-
Fri Nov 01 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.32.3.2.el7uek]
- x86/tsx: Add config options to set tsx=on|off|auto (Michal Hocko) [Orabug: 30419233] {CVE-2019-11135}
- x86/speculation/taa: Add documentation for TSX Async Abort (Pawan Gupta) [Orabug: 30419233] {CVE-2019-11135}
- x86/tsx: Add "auto" option to the tsx= cmdline parameter (Pawan Gupta) [Orabug: 30419233] {CVE-2019-11135}
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled (Pawan Gupta) [Orabug: 30419233] {CVE-2019-11135}
- x86/speculation/taa: Add sysfs reporting for TSX Async Abort (Pawan Gupta) [Orabug: 30419233] {CVE-2019-11135}
- x86/speculation/taa: Add mitigation for TSX Async Abort (Kanth Ghatraju) [Orabug: 30419233] {CVE-2019-11135}
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default (Pawan Gupta) [Orabug: 30419233] {CVE-2019-11135}
- x86/cpu: Add a helper function x86_read_arch_cap_msr() (Pawan Gupta) [Orabug: 30419233] {CVE-2019-11135}
- x86/msr: Add the IA32_TSX_CTRL MSR (Pawan Gupta) [Orabug: 30419233] {CVE-2019-11135}
-
Wed Oct 16 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.32.3.1.el7uek]
- kvm: x86: mmu: Recovery of shattered NX large pages (Junaid Shahid) [Orabug: 29967631] {CVE-2018-12207}
- kvm: Add helper function for creating VM worker threads (Junaid Shahid) [Orabug: 29967631] {CVE-2018-12207}
- kvm: mmu: ITLB_MULTIHIT mitigation (Paolo Bonzini) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: remove now unneeded hugepage gfn adjustment (Paolo Bonzini) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: make FNAME(fetch) and __direct_map more similar (Paolo Bonzini) [Orabug: 29967631] {CVE-2018-12207}
- kvm: x86: Do not release the page inside mmu_set_spte() (Junaid Shahid) [Orabug: 29967631] {CVE-2018-12207}
- x86/cpu: Add Tremont to the cpu vulnerability whitelist (Pawan Gupta) [Orabug: 29967631] {CVE-2018-12207}
- x86: Add ITLB_MULTIHIT bug infrastructure (Pawan Gupta) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: MMU: Move mapping_level_dirty_bitmap() call in mapping_level() (Takuya Yoshikawa) [Orabug: 29967631] {CVE-2018-12207}
- Revert "KVM: x86: use the fast way to invalidate all pages" (Sean Christopherson) [Orabug: 29967631] {CVE-2018-12207}
- kvm: Convert kvm_lock to a mutex (Junaid Shahid) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: MMU: Simplify force_pt_level calculation code in FNAME(page_fault)() (Takuya Yoshikawa) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: MMU: Make force_pt_level bool (Takuya Yoshikawa) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: MMU: Remove unused parameter parent_pte from kvm_mmu_get_page() (Takuya Yoshikawa) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: extend usage of RET_MMIO_PF_* constants (Paolo Bonzini) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: MMU: Make mmu_set_spte() return emulate value (Takuya Yoshikawa) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: MMU: Move parent_pte handling from kvm_mmu_get_page() to link_shadow_page() (Takuya Yoshikawa) [Orabug: 29967631] {CVE-2018-12207}
- KVM: x86: MMU: Move initialization of parent_ptes out from kvm_mmu_alloc_page() (Takuya Yoshikawa) [Orabug: 29967631] {CVE-2018-12207}
-
Tue Oct 15 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.32.3.el7uek]
- scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE (Hannes Reinecke) [Orabug: 26941755] {CVE-2017-14991}
- failover: allow name change on IFF_UP slave interfaces (Si-Wei Liu) [Orabug: 29707258]
- Revert "net_failover: delay taking over primary device to accommodate udevd renaming" (Si-Wei Liu) [Orabug: 29707258]
- build: Revert "repairing out-of-tree build functionality" (Todd Vierling) [Orabug: 30257829]
