Stay Vigilant with Timely Linux Security Advisories

security advisorybuffer overflowimportant

openSUSE Leap 15.6: Kernel Important Security Fix 2025:4521-1

An update that solves 65 vulnerabilities and has nine security fixes can now be installed.. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2025:4521-1 Release Date: 2025-12-24T12:42:51Z Rating: important References: * bsc#1232223 * bsc#1237888 * bsc#1243474 * bsc#1245193 * bsc#1247076 * bsc#1247079 * bsc#1247500 * bsc#1247509 * bsc#1249547 * bsc#1249912 * bsc#1249982 * bsc#1250176 * bsc#1250237 * bsc#1250252 * bsc#1250705 * bsc#1251120 * bsc#1251786 * bsc#1252063 * bsc#1252267 * bsc#1252303 * bsc#1252353 * bsc#1252681 * bsc#1252763 * bsc#1252773 * bsc#1252780 * bsc#1252794 * bsc#1252795 * bsc#1252809 * bsc#1252817 * bsc#1252821 * bsc#1252836 * bsc#1252845 * bsc#1252862 * bsc#1252912 * bsc#1252917 * bsc#1252928 * bsc#1253018 * bsc#1253176 * bsc#1253275 * bsc#1253318 * bsc#1253324 * bsc#1253349 * bsc#1253352 * bsc#1253355 * bsc#1253360 * bsc#1253362 * bsc#1253363 * bsc#1253367 * bsc#1253369 * bsc#1253393 * bsc#1253395 * bsc#1253403 * bsc#1253407 * bsc#1253409 * bsc#1253412 * bsc#1253416 * bsc#1253421 * bsc#1253423 * bsc#1253424 * bsc#1253425 * bsc#1253427 * bsc#1253428 * bsc#1253431 * bsc#1253436 * bsc#1253438 * bsc#1253440 * bsc#1253441 * bsc#1253445 * bsc#1253448 * bsc#1253449 * bsc#1253453 * bsc#1253456 * bsc#1253472 * bsc#1253779 Cross-References: * CVE-2022-50253 * CVE-2023-53676 * CVE-2025-21710 * CVE-2025-37916 * CVE-2025-38359 * CVE-2025-38361 * CVE-2025-39788 * CVE-2025-39805 * CVE-2025-39819 * CVE-2025-39859 * CVE-2025-39944 * CVE-2025-39980 * CVE-2025-40001 * CVE-2025-40021 * CVE-2025-40027 * CVE-2025-40030 * CVE-2025-40038 * CVE-2025-40040 * CVE-2025-40048 * CVE-2025-40055 * CVE-2025-40059 * CVE-2025-40064 * CVE-2025-40070 * CVE-2025-40074 * CVE-2025-40075 * CVE-2025-40083 * CVE-2025-40098 * CVE-2025-40105 * CVE-2025-40107 * CVE-2025-40109 * CVE-2025-40110 *CVE-2025-40111 * CVE-2025-40115 * CVE-2025-40116 * CVE-2025-40118 * CVE-2025-40120 * CVE-2025-40121 * CVE-2025-40127 * CVE-2025-40129 * CVE-2025-40139 * CVE-2025-40140 * CVE-2025-40141 * CVE-2025-40149 * CVE-2025-40154 * CVE-2025-40156 * CVE-2025-40157 * CVE-2025-40159 * CVE-2025-40164 * CVE-2025-40168 * CVE-2025-40169 * CVE-2025-40171 * CVE-2025-40172 * CVE-2025-40173 * CVE-2025-40176 * CVE-2025-40180 * CVE-2025-40183 * CVE-2025-40186 * CVE-2025-40188 * CVE-2025-40194 * CVE-2025-40198 * CVE-2025-40200 * CVE-2025-40204 * CVE-2025-40205 * CVE-2025-40206 * CVE-2025-40207 CVSS scores: * CVE-2022-50253 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2022-50253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2022-50253 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-53676 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2023-53676 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21710 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-21710 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-37916 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-37916 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2025-37916 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38359 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-38359 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-38359 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-38361 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-38361 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-38361 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H *CVE-2025-39788 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-39788 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2025-39805 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-39805 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-39819 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-39819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-39859 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-39859 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-39944 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-39980 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-39980 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40001 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40001 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-40021 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-40021 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2025-40027 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40027 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2025-40030 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40030 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40038 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40040 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40040 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40048 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40055 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40055 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40059 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40059 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40064 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40070 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40074 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40075 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40083 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40083 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40098 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40098 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40105 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-40105 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-40107 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40107 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40109 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40109 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40110 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40110 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40111 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H * CVE-2025-40115 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40115 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40116 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40116 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40118 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40118 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2025-40120 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40120 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40121 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40121 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2025-40127 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40127 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40129 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40129 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40139 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40139 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-40140 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-40140 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2025-40141 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40141 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-40149 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40149 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-40154 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40154 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H *CVE-2025-40156 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40156 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40157 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40157 ( SUSE ): 5.2 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2025-40159 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40159 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-40164 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40164 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40168 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40168 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-40169 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40169 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-40171 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40171 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2025-40172 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40172 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40173 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40173 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40176 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40176 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-40180 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40180 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-40183 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-40183 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-40186 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40186 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-40188 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40188 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40194 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40194 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40198 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40198 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40200 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40200 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40204 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-40204 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-40205 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40205 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40206 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40206 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40207 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40207 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Real Time Module 15-SP6 An update that solves 65 vulnerabilities and has nine security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2022-50253: bpf: make sure skb-> len != 0 when redirecting to a tunneling device (bsc#1249912). * CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (bsc#1251786). * CVE-2025-21710: tcp: correct handling of extreme memory squeeze (bsc#1237888). * CVE-2025-37916: pds_core: remove write-after-free of client_id (bsc#1243474). * CVE-2025-38359: s390/mm: Fix in_atomic() handling in do_secure_storage_access() (bsc#1247076). * CVE-2025-38361: drm/amd/display: Check dce_hwseq before dereferencing it (bsc#1247079). * CVE-2025-39788: scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE (bsc#1249547). * CVE-2025-39805: net: macb: fix unregister_netdev call order in macb_remove() (bsc#1249982). * CVE-2025-39819: fs/smb: Fix inconsistent refcnt update (bsc#1250176). * CVE-2025-39859: ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (bsc#1250252). * CVE-2025-39944: octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (bsc#1251120). * CVE-2025-39980: nexthop: Forbid FDB status change while nexthop is in a group (bsc#1252063). * CVE-2025-40001: scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (bsc#1252303). * CVE-2025-40021: tracing: dynevent: Add a missing lockdown check on dynevent (bsc#1252681). * CVE-2025-40027: net/9p: fix double req put in p9_fd_cancelled (bsc#1252763). * CVE-2025-40030: pinctrl: check the return value of pinmux_ops::get_function_name() (bsc#1252773). * CVE-2025-40038: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (bsc#1252817). * CVE-2025-40040: mm/ksm: fix flag-dropping behavior in ksm_madvise (bsc#1252780). * CVE-2025-40048: uio_hv_generic: Let userspace take careof interrupt mask (bsc#1252862). * CVE-2025-40055: ocfs2: fix double free in user_cluster_connect() (bsc#1252821). * CVE-2025-40059: coresight: Fix incorrect handling for return value of devm_kzalloc (bsc#1252809). * CVE-2025-40064: smc: Fix use-after-free in __pnet_find_base_ndev() (bsc#1252845). * CVE-2025-40070: pps: fix warning in pps_register_cdev when register device fail (bsc#1252836). * CVE-2025-40074: ipv4: start using dst_dev_rcu() (bsc#1252794). * CVE-2025-40075: tcp_metrics: use dst_dev_net_rcu() (bsc#1252795). * CVE-2025-40083: net/sched: sch_qfq: Fix null-deref in agg_dequeue (bsc#1252912). * CVE-2025-40098: ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (bsc#1252917). * CVE-2025-40105: vfs: Don't leak disconnected dentries on umount (bsc#1252928). * CVE-2025-40139: smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (bsc#1253409). * CVE-2025-40149: tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (bsc#1253355). * CVE-2025-40159: xsk: Harden userspace-supplied xdp_desc validation (bsc#1253403). * CVE-2025-40168: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (bsc#1253427). * CVE-2025-40169: bpf: Reject negative offsets for ALU ops (bsc#1253416). * CVE-2025-40173: net/ip6_tunnel: Prevent perpetual tunnel growth (bsc#1253421). * CVE-2025-40176: tls: wait for pending async decryptions if tls_strp_msg_hold fails (bsc#1253425). * CVE-2025-40204: sctp: Fix MAC comparison to be constant-time (bsc#1253436). The following non-security bugs were fixed: * ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes). * ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes). * ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes). * ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable- fixes). * ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes). *ACPI: property: Return present device nodes only on fwnode interface (stable-fixes). * ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids (stable-fixes). * ACPICA: Update dsmethod.c to get rid of unused variable warning (stable- fixes). * ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes). * ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes). * ALSA: serial-generic: remove shared static buffer (stable-fixes). * ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes). * ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes). * ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable- fixes). * ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes). * ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes). * ALSA: usb-audio: do not log messages meant for 1810c when initializing 1824c (git-fixes). * ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes). * ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes). * ASoC: cs4271: Fix regulator leak on probe failure (git-fixes). * ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable- fixes). * ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes). * ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes). * ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes). * ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable- fixes). * Bluetooth: 6lowpan: Do not hold spin lock over sleeping functions (git- fixes). * Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes). * Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes). * Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes). * Bluetooth: L2CAP: exportl2cap_chan_hold for modules (stable-fixes). * Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes). * Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes). * Bluetooth: bcsp: receive data only if registered (stable-fixes). * Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes). * Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes). * Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git- fixes). * Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes). * Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes). * Drivers: hv: vmbus: Add utility function for querying ring size (git-fixes). * HID: amd_sfh: Stop sensor before starting (git-fixes). * HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes). * HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes). * HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes). * HID: uclogic: Fix potential memory leak in error path (git-fixes). * Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes). * Input: imx_sc_key - fix memory corruption on unload (git-fixes). * Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes). * KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes). * KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git- fixes). * KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes). * KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes). * KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git- fixes). * KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes). * KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes). * KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git- fixes). * KVM: VMX: Allowguest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git- fixes). * KVM: VMX: Apply MMIO Stale Data mitigation if KVM maps MMIO into the guest (git-fixes). * KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes). * KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes). * KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git- fixes). * KVM: nVMX: Check vmcs12-> guest_ia32_debugctl on nested VM-Enter (git-fixes). * KVM: x86/mmu: Locally cache whether a PFN is host MMIO when making a SPTE (git-fixes). * KVM: x86: Add helper to retrieve current value of user return MSR (git- fixes). * KVM: x86: Convert vcpu_run()'s immediate exit param into a generic bitmap (git-fixes). * KVM: x86: Do not treat ENTER and LEAVE as branches, because they are not (git-fixes). * KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git- fixes). * NFS4: Fix state renewals missing after boot (git-fixes). * NFS: check if suid/sgid was cleared after a write as needed (git-fixes). * NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes). * NFSD: Skip close replay processing if XDR encoding fails (git-fixes). * NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes). * NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes). * NFSv4: handle ERR_GRACE on delegation recalls (git-fixes). * PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes). * PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes). * PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes). * PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes). * PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable- fixes). * PCI: j721e: Fix incorrect error message in probe() (git-fixes). * PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git- fixes). * PCI:tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes). * RDMA/bnxt_re: Do not fail destroy QP and cleanup debugfs earlier (git- fixes). * RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes). * RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes). * RDMA/hns: Fix the modification of max_send_sge (git-fixes). * RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes). * RDMA/irdma: Fix SD index calculation (git-fixes). * RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes). * Revert "drm/tegra: dsi: Clear enable register if powered by bootloader" (git-fixes). * Revert "wifi: ath10k: avoid unnecessary wait for service ready message" (git-fixes). * accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes). * accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes). * accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes). * accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes). * acpi,srat: Fix incorrect device handle check for Generic Initiator (git- fixes). * amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes). * block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes). * block: fix kobject double initialization in add_disk (git-fixes). * btrfs: abort transaction on failure to add link to inode (git-fixes). * btrfs: avoid page_lockend underflow in btrfs_punch_hole_lock_range() (git- fix). * btrfs: avoid using fixed char array size for tree names (git-fix). * btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes). * btrfs: fix COW handling in run_delalloc_nocow() (git-fix). * btrfs: fix inode leak on failure to add link to inode (git-fixes). * btrfs: make btrfs_clear_delalloc_extent() free delalloc reserve (git-fix). * btrfs: mark dirty extent range for out of boundprealloc extents (git- fixes). * btrfs: qgroup: correctly model root qgroup rsv in convert (git-fix). * btrfs: rename err to ret in btrfs_link() (git-fixes). * btrfs: run btrfs_error_commit_super() early (git-fix). * btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git- fixes). * btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes). * btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes). * btrfs: simplify error handling logic for btrfs_link() (git-fixes). * btrfs: tree-checker: add dev extent item checks (git-fix). * btrfs: tree-checker: add type and sequence check for inline backrefs (git- fix). * btrfs: tree-checker: fix the wrong output of data backref objectid (git- fix). * btrfs: tree-checker: reject BTRFS_FT_UNKNOWN dir type (git-fix). * btrfs: tree-checker: validate dref root and objectid (git-fix). * btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes). * char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes). * char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes). * char: misc: restrict the dynamic range to exclude reserved minors (stable- fixes). * cramfs: Verify inode mode when loading from disk (git-fixes). * crypto: aspeed - fix double free caused by devm (git-fixes). * crypto: aspeed-acry - Convert to platform remove callback returning void (stable-fixes). * crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git- fixes). * crypto: iaa - Do not clobber req-> base.data (git-fixes). * crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes). * dmaengine: dw-edma: Set status for callback_result (stable-fixes). * dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes). * drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes). * drm/amd/display: DisableVRR on DCE 6 (stable-fixes). * drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes). * drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes). * drm/amd/display: Fix black screen with HDMI outputs (git-fixes). * drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable- fixes). * drm/amd/display: add more cyan skillfish devices (stable-fixes). * drm/amd/display: ensure committing streams is seamless (stable-fixes). * drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes). * drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable- fixes). * drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes). * drm/amd/pm: Use cached metrics data on arcturus (stable-fixes). * drm/amd: Avoid evicting resources at S5 (stable-fixes). * drm/amd: Fix suspend failure with secure display TA (git-fixes). * drm/amd: add more cyan skillfish PCI ids (stable-fixes). * drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes). * drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes). * drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes). * drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable- fixes). * drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes). * drm/amdgpu: do not enable SMU on cyan skillfish (stable-fixes). * drm/amdgpu: reject gang submissions under SRIOV (stable-fixes). * drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes). * drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes). * drm/amdkfd: fix vram allocation failure for a special case (stable-fixes). * drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes). * drm/bridge: cdns-dsi: Do not fail on MIPI_DSI_MODE_VIDEO_BURST (stable- fixes). * drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes). * drm/bridge: display-connector: do not set OP_DETECT for DisplayPorts (stable-fixes). * drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git- fixes). * drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes). * drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable- fixes). * drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes). * drm/msm: make sure to not queue up recovery more than once (stable-fixes). * drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes). * drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes). * drm/tegra: Add call to put_pid() (git-fixes). * drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes). * drm/tidss: Set crtc modesetting parameters with adjusted mode (stable- fixes). * drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes). * drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git- fixes). * exfat: limit log print for IO error (git-fixes). * extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes). * extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes). * fbcon: Set fb_display[i]-> mode to NULL when the mode is released (stable- fixes). * fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes). * fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes). * fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable- fixes). * hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable- fixes). * hwmon: (dell-smm) Add support for Dell OptiPlex 7040 (stable-fixes). * hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes). * hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes). * hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable- fixes). * hwmon: sy7636a: add alias (stable-fixes). * iio: adc: imx93_adc: load calibrated values even calibration failed (stable- fixes). * iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes). * ima: do not clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes). * iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git- fixes). * isdn: mISDN: hfcsusb: fix memory leak in hfcsusb_probe() (git-fixes). * jfs: Verify inode mode when loading from disk (git-fixes). * jfs: fix uninitialized waitqueue in transaction manager (git-fixes). * kABI fix for KVM: VMX: Apply MMIO Stale Data mitigation if KVM maps MMIO into the guest (git-fixes). * kabi/severities: drop xfer_to_guest_mode_handle_work. * lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes). * md/raid1: fix data lost for writemostly rdev (git-fixes). * md: fix mssing blktrace bio split events (git-fixes). * media: adv7180: Add missing lock in suspend callback (stable-fixes). * media: adv7180: Do not write format to device in set_fmt (stable-fixes). * media: adv7180: Only validate format in querystd (stable-fixes). * media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes). * media: fix uninitialized symbol warnings (stable-fixes). * media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes). * media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes). * media: imon: make send_packet() more robust (stable-fixes). * media: ov08x40: Fix the horizontal flip control (stable-fixes). * media: redrat3: use int type to store negative error codes (stable-fixes). * media: uvcvideo: Use heuristic to find stream entity (git-fixes). * memstick: Add timeout to prevent indefinite waiting (stable-fixes). * mfd: da9063: Split chip variant reading in two bus transactions (stable- fixes). * mfd: madera: Work around false-positive -Wininitialized warning (stable- fixes). * mfd: stmpe-i2c: Add missing MODULE_LICENSE(stable-fixes). * mfd: stmpe: Remove IRQ domain upon removal (stable-fixes). * minixfs: Verify inode mode when loading from disk (git-fixes). * mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git- fixes). * mm/secretmem: fix use-after-free race in fault handler (git-fixes). * mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes). * mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes). * mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes). * mtd: onenand: Pass correct pointer to IRQ handler (git-fixes). * mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes). * mtdchar: fix integer overflow in read/write ioctls (git-fixes). * net/mana: fix warning in the writer of client oob (git-fixes). * net/smc: Remove validation of reserved bits in CLC Decline message (bsc#1253779). * net: nfc: nci: Increase NCI_DATA_TIMEOUT to 3000 ms (stable-fixes). * net: phy: clear link parameters on admin link down (stable-fixes). * net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable- fixes). * net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes). * net: tcp: send zero-window ACK when no memory (bsc#1253779). * net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git- fixes). * nfs4_setup_readdir(): insufficient locking for -> d_parent-> d_inode dereferencing (git-fixes). * nfsd: do not defer requests during idmap lookup in v4 compound decode (bsc#1232223). * nfsd: fix return error codes for nfsd_map_name_to_id (bsc#1232223). * nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes). * perf script: add --addr2line option (bsc#1247509). * phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes). * phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes). * phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes). * pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes). * pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git- fixes). * pinctrl: single: fix bias pull up/down handling in pin_config_set (stable- fixes). * platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes). * power: supply: qcom_battmgr: add OOI chemistry (stable-fixes). * power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes). * power: supply: sbs-charger: Support multiple devices (stable-fixes). * regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes). * rtc: rx8025: fix incorrect register reference (git-fixes). * s390/mm,fault: simplify kfence fault handling (bsc#1247076). * scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git- fixes). * scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes). * scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes). * scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git- fixes). * scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes). * scsi: mpi3mr: Correctly handle ATA device errors (git-fixes). * scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes). * scsi: mpt3sas: Correctly handle ATA device errors (git-fixes). * scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git- fixes). * scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes). * scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267). * selftests/bpf: Close fd in error path in drop_on_reuseport (git-fixes). * selftests/bpf: Close obj in error path in xdp_adjust_tail (git-fixes). * selftests/bpf: Fix missing ARRAY_SIZE() definition in bench.c (git-fixes). * selftests/bpf: Fix missing BUILD_BUG_ON() declaration (git-fixes). * selftests/bpf: Fix missing UINT_MAX definitions inbenchmarks (git-fixes). * selftests/bpf: Fix string read in strncmp benchmark (git-fixes). * selftests/bpf: Mitigate sockmap_ktls disconnect_after_delete failure (git- fixes). * selftests/bpf: Use pid_t consistently in test_progs.c (git-fixes). * selftests/bpf: fix signedness bug in redir_partial() (git-fixes). * serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes). * serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes). * soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes). * soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes). * soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes). * spi: Try to get ACPI GPIO IRQ earlier (git-fixes). * spi: loopback-test: Do not use %pK through printk (stable-fixes). * spi: rpc-if: Add resume support for RZ/G3E (stable-fixes). * strparser: Fix signed/unsigned mismatch bug (git-fixes). * tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock-> cork (bsc#1250705). * thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes). * tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable- fixes). * tools/cpupower: fix error return value in cpupower_write_sysfs() (stable- fixes). * tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes). * tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable- fixes). * tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes). * tools: lib: thermal: do not preserve owner in install (stable-fixes). * tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes). * uio_hv_generic: Query the ringbuffer size for device (git-fixes). * usb/core/quirks: Add Huawei ME906S to wakeup quirk (git-fixes). * usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes). * usb: gadget: f_fs: Fix epfile null pointer access after epenable (stable- fixes). * usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes). * usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes). * usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable- fixes). * usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable- fixes). * video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable- fixes). * watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable- fixes). * wifi: ath10k: Fix connection after GTK rekeying (stable-fixes). * wifi: ath11k: zero init info-> status in wmi_process_mgmt_tx_comp() (git- fixes). * wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes). * wifi: mac80211: Fix HE capabilities element check (stable-fixes). * wifi: mac80211: reject address change while connecting (git-fixes). * wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes). * wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git- fixes). * wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes). * wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes). * wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git- fixes). * wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes). * wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git- fixes). * x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes). * x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes). * x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes). * x86/CPU/AMD: Do the common init on future Zens too (git-fixes). * x86/amd_nb: Add new PCI IDs for AMD family 0x1a (stable-fixes). * x86/bugs: Fix reporting of LFENCE retpoline (git-fixes). * x86/bugs: Report correct retbleed mitigation status (git-fixes). * x86/vmscape: Add old Intel CPUs to affected list(git-fixes). * xhci: dbc: Allow users to modify DbC poll interval via sysfs (stable-fixes). * xhci: dbc: Avoid event polling busyloop if pending rx transfers are inactive (git-fixes). * xhci: dbc: Improve performance by removing delay in transfer event polling (stable-fixes). * xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes). * xhci: dbc: poll at different rate depending on data transfer activity (stable-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-4521=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2025-4521=1 * SUSE Real Time Module 15-SP6 zypper in -t patch SUSE-SLE-Module-RT-15-SP6-2025-4521=1 ## Package List: * openSUSE Leap 15.6 (x86_64) * reiserfs-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * reiserfs-kmp-rt-6.4.0-150600.10.61.1 * kernel-rt_debug-debugsource-6.4.0-150600.10.61.1 * gfs2-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * kernel-rt-debuginfo-6.4.0-150600.10.61.1 * kernel-rt-optional-6.4.0-150600.10.61.1 * kernel-rt-vdso-6.4.0-150600.10.61.1 * kernel-rt-devel-debuginfo-6.4.0-150600.10.61.1 * cluster-md-kmp-rt-6.4.0-150600.10.61.1 * kselftests-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * kernel-rt_debug-debuginfo-6.4.0-150600.10.61.1 * kselftests-kmp-rt-6.4.0-150600.10.61.1 * kernel-rt-extra-debuginfo-6.4.0-150600.10.61.1 * kernel-rt_debug-devel-debuginfo-6.4.0-150600.10.61.1 * cluster-md-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * kernel-rt-livepatch-devel-6.4.0-150600.10.61.1 * kernel-rt_debug-vdso-6.4.0-150600.10.61.1 * kernel-rt_debug-vdso-debuginfo-6.4.0-150600.10.61.1 * dlm-kmp-rt-6.4.0-150600.10.61.1 * kernel-rt-debugsource-6.4.0-150600.10.61.1 * kernel-rt-devel-6.4.0-150600.10.61.1 * kernel-rt-optional-debuginfo-6.4.0-150600.10.61.1 * kernel-rt-extra-6.4.0-150600.10.61.1 * gfs2-kmp-rt-6.4.0-150600.10.61.1 * kernel-syms-rt-6.4.0-150600.10.61.1 * ocfs2-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * kernel-rt-vdso-debuginfo-6.4.0-150600.10.61.1 * dlm-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * ocfs2-kmp-rt-6.4.0-150600.10.61.1 * kernel-rt_debug-devel-6.4.0-150600.10.61.1 * openSUSE Leap 15.6 (noarch) * kernel-devel-rt-6.4.0-150600.10.61.1 * kernel-source-rt-6.4.0-150600.10.61.1 * openSUSE Leap 15.6 (nosrc x86_64) * kernel-rt_debug-6.4.0-150600.10.61.1 * kernel-rt-6.4.0-150600.10.61.1 * SUSE Linux Enterprise Live Patching 15-SP6 (x86_64) * kernel-livepatch-SLE15-SP6-RT_Update_18-debugsource-1-150600.1.3.1 * kernel-livepatch-6_4_0-150600_10_61-rt-1-150600.1.3.1 * kernel-livepatch-6_4_0-150600_10_61-rt-debuginfo-1-150600.1.3.1 * SUSE Real Time Module 15-SP6 (x86_64) * ocfs2-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * kernel-rt_debug-debugsource-6.4.0-150600.10.61.1 * kernel-rt-devel-debuginfo-6.4.0-150600.10.61.1 * kernel-rt_debug-devel-debuginfo-6.4.0-150600.10.61.1 * cluster-md-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * dlm-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * cluster-md-kmp-rt-6.4.0-150600.10.61.1 * kernel-rt_debug-devel-6.4.0-150600.10.61.1 * gfs2-kmp-rt-debuginfo-6.4.0-150600.10.61.1 * kernel-rt-debuginfo-6.4.0-150600.10.61.1 * dlm-kmp-rt-6.4.0-150600.10.61.1 * ocfs2-kmp-rt-6.4.0-150600.10.61.1 * kernel-rt-debugsource-6.4.0-150600.10.61.1 * kernel-rt-devel-6.4.0-150600.10.61.1 * kernel-syms-rt-6.4.0-150600.10.61.1 * gfs2-kmp-rt-6.4.0-150600.10.61.1 * kernel-rt_debug-debuginfo-6.4.0-150600.10.61.1 * SUSE Real Time Module 15-SP6 (noarch) * kernel-devel-rt-6.4.0-150600.10.61.1 * kernel-source-rt-6.4.0-150600.10.61.1 * SUSE Real TimeModule 15-SP6 (nosrc x86_64) * kernel-rt_debug-6.4.0-150600.10.61.1 * kernel-rt-6.4.0-150600.10.61.1 ## References: * https://www.suse.com/security/cve/CVE-2022-50253.html * https://www.suse.com/security/cve/CVE-2023-53676.html * https://www.suse.com/security/cve/CVE-2025-21710.html * https://www.suse.com/security/cve/CVE-2025-37916.html * https://www.suse.com/security/cve/CVE-2025-38359.html * https://www.suse.com/security/cve/CVE-2025-38361.html * https://www.suse.com/security/cve/CVE-2025-39788.html * https://www.suse.com/security/cve/CVE-2025-39805.html * https://www.suse.com/security/cve/CVE-2025-39819.html * https://www.suse.com/security/cve/CVE-2025-39859.html * https://www.suse.com/security/cve/CVE-2025-39944.html * https://www.suse.com/security/cve/CVE-2025-39980.html * https://www.suse.com/security/cve/CVE-2025-40001.html * https://www.suse.com/security/cve/CVE-2025-40021.html * https://www.suse.com/security/cve/CVE-2025-40027.html * https://www.suse.com/security/cve/CVE-2025-40030.html * https://www.suse.com/security/cve/CVE-2025-40038.html * https://www.suse.com/security/cve/CVE-2025-40040.html * https://www.suse.com/security/cve/CVE-2025-40048.html * https://www.suse.com/security/cve/CVE-2025-40055.html * https://www.suse.com/security/cve/CVE-2025-40059.html * https://www.suse.com/security/cve/CVE-2025-40064.html * https://www.suse.com/security/cve/CVE-2025-40070.html * https://www.suse.com/security/cve/CVE-2025-40074.html * https://www.suse.com/security/cve/CVE-2025-40075.html * https://www.suse.com/security/cve/CVE-2025-40083.html * https://www.suse.com/security/cve/CVE-2025-40098.html * https://www.suse.com/security/cve/CVE-2025-40105.html * https://www.suse.com/security/cve/CVE-2025-40107.html * https://www.suse.com/security/cve/CVE-2025-40109.html * https://www.suse.com/security/cve/CVE-2025-40110.html * https://www.suse.com/security/cve/CVE-2025-40111.html * https://www.suse.com/security/cve/CVE-2025-40115.html *https://www.suse.com/security/cve/CVE-2025-40116.html * https://www.suse.com/security/cve/CVE-2025-40118.html * https://www.suse.com/security/cve/CVE-2025-40120.html * https://www.suse.com/security/cve/CVE-2025-40121.html * https://www.suse.com/security/cve/CVE-2025-40127.html * https://www.suse.com/security/cve/CVE-2025-40129.html * https://www.suse.com/security/cve/CVE-2025-40139.html * https://www.suse.com/security/cve/CVE-2025-40140.html * https://www.suse.com/security/cve/CVE-2025-40141.html * https://www.suse.com/security/cve/CVE-2025-40149.html * https://www.suse.com/security/cve/CVE-2025-40154.html * https://www.suse.com/security/cve/CVE-2025-40156.html * https://www.suse.com/security/cve/CVE-2025-40157.html * https://www.suse.com/security/cve/CVE-2025-40159.html * https://www.suse.com/security/cve/CVE-2025-40164.html * https://www.suse.com/security/cve/CVE-2025-40168.html * https://www.suse.com/security/cve/CVE-2025-40169.html * https://www.suse.com/security/cve/CVE-2025-40171.html * https://www.suse.com/security/cve/CVE-2025-40172.html * https://www.suse.com/security/cve/CVE-2025-40173.html * https://www.suse.com/security/cve/CVE-2025-40176.html * https://www.suse.com/security/cve/CVE-2025-40180.html * https://www.suse.com/security/cve/CVE-2025-40183.html * https://www.suse.com/security/cve/CVE-2025-40186.html * https://www.suse.com/security/cve/CVE-2025-40188.html * https://www.suse.com/security/cve/CVE-2025-40194.html * https://www.suse.com/security/cve/CVE-2025-40198.html * https://www.suse.com/security/cve/CVE-2025-40200.html * https://www.suse.com/security/cve/CVE-2025-40204.html * https://www.suse.com/security/cve/CVE-2025-40205.html * https://www.suse.com/security/cve/CVE-2025-40206.html * https://www.suse.com/security/cve/CVE-2025-40207.html * https://bugzilla.suse.com/show_bug.cgi?id=1232223 * https://bugzilla.suse.com/show_bug.cgi?id=1237888 * https://bugzilla.suse.com/show_bug.cgi?id=1243474 *https://bugzilla.suse.com/show_bug.cgi?id=1245193 * https://bugzilla.suse.com/show_bug.cgi?id=1247076 * https://bugzilla.suse.com/show_bug.cgi?id=1247079 * https://bugzilla.suse.com/show_bug.cgi?id=1247500 * https://bugzilla.suse.com/show_bug.cgi?id=1247509 * https://bugzilla.suse.com/show_bug.cgi?id=1249547 * https://bugzilla.suse.com/show_bug.cgi?id=1249912 * https://bugzilla.suse.com/show_bug.cgi?id=1249982 * https://bugzilla.suse.com/show_bug.cgi?id=1250176 * https://bugzilla.suse.com/show_bug.cgi?id=1250237 * https://bugzilla.suse.com/show_bug.cgi?id=1250252 * https://bugzilla.suse.com/show_bug.cgi?id=1250705 * https://bugzilla.suse.com/show_bug.cgi?id=1251120 * https://bugzilla.suse.com/show_bug.cgi?id=1251786 * https://bugzilla.suse.com/show_bug.cgi?id=1252063 * https://bugzilla.suse.com/show_bug.cgi?id=1252267 * https://bugzilla.suse.com/show_bug.cgi?id=1252303 * https://bugzilla.suse.com/show_bug.cgi?id=1252353 * https://bugzilla.suse.com/show_bug.cgi?id=1252681 * https://bugzilla.suse.com/show_bug.cgi?id=1252763 * https://bugzilla.suse.com/show_bug.cgi?id=1252773 * https://bugzilla.suse.com/show_bug.cgi?id=1252780 * https://bugzilla.suse.com/show_bug.cgi?id=1252794 * https://bugzilla.suse.com/show_bug.cgi?id=1252795 * https://bugzilla.suse.com/show_bug.cgi?id=1252809 * https://bugzilla.suse.com/show_bug.cgi?id=1252817 * https://bugzilla.suse.com/show_bug.cgi?id=1252821 * https://bugzilla.suse.com/show_bug.cgi?id=1252836 * https://bugzilla.suse.com/show_bug.cgi?id=1252845 * https://bugzilla.suse.com/show_bug.cgi?id=1252862 * https://bugzilla.suse.com/show_bug.cgi?id=1252912 * https://bugzilla.suse.com/show_bug.cgi?id=1252917 * https://bugzilla.suse.com/show_bug.cgi?id=1252928 * https://bugzilla.suse.com/show_bug.cgi?id=1253018 * https://bugzilla.suse.com/show_bug.cgi?id=1253176 * https://bugzilla.suse.com/show_bug.cgi?id=1253275 * https://bugzilla.suse.com/show_bug.cgi?id=1253318 *https://bugzilla.suse.com/show_bug.cgi?id=1253324 * https://bugzilla.suse.com/show_bug.cgi?id=1253349 * https://bugzilla.suse.com/show_bug.cgi?id=1253352 * https://bugzilla.suse.com/show_bug.cgi?id=1253355 * https://bugzilla.suse.com/show_bug.cgi?id=1253360 * https://bugzilla.suse.com/show_bug.cgi?id=1253362 * https://bugzilla.suse.com/show_bug.cgi?id=1253363 * https://bugzilla.suse.com/show_bug.cgi?id=1253367 * https://bugzilla.suse.com/show_bug.cgi?id=1253369 * https://bugzilla.suse.com/show_bug.cgi?id=1253393 * https://bugzilla.suse.com/show_bug.cgi?id=1253395 * https://bugzilla.suse.com/show_bug.cgi?id=1253403 * https://bugzilla.suse.com/show_bug.cgi?id=1253407 * https://bugzilla.suse.com/show_bug.cgi?id=1253409 * https://bugzilla.suse.com/show_bug.cgi?id=1253412 * https://bugzilla.suse.com/show_bug.cgi?id=1253416 * https://bugzilla.suse.com/show_bug.cgi?id=1253421 * https://bugzilla.suse.com/show_bug.cgi?id=1253423 * https://bugzilla.suse.com/show_bug.cgi?id=1253424 * https://bugzilla.suse.com/show_bug.cgi?id=1253425 * https://bugzilla.suse.com/show_bug.cgi?id=1253427 * https://bugzilla.suse.com/show_bug.cgi?id=1253428 * https://bugzilla.suse.com/show_bug.cgi?id=1253431 * https://bugzilla.suse.com/show_bug.cgi?id=1253436 * https://bugzilla.suse.com/show_bug.cgi?id=1253438 * https://bugzilla.suse.com/show_bug.cgi?id=1253440 * https://bugzilla.suse.com/show_bug.cgi?id=1253441 * https://bugzilla.suse.com/show_bug.cgi?id=1253445 * https://bugzilla.suse.com/show_bug.cgi?id=1253448 * https://bugzilla.suse.com/show_bug.cgi?id=1253449 * https://bugzilla.suse.com/show_bug.cgi?id=1253453 * https://bugzilla.suse.com/show_bug.cgi?id=1253456 * https://bugzilla.suse.com/show_bug.cgi?id=1253472 * https://bugzilla.suse.com/show_bug.cgi?id=1253779 . An important security update for openSUSE kernel addresses 65 issues with nine critical fixes to enhance system security.. openSUSE security update kernel vulnerabilities fixes. . Severity: Important.LinuxSecurity.com Team

