[ol7_UEKR4_archive] kernel-uek-debug-4.1.12-112.17.3.el7uek.x86_64

The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system:  memory allocation, process allocation, device
input and output, etc.

This variant of the kernel has numerous debugging options enabled.
It should only be installed when trying to gather additional information
on kernel bugs, as some of these options impact performance noticably.

Changelog (Show File list) (Show related packages)

• Wed Jul 11 2018 Brian Maly <brian.maly@oracle.com> [4.1.12-112.17.3.el7uek]

  - mlx4_core: restore optimal ICM memory allocation (Eric Dumazet)  [Orabug: 27718305]  
  - mlx4_core: allocate ICM memory in page size chunks (Qing Huang)  [Orabug: 27718305]

• Fri Jun 15 2018 Brian Maly <brian.maly@oracle.com> [4.1.12-112.17.2.el7uek]

  - Revert "mlx4: change the ICM table allocations to lowest needed size" (Håkon Bugge)  [Orabug: 27980214]

• Wed May 09 2018 Brian Maly <brian.maly@oracle.com> [4.1.12-112.17.1.el7uek]

  - Input: gtco - fix potential out-of-bound access (Dmitry Torokhov)  [Orabug: 27215075]  {CVE-2017-16643} 
  - Input: ims-psu - check if CDC union descriptor is sane (Dmitry Torokhov)  [Orabug: 27215112]  {CVE-2017-16645} 
  - Failing to send a CLOSE if file is opened WRONLY and server reboots on a 4.x mount (Olga Kornievskaia)  [Orabug: 27457469]  
  - scsi: iscsi_tcp: set BDI_CAP_STABLE_WRITES when data digest enabled (Jianchao Wang)  [Orabug: 27728388]  
  - uek-rpm: Disable DMA CMA (Jianchao Wang)  [Orabug: 27811840]  
  - nvme-pci: fix multiple ctrl removal scheduling (Rakesh Pandit)  [Orabug: 27811840]  
  - nvme-pci: Fix nvme queue cleanup if IRQ setup fails (Jianchao Wang)  [Orabug: 27811840]  
  - nvme/pci: Fix stuck nvme reset (Keith Busch)  [Orabug: 27811840]  
  - nvme: don't schedule multiple resets (Keith Busch)  [Orabug: 27811840]  
  - blk-mq: fix use-after-free in blk_mq_free_tag_set() (Junichi Nomura)  [Orabug: 27811840]  
  - ext4: add validity checks for bitmap block numbers (Theodore Ts'o)  [Orabug: 27854374]  {CVE-2018-1093} {CVE-2018-1093} 
  - ocfs2: Take inode cluster lock before moving reflinked inode from orphan dir (Ashish Samant)  [Orabug: 27869407]  
  - driver core: platform: fix race condition with driver_override (Adrian Salido)  [Orabug: 27897876]  {CVE-2017-12146} 
  - USB: core: prevent malicious bNumInterfaces overflow (Alan Stern)  [Orabug: 27898087]  {CVE-2017-17558} 
  - netlink: Add netns check on taps (Kevin Cernekee)  [Orabug: 27898136]  {CVE-2017-17449} 
  - netfilter: nfnetlink_cthelper: Add missing permission checks (Kevin Cernekee)  [Orabug: 27898171]  {CVE-2017-17448} 
  - mm/pagewalk.c: report holes in hugetlb ranges (Jann Horn)  [Orabug: 27913119]  {CVE-2017-16994} 
  - KEYS: don't let add_key() update an uninstantiated key (David Howells)  [Orabug: 27913331]  {CVE-2017-15299} 
  - drm/vmwgfx: NULL pointer dereference in vmw_surface_define_ioctl() (Murray McAllister)  [Orabug: 27913368]  {CVE-2017-7294} 
  - net/rds: ib: Release correct number of frags (Håkon Bugge)  [Orabug: 27924163]  
  - x86/microcode: probe CPU features on microcode update (Ankur Arora)  [Orabug: 27928096]  
  - x86/microcode: microcode_write() should not reference boot_cpu_data (Ankur Arora)  [Orabug: 27928096]  
  - x86/cpufeatures: use cpu_data in init_scattered_cpuid_flags() (Ankur Arora)  [Orabug: 27928096]  
  - KVM: Fix stack-out-of-bounds read in write_mmio (Wanpeng Li)  [Orabug: 27951278]  {CVE-2017-17741} {CVE-2017-17741} 
  - KVM: nVMX: fix guest CR4 loading when emulating L2 to L1 exit (Haozhong Zhang)  [Orabug: 27972373]

