[ol7_UEKR4] kernel-uek-firmware-4.1.12-124.49.3.1.el7uek.noarch

Kernel firmware includes firmware files required for some devices to
operate.

Changelog (Show File list) (Show related packages)

• Tue Mar 23 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.49.3.1.el7uek]

  - SecureBoot Digicert 2021 certificates update (Brian Maly)  [Orabug: 32532671]

• Tue Mar 23 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.49.3.el7uek]

  - xen/netback: avoid race in xenvif_rx_ring_slots_available() (Juergen Gross)  [Orabug: 32485156]  
  - audit: fix error handling in audit_data_to_entry() (Paul Moore)  [Orabug: 32608451]  {CVE-2020-0444}

• Tue Mar 16 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.49.2.el7uek]

  - scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech)  [Orabug: 32640641]  
  - scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech)  [Orabug: 32640641]  {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365} 
  - scsi: iscsi: Report connection state in sysfs (Gabriel Krisman Bertazi)  [Orabug: 32640641]  {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365} 
  - sysfs: Add sysfs_emit and sysfs_emit_at to format sysfs output (Joe Perches)  [Orabug: 32640641]  
  - scsi: iscsi: Restrict sessions and handles to admin capabilities (Lee Duncan)  [Orabug: 32640641]  {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365}

• Wed Mar 10 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.49.1.el7uek]

  - hsr: use netdev_err() instead of WARN_ONCE() (Taehee Yoo)  [Orabug: 32576074]

• Thu Feb 18 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.5.el7uek]

  - kernel/acct.c: fix the acct->needcheck check in check_free_space() (Oleg Nesterov)  [Orabug: 31587485]  
  - HID: hid-input: clear unmapped usages (Dmitry Torokhov)  [Orabug: 32464790]  {CVE-2020-0431} 
  - tcp: fix to update snd_wl1 in bulk receiver fast path (Neal Cardwell)  [Orabug: 32498826]

• Thu Feb 18 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.4.el7uek]

  - xen-blkback: fix error handling in xen_blkbk_map() (Jan Beulich)  [Orabug: 32520758]  {CVE-2021-26930} 
  - xen-scsiback: don't "handle" error by BUG() (Jan Beulich)  [Orabug: 32520750]  {CVE-2021-26931} 
  - xen-netback: don't "handle" error by BUG() (Jan Beulich)  [Orabug: 32520750]  {CVE-2021-26931} 
  - xen-blkback: don't "handle" error by BUG() (Jan Beulich)  [Orabug: 32520750]  {CVE-2021-26931} 
  - Xen/gntdev: correct error checking in gntdev_map_grant_pages() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932} 
  - Xen/gntdev: correct dev_bus_addr handling in gntdev_map_grant_pages() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932} 
  - Xen/x86: also check kernel mapping in set_foreign_p2m_mapping() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932} 
  - Xen/x86: don't bail early from clear_foreign_p2m_mapping() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932}

• Tue Feb 09 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.3.el7uek]

  - bnxt_en: Fix ethtool -x crash when device is down. (Michael Chan)  [Orabug: 32466092]

• Tue Feb 09 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.2.el7uek]

  - vhost scsi: alloc vhost_scsi with kvzalloc() to avoid delay (Dongli Zhang)  [Orabug: 32471166]

• Tue Feb 02 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.1.el7uek]

  - nfs: Fix security label length not being reset (Jeffrey Mitchell)  [Orabug: 32350996]  
  - rds: Add code to debug rds_tcp loopback hang (Rao Shoaib)  [Orabug: 32382656]

• Tue Jan 19 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.47.3.el7uek]

  - sysctl: handle overflow in proc_get_long (Christian Brauner)  [Orabug: 31588015]