Dec 24, 2025 •Important OpenSUSE

security advisorysecurity issuekernel update

Oracle Linux 7 ELSA-2024-12378 Critical: Kernel Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-12378 http://linux.oracle.com/errata/ELSA-2024-12378.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-4.14.35-2047.536.5.el7uek.x86_64.rpm kernel-uek-debug-4.14.35-2047.536.5.el7uek.x86_64.rpm kernel-uek-debug-devel-4.14.35-2047.536.5.el7uek.x86_64.rpm kernel-uek-devel-4.14.35-2047.536.5.el7uek.x86_64.rpm kernel-uek-tools-4.14.35-2047.536.5.el7uek.x86_64.rpm kernel-uek-doc-4.14.35-2047.536.5.el7uek.noarch.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-4.14.35-2047.536.5.el7uek.src.rpm Related CVEs: CVE-2024-1086 Description of changes: [4.14.35-2047.536.5.el7uek] - mmc: core: Fix switch on gp3 partition (Dominique Martinet) - Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"" (Song Liu) - mm/memory-failure: fix an incorrect use of tail pages (Liu Shixin) - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be mapped." (Ingo Molnar) - sched/fair: More accurate reweight_entity() (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Introduce {en,de}queue_load_avg() (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Rename {en,de}queue_entity_load_avg() (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Move enqueue migrate handling (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Change update_load_avg() arguments (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Remove se-> load.weight from se-> avg.load_sum (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Cure calc_cfs_shares() vs. reweight_entity() (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Add comment to calc_cfs_shares() (Peter Zijlstra) [Orabug: 36468903] - sched/fair: Clean up calc_cfs_shares() (Peter Zijlstra) [Orabug: 36468903] - rds/rdma: Fix congestion value for userspace consumption (Juan Garcia) [Orabug: 36264644] - rds: Include transport protocol name inrds-info -k output (Juan Garcia) [Orabug: 36264644] [4.14.35-2047.536.4.el7uek] - rds/rdma: print connection up/down time while dropping/connecting (Juan Garcia) [Orabug: 36264661] - bonding: rate-limit bonding driver inspect messages (Praveen Kumar Kannoju) [Orabug: 36223525] [4.14.35-2047.536.3.el7uek] - Revert "net/sched: Retire CBQ qdisc" (Saeed Mirzamohammadi) - Revert "net/sched: Retire ATM qdisc" (Saeed Mirzamohammadi) - Revert "net/sched: Retire dsmark qdisc" (Saeed Mirzamohammadi) [4.14.35-2047.536.2.el7uek] - netfilter: nf_tables: reject QUEUE/DROP verdict parameters (Florian Westphal) [Orabug: 36466544] {CVE-2024-1086} - RDMA/cm: add timeout to cm_destroy_id wait (Manjunath Patil) [Orabug: 36280065] - mm: avoid heavy swap lock contention when unmapping with ktask (Anthony Yznaga) [Orabug: 36201622] - mm: use less threads when unmapping some large VMAs (Anthony Yznaga) [Orabug: 36201622] - LTS version: v4.14.341 (Yifei Liu) - gpio: 74x164: Enable output pins after registers are reset (Arturas Moskvinas) - cachefiles: fix memory leak in cachefiles_add_cache() (Baokun Li) - mmc: core: Fix eMMC initialization with 1-bit bus connection (Ivan Semenov) - btrfs: dev-replace: properly validate device names (David Sterba) - wifi: nl80211: reject iftype change with mesh ID change (Johannes Berg) - gtp: fix use-after-free and null-ptr-deref in gtp_newlink() (Alexander Ofitserov) - ALSA: Drop leftover snd-rtctimer stuff from Makefile (Takashi Iwai) - power: supply: bq27xxx-i2c: Do not free non existing IRQ (Hans de Goede) - efi/capsule-loader: fix incorrect allocation size (Arnd Bergmann) - Bluetooth: Enforce validation on max value of connection interval (Kai-Heng Feng) - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST (Luiz Augusto von Dentz) - Bluetooth: Avoid potential use-after-free in hci_error_reset (Ying Hsu) - net: usb: dm9601: fix wrong return value in dm9601_mdio_read (Javier Carrasco) - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is detected(Oleksij Rempel) - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter (Ryosuke Yasuoka) - LTS version: v4.14.340 (Yifei Liu) - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio (Bart Van Assche) - KVM: arm64: vgic-its: Test for valid IRQ in its_sync_lpi_pending_table() (Oliver Upton) - PCI/MSI: Prevent MSI hardware interrupt number truncation (Vidya Sagar) - s390: use the correct count for __iowrite64_copy() (Jason Gunthorpe) - packet: move from strlcpy with unused retval to strscpy (Wolfram Sang) - ipv6: sr: fix possible use-after-free and null-ptr-deref (Vasiliy Kovalev) - nouveau: fix function cast warnings (Arnd Bergmann) - scsi: jazz_esp: Only build if SCSI core is builtin (Randy Dunlap) - RDMA/srpt: fix function pointer cast warnings (Arnd Bergmann) - RDMA/srpt: Support specifying the srpt_service_guid parameter (Bart Van Assche) - IB/hfi1: Fix a memleak in init_credit_return (Zhipeng Lu) - usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs (Krishna Kurapati) - l2tp: pass correct message length to ip6_append_data (Tom Parkin) - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp() (Vasiliy Kovalev) - dm-crypt: don't modify the data when using authenticated encryption (Mikulas Patocka) - mm: memcontrol: switch to rcu protection in drain_all_stock() (Roman Gushchin) - s390/qeth: Fix potential loss of L3-IP@ in case of network issues (Alexandra Winter) - virtio-blk: Ensure no requests in virtqueues before deleting vqs. (Yi Sun) - firewire: core: send bus reset promptly on gap count error (Takashi Sakamoto) - hwmon: (coretemp) Enlarge per package core count limit (Zhang Rui) - regulator: pwm-regulator: Add validity checks in continuous .get_voltage (Martin Blumenstingl) - ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() (Baokun Li) - ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() (Baokun Li) - ahci: asm1166: correct count of reported ports (Conrad Kostecki) - fbdev:sis: Error out if pixclock equals zero (Fullway Wang) - fbdev: savage: Error out if pixclock equals zero (Fullway Wang) - wifi: mac80211: fix race condition on enabling fast-xmit (Felix Fietkau) - wifi: cfg80211: fix missing interfaces when dumping (Michal Kazior) - dmaengine: shdma: increase size of 'dev_id' (Vinod Koul) - scsi: target: core: Add TMF to tmr_list handling (Dmitry Bogdanov) - sched/rt: Disallow writing invalid values to sched_rt_period_us (Cyril Hrubis) - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset (Cyril Hrubis) - sched/rt: Fix sysctl_sched_rr_timeslice intial value (Cyril Hrubis) - nilfs2: replace WARN_ONs for invalid DAT metadata block requests (Ryusuke Konishi) - memcg: add refcnt for pcpu stock to avoid UAF problem in drain_all_stock() (GONG, Ruiqi) - net/sched: Retire dsmark qdisc (Jamal Hadi Salim) - net/sched: Retire ATM qdisc (Jamal Hadi Salim) - net/sched: Retire CBQ qdisc (Jamal Hadi Salim) - LTS version: v4.14.339 (Yifei Liu) - PCI: Only override AMD USB controller if required (Guilherme G. Piccoli) - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval() (Dan Carpenter) - lsm: new security_file_ioctl_compat() hook (Alfred Piccioni) - nilfs2: fix potential bug in end_buffer_async_write (Ryusuke Konishi) - sched/membarrier: reduce the ability to hammer on sys_membarrier (Linus Torvalds) - Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d" (Junxiao Bi) - pmdomain: core: Move the unused cleanup to a _sync initcall (Konrad Dybcio) - irqchip/irq-brcmstb-l2: Add write memory barrier before exit (Doug Berger) - nfp: use correct macro for LengthSelect in BAR config (Daniel Basilio) - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers() (Ryusuke Konishi) - nilfs2: fix data corruption in dsync block recovery for small block sizes (Ryusuke Konishi) - ALSA: hda/conexant: Add quirk for SWS JS201D (bo liu) - x86/mm/ident_map: Use gbpages only where full GB page should be mapped. (Steve Wahl) - staging: iio: ad5933: fixtype mismatch regression (David Schiller) - ext4: fix double-free of blocks due to wrong extents moved_len (Baokun Li) - nfc: nci: free rx_data_reassembly skb on NCI device cleanup (Fedor Pchelkin) - firewire: core: correct documentation of fw_csr_string() kernel API (Takashi Sakamoto) - scsi: Revert "scsi: fcoe: Fix potential deadlock on &fip-> ctlr_lock" (Lee Duncan) - usb: f_mass_storage: forbid async queue when shutdown happen (yuan linyu) - USB: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT (Oliver Neukum) - HID: wacom: Do not register input devices until after hid_hw_start (Jason Gerecke) - HID: wacom: generic: Avoid reporting a serial of '0' to userspace (Tatsunosuke Tobita) - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (Zach O'Keefe) - tracing/trigger: Fix to return error if failed to alloc snapshot (Masami Hiramatsu (Google)) - i40e: Fix waiting for queues of all VSIs to be disabled (Ivan Vecera) - MIPS: Add 'memory' clobber to csum_ipv6_magic() inline assembler (Guenter Roeck) path for statistics (Breno Leitao) - Documentation: net-sysfs: describe missing statistics (Julian Wiedmann) - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work() (Alexey Khoroshilov) - spi: ppc4xx: Drop write-only variable (Uwe Kleine-KÃ¶nig) - btrfs: send: return EOPNOTSUPP on unknown flags (David Sterba) - vhost: use kzalloc() instead of kmalloc() followed by memset() (Prathu Baronia) - Input: atkbd - skip ATKBD_CMD_SETLEDS when skipping ATKBD_CMD_GETID (Hans de Goede) - USB: serial: cp210x: add ID for IMST iM871A-USB (Leonard Dallmayr) - USB: serial: option: add Fibocom FM101-GL variant (Puliang Lu) - USB: serial: qcserial: add new usb-id for Dell Wireless DW5826e (JackBB Wu) - net/af_iucv: clean up a try_then_request_module() (Julian Wiedmann) - netfilter: nft_compat: restrict match/target protocol to u16 (Pablo Neira Ayuso) - netfilter: nft_compat: reject unused compat flag (Pablo Neira Ayuso) - ppp_async: limit MRU to 64K (Eric Dumazet) - tipc:Check the bearer type before calling tipc_udp_nl_bearer_add() (Shigeru Yoshida) - rxrpc: Fix response to PING RESPONSE ACKs to a dead call (David Howells) - inet: read sk-> sk_family once in inet_recv_error() (Eric Dumazet) - hwmon: (aspeed-pwm-tacho) mutex for tach reading (Loic Prylli) - atm: idt77252: fix a memleak in open_card_ubr0 (Zhipeng Lu) - phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP (Tony Lindgren) - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV (Frank Li) - bonding: remove print in bond_verify_device_path (Zhengchao Shao) - HID: apple: Add 2021 magic keyboard FN key mapping (Benjamin Berg) - HID: apple: Add support for the 2021 Magic Keyboard (Alex Henrie) - HID: apple: Swap the Fn and Left Control keys on Apple keyboards (free5lot) path (Breno Leitao) - af_unix: fix lockdep positive in sk_diag_dump_icons() (Eric Dumazet) - net: ipv4: fix a memleak in ip_setup_cork (Zhipeng Lu) - net: Fix one possible memleak in ip_setup_cork (Gao Feng) - netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting logger (Pablo Neira Ayuso) - llc: call sock_orphan() at release time (Eric Dumazet) - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses (Helge Deller) - ixgbe: Fix an error handling path in ixgbe_read_iosf_sb_reg_x550() (Christophe JAILLET) - ixgbe: Refactor overtemp event handling (Jedrzej Jagielski) - ixgbe: Remove non-inclusive language (Piotr Skajewski) - net: remove unneeded break (Tom Rix) - scsi: isci: Fix an error code problem in isci_io_request_build() (Su Hui) - wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update (Edward Adam Davis) - drm/amdgpu: Release 'adev-> pm.fw' before return in 'amdgpu_device_need_post()' (Srinivasan Shanmugam) - ceph: fix deadlock or deadcode of misusing dget() (Xiubo Li) - virtio_net: Fix "â%dâ directive writing between 1 and 11 bytes into a region of size 10" warnings (Zhu Yanjun) - libsubcmd: Fix memory leak in uniq() (Ian Rogers) - usb: hub: Replacehardcoded quirk value with BIT() macro (Hardik Gajjar) - mfd: ti_am335x_tscadc: Fix TI SoC dependencies (Peter Robinson) - um: net: Fix return type of uml_net_start_xmit() (Nathan Chancellor) - um: Don't use vfprintf() for os_info() (Benjamin Berg) - um: Fix naming clash between UML and scheduler (Anton Ivanov) - leds: trigger: panic: Don't register panic notifier if creating the trigger failed (Heiner Kallweit) - clk: mmp: pxa168: Fix memory leak in pxa168_clk_init() (Kuan-Wei Chiu) - clk: hi3620: Fix memory leak in hi3620_mmc_clk_init() (Kuan-Wei Chiu) - media: ddbridge: fix an error code problem in ddb_probe (Su Hui) - IB/ipoib: Fix mcast list locking (Daniel Vacek) - drm/exynos: Call drm_atomic_helper_shutdown() at shutdown/unbind time (Douglas Anderson) - ALSA: hda: Intel: add HDA_ARL PCI ID support (Pierre-Louis Bossart) - ALSA: hda: Add Icelake PCI ID (Guneshwor Singh) - PCI: add INTEL_HDA_ARL to pci_ids.h (Pierre-Louis Bossart) - media: stk1160: Fixed high volume of stk1160_dbg messages (Ghanshyam Agrawal) - drm/mipi-dsi: Fix detach call without attach (Tomi Valkeinen) - drm/framebuffer: Fix use of uninitialized variable (Tomi Valkeinen) - drm/drm_file: fix use of uninitialized variable (Tomi Valkeinen) - RDMA/IPoIB: Fix error code return in ipoib_mcast_join (Jack Wang) - fast_dput(): handle underflows gracefully (Al Viro) - ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument (Cristian Ciocaltea) - wifi: cfg80211: free beacon_ies when overridden from hidden BSS (Benjamin Berg) - wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift() (Su Hui) - wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices (Zenm Chen) - md: Whenassemble the array, consult the superblock of the freshest device (Alex Lyakas) - ARM: dts: imx23/28: Fix the DMA controller node name (Fabio Estevam) - ARM: dts: imx23-sansa: Use preferred i2c-gpios properties (Fabio Estevam) - ARM: dts: imx27-apf27dev: Fix LED name (Fabio Estevam) - ARM: dts: imx1: Fix sram node (Fabio Estevam) - ARM: dts: imx27:Fix sram node (Fabio Estevam) - ARM: dts: imx: Use flash@0,0 pattern (Fabio Estevam) - ARM: dts: imx25/27-eukrea: Fix RTC node name (Fabio Estevam) - ARM: dts: rockchip: fix rk3036 hdmi ports node (Johan Jonker) - scsi: libfc: Fix up timeout error in fc_fcp_rec_error() (Hannes Reinecke) - scsi: libfc: Don't schedule abort twice (Hannes Reinecke) - bpf: Add map and need_defer parameters to .map_fd_put_ptr() (Hou Tao) - wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() (Minsuk Kang) - ARM: dts: imx7s: Fix nand-controller #size-cells (Alexander Stein) - ARM: dts: imx7s: Fix lcdif compatible (Alexander Stein) - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk (Zhengchao Shao) - PCI: Add no PM reset quirk for NVIDIA Spectrum devices (Ido Schimmel) - scsi: lpfc: Fix possible file string name overflow when updating firmware (Justin Tee) - ext4: unify the type of flexbg_size to unsigned int (Baokun Li) - SUNRPC: Fix a suspicious RCU usage warning (Anna Schumaker) - KVM: s390: fix setting of fpc register (Heiko Carstens) - s390/ptrace: handle setting of fpc register correctly (Heiko Carstens) - jfs: fix array-index-out-of-bounds in diNewExt (Edward Adam Davis) - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock() (Oleg Nesterov) - pstore/ram: Fix crash when setting number of cpus to an odd number (Weichen Chen) - jfs: fix uaf in jfs_evict_inode (Edward Adam Davis) - jfs: fix array-index-out-of-bounds in dbAdjTree (Manas Ghandat) - jfs: fix slab-out-of-bounds Read in dtSearch (Manas Ghandat) - UBSAN: array-index-out-of-bounds in dtSplitRoot (Osama Muhammad) - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree (Osama Muhammad) - ACPI: extlog: fix NULL pointer dereference check (Prarit Bhargava) - PNP: ACPI: fix fortify warning (Dmitry Antipov) - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop (Yuluo Qiu) - audit: Send netlink ACK before setting connection in auditd_set (Chris Riches) - powerpc/lib: Validate size for vectoroperations (Naveen N Rao) - powerpc/mm: Fix build failures due to arch_reserved_kernel_pages() (Michael Ellerman) - powerpc: Fix build error due to is_valid_bugaddr() (Michael Ellerman) - powerpc/mm: Fix null-pointer dereference in pgtable_cache_add (Kunwu Chan) - tick/sched: Preserve number of idle sleeps across CPU hotplug events (Tim Chen) - mips: Call lose_fpu(0) before initializing fcr31 in mips_set_personality_nan (Xi Ruoyao) - drm/bridge: nxp-ptn3460: simplify some error checking (Dan Carpenter) - drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking (Dan Carpenter) - drm: Don't unref the same fb many times by mistake due to deadlock handling (Ville SyrjÃ¤lÃ¤) - gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04 (Mario Limonciello) - btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args (Qu Wenruo) - btrfs: don't warn if discard range is not aligned to sector (David Sterba) - net: fec: fix the unhandled context fault from smmu (Shenwei Wang) - fjes: fix memleaks in fjes_hw_setup (Zhipeng Lu) - netfilter: nf_tables: restrict anonymous set and map names to 16 bytes (Florian Westphal) - net/mlx5e: fix a double-free in arfs_create_groups (Zhipeng Lu) - net/mlx5: Use kfree(ft-> g) in arfs_create_groups() (Denis Efremov) - netlink: fix potential sleeping issue in mqueue_flush_file (Zhengchao Shao) - tcp: Add memory barrier to tcp_push() (Salvatore Dipietro) - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv (Sharath Srinivasan) - llc: Drop support for ETH_P_TR_802_2. (Kuniyuki Iwashima) - llc: make llc_ui_sendmsg() more robust against bonding changes (Eric Dumazet) - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING (Lin Ma) - drivers: core: fix kernel-doc markup for dev_err_probe() (Mauro Carvalho Chehab) - driver code: print symbolic error code (MichaÅ MirosÅaw) - Revert "driver core: Annotate dev_err_probe() with __must_check" (Greg Kroah-Hartman) - driver core: Annotate dev_err_probe() with __must_check (Andy Shevchenko) -x86/CPU/AMD: Fix disabling XSAVES on AMD family 0x17 due to erratum (Maciej S. Szmigiero) - powerpc: Use always instead of always-y in for crtsavres.o (Nathan Chancellor) - block: Remove special-casing of compound pages (Matthew Wilcox (Oracle)) - parisc/firmware: Fix F-extend for PDC addresses (Helge Deller) - rpmsg: virtio: Free driver_override when rpmsg_remove() (Xiaolei Wang) - hwrng: core - Fix page fault dead lock on mmap-ed hwrng (Herbert Xu) - PM: hibernate: Enforce ordering during image compression/decompression (Hongchen Zhang) - crypto: api - Disallow identical driver names (Herbert Xu) - serial: sc16is7xx: add check for unsupported SPI modes during probe (Hugo Villeneuve) - spi: introduce SPI_MODE_X_MASK macro (Oleksij Rempel) - driver core: add device probe log helper (Andrzej Hajda) - serial: sc16is7xx: set safe default SPI clock frequency (Hugo Villeneuve) - units: add the HZ macros (Daniel Lezcano) - units: change from 'L' to 'UL' (Daniel Lezcano) - units: Add Watt units (Daniel Lezcano) - include/linux/units.h: add helpers for kelvin to/from Celsius conversion (Akinobu Mita) - PCI: mediatek: Clear interrupt status before dispatching handler (qizhong cheng) [4.14.35-2047.536.1.el7uek] - ext4: fix corruption during on-line resize (Maximilian Heyne) [Orabug: 36242427] _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux 7 requires important kernel patches due to significant security flaws. Visit the advisory page for comprehensive information.. Oracle Linux, Kernel Update, Critical Patch, Security Fix, Software Update. . Severity: Critical. LinuxSecurity.com Team

