Oracle Linux Security Advisory ELSA-2024-4583

http://linux.oracle.com/errata/ELSA-2024-4583.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-7.3.0-427.26.1.el9_4.x86_64.rpm
kernel-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-abi-stablelists-5.14.0-427.26.1.el9_4.noarch.rpm
kernel-core-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-cross-headers-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-core-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-devel-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-devel-matched-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-modules-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-modules-core-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-modules-extra-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-debug-uki-virt-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-devel-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-devel-matched-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-doc-5.14.0-427.26.1.el9_4.noarch.rpm
kernel-headers-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-modules-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-modules-core-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-modules-extra-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-tools-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-tools-libs-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-tools-libs-devel-5.14.0-427.26.1.el9_4.x86_64.rpm
kernel-uki-virt-5.14.0-427.26.1.el9_4.x86_64.rpm
libperf-5.14.0-427.26.1.el9_4.x86_64.rpm
perf-5.14.0-427.26.1.el9_4.x86_64.rpm
python3-perf-5.14.0-427.26.1.el9_4.x86_64.rpm
rtla-5.14.0-427.26.1.el9_4.x86_64.rpm
rv-5.14.0-427.26.1.el9_4.x86_64.rpm

aarch64:
bpftool-7.3.0-427.26.1.el9_4.aarch64.rpm
kernel-cross-headers-5.14.0-427.26.1.el9_4.aarch64.rpm
kernel-headers-5.14.0-427.26.1.el9_4.aarch64.rpm
kernel-tools-5.14.0-427.26.1.el9_4.aarch64.rpm
kernel-tools-libs-5.14.0-427.26.1.el9_4.aarch64.rpm
kernel-tools-libs-devel-5.14.0-427.26.1.el9_4.aarch64.rpm
perf-5.14.0-427.26.1.el9_4.aarch64.rpm
python3-perf-5.14.0-427.26.1.el9_4.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//kernel-5.14.0-427.26.1.el9_4.src.rpm

Related CVEs:

CVE-2021-47548
CVE-2021-47596
CVE-2022-48627
CVE-2023-52638
CVE-2024-26783
CVE-2024-26858
CVE-2024-27397
CVE-2024-27435
CVE-2024-35958
CVE-2024-36270
CVE-2024-36886
CVE-2024-36904
CVE-2024-36957
CVE-2024-38543
CVE-2024-38586
CVE-2024-38593
CVE-2024-38663




Description of changes:

- [5.14.0-427.26.1.el9_4.OL9]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5]
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535]
- Add Oracle Linux IMA certificates