• Fri Apr 13 2018 Brian Maly <brian.maly@oracle.com> [4.1.12-112.16.8.el7uek]

  - usb: usbtest: fix NULL pointer dereference (Alan Stern)  [Orabug: 27602323]  {CVE-2017-16532} 
  - ACPI / PAD: don't register acpi_pad driver if running as Xen dom0 (Juergen Gross)  [Orabug: 27768622]  
  - netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets (Florian Westphal)  [Orabug: 27774014]  {CVE-2018-1068} 
  - sched/fair: Fix typo in sync_throttle() (Xunlei Pang)  [Orabug: 27787638]  
  - sched/fair: Do not announce throttled next buddy in dequeue_task_fair() (Konstantin Khlebnikov)  [Orabug: 27787638]  
  - sched/fair: Initialize and rework throttle_count for new task-groups (Peter Zijlstra)  [Orabug: 27787638]  
  - KVM/VMX: Clear spec_ctrl status when resetting vcpu (Patrick Colp)   
  - ctf: drop the run-as-root error (Nick Alcock)  [Orabug: 27854093]

• Fri Apr 06 2018 Jack Vogel <jack.vogel@oracle.com> [4.1.12-112.16.7.el7uek]

  - mlx4: change the ICM table allocations to lowest needed size (Daniel Jurgens)  [Orabug: 27718305]  
  - autofs: use dentry flags to block walks during expire (Ian Kent)  [Orabug: 26032471] [Orabug: 27766149]  
  - autofs races (Al Viro)  [Orabug: 27766149] [Orabug: 27766149]  
  - crypto: FIPS - allow tests to be disabled in FIPS mode (Stephan Mueller)  [Orabug: 26182706]  
  - crypto: rng - Zero seed in crypto_rng_reset (Herbert Xu)  [Orabug: 26182706]  
  - crypto: xts - consolidate sanity check for keys (Stephan Mueller)  [Orabug: 26182706]

• Wed Apr 04 2018 Brian Maly <brian.maly@oracle.com> [4.1.12-112.16.6.el7uek]

  - fork: fix incorrect fput of ->exe_file causing use-after-free (Eric Biggers)  [Orabug: 27290198]  {CVE-2017-17052} 
  - negotiate_mq should happen in all cases of a new VBD being discovered by xen-blkfront, whether called through _probe() or a hot-attached new VBD from dom-0 via xenstore. Otherwise, hot-attached new VBDs are left configured without multi-queue. (Patrick Colp)  [Orabug: 27383895]  
  - rds: Fix NULL pointer dereference in __rds_rdma_map (Håkon Bugge)  [Orabug: 27477007]  
  - nvme: fix uninitialized prp2 value on small transfers (Jan H. Schönherr)  [Orabug: 27581008]  
  - xen-netfront: Improve error handling during initialization (Ross Lagerwall)  [Orabug: 27655820]  
  - RDS: IB: Fix null pointer issue (Guanglei Li)  [Orabug: 27636704]  
  - mstflint: update Makefile and Kconfig (Qing Huang)  [Orabug: 27656465]  
  - target: add inquiry_product module param to override LIO default (Kyle Fortin)  [Orabug: 27679482]  
  - target: add inquiry_vendor module param to override LIO-ORG (Kyle Fortin)  [Orabug: 27679482]  
  - net/rds: Avoid copy overhead if send buff is full (Gerd Rausch)  [Orabug: 27747176]

