue when retransmitting RPC calls (Trond Myklebust) [Orabug: 17821884] - [SCSI] hpsa: remove unneeded variable (Tomas Henzl) [Orabug: 17719404] - [SCSI] hpsa: housekeeping patch for device_id and product arrays (Mike Miller) [Orabug: 17719404] - hpsa: add HP Smart Array Gen8 name P822se (Vaughan Cao) [Orabug: 17719404] - [SCSI] hpsa: add HP Smart Array Gen9 PCI ID's (Mike Miller) [Orabug: 17719404] - hpsa: Convert retrun typos to return (Joe Perches) [Orabug: 17719404] - [SCSI] hpsa: fix warning with smp_processor_id() in preemptible (John Kacur) [Orabug: 17719404] - [SCSI] hpsa: fix a race in cmd_free/scsi_done (Tomas Henzl) [Orabug: 17719404] - hpsa: fix compilation error of __dev* markings (Vaughan Cao) [Orabug: 17719404] - hpsa: upgrade to 3.4.2-5 (Vaughan Cao) [Orabug: 17719404] [3.8.13-19.el6uek] - net: fix cipso packet validation when !NETLABEL (Seif Mazareeb) [Orabug: 17806518] - can: dev: fix nlmsg size calculation in can_get_size() (Marc Kleine-Budde) [Orabug: 17806517] - ipv4: fix ineffective source address selection (Jiri Benc) [Orabug: 17806516] - ecryptfs: Fix memory leakage in keystore.c (Geyslan G. Bem) [Orabug: 17806513] - connector: use nlmsg_len() to check message length (Mathias Krause) [Orabug: 17806512] - net: vlan: fix nlmsg size calculation in vlan_get_size() (Marc Kleine-Budde) [Orabug: 17806510] - SPEC: Fix xen multiboot support (Zhigang Wang) [Orabug: 17792303] - config: enable CONFIG_PANIC_ON_OOPS on sparc (Jerry Snitselaar) [Orabug: 17762461] - NFSv4.1: Don't lose locks when a server reboots during delegation return (Trond Myklebust) [Orabug: 17419831] - NFSv4.1 end back channel session draining (Andy Adamson) [Orabug: 17419831] - NFSv4.1 Fix a pNFS session draining deadlock (Andy Adamson) [Orabug: 17419831] - NFSv4.1: Ensure that we free the lock stateid on the server (Trond Myklebust) [Orabug: 17419831] - NFSv4: Convert nfs41_free_stateid to use an asynchronous RPC call (Trond Myklebust) [Orabug: 17419831] - NFSv4: Don't recheck permissions on open in case of recovery cached open (Trond Myklebust) [Orabug: 17419831] - NFSv4: Record the OPEN create mode used in the nfs4_opendata structure (Trond Myklebust) [Orabug: 17419831] - NFSv4: Fix another open/open_recovery deadlock (Trond Myklebust) [Orabug: 17419831] - NLM: Ensure that we resend all pending blocking locks after a reclaim (Trond Myklebust) [Orabug: 17419831] - NFSv4: Fix a reboot recovery race when opening a file (Trond Myklebust) [Orabug: 17419831] - NFSv4: Ensure delegation recall and byte range lock removal don't conflict (Trond Myklebust) [Orabug: 17419831] - NFSv4: Fix up the return values of nfs4_open_delegation_recall (Trond Myklebust) [Orabug: 17419831] - NFSv4.1: Don't lose locks when a server reboots during delegation return (Trond Myklebust) [Orabug: 17419831] - NFSv4.1: Prevent deadlocks between state recovery and file locking (Trond Myklebust) [Orabug: 17419831] - NFSv4: Allow the state manager to mark an open_owner as being recovered (Trond Myklebust) [Orabug: 17419831] - drivers/base/core.c: Always output device renaming messages. (ethan.zhao) [Orabug: 17477783] - ixgbevf: Don't output NIC name before registered. (ethan.zhao) [Orabug: 17477783] - xen/smp: initialize IPI vectors before marking CPU online (Chuck Anderson) [Orabug: 17800009] - cpu: make sure that cpu/online file created before KOBJ_ADD is emitted (Igor Mammedov) [Orabug: 17800009] - cpu: fix 'crash_notes' and 'crash_notes_size' leaks in register_cpu() (Igor Mammedov) [Orabug: 17800009] dtrace-modules-3.8.13-26.el6uek [0.4.2-3] - Obsolete the old provider headers package. [Orabug: 18061595] [0.4.2-2] - Change name of provider headers package, to avoid conflicts on yum update. [Orabug: 18061595] [0.4.2-1] - Fix 'vtimestamp' implementation. [Orabug: 17741477] - Support SDT probes points in kernel modules. [Orabug: 17851716] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-2147 CVE-2013-2148 CVE-2013-2850 CVE-2013-2893 CVE-2013-2895 CVE-2013-2896 CVE-2013-2897 CVE-2013-2898 CVE-2013-2899 CVE-2013-4350 CVE-2013-4205 CVE-2013-4247 CVE-2013-4270 CVE-2013-4300 CVE-2013-6431 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.214.3] - inet: fix addr_len/msg->msg_namelen assignment in recv_error and rxpmtu functions (Hannes Frederic Sowa) [18247289] {CVE-2013-7263} {CVE-2013-7265} [2.6.39-400.214.2] - inet: prevent leakage of uninitialized memory to user in recv syscalls (Hannes Frederic Sowa) [18238382] {CVE-2013-7263} {CVE-2013-7265} - exec/ptrace: fix get_dumpable() incorrect tests (Kees Cook) [18238353] {CVE-2013-2929} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-2929 CVE-2013-7263 CVE-2013-7265 Oracle Linux 5 Oracle Linux 6 [2.6.32-400.34.3] - inet: fix addr_len/msg->msg_namelen assignment in recv_error and rxpmtu functions (Hannes Frederic Sowa) [18247290] {CVE-2013-7263} {CVE-2013-7265} [2.6.32-400.34.2] - exec/ptrace: fix get_dumpable() incorrect tests (Kees Cook) [18239033] {CVE-2013-2929} {CVE-2013-2929} - inet: prevent leakage of uninitialized memory to user in recv syscalls (Hannes Frederic Sowa) [18239036] {CVE-2013-7263} {CVE-2013-7265} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-2929 CVE-2013-7263 CVE-2013-7265 Oracle Linux 6 [3.8.13-26.1.1.el6uek] - inet: fix addr_len/msg->msg_namelen assignment in recv_error and rxpmtu functions (Hannes Frederic Sowa) [18247287] {CVE-2013-7263} {CVE-2013-7265} - inet: prevent leakage of uninitialized memory to user in recv syscalls (Hannes Frederic Sowa) [18238377] {CVE-2013-7263} {CVE-2013-7265} - exec/ptrace: fix get_dumpable() incorrect tests (Kees Cook) [18238348] {CVE-2013-2929} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-2929 CVE-2013-7263 CVE-2013-7265 Oracle Linux 6 kernel-uek [3.8.13-26.2.2.el6uek] - netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (Daniel Borkmann) [Orabug: 18421673] {CVE-2014-2523} - cifs: ensure that uncached writes handle unmapped areas correctly (Jeff Layton) [Orabug: 18461067] {CVE-2014-0069} {CVE-2014-0069} - net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH capable (Daniel Borkmann) [Orabug: 18461065] {CVE-2014-0101} - vhost-net: insufficient handling of error conditions in get_rx_bufs() (Guangyu Sun) [Orabug: 18461050] {CVE-2014-0055} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0055 CVE-2014-0069 CVE-2014-0101 CVE-2014-2523 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.214.4] - netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (Daniel Borkmann) [Orabug: 18462070] {CVE-2014-2523} - net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH capable (Daniel Borkmann) [Orabug: 18461090] {CVE-2014-0101} - vhost-net: insufficient handling of error conditions in get_rx_bufs() (Guangyu Sun) [Orabug: 18461089] {CVE-2014-0055} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0055 CVE-2014-0101 CVE-2014-2523 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.34.4uek] - netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (Daniel Borkmann) [Orabug: 18462076] {CVE-2014-2523} - net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH capable (Daniel Borkmann) [Orabug: 18461091] {CVE-2014-0101} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0101 CVE-2014-2523 Oracle Linux 6 [3.8.13-26.2.3.el6uek] - net: ipv4: current group_info should be put after using. (Wang, Xiaoming) [Orabug: 18603523] {CVE-2014-2851} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2851 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.214.5] - net: ipv4: current group_info should be put after using. (Wang, Xiaoming) [Orabug: 18603524] {CVE-2014-2851} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-2851 Oracle Linux 6 [3.8.13-26.2.4.el6uek] - aacraid: missing capable() check in compat ioctl (Dan Carpenter) [Orabug: 18721961] {CVE-2013-6383} - vhost: fix total length when packets are too short (Michael S. Tsirkin) [Orabug: 18721976] {CVE-2014-0077} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0077 CVE-2013-6383 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.214.6] - aacraid: missing capable() check in compat ioctl (Dan Carpenter) [Orabug: 18721962] {CVE-2013-6383} - vhost: fix total length when packets are too short (Michael S. Tsirkin) [Orabug: 18721977] {CVE-2014-0077} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0077 CVE-2013-6383 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.34.5uek] - aacraid: missing capable() check in compat ioctl (Dan Carpenter) [Orabug: 18723276] {CVE-2013-6383} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-6383 Oracle Linux 6 kernel-uek [3.8.13-35.el6uek] - n_tty: Fix n_tty_write crash when echoing in raw mode (Peter Hurley) [Orabug: 18754908] {CVE-2014-0196} {CVE-2014-0196} [3.8.13-34.el6uek] - aacraid: missing capable() check in compat ioctl (Dan Carpenter) [Orabug: 18721960] {CVE-2013-6383} - vhost: fix total length when packets are too short (Michael S. Tsirkin) [Orabug: 18721975] {CVE-2014-0077} [3.8.13-33.el6uek] - dtrace: ensure one can try to get user pages without locking or faulting (Kris Van Hees) [Orabug: 18653173] - ipv6: don't set DST_NOCOUNT for remotely added routes (Sabrina Dubroca) [Orabug: 18681501] {CVE-2014-2309} - kvm: x86: fix emulator buffer overflow (CVE-2014-0049) (Andrew Honig) [Orabug: 18681519] {CVE-2014-0049} - ib_core: fmr pool hard lock up when cache enabled (Shamir Rabinovitch) [Orabug: 18408531] - bnx2x: disable PTP clock support (Jerry Snitselaar) [Orabug: 18605376] - x86, mm: Revert back good_end setting for 64bit (Brian Maly) [Orabug: 17648536] - IB/sdp: disable APM by default (Shamir Rabinovitch) [Orabug: 18443201] - vxlan: kernel panic when bringing up vxlan (Venkat Venkatsubra) [Orabug: 18295741] - ocfs2: call ocfs2_update_inode_fsync_trans when updating any inode (Darrick J. Wong) [Orabug: 18257094] - ocfs2: improve fsync efficiency and fix deadlock between aio_write and sync_file (Darrick J. Wong) [Orabug: 18257094] - Revert "ocfs2: fix i_mutex deadlock between aio_write and sync_file" (Jerry Snitselaar) [Orabug: 18257094] - config: align with rhck (Jerry Snitselaar) [Orabug: 18685975] - config: disable atmel drivers for ol7 (Jerry Snitselaar) [Orabug: 18665656] - config: enable support for squashfs features (Jerry Snitselaar) [Orabug: 18655723] - qla4xxx: Update driver verion to v5.04.00.05.06.02-uek3 (Tej Parkash) [Orabug: 18552248] - net: ipv4: current group_info should be put after using. (Wang, Xiaoming) [Orabug: 18603519] {CVE-2014-2851} [3.8.13-32.el6uek] - mm / dtrace: Allow DTrace to entirely disable page faults. (Nick Alcock) [Orabug: 18412802] - mm: allow __get_user_pages() callers to avoid triggering page faults. (Nick Alcock) [Orabug: 18412802] - config: enable nfs client support for rdma (Jerry Snitselaar) [Orabug: 18560595] - NFS: Fix negative overflow in SETATTR timestamps (Chuck Lever) [Orabug: 18476361] - NFS: Transfer full int64 for NFSv4 SETATTR timestamps (Chuck Lever) [Orabug: 18476361] - NFS: Block file size updates during async READ (Chuck Lever) [Orabug: 18391310] - NFS: Use an RPC/RDMA long request for NFS symlink operations (Chuck Lever) [Orabug: 18261861] - SUNRPC: Support long RPC/RDMA requests (Chuck Lever) [Orabug: 18261861] - xprtrdma: Split the completion queue (Chuck Lever) [Orabug: 18560595] - xprtrdma: Make rpcrdma_ep_destroy() return void (Chuck Lever) [Orabug: 18560595] - xprtrdma: Simplify rpcrdma_deregister_external() synopsis (Chuck Lever) [Orabug: 18560595] - xprtrdma: Remove support for MEMWINDOWS registration mode (Chuck Lever) [Orabug: 18560595] - xprtrdma: Disable ALLPHYSICAL mode by default (Chuck Lever) [Orabug: 18560595] - xprtrdma: Remove BOUNCEBUFFERS memory registration mode (Chuck Lever) [Orabug: 18560595] - SUNRPC: RPC/RDMA must invoke xprt_wake_pending_tasks() in process context (Chuck Lever) [Orabug: 18560595] - xprtrdma: add separate Kconfig options for NFSoRDMA client and server support (Jeff Layton) [Orabug: 18560595] - NFS: incorrect "port=" value in /proc/mounts (Chuck Lever) [Orabug: 18560595] - NFS: advertise only supported callback netids (Chuck Lever) [Orabug: 18560595] - SUNRPC: remove KERN_INFO from dprintk() call sites (Chuck Lever) [Orabug: 18560595] - SUNRPC: Fix large reads on NFS/RDMA (Chuck Lever) [Orabug: 18560595] - fnic: Failing to queue aborts due to Q full cause terminate driver timeout (Simha) [Orabug: 18548644] - net: enic: include irq.h for irqreturn_t definitions (Josh Boyer) [Orabug: 18548634] - enic: Call dev_kfree_skb_any instead of dev_kfree_skb. (Eric W. Biederman) [Orabug: 18548634] - enic: Don't receive packets when the napi budget == 0 (Eric W. Biederman) [Orabug: 18548634] - net: enic: slight optimization of addr compare (dingtianhong) [Orabug: 18548634] - net: enic: remove unnecessary pci_set_drvdata() (Jingoo Han) [Orabug: 18548634] - driver/net: enic: update enic maintainers and driver (govindarajulu.v) [Orabug: 18548634] - driver/net: enic: Exposing symbols for Cisco's low latency driver (govindarajulu.v) [Orabug: 18548634] - driver/net: enic: Try DMA 64 first, then failover to DMA (govindarajulu.v) [Orabug: 18548634] - driver/net: enic: record q_number and rss_hash for skb (govindarajulu.v) [Orabug: 18548634] - driver/net: enic: Add multi tx support for enic (govindarajulu.v) [Orabug: 18548634] - drivers/net: enic: Generate notification of hardware crash (Neel Patel) [Orabug: 18548634] - drivers/net: enic: Add an interface for USNIC to interact with firmware (Neel Patel) [Orabug: 18548634] - drivers/net: enic: Adding support for Cisco Low Latency NIC (Neel Patel) [Orabug: 18548634] - drivers/net: enic: Move ethtool code to a separate file (Neel Patel) [Orabug: 18548634] - drivers/net: enic: release rtnl_lock on error-path (Konstantin Khlebnikov) [Orabug: 18548634] - enic: be less verbose about non-critical firmware errors (Stefan Assmann) [Orabug: 18548634] - enic: change sprintf() to snprintf() (Dan Carpenter) [Orabug: 18548634] - dtrace: implement omni-present cyclics (Kris Van Hees) [Orabug: 18323501] - Update .gitignore with generated SDT files. (Nick Alcock) [Orabug: 17851716] - dtrace: avoid unreliable entries in stack() output (Kris Van Hees) [Orabug: 18323450] - drm/i915: hsw: replace !is_pch_edp() with port==PORT_A (Imre Deak) [Orabug: 18429992] - drm/i915: IVB/HSW have 32 fence register (Ville Syrjala) [Orabug: 18429992] - drm/i915: Configure GAM_ECOCHK appropriatly for Gen7 (Ville Syrjala) [Orabug: 18429992] - drm/i915: use lower aux clock divider on non-ULT HSW (Jani Nikula) [Orabug: 18429992] - drm/i915: HSW PM Frequency bits fix (Rodrigo Vivi) [Orabug: 18429992] - drm/i915: there's no PIPESTAT on HAS_PCH_SPLIT platforms (Paulo Zanoni) [Orabug: 18429992] - drm/i915: there's no DSPPOS register on gen4+ (Paulo Zanoni) [Orabug: 18429992] - drm/i915: reorganize intel_lvds_supported (Paulo Zanoni) [Orabug: 18429992] - drm/i915: fix DSPADDR Gen check (Paulo Zanoni) [Orabug: 