[5.14.0-427.26.1.el9_4]
- net: ena: Fix incorrect descriptor free behavior (Kamal Heib) [RHEL-39217 RHEL-37430] {CVE-2024-35958}
- tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). (Guillaume Nault) [RHEL-41749 RHEL-39837] {CVE-2024-36904}
- mm/mglru: Revert "don't sync disk for each aging cycle" (Waiman Long) [RHEL-44418]
- tipc: fix UAF in error path (Xin Long) [RHEL-34848 RHEL-34280] {CVE-2024-36886}
- selftest/cgroup: Update test_cpuset_prs.sh to match changes (Waiman Long) [RHEL-45139]
- cgroup/cpuset: Make cpuset.cpus.exclusive independent of cpuset.cpus (Waiman Long) [RHEL-45139]
- cgroup/cpuset: Delay setting of CS_CPU_EXCLUSIVE until valid partition (Waiman Long) [RHEL-45139]
- selftest/cgroup: Fix test_cpuset_prs.sh problems reported by test robot (Waiman Long) [RHEL-45139]
- cgroup/cpuset: Fix remote root partition creation problem (Waiman Long) [RHEL-45139]
- cgroup/cpuset: Optimize isolated partition only generate_sched_domains() calls (Waiman Long) [RHEL-45139]
- cgroup/cpuset: Fix retval in update_cpumask() (Waiman Long) [RHEL-45139]
- cgroup/cpuset: Fix a memory leak in update_exclusive_cpumask() (Waiman Long) [RHEL-45139]
- ice: implement AQ download pkg retry (Petr Oros) [RHEL-38907 RHEL-17318]
- redhat: include resolve_btfids in kernel-devel (Viktor Malik) [RHEL-43426 RHEL-40707]
- blk-cgroup: fix list corruption from resetting io stat (cki-backport-bot) [RHEL-44977] {CVE-2024-38663}
- misc: rtsx: do clear express reg every SD_INT (David Arcari) [RHEL-39985 RHEL-33706]
- misc: rtsx: Fix rts5264 driver status incorrect when card removed (David Arcari) [RHEL-39985 RHEL-33706]
- netfilter: tproxy: bail out if IP has been disabled on the device (cki-backport-bot) [RHEL-44371] {CVE-2024-36270}
- lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (cki-backport-bot) [RHEL-44263 RHEL-44261] {CVE-2024-38543}
- r8169: Fix possible ring buffer corruption on fragmented Tx packets. (cki-backport-bot) [RHEL-44039] {CVE-2024-38586}
- net: micrel: Fix receiving the timestamp in the frame for lan8841 (cki-backport-bot) [RHEL-43996] {CVE-2024-38593}
- vt: fix memory overlapping when deleting chars in the buffer (Waiman Long) [RHEL-43379 RHEL-27780] {CVE-2022-48627}
- net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (Kamal Heib) [RHEL-42728 RHEL-34192] {CVE-2024-26858}
- locking/atomic: Make test_and_*_bit() ordered on failure (Paolo Bonzini) [RHEL-45896]
- mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index (Rafael Aquini) [RHEL-42659 RHEL-31840] {CVE-2024-26783}
- can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock (Jose Ignacio Tornos Martinez) [RHEL-42379 RHEL-31530] {CVE-2023-52638}
- ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() (Ken Cox) [RHEL-42226 RHEL-38715] {CVE-2021-47548}

[5.14.0-427.25.1.el9_4]
- nvme: fix reconnection fail due to reserved tag allocation (Maurizio Lombardi) [RHEL-42896 RHEL-36896] {CVE-2024-27435}
- net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (cki-backport-bot) [RHEL-43625] {CVE-2021-47596}
- scsi: sg: Avoid race in error handling & drop bogus warn (Ewan D. Milne) [RHEL-36106 RHEL-35659]
- scsi: sg: Avoid sg device teardown race (Ewan D. Milne) [RHEL-36106 RHEL-35659]
- netfilter: nf_tables: use timestamp to check for set element timeout (Florian Westphal) [RHEL-38032 RHEL-33985] {CVE-2024-27397}
- netfilter: nft_set_rbtree: Remove unused variable nft_net (Florian Westphal) [RHEL-38032 RHEL-33985]
- netfilter: nft_set_rbtree: prefer sync gc to async worker (Florian Westphal) [RHEL-38032 RHEL-33985]
- netfilter: nft_set_rbtree: rename gc deactivate+erase function (Florian Westphal) [RHEL-38032 RHEL-33985]
- netfilter: nf_tables: de-constify set commit ops function argument (Florian Westphal) [RHEL-38032 RHEL-33985]
- octeontx2-af: avoid off-by-one read from userspace (Kamal Heib) [RHEL-40486 RHEL-39873] {CVE-2024-36957}


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle9: ELSA-2024-4583: kernel security Important Security Advisory Updates