• Thu Mar 15 2018 Brian Maly <brian.maly@oracle.com> [4.1.12-112.16.5.el7uek]

  - IB/core: Avoid calling ib_query_device (Or Gerlitz)  [Orabug: 27687710]  
  - IB/core: Save the device attributes on the device structure (Ira Weiny)  [Orabug: 27687710]  
  - KVM: x86: fix singlestepping over syscall (Paolo Bonzini)  [Orabug: 27669907]  {CVE-2017-7518} {CVE-2017-7518} 
  - xen/acpi: upload _PSD info for non-dom0 CPUs too (Joao Martins)  [Orabug: 27655757]  
  - Revert "RDS: don't commit to queue till transport connection is up" (Santosh Shilimkar)

• Mon Mar 12 2018 Brian Maly <brian.maly@oracle.com> [4.1.12-112.16.4.el7uek]

  - scsi: Make __scsi_remove_device go straight from BLOCKED to DEL (Bart Van Assche)  [Orabug: 27339736]  
  - scsi: Protect SCSI device state changes with a mutex (Bart Van Assche)  [Orabug: 27339736]  
  - scsi: Introduce scsi_start_queue() (Bart Van Assche)  [Orabug: 27339736]  
  - scsi: avoid a permanent stop of the scsi device's request queue (Wei Fang)  [Orabug: 27339736]  
  - x86/spectre_v2: Fix cpu offlining with IPBP. (Konrad Rzeszutek Wilk)

• Thu Mar 08 2018 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-112.16.3.el7uek]

  - retpoline: selectively disable IBRS in disable_ibrs_and_friends() (Chuck Anderson)  [Orabug: 27636063]

• Sat Mar 03 2018 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-112.16.2.el7uek]

  - retpoline: move setting of sysctl_ibrs_enabled and sysctl_ibpb_enabled to where SPEC_CTRL_IBRS_INUSE and SPEC_CTRL_IBPB_INUSE are set (Chuck Anderson)  [Orabug: 27556096]  
  - retpoline: set IBRS and IBPB in use only on the boot CPU call to init_scattered_cpuid_features() (Chuck Anderson)  [Orabug: 27556096]  
  - retpoline: display IBPB feature status along with IBRS status (Chuck Anderson)  [Orabug: 27556096]  
  - retpoline: move lock/unlock of spec_ctrl_mutex to check_modinfo() (Chuck Anderson)  [Orabug: 27556096]  
  - retpoline: call clear_retpoline_fallback() with boot parm spectre_v2_heuristics=off (Chuck Anderson)  [Orabug: 27556096]  
  - retpoline: add brackets to check_ibrs_inuse() and clear_ibpb_inuse() (Chuck Anderson)  [Orabug: 27556096]  
  - retpoline/module: do not enable IBRS/IPBP if SPEC_CTRL_IBRS_ADMIN_DISABLED/SPEC_CTRL_IBPB_ADMIN_DISABLED is set (Chuck Anderson)  [Orabug: 27547729]  
  - retpoline: microcode incorrectly reported as broken during early boot (Chuck Anderson)  [Orabug: 27556096]  
  - retpoline: move lock/unlock of spec_ctrl_mutex into init_scattered_cpuid_features() (Chuck Anderson)  [Orabug: 27556096]  
  - KVM: Disable irq while unregistering user notifier (Ignacio Alvarado)   
  - x86/speculation: Use IBRS if available before calling into firmware (David Woodhouse)  [Orabug: 27516479]  
  - Revert "x86/spec_ctrl: Add 'nolfence' knob to disable fallback for spectre_v2 mitigation" (Konrad Rzeszutek Wilk)  [Orabug: 27601790]  
  - Revert "x86/spec: Add 'lfence_enabled' in sysfs" (Konrad Rzeszutek Wilk)   
  - x86/spectre_v2: Fix the documentation to say the right thing. (Konrad Rzeszutek Wilk)   
  - x86/spectre_v2: Don't check bad microcode versions when running under hypervisors. (Konrad Rzeszutek Wilk)  [Orabug: 27601735]