18429992] - drm/i915: there's no DSPADDR register on Haswell (Paulo Zanoni) [Orabug: 18429992] - drm/i915: there's no DSPSIZE register on gen4+ (Paulo Zanoni) [Orabug: 18429992] - drm/i915: Use cpu_transcoder for HSW_TVIDEO_DIP_* instead of pipe (Rodrigo Vivi) [Orabug: 18429992] - PM: intel_powerclamp: enable driver in defconfigs (Brian Maly) [Orabug: 18429987] - intel_powerclamp: Fix cstate counter detection. (Yuxuan Shui) [Orabug: 18429987] - thermal/intel_powerclamp: Add newer CPU models (Jacob Pan) [Orabug: 18429987] - PM: Introduce Intel PowerClamp Driver (Jacob Pan) [Orabug: 18429987] - tick: export nohz tick idle symbols for module use (Jacob Pan) [Orabug: 18429987] - x86/nmi: export local_touch_nmi() symbol for modules (Jacob Pan) [Orabug: 18429987] - ioatdma: disable RAID on non-Atom platforms and reenable unaligned copies (Brice Goglin) [Orabug: 18430022] - ioatdma: ioat3_alloc_sed can be static (Fengguang Wu) [Orabug: 18430022] - ioatdma: Adding write back descriptor error status support for ioatdma 3.3 (Dave Jiang) [Orabug: 18430022] - ioatdma: S1200 platforms ioatdma channel 2 and 3 falsely advertise RAID cap (Dave Jiang) [Orabug: 18430022] - ioatdma: Adding support for 16 src PQ ops and super extended descriptors (Dave Jiang) [Orabug: 18430022] - ioatdma: skip silicon bug workaround for pq_align for cb3.3 (Dave Jiang) [Orabug: 18430022] - ioatdma: Removing PQ val disable for cb3.3 (Dave Jiang) [Orabug: 18430022] - ioatdma: channel reset scheme fixup on Intel Atom S1200 platforms (Dave Jiang) [Orabug: 18430022] - ioatdma: Add 64bit chansts register read for ioat v3.3. (Dave Jiang) [Orabug: 18430022] - ioatdma: Adding PCI IDs for Intel Atom S1200 product family ioatdma devices (Dave Jiang) [Orabug: 18430022] - ioatdma: Adding Haswell devid for ioatdma (Dave Jiang) [Orabug: 18430022] - ioatdma: allow all channels to have irq coalescing support (Dave Jiang) [Orabug: 18430022] - ioatdma: make debug output more readable (Dave Jiang) [Orabug: 18430022] - ioat/dca: Update DCA BIOS workarounds to use TAINT_FIRMWARE_WORKAROUND (Alexander Duyck) [Orabug: 18430022] - dmaengine: ioat - fix spare sparse complain (Fengguang Wu) [Orabug: 18430022] - ioatdma: fix race between updating ioat->head and IOAT_COMPLETION_PENDING (Dave Jiang) [Orabug: 18430022] - ioat: remove chanerr mask setting for IOAT v3.x (Dave Jiang) [Orabug: 18430022] - PCI: Remove Intel Haswell D3 delays (Todd E Brandt) [Orabug: 18559933] - hyperv-fb: kick off efifb early (Gerd Hoffmann) [Orabug: 18276803] - hyperv-fb: add support for generation 2 virtual machines. (Gerd Hoffmann) [Orabug: 18276803] - vmbus: use resource for hyperv mmio region (Gerd Hoffmann) [Orabug: 18276803] - vmbus: add missing breaks (Gerd Hoffmann) [Orabug: 18276803] - Drivers: hv: fcopy_open() can be static (Fengguang Wu) [Orabug: 18276803] - Drivers: hv: Implement the file copy service (K. Y. Srinivasan) [Orabug: 18276803] - hv: Add hyperv.h to uapi headers (Bjarke Istrup Pedersen) [Orabug: 18276803] - Drivers: hv: Ballon: Make pressure posting thread sleep interruptibly (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: Cleanup the packet send path (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: Extract the mmio information from DSDT (K. Y. Srinivasan) [Orabug: 18276803] - add support for Hyper-V reference time counter (Vadim Rozenfeld) [Orabug: 18276803] - hyperv: enable framebuffer and keyboard drivers (Jerry Snitselaar) [Orabug: 18276803] - Drivers: hv: remove HV_DRV_VERSION (Olaf Hering) [Orabug: 18276803] - x86, hyperv: Move a variable to avoid an unused variable warning (H. Peter Anvin) [Orabug: 18276803] include (David Rientjes) [Orabug: 18276803] - x86, hyperv: Correctly guard the local APIC calibration code (K. Y. Srinivasan) [Orabug: 18276803] - x86, hyperv: Get the local APIC timer frequency from the hypervisor (K. Y. Srinivasan) [Orabug: 18276803] - x86: Correctly detect hypervisor (Jason Wang) [Orabug: 18276803] - x86, hyperv: Handle Xen emulation of Hyper-V more gracefully (K. Y. Srinivasan) [Orabug: 18276803] - X86: Handle Hyper-V vmbus interrupts as special hypervisor interrupts (K. Y. Srinivasan) [Orabug: 18276803] - X86: Add a check to catch Xen emulation of Hyper-V (K. Y. Srinivasan) [Orabug: 18276803] - Input: hyperv-keyboard - pass through 0xE1 prefix (K. Y. Srinivasan) [Orabug: 18276803] - Input: add a driver to support Hyper-V synthetic keyboard (K. Y. Srinivasan) [Orabug: 18276803] - [SCSI] storvsc: NULL pointer dereference fix (Ales Novak) [Orabug: 18276803] - [SCSI] storvsc: Increase the value of STORVSC_MAX_IO_REQUESTS (K. Y. Srinivasan) [Orabug: 18276803] - [SCSI] storvsc: Support FC devices (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Add the GUID fot synthetic fibre channel device (K. Y. Srinivasan) [Orabug: 18276803] - [SCSI] storvsc: Implement multi-channel support (K. Y. Srinivasan) [Orabug: 18276803] - [SCSI] storvsc: Update the storage protocol to win8 level (K. Y. Srinivasan) [Orabug: 18276803] - [SCSI] storvsc: Increase the value of scsi timeout for storvsc devices (K. Y. Srinivasan) [Orabug: 18276803] - [SCSI] storvsc: Handle dynamic resizing of the device (K. Y. Srinivasan) [Orabug: 18276803] - [SCSI] storvsc: Restructure error handling code on command completion (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: scsi: storvsc: Use the consolidated GUID definition (K. Y. Srinivasan) [Orabug: 18276803] - HID: hyperv: make sure input buffer is big enough (David Herrmann) [Orabug: 18276803] - HID: hyperv: convert alloc+memcpy to memdup (Thomas Meyer) [Orabug: 18276803] - Drivers: hid: hid-hyperv: Use consolidated GUID definitions (K. Y. Srinivasan) [Orabug: 18276803] - hyperv: Move state setting for link query (Haiyang Zhang) [Orabug: 18276803] - hyperv: Fix the carrier status setting (Haiyang Zhang) [Orabug: 18276803] - hyperv: Fix race between probe and open calls (Haiyang Zhang) [Orabug: 18276803] - hyperv: Fix the NETIF_F_SG flag setting in netvsc (Haiyang Zhang) [Orabug: 18276803] - Fix the VLAN_TAG_PRESENT in netvsc_recv_callback() (Haiyang Zhang) [Orabug: 18276803] - hyperv: Fix vlan_proto setting in netvsc_recv_callback() (Haiyang Zhang) [Orabug: 18276803] - hyperv: Fix a compiler warning in netvsc_send() (Haiyang Zhang) [Orabug: 18276803] - hyperv: Fix a kernel warning from netvsc_linkstatus_callback() (Haiyang Zhang) [Orabug: 18276803] - Drivers: net: hyperv: Use the consolidated GUID definition (K. Y. Srinivasan) [Orabug: 18276803] - hyperv-fb: add blanking support (Gerd Hoffmann) [Orabug: 18276803] - hyperv-fb: add pci stub (Gerd Hoffmann) [Orabug: 18276803] - drivers/video: add Hyper-V Synthetic Video Frame Buffer Driver (Haiyang Zhang) [Orabug: 18276803] - Drivers: hv: vmbus: Don't timeout during the initial connection with host (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: Specify the target CPU that should receive notification (K. Y. Srinivasan) [Orabug: 18276803] - hyperv: Add support for physically discontinuous receive buffer (Haiyang Zhang) [Orabug: 18276803] - drivers: hv: Mark the function hv_synic_free_cpu() as static in hv.c (Rashika Kheria) [Orabug: 18276803] - Drivers: hv: vmbus: Fix a bug in channel rescind code (K. Y. Srinivasan) [Orabug: 18276803] - drivers: hv: Fix wrong check for synic_event_page (Felipe Pena) [Orabug: 18276803] - Drivers: hv: vmbus: Terminate vmbus version negotiation on timeout (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: util: Correctly support ws2008R2 and earlier (K. Y. Srinivasan) [Orabug: 18276803] - hv: vmbus: fix vmbus_recvpacket_raw() return code (Dan Carpenter) [Orabug: 18276803] - hv: Change variable type to bool (Peter Senna Tschudin) [Orabug: 18276803] - Drivers: hv: vmbus: Do not attempt to negoatiate a new version prematurely (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: Fix a bug in the handling of channel offers (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Do not post pressure status if interrupted (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Fix a bug in the hot-add code (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: incorrect device name is printed when child device is unregistered (Fernando Soto) [Orabug: 18276803] - Drivers: hv: balloon: Initialize the transaction ID just before sending the packet (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: util: Fix a bug in version negotiation code for util services (K. Y. Srinivasan) [Orabug: 18276803] - drivers: hv: allocate synic structures before hv_synic_init() (Jason Wang) [Orabug: 18276803] - drivers: hv: check interrupt mask before read_index (Jason Wang) [Orabug: 18276803] - drivers: hv: switch to use mb() instead of smp_mb() (Jason Wang) [Orabug: 18276803] - Drivers: hv: vmbus: Implement multi-channel support (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Fix a bug in get_vp_index() (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: Fix a bug in hv_need_to_signal() (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Notify the host of permanent hot-add failures (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Support 2M page allocations for ballooning (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Permit Linux to specify hot-add alignment requirements (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: make local functions static (Wei Yongjun) [Orabug: 18276803] - Drivers: hv: Add a new driver to support host initiated backup (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: Handle channel rescind message correctly (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Implement hot-add functionality (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Make the balloon driver not unloadable (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Execute hot-add code in a separate context (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Execute balloon inflation in a separate context (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Do not request completion notification (K. Y. Srinivasan) [Orabug: 18276803] - driver: hv: remove cast for kmalloc return value (Zhang Yanfei) [Orabug: 18276803] - Drivers: hv: vmbus: Use the new infrastructure for delivering VMBUS interrupts (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Prevent the host from ballooning the guest too low (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Add a parameter to delay pressure reporting (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: balloon: Make adjustments to the pressure report (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Use consolidated GUID definitions (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus: Consolidate all offer GUID definitions in hyperv.h (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Bind all vmbbus interrupts to the boot CPU (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: vmbus_flow_handler() can be static (Fengguang Wu) [Orabug: 18276803] - Drivers: hv: remove unused variable in vmbus_recvpacket_raw() (Wei Yongjun) [Orabug: 18276803] - Drivers: hv: Cleanup and consolidate reporting of build/version info (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Capture the host build information (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Implement flow management on the send side (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Enable protocol negotiation with win8 hosts (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Add a check to deal with spurious interrupts (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Handle vmbus interrupts concurrently on all cpus (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Manage event tasklets on per-cpu basis (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Get rid of unnecessary request for offers (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Get rid of the unused global signaling state (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Add code to distribute channel interrupt load (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Modify the interrupt handling code to support win8 and beyond (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Add state to manage incoming channel interrupt load (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Setup a mapping for Hyper-V's notion cpu ID (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Cleanup vmbus_set_event() to support win7 and beyond (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Manage signaling state on a per-connection basis (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Move vmbus version definitions to hyperv.h (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Change the signature of vmbus_set_event() (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Change the signature for hv_signal_event() (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Save and export negotiated vmbus version (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Extend/modify vmbus_channel_offer_channel for win7 and beyond (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Update the ring buffer structure to match win8 functionality (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Support handling multiple VMBUS versions (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Get rid of hv_get_ringbuffer_interrupt_mask() (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Optimize the signaling on the write path (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Optimize signaling in the read path (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Turn off batched reading for util drivers (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Add state to manage batched reading (K. Y. Srinivasan) [Orabug: 18276803] - Drivers: hv: Implement routines for read side signaling optimization (K. Y. Srinivasan) [Orabug: 18276803] - hv: hv_balloon: remove duplicated include from hv_balloon.c (Wei Yongjun) [Orabug: 18276803] - x86, kvm: Switch to use hypervisor_cpuid_base() (Jason Wang) [Orabug: 18276803] - x86: Introduce hypervisor_cpuid_base() (Jason Wang) [Orabug: 18276803] - x86, mm: Create slow_virt_to_phys() (Dave Hansen) [Orabug: 18276803] - x86, mm: Pagetable level size/shift/mask helpers (Dave Hansen) [Orabug: 18276803] - mm: export split_page() (K. Y. Srinivasan) [Orabug: 18276803] - x86, hyperv: HYPERV depends on X86_LOCAL_APIC (H. Peter Anvin) [Orabug: 18276803] - qla2xxx: Update the driver version to 8.07.00.08.39.0-k1. (Saurav Kashyap) [Orabug: 18524767] - qla2xxx: Remove ISP8044 ID from the pci table. (Saurav Kashyap) [Orabug: 18524767] - qla2xxx: Remove mapped vp index iterator macro dead code. (Himanshu Madhani) [Orabug: 18524767] - qla2xxx: Add MBC option for fast SFP data access. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Fix ISPFX00 not displaying the correct FW version after FW update through sysfs Interface. (Armen Baloyan) [Orabug: 18524767] - qla2xxx: Fix beacon blink logic for ISP26xx/83xx. (Himanshu Madhani) [Orabug: 18524767] - qla2xxx: Don't check for firmware hung during the reset context for ISP82XX. (Tej Prakash) [Orabug: 18524767] - qla2xxx: Fixup looking for a space in the outstanding_cmds array in qla2x00_alloc_iocbs(). (Chad Dupuis) [Orabug: 18524767] - qla2xxx: Delay driver unload if there is any pending activity going on. (Sawan Chandak) [Orabug: 18524767] - qla2xxx: ISP27xx queue index shadow registers. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: ISP27xx firmware dump template spec updates (including T274). (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Reduce the time we wait for a command to complete during SCSI error handling. (Chad Dupuis) [Orabug: 18524767] - qla2xxx: Check the QLA8044_CRB_DRV_ACTIVE_INDEX register when we are not the owner of the reset. (Hiral Patel) [Orabug: 18524767] - qla2xxx: Clear loop_id for ports that are marked lost during fabric scanning. (Chad Dupuis) [Orabug: 18524767] - qla2xxx: Adjust adapter reset routine to the changes in firmware specification for ISPFx00. (Armen Baloyan) [Orabug: 18524767] - qla2xxx: Avoid escalating the SCSI error handler if the command is not found in firmware. (Chad Dupuis) [Orabug: 18524767] - qla2xxx: IOCB data should be copied to I/O mem using memcpy_toio. (Atul Deshmukh) [Orabug: 18524767] - qla2xxx: Use proper log message for flash lock failed error for ISP82XX. (Atul Deshmukh) [Orabug: 18524767] - qla2xxx: Remove configure VFs mailbox command call. (Chad Dupuis) [Orabug: 18524767] - qla2xxx: ISP8044 poll ipmdio bus timeout improvement. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Poll during initialization for ISP25xx and ISP83xx. (Giridhar Malavali) [Orabug: 18524767] - qla2xxx: Fix build errors related to invalid print fields on some architectures. (Chad Dupuis) [Orabug: 18524767] file for msleep declartion in qla_nx2.c file. (Atul Deshmukh) [Orabug: 18524767] - qla2xxx: Use proper log message for flash lock failed error. (Atul Deshmukh) [Orabug: 18524767] - qla2xxx: Decrease pci access for response queue processing for ISPFX00. (Armen Baloyan) [Orabug: 18524767] - qla2xxx: Use jiffies instead of struct timeval and gettimeofday(). (Atul Deshmukh) [Orabug: 18524767] - qla2xxx: Update entry type 270 to match spec update. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Enable fw_dump_size for helga (Hiral Patel) [Orabug: 18524767] - qla2xxx: Remove unnecessary code from qlafx00_intr_handler (Hiral Patel) [Orabug: 18524767] - qla2xxx: Introduce fw_dump_flag to track fw dump progress (Hiral Patel) [Orabug: 18524767] - qla2xxx: Remove unnecessary delays from fw dump code path (Hiral Patel) [Orabug: 18524767] - qla2xxx: Track the process when the ROM_LOCK failure happens (Hiral Patel) [Orabug: 18524767] - qla2xxx: Correction to 27xx template entry types 256 and 258. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Add 8044 serdes bsg interface. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Fix P3P max debug ID. (Chad Dupuis) [Orabug: 18524767] - qla2xxx: Check for peg alive counter and clear any outstanding mailbox command. (Giridhar Malavali) [Orabug: 18524767] - qla2xxx: Support of new Helga minidump opcodes QLA8044_RDDFE(38), QLA8044_RDMDIO(39),QLA8044_POLLWR(40). (Pratik Mohanty) [Orabug: 18524767] - qla2xxx: Allow the next firmware dump if the previous dump capture fails for ISP8044. (Saurav Kashyap) [Orabug: 18524767] - qla2xxx: Add pci device id 0x2271. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Issue abort command for outstanding commands during cleanup when only firmware is alive. (Giridhar Malavali) [Orabug: 18524767] - qla2xxx: Log when device state is moved to failed state. (Giridhar Malavali) [Orabug: 18524767] - qla2xxx: Fix sparse warnings in qla_mr.c (Armen Baloyan) [Orabug: 18524767] - qla2xxx: Correct operations for ISP27xx template types 270 and 271. (Joe Carnuccio) [Orabug: 18524767] - qla2xxx: Add and use 32Gbps FC-GS definitions. (Chad Dupuis) [Orabug: 18524767] - qla2xxx: Do not schedule reset when one is already active when receiving an invalid status handle. (Chad Dupuis) [Orabug: 18524767] - qla2xxx: Add IOCB Abort command asynchronous handling (Armen Baloyan) [Orabug: 18524767] - qla2xxx: Add ISP2701 to PCI ID table. (Sawan Chandak) [Orabug: 18524767] - Update qlge driver to v1.00.00.34 (Sucheta Chakraborty) [Orabug: 18552225] - [SCSI] hpsa: update driver version to 3.4.4-1 (Stephen M. Cameron) [Orabug: 18524766] - [SCSI] hpsa: fix bad endif placement in RAID 5 mapper code (Stephen M. Cameron) [Orabug: 18524766] - [SCSI] hpsa: Do not zero fields of ioaccel2 command structure twice (Stephen M. Cameron) [Orabug: 18524766] - [SCSI] hpsa: Add hba mode to the hpsa driver (Stephen M. Cameron) [Orabug: 18524766] - [SCSI] hpsa: remove unused struct request from CommandList (Stephen M. Cameron) [Orabug: 18524766] - [SCSI] hpsa: increase the probability of a reported success after a device reset (Tomas Henzl) [Orabug: 18524766] - [SCSI] hpsa: bring format-in-progress drives online when ready (Stephen M. Cameron) [Orabug: 18524766] - [SCSI] hpsa: remove unused kthread.h header (Stephen M. Cameron) [Orabug: 18524766] - bonding: Inactive slaves should keep inactive flag's value (zheng.li) [Orabug: 18345482] - dtrace: fix leaking psinfo objects (Kris Van Hees) [Orabug: 18383027] - xen/pvhvm: Support more than 32 VCPUs when migrating. (Konrad Rzeszutek Wilk) [Orabug: 18552664] - xen/microcode: Only load under initial domain. (Konrad Rzeszutek Wilk) [Orabug: 18379824] - audit: Make testing for a valid loginuid explicit. (Eric W. Biederman) [Orabug: 18346901] - audit: make validity checking generic (Eric Paris) [Orabug: 18346901] - audit: allow checking the type of audit message in the user filter (Eric Paris) [Orabug: 18346901] - i40e: enable CONFIG_I40E by default (Brian Maly) [Orabug: 18429973] - i40e: add kcompat calls (Brian Maly) [Orabug: 18429973] - i40e: include i40e in kernel proper (Jesse Brandeburg) [Orabug: 18429973] - i40e: debugfs interface (Jesse Brandeburg) [Orabug: 18429973] - i40e: init code and hardware support (Jesse Brandeburg) [Orabug: 18429973] - i40e: implement virtual device interface (Jesse Brandeburg) [Orabug: 18429973] - i40e: driver core headers (Jesse Brandeburg) [Orabug: 18429973] - i40e: driver ethtool core (Jesse Brandeburg) [Orabug: 18429973] - i40e: transmit, receive, and NAPI (Jesse Brandeburg) [Orabug: 18429973] - i40e: main driver core (Jesse Brandeburg) [Orabug: 18429973] - ocfs2: pass "new" parameter to ocfs2_init_xattr_bucket (Wengang Wang) [Orabug: 18447765] - qlcnic: make Kconfig IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0196 CVE-2014-2309 CVE-2014-0049 CVE-2014-0038 CVE-2013-4587 CVE-2013-7266 CVE-2013-6885 Oracle Linux 6 kernel-uek [3.8.13-35.1.1.el6uek] - futex: Make lookup_pi_state more robust (Thomas Gleixner) [Orabug: 18918552] {CVE-2014-3153} - futex: Always cleanup owner tid in unlock_pi (Thomas Gleixner) [Orabug: 18918552] {CVE-2014-3153} - futex: Validate atomic acquisition in futex_lock_pi_atomic() (Thomas Gleixner) [Orabug: 18918552] {CVE-2014-3153} - futex: Forbid uaddr == uaddr2 in futex_requeue(..., requeue_pi=1) (Thomas Gleixner) [Orabug: 18918552] {CVE-2014-3153} {CVE-2014-3153} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3153 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.2] - futex: Make lookup_pi_state more robust (Thomas Gleixner) [Orabug: 18918614] {CVE-2014-3153} - futex: Always cleanup owner tid in unlock_pi (Thomas Gleixner) [Orabug: 18918614] {CVE-2014-3153} - futex: Validate atomic acquisition in futex_lock_pi_atomic() (Thomas Gleixner) [Orabug: 18918614] {CVE-2014-3153} - futex: Forbid uaddr1 == uaddr2 in futex_requeue(..., requeue_pi=1) (Thomas Gleixner) [Orabug: 18918614] {CVE-2014-3153} {CVE-2014-3153} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3153 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.2uek] - futex: Make lookup_pi_state more robust (Thomas Gleixner) [Orabug: 18918736] {CVE-2014-3153} - futex: Always cleanup owner tid in unlock_pi (Thomas Gleixner) [Orabug: 18918736] {CVE-2014-3153} - futex: Validate atomic acquisition in futex_lock_pi_atomic() (Thomas Gleixner) [Orabug: 18918736] {CVE-2014-3153} - futex: Forbid uaddr1 == uaddr2 in futex_requeue(..., requeue_pi=1) (Thomas Gleixner) [Orabug: 18918736] {CVE-2014-3153} {CVE-2014-3153} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3153 Oracle Linux 6 kernel-uek [3.8.13-35.1.2.el6uek] - floppy: don't write kernel-only members to FDRAWCMD ioctl output (Matthew Daley) [Orabug: 19028443] {CVE-2014-1738} - floppy: ignore kernel-only members in FDRAWCMD ioctl input (Matthew Daley) [Orabug: 19028436] {CVE-2014-1737} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1737 CVE-2014-1738 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.3] - SELinux: Fix kernel BUG on empty security contexts. (Stephen Smalley) [Orabug: 19028380] {CVE-2014-1874} - floppy: don't write kernel-only members to FDRAWCMD ioctl output (Matthew Daley) [Orabug: 19028444] {CVE-2014-1738} - floppy: ignore kernel-only members in FDRAWCMD ioctl input (Matthew Daley) [Orabug: 19028438] {CVE-2014-1737} - libertas: potential oops in debugfs (Dan Carpenter) [Orabug: 19028416] {CVE-2013-6378} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1737 CVE-2014-1738 CVE-2013-6378 CVE-2014-1874 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.3uek] - fix autofs/afs/etc. magic mountpoint breakage (Al Viro) [Orabug: 19028505] {CVE-2014-0203} - SELinux: Fix kernel BUG on empty security contexts. (Stephen Smalley) [Orabug: 19028381] {CVE-2014-1874} - floppy: don't write kernel-only members to FDRAWCMD ioctl output (Matthew Daley) [Orabug: 19028446] {CVE-2014-1738} - floppy: ignore kernel-only members in FDRAWCMD ioctl input (Matthew Daley) [Orabug: 19028439] {CVE-2014-1737} - libertas: potential oops in debugfs (Dan Carpenter) [Orabug: 19028417] {CVE-2013-6378} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-1737 CVE-2014-1738 CVE-2013-6378 CVE-2014-1874 Oracle Linux 6 kernel-uek [3.8.13-35.1.3.el6uek] - l2tp: fix an unprivileged user to kernel privilege escalation (Sasha Levin) [Orabug: 19229497] {CVE-2014-4943} {CVE-2014-4943} - ptrace,x86: force IRET path after a ptrace_stop() (Tejun Heo) [Orabug: 19230689] {CVE-2014-4699} - net: flow_dissector: fail on evil iph->ihl (Jason Wang) [Orabug: 19231234] {CVE-2013-4348} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4943 CVE-2014-4699 CVE-2013-4348 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.4] - l2tp: fix an unprivileged user to kernel privilege escalation (Sasha Levin) [Orabug: 19229505] {CVE-2014-4943} {CVE-2014-4943} - ptrace,x86: force IRET path after a ptrace_stop() (Tejun Heo) [Orabug: 19230690] {CVE-2014-4699} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4943 CVE-2014-4699 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.4uek] - l2tp: fix an unprivileged user to kernel privilege escalation (Sasha Levin) [Orabug: 19229529] {CVE-2014-4943} {CVE-2014-4943} - ptrace,x86: force IRET path after a ptrace_stop() (Tejun Heo) [Orabug: 19230692] {CVE-2014-4699} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4943 CVE-2014-4699 Oracle Linux 7 kernel-uek [3.8.13-35.3.2.el7uek] - l2tp: fix an unprivileged user to kernel privilege escalation (Sasha Levin) [Orabug: 19229497] {CVE-2014-4943} {CVE-2014-4943} - ptrace,x86: force IRET path after a ptrace_stop() (Tejun Heo) [Orabug: 19230689] {CVE-2014-4699} - net: flow_dissector: fail on evil iph->ihl (Jason Wang) [Orabug: 19231234] {CVE-2013-4348} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4943 CVE-2014-4699 CVE-2013-4348 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-35.3.3.el7uek] - filter: prevent nla extensions to peek beyond the end of the message (Mathias Krause) [Orabug: 19315781] {CVE-2014-3144} {CVE-2014-3145} - mac80211: fix AP powersave TX vs. wakeup race (Emmanuel Grumbach) [Orabug: 19316457] {CVE-2014-2706} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3144 CVE-2014-3145 CVE-2014-2706 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.6] - filter: prevent nla extensions to peek beyond the end of the message (Mathias Krause) [Orabug: 19315782] {CVE-2014-3144} {CVE-2014-3145} [2.6.39-400.215.5] - n_tty: Fix n_tty_write crash when echoing in raw mode (Peter Hurley) [Orabug: 18756449] {CVE-2014-0196} {CVE-2014-0196} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0196 CVE-2014-3144 CVE-2014-3145 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.6uek] - filter: prevent nla extensions to peek beyond the end of the message (Mathias Krause) [Orabug: 19315783] {CVE-2014-3144} {CVE-2014-3145} - futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi() (Darren Hart) [Orabug: 19315318] {CVE-2012-6647} [2.6.32-400.36.5uek] - n_tty: Fix n_tty_write crash when echoing in raw mode (Peter Hurley) [Orabug: 18756450] {CVE-2014-0196} {CVE-2014-0196} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0196 CVE-2014-3144 CVE-2014-3145 CVE-2012-6647 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-35.3.5.el7uek] - net: Use netlink_ns_capable to verify the permisions of netlink messages (Eric W. Biederman) [Orabug: 19404231] {CVE-2014-0181} - net: Add variants of capable for use on netlink messages (Eric W. Biederman) [Orabug: 19404231] - net: Add variants of capable for use on on sockets (Eric W. Biederman) [Orabug: 19404231] - netlink: Rename netlink_capable netlink_allowed (Eric W. Biederman) [Orabug: 19404231] - sctp: Fix sk_ack_backlog wrap-around problem (Xufeng Zhang) [Orabug: 19404244] {CVE-2014-4667} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-0181 CVE-2014-4667 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.7] - sctp: Fix sk_ack_backlog wrap-around problem (Xufeng Zhang) [Orabug: 19404245] {CVE-2014-4667} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4667 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.7uek] - sctp: Fix sk_ack_backlog wrap-around problem (Xufeng Zhang) [Orabug: 19404246] {CVE-2014-4667} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4667 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-44] - net: Use netlink_ns_capable to verify the permisions of netlink messages (Eric W. Biederman) [Orabug: 19404229] {CVE-2014-0181} - net: Add variants of capable for use on netlink messages (Eric W. Biederman) [Orabug: 19404229] - net: Add variants of capable for use on on sockets (Eric W. Biederman) [Orabug: 19404229] - netlink: Rename netlink_capable netlink_allowed (Eric W. Biederman) [Orabug: 19404229] - sctp: Fix sk_ack_backlog wrap-around problem (Xufeng Zhang) [Orabug: 19404238] {CVE-2014-4667} - Revert 'xen/fb: allow xenfb initialization for hvm guests' (Vaughan Cao) [Orabug: 19320529] [3.8.13-43] - init: fix in-place parameter modification regression (Krzysztof Mazur) [Orabug: 18954967] - drivers: scsi: storvsc: Correctly handle TEST_UNIT_READY failure (K. Y. Srinivasan) [Orabug: 19280065] - drivers: scsi: storvsc: Set srb_flags in all cases (K. Y. Srinivasan) [Orabug: 19280065] - Drivers: scsi: storvsc: Implement a timedout handler (K. Y. Srinivasan) [Orabug: 19280065] - Drivers: scsi: storvsc: Fix a bug in handling VMBUS protocol version (K. Y. Srinivasan) [Orabug: 19280065] - Drivers: scsi: storvsc: Filter commands based on the storage protocol version (K. Y. Srinivasan) [Orabug: 19280065] - Drivers: scsi: storvsc: Set cmd_per_lun to reflect value supported by the Host (K. Y. Srinivasan) [Orabug: 19280065] - Drivers: scsi: storvsc: Change the limits to reflect the values on the host (K. Y. Srinivasan) [Orabug: 19280065] [3.8.13-42] - filter: prevent nla extensions to peek beyond the end of the message (Mathias Krause) [Orabug: 19315780] {CVE-2014-3144} {CVE-2014-3145} [3.8.13-41] - rds: Lost locking in loop connection freeing (Pavel Emelyanov) [Orabug: 19124446] - ocfs2/o2net: incorrect to terminate accepting connections loop upon rejecting an invalid one (Tariq Saeed) [Orabug: 19296823] - xen/pciback: Don't deadlock when unbinding. (Konrad Rzeszutek Wilk) [Orabug: 19296592] - PCI: Split out pci_dev lock/unlock and save/restore (Alex Williamson) [Orabug: 19296592] [3.8.13-40] - l2tp: fix an unprivileged user to kernel privilege escalation (Sasha Levin) [Orabug: 19228689] {CVE-2014-4943} {CVE-2014-4943} - ptrace,x86: force IRET path after a ptrace_stop() (Tejun Heo) [Orabug: 19222017] {CVE-2014-4699} - mpt3sas: Rework the MSI-X code to work on systems with many processors (Martin K. Petersen) [Orabug: 18182490] - mpt2sas: Rework the MSI-X code to work on systems with many processors (Martin K. Petersen) [Orabug: 18182490] - mpt3sas: Bump mpt3sas driver version to 04.100.00.00 (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: Added Reply Descriptor Post Queue (RDPQ) Array support (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: Bump mpt3sas driver version to 03.100.00.00 (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: Added OEM branding Strings (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: MPI2.5 Rev H (2.5.3) specifications (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: Copyright in driver sources is updated for year the 2014 (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: Clear PFA Status on SGPIO when PFA Drive is Removed or Replaced (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: MPI2.5 Rev G (2.5.2) specifications (Reddy, Sreekanth) [Orabug: 19015667] - mpt3sas: Remove use of DEF_SCSI_QCMD (Matthew Wilcox) [Orabug: 19015667] - mpt3sas: Remove uses of serial_number (Matthew Wilcox) [Orabug: 19015667] - Allow MPT Fusion SAS 3.0 driver to be built into the kernel (Greg Kroah-Hartman) [Orabug: 19015667] - mpt3sas: Remove phys on topology change (Jan Vesely) [Orabug: 19015667] - mpt3sas: Added a driver module parameter max_msix_vectors (Sreekanth Reddy) [Orabug: 19015667] - mpt3sas: fix cleanup on controller resource mapping failure (Joe Lawrence) [Orabug: 19015667] - Revert 'mpt3sas: update from v02.100.00.00 to v3.00.00.00' (Martin K. Petersen) [Orabug: 19015667] - Revert 'mpt3sas: Rework the MSI-X code to work on systems with many processors' (Martin K. Petersen) [Orabug: 19015667] - mpt2sas: Added module parameter 'unblock_io' to unblock IO's during disk addition (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Bump mpt2sas driver version to 18.100.00.00 (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Get IOC_FACTS information using handshake protocol only after HBA card gets into READY or Operational state (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Added Reply Descriptor Post Queue (RDPQ) Array support (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: For >2TB volumes, DirectDrive support sends IO's with LBA bit 31 to IR FW instead of DirectDrive (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Copyright in driver sources is updated for year the 2014 (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Clear PFA Status on SGPIO when PFA Drive is Removed or Replaced (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Bump mpt2sas driver version to 17.100.00.00 (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: MPI2 Rev Y (2.00.17) and Rev Z (2.00.18) specifications (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Added driver module parameter max_msix_vectors (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Add free smids to the head, not tail of list (Matthew Wilcox) [Orabug: 19015667] - mpt2sas: Remove use of DEF_SCSI_QCMD (Matthew Wilcox) [Orabug: 19015667] - mpt2sas: Remove uses of serial_number (Matthew Wilcox) [Orabug: 19015667] - mpt2sas: Don't disable device twice at suspend. (Tyler Stachecki) [Orabug: 19015667] - mpt2sas: Remove phys on topology change. (Jan Vesely) [Orabug: 19015667] - mpt2sas: Bump driver version to v16.100.00.00 (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Fix for kernel panic when driver loads with HBA connected to non LUN 0 configured expander (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: when Async scanning is enabled then while scanning, devices are removed but their transport layer entries are not removed (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Infinite loop can occur if MPI2_IOCSTATUS_CONFIG_INVALID_PAGE is not returned (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: The copyright in driver sources is updated for the year 2013 (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: MPI2 Rev X (2.00.16) specifications (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Change in MPI2_RAID_ACTION_SYSTEM_SHUTDOWN_INITIATED notification methodology (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Null pointer deference possibility in mpt2sas_ctl_event_callback function (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: fix cleanup on controller resource mapping failure (Joe Lawrence) [Orabug: 19015667] - mpt2sas: fix for unused variable 'event_data' warning (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Bump driver vesion to v15.100.00.00 (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Calulate the Reply post queue depth calculation as per the MPI spec (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: fix firmware failure with wrong task attribute (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Fix for device scan following host reset could get stuck in a infinite loop (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Update the timing requirements for issuing a Hard Reset (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: MPI2 Rev W (2.00.15) specification (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: Fix for issue Missing delay not getting set during system bootup (Reddy, Sreekanth) [Orabug: 19015667] - mpt2sas: Add support for OEM specific controller (Sreekanth Reddy) [Orabug: 19015667] - mpt2sas: fix for driver fails EEH, recovery from injected pci bus error (Sreekanth Reddy) [Orabug: 19015667] - Revert 'mpt2sas: update to LSI version 16.05.01.00' (Martin K. Petersen) [Orabug: 19015667] - Revert 'mpt2sas: update from 16.05.01.00 to 17.00.00.00' (Martin K. Petersen) [Orabug: 19015667] - Revert 'mpt2sas: Rework the MSI-X code to work on systems with many processors' (Martin K. Petersen) [Orabug: 19015667] - megaraid_sas: Version and Changelog update (Adam Radford) [Orabug: 19015667] - megaraid_sas: Fix LD/VF affiliation parsing (Adam Radford) [Orabug: 19015667] - megaraid_sas: Remove unused variables in megasas_instance (Adam Radford) [Orabug: 19015667] - megaraid_sas: Fix reset_mutex leak (Adam Radford) [Orabug: 19015667] - megaraid_sas: fix a small problem when reading state value from hw (Tomas Henzl) [Orabug: 19015667] - megaraid_sas: Version and Changelog update (Adam Radford) [Orabug: 19015667] - megaraid_sas: Add Dell PowerEdge VRTX SR-IOV VF support (Adam Radford) [Orabug: 19015667] - megaraid_sas: Return leaked MPT frames to MPT frame pool (Adam Radford) [Orabug: 19015667] - megaraid_sas: Fix megasas_ioc_init_fusion (Adam Radford) [Orabug: 19015667] - megaraid_sas: Load correct raid context timeout (Adam Radford) [Orabug: 19015667] - megaraid_sas: Performance boost fixes (Sumit.Saxena@lsi.com) [Orabug: 19015667] - megaraid_sas: Set 32-bit DMA mask (Sumit.Saxena@lsi.com) [Orabug: 19015667] - megaraid_sas: Big endian code related fixes (Sumit.Saxena@lsi.com) [Orabug: 19015667] - megaraid_sas: Don't wait forever for non-IOCTL DCMDs (Sumit.Saxena@lsi.com) [Orabug: 19015667] - megaraid_sas: check return value for megasas_get_pd_list() (Hannes Reinecke) [Orabug: 19015667] - megaraid_sas_fusion: Return correct error value in megasas_get_ld_map_info() (Hannes Reinecke) [Orabug: 19015667] - megaraid_sas_fusion: correctly pass queue info pointer (Hannes Reinecke) [Orabug: 19015667] - megaraid: missing bounds check in mimd_to_kioc() (Dan Carpenter) [Orabug: 19015667] - megaraid: Use resource_size_t for PCI resources, not long (Ben Collins) [Orabug: 19015667] [3.8.13-39] - PCI: Work around Ivytown NTB BAR size issue (Jon Mason) [Orabug: 18127862] - cgroup: make cgroup_path() not print double slashes (Tejun Heo) [Orabug: 18510637] - xen: Introduce 'xen_nopv' to disable PV extensions for HVM guests. (Konrad Rzeszutek Wilk) [Orabug: 19033747] - spec: reenable pesign module signing (Guangyu Sun) [Orabug: 19065003] - [ocfs2]: refcount: take rw_lock in ocfs2_reflink (Wengang Wang) [Orabug: 19154247] - cifs: bugfix for unreclaimed writeback pages in cifs_writev_requeue() (Ouyang Maochun) [Orabug: 18447168] - xfs: add CRCs to attr leaf blocks (Dave Chinner) [Orabug: 18504299] - xfs: add CRCs to dir2/da node blocks (Dave Chinner) [Orabug: 18504299] - xfs: shortform directory offsets change for dir3 format (Dave Chinner) [Orabug: 18504299] - xfs: add CRC checking to dir2 leaf blocks (Dave Chinner) [Orabug: 18504299] - xfs: add CRC checking to dir2 data blocks (Dave Chinner) [Orabug: 18504299] - xfs: add CRC checking to dir2 free blocks (Dave Chinner) [Orabug: 18504299] - xfs: add CRC checks to block format directory blocks (Dave Chinner) [Orabug: 18504299] - xfs: add CRC checks to remote symlinks (Dave Chinner) [Orabug: 18504299] - xfs: split out symlink code into it's own file. (Dave Chinner) [Orabug: 18504299] - xfs: add version 3 inode format with CRCs (Christoph Hellwig) [Orabug: 18504299] - xfs: add CRC checks for quota blocks (Christoph Hellwig) [Orabug: 18504299] - xfs: add CRC checks to the AGI (Dave Chinner) [Orabug: 18504299] - xfs: add CRC checks to the AGFL (Christoph Hellwig) [Orabug: 18504299] - xfs: add CRC checks to the AGF (Dave Chinner) [Orabug: 18504299] - xfs: add support for large btree blocks (Christoph Hellwig) [Orabug: 18504299] - xfs: xfs_iomap_prealloc_size() tracepoint (Brian Foster) [Orabug: 18504299] - xfs: add quota-driven speculative preallocation throttling (Brian Foster) [Orabug: 18504299] - xfs: xfs_dquot prealloc throttling watermarks and low free space (Brian Foster) [Orabug: 18504299] - xfs: pass xfs_dquot to xfs_qm_adjust_dqlimits() instead of xfs_disk_dquot_t (Brian Foster) [Orabug: 18504299] - xfs: push rounddown_pow_of_two() to after prealloc throttle (Brian Foster) [Orabug: 18504299] - xfs: reorganize xfs_iomap_prealloc_size to remove indentation (Brian Foster) [Orabug: 18504299] - xfs: take inode version into account in XFS_LITINO (Christoph Hellwig) [Orabug: 18504299] - xfs: rearrange some code in xfs_bmap for better locality (Dave Chinner) [Orabug: 18504299] - xfs: don't verify buffers after IO errors (Dave Chinner) [Orabug: 18504299] - xfs: limit speculative prealloc size on sparse files (Dave Chinner) [Orabug: 18504299] - xfs: memory barrier before wake_up_bit() (Alex Elder) [Orabug: 18504299] - xfs: refactor space log reservation for XFS_TRANS_ATTR_SET (Jeff Liu) [Orabug: 18504299] - xfs: make use of XFS_SB_LOG_RES() at xfs_fs_log_dummy() (Jeff Liu) [Orabug: 18504299] - xfs: make use of XFS_SB_LOG_RES() at xfs_mount_log_sb() (Jeff Liu) [Orabug: 18504299] - xfs: make use of XFS_SB_LOG_RES() at xfs_log_sbcount() (Jeff Liu) [Orabug: 18504299] - xfs: introduce XFS_SB_LOG_RES() for transactions that modify sb on disk (Jeff Liu) [Orabug: 18504299] - xfs: calculate XFS_TRANS_QM_QUOTAOFF_END space log reservation at mount time (Jeff Liu) [Orabug: 18504299] - xfs: calculate XFS_TRANS_QM_QUOTAOFF space log reservation at mount time (Jeff Liu) [Orabug: 18504299] - xfs: calculate XFS_TRANS_QM_DQALLOC space log reservation at mount time (Jeff Liu) [Orabug: 18504299] - xfs: calcuate XFS_TRANS_QM_SETQLIM space log reservation at mount time (Jeff Liu) [Orabug: 18504299] - xfs: calculate xfs_qm_write_sb_changes() space log reservation at mount time (Jeff Liu) [Orabug: 18504299] - xfs: calculate XFS_TRANS_QM_SBCHANGE space log reservation at mount time (Jeff Liu) [Orabug: 18504299] - xfs: make use of xfs_calc_buf_res() in xfs_trans.c (Jeff Liu) [Orabug: 18504299] - xfs: add a helper to figure out the space log reservation per item (Jeff Liu) [Orabug: 18504299] - xfs: fix fs/xfs/xfs_log.c:1740:39: error: 'B_TRUE' undeclared (Ben Myers) [Orabug: 18504299] - xfs: Remove boolean_t typedef completely. (Thiago Farina) [Orabug: 18504299] (Abhijit Pawar) [Orabug: 18504299] - xfs: don't zero structure members after a memset(0) (Eric Sandeen) [Orabug: 18504299] - xfs remove the XFS_TRANS_DEBUG routines (Mark Tinguely) [Orabug: 18504299] - spec: list linux-firmware as a dependency (Guangyu Sun) [Orabug: 18539100] - kbuild/ctf: Fix out-of-tree module build when CONFIG_CTF=n. (Nick Alcock) [Orabug: 19078361] - dtrace: support order-only-prerequisites for sdtstub generation (Kris Van Hees) [Orabug: 18906444] - qlcnic: Add SRIOV helper function to determine if VFs are assigned to guest (Vaughan Cao) [Orabug: 19167877] - qlcnic: make Kconfig changes (Vaughan Cao) [Orabug: 19167877] - qlcnic: sysfs interface for PCI BAR access (Sony Chacko) [Orabug: 19167877] - qlcnic: Update version to 5.3.59 (Rajesh Borundia) [Orabug: 19167877] - qlcnic: Collect firmware dump using DMA on 82xx adapters (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Add mac learning support to SR-IOV VF. (Rajesh Borundia) [Orabug: 19167877] - qlcnic: Add support to process commands in atomic context (Rajesh Borundia) [Orabug: 19167877] - qlcnic: Allow SR-IOV VF probe in hypervisor. (Rajesh Borundia) [Orabug: 19167877] - qlcnic: Set real_num_{tx|rx}_queues properly (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Fix panic while dumping TX queues on TX timeout (Manish Chopra) [Orabug: 19167877] - qlcnic: Update version to 5.3.58 (Jitendra Kalsaria) [Orabug: 19167877] - qlcnic: Limit vNIC support in legacy interrupt mode (Sucheta Chakraborty) [Orabug: 19167877] - qlcnic: Add driver logs in error path. (Sucheta Chakraborty) [Orabug: 19167877] - qlcnic: Allow setting TX interrupt coalescing parameters from VF. (Sucheta Chakraborty) [Orabug: 19167877] - qlcnic: Add hwmon-sysfs interface to export board temperature. (Harish Patil) [Orabug: 19167877] - qlcnic: Optimize MAC learning code (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Fix memory leak. (Rajesh Borundia) [Orabug: 19167877] - qlcnic: Reset firmware API lock at driver load time (Sony Chacko) [Orabug: 19167877] - qlcnic: Fix MSI-X initialization code (Alexander Gordeev) [Orabug: 19167877] - qlcnic: Do not disable SR-IOV when VFs are assigned to VMs (Manish Chopra) [Orabug: 19167877] - qlcnic: Fix QLogic application/driver interface for virtual NIC configuration (Jitendra Kalsaria) [Orabug: 19167877] - qlcnic: Fix PVID configuration on eSwitch port. (Jitendra Kalsaria) [Orabug: 19167877] - qlcnic: Fix max ring count calculation (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Fix to send INIT_NIC_FUNC as first mailbox. (Sucheta Chakraborty) [Orabug: 19167877] - qlcnic: Fix panic due to uninitialzed delayed_work struct in use. (Sucheta Chakraborty) [Orabug: 19167877] - net: qlcnic: include irq.h for irq definitions (Josh Boyer) [Orabug: 19167877] - qlcnic: Remove casts of pointer to same type (Joe Perches) [Orabug: 19167877] - qlcnic: Update version to 5.3.57 (Shahed Shaikh) [Orabug: 19167877] - qlcnic: dcb: a couple off by one bugs (Dan Carpenter) [Orabug: 19167877] - qlcnic: Fix number of rings when we fall back from msix to legacy. (Rajesh Borundia) [Orabug: 19167877] - qlcnic: Allow any VLAN to be configured from VF. (Sucheta Chakraborty) [Orabug: 19167877] - qlcnic: Fix usage of use_msi and use_msi_x module parameters (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Fix function return error check (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Update version to 5.3.56 (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Enhance semaphore lock access failure error message (Harish Patil) [Orabug: 19167877] - qlcnic: Allow vlan0 traffic (Rajesh Borundia) [Orabug: 19167877] - qlcnic: Enhance driver message in failed state. (Sucheta Chakraborty) [Orabug: 19167877] - qlcnic: Updates to QLogic application/driver interface for virtual NIC configuration (Jitendra Kalsaria) [Orabug: 19167877] - qlcnic: Re-factor firmware minidump template header handling (Shahed Shaikh) [Orabug: 19167877] - qlcnic: Cleanup qlcnic_enable_msix() return values (Alexander Gordeev) [Orabug: 19167877] - qlcnic: Reverse patches till 5.3.55. (Sucheta Chakraborty) [Orabug: 19167877] - qla4xxx: Update driver verion to v5.04.00.06.06.02-uek3 (Tej Parkash) [Orabug: 19144350] - qla4xxx: Use kmemdup instead of kmalloc + memcpy (Benoit Taine) [Orabug: 19144350] - qla4xxx: Fix smatch warning in func qla4xxx_conn_get_param (Adheer Chandravanshi) [Orabug: 19144350] - qla4xxx: Fix smatch warning in func qla4xxx_get_ep_param (Adheer Chandravanshi) [Orabug: 19144350] - qla4xxx: Fix memory leak for ha->saved_acb (Nilesh Javali) [Orabug: 19144350] - qla4xxx: Export sysfs DDBs from DPC handler (Nilesh Javali) [Orabug: 19144350] - qla4xxx: Disable INTx interrupt for ISP82XX (Tej Parkash) [Orabug: 19144350] - hpsa: add previously missing pci_device_id (Vaughan Cao) [Orabug: 19137821] - hpsa: fix handling of hpsa_volume_offline return value (Stephen M. Cameron) [Orabug: 19137821] - hpsa: return -ENOMEM not -1 on kzalloc failure in hpsa_get_device_id (Stephen M. Cameron) [Orabug: 19137821] - hpsa: remove messages about volume status VPD inquiry page not supported (Stephen M. Cameron) [Orabug: 19137821] - hpsa: report check condition even if no sense data present for ioaccel2 mode (Stephen M. Cameron) [Orabug: 19137821] - hpsa: remove bad unlikely annotation from device list updating code (Stephen M. Cameron) [Orabug: 19137821] - hpsa: fix event filtering to prevent excessive rescans with old firmware (Stephen M. Cameron) [Orabug: 19137821] - hpsa: kill annoying messages about SSD Smart Path retries (Stephen M. Cameron) [Orabug: 19137821] - hpsa: define extended_report_lun_entry data structure (Stephen M. Cameron) [Orabug: 19137821] - hpsa: Rearrange start_io to avoid one unlock/lock sequence in main io path (Stephen M. Cameron) [Orabug: 19137821] - hpsa: avoid unnecessary readl on every command submission (Stephen M. Cameron) [Orabug: 19137821] - hpsa: use per-cpu variable for lockup_detected (Stephen M. Cameron) [Orabug: 19137821] - hpsa: set irq affinity hints to route MSI-X vectors across CPUs (Stephen M. Cameron) [Orabug: 19137821] - hpsa: allocate reply queues individually (Stephen M. Cameron) [Orabug: 19137821] - hpsa: choose number of reply queues more intelligently. (Stephen M. Cameron) [Orabug: 19137821] - hpsa: remove dev_dbg() calls from hot paths (Stephen M. Cameron) [Orabug: 19137821] - hpsa: use gcc aligned attribute instead of manually padding structs (Stephen M. Cameron) [Orabug: 19137821] - hpsa: change doorbell reset delay to ten seconds (Justin Lindley) [Orabug: 19137821] - hpsa: allow passthru ioctls to work with bidirectional commands (Stephen M. Cameron) [Orabug: 19137821] - hpsa: remove unused fields from struct ctlr_info (Stephen M. Cameron) [Orabug: 19137821] - hpsa: fix bad comparison of signed with unsigned in hpsa_update_scsi_devices (Joe Handzik) [Orabug: 19137821] - hpsa: do not ignore failure of sense controller parameters command (Joe Handzik) [Orabug: 19137821] - hpsa: fix memory leak in hpsa_hba_mode_enabled (Joe Handzik) [Orabug: 19137821] - hpsa: Checking for a NULL return from a kzalloc call (Joe Handzik) [Orabug: 19137821] - hpsa: unnecessary type conversion for physdev_list (Vaughan Cao) [Orabug: 19137821] - hpsa: detect_controller_lockup don't need return value (Vaughan Cao) [Orabug: 19137821] - hpsa: fixup MSI-X registration (Hannes Reinecke) [Orabug: 19137821] - xen/microcode: Use dummy microcode_ops for non initial domain guest (Zhenzhong Duan) [Orabug: 19053626] - hyperv: Change the receive buffer size for legacy hosts (Haiyang Zhang) [Orabug: 19050496] - be2net: fix qnq mode detection on VFs (Suresh Reddy) [Orabug: 19006455] - be2net: cleanup MCC async event processing code (Sathya Perla) [Orabug: 19006455] - be2net: move async cmd processing to a separate routine (Sathya Perla) [Orabug: 19006455] - be2net: re-factor MCCQ error status handling code (Kalesh AP) [Orabug: 19006455] - be2net: support flashing new regions on Skyhawk-R (Vasundhara Volam) [Orabug: 19006455] - be2net: skip multicast promiscuos setting in already set (Kalesh AP) [Orabug: 19006455] - be2net: enable interrupts in EEH resume (Kalesh AP) [Orabug: 19006455] - net: get rid of SET_ETHTOOL_OPS (Wilfried Klaebe) [Orabug: 19006455] - be2net: use MCCQ instead of MBOX in be_cmd_rss_config() (Kalesh AP) [Orabug: 19006455] - be2net: include rx-compl error counter in ethtool stats (Kalesh AP) [Orabug: 19006455] - be2net: remove unused code in be_cmd_vlan_config() (Kalesh AP) [Orabug: 19006455] - be2net: covert vlan array to bit-map (Ravikumar Nelavelli) [Orabug: 19006455] - be2net: fix line wrap and function call indentation in be_ethtool.c (Sathya Perla) [Orabug: 19006455] - be2net: fix function call indentation in be_cmds.c (Sathya Perla) [Orabug: 19006455] - be2net: fix line wrap and function call indentation in be_main.c (Sathya Perla) [Orabug: 19006455] - be2net: Fix invocation of be_close() after be_clear() (Kalesh AP) [Orabug: 19006455] - be2net: Fix to reap TX compls till HW doesn't respond for some time (Vasundhara Volam) [Orabug: 19006455] - selinux: correctly label /proc inodes in use before the policy is loaded (Paul Moore) [Orabug: 18823621] - mm, hugetlb: improve page-fault scalability (Davidlohr Bueso) [Orabug: 18757256] - config: build TPM HW Random Number Generator as module (Guangyu Sun) [Orabug: 18502024] - cpufreq: Drop rwsem lock around CPUFREQ_GOV_POLICY_EXIT (Viresh Kumar) [Orabug: 18464169] - cpufreq: Preserve sysfs files across suspend/resume (Srivatsa S. Bhat) [Orabug: 18464169] - cpufreq, ondemand: Remove leftover debug line (Borislav Petkov) [Orabug: 18464169] - cpufreq: Issue CPUFREQ_GOV_POLICY_EXIT notifier before dropping policy refcount (Viresh Kumar) [Orabug: 18464169] - cpufreq: governors: Fix CPUFREQ_GOV_POLICY_{INIT|EXIT} notifiers (Viresh Kumar) [Orabug: 18464169] - cpufreq: Revert incorrect commit 5800043 (Rafael J. Wysocki) [Orabug: 18464169] - cpufreq: Don't call __cpufreq_governor() for drivers without target() (Viresh Kumar) [Orabug: 18464169] - cpufreq: convert cpufreq_driver to using RCU (Nathan Zimmer) [Orabug: 18464169] - cpufreq: Call __cpufreq_governor() with correct policy->cpus mask (Viresh Kumar) [Orabug: 18464169] - cpufreq: Correct header guards typo (Borislav Petkov) [Orabug: 18464169] - cpufreq: Fix unsigned variable being checked for negative value (jhbird.choi@samsung.com) [Orabug: 18464169] - cpufreq: conservative: Fix the logic in frequency decrease checking (Stratos Karafotis) [Orabug: 18464169] - cpufreq: conservative: Fix sampling_down_factor functionality (Stratos Karafotis) [Orabug: 18464169] - cpufreq: governors: Calculate iowait time only when necessary (Stratos Karafotis) [Orabug: 18464169] - cpufreq: conservative: Fix relation when decreasing frequency (Namhyung Kim) [Orabug: 18464169] - cpufreq: conservative: Break out earlier on the lowest frequency (Namhyung Kim) [Orabug: 18464169] - cpufreq: governors: Avoid unnecessary per cpu timer interrupts (Viresh Kumar) [Orabug: 18464169] - cpufreq: ondemand: Don't update sample_type if we don't evaluate load again (Viresh Kumar) [Orabug: 18464169] - cpufreq: governor: Set MIN_LATENCY_MULTIPLIER to 20 (Viresh Kumar) [Orabug: 18464169] - cpufreq: governor: Implement per policy instances of governors (Viresh Kumar) [Orabug: 18464169] - cpufreq: Add per policy governor-init/exit infrastructure (Viresh Kumar) [Orabug: 18464169] - cpufreq: Convert the cpufreq_driver_lock to a rwlock (Nathan Zimmer) [Orabug: 18464169] - cpufreq: acpi-cpufreq: Don't set policy->related_cpus from .init() (Viresh Kumar) [Orabug: 18464169] - cpufreq: stats: do cpufreq_cpu_put() corresponding to cpufreq_cpu_get() (viresh kumar) [Orabug: 18464169] - cpufreq_stats: do not remove sysfs files if frequency table is not present (Dirk Brandewie) [Orabug: 18464169] - cpufreq: Do not track governor name for scaling drivers with internal governors. (Dirk Brandewie) [Orabug: 18464169] - cpufreq: Only call cpufreq_out_of_sync() for driver that implement cpufreq_driver.target() (Dirk Brandewie) [Orabug: 18464169] - cpufreq: Retrieve current frequency from scaling drivers with internal governors (Dirk Brandewie) [Orabug: 18464169] - cpufreq: Fix locking issues (Viresh Kumar) [Orabug: 18464169] - cpufreq: Create a macro for unlock_policy_rwsem{read,write} (Viresh Kumar) [Orabug: 18464169] - cpufreq: Remove unused HOTPLUG_CPU code (Viresh Kumar) [Orabug: 18464169] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2013-2930 CVE-2013-4579 CVE-2014-1690 Oracle Linux 6 Oracle Linux 7 [3.8.13-44.1.1] - auditsc: audit_krule mask accesses need bounds checking (Andy Lutomirski) [Orabug: 19590596] {CVE-2014-3917} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3917 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.8uek] - auditsc: audit_krule mask accesses need bounds checking (Andy Lutomirski) [Orabug: 19590638] {CVE-2014-3917} - futex: Fix errors in nested key ref-counting (Darren Hart) [Orabug: 19590443] {CVE-2014-0205} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3917 CVE-2014-0205 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.10] - auditsc: audit_krule mask accesses need bounds checking (Andy Lutomirski) [Orabug: 19590597] {CVE-2014-3917} [2.6.39-400.215.9] - oracleasm: Add support for new error return codes from block/SCSI (Martin K. Petersen) [Orabug: 18438934] [2.6.39-400.215.8] - ib_ipoib: CSUM support in connected mode (Yuval Shaia) [Orabug: 18692878] - net: Reduce high cpu usage in bonding driver by do_csum (Venkat Venkatsubra) [Orabug: 18141731] - [random] Partially revert 6d7c7e49: random: make 'add_interrupt_randomness() (John Sobecki) [Orabug: 17740293] - oracleasm: claim FMODE_EXCL access on disk during asm_open (Srinivas Eeda) [Orabug: 19453460] - notify block layer when using temporary change to cache_type (Vaughan Cao) [Orabug: 19448451] - sd: Fix parsing of 'temporary ' cache mode prefix (Ben Hutchings) [Orabug: 19448451] - sd: fix array cache flushing bug causing performance problems (James Bottomley) [Orabug: 19448451] - block: fix max discard sectors limit (James Bottomley) [Orabug: 18961244] - xen-netback: fix deadlock in high memory pressure (Junxiao Bi) [Orabug: 18959416] - sdp: fix keepalive functionality (shamir rabinovitch) [Orabug: 18728784] - SELinux: Fix possible NULL pointer dereference in selinux_inode_permission() (Steven Rostedt) [Orabug: 18552029] - refcount: take rw_lock in ocfs2_reflink (Wengang Wang) [Orabug: 18406219] - ipv6: check return value for dst_alloc (Madalin Bucur) [Orabug: 17865160] - cciss: bug fix to prevent cciss from loading in kdump crash kernel (Mike Miller) [Orabug: 17740446] - configfs: fix race between dentry put and lookup (Junxiao Bi) [Orabug: 17627075] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3917 Oracle Linux 6 [4.1.2-15.1.0.1] - Preliminary fix for CVE-2014-7169 CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-7169 Oracle Linux 7 [4.2.45-5.2.0.1] - Preliminary fix for CVE-2014-7169 CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-7169 Oracle Linux 5 [3.2-33.1.0.1] - Preliminary fix for CVE-2014-7169 CRITICAL Copyright 2014 Oracle, Inc. CVE-2014-7169 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-44.1.3.el7uek] - ALSA: control: Don't access controls outside of protected regions (Lars-Peter Clausen) [Orabug: 19817785] {CVE-2014-4653} {CVE-2014-4654} {CVE-2014-4655} - ALSA: control: Fix replacing user controls (Lars-Peter Clausen) [Orabug: 19817747] {CVE-2014-4653} {CVE-2014-4654} {CVE-2014-4655} - kvm: iommu: fix the third parameter of kvm_iommu_put_pages (CVE-2014-3601) (Michael S. Tsirkin) [Orabug: 19817646] {CVE-2014-3601} - net: sctp: inherit auth_capable on INIT collisions (Daniel Borkmann) [Orabug: 19816067] {CVE-2014-5077} [3.8.13-44.1.2.el7uek] - CVE-2014-3535: NULL pointer dereference in VxLAN packet logging. (Sasha Levin) [Orabug: 19613139] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 CVE-2014-5077 CVE-2014-3601 CVE-2014-3535 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.11] - ALSA: control: Don't access controls outside of protected regions (Lars-Peter Clausen) [Orabug: 19817786] {CVE-2014-4653} {CVE-2014-4654} {CVE-2014-4655} - ALSA: control: Fix replacing user controls (Lars-Peter Clausen) [Orabug: 19817748] {CVE-2014-4653} {CVE-2014-4654} {CVE-2014-4655} - kvm: iommu: fix the third parameter of kvm_iommu_put_pages (CVE-2014-3601) (Michael S. Tsirkin) [Orabug: 19817647] {CVE-2014-3601} - mm: try_to_unmap_cluster() should lock_page() before mlocking (Vlastimil Babka) [Orabug: 19817323] {CVE-2014-3122} - vm: convert fb_mmap to vm_iomap_memory() helper (Linus Torvalds) [Orabug: 19816563] {CVE-2013-2596} - vm: add vm_iomap_memory() helper function (Linus Torvalds) [Orabug: 19816563] {CVE-2013-2596} - net: sctp: inherit auth_capable on INIT collisions (Daniel Borkmann) [Orabug: 19816068] {CVE-2014-5077} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 CVE-2014-5077 CVE-2014-3601 CVE-2014-3122 CVE-2013-2596 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.9uek] - ALSA: control: Don't access controls outside of protected regions (Lars-Peter Clausen) [Orabug: 19817787] {CVE-2014-4653} {CVE-2014-4654} {CVE-2014-4655} - ALSA: control: Fix replacing user controls (Lars-Peter Clausen) [Orabug: 19817749] {CVE-2014-4653} {CVE-2014-4654} {CVE-2014-4655} - mm: try_to_unmap_cluster() should lock_page() before mlocking (Vlastimil Babka) [Orabug: 19817324] {CVE-2014-3122} - vm: convert fb_mmap to vm_iomap_memory() helper (Linus Torvalds) [Orabug: 19816564] {CVE-2013-2596} - vm: add vm_iomap_memory() helper function (Linus Torvalds) [Orabug: 19816564] {CVE-2013-2596} - net: sctp: inherit auth_capable on INIT collisions (Daniel Borkmann) [Orabug: 19816069] {CVE-2014-5077} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 CVE-2014-5077 CVE-2014-3122 CVE-2013-2596 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-44.1.4.el7uek] - USB: whiteheat: Added bounds checking for bulk command response (James Forshaw) [Orabug: 19849334] {CVE-2014-3185} - HID: fix a couple of off-by-ones (Jiri Kosina) [Orabug: 19849317] {CVE-2014-3181} - kvm: vmx: handle invvpid vm exit gracefully (Petr Matousek) [Orabug: 19906300] {CVE-2014-3646} - nEPT: Nested INVEPT (Nadav Har'El) [Orabug: 19906267] {CVE-2014-3645} - KVM: x86: Improve thread safety in pit (Andy Honig) [Orabug: 19905686] {CVE-2014-3611} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3611 CVE-2014-3645 CVE-2014-3646 CVE-2014-3185 CVE-2014-3181 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.12] - USB: whiteheat: Added bounds checking for bulk command response (James Forshaw) [Orabug: 19849335] {CVE-2014-3185} - HID: fix a couple of off-by-ones (Jiri Kosina) [Orabug: 19849318] {CVE-2014-3181} - KVM: x86: Improve thread safety in pit (Andy Honig) [Orabug: 19905687] {CVE-2014-3611} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3611 CVE-2014-3185 CVE-2014-3181 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.10uek] - USB: whiteheat: Added bounds checking for bulk command response (James Forshaw) [Orabug: 19849336] {CVE-2014-3185} - HID: fix a couple of off-by-ones (Jiri Kosina) [Orabug: 19849320] {CVE-2014-3181} logging macros to functions (Joe Perches) [Orabug: 19847630] {CVE-2014-3535} logging macros to functions (Joe Perches) [Orabug: 19847630] - vsprintf: Recursive vsnprintf: Add '%pV', struct va_format (Joe Perches) [Orabug: 19847630] - KVM: x86: Improve thread safety in pit (Andy Honig) [Orabug: 19905688] {CVE-2014-3611} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3611 CVE-2014-3185 CVE-2014-3181 CVE-2014-3535 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-44.1.5.el6uek] - net: sctp: fix panic on duplicate ASCONF chunks (Daniel Borkmann) [Orabug: 20010590] {CVE-2014-3687} - net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks (Daniel Borkmann) [Orabug: 20010577] {CVE-2014-3673} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3687 CVE-2014-3673 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.13] - net: sctp: fix panic on duplicate ASCONF chunks (Daniel Borkmann) [Orabug: 20010591] {CVE-2014-3687} - net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks (Daniel Borkmann) [Orabug: 20010578] {CVE-2014-3673} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3687 CVE-2014-3673 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.11uek] - net: sctp: fix panic on duplicate ASCONF chunks (Daniel Borkmann) [Orabug: 20010592] {CVE-2014-3687} - net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks (Daniel Borkmann) [Orabug: 20010579] {CVE-2014-3673} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3687 CVE-2014-3673 Oracle Linux 7 [4.2.45-5.4.0.1] - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. [orabug 19905256] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6277 CVE-2014-6278 Oracle Linux 6 [4.1.2-29.0.1] - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. [orabug 19905294] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6277 CVE-2014-6278 Oracle Linux 5 [3.2-33.4.0.1] - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. [orabug 19905421] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6277 CVE-2014-6278 Oracle Linux 6 Oracle Linux 7 [1.3.2-1.0.1] - Rename requirement of docker-io-pkg-devel in %package devel as docker-pkg-devel - Restore SysV init scripts for Oracle Linux 6 - Require Oracle Unbreakable Enterprise Kernel Release 3 or higher - Rename as docker. - Re-enable btrfs graphdriver support [1.3.2-1] - Update source to 1.3.2 from https://github.com/docker/docker/releases/tag/v1.3.2 Prevent host privilege escalation from an image extraction vulnerability (CVE-2014-6407). Prevent container escalation from malicious security options applied to images (CVE-2014-6408). The '--insecure-registry' flag of the 'docker run' command has undergone several refinements and additions. You can now specify a sub-net in order to set a range of registries which the Docker daemon will consider insecure. By default, Docker now defines 'localhost' as an insecure registry. Registries can now be referenced using the Classless Inter-Domain Routing (CIDR) format. When mirroring is enabled, the experimental registry v2 API is skipped. [1.3.1-2] - Remove pandoc from build reqs [1.3.1-1] - update to v1.3.1 [1.3.0-1] - Resolves: rhbz#1153936 - update to v1.3.0 - iptables=false => ip-masq=false [1.2.0-3] - Resolves: rhbz#1139415 - correct path for bash completion /usr/share/bash-completion/completions - sysvinit script update as per upstream commit 640d2ef6f54d96ac4fc3f0f745cb1e6a35148607 - dont own dirs for vim highlighting, bash completion and udev [1.2.0-2] - Resolves: rhbz#1145660 - support /etc/sysconfig/docker-storage From: Colin Walters <walters@redhat.com> - patch to ignore selinux if its disabled https://github.com/docker/docker/commit/9e2eb0f1cc3c4ef000e139f1d85a20f0e00971e6 From: Dan Walsh <dwalsh@redhat.com> - Resolves: rhbz#1139415 - correct path for bash completion - init script waits upto 5 mins before terminating daemon [1.2.0-1] - Resolves: rhbz#1132824 - update to v1.2.0 IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-6407 CVE-2014-6408 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-55] - freezer: set PF_SUSPEND_TASK flag on tasks that call freeze_processes (Colin Cross) [Orabug: 20082843] [3.8.13-54] - netfilter: nf_nat: fix oops on netns removal (Florian Westphal) [Orabug: 19988779] - tcp: tsq: restore minimal amount of queueing (Eric Dumazet) [Orabug: 19909542] - qedf: Fixes for compilation issues on oracle uek3r4. (Saurav Kashyap) [Orabug: 20027243] - qla2xxx: fix wrongly report 'PCI EEH busy' when get_thermal_temp (Vaughan Cao) [Orabug: 19916135] - Revert 'ib_cm: reduce latency when destroying large number of ids' (Guangyu Sun) [Orabug: 20012864] - Revert 'rds: avoid duplicate connection drops for active bonding' (Guangyu Sun) [Orabug: 20012864] - xen/pciback: Restore configuration space when detaching from a guest. (Konrad Rzeszutek Wilk) [Orabug: 19970142] - cpufreq: remove race while accessing cur_policy (Bibek Basu) [Orabug: 19945473] - cpufreq: serialize calls to __cpufreq_governor() (Viresh Kumar) [Orabug: 19945473] - cpufreq: don't allow governor limits to be changed when it is disabled (Viresh Kumar) [Orabug: 19945473] - net: sctp: fix panic on duplicate ASCONF chunks (Daniel Borkmann) [Orabug: 19953088] {CVE-2014-3687} - net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks (Daniel Borkmann) [Orabug: 19953087] {CVE-2014-3673} - perf/x86: Check all MSRs before passing hw check (George Dunlap) [Orabug: 19803968] - o2dlm: fix NULL pointer dereference in o2dlm_blocking_ast_wrapper (Srinivas Eeda) [Orabug: 19825227] - RDS: add module parameter to allow module unload or not (Wengang Wang) [Orabug: 19927376] - dwarf2ctf: don't use O_PATH in rel_abs_file_name(). (Jamie Iles) [Orabug: 19957565] - dwarf2ctf: don't leak directory fd. (Jamie Iles) [Orabug: 19957565] [3.8.13-53] - net: reset mac header in dev_start_xmit() (Eric Dumazet) [Orabug: 19951043] [3.8.13-52] - xen/efi: rebased version of xen.efi (Jan Beulich) [Orabug: 19878307] [3.8.13-51] - config: enable pm80xx module (Guangyu Sun) [Orabug: 19890236] - free ib_device related resource (Wengang Wang) [Orabug: 19479464] - srq initialization and cleanup -v3.1 (Wengang Wang) [Orabug: 19010606] - rds: avoid duplicate connection drops for active bonding (Ajaykumar Hotchandani) [Orabug: 19870095] - ib_cm: reduce latency when destroying large number of ids (Ajaykumar Hotchandani) [Orabug: 19870101] - IPoIB: Change default IPOIB_RX_RING_SIZE to 2048 (Chien-Hua Yen) [Orabug: 19870157] - ipv6: ip6_dst_check needs to check for expired dst_entries (Hannes Frederic Sowa) [Orabug: 19073604] - netxen: Fix bug in Tx completion path. (Manish Chopra) [Orabug: 19877613] - netxen: Fix BUG 'sleeping function called from invalid context' (Manish Chopra) [Orabug: 19877613] - drivers/net: Convert remaining uses of pr_warning to pr_warn (Joe Perches) [Orabug: 19877613] - treewide: Fix typo in printk (Masanari Iida) [Orabug: 19877613] - PCI: Remove DEFINE_PCI_DEVICE_TABLE macro use (Benoit Taine) [Orabug: 19877613] - bnx2fc: upgrade to 2.5.5.1 (Vaughan Cao) [Orabug: 19892175] - bnx2i: upgrade to 2.7.10.31d1 (Vaughan Cao) [Orabug: 19892173] - bnx2x: upgrade to 1.710.51 (Vaughan Cao) [Orabug: 19877629] - cnic: upgrade to 2.5.20b (Vaughan Cao) [Orabug: 19877628] - bnx2: upgrade to 2.2.5i (Vaughan Cao) [Orabug: 19877628] - Update lpfc version for 10.2.8061.0 driver release. (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8061.0: Fix ExpressLane priority setup (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8061.0: Removed obsolete PCI IDs from the driver. (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8061.0: Fix for initializing RRQ bitmap (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8061.0: Fix for cleaning up stale ring flag and sp_queue_event entries. (Dick Kennedy) [Orabug: 19877605] - lpfc: Add iotag memory barrier (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060.0: Update Copyright on changed files from 8.3.45 patches (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060.0: Fixed locking for scsi task management commands (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060.0: Convert runtime references to old xlane cfg param to fof cfg param (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060: Fix FW dump using sysfs (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060.0: Fix SLI4 s abort loop to process all FCP rings and under ring_lock (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060.0: Fixed kernel panic in lpfc_abort_handler (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060.0: Fix locking for postbufq when freeing (Dick Kennedy) [Orabug: 19877605] - lpfc: remove self-assignments (Dick Kennedy) [Orabug: 19877605] - lpfc 8.3.43: use NULL instead of 0 for pointer (Daeseok Youn) [Orabug: 19877605] - lpfc 10.2.8060.0: Fix locking for lpfc_hba_down_post (Dick Kennedy) [Orabug: 19877605] - lpfc 10.2.8060.0: Fix dynamic transitions of FirstBurst from on to off (Dick Kennedy) [Orabug: 19877605] - lpfc 8.3.45: Fixed crash during driver unload. (James Smart) [Orabug: 19877605] - lpfc 8.3.45: Fixed driver error messages after firmware download (James Smart) [Orabug: 19877605] - lpfc 8.3.45: Fixed missing initialization for task management IOCBs (James Smart) [Orabug: 19877605] - lpfc 8.3.45: Fix sysfs buffer overrun in read of lpfc_fcp_cpu_map for 128 CPUs. (James Smart) [Orabug: 19877605] - lpfc 8.3.45: Incorporate changes to use reason in change_queue_depth function. (James Smart) [Orabug: 19877605] - lpfc 8.3.45: Incorporated support of a low-latency io path (James Smart) [Orabug: 19877605] - lpfc 8.3.45: Added dport mailbox pass through support. (James Smart) [Orabug: 19877605] - be2iscsi : Bump the driver version (John Soni Jose) [Orabug: 19877611] - be2iscsi : Fix kernel panic during reboot/shutdown (John Soni Jose) [Orabug: 19877611] - be2iscsi: Fix processing CQE before connection resources are freed (Jayamohan Kallickal) [Orabug: 19877611] - be2iscsi: Fix updating the boot enteries in sysfs (Jayamohan Kallickal) [Orabug: 19877611] - be2iscsi: Fix the copyright year (Jayamohan Kallickal) [Orabug: 19877611] - be2iscsi: Fix the sparse warning introduced in previous submission (Jayamohan Kallickal) [Orabug: 19877611] - turbostat: fix build breakage (Brian Maly) [Orabug: 19894618] - kvm: vmx: handle invvpid vm exit gracefully (Petr Matousek) [Orabug: 19906290] {CVE-2014-3646} - nEPT: Nested INVEPT (Nadav Har'El) [Orabug: 19905739] {CVE-2014-3645} - KVM: x86: Improve thread safety in pit (Andy Honig) [Orabug: 19905575] {CVE-2014-3611} [3.8.13-50] - NVMe: Do not over allocate for discard requests (Keith Busch) [Orabug: 19791123] - NVMe: Do not open disks that are being deleted (Keith Busch) [Orabug: 19791123] - NVMe: Clear QUEUE_FLAG_STACKABLE (Keith Busch) [Orabug: 19791123] - NVMe: Fix device probe waiting on kthread (Keith Busch) [Orabug: 19791123] - NVMe: Updates for 1.1 spec (Keith Busch) [Orabug: 19791123] - NVMe: Passthrough IOCTL for IO commands (Keith Busch) [Orabug: 19791123] - NVMe: Add revalidate_disk callback (Keith Busch) [Orabug: 19791123] - NVMe: Fix nvmeq waitqueue entry initialization (Keith Busch) [Orabug: 19791123] - NVMe: Translate NVMe status to errno (Keith Busch) [Orabug: 19791123] - NVMe: Fix SG_IO status values (Keith Busch) [Orabug: 19791123] - NVMe: Remove duplicate compat SG_IO code (Keith Busch) [Orabug: 19791123] - NVMe: Reference count pci device (Keith Busch) [Orabug: 19791123] - nvme: Replace rcu_assign_pointer() with RCU_INIT_POINTER() (Andreea-Cristina Bernat) [Orabug: 19791123] - NVMe: Correctly handle IOCTL_SUBMIT_IO when cpus > online queues (Sam Bradshaw) [Orabug: 19791123] - NVMe: Fix filesystem sync deadlock on removal (Keith Busch) [Orabug: 19791123] - NVMe: Add shutdown timeout as module parameter. (Dan McLeran) [Orabug: 19791123] - NVMe: Skip orderly shutdown on failed devices (Keith Busch) [Orabug: 19791123] - NVMe: Whitespace fixes (Keith Busch) [Orabug: 19791123] - NVMe: Handling devices incapable of I/O (Keith Busch) [Orabug: 19791123] - NVMe: