Описание
ELSA-2025-13960: kernel security update (IMPORTANT)
[4.18.0-553.70.1_10.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985772]
[4.18.0-553.70.1_10]
- i2c/designware: Fix an initialization issue (CKI Backport Bot) [RHEL-106617] {CVE-2025-38380}
- Bluetooth: hci_core: Fix use-after-free in vhci_flush() (David Marlin) [RHEL-103246] {CVE-2025-38250}
- net_sched: ets: Fix double list add in class with netem as child qdisc (Xin Long) [RHEL-104717] {CVE-2025-37914}
- sch_ets: make est_qlen_notify() idempotent (Xin Long) [RHEL-104717]
- drm/vkms: Fix use after free and double free on init error (CKI Backport Bot) [RHEL-99402] {CVE-2025-22097}
- s390/pci: Do not try re-enabling load/store if device is disabled (Mete Durlu) [RHEL-105600]
- s390/pci: Fix stale function handles in error handling (Mete Durlu) [RHEL-105600]
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
kernel-tools-libs-devel
4.18.0-553.70.1.el8_10
bpftool
4.18.0-553.70.1.el8_10
kernel-cross-headers
4.18.0-553.70.1.el8_10
kernel-headers
4.18.0-553.70.1.el8_10
kernel-tools
4.18.0-553.70.1.el8_10
kernel-tools-libs
4.18.0-553.70.1.el8_10
perf
4.18.0-553.70.1.el8_10
python3-perf
4.18.0-553.70.1.el8_10
Oracle Linux x86_64
kernel-tools-libs-devel
4.18.0-553.70.1.el8_10
kernel
4.18.0-553.70.1.el8_10
kernel-cross-headers
4.18.0-553.70.1.el8_10
kernel-debug-core
4.18.0-553.70.1.el8_10
kernel-debug-modules
4.18.0-553.70.1.el8_10
kernel-debug-modules-extra
4.18.0-553.70.1.el8_10
kernel-doc
4.18.0-553.70.1.el8_10
kernel-tools-libs
4.18.0-553.70.1.el8_10
perf
4.18.0-553.70.1.el8_10
bpftool
4.18.0-553.70.1.el8_10
kernel-abi-stablelists
4.18.0-553.70.1.el8_10
kernel-core
4.18.0-553.70.1.el8_10
kernel-debug
4.18.0-553.70.1.el8_10
kernel-debug-devel
4.18.0-553.70.1.el8_10
kernel-devel
4.18.0-553.70.1.el8_10
kernel-headers
4.18.0-553.70.1.el8_10
kernel-modules
4.18.0-553.70.1.el8_10
kernel-modules-extra
4.18.0-553.70.1.el8_10
kernel-tools
4.18.0-553.70.1.el8_10
python3-perf
4.18.0-553.70.1.el8_10
Связанные уязвимости
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the driver initialization fails, the vkms_exit() function might access an uninitialized or freed default_config pointer and it might double free it. Fix both possible errors by initializing default_config only when the driver initialization succeeded.
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the driver initialization fails, the vkms_exit() function might access an uninitialized or freed default_config pointer and it might double free it. Fix both possible errors by initializing default_config only when the driver initialization succeeded.
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the driver initialization fails, the vkms_exit() function might access an uninitialized or freed default_config pointer and it might double free it. Fix both possible errors by initializing default_config only when the driver initialization succeeded.
In the Linux kernel, the following vulnerability has been resolved: d ...