ELSA-2021-9035

Опубликовано: 08 фев. 2021

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2021-9035: Unbreakable Enterprise kernel security update (IMPORTANT)

[4.14.35-2025.405.3]

Revert 'rds: Deregister all FRWR mr with free_mr' (aru kolappan) [Orabug: 32426280]

[4.14.35-2025.405.2]

nfs: Fix security label length not being reset (Jeffrey Mitchell) [Orabug: 32350995]

[4.14.35-2025.405.1]

net/rds: Fix gfp_t parameter (Hans Westgaard Ry) [Orabug: 32372162]
uek-rpm: update kABI lists for new symbol (Dan Duval) [Orabug: 32378208]
sysctl: handle overflow in proc_get_long (Christian Brauner) [Orabug: 32382641]
net/mlx5: Use a single MSIX vector for all control EQs in VFs (Ariel Levkovich) [Orabug: 31785275]
net/mlx5: Fix available EQs FW used to reserve (Denis Drozdov) [Orabug: 31785275]
net/mlx5: Use max_num_eqs for calculation of required MSIX vectors (Denis Drozdov) [Orabug: 31785275]
net/mlx5: Expose DEVX specification (Yishai Hadas) [Orabug: 31785275]
x86/process: Mark cpu inactive before offlining (Mridula Shastry) [Orabug: 32245085]
target: fix XCOPY NAA identifier lookup (David Disseldorp) [Orabug: 32248040] {CVE-2020-28374}

[4.14.35-2025.405.0]

KVM: x86: clflushopt should be treated as a no-op by emulation (David Edmondson) [Orabug: 32251913]
tty: Fix ->session locking (Jann Horn) [Orabug: 32266681] {CVE-2020-29660}
tty: Fix ->pgrp locking in tiocspgrp() (Jann Horn) [Orabug: 32266681] {CVE-2020-29660}
lockd: don't use interval-based rebinding over TCP (Calum Mackay) [Orabug: 32337718]
mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start (Zhang Xiaohui) [Orabug: 32349207] {CVE-2020-36158}
add license checking to kABI checker (Dan Duval) [Orabug: 32355210]

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

kernel-uek

4.14.35-2025.405.3.el7uek

kernel-uek-debug

4.14.35-2025.405.3.el7uek

kernel-uek-debug-devel

4.14.35-2025.405.3.el7uek

kernel-uek-devel

4.14.35-2025.405.3.el7uek

kernel-uek-headers

4.14.35-2025.405.3.el7uek

kernel-uek-tools

4.14.35-2025.405.3.el7uek

kernel-uek-tools-libs

4.14.35-2025.405.3.el7uek

kernel-uek-tools-libs-devel

4.14.35-2025.405.3.el7uek

perf

4.14.35-2025.405.3.el7uek

python-perf

4.14.35-2025.405.3.el7uek

Oracle Linux x86_64

kernel-uek

4.14.35-2025.405.3.el7uek

kernel-uek-debug

4.14.35-2025.405.3.el7uek

kernel-uek-debug-devel

4.14.35-2025.405.3.el7uek

kernel-uek-devel

4.14.35-2025.405.3.el7uek

kernel-uek-doc

4.14.35-2025.405.3.el7uek

kernel-uek-tools

4.14.35-2025.405.3.el7uek

Связанные CVE

CVE-2020-28374

CVE-2020-29660

CVE-2020-36158

Ссылки на источники

Связанные уязвимости

ELSA-2021-9039

oracle-oval

больше 4 лет назад

ELSA-2021-9039: Unbreakable Enterprise kernel-container security update (IMPORTANT)

ELSA-2021-9038

oracle-oval

больше 4 лет назад

ELSA-2021-9038: Unbreakable Enterprise kernel-container security update (IMPORTANT)

ELSA-2021-9037

oracle-oval

больше 4 лет назад

ELSA-2021-9037: Unbreakable Enterprise kernel security update (IMPORTANT)

SUSE-SU-2021:0133-1

suse-cvrf

больше 4 лет назад

Security update for the Linux Kernel

SUSE-SU-2021:0118-1

suse-cvrf

больше 4 лет назад

Security update for the Linux Kernel