-
Mon Jul 29 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.29.3.el7uek]
- mlx4_core: change log_num_{qp,rdmarc} with scale_profile (Mukesh Kacker) [Orabug: 30064080]
-
Wed Jul 24 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.29.2.el7uek]
- scsi: storvsc: Fix scsi_cmd error assignments in storvsc_handle_error (Cathy Avery) [Orabug: 30052805]
-
Thu Jul 18 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.29.1.el7uek]
- USB: check usb_get_extra_descriptor for proper size (Mathias Payer) [Orabug: 29755247] {CVE-2018-20169}
- rds: ib: Fix dereference of conn when NULL and cleanup thereof (HÃ¥kon Bugge) [Orabug: 29924849]
- ext4: zero out the unused memory region in the extent tree block (Sriram Rajagopalan) [Orabug: 29925523] {CVE-2019-11833} {CVE-2019-11833}
- ip_sockglue: Fix missing-check bug in ip_ra_control() (Gen Zhang) [Orabug: 29926005] {CVE-2019-12381}
- ipv6_sockglue: Fix a missing-check bug in ip6_ra_control() (Gen Zhang) [Orabug: 29926057] {CVE-2019-12378}
- x86/microcode: fix x86_spec_ctrl_mask on late loading. (Mihai Carabas) [Orabug: 29941248]
- net: rds: fix rds recv memory leak (Zhu Yanjun) [Orabug: 30034815]
-
Tue Jun 25 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.28.6.el7uek]
- scsi: libfc: Fixup disc_mutex handling in fcoe module (Hannes Reinecke) [Orabug: 29511036]
- scsi: libfc: sanitize E_D_TOV and R_A_TOV setting in fcp (Hannes Reinecke) [Orabug: 29511036]
- sysctl: Fix kabi breakage (Shuning Zhang) [Orabug: 29689925]
- proc: Fix proc_sys_prune_dcache to hold a sb reference (Eric W. Biederman) [Orabug: 29689925]
- proc/sysctl: Don't grab i_lock under sysctl_lock. (Eric W. Biederman) [Orabug: 29689925]
- proc/sysctl: prune stale dentries during unregistering (Konstantin Khlebnikov) [Orabug: 29689925]
- scsi: smartpqi: correct lun reset issues (Kevin Barnett) [Orabug: 29848621]
- fork: record start_time late (David Herrmann) [Orabug: 29850581] {CVE-2019-6133}
- mm: avoid taking zone lock in pagetypeinfo_showmixed() (Vinayak Menon) [Orabug: 29905302]
- x86/retpoline/ia32entry: Convert to non-speculative calls (Ankur Arora) [Orabug: 29909295] {CVE-2017-5715}
- tun: call dev_get_valid_name() before register_netdevice() (Cong Wang) [Orabug: 29925555] {CVE-2018-7191}
- mm/madvise.c: fix madvise() infinite loop under special circumstances (chenjie) [Orabug: 29925610] {CVE-2017-18208}
-
Thu Jun 20 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.28.5.el7uek]
- vxlan: fix use-after-free on deletion (part 2) (Venkat Venkatsubra) [Orabug: 29927196]
- vxlan: use a more suitable function when assigning NULL (Mark Bloch) [Orabug: 29927196]
- vxlan: avoid using stale vxlan socket. (pravin shelar) [Orabug: 29927196]
-
Mon Jun 17 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.28.4.el7uek]
- x86/microcode: add SPEC_CTRL_SSBD to x86_spec_ctrl_mask on late loading. (Mihai Carabas) [Orabug: 29642139]
- block: do not use interruptible wait anywhere (Alan Jenkins) [Orabug: 29674055]
- vxlan: fix use-after-free on deletion (Mark Bloch) [Orabug: 29755932]
- vxlan: reduce usage of synchronize_net in ndo_stop (Hannes Frederic Sowa) [Orabug: 29755932]
- vxlan: synchronously and race-free destruction of vxlan sockets (Hannes Frederic Sowa) [Orabug: 29755932]
- vxlan: support both IPv4 and IPv6 sockets in a single vxlan device (Jiri Benc) [Orabug: 29755932]
- vxlan: make vxlan_sock_add and vxlan_sock_release complementary (Jiri Benc) [Orabug: 29755932]
- openvswitch: Re-add CONFIG_OPENVSWITCH_VXLAN (Venkat Venkatsubra) [Orabug: 29755932]
