[ol7_UEKR4_archive] kernel-uek-4.1.12-61.1.19.el7uek.x86_64

Name:	kernel-uek
Version:	4.1.12
Release:	61.1.19.el7uek
Architecture:	x86_64
Group:	System Environment/Kernel
Size:	165395314
License:	GPLv2
RPM:	kernel-uek-4.1.12-61.1.19.el7uek.x86_64.rpm
Source RPM:	kernel-uek-4.1.12-61.1.19.el7uek.src.rpm
Build Date:	Sat Nov 19 2016
Build Host:	x86-ol7-builder-02.us.oracle.com
Vendor:	Oracle America
URL:	http://www.kernel.org/
Summary:	The Linux kernel
Description:	The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc.

Changelog (Show File list) (Show related packages)

Fri Nov 18 2016 Brian Maly <brian.maly@oracle.com> [4.1.12-61.1.19.el7uek]

- acpi: Disable ACPI table override if securelevel is set (Linn Crosetto)  [Orabug: 25058966]  {CVE-2016-3699} 
- aacraid: Check size values after double-fetch from user (Dave Carroll)  [Orabug: 25060060]  {CVE-2016-6480} {CVE-2016-6480} 
- audit: fix a double fetch in audit_log_single_execve_arg() (Paul Moore)  [Orabug: 25059969]  {CVE-2016-6136} 
- ecryptfs: don't allow mmap when the lower fs doesn't support it (Jeff Mahoney)  [Orabug: 25023269]  {CVE-2016-1583} {CVE-2016-1583} 
- Revert "ecryptfs: forbid opening files without mmap handler" (Chuck Anderson)  [Orabug: 24971921]  {CVE-2016-1583} 
- percpu: fix synchronization between synchronous map extension and chunk destruction (Tejun Heo)  [Orabug: 25060084]  {CVE-2016-4794} 
- percpu: fix synchronization between chunk->map_extend_work and chunk destruction (Tejun Heo)  [Orabug: 25060084]  {CVE-2016-4794} 
- ALSA: timer: Fix leak in events via snd_timer_user_tinterrupt (Kangjie Lu)  [Orabug: 25059898]  {CVE-2016-4578} 
- ALSA: timer: Fix leak in events via snd_timer_user_ccallback (Kangjie Lu)  [Orabug: 25059898]  {CVE-2016-4578} 
- ALSA: timer: Fix leak in SNDRV_TIMER_IOCTL_PARAMS (Kangjie Lu)  [Orabug: 25059752]  {CVE-2016-4569} 
- Bluetooth: Fix potential NULL dereference in RFCOMM bind callback (Jaganath Kanakkassery)  [Orabug: 25058894]  {CVE-2015-8956} 
- ASN.1: Fix non-match detection failure on data overrun (David Howells)  [Orabug: 25059037]  {CVE-2016-2053} 
- mm: migrate dirty page without clear_page_dirty_for_io etc (Hugh Dickins)  [Orabug: 25059188]  {CVE-2016-3070}

Fri Nov 04 2016 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-61.1.18.el7uek]

- uek-rpm ol7: change uek-rpm/ol7/update-el release value from 7.1 to 7.3 (Chuck Anderson)  [Orabug: 25050614]

Mon Oct 31 2016 Brian Maly <brian.maly@oracle.com> [4.1.12-61.1.17.el7uek]

- sched: panic on corrupted stack end (Jann Horn)  [Orabug: 24971921]  {CVE-2016-1583} 
- ecryptfs: forbid opening files without mmap handler (Jann Horn)  [Orabug: 24971921]  {CVE-2016-1583} 
- proc: prevent stacking filesystems on top (Jann Horn)  [Orabug: 24971921]  {CVE-2016-1583}

Fri Oct 21 2016 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-61.1.16.el7uek]

- mm: remove gup_flags FOLL_WRITE games from __get_user_pages() (Linus Torvalds)  [Orabug: 24927306]  {CVE-2016-5195}

Wed Oct 19 2016 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-61.1.15.el7uek]

- drivers/nvme: provide a module parameter for setting number of I/O queues (Shan Hai)  [Orabug: 24914956]  
- blk-mq: improve warning for running a queue on the wrong CPU (Jens Axboe)  [Orabug: 24914956]  
- blk-mq: fix freeze queue race (Shan Hai)  [Orabug: 24914956]

Wed Oct 12 2016 Brian Maly <brian.maly@oracle.com> [4.1.12-61.1.14.el7uek]

- net: add recursion limit to GRO (Sabrina Dubroca)  [Orabug: 24829133]  {CVE-2016-7039}

Wed Oct 05 2016 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-61.1.13.el7uek]

- HID: hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands (Scott Bauer)  [Orabug: 24803597]  {CVE-2016-5829}

Mon Oct 03 2016 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-61.1.12.el7uek]

- ocfs2: Fix start offset to ocfs2_zero_range_for_truncate() (Ashish Samant)  [Orabug: 24790230]

Sat Oct 01 2016 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-61.1.11.el7uek]

- ocfs2: Fix double put of recount tree in ocfs2_lock_refcount_tree() (Ashish Samant)  [Orabug: 24691860]  
- megaraid_sas: Don't issue kill adapter for MFI controllers in case of PD list DCMD failure (Sumit Saxena)  [Orabug: 24506797]  
- netfilter: x_tables: speed up jump target validation (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: enforce nul-terminated table name from getsockopt GET_ENTRIES (Pablo Neira Ayuso)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: remove unused comefrom hookmask argument (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: introduce and use xt_copy_counters_from_user (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: do compat validation via translate_table (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: xt_compat_match_from_user doesn't need a retval (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: ip6_tables: simplify translate_compat_table args (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: ip_tables: simplify translate_compat_table args (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: arp_tables: simplify translate_compat_table args (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: don't reject valid target size on some architectures (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: validate all offsets and sizes in a rule (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: check for bogus target offset (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: check standard target size too (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: add compat version of xt_check_entry_offsets (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: assert minimum target size (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: kill check_entry helper (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: add and use xt_check_entry_offsets (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: validate targets of jumps (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: fix unconditional helper (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: validate targets of jumps (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: don't move to non-existent next rule (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: fix unconditional helper (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134} 
- netfilter: x_tables: check for size overflow (Florian Westphal)  [Orabug: 24691226]  {CVE-2016-3134}

Wed Sep 21 2016 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-61.1.10.el7uek]

- netfilter: x_tables: make sure e->next_offset covers remaining blob size (Florian Westphal)  [Orabug: 24682076]  {CVE-2016-4997} {CVE-2016-4998} 
- netfilter: x_tables: validate e->target_offset early (Florian Westphal)  [Orabug: 24682076]  {CVE-2016-4997} {CVE-2016-4998}