May 14, 2024 •Critical Oracle

Banner 2 1028x280 1708121730 1 1771599631

security advisoryRed Hatsoftware release

Red Hat: RHSA-2023-3612-01 Critical: OpenShift 4.13.4 Security Issues

Red Hat OpenShift Container Platform release 4.13.4 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: OpenShift Container Platform 4.13.4 packages and security update Advisory ID: RHSA-2023:3612-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:3612 Issue date: 2023-06-23 CVE Names: CVE-2022-41717 CVE-2022-41724 CVE-2022-41725 CVE-2023-24534 CVE-2023-24536 CVE-2023-24537 CVE-2023-24538 CVE-2023-24540 CVE-2023-27561 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.13.4 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a security impact of [impact]. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.13 - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.13.4. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2023:3614 Security Fix(es): * golang: html/template: improper handling ofJavaScript whitespace (CVE-2023-24540) * golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests (CVE-2022-41717) * golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724) * golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725) * golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534) * golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536) * golang: go/parser: Infinite loop in parsing (CVE-2023-24537) * golang: html/template: backticks not treated as string delimiters(CVE-2023-24538) * runc: volume mount race condition (regression of CVE 2019-19921) (CVE-2023-27561) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/updating_clusters/updating-cluster-cli 4. Solution: For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes/ocp-4-13-release-notes 5. Bugs fixed (https://bugzilla.redhat.com/): 2161274 - CVE-2022-41717 golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests 2175721 - CVE-2023-27561 runc: volume mount race condition (regression of CVE-2019-19921) 2178488 - CVE-2022-41725 golang: net/http,mime/multipart: denial of service from excessive resource consumption 2178492 - CVE-2022-41724 golang: crypto/tls: large handshake records may cause panics 2184481 - CVE-2023-24538 golang: html/template: backticks not treated as string delimiters2184482 - CVE-2023-24536 golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption 2184483 - CVE-2023-24534 golang: net/http, net/textproto: denial of service from excessive memory allocation 2184484 - CVE-2023-24537 golang: go/parser: Infinite loop in parsing 2196027 - CVE-2023-24540 golang: html/template: improper handling of JavaScript whitespace 6. Package List: Red Hat OpenShift Container Platform4.13: Source: buildah-1.29.1-2.rhaos4.13.el8.src.rpm conmon-2.1.7-2.rhaos4.13.el8.src.rpm containernetworking-plugins-1.0.1-7.rhaos4.13.el8.src.rpm cri-o-1.26.3-9.rhaos4.13.git994242a.el8.src.rpm openshift-4.13.0-202306072143.p0.g7d22122.assembly.stream.el8.src.rpm podman-4.4.1-4.rhaos4.13.el8.src.rpm runc-1.1.6-4.rhaos4.13.el8.src.rpm skopeo-1.11.2-2.rhaos4.13.el8.src.rpm aarch64: buildah-1.29.1-2.rhaos4.13.el8.aarch64.rpm buildah-debuginfo-1.29.1-2.rhaos4.13.el8.aarch64.rpm buildah-debugsource-1.29.1-2.rhaos4.13.el8.aarch64.rpm buildah-tests-1.29.1-2.rhaos4.13.el8.aarch64.rpm buildah-tests-debuginfo-1.29.1-2.rhaos4.13.el8.aarch64.rpm conmon-2.1.7-2.rhaos4.13.el8.aarch64.rpm conmon-debuginfo-2.1.7-2.rhaos4.13.el8.aarch64.rpm conmon-debugsource-2.1.7-2.rhaos4.13.el8.aarch64.rpm containernetworking-plugins-1.0.1-7.rhaos4.13.el8.aarch64.rpm containernetworking-plugins-debuginfo-1.0.1-7.rhaos4.13.el8.aarch64.rpm containernetworking-plugins-debugsource-1.0.1-7.rhaos4.13.el8.aarch64.rpm cri-o-1.26.3-9.rhaos4.13.git994242a.el8.aarch64.rpm cri-o-debuginfo-1.26.3-9.rhaos4.13.git994242a.el8.aarch64.rpm cri-o-debugsource-1.26.3-9.rhaos4.13.git994242a.el8.aarch64.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el8.aarch64.rpm podman-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-catatonit-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-catatonit-debuginfo-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-debuginfo-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-debugsource-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-gvproxy-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-gvproxy-debuginfo-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-plugins-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-plugins-debuginfo-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-remote-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-remote-debuginfo-4.4.1-4.rhaos4.13.el8.aarch64.rpm podman-tests-4.4.1-4.rhaos4.13.el8.aarch64.rpm runc-1.1.6-4.rhaos4.13.el8.aarch64.rpm runc-debuginfo-1.1.6-4.rhaos4.13.el8.aarch64.rpm runc-debugsource-1.1.6-4.rhaos4.13.el8.aarch64.rpm skopeo-1.11.2-2.rhaos4.13.el8.aarch64.rpm skopeo-tests-1.11.2-2.rhaos4.13.el8.aarch64.rpm noarch: podman-docker-4.4.1-4.rhaos4.13.el8.noarch.rpm ppc64le: buildah-1.29.1-2.rhaos4.13.el8.ppc64le.rpm buildah-debuginfo-1.29.1-2.rhaos4.13.el8.ppc64le.rpm buildah-debugsource-1.29.1-2.rhaos4.13.el8.ppc64le.rpm buildah-tests-1.29.1-2.rhaos4.13.el8.ppc64le.rpm buildah-tests-debuginfo-1.29.1-2.rhaos4.13.el8.ppc64le.rpm conmon-2.1.7-2.rhaos4.13.el8.ppc64le.rpm conmon-debuginfo-2.1.7-2.rhaos4.13.el8.ppc64le.rpm conmon-debugsource-2.1.7-2.rhaos4.13.el8.ppc64le.rpm containernetworking-plugins-1.0.1-7.rhaos4.13.el8.ppc64le.rpm containernetworking-plugins-debuginfo-1.0.1-7.rhaos4.13.el8.ppc64le.rpm containernetworking-plugins-debugsource-1.0.1-7.rhaos4.13.el8.ppc64le.rpm cri-o-1.26.3-9.rhaos4.13.git994242a.el8.ppc64le.rpm cri-o-debuginfo-1.26.3-9.rhaos4.13.git994242a.el8.ppc64le.rpm cri-o-debugsource-1.26.3-9.rhaos4.13.git994242a.el8.ppc64le.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el8.ppc64le.rpm podman-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-catatonit-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-catatonit-debuginfo-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-debuginfo-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-debugsource-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-gvproxy-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-gvproxy-debuginfo-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-plugins-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-plugins-debuginfo-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-remote-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-remote-debuginfo-4.4.1-4.rhaos4.13.el8.ppc64le.rpm podman-tests-4.4.1-4.rhaos4.13.el8.ppc64le.rpm runc-1.1.6-4.rhaos4.13.el8.ppc64le.rpm runc-debuginfo-1.1.6-4.rhaos4.13.el8.ppc64le.rpm runc-debugsource-1.1.6-4.rhaos4.13.el8.ppc64le.rpm skopeo-1.11.2-2.rhaos4.13.el8.ppc64le.rpm skopeo-tests-1.11.2-2.rhaos4.13.el8.ppc64le.rpm s390x: buildah-1.29.1-2.rhaos4.13.el8.s390x.rpm buildah-debuginfo-1.29.1-2.rhaos4.13.el8.s390x.rpm buildah-debugsource-1.29.1-2.rhaos4.13.el8.s390x.rpm buildah-tests-1.29.1-2.rhaos4.13.el8.s390x.rpm buildah-tests-debuginfo-1.29.1-2.rhaos4.13.el8.s390x.rpm conmon-2.1.7-2.rhaos4.13.el8.s390x.rpm conmon-debuginfo-2.1.7-2.rhaos4.13.el8.s390x.rpm conmon-debugsource-2.1.7-2.rhaos4.13.el8.s390x.rpm containernetworking-plugins-1.0.1-7.rhaos4.13.el8.s390x.rpm containernetworking-plugins-debuginfo-1.0.1-7.rhaos4.13.el8.s390x.rpm containernetworking-plugins-debugsource-1.0.1-7.rhaos4.13.el8.s390x.rpm cri-o-1.26.3-9.rhaos4.13.git994242a.el8.s390x.rpm cri-o-debuginfo-1.26.3-9.rhaos4.13.git994242a.el8.s390x.rpm cri-o-debugsource-1.26.3-9.rhaos4.13.git994242a.el8.s390x.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el8.s390x.rpm podman-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-catatonit-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-catatonit-debuginfo-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-debuginfo-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-debugsource-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-gvproxy-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-gvproxy-debuginfo-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-plugins-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-plugins-debuginfo-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-remote-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-remote-debuginfo-4.4.1-4.rhaos4.13.el8.s390x.rpm podman-tests-4.4.1-4.rhaos4.13.el8.s390x.rpm runc-1.1.6-4.rhaos4.13.el8.s390x.rpm runc-debuginfo-1.1.6-4.rhaos4.13.el8.s390x.rpm runc-debugsource-1.1.6-4.rhaos4.13.el8.s390x.rpm skopeo-1.11.2-2.rhaos4.13.el8.s390x.rpm skopeo-tests-1.11.2-2.rhaos4.13.el8.s390x.rpm x86_64: buildah-1.29.1-2.rhaos4.13.el8.x86_64.rpm buildah-debuginfo-1.29.1-2.rhaos4.13.el8.x86_64.rpm buildah-debugsource-1.29.1-2.rhaos4.13.el8.x86_64.rpm buildah-tests-1.29.1-2.rhaos4.13.el8.x86_64.rpm buildah-tests-debuginfo-1.29.1-2.rhaos4.13.el8.x86_64.rpm conmon-2.1.7-2.rhaos4.13.el8.x86_64.rpm conmon-debuginfo-2.1.7-2.rhaos4.13.el8.x86_64.rpm conmon-debugsource-2.1.7-2.rhaos4.13.el8.x86_64.rpm containernetworking-plugins-1.0.1-7.rhaos4.13.el8.x86_64.rpm containernetworking-plugins-debuginfo-1.0.1-7.rhaos4.13.el8.x86_64.rpm containernetworking-plugins-debugsource-1.0.1-7.rhaos4.13.el8.x86_64.rpm cri-o-1.26.3-9.rhaos4.13.git994242a.el8.x86_64.rpm cri-o-debuginfo-1.26.3-9.rhaos4.13.git994242a.el8.x86_64.rpm cri-o-debugsource-1.26.3-9.rhaos4.13.git994242a.el8.x86_64.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el8.x86_64.rpm podman-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-catatonit-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-catatonit-debuginfo-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-debuginfo-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-debugsource-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-gvproxy-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-gvproxy-debuginfo-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-plugins-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-plugins-debuginfo-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-remote-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-remote-debuginfo-4.4.1-4.rhaos4.13.el8.x86_64.rpm podman-tests-4.4.1-4.rhaos4.13.el8.x86_64.rpm runc-1.1.6-4.rhaos4.13.el8.x86_64.rpm runc-debuginfo-1.1.6-4.rhaos4.13.el8.x86_64.rpm runc-debugsource-1.1.6-4.rhaos4.13.el8.x86_64.rpm skopeo-1.11.2-2.rhaos4.13.el8.x86_64.rpm skopeo-tests-1.11.2-2.rhaos4.13.el8.x86_64.rpm Red Hat OpenShift Container Platform4.13: Source: buildah-1.29.1-2.1.rhaos4.13.el9.src.rpm conmon-2.1.7-2.1.rhaos4.13.el9.src.rpm cri-o-1.26.3-10.rhaos4.13.git994242a.el9.src.rpm kernel-5.14.0-284.18.1.el9_2.src.rpm kernel-rt-5.14.0-284.18.1.rt14.303.el9_2.src.rpm openshift-4.13.0-202306072143.p0.g7d22122.assembly.stream.el9.src.rpm podman-4.4.1-5.1.rhaos4.13.el9.src.rpm skopeo-1.11.2-2.1.rhaos4.13.el9.src.rpm aarch64: bpftool-7.0.0-284.18.1.el9_2.aarch64.rpm bpftool-debuginfo-7.0.0-284.18.1.el9_2.aarch64.rpm buildah-1.29.1-2.1.rhaos4.13.el9.aarch64.rpm buildah-debuginfo-1.29.1-2.1.rhaos4.13.el9.aarch64.rpm buildah-debugsource-1.29.1-2.1.rhaos4.13.el9.aarch64.rpm buildah-tests-1.29.1-2.1.rhaos4.13.el9.aarch64.rpm buildah-tests-debuginfo-1.29.1-2.1.rhaos4.13.el9.aarch64.rpm conmon-2.1.7-2.1.rhaos4.13.el9.aarch64.rpm conmon-debuginfo-2.1.7-2.1.rhaos4.13.el9.aarch64.rpm conmon-debugsource-2.1.7-2.1.rhaos4.13.el9.aarch64.rpm cri-o-1.26.3-10.rhaos4.13.git994242a.el9.aarch64.rpm cri-o-debuginfo-1.26.3-10.rhaos4.13.git994242a.el9.aarch64.rpm cri-o-debugsource-1.26.3-10.rhaos4.13.git994242a.el9.aarch64.rpm kernel-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-debuginfo-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-devel-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-devel-matched-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-modules-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-modules-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-modules-extra-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-modules-internal-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debug-modules-partner-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-debuginfo-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-devel-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-devel-matched-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-modules-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-modules-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-modules-extra-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-modules-internal-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-64k-modules-partner-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-cross-headers-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-debuginfo-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-devel-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-devel-matched-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-modules-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-modules-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-modules-extra-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-modules-internal-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debug-modules-partner-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debuginfo-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-debuginfo-common-aarch64-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-devel-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-devel-matched-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-headers-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-modules-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-modules-core-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-modules-extra-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-modules-internal-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-modules-partner-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-selftests-internal-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-tools-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-tools-debuginfo-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-tools-libs-5.14.0-284.18.1.el9_2.aarch64.rpm kernel-tools-libs-devel-5.14.0-284.18.1.el9_2.aarch64.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el9.aarch64.rpm perf-5.14.0-284.18.1.el9_2.aarch64.rpm perf-debuginfo-5.14.0-284.18.1.el9_2.aarch64.rpm podman-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-debuginfo-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-debugsource-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-gvproxy-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-gvproxy-debuginfo-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-plugins-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-plugins-debuginfo-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-remote-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-remote-debuginfo-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm podman-tests-4.4.1-5.1.rhaos4.13.el9.aarch64.rpm python3-perf-5.14.0-284.18.1.el9_2.aarch64.rpm python3-perf-debuginfo-5.14.0-284.18.1.el9_2.aarch64.rpm rtla-5.14.0-284.18.1.el9_2.aarch64.rpm skopeo-1.11.2-2.1.rhaos4.13.el9.aarch64.rpm skopeo-debuginfo-1.11.2-2.1.rhaos4.13.el9.aarch64.rpm skopeo-debugsource-1.11.2-2.1.rhaos4.13.el9.aarch64.rpm skopeo-tests-1.11.2-2.1.rhaos4.13.el9.aarch64.rpm noarch: kernel-abi-stablelists-5.14.0-284.18.1.el9_2.noarch.rpm kernel-doc-5.14.0-284.18.1.el9_2.noarch.rpm podman-docker-4.4.1-5.1.rhaos4.13.el9.noarch.rpm ppc64le: bpftool-7.0.0-284.18.1.el9_2.ppc64le.rpm bpftool-debuginfo-7.0.0-284.18.1.el9_2.ppc64le.rpm buildah-1.29.1-2.1.rhaos4.13.el9.ppc64le.rpm buildah-debuginfo-1.29.1-2.1.rhaos4.13.el9.ppc64le.rpm buildah-debugsource-1.29.1-2.1.rhaos4.13.el9.ppc64le.rpm buildah-tests-1.29.1-2.1.rhaos4.13.el9.ppc64le.rpm buildah-tests-debuginfo-1.29.1-2.1.rhaos4.13.el9.ppc64le.rpm conmon-2.1.7-2.1.rhaos4.13.el9.ppc64le.rpm conmon-debuginfo-2.1.7-2.1.rhaos4.13.el9.ppc64le.rpm conmon-debugsource-2.1.7-2.1.rhaos4.13.el9.ppc64le.rpm cri-o-1.26.3-10.rhaos4.13.git994242a.el9.ppc64le.rpm cri-o-debuginfo-1.26.3-10.rhaos4.13.git994242a.el9.ppc64le.rpm cri-o-debugsource-1.26.3-10.rhaos4.13.git994242a.el9.ppc64le.rpm kernel-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-core-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-cross-headers-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-core-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-debuginfo-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-devel-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-devel-matched-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-modules-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-modules-core-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-modules-extra-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-modules-internal-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debug-modules-partner-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debuginfo-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-debuginfo-common-ppc64le-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-devel-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-devel-matched-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-headers-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-ipaclones-internal-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-modules-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-modules-core-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-modules-extra-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-modules-internal-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-modules-partner-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-selftests-internal-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-tools-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-tools-debuginfo-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-tools-libs-5.14.0-284.18.1.el9_2.ppc64le.rpm kernel-tools-libs-devel-5.14.0-284.18.1.el9_2.ppc64le.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el9.ppc64le.rpm perf-5.14.0-284.18.1.el9_2.ppc64le.rpm perf-debuginfo-5.14.0-284.18.1.el9_2.ppc64le.rpm podman-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-debuginfo-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-debugsource-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-gvproxy-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-gvproxy-debuginfo-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-plugins-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-plugins-debuginfo-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-remote-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-remote-debuginfo-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm podman-tests-4.4.1-5.1.rhaos4.13.el9.ppc64le.rpm python3-perf-5.14.0-284.18.1.el9_2.ppc64le.rpm python3-perf-debuginfo-5.14.0-284.18.1.el9_2.ppc64le.rpm rtla-5.14.0-284.18.1.el9_2.ppc64le.rpm skopeo-1.11.2-2.1.rhaos4.13.el9.ppc64le.rpm skopeo-debuginfo-1.11.2-2.1.rhaos4.13.el9.ppc64le.rpm skopeo-debugsource-1.11.2-2.1.rhaos4.13.el9.ppc64le.rpm skopeo-tests-1.11.2-2.1.rhaos4.13.el9.ppc64le.rpm s390x: bpftool-7.0.0-284.18.1.el9_2.s390x.rpm bpftool-debuginfo-7.0.0-284.18.1.el9_2.s390x.rpm buildah-1.29.1-2.1.rhaos4.13.el9.s390x.rpm buildah-debuginfo-1.29.1-2.1.rhaos4.13.el9.s390x.rpm buildah-debugsource-1.29.1-2.1.rhaos4.13.el9.s390x.rpm buildah-tests-1.29.1-2.1.rhaos4.13.el9.s390x.rpm buildah-tests-debuginfo-1.29.1-2.1.rhaos4.13.el9.s390x.rpm conmon-2.1.7-2.1.rhaos4.13.el9.s390x.rpm conmon-debuginfo-2.1.7-2.1.rhaos4.13.el9.s390x.rpm conmon-debugsource-2.1.7-2.1.rhaos4.13.el9.s390x.rpm cri-o-1.26.3-10.rhaos4.13.git994242a.el9.s390x.rpm cri-o-debuginfo-1.26.3-10.rhaos4.13.git994242a.el9.s390x.rpm cri-o-debugsource-1.26.3-10.rhaos4.13.git994242a.el9.s390x.rpm kernel-5.14.0-284.18.1.el9_2.s390x.rpm kernel-core-5.14.0-284.18.1.el9_2.s390x.rpm kernel-cross-headers-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-core-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-debuginfo-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-devel-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-devel-matched-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-modules-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-modules-core-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-modules-extra-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-modules-internal-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debug-modules-partner-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debuginfo-5.14.0-284.18.1.el9_2.s390x.rpm kernel-debuginfo-common-s390x-5.14.0-284.18.1.el9_2.s390x.rpm kernel-devel-5.14.0-284.18.1.el9_2.s390x.rpm kernel-devel-matched-5.14.0-284.18.1.el9_2.s390x.rpm kernel-headers-5.14.0-284.18.1.el9_2.s390x.rpm kernel-modules-5.14.0-284.18.1.el9_2.s390x.rpm kernel-modules-core-5.14.0-284.18.1.el9_2.s390x.rpm kernel-modules-extra-5.14.0-284.18.1.el9_2.s390x.rpm kernel-modules-internal-5.14.0-284.18.1.el9_2.s390x.rpm kernel-modules-partner-5.14.0-284.18.1.el9_2.s390x.rpm kernel-selftests-internal-5.14.0-284.18.1.el9_2.s390x.rpm kernel-tools-5.14.0-284.18.1.el9_2.s390x.rpm kernel-tools-debuginfo-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-core-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-debuginfo-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-devel-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-devel-matched-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-modules-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-modules-core-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-modules-extra-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-modules-internal-5.14.0-284.18.1.el9_2.s390x.rpm kernel-zfcpdump-modules-partner-5.14.0-284.18.1.el9_2.s390x.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el9.s390x.rpm perf-5.14.0-284.18.1.el9_2.s390x.rpm perf-debuginfo-5.14.0-284.18.1.el9_2.s390x.rpm podman-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-debuginfo-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-debugsource-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-gvproxy-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-gvproxy-debuginfo-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-plugins-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-plugins-debuginfo-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-remote-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-remote-debuginfo-4.4.1-5.1.rhaos4.13.el9.s390x.rpm podman-tests-4.4.1-5.1.rhaos4.13.el9.s390x.rpm python3-perf-5.14.0-284.18.1.el9_2.s390x.rpm python3-perf-debuginfo-5.14.0-284.18.1.el9_2.s390x.rpm rtla-5.14.0-284.18.1.el9_2.s390x.rpm skopeo-1.11.2-2.1.rhaos4.13.el9.s390x.rpm skopeo-debuginfo-1.11.2-2.1.rhaos4.13.el9.s390x.rpm skopeo-debugsource-1.11.2-2.1.rhaos4.13.el9.s390x.rpm skopeo-tests-1.11.2-2.1.rhaos4.13.el9.s390x.rpm x86_64: bpftool-7.0.0-284.18.1.el9_2.x86_64.rpm bpftool-debuginfo-7.0.0-284.18.1.el9_2.x86_64.rpm buildah-1.29.1-2.1.rhaos4.13.el9.x86_64.rpm buildah-debuginfo-1.29.1-2.1.rhaos4.13.el9.x86_64.rpm buildah-debugsource-1.29.1-2.1.rhaos4.13.el9.x86_64.rpm buildah-tests-1.29.1-2.1.rhaos4.13.el9.x86_64.rpm buildah-tests-debuginfo-1.29.1-2.1.rhaos4.13.el9.x86_64.rpm conmon-2.1.7-2.1.rhaos4.13.el9.x86_64.rpm conmon-debuginfo-2.1.7-2.1.rhaos4.13.el9.x86_64.rpm conmon-debugsource-2.1.7-2.1.rhaos4.13.el9.x86_64.rpm cri-o-1.26.3-10.rhaos4.13.git994242a.el9.x86_64.rpm cri-o-debuginfo-1.26.3-10.rhaos4.13.git994242a.el9.x86_64.rpm cri-o-debugsource-1.26.3-10.rhaos4.13.git994242a.el9.x86_64.rpm kernel-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-core-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-cross-headers-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-core-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-debuginfo-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-devel-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-devel-matched-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-modules-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-modules-core-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-modules-extra-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-modules-internal-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-modules-partner-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debug-uki-virt-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debuginfo-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-debuginfo-common-x86_64-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-devel-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-devel-matched-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-headers-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-ipaclones-internal-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-modules-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-modules-core-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-modules-extra-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-modules-internal-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-modules-partner-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-rt-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-core-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-core-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-debuginfo-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-devel-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-devel-matched-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-kvm-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-modules-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-modules-core-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-modules-extra-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-modules-internal-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debug-modules-partner-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debuginfo-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-debuginfo-common-x86_64-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-devel-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-devel-matched-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-kvm-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-modules-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-modules-core-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-modules-extra-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-modules-internal-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-modules-partner-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-rt-selftests-internal-5.14.0-284.18.1.rt14.303.el9_2.x86_64.rpm kernel-selftests-internal-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-tools-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-tools-debuginfo-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-tools-libs-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-tools-libs-devel-5.14.0-284.18.1.el9_2.x86_64.rpm kernel-uki-virt-5.14.0-284.18.1.el9_2.x86_64.rpm openshift-hyperkube-4.13.0-202306072143.p0.g7d22122.assembly.stream.el9.x86_64.rpm perf-5.14.0-284.18.1.el9_2.x86_64.rpm perf-debuginfo-5.14.0-284.18.1.el9_2.x86_64.rpm podman-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-debuginfo-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-debugsource-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-gvproxy-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-gvproxy-debuginfo-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-plugins-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-plugins-debuginfo-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-remote-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-remote-debuginfo-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm podman-tests-4.4.1-5.1.rhaos4.13.el9.x86_64.rpm python3-perf-5.14.0-284.18.1.el9_2.x86_64.rpm python3-perf-debuginfo-5.14.0-284.18.1.el9_2.x86_64.rpm rtla-5.14.0-284.18.1.el9_2.x86_64.rpm skopeo-1.11.2-2.1.rhaos4.13.el9.x86_64.rpm skopeo-debuginfo-1.11.2-2.1.rhaos4.13.el9.x86_64.rpm skopeo-debugsource-1.11.2-2.1.rhaos4.13.el9.x86_64.rpm skopeo-tests-1.11.2-2.1.rhaos4.13.el9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-41717 https://access.redhat.com/security/cve/CVE-2022-41724 https://access.redhat.com/security/cve/CVE-2022-41725 https://access.redhat.com/security/cve/CVE-2023-24534 https://access.redhat.com/security/cve/CVE-2023-24536 https://access.redhat.com/security/cve/CVE-2023-24537 https://access.redhat.com/security/cve/CVE-2023-24538 https://access.redhat.com/security/cve/CVE-2023-24540 https://access.redhat.com/security/cve/CVE-2023-27561 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/articles/11258 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBZJVq2tzjgjWX9erEAQgFnA//dt8LVEP35wP8eWS8v7pqWzY1l5EAjGrg jQJOHDVQrsef08bdKW7lGHMa/I/CN/aoXV94DT9Xg0eny60FUUpe+CQfjZ9JSAj1 yArtbpXwNxC4L+TqWnhCDNveg699sCGGB0jWGZ0SCwRfdHm5Ki0uv2cFdibS7WGH 1erDc8K0sgapDFDsOjB1og1esSxsTMDHi9E/R5MoSZyq2Dr05KnAWZulfp7ME2Tn uGqEISIyAFC3fAY8JEjnPTJeswVHfTHWRURvSQIZaBC4xD2EvjfE8vhjR1gv2XFx rfiTuJBHoqcKbIOnGrx8jRqCNSjDBxcbmOI70NlsTqxtQzJhW/TGIvvSiZ7S1WOd 4kSaa4e3PEtsDmjKxGIBt3rI2DTsc5HjPDmSXBqv4iwNHw81+wU7wYkEp3wQh1Z/ UGdvaTFYnqEoVlRQ5UWyCW+eY6ytXYEUm7VRaWFTkEq2lR0tMAtmELgEJYUun29Y X0MYjmiQVL43HPCz4laX7dvvVnwPlj/QUtGmNyTrAAkjAu9j4iQjQuzBH3yCbF4z YemUJX5dS9GuuwMOYrS1kNt/WafMvwJnRkYh4iDSC1YQ8DQ8lt8HaJidSgUbP7Os AlQ4kQPw8vyaVXGgr0qynurDJyHJ9a4JunFtsDA1+2ana91O9zVizhO5iGOMJR3X OTTSjcYWiDw=iMcG -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Explore significant developments in OpenShift Container Platform 4.13.4, emphasizing bug fixes and enhanced security measures.. OpenShift, Container Security, Red Hat Updates, Software Fixes. . Severity: Critical. LinuxSecurity.com Team