- openvswitch: Use regular VXLAN net_device device (Venkat Venkatsubra) [Orabug: 29755932]
- openvswitch: Abstract vport name through ovs_vport_name() (Thomas Graf) [Orabug: 29755932]
- openvswitch: Move dev pointer into vport itself (Thomas Graf) [Orabug: 29755932]
- ip_tunnel: Make ovs_tunnel_info and ovs_key_ipv4_tunnel generic (Thomas Graf) [Orabug: 29755932]
- vxlan: Factor out device configuration (Thomas Graf) [Orabug: 29755932]
- kexec: generate VMCOREINFO for module symbols (Isaac Chen) [Orabug: 29770217]
- kexec: generate VMCOREINFO for tasks and pid (Isaac Chen) [Orabug: 29770217]
- kexec: generate VMCOREINFO for trace dump (Isaac Chen) [Orabug: 29770217]
-
Tue Jun 11 2019 Chuck Anderson <chuck.anderson@oracle.com> [4.1.12-124.28.3.el7uek]
- Add CVE numbers for CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 (Chuck Anderson) [Orabug: 29890820] {CVE-2019-11477} {CVE-2019-11478} {CVE-2019-11479} {CVE-2019-11477} {CVE-2019-11478} {CVE-2019-11479}
- tcp: fix fack_count accounting on tcp_shift_skb_data() (Joao Martins) [Orabug: 29890820]
- tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() (Eric Dumazet) [Orabug: 29886598]
-
Sat Jun 08 2019 Jack Vogel <jack.vogel@oracle.com> [4.1.12-124.28.2.el7uek]
- tcp: add tcp_min_snd_mss sysctl (Eric Dumazet) [Orabug: 29884306]
- tcp: tcp_fragment() should apply sane memory limits (Eric Dumazet) [Orabug: 29884306]
- tcp: limit payload size of sacked skbs (Eric Dumazet) [Orabug: 29884306]
-
Mon Jun 03 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.28.1.el7uek]
- hugetlbfs: don't retry when pool page allocations start to fail (Mike Kravetz) [Orabug: 29324267]
- x86/speculation: RSB stuffing with retpoline on Skylake+ cpus (William Roche) [Orabug: 29660924]
- x86/speculation: reformatting RSB overwrite macro (William Roche) [Orabug: 29660924]
- x86/speculation: Dynamic enable and disable of RSB stuffing with IBRS&!SMEP (William Roche) [Orabug: 29660924]
- x86/speculation: STUFF_RSB dynamic enable (William Roche) [Orabug: 29660924]
- int3 handler better address space detection on interrupts (William Roche) [Orabug: 29660924]
- repairing out-of-tree build functionality (Mark Nicholson) [Orabug: 29755100]
- ext4: fix false negatives *and* false positives in ext4_check_descriptors() (Shuning Zhang) [Orabug: 29797007]
-
Tue May 28 2019 Brian Maly <brian.maly@oracle.com> [4.1.12-124.27.3.el7uek]
- ocfs2: fix ocfs2 read inode data panic in ocfs2_iget (Shuning Zhang) [Orabug: 29233739]
- Bluetooth: Verify that l2cap_get_conf_opt provides large enough buffer (Marcel Holtmann) [Orabug: 29526426] {CVE-2019-3459}
- Bluetooth: Check L2CAP option sizes returned from l2cap_get_conf_opt (Marcel Holtmann) [Orabug: 29526426] {CVE-2019-3459}
- HID: debug: fix the ring buffer implementation (Vladis Dronov) [Orabug: 29629481] {CVE-2019-3819} {CVE-2019-3819}
- scsi: target: iscsi: Use hex2bin instead of a re-implementation (Vincent Pelletier) [Orabug: 29778875] {CVE-2018-14633} {CVE-2018-14633}
- scsi: libsas: fix a race condition when smp task timeout (Jason Yan) [Orabug: 29783225] {CVE-2018-20836}
- scsi: megaraid_sas: return error when create DMA pool failed (Jason Yan) [Orabug: 29783254] {CVE-2019-11810}
- Bluetooth: hidp: fix buffer overflow (Young Xiao) [Orabug: 29786786] {CVE-2011-1079} {CVE-2019-11884}
- x86/speculation/mds: Add 'mitigations=' support for MDS (Kanth Ghatraju) [Orabug: 29791046]
- net: rds: force to destroy connection if t_sock is NULL in rds_tcp_kill_sock(). (Mao Wenan) [Orabug: 29802785] {CVE-2019-11815}