Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Oracle Linux 8 ELSA-2023-13005 Critical: Kernel Container Security Update

oracle
Calendar Grey November 23, 2023
Oracle Linux Logo Esm H88
Oracle Linux Security Bulletin ELSA-2023-13006 provides essential kernel enhancements that tackle severe vulnerabilities.
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

[5.4.17-2136.325.5.el8] - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext (Krister Johansen) [Orabug: 35905508] - char: misc: Increase the maximum number of dynamic misc devices to 1048448 (D Scott Phillips) [Orabug: 35905508] - perf/arm-cmn: Fix invalid pointer when access dtc object sharing the same IRQ number (Tuan Phan) [Orabug: 35905508] - char: misc: increase DYNAMIC_MINORS value (Sangmoon Kim) [Orabug: 35905508] [5.4.17-2136.325.4.el8] - net: nfc: llcp: Add lock when modifying device list (Jeremy Cline) - net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent (Fabio Estevam) - ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig (Oleksandr Tymoshenko) - wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet (Pin-yen Lin) - Revert "PCI: qcom: Disable write access to read only registers for IP v2.3.3" (Greg Kroah-Hartman) - rbd: take header_rwsem in rbd_dev_refresh() only when updating (Ilya Dryomov) - rbd: decouple...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory critical issue kernel update security fix security updates container security oracle linux

SRPMs

https://oss.oracle.com:443/ol8/SRPMS-updates//kernel-uek-container-5.4.17-2136.325.5.el8.src.rpm

x86_64

kernel-uek-container-5.4.17-2136.325.5.el8.x86_64.rpm kernel-uek-container-debug-5.4.17-2136.325.5.el8.x86_64.rpm

aarch64

- ocfs2: ocfs2 crash due to invalid h_next_leaf_blk value in extent block (Gautham Ananthakrishna) [Orabug: 35859331] [5.4.17-2136.325.1.el8] - uek-rpm: aarch64: embedded: Enable CONFIG_STACKTRACE and CONFIG_FTRACE (Thomas Tai) [Orabug: 35818484] - io_uring: add a sysctl to disable io_uring system-wide (Matteo Rizzo) [Orabug: 35819375] - KVM: SVM: Set target pCPU during IRTE update if target vCPU is running (Sean Christopherson) [Orabug: 35827614] - KVM: SVM: Take and hold ir_list_lock when updating vCPU's Physical ID entry (Sean Christopherson) [Orabug: 35827614] - Pensando: kpcimgr: Zero out mod pointer unconditionally (Rob Gardner) [Orabug: 35842963] - pensando: kpcimgr: Flush i-cache before calling any pciesvc code (Rob Gardner) [Orabug: 35842972]

Severity
critical
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2023-1989

Topics%20covered

Topics Covered

security advisory critical issue kernel update security fix security updates container security oracle linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here