Jun 23, 2023 •Critical Red Hat

security advisorysoftware updateRed Hat Enterprise Linux

Red Hat Enterprise Linux 7 RHSA-2023-0296 Critical: Firefox Security Update

An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: firefox security update Advisory ID: RHSA-2023:0296-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:0296 Issue date: 2023-01-23 CVE Names: CVE-2022-46871 CVE-2022-46877 CVE-2023-23598 CVE-2023-23599 CVE-2023-23601 CVE-2023-23602 CVE-2023-23603 CVE-2023-23605 ==================================================================== 1. Summary: An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 102.7.0 ESR. Security Fix(es): * Mozilla: libusrsctp library out of date (CVE-2022-46871) * Mozilla: Arbitrary file read from GTK drag and drop on Linux (CVE-2023-23598) * Mozilla: Memorysafety bugs fixed in Firefox 109 and Firefox ESR 102.7 (CVE-2023-23605) * Mozilla: Malicious command could be hidden in devtools output (CVE-2023-23599) * Mozilla: URL being dragged from cross-origin iframe into same tab triggers navigation (CVE-2023-23601) * Mozilla: Content Security Policy wasn't being correctly applied to WebSockets in WebWorkers (CVE-2023-23602) * Mozilla: Fullscreen notification bypass (CVE-2022-46877) * Mozilla: Calls to console.log allowed bypasing Content Security Policy via format directive (CVE-2023-23603) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the update, Firefox must be restarted for the changes to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2162336 - CVE-2022-46871 Mozilla: libusrsctp library out of date 2162338 - CVE-2023-23598 Mozilla: Arbitrary file read from GTK drag and drop on Linux 2162339 - CVE-2023-23599 Mozilla: Malicious command could be hidden in devtools output 2162340 - CVE-2023-23601 Mozilla: URL being dragged from cross-origin iframe into same tab triggers navigation 2162341 - CVE-2023-23602 Mozilla: Content Security Policy wasn't being correctly applied to WebSockets in WebWorkers2162342 - CVE-2022-46877 Mozilla: Fullscreen notification bypass 2162343 - CVE-2023-23603 Mozilla: Calls to console.log allowed bypasing Content Security Policy via format directive 2162344 - CVE-2023-23605 Mozilla: Memory safety bugs fixed in Firefox 109 and Firefox ESR 102.7 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: firefox-102.7.0-1.el7_9.src.rpm x86_64: firefox-102.7.0-1.el7_9.x86_64.rpm firefox-debuginfo-102.7.0-1.el7_9.x86_64.rpm Red Hat Enterprise Linux Client Optional (v.7): x86_64: firefox-102.7.0-1.el7_9.i686.rpm firefox-debuginfo-102.7.0-1.el7_9.i686.rpm Red Hat Enterprise Linux Server (v. 7): Source: firefox-102.7.0-1.el7_9.src.rpm ppc64: firefox-102.7.0-1.el7_9.ppc64.rpm firefox-debuginfo-102.7.0-1.el7_9.ppc64.rpm ppc64le: firefox-102.7.0-1.el7_9.ppc64le.rpm firefox-debuginfo-102.7.0-1.el7_9.ppc64le.rpm s390x: firefox-102.7.0-1.el7_9.s390x.rpm firefox-debuginfo-102.7.0-1.el7_9.s390x.rpm x86_64: firefox-102.7.0-1.el7_9.x86_64.rpm firefox-debuginfo-102.7.0-1.el7_9.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): x86_64: firefox-102.7.0-1.el7_9.i686.rpm firefox-debuginfo-102.7.0-1.el7_9.i686.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: firefox-102.7.0-1.el7_9.src.rpm x86_64: firefox-102.7.0-1.el7_9.x86_64.rpm firefox-debuginfo-102.7.0-1.el7_9.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: firefox-102.7.0-1.el7_9.i686.rpm firefox-debuginfo-102.7.0-1.el7_9.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-46871 https://access.redhat.com/security/cve/CVE-2022-46877 https://access.redhat.com/security/cve/CVE-2023-23598 https://access.redhat.com/security/cve/CVE-2023-23599 https://access.redhat.com/security/cve/CVE-2023-23601 https://access.redhat.com/security/cve/CVE-2023-23602 https://access.redhat.com/security/cve/CVE-2023-23603 https://access.redhat.com/security/cve/CVE-2023-23605 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBY85isdzjgjWX9erEAQiGoA/9H6xcQ6n4dhpAsWGrC7kyk+/A9RBBrvi5 YYdGkZFw5GiHnGVUzlzFZ5Q7hTAqutxNNoNg3jTrdoHxjDkCvSJDN4wyjjW7od6R Y1CDIqKrv2htMrEPCeBClJwPaj6VZOe11JEsKQk6FoBxZojvhEmhQYUz7H3Mjxpa IgccC1+H8v/8oq+Msc0yORXLatjfguVLj14pQPwTHikUPhrZ6OJEP0bEQpwwgd4q XIlQHzZ70USNLbVwSCr7xljQmoGd2wiKacZD4AoYdphyq6ndKxA47shBzXPbemUz fAljjRHV2dDqyIiMKOfy1dtaCGhWXKm22ivWs4qt+N8qABX8fB95uDdxzNxpkW8M ze4XS20/Ug20wDNTSmzBasln9fQX4hba7dGoHmr0D5905nVYUu6qBZ0s2y/qa02S FswLqqK+/YmaIEYSSqWGvPm88rOeBOHBNzoxHG85efsN07xEW61/PE6TSenVXBS7 7Ri+v2z1gzS5jd1Zcp206zAxGEuOfIBMc4rd5WipY45BmpiBdWb3IU2ESgyMT2Mp FXLxJR1SLgx4bJl0dRe8zxmNTAQclJAHVguHE3kPmcgrfovsoNGw5r66Ys5+cUJT 6FFLiMY9rIiLx9/QgVnF4SfYVGh89ctUXqIdckK2ssXFD2StziA6AYThMQ3386G8 aqsz/wDQ86E=JpOB -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Firefox rolls out an essential security patch for Red Hat Enterprise Linux 7, addressing vital vulnerabilities and enhancing protection.. Red Hat Linux Update, Firefox Security Fix, Important Firefox Update, Linux Security Patch. . Severity: Important. LinuxSecurity.com Team

