-
Mon Nov 20 2017 Brian Maly <brian.maly@oracle.com> [4.1.12-103.9.7.el7uek]
- ocfs2: fix posix_acl_create deadlock (Junxiao Bi) [Orabug: 27126129]
-
Wed Nov 15 2017 Brian Maly <brian.maly@oracle.com> [4.1.12-103.9.6.el7uek]
- scsi: Don't abort scsi_scan due to unexpected response (John Sobecki) [Orabug: 27119628]
- ocfs2: code clean up for direct io (Ryan Ding)
-
Mon Nov 13 2017 Brian Maly <brian.maly@oracle.com> [4.1.12-103.9.5.el7uek]
- xscore: add dma address check (Zhu Yanjun) [Orabug: 27076919]
- KVM: nVMX: Fix loss of L2's NMI blocking state (Wanpeng Li) [Orabug: 27062498]
- KVM: nVMX: track NMI blocking state separately for each VMCS (Paolo Bonzini) [Orabug: 27062498]
- KVM: VMX: require virtual NMI support (Paolo Bonzini) [Orabug: 27062498]
- KVM: nVMX: Fix the NMI IDT-vectoring handling (Wanpeng Li) [Orabug: 27062498]
- uek-rpm: disable CONFIG_NUMA_BALANCING_DEFAULT_ENABLED (Fred Herard) [Orabug: 26798697]
-
Wed Nov 08 2017 Brian Maly <brian.maly@oracle.com> [4.1.12-103.9.4.el7uek]
- thp: run vma_adjust_trans_huge() outside i_mmap_rwsem (Kirill A. Shutemov) [Orabug: 27026180]
-
Tue Nov 07 2017 Brian Maly <brian.maly@oracle.com> [4.1.12-103.9.3.el7uek]
- selinux: fix off-by-one in setprocattr (Stephen Smalley) [Orabug: 27001717] {CVE-2017-2618} {CVE-2017-2618} {CVE-2017-2618}
- sysctl: Drop reference added by grab_header in proc_sys_readdir (Zhou Chengming) [Orabug: 27036903] {CVE-2016-9191} {CVE-2016-9191} {CVE-2016-9191}
- KEYS: prevent KEYCTL_READ on negative key (Eric Biggers) [Orabug: 27050248] {CVE-2017-12192}
- IB/ipoib: For sendonly join free the multicast group on leave (Christoph Lameter) [Orabug: 27077718]
- IB/ipoib: increase the max mcast backlog queue (Doug Ledford) [Orabug: 27077718]
- IB/ipoib: Make sendonly multicast joins create the mcast group (Doug Ledford) [Orabug: 27077718]
- IB/ipoib: Expire sendonly multicast joins (Christoph Lameter) [Orabug: 27077718]
- IB/ipoib: Suppress warning for send only join failures (Jason Gunthorpe) [Orabug: 27077718]
- IB/ipoib: Clean up send-only multicast joins (Doug Ledford) [Orabug: 27077718]
- netlink: allow to listen "all" netns (Nicolas Dichtel) [Orabug: 27077944]
- netlink: rename private flags and states (Nicolas Dichtel) [Orabug: 27077944]
- netns: use a spin_lock to protect nsid management (Nicolas Dichtel) [Orabug: 27077944]
- netns: notify new nsid outside __peernet2id() (Nicolas Dichtel) [Orabug: 27077944]
- netns: rename peernet2id() to peernet2id_alloc() (Nicolas Dichtel) [Orabug: 27077944]
- netns: always provide the id to rtnl_net_fill() (Nicolas Dichtel) [Orabug: 27077944]
- netns: returns always an id in __peernet2id() (Nicolas Dichtel) [Orabug: 27077944]
- Hang/soft lockup in d_invalidate with simultaneous calls (Al Viro) [Orabug: 27052681]
-
Tue Oct 31 2017 Brian Maly <brian.maly@oracle.com> [4.1.12-103.9.2.el7uek]
- Revert "drivers/char/mem.c: deny access in open operation when securelevel is set" (Brian Maly) [Orabug: 27037811]
-
Wed Oct 25 2017 Brian Maly <brian.maly@oracle.com> [4.1.12-103.9.1.el7uek]
- xfs: use dedicated log worker wq to avoid deadlock with cil wq (Brian Foster) [Orabug: 27013241]
- scsi: scsi_transport_iscsi: fix the issue that iscsi_if_rx doesn't parse nlmsg properly (Xin Long) [Orabug: 26988633] {CVE-2017-14489}
- nvme: honor RTD3 Entry Latency for shutdowns (Martin K. Petersen) [Orabug: 26999097]
- ipv6: avoid overflow of offset in ip6_find_1stfragopt (Sabrina Dubroca) [Orabug: 27013220] {CVE-2017-7542}
- udp: consistently apply ufo or fragmentation (Willem de Bruijn) [Orabug: 27013227] {CVE-2017-1000112}
- drivers/char/mem.c: deny access in open operation when securelevel is set (Ethan Zhao) [Orabug: 26943884]
-
Sat Oct 07 2017 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-103.8.1.el7uek]
- tcp: fix tcp_mark_head_lost to check skb len before fragmenting (Neal Cardwell) [Orabug: 26923675]
- timerfd: Protect the might cancel mechanism proper (Thomas Gleixner) [Orabug: 26899775] {CVE-2017-10661}
- kvm: nVMX: Don't allow L2 to access the hardware CR8 (Jim Mattson) {CVE-2017-12154} {CVE-2017-12154}
- brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx() (Tim Tianyang Chen) [Orabug: 26880590] {CVE-2017-7541}
- crypto: ahash - Fix EINPROGRESS notification callback (Herbert Xu) [Orabug: 26916575] {CVE-2017-7618}
- ovl: use O_LARGEFILE in ovl_copy_up() (David Howells) [Orabug: 25953280]
- rxrpc: Fix several cases where a padded len isn't checked in ticket decode (David Howells) [Orabug: 26880508] {CVE-2017-7482} {CVE-2017-7482}
- tcp: initialize rcv_mss to TCP_MIN_MSS instead of 0 (Wei Wang) [Orabug: 26813385] {CVE-2017-14106}
-
Thu Sep 28 2017 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-103.7.1.el7uek]
- mm: thp: set THP defrag by default to madvise and add a stall-free defrag option (Mel Gorman) [Orabug: 26614414]
- rds: Fix incorrect statistics counting (Håkon Bugge) [Orabug: 26847814]
- rds: Fix non-atomic operation on shared flag variable (Håkon Bugge) [Orabug: 26846933]
- Documentation: add watermark_scale_factor to the list of vm systcl file (Jerome Marchand) [Orabug: 26832827]
- mm: scale kswapd watermarks in proportion to memory (Johannes Weiner) [Orabug: 26832827]
- mlx4_core: calculate log_num_mtt based on total system memory (Wei Lin Guay) [Orabug: 26867289]
- xen/x86: Add interface for querying amount of host memory (Boris Ostrovsky) [Orabug: 26867289]
- i40e: use cpumask_copy instead of direct assignment (Jacob Keller) [Orabug: 26849262]
-
Tue Sep 19 2017 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-103.6.1.el7uek]
- rebuild bumping release