ELSA-2024-9605

Опубликовано: 19 нояб. 2024

Источник: oracle-oval

Платформа: Oracle Linux 9

Описание

ELSA-2024-9605: kernel security update (MODERATE)

[5.14.0-503.14.1_5.OL9]
Disable UKI signing [Orabug: 36571828]
Update Oracle Linux certificates (Kevin Lyons)
Disable signing for aarch64 (Ilya Okomin)
Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
Update x509.genkey [Orabug: 24817676]
Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5
Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535]
Add Oracle Linux IMA certificates

[5.14.0-503.14.1_5]

ext4: fix off by one issue in alloc_flex_gd() (Pavel Reichl) [RHEL-65318]
ping: fix address binding wrt vrf (Antoine Tenart) [RHEL-57564 RHEL-50920]
smb: client: stop flooding dmesg in smb2_calc_signature() (Paulo Alcantara) [RHEL-36346 RHEL-61193]
smb: client: print failed session logoffs with FYI (Paulo Alcantara) [RHEL-36346 RHEL-61193]
smb: client: propagate error from cifs_construct_tcon() (Paulo Alcantara) [RHEL-36346 RHEL-61193]
smb: client: fix DFS failover in multiuser mounts (Paulo Alcantara) [RHEL-36346 RHEL-61193]
smb: client: fix DFS interlink failover (Paulo Alcantara) [RHEL-36346 RHEL-61193]
smb: client: improve purging of cached referrals (Paulo Alcantara) [RHEL-36346 RHEL-61193]
smb: client: avoid unnecessary reconnects when refreshing referrals (Paulo Alcantara) [RHEL-36346 RHEL-61193]
smb: client: handle lack of FSCTL_GET_REPARSE_POINT support (Paulo Alcantara) [RHEL-36346 RHEL-57983]
smb: client: fix deadlock in smb2_find_smb_tcon() (Paulo Alcantara) [RHEL-36346 RHEL-57983]
cifs: Fix reacquisition of volume cookie on still-live connection (Paulo Alcantara) [RHEL-36346 RHEL-57983]

[5.14.0-503.13.1_5]

efi: libstub: Move screen_info handling to common code (Maxim Levitsky) [RHEL-65344]
mpls: Reduce skb re-allocations due to skb_cow() (Guillaume Nault) [RHEL-61697]
mptcp: pm: Fix uaf in __timer_delete_sync (CKI Backport Bot) [RHEL-64678 RHEL-60737] {CVE-2024-46858}
ceph: fix cap ref leak via netfs init_request (Patrick Donnelly) [RHEL-62667 RHEL-61459]
gitlab-ci: provide consistent kcidb_tree_name (Michael Hofmann)

[5.14.0-503.12.1_5]

net: nexthop: Initialize all fields in dumped nexthops (Antoine Tenart) [RHEL-55080] {CVE-2024-42283}
tracing/osnoise: Fix build when timerlat is not enabled (Tomas Glozar) [RHEL-61870 RHEL-39968]
tracing/timerlat: Add interface_lock around clearing of kthread in stop_kthread() (Tomas Glozar) [RHEL-61870 RHEL-39968]
tracing/timerlat: Only clear timer if a kthread exists (Tomas Glozar) [RHEL-61870 RHEL-39968]
tracing/osnoise: Use a cpumask to know what threads are kthreads (Tomas Glozar) [RHEL-61870 RHEL-39968]
iommufd: Require drivers to supply the cache_invalidate_user ops (CKI Backport Bot) [RHEL-60681 RHEL-60761] {CVE-2024-46824}
Revert 'fw loader: Remove the now superfluous sentinel element from ctl_table array' (Eric Chanudet) [RHEL-62925 RHEL-50129]
smb: client: fix hang in wait_for_response() for negproto (Jay Shin) [RHEL-61607 RHEL-57983]

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

bpftool

7.4.0-503.14.1.el9_5

kernel-tools

5.14.0-503.14.1.el9_5

kernel-tools-libs

5.14.0-503.14.1.el9_5

python3-perf

5.14.0-503.14.1.el9_5

kernel-cross-headers

5.14.0-503.14.1.el9_5

kernel-tools-libs-devel

5.14.0-503.14.1.el9_5

kernel-headers

5.14.0-503.14.1.el9_5

perf

5.14.0-503.14.1.el9_5

rtla

5.14.0-503.14.1.el9_5

Oracle Linux x86_64

bpftool

7.4.0-503.14.1.el9_5

kernel

5.14.0-503.14.1.el9_5

kernel-abi-stablelists

5.14.0-503.14.1.el9_5

kernel-core

5.14.0-503.14.1.el9_5

kernel-debug

5.14.0-503.14.1.el9_5

kernel-debug-core

5.14.0-503.14.1.el9_5

kernel-debug-modules

5.14.0-503.14.1.el9_5

kernel-debug-modules-core

5.14.0-503.14.1.el9_5

kernel-debug-modules-extra

5.14.0-503.14.1.el9_5

kernel-debug-uki-virt

5.14.0-503.14.1.el9_5

kernel-modules

5.14.0-503.14.1.el9_5

kernel-modules-core

5.14.0-503.14.1.el9_5

kernel-modules-extra

5.14.0-503.14.1.el9_5

kernel-tools

5.14.0-503.14.1.el9_5

kernel-tools-libs

5.14.0-503.14.1.el9_5

kernel-uki-virt

5.14.0-503.14.1.el9_5

kernel-uki-virt-addons

5.14.0-503.14.1.el9_5

python3-perf

5.14.0-503.14.1.el9_5

kernel-debug-devel

5.14.0-503.14.1.el9_5

kernel-debug-devel-matched

5.14.0-503.14.1.el9_5

kernel-devel

5.14.0-503.14.1.el9_5

kernel-devel-matched

5.14.0-503.14.1.el9_5

kernel-doc

5.14.0-503.14.1.el9_5

kernel-headers

5.14.0-503.14.1.el9_5

perf

5.14.0-503.14.1.el9_5

rtla

5.14.0-503.14.1.el9_5

kernel-cross-headers

5.14.0-503.14.1.el9_5

kernel-tools-libs-devel

5.14.0-503.14.1.el9_5

libperf

5.14.0-503.14.1.el9_5

Связанные CVE

CVE-2024-46824

CVE-2024-46858

CVE-2024-42283

Ссылки на источники

Связанные уязвимости

CVE-2024-46824

CVSS3: 5.5

ubuntu

9 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: iommufd: Require drivers to supply the cache_invalidate_user ops If drivers don't do this then iommufd will oops invalidation ioctls with something like: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 Mem abort info: ESR = 0x0000000086000004 EC = 0x21: IABT (current EL), IL = 32 bits SET = 0, FnV = 0 EA = 0, S1PTW = 0 FSC = 0x04: level 0 translation fault user pgtable: 4k pages, 48-bit VAs, pgdp=0000000101059000 [0000000000000000] pgd=0000000000000000, p4d=0000000000000000 Internal error: Oops: 0000000086000004 [#1] PREEMPT SMP Modules linked in: CPU: 2 PID: 371 Comm: qemu-system-aar Not tainted 6.8.0-rc7-gde77230ac23a #9 Hardware name: linux,dummy-virt (DT) pstate: 81400809 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=-c) pc : 0x0 lr : iommufd_hwpt_invalidate+0xa4/0x204 sp : ffff800080f3bcc0 x29: ffff800080f3bcf0 x28: ffff0000c369b300 x27: 0000000000000000 x26: 000000000000000...