Jan 23, 2023 •Important Red Hat

security advisorysecurity issuekernel update

Oracle Linux 7 ELSA-2022-10079 Critical: Kernel Security Update

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-10079 https://linux.oracle.com/errata/ELSA-2022-10079.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-5.4.17-2136.314.6.2.el7uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.314.6.2.el7uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.314.6.2.el7uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.314.6.2.el7uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.314.6.2.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.314.6.2.el7uek.x86_64.rpm aarch64: kernel-uek-5.4.17-2136.314.6.2.el7uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.314.6.2.el7uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.314.6.2.el7uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.314.6.2.el7uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.314.6.2.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.314.6.2.el7uek.aarch64.rpm kernel-uek-tools-libs-5.4.17-2136.314.6.2.el7uek.aarch64.rpm perf-5.4.17-2136.314.6.2.el7uek.aarch64.rpm python-perf-5.4.17-2136.314.6.2.el7uek.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates/kernel-uek-5.4.17-2136.314.6.2.el7uek.src.rpm Related CVEs: CVE-2022-2602 CVE-2022-3565 CVE-2022-4378 Description of changes: [5.4.17-2136.314.6.2.el7uek] - proc: proc_skip_spaces() shouldn't think it is working on C strings (Linus Torvalds) [Orabug: 34883034] {CVE-2022-4378} - proc: avoid integer type confusion in get_proc_long (Linus Torvalds) [Orabug: 34883034] {CVE-2022-4378} [5.4.17-2136.314.6.1.el7uek] - RDMA/uverbs: Move IB_EVENT_DEVICE_FATAL to destroy_uobj (Jason Gunthorpe) [Orabug: 34859614] - RDMA/uverbs: Do not discard the IB_EVENT_DEVICE_FATAL event (Jason Gunthorpe) [Orabug: 34859614] - Adding a new sysfs entry point -- forcepower -- to /sys/bus/pci/slots/X. (James Puthukattukaran) [Orabug: 34859609] - nvme: paring quiesce/unquiesce (Ming Lei) [Orabug: 34859609] - nvme: prepare for pairing quiescing andunquiescing (Ming Lei) [Orabug: 34859609] - nvme: apply nvme API to quiesce/unquiesce admin queue (Ming Lei) [Orabug: 34859609] - nvme: add APIs for stopping/starting admin queue (Ming Lei) [Orabug: 34859609] - nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (James Smart) [Orabug: 34859609] - nvme-fc: avoid race between time out and tear down (James Smart) [Orabug: 34859609] - nvme-fc: update hardware queues before using them (Daniel Wagner) [Orabug: 34859609] - nvme-fabrics: reject I/O to offline device (Victor Gladkov) [Orabug: 34859609] - nvme-fc: wait for queues to freeze before calling update_hr_hw_queues (James Smart) [Orabug: 34859609] [5.4.17-2136.314.6.el7uek] - RDMA/mlx5: Change debug log level for remote access error syndromes (Arumugam Kolappan) [Orabug: 34798452] - KVM: x86: Don't inhibit APICv/AVIC if xAPIC ID mismatch is due to 32-bit ID (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Track xAPIC ID only on userspace SET, _after_ vAPIC is updated (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Process ICR on AVIC IPI delivery failure due to invalid target (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Flush the "current" TLB when activating AVIC (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Purge "highest ISR" cache when updating APICv state (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Add AVIC doorbell tracepoint (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: x86: Warning APICv inconsistency only when vcpu APIC mode is valid (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Introduce hybrid-AVIC mode (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Do not throw warning when calling avic_vcpu_load on a running vcpu (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Introduce logic to (de)activate x2AVIC mode (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Refresh AVIC configuration when changing APIC mode (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: x86: Deactivate APICv on vCPU with APIC disabled (SuraveeSuthikulpanit) [Orabug: 34160613] - KVM: SVM: Do not virtualize MSR accesses for APIC LVTT register (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Fix x2APIC MSRs interception (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Adding support for configuring x2APIC MSRs interception (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Do not support updating APIC ID when in x2APIC mode (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Compute dest based on sender's x2APIC status for AVIC kick (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Update avic_kick_target_vcpus to support 32-bit APIC ID (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Update max number of vCPUs supported for x2AVIC mode (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Detect X2APIC virtualization (x2AVIC) support (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: x86: lapic: Rename [GET/SET]_APIC_DEST_FIELD to [GET/SET]_XAPIC_DEST_FIELD (Suravee Suthikulpanit) [Orabug: 34160613] - x86/cpufeatures: Introduce x2AVIC CPUID bit (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: x86: Blindly get current x2APIC reg value on "nodecode write" traps (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Bug the VM if an accelerated x2APIC trap occurs on a "bad" reg (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Do not block APIC write for non ICR registers (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: x86: Add support for vICR APIC-write VM-Exits in x2APIC mode (Zeng Guang) [Orabug: 34160613] - KVM: x86: disable preemption while updating apicv inhibition (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: Fix x2APIC Logical ID calculation for avic_kick_target_vcpus_fast (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: x86: SVM: fix avic_kick_target_vcpus_fast (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: SVM: remove avic's broken code that updated APIC ID (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: Don't inhibit APICv/AVIC on xAPIC ID "change" if APIC is disabled (Sean Christopherson) [Orabug: 34160613] - KVM: x86: inhibit APICv/AVIC on changes to APIC ID or APIC base (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: document AVIC/APICv inhibit reasons (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: SVM: allow to force AVIC to be enabled (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: Introduce trace point for the slow-path of avic_kic_target_vcpus (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Use target APIC ID to complete AVIC IRQs when possible (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Do not activate AVIC for SEV-enabled guest (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: x86: Pend KVM_REQ_APICV_UPDATE during vCPU creation to fix a race (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Trace all APICv inhibit changes and capture overall status (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Add wrappers for setting/clearing APICv inhibits (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Make APICv inhibit reasons an enum and cleanup naming (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: fix panic on out-of-bounds guest IRQ (Yi Wang) [Orabug: 34160613] - KVM: SVM: Allow AVIC support on system w/ physical APIC ID > 255 (Suravee Suthikulpanit) [Orabug: 34160613] - KVM: SVM: Disable preemption across AVIC load/put during APICv refresh (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Treat x2APIC's ICR as a 64-bit register, not two 32-bit regs (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Make kvm_lapic_set_reg() a "private" xAPIC helper (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Add helpers to handle 64-bit APIC MSR read/writes (Sean Christopherson) [Orabug: 34160613] - KVM: x86: WARN if KVM emulates an IPI without clearing the BUSY flag (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Don't rewrite guest ICR on AVIC IPI virtualization failure (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Use "raw" APIC register read for handling APIC-write VM-Exit (Sean Christopherson) [Orabug: 34160613] - KVM: VMX:Handle APIC-write offset wrangling in VMX code (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Do not change ICR on write to APIC_SELF_IPI (Paolo Bonzini) [Orabug: 34160613] - KVM: SVM: Rename AVIC helpers to use "avic" prefix instead of "svm" (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Rename kvm_x86_ops pointers to align w/ preferred vendor names (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Skip APICv update if APICv is disable at the module level (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: fix race between interrupt delivery and AVIC inhibition (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: set IRR in svm_deliver_interrupt (Paolo Bonzini) [Orabug: 34160613] - KVM: SVM: extract avic_ring_doorbell (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: SVM: move avic definitions from AMD's spec to svm.h (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: lapic: don't touch irr_pending in kvm_apic_update_apicv when inhibiting it (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: Move delivery of non-APICv interrupt into vendor code (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Move svm_hardware_setup() and its helpers below svm_x86_ops (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Drop AVIC's intermediate avic_set_running() helper (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Skip AVIC and IRTE updates when loading blocking vCPU (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Use kvm_vcpu_is_blocking() in AVIC load to handle preemption (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Remove unnecessary APICv/AVIC update in vCPU unblocking path (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Don't bother checking for "running" AVIC when kicking for IPIs (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: Signal AVIC doorbell iff vCPU is in guest mode (Sean Christopherson) [Orabug: 34160613] - KVM: x86: add a tracepoint for APICv/AVIC interrupt delivery (Maxim Levitsky) [Orabug: 34160613] - KVM: Add helpers to wake/query blocking vCPU (SeanChristopherson) [Orabug: 34160613] - KVM: SVM: Ensure target pCPU is read once when signalling AVIC doorbell (Sean Christopherson) [Orabug: 34160613] - KVM: ensure APICv is considered inactive if there is no APIC (Paolo Bonzini) [Orabug: 34160613] - KVM: x86: Use rw_semaphore for APICv lock to allow vCPU parallelism (Sean Christopherson) [Orabug: 34160613] - KVM: x86: Move SVM's APICv sanity check to common x86 (Sean Christopherson) [Orabug: 34160613] - KVM: SVM: AVIC: drop unsupported AVIC base relocation code (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: call avic_vcpu_load/avic_vcpu_put when enabling/disabling AVIC (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: move check for kvm_vcpu_apicv_active outside of avic_vcpu_{put|load} (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: avoid refreshing avic if its state didn't change (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: add warning for mistmatch between AVIC vcpu state and AVIC inhibition (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: Unexport __kvm_request_apicv_update() (Sean Christopherson) [Orabug: 34160613] - KVM: x86: APICv: fix race in kvm_request_apicv_update on SVM (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: APICv: drop immediate APICv disablement on current vCPU (Maxim Levitsky) [Orabug: 34160613] - KVM: SVM: svm_set_vintr don't warn if AVIC is active but is about to be deactivated (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: Check for pending interrupts when APICv is getting disabled (Vitaly Kuznetsov) [Orabug: 34160613] - KVM: SVM: Move AVIC vCPU kicking snippet to helper function (Sean Christopherson) [Orabug: 34160613] - KVM: x86: rename apic_access_page_done to apic_access_memslot_enabled (Maxim Levitsky) [Orabug: 34160613] - KVM: x86: Drop vendor specific functions for APICv/AVIC enablement (Vitaly Kuznetsov) [Orabug: 34160613] - KVM: x86: Use common 'enable_apicv' variable for both APICv and AVIC (Vitaly Kuznetsov) [Orabug: 34160613] - KVM: SVM: Drop unneeded CONFIG_X86_LOCAL_APIC check (Vitaly Kuznetsov) [Orabug: 34160613] - kvm: Replace vcpu-> swait with rcuwait (Davidlohr Bueso) [Orabug: 34160613] - rcuwait: Introduce rcuwait_active() (Davidlohr Bueso) [Orabug: 34160613] - rcuwait: Introduce prepare_to and finish_rcuwait (Davidlohr Bueso) [Orabug: 34160613] - rcuwait: Let rcuwait_wake_up() return whether or not a task was awoken (Davidlohr Bueso) [Orabug: 34160613] - rcuwait: Fix stale wake call name in comment (Davidlohr Bueso) [Orabug: 34160613] - rcuwait: Add @state argument to rcuwait_wait_event() (Peter Zijlstra (Intel)) [Orabug: 34160613] - acpi: Remove header dependency (Peter Zijlstra) [Orabug: 34160613] [5.4.17-2136.314.5.el7uek] - rds: Remove the cp_rdsinfo_pending flag (HÃ¥kon Bugge) [Orabug: 34658658] - RDMA/uverbs: restrack shared PDs (Sharath Srinivasan) [Orabug: 34789017] - rds: ib: Fix cleanup of rds_ib_cache_gc_worker (HÃ¥kon Bugge) [Orabug: 34806077] - KVM: nVMX: Add tracepoint for nested VM-Enter (David Matlack) [Orabug: 34806795] - KVM: x86: Update trace function for nested VM entry to support VMX (Mingwei Zhang) [Orabug: 34806795] - Revert "KVM: nSVM: Log nRIP of L1 and L2 guest VMCB in nested VMRUN tracepoint" (Maciej S. Szmigiero) [Orabug: 34806795] - KVM: nVMX: Allow VMREAD when Enlightened VMCS is in use (Vitaly Kuznetsov) [Orabug: 34806795] - KVM: nVMX: Implement evmcs_field_offset() suitable for handle_vmread() (Vitaly Kuznetsov) [Orabug: 34806795] - KVM: nVMX: Rename vmcs_to_field_offset{,_table} (Vitaly Kuznetsov) [Orabug: 34806795] - KVM: nVMX: Also filter MSR_IA32_VMX_TRUE_PINBASED_CTLS when eVMCS (Vitaly Kuznetsov) [Orabug: 34806795] - x86/kvm: Always inline evmcs_write64() (Peter Zijlstra) [Orabug: 34806795] - KVM: x86: Clean up redundant ROL16(val, n) macro definition (Like Xu) [Orabug: 34806795] - KVM: nVMX: Dynamically compute max VMCS index for vmcs12 (Sean Christopherson) [Orabug: 34806795] - KVM: nVMX: Use '-1' in 'hv_evmcs_vmptr' to indicate that eVMCS is not in use (Vitaly Kuznetsov) [Orabug: 34806795] - KVM: VMX: eVMCS: makeevmcs_sanitize_exec_ctrls() work again (Vitaly Kuznetsov) [Orabug: 34806795] - KVM: nVMX: Add VM-Enter failed tracepoints for super early checks (Sean Christopherson) [Orabug: 34806795] - x86: Ignore iommu=off for AMD cpus (Dave Kleikamp) [Orabug: 34034614] - uek-rpm: Add xt_MASQUERADE to nano rpm (Somasundaram Krishnasamy) [Orabug: 34630038] - x86/mce: Retrieve poison range from hardware (Jane Chu) [Orabug: 34670113] - x86/mce: Include a MCi_MISC value in faked mce logs (Tony Luck) [Orabug: 34670113] - pmem: fix a name collision (Jane Chu) [Orabug: 34670113] - pmem: implement pmem_recovery_write() (Jane Chu) [Orabug: 34670113] - pmem: refactor pmem_clear_poison() (Jane Chu) [Orabug: 34670113] - dax: add .recovery_write dax_operation (Jane Chu) [Orabug: 34670113] - dax: introduce DAX_RECOVERY_WRITE dax access mode (Jane Chu) [Orabug: 34670113] - mce: fix set_mce_nospec to always unmap the whole page (Jane Chu) [Orabug: 34670113] - acpi/nfit: rely on mce-> misc to determine poison granularity (Jane Chu) [Orabug: 34670113] - RDMA/restrack: Support all QP types (Leon Romanovsky) [Orabug: 34704742] - RDMA/core: Always release restrack object (Leon Romanovsky) [Orabug: 34704742] - RDMA/core: Add CM to restrack after successful attachment to a device (Shay Drory) [Orabug: 34704742] - Revert "rdmaip: Flush ARP cache after address has been cleared" (Sharath Srinivasan) [Orabug: 34739575] - vdpa/mlx5: default_mtu should not override mtu from vdpa tool (Si-Wei Liu) [Orabug: 34756655] - virtio-net: use mtu size as buffer length for big packets (Gavin Li) [Orabug: 34756655] - virtio-net: introduce and use helper function for guest gso support checks (Gavin Li) [Orabug: 34756655] - vdpa/mlx5: Use consistent RQT size (Eli Cohen) [Orabug: 34756655] - vdpa: mlx5: synchronize driver status with CVQ (Jason Wang) [Orabug: 34756655] - vdpa: mlx5: prevent cvq work from hogging CPU (Jason Wang) [Orabug: 34756655] - vdpa/mlx5: Avoid processing works if workqueue was destroyed (Eli Cohen) [Orabug: 34756655] -vhost: handle error while adding split ranges to iotlb (Anirudh Rayabharam) [Orabug: 34756655] - vdpa: support exposing the count of vqs to userspace (Longpeng) [Orabug: 34756655] - vdpa: change the type of nvqs to u32 (Longpeng) [Orabug: 34756655] - vdpa: support exposing the config size to userspace (Longpeng) [Orabug: 34756655] - vdpa/mlx5: re-create forwarding rules after mac modified (Michael Qiu) [Orabug: 34756655] - Add definition of VIRTIO_F_IN_ORDER feature bit (Gautam Dawar) [Orabug: 34756655] - vhost_vdpa: don't setup irq offloading when irq_num < 0 (Zhu Lingshan) [Orabug: 34756655] - vhost: allow batching hint without size (Jason Wang) [Orabug: 34756655] - vdpa: fix use-after-free on vp_vdpa_remove (Zhang Min) [Orabug: 34756655] - vhost: fix hung thread due to erroneous iotlb entries (Anirudh Rayabharam) [Orabug: 34756655] - vdpa/mlx5: add validation for VIRTIO_NET_CTRL_MQ_VQ_PAIRS_SET command (Si-Wei Liu) [Orabug: 34756655] - vdpa/mlx5: should verify CTRL_VQ feature exists for MQ (Si-Wei Liu) [Orabug: 34756655] - vdpa: factor out vdpa_set_features_unlocked for vdpa internal use (Si-Wei Liu) [Orabug: 34756655] - RDMA/cma: Use output interface for net_dev check (HÃ¥kon Bugge) [Orabug: 34774008] - Revert "RDMA/cma: Use output interface for net_dev check" (HÃ¥kon Bugge) [Orabug: 34774008] - bpf: Add probe_read_{user, kernel} and probe_read_{user, kernel}_str helpers (Daniel Borkmann) [Orabug: 