- rds: add ibmr to busy_list in flush code path (Manjunath Patil)
- rds: fix uninteneded increase of rds_rdma:pool->max_items_soft (Manjunath Patil)
-
Tue Oct 08 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.32.2.el7uek]
- ext4: fix data exposure after a crash (Jan Kara) [Orabug: 30361860] {CVE-2017-7495}
-
Tue Oct 01 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.32.1.el7uek]
- NFSv4: Don't try to reclaim unused state owners (Trond Myklebust) [Orabug: 30124013]
- x86/microcode: Update late microcode in parallel (Ashok Raj) [Orabug: 30302412]
- floppy: fix out-of-bounds read in copy_buffer (Denis Efremov) [Orabug: 30318219] {CVE-2019-14283}
- xen-netback: stop netif TX queue on guest queuing failure (Ankur Arora) [Orabug: 30351050]
-
Thu Sep 26 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.31.5.el7uek]
- xfrm: policy: Fix out-of-bound array accesses in __xfrm_policy_unlink (YueHaibing) [Orabug: 30322230] {CVE-2019-15666}
- x86/tsc: Make calibration refinement more robust (Daniel Vacek) [Orabug: 30217489]
-
Fri Sep 20 2019 Jack Vogel <jack.vogel@oracle.com> [4.1.12-124.31.4.el7uek]
- KVM: coalesced_mmio: add bounds checking (Matt Delco) [Orabug: 30318042] {CVE-2019-14821} {CVE-2019-14821}
- Revert "KVM: coalesced_mmio: add bounds checking" (Jack Vogel)
-
Thu Sep 19 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.31.3.el7uek]
- KVM: coalesced_mmio: add bounds checking (Matt Delco) [Orabug: 30318042] {CVE-2019-14821}
- qla2xxx: Fix List corruption due to Get Name List (Himanshu Madhani) [Orabug: 29894072]
- qla2xxx: Update driver version 9.00.00.00.42.0-k1 (Himanshu Madhani) [Orabug: 29894072]
- xen/swiotlb: remember having called xen_create_contiguous_region() (Juergen Gross) [Orabug: 30141778]
- xen/swiotlb: simplify range_straddles_page_boundary() (Juergen Gross) [Orabug: 30141778]
- xen/swiotlb: fix condition for calling xen_destroy_contiguous_region() (Juergen Gross) [Orabug: 30141778]
- tcp: purge write queue in tcp_connect_init() (Eric Dumazet) [Orabug: 30240133] {CVE-2019-15239}
-
Tue Sep 10 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.31.2.el7uek]
- blk-mq: don't complete un-started request in timeout handler (Ming Lei) [Orabug: 29903684]
- tcp: fix a stale ooo_last_skb after a replace (Eric Dumazet) [Orabug: 29997352]
- mm: keep kabi compatibility of may_expand_vm() etc (Tong Chen) [Orabug: 30145754]
- mm: always print RLIMIT_DATA warning (David Woodhouse) [Orabug: 30145754]
- mm: enable RLIMIT_DATA by default with workaround for valgrind (Konstantin Khlebnikov) [Orabug: 30145754]
- mm: warn about VmData over RLIMIT_DATA (Konstantin Khlebnikov) [Orabug: 30145754]
- mm: rework virtual memory accounting (Konstantin Khlebnikov) [Orabug: 30145754]
- mm: add the "struct mm_struct *mm" local into (Oleg Nesterov) [Orabug: 30145754]
- mm: fix the racy mm->locked_vm change in (Oleg Nesterov) [Orabug: 30145754]
- mm/mmap.c: remove redundant local variables for may_expand_vm() (Chen Gang) [Orabug: 30145754]
- block: loop: fix another reread part failure (Ming Lei) [Orabug: 30264603]
- block: loop: don't hold lo_ctl_mutex in lo_open (Ming Lei) [Orabug: 30264603]
-
Wed Sep 04 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.31.1.el7uek]
- dm bufio: fix deadlock with loop device (Junxiao Bi) [Orabug: 29964645]
- dm bufio: don't take the lock in dm_bufio_shrink_count (Mikulas Patocka) [Orabug: 29964645]
- rds: rds-info shows IPv4 address as '0.0.0.0' (aru kolappan) [Orabug: 30022915]
- restore cond_resched() in shrink_dcache_parent() (Al Viro) [Orabug: 30101895]
- retpoline: Move retpoline_mode_selected() out of .init.text section (Alejandro Jimenez) [Orabug: 30250332]