Change nvme_enable_ctrl to set EN and manage CC thru ctrl_config. (Dan McLeran) [Orabug: 19791123] - NVMe: Mismatched host/device page size support (Keith Busch) [Orabug: 19791123] - NVMe: Update list of status codes (Matthew Wilcox) [Orabug: 19791123] - NVMe: Async event request (Keith Busch) [Orabug: 19791123] - qlge: Fix compilation warning (Harish Patil) [Orabug: 19877615] - qlge: Fix TSO for non-accelerated vlan traffic (Vlad Yasevich) [Orabug: 19877615] - PCI: Remove DEFINE_PCI_DEVICE_TABLE macro use (Benoit Taine) [Orabug: 19877615] - i40e: Update flow director error messages to reduce user confusion (Carolyn Wyborny) [Orabug: 19882061] - i40evf: enable module build (Brian Maly) [Orabug: 19528533] - i40e/i40evf: Bump build versions (Catherine Sullivan) [Orabug: 19528533] - i40e: Tweak for-loop in i40e_ethtool.c (Catherine Sullivan) [Orabug: 19528533] - i40e: Cleanup if/else statements (Catherine Sullivan) [Orabug: 19528533] - i40e: abstract the close path for better netdev vsis (Shannon Nelson) [Orabug: 19528533] - i40e/i40evf: add tracking to NVM busy state (Shannon Nelson) [Orabug: 19528533] - i40e: Fix an issue with displaying IPv4 FD filters (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Remove a FW workaround (Catherine Sullivan) [Orabug: 19528533] - i40e/i40evf: Bump build versions (Catherine Sullivan) [Orabug: 19528533] - i40e: Enable VF Tx bandwidth setting (Mitch Williams) [Orabug: 19528533] - i40e: Reset the VF upon conflicting VLAN configuration (Greg Rose) [Orabug: 19528533] - i40e: remove open-coded skb_cow_head (Francois Romieu) [Orabug: 19528533] - i40evf: program RSS LUT correctly (Mitch A Williams) [Orabug: 19528533] - i40evf: remove open-coded skb_cow_head (Francois Romieu) [Orabug: 19528533] - i40e: Remove casts of pointer to same type (Joe Perches) [Orabug: 19528533] - i40e/i40evf: Remove addressof casts to same type (Joe Perches) [Orabug: 19528533] - i40e: fix function kernel doc description (Jean Sacren) [Orabug: 19528533] - i40e: Use DEBUG_FD message level for an FD message (Anjali Singhai Jain) [Orabug: 19528533] - i40e/i40evf: Add an FD message level (Anjali Singhai Jain) [Orabug: 19528533] - i40e: check for netdev before debugfs use (Shannon Nelson) [Orabug: 19528533] - i40evf: remove double space after return (Jesse Brandeburg) [Orabug: 19528533] - i40e: Add functionality for FD SB to drop packets (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Cleanup in FDIR SB ethtool code (Anjali Singhai Jain) [Orabug: 19528533] - i40e: eeprom integrity check on load and empr (Shannon Nelson) [Orabug: 19528533] - i40e: Make the alloc and free queue vector calls orthogonal (Greg Rose) [Orabug: 19528533] - i40evf: fix oops in watchdog handler (Mitch Williams) [Orabug: 19528533] - i40e: Delete ATR filter on RST (Anjali Singhai Jain) [Orabug: 19528533] - i40evf: clean up init error messages (Mitch Williams) [Orabug: 19528533] - i40evf: don't shut down admin queue on error (Mitch Williams) [Orabug: 19528533] - i40e: Fix a message string (Anjali Singhai Jain) [Orabug: 19528533] - i40e/i40evf: Add EEE LPI stats (Anjali Singhai Jain) [Orabug: 19528533] - i40e/i40evf: Bump build versions (Catherine Sullivan) [Orabug: 19528533] - i40e: potential array underflow in i40e_vc_process_vf_msg() (Dan Carpenter) [Orabug: 19528533] - i40e/i40evf: reduce context descriptors (Jesse Brandeburg) [Orabug: 19528533] - i40e/i40evf: enable hardware feature head write back (Jesse Brandeburg) [Orabug: 19528533] - i40e: Patch to enable Ethtool/netdev feature flag for NTUPLE control (Anjali Singhai Jain) [Orabug: 19528533] - i40evf: use min_t (Mitch Williams) [Orabug: 19528533] - i40evf: correctly program RSS HLUT table (Mitch Williams) [Orabug: 19528533] - net/i40e: Avoid double setting of NETIF_F_SG for the HW encapsulation feature mask (Or Gerlitz) [Orabug: 19528533] - i40evf: Rename i40e_ptype_lookup i40evf_ptype_lookup (Eric W Biederman) [Orabug: 19528533] - i40e: Don't receive packets when the napi budget == 0 (Eric W. Biederman) [Orabug: 19528533] - i40e/i40evf: Use correct number of VF vectors (Mitch Williams) [Orabug: 19528533] - i40e: Let MDD events be handled by MDD handler (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Bug fix for FDIR replay logic (Anjali Singhai Jain) [Orabug: 19528533] - i40e: add missing variable to i40e_ethtool (Brian Maly) [Orabug: 19528533] - i40e: Add code to handle FD table full condition (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Define a new state variable to keep track of feature auto disable (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Fix function comments (Akeem G Abodunrin) [Orabug: 19528533] - i40e: make string references to q be queue (Jesse Brandeburg) [Orabug: 19528533] - i40e/i40evf: Some flow director HW definition fixes (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Fix a bug in the update logic for FDIR SB filter. (Anjali Singhai Jain) [Orabug: 19528533] - i40e: delete netdev after deleting napi and vectors (Shannon Nelson) [Orabug: 19528533] - i40e/i40evf: Bump pf&vf build versions (Catherine Sullivan) [Orabug: 19528533] - i40e/i40evf: carefully fill tx ring (Jesse Brandeburg) [Orabug: 19528533] - i40e: fix nvm version and remove firmware report (Jesse Brandeburg) [Orabug: 19528533] - i40e: Remove a redundant filter addition (Anjali Singhai Jain) [Orabug: 19528533] - i40e: count timeout events (Jesse Brandeburg) [Orabug: 19528533] - i40e: Remove a FW workaround for Number of MSIX vectors (Anjali Singhai Jain) [Orabug: 19528533] - i40e: clean up comment style (Shannon Nelson) [Orabug: 19528533] - i40e: Prevent overflow due to kzalloc (Akeem G Abodunrin) [Orabug: 19528533] - i40e: Flow Director sideband accounting (Joseph Gasparakis) [Orabug: 19528533] - i40evf: Enable the ndo_set_features netdev op (Greg Rose) [Orabug: 19528533] - i40e and i40evf: Bump driver versions (Catherine Sullivan) [Orabug: 19528533] - i40e: Change MSIX to MSI-X (Catherine Sullivan) [Orabug: 19528533] - i40e: tighten up ring enable/disable flow (Mitch Williams) [Orabug: 19528533] - i40e: remove unnecessary delay (Mitch Williams) [Orabug: 19528533] - i40evf: remove errant space (Mitch A Williams) [Orabug: 19528533] - i40evf: update version and copyright date (Mitch Williams) [Orabug: 19528533] - i40evf: store ring size in ring structs (Mitch Williams) [Orabug: 19528533] - i40evf: don't guess device name (Mitch Williams) [Orabug: 19528533] - i40evf: remove bogus comment (Mitch Williams) [Orabug: 19528533] - i40evf: fix up strings in init task (Mitch Williams) [Orabug: 19528533] - i40evf: get rid of pci_using_dac (Mitch Williams) [Orabug: 19528533] - i40evf: fix multiple crashes on remove (Mitch Williams) [Orabug: 19528533] - i40evf: remove VLAN filters on close (Mitch Williams) [Orabug: 19528533] - i40evf: request reset on tx hang (Mitch Williams) [Orabug: 19528533] - i40e: Use pci_enable_msix_range() instead of pci_enable_msix() (Alexander Gordeev) [Orabug: 19528533] - net: i40evf: Remove duplicate include (Sachin Kamat) [Orabug: 19528533] - i40evf: refactor reset handling (Mitch Williams) [Orabug: 19528533] - i40evf: change type of flags variable (Mitch Williams) [Orabug: 19528533] - i40evf: don't store unnecessary array of strings (Mitch Williams) [Orabug: 19528533] - i40evf: fix bogus comment (Mitch Williams) [Orabug: 19528533] - i40evf: clean up adapter struct (Mitch Williams) [Orabug: 19528533] - i40e: don't handle VF reset on unload (Mitch Williams) [Orabug: 19528533] - i40e: enable extant VFs (Mitch Williams) [Orabug: 19528533] - i40e: reset VFs after PF reset (Mitch Williams) [Orabug: 19528533] - i40e: set VF state to active when reset is complete (Mitch Williams) [Orabug: 19528533] - i40e: remove dead code (Mitch Williams) [Orabug: 19528533] - i40e: Setting i40e_down bit for tx_timeout (Akeem G Abodunrin) [Orabug: 19528533] - i40evf: clean up memsets (Mitch Williams) [Orabug: 19528533] - i40evf: trivial fixes (Jesse Brandeburg) [Orabug: 19528533] - i40e: bump driver version (Jesse Brandeburg) [Orabug: 19528533] - i40e: spelling error (Jesse Brandeburg) [Orabug: 19528533] - i40e: refactor flow director (Anjali Singhai Jain) [Orabug: 19528533] - i40e: rename defines (Jesse Brandeburg) [Orabug: 19528533] - i40e: whitespace fixes (Jesse Brandeburg) [Orabug: 19528533] - i40e: Change firmware workaround (Jesse Brandeburg) [Orabug: 19528533] - i40e: fix compile warning on checksum_local (Jesse Brandeburg) [Orabug: 19528533] - i40e: updates to AdminQ interface (Shannon Nelson) [Orabug: 19528533] - i40e: check desc pointer before printing (Shannon Nelson) [Orabug: 19528533] - i40e: Remove autogenerated Module.symvers file. (David S. Miller) [Orabug: 19528533] - i40e: Retain MAC filters on port VLAN deletion (Greg Rose) [Orabug: 19528533] - i40e: Warn admin to reload VF driver on port VLAN configuration (Greg Rose) [Orabug: 19528533] - i40e: Bump version number (Catherine Sullivan) [Orabug: 19528533] - i40e: trivial cleanup (Jesse Brandeburg) [Orabug: 19528533] - i40e: whitespace fixes (Jesse Brandeburg) [Orabug: 19528533] - i40e: make message meaningful (Mitch Williams) [Orabug: 19528533] - i40e: associate VMDq queue with VM type (Shannon Nelson) [Orabug: 19528533] - i40e: remove extra register write (Mitch Williams) [Orabug: 19528533] - i40e: Bump version (Catherine Sullivan) [Orabug: 19528533] - i40e: fix log message wording (Shannon Nelson) [Orabug: 19528533] - i40e: enable PTP (Jacob Keller) [Orabug: 19528533] - i40e: call clear_pxe after adminq is initialized (Shannon Nelson) [Orabug: 19528533] - i40e: clear qtx_head before enabling Tx queue (Shannon Nelson) [Orabug: 19528533] - i40e: adjust ITR max and min values (Shannon Nelson) [Orabug: 19528533] - i40e: check for possible incorrect ipv6 checksum (Shannon Nelson) [Orabug: 19528533] - i40e: allow VF to remove any MAC filter (Mitch Williams) [Orabug: 19528533] - i40e: do not bail when disabling if Tx queue disable fails (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Setting queue count to 1 using ethtool is valid (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Cleanup Doxygen warnings (Jeff Kirsher) [Orabug: 19528533] - i40e: fix long lines (Mitch Williams) [Orabug: 19528533] - i40e: Bump version (Catherine Sullivan) [Orabug: 19528533] - i40e: Update the Current NVM version Low value (Anjali Singhai Jain) [Orabug: 19528533] - i40e: drop unused macros (Jesse Brandeburg) [Orabug: 19528533] - i40e: use assignment instead of memcpy (Mitch Williams) [Orabug: 19528533] - i40e: Turn flow director off in MFP mode (Catherine Sullivan) [Orabug: 19528533] - i40e: Add a dummy packet template (Jesse Brandeburg) [Orabug: 19528533] - i40e: fix spelling errors (Jesse Brandeburg) [Orabug: 19528533] - i40e: trivial: formatting and checkpatch fixes (Mitch Williams) [Orabug: 19528533] - i40e: shorten wordy fields (Mitch Williams) [Orabug: 19528533] - i40e: accept pf to pf adminq messages (Shannon Nelson) [Orabug: 19528533] - i40e: remove interrupt on AQ error (Shannon Nelson) [Orabug: 19528533] - i40e: release NVM resource reservation on startup (Shannon Nelson) [Orabug: 19528533] - i40e: Cleanup reconfig rss path (Anjali Singhai Jain) [Orabug: 19528533] - i40e: disable packet split (Jesse Brandeburg) [Orabug: 19528533] - i40e: add a comment on barrier and fix panic on reset (Greg Rose) [Orabug: 19528533] - i40e: Fix MAC format in Write MAC address AQ cmd (Kamil Krawczyk) [Orabug: 19528533] - i40e: Fix GPL header (Greg Rose) [Orabug: 19528533] - i40e: use kernel specific defines (Jesse Brandeburg) [Orabug: 19528533] - i40e: Re-enable interrupt on ICR0 (Anjali Singhai Jain) [Orabug: 19528533] - i40e: correctly setup ARQ descriptors (Mitch Williams) [Orabug: 19528533] - i40e: remove redundant AQ enable (Kamil Krawczyk) [Orabug: 19528533] - i40e: Enable/Disable PF switch LB on SR-IOV configure changes (Greg Rose) [Orabug: 19528533] - i40e: whitespace paren and comment tweaks (Shannon Nelson) [Orabug: 19528533] - i40e: rework shadow ram read functions (Shannon Nelson) [Orabug: 19528533] - i40e: check MAC type before any REG access (Shannon Nelson) [Orabug: 19528533] - i40e: move PF ID init from PF reset to SC init (Shannon Nelson) [Orabug: 19528533] - i40e: Reduce range of interrupt reg in reg test (Shannon Nelson) [Orabug: 19528533] - i40e: update firmware api to 1.1 (Shannon Nelson) [Orabug: 19528533] - i40e: Add code to wait for FW to complete in reset path (Shannon Nelson) [Orabug: 19528533] - i40e: Bump version (Catherine Sullivan) [Orabug: 19528533] - i40e: Allow VF to set already assigned MAC address (Greg Rose) [Orabug: 19528533] - i40e: Stop accepting any VLAN tag on VLAN 0 filter set (Greg Rose) [Orabug: 19528533] - i40e: Do not enable broadcast promiscuous by default (Greg Rose) [Orabug: 19528533] - i40e: Expose AQ debugfs hooks (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Do not allow AQ calls from ndo-ops (Anjali Singhai Jain) [Orabug: 19528533] - i40e: check asq alive before notify (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Admin queue shutdown fixes (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Hide the Port VLAN VLAN ID (Greg Rose) [Orabug: 19528533] - i40e: use correct struct for get and update vsi params (Shannon Nelson) [Orabug: 19528533] - i40e: Fix VF driver MAC address configuration (Greg Rose) [Orabug: 19528533] - i40e: support VFs on PFs other than 0 (Mitch Williams) [Orabug: 19528533] - i40e: acknowledge VFLR when disabling SR-IOV (Mitch Williams) [Orabug: 19528533] - i40e: don't allocate zero size (Mitch Williams) [Orabug: 19528533] - i40e: use struct assign instead of memcpy (Mitch Williams) [Orabug: 19528533] - i40e: Do not enable default port on the VEB (Greg Rose) [Orabug: 19528533] - i40e: avoid unnecessary register read (Mitch Williams) [Orabug: 19528533] - i40e: fix whitespace (Jesse Brandeburg) [Orabug: 19528533] - i40e: Fix SR-IOV VF port VLAN (Greg Rose) [Orabug: 19528533] - i40e: Record dma buffer info for dummy packets (Anjali Singhai Jain) [Orabug: 19528533] - i40e: remove un-necessary io-write (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Remove unnecessary prototypes (Anjali Singhai Jain) [Orabug: 19528533] - i40e: I40E_FLAG_MQ_ENABLED is not used (Neerav Parikh) [Orabug: 19528533] - i40e: Fix ring allocation (Neerav Parikh) [Orabug: 19528533] - i40e: catch unset q_vector (Shannon Nelson) [Orabug: 19528533] - i40e: keep allocated memory in structs (David Cassard) [Orabug: 19528533] - i40e: fix error handling when alloc of vsi array fails (Shannon Nelson) [Orabug: 19528533] - i40e: reinit buffer size each time (Mitch Williams) [Orabug: 19528533] - i40e: use functions to enable and disable icr 0 (Mitch Williams) [Orabug: 19528533] - i40e: add header file flag _I40E_TXRX_H_ (Vasu Dev) [Orabug: 19528533] - i40e: guard against vf message races (Mitch Williams) [Orabug: 19528533] - i40e: fix constant cast issues (Jesse Brandeburg) [Orabug: 19528533] - i40e: Change the ethtool NVM read method to use AQ (Anjali Singhai Jain) [Orabug: 19528533] - i40e: fix mac address checking (Jesse Brandeburg) [Orabug: 19528533] - i40e: Dump the whole NVM, not half (Anjali Singhai Jain) [Orabug: 19528533] - i40e: report VF MAC addresses correctly (Mitch Williams) [Orabug: 19528533] - i40e: update led set args (Jesse Brandeburg) [Orabug: 19528533] - i40e: make a define from a large constant (Mitch Williams) [Orabug: 19528533] - i40e: be more informative (Mitch Williams) [Orabug: 19528533] - i40e: fix error return (Mitch Williams) [Orabug: 19528533] - i40e: remove chatty log messages (Mitch Williams) [Orabug: 19528533] - i40e: remove redundant code (Mitch Williams) [Orabug: 19528533] - i40e: refactor VF reset flow (Mitch Williams) [Orabug: 19528533] - i40e: move i40e_reset_vf (Mitch Williams) [Orabug: 19528533] - i40e: fix curly brace use and return type (Shannon Nelson) [Orabug: 19528533] - i40e: add wake-on-lan support (Shannon Nelson) [Orabug: 19528533] - i40e: Suppress HMC error to Interrupt message level (Anjali Singhai Jain) [Orabug: 19528533] - i40e: using for_each_set_bit to simplify the code (Wei Yongjun) [Orabug: 19528533] - i40e: make functions static and remove dead code (Stephen Hemminger) [Orabug: 19528533] - i40e: Fix off by one in i40e_dbg_command_write (Alan Cox) [Orabug: 19528533] - i40e: Bump version number (Catherine Sullivan) [Orabug: 19528533] - i40e: Fix wrong mask bits being used in misc interrupt (Anjali Singhai Jain) [Orabug: 19528533] - i40e: more print_hex_dump use (Shannon Nelson) [Orabug: 19528533] - i40e: fix up scanf decoders (Shannon Nelson) [Orabug: 19528533] - i40e: simplify error messages for dump descriptor (Shannon Nelson) [Orabug: 19528533] - i40e: prevent null pointer exception in dump descriptor (Shannon Nelson) [Orabug: 19528533] - i40e: Fix dump output from debugfs calls (Neerav Parikh) [Orabug: 19528533] - i40e: Remove FCoE in i40e_virtchnl_pf.c code (Neerav Parikh) [Orabug: 19528533] - i40e: support for suspend and resume (Shannon Nelson) [Orabug: 19528533] - i40e: rtnl_lock in reset path fixes (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Add basic support for get/set channels for RSS (Anjali Singhai Jain) [Orabug: 19528533] - i40e: function to reconfigure RSS queues and rebuild (Anjali Singhai Jain) [Orabug: 19528533] - i40e: reinit flow for the main VSI (Anjali Singhai Jain) [Orabug: 19528533] - i40e: use same number of queues as CPUs (Jesse Brandeburg) [Orabug: 19528533] - i40e: trivial fixes (Jesse Brandeburg) [Orabug: 19528533] - i40e: init flow control settings to disabled (Jesse Brandeburg) [Orabug: 19528533] - i40e: Tell the stack about our actual number of queues (Anjali Singhai Jain) [Orabug: 19528533] - i40e: fix pf reset after offline test (Shannon Nelson) [Orabug: 19528533] - i40e: fix up some of the ethtool connection reporting (Brian Maly) [Orabug: 19528533] - i40e: Bump version number (Catherine Sullivan) [Orabug: 19528533] - i40e: remove and fix confusing define name (Jesse Brandeburg) [Orabug: 19528533] - i40e: complain about out-of-range descriptor request (Shannon Nelson) [Orabug: 19528533] - i40e: loopback info and set loopback fix (Kamil Krawczyk) [Orabug: 19528533] - i40e: restrict diag test messages (Shannon Nelson) [Orabug: 19528533] - i40e: Add a new variable to track number of pf instances (Anjali Singhai Jain) [Orabug: 19528533] - i40e: add num_VFs message (Anjali Singhai Jain) [Orabug: 19528533] - i40e: refactor ethtool tests (Shannon Nelson) [Orabug: 19528533] - i40e: clear test state bit after all ethtool tests (Shannon Nelson) [Orabug: 19528533] - i40e: only set up the rings to be used (Shannon Nelson) [Orabug: 19528533] - i40e: Enable all PCTYPEs except FCOE for RSS. (Anjali Singhai Jain) [Orabug: 19528533] - i40e: refactor reset code (Anjali Singhai Jain) [Orabug: 19528533] - i40e: Bump version (Catherine Sullivan) [Orabug: 19528533] - i40e: whitespace (Jeff Kirsher) [Orabug: 19528533] - i40e: enable early hardware support (Jesse Brandeburg) [Orabug: 19528533] - i40e: Add flag for L2 VEB filtering (Kevin Scott) [Orabug: 19528533] - i40e: get media type during link info (Jesse Brandeburg) [Orabug: 19528533] - i40e: check multi-bit state correctly (Jesse Brandeburg) [Orabug: 19528533] - i40e: separate TSYNVALID and TSYNINDX fields in Rx descriptor (Jacob Keller) [Orabug: 19528533] - i40e: sync header files with hardware (Anjali Singhai Jain) [Orabug: 19528533] - i40e: restrict diag test length (Kamil Krawczyk) [Orabug: 19528533] - i40e: add support for triggering EMPR (Shannon Nelson) [Orabug: 19528533] - i40e: add interrupt test (Shannon Nelson) [Orabug: 19528533] - i40e: default debug mask setting (Shannon Nelson) [Orabug: 19528533] - i40e: fix debugging messages (Mitch Williams) [Orabug: 19528533] - i40e: properly add VF MAC addresses (Mitch Williams) [Orabug: 19528533] - i40e: retry call on timeout (Shannon Nelson) [Orabug: 19528533] - i40e: select reset counters correctly (Shannon Nelson) [Orabug: 19528533] - i40e: allow one more vector for VFs (Mitch Williams) [Orabug: 19528533] - i40e: firmware version fields offsets update (Anjali Singhai jain) [Orabug: 19528533] - i40e: simplify aq head-tail-len setups (Shannon Nelson) [Orabug: 19528533] - i40e: clear AQ head and tail registers (Shannon Nelson) [Orabug: 19528533] - i40e: register file updates (Anjali Singhai jain) [Orabug: 19528533] - i40e: set pf_id based on device and function numbers (Christopher Pau) [Orabug: 19528533] - i40e: fix null dereference (Jesse Brandeburg) [Orabug: 19528533] - i40e: fix error return code in i40e_probe() (Wei Yongjun) [Orabug: 19528533] (Wei Yongjun) [Orabug: 19528533] - i40e: Bump version (Catherine Sullivan) [Orabug: 19528533] - i40e: use pf_id for pf function id in qtx_ctl (Shannon Nelson) [Orabug: 19528533] - i40e: check vsi ptrs before dumping them (Shannon Nelson) [Orabug: 19528533] - i40e: reorder block declarations in debugfs (Shannon Nelson) [Orabug: 19528533] - i40e: tweaking icr0 handling for legacy irq (Shannon Nelson) [Orabug: 19528533] - i40e: refactor fdir setup function (Jesse Brandeburg) [Orabug: 19528533] - i40e: fix sign extension issue (Jesse Brandeburg) [Orabug: 19528533] - i40e: fix use of untrusted scalar value warning (Jesse Brandeburg) [Orabug: 19528533] - i40e: clamp debugfs nvm read command (Jesse Brandeburg) [Orabug: 19528533] - i40e: debugfs fixups (Jesse Brandeburg) [Orabug: 19528533] - i40e: fixup legacy interrupt handling (Shannon Nelson) [Orabug: 19528533] - i40e: assign correct vector to VF (Mitch Williams) [Orabug: 19528533] - i40e: don't free nonexistent rings (Mitch Williams) [Orabug: 19528533] - i40e: do not flush after re-enabling interrupts (Jesse Brandeburg) [Orabug: 19528533] - i40e: Bump version (Catherine Sullivan) [Orabug: 19528533] - i40e: Add support for 64 bit netstats (Alexander Duyck) [Orabug: 19528533] - i40e: Move rings from pointer to array to array of pointers (Alexander Duyck) [Orabug: 19528533] - i40e: Replace ring container array with linked list (Alexander Duyck) [Orabug: 19528533] - i40e: Move q_vectors from pointer to array to array of pointers (Alexander Duyck) [Orabug: 19528533] - i40e: Split bytes and packets from Rx/Tx stats (Alexander Duyck) [Orabug: 19528533] - i40e: Add support for Tx byte queue limits (Alexander Duyck) [Orabug: 19528533] - i40e: Drop dead code and flags from Tx hotpath (Alexander Duyck) [Orabug: 19528533] - i40e: clean up Tx fast path (Alexander Duyck) [Orabug: 19528533] - i40e: Do not directly increment Tx next_to_use (Alexander Duyck) [Orabug: 19528533] - i40e: Cleanup Tx buffer info layout (Alexander Duyck) [Orabug: 19528533] - i40e: Drop unused completed stat (Alexander Duyck) [Orabug: 19528533] - i40e: Link code updates (Anjali Singhai) [Orabug: 19528533] - i40e: clean up coccicheck reported errors (Jesse Brandeburg) [Orabug: 19528533] - i40e: better return values (Jesse Brandeburg) [Orabug: 19528533] - i40e: convert ret to aq_ret (Jesse Brandeburg) [Orabug: 19528533] - i40e: small clean ups from review (Jesse Brandeburg) [Orabug: 19528533] - i40e: use common failure flow (Jesse Brandeburg) [Orabug: 19528533] - i40e: Fix device ID define names to align to standard (Shannon Nelson) [Orabug: 19528533] - i40evf: conform to UEK kapi (Brian Maly) [Orabug: 19528533] - i40evf: A0 silicon specific (Greg Rose) [Orabug: 19528533] - i40evf: add driver to kernel build system (Greg Rose) [Orabug: 19528533] - i40evf: init code and hardware support (Greg Rose) [Orabug: 19528533] - i40evf: driver core headers (Greg Rose) [Orabug: 19528533] - i40evf: virtual channel interface (Greg Rose) [Orabug: 19528533] - i40evf: core ethtool functionality (Greg Rose) [Orabug: 19528533] - i40evf: transmit and receive functionality (Greg Rose) [Orabug: 19528533] - i40evf: main driver core (Greg Rose) [Orabug: 19528533] - Revert 'i40e: upgrade to 1.0.15' (Brian Maly) [Orabug: 19528533] - ixgbe: Look up MAC address on SPARC systems (Martin K. Petersen) [Orabug: 18182472] - cpufreq: intel_pstate: allow driver to be built as a module (Brian Maly) [Orabug: 19250051] - cpufreq: intel_pstate: enable driver in kernel config (Brian Maly) [Orabug: 19250051] - cpufreq: intel_pstate: Remove core_pct rounding (Stratos Karafotis) [Orabug: 19250051] - cpufreq: intel_pstate: Simplify P state adjustment logic. (Stratos Karafotis) [Orabug: 19250051] - cpufreq: intel_pstate: Keep values in aperf/mperf in full precision (Stratos Karafotis) [Orabug: 19250051] - cpufreq: intel_pstate: Disable interrupts during MSRs reading (Stratos Karafotis) [Orabug: 19250051] IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3184 CVE-2014-4014 CVE-2014-1739 CVE-2014-4171 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-55.1.1] - ALSA: control: Protect user controls against concurrent access (Lars-Peter Clausen) [Orabug: 20192540] {CVE-2014-4652} - target/rd: Refactor rd_build_device_space + rd_release_device_space (Nicholas Bellinger) [Orabug: 20192516] {CVE-2014-4027} - HID: logitech: perform bounds checking on device_id early enough (Jiri Kosina) [Orabug: 20192477] {CVE-2014-3182} - udf: Avoid infinite loop when processing indirect ICBs (Jan Kara) [Orabug: 20192448] {CVE-2014-6410} - ALSA: control: Make sure that id->index does not overflow (Lars-Peter Clausen) [Orabug: 20192416] {CVE-2014-4656} - ALSA: control: Handle numid overflow (Lars-Peter Clausen) [Orabug: 20192367] {CVE-2014-4656} - HID: picolcd: sanity check report size in raw_event() callback (Jiri Kosina) [Orabug: 20192208] {CVE-2014-3186} - net: sctp: fix remote memory pressure from excessive queueing (Daniel Borkmann) [Orabug: 20192058] {CVE-2014-3688} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3182 CVE-2014-3186 CVE-2014-3688 CVE-2014-4027 CVE-2014-4652 CVE-2014-4656 CVE-2014-6410 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.14] - HID: magicmouse: sanity check report size in raw_event() callback (Jiri Kosina) [Orabug: 19849355] {CVE-2014-3181} - ALSA: control: Protect user controls against concurrent access (Lars-Peter Clausen) [Orabug: 20192542] {CVE-2014-4652} - target/rd: Refactor rd_build_device_space + rd_release_device_space (Nicholas Bellinger) [Orabug: 20192517] {CVE-2014-4027} - media-device: fix infoleak in ioctl media_enum_entities() (Salva Peiro) [Orabug: 20192501] {CVE-2014-1739} {CVE-2014-1739} - udf: Avoid infinite loop when processing indirect ICBs (Jan Kara) [Orabug: 20192449] {CVE-2014-6410} - ALSA: control: Make sure that id->index does not overflow (Lars-Peter Clausen) [Orabug: 20192418] {CVE-2014-4656} - ALSA: control: Handle numid overflow (Lars-Peter Clausen) [Orabug: 20192376] {CVE-2014-465} - HID: picolcd: sanity check report size in raw_event() callback (Jiri Kosina) [Orabug: 20192205] {CVE-2014-3186} - net: sctp: fix remote memory pressure from excessive queueing (Daniel Borkmann) [Orabug: 20192059] {CVE-2014-3688} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3181 CVE-2014-1739 CVE-2014-3186 CVE-2014-3688 CVE-2014-4027 CVE-2014-4652 CVE-2014-4656 CVE-2014-6410 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.12] - HID: fix a couple of off-by-ones (Jiri Kosina) [Orabug: 19849320] {CVE-2014-3184} - ALSA: control: Protect user controls against concurrent access (Lars-Peter Clausen) [Orabug: 20192545] {CVE-2014-4652} - udf: Avoid infinite loop when processing indirect ICBs (Jan Kara) [Orabug: 20192451] {CVE-2014-6410} - ALSA: control: Make sure that id->index does not overflow (Lars-Peter Clausen) [Orabug: 20192420] {CVE-2014-4656} - ALSA: control: Handle numid overflow (Lars-Peter Clausen) [Orabug: 20192379] {CVE-2014-4656} - net: sctp: fix remote memory pressure from excessive queueing (Daniel Borkmann) [Orabug: 20192060] {CVE-2014-3688} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-3184 CVE-2014-3688 CVE-2014-4652 CVE-2014-4656 CVE-2014-6410 Oracle Linux 6 Oracle Linux 7 kernel-uek [3.8.13-55.1.2.el6uek] - isofs: Fix unbounded recursion when processing relocated directories (Jan Kara) [Orabug: 20224059] {CVE-2014-5471} {CVE-2014-5472} - x86_64, traps: Stop using IST for #SS (Andy Lutomirski) [Orabug: 20224027] {CVE-2014-9090} {CVE-2014-9322} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-5471 CVE-2014-5472 CVE-2014-9322 CVE-2014-9090 Oracle Linux 5 Oracle Linux 6 [2.6.39-400.215.15] - isofs: Fix unbounded recursion when processing relocated directories (Jan Kara) [Orabug: 20224060] {CVE-2014-5471} {CVE-2014-5472} - x86_64, traps: Stop using IST for #SS (Andy Lutomirski) [Orabug: 20224028] {CVE-2014-9090} {CVE-2014-9322} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-5471 CVE-2014-5472 CVE-2014-9322 CVE-2014-9090 Oracle Linux 5 Oracle Linux 6 kernel-uek [2.6.32-400.36.13uek] - net: guard tcp_set_keepalive() to tcp sockets (Eric Dumazet) [Orabug: 20224099] {CVE-2012-6657} - isofs: Fix unbounded recursion when processing relocated directories (Jan Kara) [Orabug: 20224061] {CVE-2014-5471} {CVE-2014-5472} - x86_64, traps: Stop using IST for #SS (Andy Lutomirski) [Orabug: 20224029] {CVE-2014-9090} {CVE-2014-9322} IMPORTANT Copyright 2014 Oracle, Inc. CVE-2012-6657 CVE-2014-5471 CVE-2014-5472 CVE-2014-9322 CVE-2014-9090 Oracle Linux 6 Oracle Linux 7 [1.3.3-1.0.1] - Rename requirement of docker-io-pkg-devel in %package devel as docker-pkg-devel - Restore SysV init scripts for Oracle Linux 6 - Require Oracle Unbreakable Enterprise Kernel Release 3 or higher - Rename as docker. - Re-enable btrfs graphdriver support [1.3.3-1] - Update source to 1.3.3 from https://github.com/docker/docker/releases/tag/v1.3.3 Path traversal during processing of absolute symlinks (CVE-2014-9356) Escalation of privileges during decompression of LZMA (.xz) archives (CVE-2014-9357) IMPORTANT Copyright 2014 Oracle, Inc. CVE-2014-9356 CVE-2014-9357 CVE-2014-9358