34797062] - uaccess: Add strict non-pagefault kernel-space read function (Daniel Borkmann) [Orabug: 34797062] - do_wait: make PIDTYPE_PID case O(1) instead of O(n) (Jim Newsome) [Orabug: 34798125] [5.4.17-2136.314.4.el7uek] - Feature: Add cmdline param sched_uek=[preempt,wakeidle] (Libo Chen) [Orabug: 34779452] - perf/x86/intel: Hide Topdown metrics events if slots is not enumerated (Kan Liang) [Orabug: 34264064] - net: macsec: Severe performance regression in "...preserve ordering" (Venkat Venkatsubra) [Orabug: 34653784] - mISDN: fix use-after-free bugs in l1oip timer handlers (DuomingZhou) [Orabug: 34719781] {CVE-2022-3565} - x86/microcode/AMD: Apply the patch late on every logical thread (Mihai Carabas) [Orabug: 34731079] - x86/microcode/AMD: Apply the patch early on every logical thread (Borislav Petkov) [Orabug: 34731079] - io_uring/af_unix: defer registered files gc to io_uring release (Pavel Begunkov) [Orabug: 34743499] {CVE-2022-2602} - scsi: target: core: Silence the message about unknown VPD pages (Konstantin Shelekhin) [Orabug: 34764768] [5.4.17-2136.314.3.el7uek] - net: ieee802154: return -EINVAL for unknown addr type (Alexander Aring) - ALSA: hda: beep: Simplify keep-power-at-enable behavior (Takashi Iwai) - ALSA: hda/realtek: Correct pin configs for ASUS G533Z (Luke D. Jones) - ALSA: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530 (Callum Osmotherly) - LTS tag: v5.4.218 (Sherry Yang) - Input: xpad - fix wireless 360 controller breaking after suspend (Cameron Gutman) - Input: xpad - add supported devices as contributed on github (Pavel Rojtberg) - wifi: cfg80211: update hidden BSSes to avoid WARN_ON (Johannes Berg) - wifi: mac80211_hwsim: avoid mac80211 warning on bad rate (Johannes Berg) - wifi: cfg80211: avoid nontransmitted BSS list corruption (Johannes Berg) - wifi: cfg80211: fix BSS refcounting bugs (Johannes Berg) - wifi: cfg80211: ensure length byte is present before access (Johannes Berg) - wifi: cfg80211/mac80211: reject bad MBSSID elements (Johannes Berg) - wifi: cfg80211: fix u8 overflow in cfg80211_update_notlisted_nontrans() (Johannes Berg) - random: restore O_NONBLOCK support (Jason A. Donenfeld) - USB: serial: qcserial: add new usb-id for Dell branded EM7455 (Frank Wunderlich) - scsi: stex: Properly zero out the passthrough command structure (Linus Torvalds) - efi: Correct Macmini DMI match in uefi cert quirk (Orlando Chamberlain) - ALSA: hda: Fix position reporting on Poulsbo (Takashi Iwai) - random: clamp credited irq bits to maximum mixed (Jason A. Donenfeld) - ceph: don't truncate file in atomic_open (Hu Weiwen) - nilfs2:replace WARN_ONs by nilfs_error for checkpoint acquisition failure (Ryusuke Konishi) - nilfs2: fix leak of nilfs_root in case of writer thread creation failure (Ryusuke Konishi) - nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level() (Ryusuke Konishi) - rpmsg: qcom: glink: replace strncpy() with strscpy_pad() (Krzysztof Kozlowski) - mmc: core: Terminate infinite loop in SD-UHS voltage switch (Brian Norris) - mmc: core: Replace with already defined values for readability (ChanWoo Lee) - USB: serial: ftdi_sio: fix 300 bps rate for SIO (Johan Hovold) - usb: mon: make mmapped memory read only (Tadeusz Struk) - arch: um: Mark the stack non-executable to fix a binutils warning (David Gow) - um: Cleanup compiler warning in arch/x86/um/tls_32.c (Lukas Straub) - um: Cleanup syscall_handler_t cast in syscalls_32.h (Lukas Straub) - net/ieee802154: fix uninit value bug in dgram_sendmsg (Haimin Zhang) - scsi: qedf: Fix a UAF bug in __qedf_probe() (Letu Ren) - ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer (Sergei Antonov) - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API failure (Swati Agarwal) - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property (Swati Agarwal) - firmware: arm_scmi: Add SCMI PM driver remove routine (Cristian Marussi) - fs: fix UAF/GPF bug in nilfs_mdt_destroy (Dongliang Mu) - perf tools: Fixup get_current_dir_name() compilation (Alexey Dobriyan) - mm: pagewalk: Fix race between unmap and page walker (Steven Price) - LTS tag: v5.4.217 (Sherry Yang) - docs: update mediator information in CoC docs (Shuah Khan) - Makefile.extrawarn: Move -Wcast-function-type-strict to W=1 (Sami Tolvanen) - Revert "drm/amdgpu: use dirty framebuffer helper" (Greg Kroah-Hartman) - xfs: remove unused variable 'done' (YueHaibing) - xfs: fix uninitialized variable in xfs_attr3_leaf_inactive (Darrick J. Wong) - xfs: streamline xfs_attr3_leaf_inactive (Darrick J. Wong) - xfs: move incore structures out of xfs_da_format.h (ChristophHellwig) - xfs: fix memory corruption during remote attr value buffer invalidation (Darrick J. Wong) - xfs: refactor remote attr value buffer invalidation (Darrick J. Wong) - xfs: fix s_maxbytes computation on 32-bit kernels (Darrick J. Wong) - xfs: truncate should remove all blocks, not just to the end of the page cache (Darrick J. Wong) - xfs: introduce XFS_MAX_FILEOFF (Darrick J. Wong) - xfs: fix misuse of the XFS_ATTR_INCOMPLETE flag (Christoph Hellwig) - LTS tag: v5.4.216 (Sherry Yang) - clk: iproc: Do not rely on node name for correct PLL setup (Florian Fainelli) - clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks (Han Xu) - selftests: Fix the if conditions of in test_extra_filter() (Wang Yufen) - nvme: Fix IOC_PR_CLEAR and IOC_PR_RELEASE ioctls for nvme devices (Michael Kelley) - nvme: add new line after variable declatation (Chaitanya Kulkarni) - usbnet: Fix memory leak in usbnet_disconnect() (Peilin Ye) - Input: melfas_mip4 - fix return value check in mip4_probe() (Yang Yingliang) - Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in suspend/resume time" (Brian Norris) - soc: sunxi: sram: Fix debugfs info for A64 SRAM C (Samuel Holland) - soc: sunxi: sram: Fix probe function ordering issues (Samuel Holland) - soc: sunxi_sram: Make use of the helper function devm_platform_ioremap_resource() (Cai Huoqing) - soc: sunxi: sram: Prevent the driver from being unbound (Samuel Holland) - soc: sunxi: sram: Actually claim SRAM regions (Samuel Holland) - ARM: dts: am33xx: Fix MMCHS0 dma properties (YuTong Chang) - ARM: dts: Move am33xx and am43xx mmc nodes to sdhci-omap driver (Faiz Abbas) - media: dvb_vb2: fix possible out of bound access (Hangyu Hua) - mm: fix madivse_pageout mishandling on non-LRU page (Minchan Kim) - mm/migrate_device.c: flush TLB while holding PTL (Alistair Popple) - mm: prevent page_frag_alloc() from corrupting the memory (Maurizio Lombardi) - mm/page_alloc: fix race condition between build_all_zonelists and page allocation (Mel Gorman) - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width (Sergei Antonov) - libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205 (Niklas Cassel) - ntfs: fix BUG_ON in ntfs_lookup_inode_by_name() (ChenXiaoSong) - ARM: dts: integrator: Tag PCI host with device_type (Linus Walleij) - clk: ingenic-tcu: Properly enable registers before accessing timers (Aidan MacDonald) - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (Frank Wunderlich) - uas: ignore UAS for Thinkplus chips (Hongling Zeng) - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (Hongling Zeng) - uas: add no-uas quirk for Hiksemi usb_disk (Hongling Zeng) - LTS tag: v5.4.215 (Sherry Yang) - ext4: make directory inode spreading reflect flexbg size (Jan Kara) - xfs: fix use-after-free when aborting corrupt attr inactivation (Darrick J. Wong) - xfs: fix an ABBA deadlock in xfs_rename (Darrick J. Wong) - xfs: don't commit sunit/swidth updates to disk if that would cause repair failures (Darrick J. Wong) - xfs: split the sunit parameter update into two parts (Darrick J. Wong) - xfs: refactor agfl length computation function (Darrick J. Wong) - xfs: use bitops interface for buf log item AIL flag check (Brian Foster) - xfs: stabilize insert range start boundary to avoid COW writeback race (Brian Foster) - xfs: fix some memory leaks in log recovery (Darrick J. Wong) - xfs: always log corruption errors (Darrick J. Wong) - xfs: constify the buffer pointer arguments to error functions (Darrick J. Wong) - xfs: convert EIO to EFSCORRUPTED when log contents are invalid (Darrick J. Wong) - xfs: Fix deadlock between AGI and AGF when target_ip exists in xfs_rename() (kaixuxia) - xfs: range check ri_cnt when recovering log items (Darrick J. Wong) - xfs: add missing assert in xfs_fsmap_owner_from_rmap (Darrick J. Wong) - xfs: slightly tweak an assert in xfs_fs_map_blocks (Christoph Hellwig) - xfs: replace -EIO with -EFSCORRUPTED for corrupt metadata (Darrick J. Wong) - ext4: fix bug in extents parsing when eh_entries == 0and eh_depth > 0 (LuÃs Henriques) - workqueue: don't skip lockdep work dependency in cancel_work_sync() (Tetsuo Handa) - drm/rockchip: Fix return type of cdn_dp_connector_mode_valid (Nathan Huckleberry) - drm/amd/display: Limit user regamma to a valid value (Yao Wang1) - drm/amdgpu: use dirty framebuffer helper (Hamza Mahfooz) - Drivers: hv: Never allocate anything besides framebuffer from framebuffer memory region (Vitaly Kuznetsov) - cifs: always initialize struct msghdr smb_msg completely (Stefan Metzmacher) - usb: xhci-mtk: fix issue of out-of-bounds array access (Chunfeng Yun) - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup (Stefan Haberland) - serial: tegra-tcu: Use uart_xmit_advance(), fixes icount.tx accounting (Ilpo JÃ¤rvinen) - serial: tegra: Use uart_xmit_advance(), fixes icount.tx accounting (Ilpo JÃ¤rvinen) - serial: Create uart_xmit_advance() (Ilpo JÃ¤rvinen) - net: sched: fix possible refcount leak in tc_new_tfilter() (Hangyu Hua) - net: sunhme: Fix packet reception for len < RX_COPY_THRESHOLD (Sean Anderson) - perf kcore_copy: Do not check /proc/modules is unchanged (Adrian Hunter) - perf jit: Include program header in ELF files (Lieven Hey) - can: gs_usb: gs_can_open(): fix race dev-> can.state condition (Marc Kleine-Budde) - netfilter: ebtables: fix memory leak when blob is malformed (Florian Westphal) - net/sched: taprio: make qdisc_leaf() see the per-netdev-queue pfifo child qdiscs (Vladimir Oltean) - net/sched: taprio: avoid disabling offload when it was never enabled (Vladimir Oltean) - of: mdio: Add of_node_put() when breaking out of for_each_xx (Liang He) - i40e: Fix set max_tx_rate when it is lower than 1 Mbps (Michal Jaron) - i40e: Fix VF set max MTU size (Michal Jaron) - iavf: Fix set max MTU size with port VLAN and jumbo frames (Michal Jaron) - iavf: Fix bad page state (Norbert Zulinski) - MIPS: Loongson32: Fix PHY-mode being left unspecified (Serge Semin) - MIPS: lantiq: export clk_get_io() for lantiq_wdt.ko (Randy Dunlap) - net: team: Unsync device addresses on ndo_stop (Benjamin Poirier) - ipvlan: Fix out-of-bound bugs caused by unset skb-> mac_header (Lu Wei) - iavf: Fix cached head and tail value for iavf_get_tx_pending (Brett Creeley) - netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find() (Pablo Neira Ayuso) - netfilter: nf_conntrack_irc: Tighten matching on DCC message (David Leadbeater) - netfilter: nf_conntrack_sip: fix ct_sip_walk_headers (Igor Ryzhov) - arm64: dts: rockchip: Remove 'enable-active-low' from rk3399-puma (Fabio Estevam) - arm64: dts: rockchip: Set RK3399-Gru PCLK_EDP to 24 MHz (zain wang) - arm64: dts: rockchip: Pull up wlan wake# on Gru-Bob (Brian Norris) - mm/slub: fix to return errno if kmalloc() fails (Chao Yu) - efi: libstub: check Shim mode using MokSBStateRT (Ard Biesheuvel) - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5530 laptop (Callum Osmotherly) - ALSA: hda/realtek: Add quirk for ASUS GA503R laptop (Luke D. Jones) - ALSA: hda/realtek: Add pincfg for ASUS G533Z HP jack (Luke D. Jones) - ALSA: hda/realtek: Add pincfg for ASUS G513 HP jack (Luke D. Jones) - ALSA: hda/realtek: Re-arrange quirk table entries (Takashi Iwai) - ALSA: hda/realtek: Add quirk for Huawei WRT-WX9 (huangwenhui) - ALSA: hda: add Intel 5 Series / 3400 PCI DID (Kai Vehmanen) - ALSA: hda/tegra: set depop delay for tegra (Mohan Kumar) - USB: serial: option: add Quectel RM520N (jerry meng) - USB: serial: option: add Quectel BG95 0x0203 composition (Carl Yin(æ®·å¼ æ)) - Revert "usb: gadget: udc-xilinx: replace memcpy with memcpy_toio" (Greg Kroah-Hartman) - Revert "usb: add quirks for Lenovo OneLink+ Dock" (Greg Kroah-Hartman) - usb: cdns3: fix issue with rearming ISO OUT endpoint (Pawel Laszczak) - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (Piyush Mehta) - usb: add quirks for Lenovo OneLink+ Dock (Jean-Francois Le Fillatre) - tty: serial: atmel: Preserve previous USART mode if RS485 disabled (Sergiu Moga) - serial: atmel: remove redundant assignmentin rs485_config (Lino Sanfilippo) - tty/serial: atmel: RS485 & ISO7816: wait for TXRDY before sending data (This email address is being protected from spambots. You need JavaScript enabled to view it.) - wifi: mac80211: Fix UAF in ieee80211_scan_rx() (Siddh Raman Pant) - usb: xhci-mtk: relax TT periodic bandwidth allocation (Ikjoon Jang) - usb: xhci-mtk: allow multiple Start-Split in a microframe (Chunfeng Yun) - usb: xhci-mtk: add some schedule error number (Chunfeng Yun) - usb: xhci-mtk: add a function to (un)load bandwidth info (Chunfeng Yun) - usb: xhci-mtk: use @sch_tt to check whether need do TT schedule (Chunfeng Yun) - usb: xhci-mtk: add only one extra CS for FS/LS INTR (Chunfeng Yun) - usb: xhci-mtk: get the microframe boundary for ESIT (Chunfeng Yun) - usb: dwc3: gadget: Avoid duplicate requests to enable Run/Stop (Wesley Cheng) - usb: dwc3: gadget: Don't modify GEVNTCOUNT in pullup() (Thinh Nguyen) - usb: dwc3: gadget: Refactor pullup() (Thinh Nguyen) - usb: dwc3: gadget: Prevent repeat pullup() (Thinh Nguyen) - usb: dwc3: Issue core soft reset before enabling run/stop (Wesley Cheng) - usb: dwc3: gadget: Avoid starting DWC3 gadget during UDC unbind (Wesley Cheng) - ALSA: hda/sigmatel: Fix unused variable warning for beep power change (Takashi Iwai) - video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write (Hyunwoo Kim) - mksysmap: Fix the mismatch of 'L0' symbols in System.map (Youling Tang) - MIPS: OCTEON: irq: Fix octeon_irq_force_ciu_mapping() (Alexander Sverdlin) - afs: Return -EAGAIN, not -EREMOTEIO, when a file already locked (David Howells) - net: usb: qmi_wwan: add Quectel RM520N (jerry.meng) - ALSA: hda/tegra: Align BDL entry to 4KB boundary (Mohan Kumar) - ALSA: hda/sigmatel: Keep power up while beep is enabled (Takashi Iwai) - rxrpc: Fix calc of resend age (David Howells) - rxrpc: Fix local destruction being repeated (David Howells) - regulator: pfuze100: Fix the global-out-of-bounds access in pfuze100_regulator_probe() (Xiaolei Wang) - ASoC: nau8824: Fix semaphore unbalance at error paths (Takashi Iwai) -iomap: iomap that extends beyond EOF should be marked dirty (Chandan Babu R) - MAINTAINERS: add Chandan as xfs maintainer for 5.4.y (Chandan Babu R) - cifs: don't send down the destination address to sendmsg for a SOCK_STREAM (Stefan Metzmacher) - cifs: revalidate mapping when doing direct writes (Ronnie Sahlberg) - tracing: hold caller_addr to hardirq_{enable,disable}_ip (Yipeng Zou) - task_stack, x86/cea: Force-inline stack helpers (Borislav Petkov) - ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC (Sasha Levin) - drm/meson: Fix OSD1 RGB to YCbCr coefficient (Stuart Menefy) - drm/meson: Correct OSD1 global alpha value (Stuart Menefy) - gpio: mpc8xxx: Fix support for IRQ_TYPE_LEVEL_LOW flow_type in mpc85xx (Pali RohÃ¡r) - NFSv4: Turn off open-by-filehandle and NFS re-export for NFSv4.0 (Trond Myklebust) - of: fdt: fix off-by-one error in unflatten_dt_nodes() (Sergey Shtylyov) - LTS tag: v5.4.214 (Sherry Yang) - tracefs: Only clobber mode/uid/gid on remount if asked (Brian Norris) - soc: fsl: select FSL_GUTS driver for DPIO (Mathew McBride) - net: dp83822: disable rx error interrupt (Enguerrand de Ribaucourt) - mm: Fix TLB flush for not-first PFNMAP mappings in unmap_region() (Jann Horn) to IGNORE_UAS (Hu Xiaoying) - platform/x86: acer-wmi: Acer Aspire One AOD270/Packard Bell Dot keymap fixes (Hans de Goede) - perf/arm_pmu_platform: fix tests for platform_get_irq() failure (Yu Zhe) - nvmet-tcp: fix unhandled tcp states in nvmet_tcp_state_change() (Maurizio Lombardi) - Input: iforce - add support for Boeder Force Feedback Wheel (Greg Tulli) - ieee802154: cc2520: add rc code in cc2520_tx() (Li Qiong) - tg3: Disable tg3 device on system reboot to avoid triggering AER (Kai-Heng Feng) - hid: intel-ish-hid: ishtp: Fix ishtp client sending disordered message (Even Xu) - HID: ishtp-hid-clientHID: ishtp-hid-client: Fix comment typo (Jason Wang) - drm/msm/rd: Fix FIFO-full deadlock (Rob Clark) [5.4.17-2136.314.2.el7uek] - pensando: kpcimgr: Fix deadlock in read_kpcimgr (Rob Gardner) [Orabug:34676899] - uek-rpm: add aarch64 to list of vdso arches (Tom Saeger) [Orabug: 34716202] - uapi: Fix [rs]cq_vector data types in rds[6]_info_rdma_connection (Mark Haywood) [Orabug: 34734191] - uapi: Fix congested flag type in rds[6]_info_socket (Mark Haywood) [Orabug: 34734191] - uek-rpm: Remove nano_dracut-blacklist.conf (Somasundaram Krishnasamy) [Orabug: 34743957] [5.4.17-2136.314.1.el7uek] - proc: provide details on indirect branch speculation (Anand K Mistry) [Orabug: 33927837] - net/rds: rds_tcp_accept_one ought to not discard messages (Gerd Rausch) [Orabug: 34488376] - net/rds: drop rs_transport module reference count on error (Gerd Rausch) [Orabug: 34500807] - pciemgr: use spin_lock_irqsave (Rob Gardner) [Orabug: 34676884] - iommu: set default value of INTEL_IOMMU_FLOPPY_WA to n (Harshit Mogalapalli) [Orabug: 34724685] _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux 7 security enhancements tackle significant kernel modifications and security flaws. Find more information here.. Oracle Linux, Kernel Security, Security Update, Critical Fix, System Vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Dec 13, 2022 •Critical Oracle