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

- [5.14.0-427.26.1.el9_4.OL9] - Disable UKI signing [Orabug: 36571828] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5] - Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535] - Add Oracle Linux IMA certificates [5.14.0-427.26.1.el9_4] - net: ena: Fix incorrect descriptor free behavior (Kamal Heib) [RHEL-39217 RHEL-37430] {CVE-2024-35958} - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). (Guillaume Nault) [RHEL-41749 RHEL-39837] {CVE-2024-36904} - mm/mglru: Revert "don't sync disk for each aging cycle" (Waiman Long) [RHEL-44418] - tipc: fix UAF in error path (Xin Long) [RHEL-34848 RHEL-34280] {CVE-2024-36886} - selftest/cgroup: Update test_cpuset_prs.sh to match changes (Waiman Long) [RHEL-45139] - cgroup/cpuset: Make cpuset.cpus.exclusive independent of cpuset.cpus (Waiman Long) [RHEL-45139] - cgroup/cpuset: Delay setting of CS_CPU_EXCLUSIVE until valid partition (Waiman Long) [RHEL-45139] - selftest/cgroup: Fix test_cpuset_prs.sh problems reported by test robot (Waiman Long) [RHEL-45139] - cgroup/cpuset: Fix remote root partition creation problem (Waiman Long) [RHEL-45139] - cgroup/cpuset: Optimize isolated partition only generate_sched_domains() calls (Waiman Long) [RHEL-45139] - cgroup/cpuset: Fix retval in update_cpumask() (Waiman Long) [RHEL-45139] - cgroup/cpuset: Fix a memory leak in update_exclusive_cpumask() (Waiman Long) [RHEL-45139] - ice: implement AQ download pkg retry (Petr Oros) [RHEL-38907 RHEL-17318] - redhat: include resolve_btfids in kernel-devel (Viktor Malik) [RHEL-43426 RHEL-40707] - blk-cgroup: fix list corruption from resetting io stat (cki-backport-bot) [RHEL-44977] {CVE-2024-38663} - misc: rtsx: do clear express reg every SD_INT (David Arcari) [RHEL-39985 RHEL-33706] - misc: rtsx: Fix rts5264 driver status incorrect when card removed (David Arcari) [RHEL-39985 RHEL-33706] - netfilter: tproxy: bail out if IP has been disabled on the device (cki-backport-bot) [RHEL-44371] {CVE-2024-36270} - lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (cki-backport-bot) [RHEL-44263 RHEL-44261] {CVE-2024-38543} - r8169: Fix possible ring buffer corruption on fragmented Tx packets. (cki-backport-bot) [RHEL-44039] {CVE-2024-38586} - net: micrel: Fix receiving the timestamp in the frame for lan8841 (cki-backport-bot) [RHEL-43996] {CVE-2024-38593} - vt: fix memory overlapping when deleting chars in the buffer (Waiman Long) [RHEL-43379 RHEL-27780] {CVE-2022-48627} - net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (Kamal Heib) [RHEL-42728 RHEL-34192] {CVE-2024-26858} - locking/atomic: Make test_and_*_bit() ordered on failure (Paolo Bonzini) [RHEL-45896] - mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index (Rafael Aquini) [RHEL-42659 RHEL-31840] {CVE-2024-26783} - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock (Jose Ignacio Tornos Martinez) [RHEL-42379 RHEL-31530] {CVE-2023-52638} - ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() (Ken Cox) [RHEL-42226 RHEL-38715] {CVE-2021-47548} [5.14.0-427.25.1.el9_4] - nvme: fix reconnection fail due to reserved tag allocation (Maurizio Lombardi) [RHEL-42896 RHEL-36896] {CVE-2024-27435} - net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (cki-backport-bot) [RHEL-43625] {CVE-2021-47596} - scsi: sg: Avoid race in error handling & drop bogus warn (Ewan D. Milne) [RHEL-36106 RHEL-35659] - scsi: sg: Avoid sg device teardown race (Ewan D. Milne) [RHEL-36106 RHEL-35659] - netfilter: nf_tables: use timestamp to check for set element timeout (Florian Westphal) [RHEL-38032 RHEL-33985] {CVE-2024-27397} - netfilter: nft_set_rbtree: Remove unused variable nft_net (Florian Westphal) [RHEL-38032 RHEL-33985] - netfilter: nft_set_rbtree: prefer sync gc to async worker (Florian Westphal) [RHEL-38032 RHEL-33985] - netfilter: nft_set_rbtree: rename gc deactivate+erase function (Florian Westphal) [RHEL-38032 RHEL-33985] - netfilter: nf_tables: de-constify set commit ops function argument (Florian Westphal) [RHEL-38032 RHEL-33985] - octeontx2-af: avoid off-by-one read from userspace (Kamal Heib) [RHEL-40486 RHEL-39873] {CVE-2024-36957}

