[ol7_UEKR4] kernel-uek-4.1.12-124.67.3.el7uek.x86_64

The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

Changelog (Show File list) (Show related packages)

• Tue Sep 20 2022 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.67.3.el7uek]

  - media: imon: Fix null-ptr-deref in imon_probe (Arvind Yadav)  [Orabug: 31225377]  {CVE-2017-16537} 
  - fbcon: remove soft scrollback code (Linus Torvalds)  [Orabug: 31914703]  {CVE-2020-14390} 
  - inet: use bigger hash table for IP ID generation (Eric Dumazet)  [Orabug: 33778986]  {CVE-2021-45486} 
  - ipv4: speedup ip_idents_reserve() (Eric Dumazet)  [Orabug: 33778986]

• Thu Sep 15 2022 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.67.2.el7uek]

  - media: v4l: ioctl: Fix memory leak in video_usercopy (Sakari Ailus)  [Orabug: 32759975]  {CVE-2021-30002} 
  - usbnet: silence an unnecessary warning (Oliver Neukum)  [Orabug: 23589045]  
  - futex: Remove requirement for lock_page() in get_futex_key() (Mel Gorman)  [Orabug: 29048998]  {CVE-2018-9422} 
  - mwifiex: Fix skb_over_panic in mwifiex_usb_recv() (Zekun Shen)  [Orabug: 33784271]  {CVE-2021-43976} 
  - af_key: Do not call xfrm_probe_algs in parallel (Herbert Xu)  [Orabug: 34566754]  {CVE-2022-3028} 
  - ext4: fix kernel infoleak via ext4_extent_header (Anirudh Rayabharam)  [Orabug: 34579226]  {CVE-2022-0850} 
  - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (Jann Horn)  [Orabug: 34594265]  {CVE-2022-2964} 
  - net: usb: ax88179_178a: initialize local variables before use (Phillip Potter)  [Orabug: 34594265]  
  - net: usb: ax88179_178a: fix packet alignment padding (Jeremy Kerr)  [Orabug: 34594265]  
  - ax88179_178a: Check for supported Wake-on-LAN modes (Florian Fainelli)  [Orabug: 34594265]  
  - Net Driver: Add Cypress GX3 VID=04b4 PID=3610. (Allan Chou)  [Orabug: 34594265]

• Tue Sep 06 2022 Alok Tiwari <alok.a.tiwari@oracle.com> [4.1.12-124.67.1.el7uek]

  - KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings (Eric Biggers)  [Orabug: 27902747]  {CVE-2017-7472} 
  - KEYS: prevent creating a different user's keyrings (Eric Biggers)  [Orabug: 29013653]  {CVE-2017-18270} 
  - scsi: sg: add sg_remove_request in sg_write (Wu Bo)  [Orabug: 31350699]  {CVE-2020-12770} 
  - xfrm: xfrm_policy: fix a possible double xfrm_pols_put() in xfrm_bundle_lookup() (Hangyu Hua)  [Orabug: 34503626]  {CVE-2022-36879} 
  - ext4: verify dir block before splitting it (Jan Kara)  [Orabug: 34555416]  {CVE-2022-1184} 
  - dm verity: set DM_TARGET_IMMUTABLE feature flag (Sarthak Kukreti)  [Orabug: 34555434]  {CVE-2022-2503}

• Tue Aug 23 2022 aloktiw <alok.a.tiwari@oracle.com> [4.1.12-124.66.3.el7uek]

  - fuse: fix pipe buffer lifetime for direct_io (Miklos Szeredi)  [Orabug: 33981149]  {CVE-2022-1011} 
  - vt: drop old FONT ioctls (Jiri Slaby)  [Orabug: 34408794]  {CVE-2021-33656} 
  - video: of_display_timing.h: include errno.h (Hsin-Yi Wang)  [Orabug: 34408910]  {CVE-2021-33655} 
  - fbcon: Disallow setting font bigger than screen size (Helge Deller)  [Orabug: 34408910]  {CVE-2021-33655} 
  - scsi: target: Fix WRITE_SAME No Data Buffer crash (Mike Christie)  [Orabug: 34419974]  {CVE-2022-21546} 
  - scsi/eh: fix hang adding ehandler wakeups after decrementing host_busy (Gulam Mohamed)  [Orabug: 33349684] [Orabug: 34492498]

• Wed Aug 10 2022 aloktiw <alok.a.tiwari@oracle.com> [4.1.12-124.66.2.el7uek]

