-
Thu Jul 25 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.88.3.el7uek]
- crypto: pcrypt - Fix hungtask for PADATA_RESET (Lu Jialin) [Orabug: 36806710] {CVE-2023-52813}
- usbnet: sanity check for maxpacket (Oliver Neukum) [Orabug: 36806658] {CVE-2021-47495}
- phonet: fix rtm_phonet_notify() skb allocation (Eric Dumazet) [Orabug: 36683487] {CVE-2024-36946}
- wifi: nl80211: don't free NULL coalescing rule (Johannes Berg) [Orabug: 36683466] {CVE-2024-36941}
- bna: ensure the copied buf is NUL terminated (Bui Quang Minh) [Orabug: 36683433] {CVE-2024-36934}
- bna: use memdup_user to copy userspace buffers (Ivan Vecera) [Orabug: 36683433] {CVE-2024-36934}
- new helper: memdup_user_nul() (Al Viro) [Orabug: 36683433] {CVE-2024-36934}
- netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() (Ziyang Xuan) [Orabug: 36598047] {CVE-2024-27020}
- netfilter: nf_tables: __nft_expr_type_get() selects specific family type (Pablo Neira Ayuso) [Orabug: 36598047] {CVE-2024-27020}
- net/mlx5e: drop shorter ethernet frames (Manjunath Patil) [Orabug: 36879159] {CVE-2024-41090} {CVE-2024-41091}
-
Wed Jul 17 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.88.2.el7uek]
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (Shigeru Yoshida) [Orabug: 36802310] {CVE-2023-52528}
- usbnet/smsc75xx: silence uninitialized variable warning (Dan Carpenter) {CVE-2023-52528}
- tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (Thadeu Lima de Souza Cascardo) [Orabug: 36685663] {CVE-2023-52880}
- netfilter: nf_tables: disallow anonymous set with timeout flag (Pablo Neira Ayuso) [Orabug: 36530112] {CVE-2024-26642}
- ubi: Check for too small LEB size in VTBL code (Richard Weinberger) [Orabug: 36356637] {CVE-2024-25739}
-
Tue Jul 02 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.88.1.el7uek]
- NFS: LOOKUP_DIRECTORY is also ok with symlinks (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448}
- NFSv4: Handle case where the lookup of a directory fails (Trond Myklebust) [Orabug: 33958156] {CVE-2022-24448}
-
Tue Jun 18 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.87.2.el7uek]
- net: sched: fix race condition in qdisc_graft() (Eric Dumazet) [Orabug: 35250827] {CVE-2023-0590}
-
Wed Jun 12 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.87.1.el7uek]
- ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet (Zhengchao Shao) [Orabug: 36654101] {CVE-2023-6932}
- net: convert ip_mc_list.refcnt from atomic_t to refcount_t (Reshetova, Elena) [Orabug: 36654101]
- net/sched: sch_hfsc: Ensure inner classes have fsc curve (Budimir Markovic) [Orabug: 35810544] {CVE-2023-4623}
- tcp: Reduce chance of collisions in inet6_hashfn(). (Stewart Smith) [Orabug: 35754477] {CVE-2023-1206}
-
Tue May 07 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.86.1.el7uek]
- ext4: fix corruption during on-line resize (Maximilian Heyne) [Orabug: 36574734]
- exec, elf: ignore malformed note segments (Anthony Yznaga) [Orabug: 36524980]
-
Wed Apr 10 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.85.1.el7uek]
- Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race condition (Zheng Wang) [Orabug: 35282809] {CVE-2023-1989}
-
Mon Apr 01 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.84.2.el7uek]
- netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [Orabug: 36251327] {CVE-2024-1086}
-
Tue Mar 05 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.84.1.el7uek]
- mm: avoid conflict between MADV_DOEXEC and upstream advice values (Anthony Yznaga) [Orabug: 36334311]
- kobject: Fix slab-out-of-bounds in fill_kobj_path() (Wang Hai) [Orabug: 35924076] {CVE-2023-45863}
- kobject: Replace strncpy with memcpy (Guenter Roeck) [Orabug: 35924076]
- net: xfrm: Fix xfrm_address_filter OOB read (Lin Ma) [Orabug: 35923517] {CVE-2023-39194}
- net/xfrm: use kmemdup rather than duplicating its implementation (Andrzej Hajda) [Orabug: 35923517]
-
Tue Feb 20 2024 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.83.2.el7uek]
- Input: add bounds checking to input_set_capability() (Jeff LaBundy) [Orabug: 36192120] {CVE-2022-48619}
- netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() (Hangyu Hua) [Orabug: 36155598] {CVE-2023-7192}