security advisorysecurity issuekernel update

Oracle Linux 8 ELSA-2022-9998 Critical: Kernel Important Security Fix

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-9998 https://linux.oracle.com/errata/ELSA-2022-9998.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: aarch64: kernel-uek-5.4.17-2136.313.6.el8uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.313.6.el8uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.313.6.el8uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.313.6.el8uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.313.6.el8uek.noarch.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.313.6.el8uek.src.rpm Related CVEs: CVE-2022-3028 Description of changes: [5.4.17-2136.313.6.el8uek] - Uninitialized variable image_ext in fixup_vdso_exception of extable.c (Alok Tiwari) [Orabug: 33000550] - NFSD: fix use-after-free on source server when doing inter-server copy (Dai Ngo) [Orabug: 34475857] - EDAC/mce_amd: Do not load edac_mce_amd module on guests (Smita Koralahalli) [Orabug: 34484268] - uek: kabi: update kABI files for new symbol (Saeed Mirzamohammadi) [Orabug: 34595589] - RDS/IB Fix allocation warning (Hans Westgaard Ry) [Orabug: 34684322] - uek-rpm: Add support for building a kdump kernel on MIPS64 (Dave Kleikamp) [Orabug: 34696261] - hwmon: (opbmc) AST2600 SP reset driver adjustment (Jan Zdarek) [Orabug: 34710682] - hwmon: (opbmc) Driver message prefixes (Jan Zdarek) [Orabug: 34710682] - Revert "fs: check FMODE_LSEEK to control internal pipe splicing" (Saeed Mirzamohammadi) [Orabug: 34724694] - Revert "sched/deadline: Fix priority inheritance with multiple scheduling classes" (Sherry Yang) [Orabug: 34700434] [5.4.17-2136.313.5.el8uek] - IB/mlx5: Move to fully dynamic UAR mode once user space supports it (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Extend QP creation to get uar page index from user space (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Extend CQ creation to get uar pageindex from user space (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Expose UAR object and its alloc/destroy commands (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Generally use the WC auto detection test result (Yishai Hadas) [Orabug: 34430072] - RDMA/mlx5: Use offsetofend() instead of duplicated variant (Leon Romanovsky) [Orabug: 34430072] - RDMA/mlx5: Remove duplicate definitions of SW_ICM macros (Erez Shitrit) [Orabug: 34430072] - IB/mlx5: Introduce UAPIs to manage packet pacing (Yishai Hadas) [Orabug: 34430072] - RDMA/mlx5: Prevent overflow in mmap offset calculations (Leon Romanovsky) [Orabug: 34430072] - RDMA/core: Make the entire API tree static (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Ensure that rdma_user_mmap_entry_remove() is a fence (Jason Gunthorpe) [Orabug: 34430072] - RDMA/mlx5: Set relaxed ordering when requested (Michael Guralnik) [Orabug: 34430072] - RDMA/core: Add the core support field to METHOD_GET_CONTEXT (Michael Guralnik) [Orabug: 34430072] - RDMA/uverbs: Add new relaxed ordering memory region access flag (Michael Guralnik) [Orabug: 34430072] - RDMA/core: Add optional access flags range (Michael Guralnik) [Orabug: 34430072] - RDMA/uverbs: Add ioctl command to get a device context (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Remove ucontext_lock from the uverbs_destry_ufile_hw() path (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Add UVERBS_METHOD_ASYNC_EVENT_ALLOC (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Use READ_ONCE for ib_ufile.async_file (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Make ib_uverbs_async_event_file into a uobject (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Remove the ufile arg from rdma_alloc_begin_uobject (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Simplify type usage for ib_uverbs_async_handler() (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Do not erase the type of ib_wq.uobject (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Do not erase the type of ib_qp.uobject (JasonGunthorpe) [Orabug: 34430072] - RDMA/core: Do not erase the type of ib_cq.uobject (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Make ib_ucq_object use ib_uevent_object (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Do not allow alloc_commit to fail (Jason Gunthorpe) [Orabug: 34430072] - RDMA/mlx5: Simplify devx async commands (Jason Gunthorpe) [Orabug: 34430072] - RDMA/core: Simplify destruction of FD uobjects (Jason Gunthorpe) [Orabug: 34430072] - RDMA/mlx5: Use RCU and direct refcounts to keep memory alive (Jason Gunthorpe) [Orabug: 34430072] - IB/mlx5: Add mmap support for VAR (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Introduce VAR object and its alloc/destroy methods (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Extend caps stage to handle VAR capabilities (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Fix device memory flows (Yishai Hadas) [Orabug: 34430072] - IB/core: Introduce rdma_user_mmap_entry_insert_range() API (Yishai Hadas) [Orabug: 34430072] - IB/mlx5: Support flow counters offset for bulk counters (Yevgeny Kliteynik) [Orabug: 34430072] - IB/mlx5: Rename profile and init methods (Michael Guralnik) [Orabug: 34430072] - RDMA: Connect between the mmap entry and the umap_priv structure (Michal Kalderon) [Orabug: 34430072] - RDMA/core: Create mmap database and cookie helper functions (Michal Kalderon) [Orabug: 34430072] - RDMA/core: Move core content from ib_uverbs to ib_core (Michal Kalderon) [Orabug: 34430072] - IB/mlx5: Test write combining support (Michael Guralnik) [Orabug: 34430072] - IB/mlx5: Align usage of QP1 create flags with rest of mlx5 defines (Michael Guralnik) [Orabug: 34430072] - IB/mlx5: Introduce and use mkey context setting helper routine (Parav Pandit) [Orabug: 34430072] - net/rds: Send congestion map updates only via path zero (Anand Khoje) [Orabug: 34578051] - Revert "RDS/IB: Fix RDS IB SRQ implementation and tune it" (Hans Westgaard Ry) [Orabug: 34662431] - net: vlan: Avoid using BUG() in vlan_proto_idx() (Florian Fainelli) [Orabug: 34672449] - KVM: x86: drop superfluous mmu_check_root() from fast_pgd_switch() (Vitaly Kuznetsov) [Orabug: 34679770] - KVM: SVM: Update cr3_lm_rsvd_bits for AMD SEV guests (Babu Moger) [Orabug: 34679770] - KVM: x86: Invoke vendor's vcpu_after_set_cpuid() after all common updates (Sean Christopherson) [Orabug: 34679770] - KVM: x86: Move kvm_x86_ops.vcpu_after_set_cpuid() into kvm_vcpu_after_set_cpuid() (Xiaoyao Li) [Orabug: 34679770] - KVM: x86: Rename cpuid_update() callback to vcpu_after_set_cpuid() (Xiaoyao Li) [Orabug: 34679770] - RDMA/cma: Use output interface for net_dev check (HÃ¥kon Bugge) [Orabug: 34694980] [5.4.17-2136.313.4.el8uek] - arm64: pensando: Suppress tree-loop-distribute-patterns optimization (Henry Willard) [Orabug: 34634974] - uek-rpm: Disable floppy related configs (Saeed Mirzamohammadi) [Orabug: 34644240] - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel systems (Dave Hansen) [Orabug: 34671342] [5.4.17-2136.313.3.el8uek] - Revert "net: mvpp2: debugfs: fix memory leak when using debugfs_lookup()" (Sasha Levin) - USB: core: Fix RST error in hub.c (Alan Stern) - cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all() (Tetsuo Handa) - parisc: ccio-dma: Add missing iounmap in error path in ccio_probe() (Yang Yingliang) - LTS tag: v5.4.213 (Sherry Yang) - MIPS: loongson32: ls1c: Fix hang during startup (Yang Ling) - x86/nospec: Fix i386 RSB stuffing (Peter Zijlstra) - sch_sfb: Also store skb len before calling child enqueue (Toke HÃ¸iland-JÃ¸rgensen) - tcp: fix early ETIMEDOUT after spurious non-SACK RTO (Neal Cardwell) - nvme-tcp: fix UAF when detecting digest errors (Sagi Grimberg) - RDMA/mlx5: Set local port to one when accessing counters (Chris Mi) - ipv6: sr: fix out-of-bounds read when setting HMAC data. (David Lebrun) - RDMA/siw: Pass a pointer to virt_to_page() (Linus Walleij) - i40e: Fix kernel crash during module removal (Ivan Vecera) - tipc: fix shift wrapping bug in map_get()(Dan Carpenter) - sch_sfb: Don't assume the skb is still around after enqueueing to child (Toke HÃ¸iland-JÃ¸rgensen) - afs: Use the operation issue time instead of the reply time for callbacks (David Howells) - rxrpc: Fix an insufficiently large sglist in rxkad_verify_packet_2() (David Howells) - netfilter: nf_conntrack_irc: Fix forged IP logic (David Leadbeater) - netfilter: br_netfilter: Drop dst references before setting. (Harsh Modi) - RDMA/hns: Fix supported page size (Chengchang Tang) - soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs (Liang He) - RDMA/cma: Fix arguments order in net device validation (Michael Guralnik) - regulator: core: Clean up on enable failure (Andrew Halaney) - ARM: dts: imx6qdl-kontron-samx6i: remove duplicated node (Marco Felsch) - smb3: missing inode locks in punch hole (David Howells) - scsi: lpfc: Add missing destroy_workqueue() in error path (Yang Yingliang) - scsi: mpt3sas: Fix use-after-free warning (Sreekanth Reddy) - nvmet: fix a use-after-free (Bart Van Assche) - debugfs: add debugfs_lookup_and_remove() (Greg Kroah-Hartman) - kprobes: Prohibit probes in gate area (Christian A. Ehrhardt) - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() (Dongxiang Ke) - ALSA: aloop: Fix random zeros in capture data when using jiffies timer (Pattara Teerapong) - ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() (Tasos Sahanidis) - drm/amdgpu: mmVM_L2_CNTL3 register not initialized correctly (Qu Huang) - fbdev: chipsfb: Add missing pci_disable_device() in chipsfb_pci_init() (Yang Yingliang) - arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level (Sudeep Holla) - parisc: Add runtime check to prevent PA2.0 kernels on PA1.x machines (Helge Deller) - parisc: ccio-dma: Handle kmalloc failure in ccio_init_resources() (Li Qiong) - drm/radeon: add a force flush to delay work when radeon (Zhenneng Li) - drm/amdgpu: Check num_gfx_rings for gfx v9_0rb setup. (Candice Li) - drm/gem: Fix GEM handle release errors (Jeffy Chen) - scsi: megaraid_sas: Fix double kfree() (Guixin Liu) - USB: serial: ch341: fix disabled rx timer on older devices (Johan Hovold) - USB: serial: ch341: fix lost character on LCR updates (Johan Hovold) - usb: dwc3: disable USB core PHY management (Johan Hovold) - usb: dwc3: fix PHY disable sequence (Johan Hovold) - btrfs: harden identification of a stale device (Anand Jain) - drm/i915/glk: ECS Liva Q2 needs GLK HDMI port timing quirk (Diego Santa Cruz) - ALSA: seq: Fix data-race at module auto-loading (Takashi Iwai) - ALSA: seq: oss: Fix data-race for max_midi_devs access (Takashi Iwai) - net: mac802154: Fix a condition in the receive path (Miquel Raynal) - ip: fix triggering of 'icmp redirect' (Nicolas Dichtel) - wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected (Siddh Raman Pant) - driver core: Don't probe devices after bus_type.match() probe deferral (Isaac J. Manjarres) - usb: gadget: mass_storage: Fix cdrom data transfers on MAC-OS (Krishna Kurapati) - USB: core: Prevent nested device-reset calls (Alan Stern) - s390: fix nospec table alignments (Josh Poimboeuf) - s390/hugetlb: fix prepare_hugepage_range() check for 2 GB hugepages (Gerald Schaefer) - usb-storage: Add ignore-residue quirk for NXP PN7462AU (Witold Lipieta) - USB: cdc-acm: Add Icom PMR F3400 support (0c26:0020) (Thierry GUIBERT) - usb: dwc2: fix wrong order of phy_power_on and phy_init (Heiner Kallweit) - usb: typec: altmodes/displayport: correct pin assignment for UFP receptacles (Pablo Sun) - USB: serial: option: add support for Cinterion MV32-WA/WB RmNet mode (Slark Xiao) - USB: serial: option: add Quectel EM060K modem (Yonglin Tan) - USB: serial: option: add support for OPPO R11 diag port (Yan Xinyu) - USB: serial: cp210x: add Decagon UCA device id (Johan Hovold) - xhci: Add grace period after xHC start to prevent premature runtime suspend. (Mathias Nyman) - thunderbolt: Use the actualbuffer in tb_async_error() (Mika Westerberg) - gpio: pca953x: Add mutex_lock for regcache sync in PM (Haibo Chen) - hwmon: (gpio-fan) Fix array out of bounds access (Armin Wolf) - clk: bcm: rpi: Fix error handling of raspberrypi_fw_get_rate (Stefan Wahren) - Input: rk805-pwrkey - fix module autoloading (Peter Robinson) - clk: core: Fix runtime PM sequence in clk_core_unprepare() (Chen-Yu Tsai) - Revert "clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops" (Stephen Boyd) - clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops (Chen-Yu Tsai) - drm/i915/reg: Fix spelling mistake "Unsupport" -> "Unsupported" (Colin Ian King) - usb: dwc3: qcom: fix use-after-free on runtime-PM wakeup (Johan Hovold) - binder: fix UAF of ref-> proc caused by race condition (Carlos Llamas) - USB: serial: ftdi_sio: add Omron CS1W-CIF31 device id (Niek Nooijens) - misc: fastrpc: fix memory corruption on open (Johan Hovold) - misc: fastrpc: fix memory corruption on probe (Johan Hovold) - iio: adc: mcp3911: use correct formula for AD conversion (Marcus Folkesson) - Input: iforce - wake up after clearing IFORCE_XMIT_RUNNING flag (Tetsuo Handa) - tty: serial: lpuart: disable flow control while waiting for the transmit engine to complete (Sherry Sun) - vt: Clear selection before changing the font (Helge Deller) - powerpc: align syscall table for ppc32 (Masahiro Yamada) - staging: rtl8712: fix use after free bugs (Dan Carpenter) - serial: fsl_lpuart: RS485 RTS polariy is inverse (Shenwei Wang) - net/smc: Remove redundant refcount increase (Yacan Liu) - Revert "sch_cake: Return __NET_XMIT_STOLEN when consuming enqueued skb" (Jakub Kicinski) - tcp: annotate data-race around challenge_timestamp (Eric Dumazet) - sch_cake: Return __NET_XMIT_STOLEN when consuming enqueued skb (Toke HÃ¸iland-JÃ¸rgensen) - kcm: fix strp_init() order and cleanup (Cong Wang) - ethernet: rocker: fix sleep in atomic context bug in neigh_timer_handler (Duoming Zhou) - net: sched: tbf: don't call qdisc_put()while holding tree lock (Zhengchao Shao) - Revert "xhci: turn off port power in shutdown" (Mathias Nyman) - wifi: cfg80211: debugfs: fix return type in ht40allow_map_read() (Dan Carpenter) - ieee802154/adf7242: defer destroy_workqueue call (Lin Ma) - iio: adc: mcp3911: make use of the sign bit (Marcus Folkesson) - platform/x86: pmc_atom: Fix SLP_TYPx bitfield mask (Andy Shevchenko) - drm/msm/dsi: Fix number of regulators for msm8996_dsi_cfg (Douglas Anderson) - drm/msm/dsi: fix the inconsistent indenting (sunliming) - net: dp83822: disable false carrier interrupt (Enguerrand de Ribaucourt) - Revert "mm: kmemleak: take a full lowmem check in kmemleak_*_phys()" (Yee Lee) - fs: only do a memory barrier for the first set_buffer_uptodate() (Linus Torvalds) - net: mvpp2: debugfs: fix memory leak when using debugfs_lookup() (Greg Kroah-Hartman) - wifi: iwlegacy: 4965: corrected fix for potential off-by-one overflow in il4965_rs_fill_link_cmd() (Stanislaw Gruszka) - efi: capsule-loader: Fix use-after-free in efi_capsule_write (Hyunwoo Kim) - LTS tag: v5.4.212 (Sherry Yang) - net: neigh: don't call kfree_skb() under spin_lock_irqsave() (Yang Yingliang) - net/af_packet: check len when min_header_len equals to 0 (Zhengchao Shao) - kprobes: don't call disarm_kprobe() for disabled kprobes (Kuniyuki Iwashima) - lib/vdso: Mark do_hres() and do_coarse() as __always_inline (Andrei Vagin) - lib/vdso: Let do_coarse() return 0 to simplify the callsite (Christophe Leroy) - btrfs: tree-checker: check for overlapping extent items (Josef Bacik) - netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to y (Geert Uytterhoeven) - drm/amd/display: Fix pixel clock programming (Ilya Bakoulin) - s390/hypfs: avoid error message under KVM (Juergen Gross) - neigh: fix possible DoS due to net iface start/stop loop (Denis V. Lunev) - drm/amd/display: clear optc underflow before turn off odm clock (Fudong Wang) - drm/amd/display: Avoid MPC infinite loop (Josip Pavic) - btrfs: unifylookup return value when dir entry is missing (Filipe Manana) - btrfs: do not pin logs too early during renames (Filipe Manana) - btrfs: introduce btrfs_lookup_match_dir (Marcos Paulo de Souza) - mm/rmap: Fix anon_vma-> degree ambiguity leading to double-reuse (Jann Horn) - bpf: Don't redirect packets with invalid pkt_len (Zhengchao Shao) - ftrace: Fix NULL pointer dereference in is_ftrace_trampoline when ftrace is dead (Yang Jihong) - fbdev: fb_pm2fb: Avoid potential divide by zero error (Letu Ren) - HID: hidraw: fix memory leak in hidraw_release() (Karthik Alapati) - media: pvrusb2: fix memory leak in pvr_probe (Dongliang Mu) - udmabuf: Set the DMA mask for the udmabuf device (v2) (Vivek Kasireddy) - HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report (Lee Jones) - Bluetooth: L2CAP: Fix build errors in some archs (Luiz Augusto von Dentz) - kbuild: Fix include path in scripts/Makefile.modpost (Jing Leng) - x86/bugs: Add "unknown" reporting for MMIO Stale Data (Pawan Gupta) - s390/mm: do not trigger write fault when vma does not allow VM_WRITE (Gerald Schaefer) - mm: Force TLB flush for PFNMAP mappings before unlink_file_vma() (Jann Horn) - scsi: storvsc: Remove WQ_MEM_RECLAIM from storvsc_error_wq (Saurabh Sengar) - perf/x86/intel/uncore: Fix broken read_counter() for SNB IMC PMU (Stephane Eranian) - md: call __md_stop_writes in md_stop (Guoqing Jiang) - mm/hugetlb: fix hugetlb not supporting softdirty tracking (David Hildenbrand) - ACPI: processor: Remove freq Qos request for all CPUs (Riwen Lu) - s390: fix double free of GS and RI CBs on fork() failure (Brian Foster) - asm-generic: sections: refactor memory_intersects (Quanyang Wang) - loop: Check for overflow while configuring loop (Siddh Raman Pant) - x86/unwind/orc: Unwind ftrace trampolines with correct ORC entry (Chen Zhongjin) - btrfs: check if root is readonly while setting security xattr (Goldwyn Rodrigues) - btrfs: add info when mount fails due to stale replace target (AnandJain) - btrfs: replace: drop assert for suspended replace (Anand Jain) - btrfs: fix silent failure when deleting root reference (Filipe Manana) - ixgbe: stop resetting SYSTIME in ixgbe_ptp_start_cyclecounter (Jacob Keller) - net: Fix a data-race around sysctl_somaxconn. (Kuniyuki Iwashima) - net: Fix a data-race around netdev_budget_usecs. (Kuniyuki Iwashima) - net: Fix a data-race around netdev_budget. (Kuniyuki Iwashima) - net: Fix a data-race around sysctl_net_busy_read. (Kuniyuki Iwashima) - net: Fix a data-race around sysctl_net_busy_poll. (Kuniyuki Iwashima) - net: Fix a data-race around sysctl_tstamp_allow_data. (Kuniyuki Iwashima) - ratelimit: Fix data-races in ___ratelimit(). (Kuniyuki Iwashima) - net: Fix data-races around netdev_tstamp_prequeue. (Kuniyuki Iwashima) - net: Fix data-races around weight_p and dev_weight_[rt]x_bias. (Kuniyuki Iwashima) - netfilter: nft_tunnel: restrict it to netdev family (Pablo Neira Ayuso) - netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet families (Pablo Neira Ayuso) - netfilter: nft_payload: do not truncate csum_offset and csum_type (Pablo Neira Ayuso) - netfilter: nft_payload: report ERANGE for too long offset and length (Pablo Neira Ayuso) - bnxt_en: fix NQ resource accounting during vf creation on 57500 chips (Vikas Gupta) - net: ipvtap - add __init/__exit annotations to module init/exit funcs (Maciej Å»enczykowski) - bonding: 802.3ad: fix no transmission of LACPDUs (Jonathan Toppins) - net: moxa: get rid of asymmetry in DMA mapping/unmapping (Sergei Antonov) - net/mlx5e: Properly disable vlan strip on non-UL reps (Vlad Buslov) - rose: check NULL rose_loopback_neigh-> loopback (Bernard Pidoux) - SUNRPC: RPC level errors should set task-> tk_rpc_status (Trond Myklebust) - xfrm: fix refcount leak in __xfrm_policy_check() (Xin Xiong) - kernel/sched: Remove dl_boosted flag comment (Hui Su) - sched/deadline: Fix priority inheritance with multiple scheduling classes (Juri Lelli) - sched/deadline: Fix stalethrottling on de-/boosted tasks (Lucas Stach) - sched/deadline: Unthrottle PI boosted threads while enqueuing (Daniel Bristot de Oliveira) - pinctrl: amd: Don't save/restore interrupt status and wake status bits (Basavaraj Natikar) - Revert "selftests/bpf: Fix test_align verifier log patterns" (Jean-Philippe Brucker) - Revert "selftests/bpf: Fix "dubious pointer arithmetic" test" (Jean-Philippe Brucker) - usb: cdns3: Fix issue for clear halt endpoint (Pawel Laszczak) - kernel/sys_ni: add compat entry for fadvise64_64 (Randy Dunlap) - parisc: Fix exception handler for fldw and fstw instructions (Helge Deller) - audit: fix potential double free on error path from fsnotify_add_inode_mark (Gaosheng Cui) [5.4.17-2136.313.2.el8uek] - ice: enable ethtool hooks for E810 firmware update (John Donnelly) [Orabug: 34077831] - ice: add ice_handle_nvm_access() (John Donnelly) [Orabug: 34077831] - rds: cong: Make rds_cong_wait an array to reduce lock contention (HÃ¥kon Bugge) [Orabug: 34574093] - rds: cong: Make rs_cong_notify and rs_cong_mask atomic64_t (HÃ¥kon Bugge) [Orabug: 34574093] - mm: memcg/slab: disable cache merging for KMALLOC_NORMAL caches (Waiman Long) [Orabug: 34601144] caches (Waiman Long) [Orabug: 34601144] - mm: memcg/slab: properly set up gfp flags for objcg pointer array (Waiman Long) [Orabug: 34601144] - mm, memcg: introduce mem_cgroup_kmem_disabled() (Roman Gushchin) [Orabug: 34601144] - mm, slab: make kmalloc_info[] contain all types of names (Pengfei Li) [Orabug: 34601144] cpus_read_lock() deadlock (Tejun Heo) [Orabug: 34639998] - cgroup: Elide write-locking threadgroup_rwsem when updating csses on an empty subtree (Tejun Heo) [Orabug: 34639998] - cgroup: Optimize single thread migration (Michal KoutnÃ½) [Orabug: 34639998] - Revert "cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()" (Imran Khan) [Orabug: 34639998] cpus_read_lock() deadlock" (Imran Khan) [Orabug: 34639998] - x86/MCE/AMD, EDAC/mce_amd: Support non-uniform MCA bank typeenumeration (Yazen Ghannam) [Orabug: 34639981] - x86/MCE/AMD, EDAC/mce_amd: Add new SMCA bank types (Yazen Ghannam) [Orabug: 34639981] - x86/MCE/AMD, EDAC/mce_amd: Add new SMCA bank types (Muralidhara M K) [Orabug: 34639981] - x86/mce: Increase maximum number of banks to 64 (Akshay Gupta) [Orabug: 34639981] - x86/MCE/AMD, EDAC/amd64: Move address translation to AMD64 EDAC (Yazen Ghannam) [Orabug: 34639981] - x86/MCE/AMD: Export smca_get_bank_type symbol (Mukul Joshi) [Orabug: 34639981] - EDAC/amd64: Add support for AMD Family 19h Models 10h-1Fh and A0h-AFh (Yazen Ghannam) [Orabug: 34639981] - EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (Yazen Ghannam) [Orabug: 34639981] - EDAC: Add RDDR5 and LRDDR5 memory types (Yazen Ghannam) [Orabug: 34639981] - hwmon: (k10temp) Support up to 12 CCDs on AMD Family of processors (Babu Moger) [Orabug: 34639981] - hwmon: (k10temp) Add support for AMD Family 19h Models 10h-1Fh and A0h-AFh (Babu Moger) [Orabug: 34639981] - x86/amd_nb: Add AMD Family 19h Models (10h-1Fh) and (A0h-AFh) PCI IDs (Yazen Ghannam) [Orabug: 34639981] - hwmon: (k10temp) Remove unused definitions (Babu Moger) [Orabug: 34639981] - hwmon: (k10temp) Remove residues of current and voltage (suma hegde) [Orabug: 34639981] - hwmon: (k10temp) Add support for yellow carp (Mario Limonciello) [Orabug: 34639981] - hwmon: (k10temp) Rework the temperature offset calculation (Mario Limonciello) [Orabug: 34639981] - hwmon: (k10temp) Don't show Tdie for all Zen/Zen2/Zen3 CPU/APU (Mario Limonciello) [Orabug: 34639981] - hwmon: (k10temp) Add additional missing Zen2 and Zen3 APUs (Mario Limonciello) [Orabug: 34639981] - hwmon: (k10temp) support Zen3 APUs (David Bartley) [Orabug: 34639981] - x86/amd_nb: Add AMD family 19h model 50h PCI ids (David Bartley) [Orabug: 34639981] - hwmon: (k10temp) Zen3 Ryzen Desktop CPUs support (Gabriel Craciunescu) [Orabug: 34639981] - hwmon: (k10temp) Remove support for displaying voltage and current on Zen CPUs (Guenter Roeck) [Orabug: 34639981] - hwmon: (k10temp) Add support for Zen3 CPUs (Wei Huang) [Orabug: 34639981] - hwmon: (k10temp) Take out debugfs code (Guenter Roeck) [Orabug: 34639981] - hwmon: (k10temp) Define SVI telemetry and current factors for Zen2 CPUs (Wei Huang) [Orabug: 34639981] - hwmon: (k10temp) Create common functions and macros for Zen CPU families (Wei Huang) [Orabug: 34639981] - hwmon: (k10temp) make some symbols static (Jason Yan) [Orabug: 34639981] - hwmon: (k10temp) Reorganize and simplify temperature support detection (Guenter Roeck) [Orabug: 34639981] - Revert "hwmon: (k10temp) Add support for Zen3 CPUs" (Dave Kleikamp) [Orabug: 34639981] - uek-rpm: add missing nft_chain_nat.ko module (Venkat Venkatsubra) [Orabug: 34639977] - random: Fix incorrect type for 'rc' variable (Harshit Mogalapalli) [Orabug: 34639972] - hwmon: (opbmc) Add support for AST2600 based Pilot (Jan Zdarek) [Orabug: 34639967] - KVM: SVM: Clear the CR4 register on reset (Babu Moger) [Orabug: 34639963] - x86,swiotlb: Adjust SWIOTLB bounce buffer size for SEV guests (Ashish Kalra) [Orabug: 34639951] - netfilter: ebtables: reject blobs that don't provide all entry points (Florian Westphal) [Orabug: 34610051] - uek-rpm: Disable CONFIG_CRYPTO_STREEBOG (Victor Erminpour) [Orabug: 34610044] - uek-rpm: Disable CONFIG_CRYPTO_SM3 (Victor Erminpour) [Orabug: 34610044] - uek-rpm: Disable CONFIG_CRYPTO_SM4 (Victor Erminpour) [Orabug: 34610044] - uek-rpm: Add nftables support T93 and Ortano (Henry Willard) [Orabug: 34610035] - af_key: Do not call xfrm_probe_algs in parallel (Herbert Xu) [Orabug: 34610032] {CVE-2022-3028} - cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all() (Tetsuo Handa) [Orabug: 34610025] cpus_read_lock() deadlock (Tejun Heo) [Orabug: 34610025] - audit: use extern storage class for audit_filter_syscall() (Ankur Arora) [Orabug: 34586449] - audit: annotate branch direction for audit_in_mask() (Ankur Arora) [Orabug: 34586449] - audit: cache ctx-> major in audit_filter_syscall()(Ankur Arora) [Orabug: 34586449] [5.4.17-2136.313.1.el8uek] - video: vga16fb: Only probe for EGA and VGA 16 color graphic cards (Javier Martinez Canillas) [Orabug: 32301403] - KVM: arm: vgic: Only use the virtual state when userspace accesses enable bits (Marc Zyngier) [Orabug: 34542967] - uek-rpm: mips: enable CRYTPTO_USER config options (Dave Kleikamp) [Orabug: 34557309] _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux Security Notice: ELSA-2022-8887 pertains to essential kernel enhancements for significant vulnerabilities found in aarch64 architecture.. Oracle Linux Security, kernel Update, aarch64 Security, ELSA-2022-9998, Important Security Fix. . Severity: Important. LinuxSecurity.com Team

Nov 16, 2022 •Important Oracle

security advisorynetwork securitybuffer overflow

Red Hat OpenStack 10.0 RHSA-2021:2205-01 Critical Openvswitch Fix

An update for openvswitch is now available for Red Hat OpenStack Platform 10 (Newton). Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: Red Hat OpenStack Platform 10.0 (openvswitch) security update Advisory ID: RHSA-2021:2205-01 Product: Red Hat OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2021:2205 Issue date: 2021-06-02 CVE Names: CVE-2015-8011 ==================================================================== 1. Summary: An update for openvswitch is now available for Red Hat OpenStack Platform 10 (Newton). Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: OpenStack 10.0 Tools for RHEL 7 - noarch Red Hat OpenStack Platform 10.0 - ppc64le, x86_64 3. Description: Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fix(es): * buffer overflow in the lldp_decode function in daemon/protocols/lldp.c (CVE-2015-8011) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1896536 - CVE-2015-8011 lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c 6.Package List: Red Hat OpenStack Platform 10.0: Source: openvswitch-2.9.9-1.el7fdp.src.rpm ppc64le: openvswitch-debuginfo-2.9.9-1.el7fdp.ppc64le.rpm python-openvswitch-2.9.9-1.el7fdp.ppc64le.rpm x86_64: openvswitch-2.9.9-1.el7fdp.x86_64.rpm openvswitch-debuginfo-2.9.9-1.el7fdp.x86_64.rpm openvswitch-devel-2.9.9-1.el7fdp.x86_64.rpm python-openvswitch-2.9.9-1.el7fdp.x86_64.rpm OpenStack 10.0 Tools for RHEL 7: Source: openvswitch-2.9.9-1.el7fdp.src.rpm noarch: openvswitch-test-2.9.9-1.el7fdp.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2015-8011 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYLeV+tzjgjWX9erEAQgBGBAAmuWUgopDcU1wMZR4YZ3VTvM+4Ua2hbXd li9QnxZwWlt4vNm6gvVI9BKfgyM2739bTuVpApKcO8s5NAbaIQisSdHCcxCMsY0b oN1Y4jMc6od4vqXFT36JZT5JicAlPh5ZZQ3teFm7THc3EsThChfJ0akvuVnQo2Th F5h1Sr6jhlfNoo1H1+QjAFzb8erKoS47eE9DfDa0NqVh9a8FR7YQUiOUr+xRP7gk FneCbbJ27YuLuzT9D2DA9KV0rvXsHrsp7F5YIafhkxUe0juGzHxpyihVriJqjnqQ O5vmPF7MVIK25TbG7EehAcKC1qivOVBIMIs7WomskW+PibHzfOdMms+hyqDll/rN k+pgJV5jR7tFx1wItGZz3tg2pxRK1anPytHLadvN+DHwg6cd95Sezdjy9ncAWhZ6 uhJ1RwwCYdxuVYHm8fR6DGYk+bdedeQPqa/gVPHwfIhK/R/gNLTR/gZ+Xb/4PT3P Tnaxv1F+g4kvpPv5/GYd2c+QlJLQuoNTzSJ/ZiBQ0X0srsPTRAyJycNdB+u3ADT9 3pcOfl1Ioeydr3UMNSHZ+rPEJT8HgnHL+JO0b2gTHZZJAblT0yczGo3I7bl/hiDz 4Ft9r7T8z+jM5ajBgaSvZrILIaa220+1vmfunlBlbZJjW/JtDVS5Wtr1eE3YezVO 8Br/A6Y5gWA=r4uP -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . Essential patch now released for Red Hat OpenStack Platform 10.0, resolving significant vulnerabilities in openvswitch.. Red Hat OpenStack, SecurityUpdate, Openvswitch, Important Fix. . Severity: Important. LinuxSecurity.com Team

Jun 02, 2021 •Important Red Hat

security advisorycode executionsecurity impact

Red Hat Enterprise Linux: RHSA-2016:1217-01 Critical: Firefox Code Risk

An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Critical: firefox security update Advisory ID: RHSA-2016:1217-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:1217 Issue date: 2016-06-08 CVE Names: CVE-2016-2818 CVE-2016-2819 CVE-2016-2821 CVE-2016-2822 CVE-2016-2828 CVE-2016-2831 ==================================================================== 1. Summary: An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ppc, s390x, x86_64 Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation(v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 45.2.0 ESR. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-2818, CVE-2016-2819, CVE-2016-2821, CVE-2016-2822, CVE-2016-2828, CVE-2016-2831) Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges sushi Anton Larsson, firehack, Jordi Chancel, Christian Holler, Sylvestre Ledru, Tyson Smith, jomo, Jesse Ruderman, Julian Seward, Timothy Nikkel, Karl Tomlinson, Olli Pettay, and Gary Kwong as the original reporters. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the update, Firefox must be restarted for the changes to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1342887 - CVE-2016-2818 Mozilla: Miscellaneous memory safety hazards (rv:45.2) (MFSA 2016-49) 1342891 - CVE-2016-2819 Mozilla: Buffer overflow parsing HTML5 fragments (MFSA 2016-50) 1342892 - CVE-2016-2821 Mozilla: Use-after-free deleting tables from a contenteditable document (MFSA 2016-51) 1342893 - CVE-2016-2822 Mozilla: Addressbar spoofing though the SELECT element (MFSA 2016-52) 1342895 - CVE-2016-2828 Mozilla: Use-after-free when textures are used in WebGL operations after recycle pool destruction (MFSA 2016-56) 1342898 - CVE-2016-2831 Mozilla: Entering fullscreen and persistent pointerlock without user permission permission (MFSA 2016-59) 6. Package List: Red Hat Enterprise Linux Desktop (v. 5client): Source: firefox-45.2.0-1.el5_11.src.rpm i386: firefox-45.2.0-1.el5_11.i386.rpm firefox-debuginfo-45.2.0-1.el5_11.i386.rpm x86_64: firefox-45.2.0-1.el5_11.i386.rpm firefox-45.2.0-1.el5_11.x86_64.rpm firefox-debuginfo-45.2.0-1.el5_11.i386.rpm firefox-debuginfo-45.2.0-1.el5_11.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: firefox-45.2.0-1.el5_11.src.rpm i386: firefox-45.2.0-1.el5_11.i386.rpm firefox-debuginfo-45.2.0-1.el5_11.i386.rpm ppc: firefox-45.2.0-1.el5_11.ppc64.rpm firefox-debuginfo-45.2.0-1.el5_11.ppc64.rpm s390x: firefox-45.2.0-1.el5_11.s390.rpm firefox-45.2.0-1.el5_11.s390x.rpm firefox-debuginfo-45.2.0-1.el5_11.s390.rpm firefox-debuginfo-45.2.0-1.el5_11.s390x.rpm x86_64: firefox-45.2.0-1.el5_11.i386.rpm firefox-45.2.0-1.el5_11.x86_64.rpm firefox-debuginfo-45.2.0-1.el5_11.i386.rpm firefox-debuginfo-45.2.0-1.el5_11.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 6): Source: firefox-45.2.0-1.el6_8.src.rpm i386: firefox-45.2.0-1.el6_8.i686.rpm firefox-debuginfo-45.2.0-1.el6_8.i686.rpm x86_64: firefox-45.2.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.2.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): x86_64: firefox-45.2.0-1.el6_8.i686.rpm firefox-debuginfo-45.2.0-1.el6_8.i686.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: firefox-45.2.0-1.el6_8.src.rpm x86_64: firefox-45.2.0-1.el6_8.i686.rpm firefox-45.2.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.2.0-1.el6_8.i686.rpm firefox-debuginfo-45.2.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: firefox-45.2.0-1.el6_8.src.rpm i386: firefox-45.2.0-1.el6_8.i686.rpm firefox-debuginfo-45.2.0-1.el6_8.i686.rpm ppc64: firefox-45.2.0-1.el6_8.ppc64.rpm firefox-debuginfo-45.2.0-1.el6_8.ppc64.rpm s390x: firefox-45.2.0-1.el6_8.s390x.rpm firefox-debuginfo-45.2.0-1.el6_8.s390x.rpm x86_64: firefox-45.2.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.2.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.6): ppc64: firefox-45.2.0-1.el6_8.ppc.rpm firefox-debuginfo-45.2.0-1.el6_8.ppc.rpm s390x: firefox-45.2.0-1.el6_8.s390.rpm firefox-debuginfo-45.2.0-1.el6_8.s390.rpm x86_64: firefox-45.2.0-1.el6_8.i686.rpm firefox-debuginfo-45.2.0-1.el6_8.i686.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: firefox-45.2.0-1.el6_8.src.rpm i386: firefox-45.2.0-1.el6_8.i686.rpm firefox-debuginfo-45.2.0-1.el6_8.i686.rpm x86_64: firefox-45.2.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.2.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): x86_64: firefox-45.2.0-1.el6_8.i686.rpm firefox-debuginfo-45.2.0-1.el6_8.i686.rpm Red Hat Enterprise Linux Client (v. 7): Source: firefox-45.2.0-1.el7_2.src.rpm x86_64: firefox-45.2.0-1.el7_2.x86_64.rpm firefox-debuginfo-45.2.0-1.el7_2.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: firefox-45.2.0-1.el7_2.i686.rpm firefox-debuginfo-45.2.0-1.el7_2.i686.rpm Red Hat Enterprise Linux Server (v. 7): Source: firefox-45.2.0-1.el7_2.src.rpm ppc64: firefox-45.2.0-1.el7_2.ppc64.rpm firefox-debuginfo-45.2.0-1.el7_2.ppc64.rpm ppc64le: firefox-45.2.0-1.el7_2.ppc64le.rpm firefox-debuginfo-45.2.0-1.el7_2.ppc64le.rpm s390x: firefox-45.2.0-1.el7_2.s390x.rpm firefox-debuginfo-45.2.0-1.el7_2.s390x.rpm x86_64: firefox-45.2.0-1.el7_2.x86_64.rpm firefox-debuginfo-45.2.0-1.el7_2.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: firefox-45.2.0-1.el7_2.ppc.rpm firefox-debuginfo-45.2.0-1.el7_2.ppc.rpm s390x: firefox-45.2.0-1.el7_2.s390.rpm firefox-debuginfo-45.2.0-1.el7_2.s390.rpm x86_64: firefox-45.2.0-1.el7_2.i686.rpm firefox-debuginfo-45.2.0-1.el7_2.i686.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: firefox-45.2.0-1.el7_2.src.rpm x86_64: firefox-45.2.0-1.el7_2.x86_64.rpm firefox-debuginfo-45.2.0-1.el7_2.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: firefox-45.2.0-1.el7_2.i686.rpm firefox-debuginfo-45.2.0-1.el7_2.i686.rpm These packages are GPG signed by Red Hat for security. Our keyand details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2016-2818 https://access.redhat.com/security/cve/CVE-2016-2819 https://access.redhat.com/security/cve/CVE-2016-2821 https://access.redhat.com/security/cve/CVE-2016-2822 https://access.redhat.com/security/cve/CVE-2016-2828 https://access.redhat.com/security/cve/CVE-2016-2831 https://access.redhat.com/security/updates/classification/#critical https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/#firefoxesr45.2 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFXWFCnXlSAg2UNWIIRAre6AJsG776pxk86oQKBejKHZC/EFaVuDwCdEt6j LJtwyOvdcmFCa4yOnCfBaBk=p2gE -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Important security patch released for Mozilla Firefox on Red Hat Enterprise Linux; several vulnerabilities could allow unauthorized code execution.. Red Hat Enterprise Linux, Firefox Update, Critical Security Fix. . Severity: Critical. LinuxSecurity.com Team

Jun 08, 2016 •Critical Red Hat

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

openSUSE Leap 15.6: Kernel Important Security Fix 2025:4521-1

Oracle Linux 7 ELSA-2024-12378 Critical: Kernel Security Update

Red Hat: RHSA-2023-3612-01 Critical: OpenShift 4.13.4 Security Issues

Red Hat Enterprise Linux 7 RHSA-2023-0296 Critical: Firefox Security Update

Oracle Linux 7 ELSA-2022-10079 Critical: Kernel Security Update

Oracle Linux 8 ELSA-2022-9998 Critical: Kernel Important Security Fix

Red Hat OpenStack 10.0 RHSA-2021:2205-01 Critical Openvswitch Fix

Red Hat Enterprise Linux: RHSA-2016:1217-01 Critical: Firefox Code Risk

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Fedora 44 Transmission 4.1.2 Important Clickjacking Fix CVE-2026-38978

Fedora 44 libre 4.8.1 Critical Update Details for Real-Time Communication

Fedora 44 NextCloud Update Denial of Service JSON Tampering 2026-30881a5be7

Fedora 44 python-starlette Security Fix for CVE-2026-48710

Fedora 44 perl-Cpanel-JSON-XS Moderate Denial of Service CVE-2026-9516

Fedora 44 rubygem-yard High Path Traversal Fix Vuln 2026-acefc1fe48

Fedora 44 Rust Sequoia Sop Low-Severity Fix Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-sq Low Threat Security Advisory 2026-5c5f4f40a4

Fedora 44 rust-sequoia-wot Low Severity Security Fix 2026-5c5f4f40a4

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!