  - mm: enforce min addr even if capable() in expand_downwards() (Jann Horn)  [Orabug: 29501997]  {CVE-2019-9213} 
  - ACPICA: Reference Counts: increase max to 0x4000 for large servers (Erik Schmauss)   
  - ipv4: tcp: send zero IPID in SYNACK messages (Eric Dumazet)  [Orabug: 33917058]  {CVE-2020-36516} 
  - ipv4: Cache net in ip_build_and_send_pkt and ip_queue_xmit (Eric W. Biederman)  [Orabug: 33917058]  {CVE-2020-36516} 
  - ipv4: igmp: guard against silly MTU values (Eric Dumazet)  [Orabug: 33917058]  {CVE-2020-36516} 
  - inet: constify ip_dont_fragment() arguments (Eric Dumazet)  [Orabug: 33917058]  {CVE-2020-36516} 
  - ip: constify ip_build_and_send_pkt() socket argument (Eric Dumazet)  [Orabug: 33917058]  {CVE-2020-36516} 
  - vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Eric Biggers)  [Orabug: 34433461]  {CVE-2020-36557} 
  - vt: vt_ioctl: fix race in VT_RESIZEX (Eric Dumazet)  [Orabug: 34433476]  {CVE-2020-36558} 
  - VT_RESIZEX: get rid of field-by-field copyin (Al Viro)  [Orabug: 34433476]  
  - net_sched: cls_route: remove from list when handle is 0 (Thadeu Lima de Souza Cascardo)  [Orabug: 34460939] [Orabug: 34484730]  {CVE-2022-2588}

• Tue Aug 02 2022 aloktiw <alok.a.tiwari@oracle.com> [4.1.12-124.66.1.el7uek]

  - net: fix uninit-value in __hw_addr_add_ex() (Eric Dumazet)  [Orabug: 34395887]  
  - mac80211: silence an uninitialized variable warning (Dan Carpenter)  [Orabug: 34396283]

• Tue Jul 19 2022 aloktiw <alok.a.tiwari@oracle.com> [4.1.12-124.65.1.el7uek]

  - cgroup-v1: Require capabilities to set release_agent (Eric W. Biederman)  [Orabug: 33825689]  {CVE-2022-0492} 
  - ocfs2: kill EBUSY from dlmfs_evict_inode (Junxiao Bi)  [Orabug: 34091904]  
  - ocfs2: dlmfs: fix error handling of user_dlm_destroy_lock (Junxiao Bi via Ocfs2-devel)  [Orabug: 34091904]  
  - ocfs2: dlmfs: don't clear USER_LOCK_ATTACHED when destroying lock (Junxiao Bi)  [Orabug: 34091904]  
  - uek: kabi: new kABI symbols by USM and fix kABI files (Saeed Mirzamohammadi)  [Orabug: 34233929]  
  - netfilter: nf_tables: disallow non-stateful expression in sets earlier (Pablo Neira Ayuso)  [Orabug: 34247343]  {CVE-2022-32250} 
  - netfilter: nf_tables: fix memory leak if expr init fails (Liping Zhang)  [Orabug: 34247343]  
  - floppy: disable FDRAWCMD by default (Willy Tarreau)  [Orabug: 34308428]  {CVE-2022-33981}

• Tue Jun 21 2022 aloktiw <alok.a.tiwari@oracle.com> [4.1.12-124.64.1.el7uek]

  - iscsi-target: Fix the issue with shutdown_session removal (Gulam Mohamed)  [Orabug: 29661566]  
  - scsi: target: fix hang when multiple threads try to destroy the same iscsi session (Gulam Mohamed)  [Orabug: 29661566]  
  - scsi: target: remove boilerplate code (Gulam Mohamed)  [Orabug: 29661566]  
  - iscsi-target: remove usage of ->shutdown_session (Gulam Mohamed)  [Orabug: 29661566]  
  - Drop the left-over iscsi-target hack (Gulam Mohamed)  [Orabug: 29661566]  
  - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error path (Hangyu Hua)  [Orabug: 34048290]  {CVE-2022-28388} 
  - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path (Hangyu Hua)  [Orabug: 34048329]  {CVE-2022-28390} 
  - floppy: use a statically allocated error counter (Willy Tarreau)  [Orabug: 34218641]  {CVE-2022-1652}

• Fri Jun 10 2022 aloktiw <alok.a.tiwari@oracle.com> [4.1.12-124.63.3.1.el7uek]

  - uek-rpm: Update OL6 Secureboot certificate and shim versions (aloktiw)  [Orabug: 34266389]

• Thu Jun 09 2022 aloktiw <alok.a.tiwari@oracle.com> [4.1.12-124.63.3.el7uek]

  - xen/blkback: Force flush and secure discard support flags (Boris Ostrovsky)  [Orabug: 34202040]  
  - uek-rpm: Update OL7 Secureboot certificate and shim versions (Jack Vogel)  [Orabug: 34265467]