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//kernel-5.14.0-427.26.1.el9_4.src.rpm

x86_64

bpftool-7.3.0-427.26.1.el9_4.x86_64.rpm kernel-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-abi-stablelists-5.14.0-427.26.1.el9_4.noarch.rpm kernel-core-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-cross-headers-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-core-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-devel-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-devel-matched-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-modules-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-modules-core-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-modules-extra-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-debug-uki-virt-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-devel-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-devel-matched-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-doc-5.14.0-427.26.1.el9_4.noarch.rpm kernel-headers-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-modules-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-modules-core-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-modules-extra-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-tools-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-tools-libs-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-tools-libs-devel-5.14.0-427.26.1.el9_4.x86_64.rpm kernel-uki-virt-5.14.0-427.26.1.el9_4.x86_64.rpm libperf-5.14.0-427.26.1.el9_4.x86_64.rpm perf-5.14.0-427.26.1.el9_4.x86_64.rpm python3-perf-5.14.0-427.26.1.el9_4.x86_64.rpm rtla-5.14.0-427.26.1.el9_4.x86_64.rpm rv-5.14.0-427.26.1.el9_4.x86_64.rpm

aarch64

bpftool-7.3.0-427.26.1.el9_4.aarch64.rpm kernel-cross-headers-5.14.0-427.26.1.el9_4.aarch64.rpm kernel-headers-5.14.0-427.26.1.el9_4.aarch64.rpm kernel-tools-5.14.0-427.26.1.el9_4.aarch64.rpm kernel-tools-libs-5.14.0-427.26.1.el9_4.aarch64.rpm kernel-tools-libs-devel-5.14.0-427.26.1.el9_4.aarch64.rpm perf-5.14.0-427.26.1.el9_4.aarch64.rpm python3-perf-5.14.0-427.26.1.el9_4.aarch64.rpm

i386

Severity
Related CVEs: CVE-2021-47548 CVE-2021-47596 CVE-2022-48627 CVE-2023-52638 CVE-2024-26783 CVE-2024-26858 CVE-2024-27397 CVE-2024-27435 CVE-2024-35958 CVE-2024-36270 CVE-2024-36886 CVE-2024-36904 CVE-2024-36957 CVE-2024-38543 CVE-2024-38586 CVE-2024-38593 CVE-2024-38663

Related News

Defending Against Remote Code Execution in Google Chrome: A Critical Update
2 - 3 min read
Google Chrome, a widely used web browser, serves millions of internet users by connecting them to the online world. Unfortunately, severe
Navigating the Linux Kernel
2 - 4 min read
The Linux operating system, widely acclaimed for its robustness and security , recently received widespread media attention due to a significant
Staying a Step Ahead of Adversaries: Mitigating Chromium
2 - 4 min read
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium
Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware
2 - 4 min read
Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called
Buffer Overflow Exploits in Linux: Origins, Impact, and Countermeasures
3 - 6 min read
Buffer overflow vulnerabilities have long been one of the biggest headaches in computer security, especially on Linux operating systems that power
8 Expert-Recommended Security Practices to Fortify Your Linux Systems
4 - 8 min read
As a Linux admin or an infosec professional, you understand how the security landscape changes due to evolving threats, newly discovered
Open Source Strategies for Enhancing Security in Digital Business Operations
5 - 9 min read
Digital transformation, powered by the principles of open-source security , is vital for businesses looking to excel in today's technology-driven
Microsoft Update Mayhem: Rescuing Linux Dual-Boot Systems from Secure Boot Woes
2 - 4 min read
Microsoft's recent patch, intended to strengthen Secure Boot defenses, has resulted in an unexpected setback for Linux-Windows dual-boot setups

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved