Описание
ELSA-2025-22865: kernel security update (MODERATE)
[5.14.0-611.13.1]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5]
- Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535]
- Add Oracle Linux IMA certificates
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985764]
[5.14.0-611.13.1]
- can: j1939: add missing calls in NETDEV_UNREGISTER notification handler (CKI Backport Bot) [RHEL-124105] {CVE-2025-39925}
- can: j1939: implement NETDEV_UNREGISTER notification handler (CKI Backport Bot) [RHEL-124105] {CVE-2025-39925}
[5.14.0-611.12.1]
- x86/hyperv: Fix kdump on Azure CVMs (Li Tian) [RHEL-129776]
- net/mlx5: fs, fix UAF in flow counter release (Michal Schmidt) [RHEL-124428] {CVE-2025-39979}
- octeon_ep: Validate the VF ID (Kamal Heib) [RHEL-117604]
- dpll: zl3073x: fix kernel-doc name and missing parameter in fw.c (Ivan Vecera) [RHEL-116162]
- dpll: zl3073x: Fix output pin registration (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Increase maximum size of flash utility (Ivan Vecera) [RHEL-116162]
- dpll: zl3073x: Fix double free in zl3073x_devlink_flash_update() (Ivan Vecera) [RHEL-116162]
- dpll: zl3073x: Implement devlink flash callback (Ivan Vecera) [RHEL-116162]
- dpll: zl3073x: Add firmware loading functionality (Ivan Vecera) [RHEL-116162]
- dpll: zl3073x: Add low-level flash functions (Ivan Vecera) [RHEL-116162]
- dpll: zl3073x: Add functions to access hardware registers (Ivan Vecera) [RHEL-116162]
- dpll: zl3073x: Handle missing or corrupted flash configuration (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Refactor DPLL initialization (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: ZL3073X_I2C and ZL3073X_SPI should depend on NET (Ivan Vecera) [RHEL-113083]
- dpll: Make ZL3073X invisible (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Fix build failure (Ivan Vecera) [RHEL-113083]
- redhat/configs: enable CONFIG_ZL3073X* (Ivan Vecera) [RHEL-113083]
- redhat/configs: enable CONFIG_I2C_MUX_PCA954x on x86 (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Add support to get fractional frequency offset (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Add support to adjust phase (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Implement phase offset monitor feature (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Add support to get phase offset on connected input pin (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Add support to get/set esync on pins (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Add support to get/set frequency on pins (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Implement input pin state setting in automatic mode (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Add support to get/set priority on input pins (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Implement input pin selection in manual mode (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Register DPLL devices and pins (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Read DPLL types and pin properties from system firmware (Ivan Vecera) [RHEL-113083]
- dpll: zl3073x: Fetch invariants during probe (Ivan Vecera) [RHEL-113083]
- dpll: Add basic Microchip ZL3073x support (Ivan Vecera) [RHEL-113083]
- spi: Introduce spi_get_device_match_data() helper (Ivan Vecera) [RHEL-113083]
- dt-bindings: dpll: Add support for Microchip Azurite chip family (Ivan Vecera) [RHEL-113083]
- dt-bindings: dpll: Add DPLL device and pin (Ivan Vecera) [RHEL-113083]
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
kernel-cross-headers
5.14.0-611.13.1.el9_7
kernel-tools-libs-devel
5.14.0-611.13.1.el9_7
libperf
5.14.0-611.13.1.el9_7
kernel-headers
5.14.0-611.13.1.el9_7
perf
5.14.0-611.13.1.el9_7
python3-perf
5.14.0-611.13.1.el9_7
rtla
5.14.0-611.13.1.el9_7
rv
5.14.0-611.13.1.el9_7
kernel-tools
5.14.0-611.13.1.el9_7
kernel-tools-libs
5.14.0-611.13.1.el9_7
Oracle Linux x86_64
kernel
5.14.0-611.13.1.el9_7
kernel-abi-stablelists
5.14.0-611.13.1.el9_7
kernel-core
5.14.0-611.13.1.el9_7
kernel-debug
5.14.0-611.13.1.el9_7
kernel-debug-core
5.14.0-611.13.1.el9_7
kernel-debug-modules
5.14.0-611.13.1.el9_7
kernel-debug-modules-core
5.14.0-611.13.1.el9_7
kernel-debug-modules-extra
5.14.0-611.13.1.el9_7
kernel-debug-uki-virt
5.14.0-611.13.1.el9_7
kernel-modules
5.14.0-611.13.1.el9_7
kernel-modules-core
5.14.0-611.13.1.el9_7
kernel-modules-extra
5.14.0-611.13.1.el9_7
kernel-tools
5.14.0-611.13.1.el9_7
kernel-tools-libs
5.14.0-611.13.1.el9_7
kernel-uki-virt
5.14.0-611.13.1.el9_7
kernel-uki-virt-addons
5.14.0-611.13.1.el9_7
kernel-debug-devel
5.14.0-611.13.1.el9_7
kernel-debug-devel-matched
5.14.0-611.13.1.el9_7
kernel-devel
5.14.0-611.13.1.el9_7
kernel-devel-matched
5.14.0-611.13.1.el9_7
kernel-doc
5.14.0-611.13.1.el9_7
kernel-headers
5.14.0-611.13.1.el9_7
perf
5.14.0-611.13.1.el9_7
python3-perf
5.14.0-611.13.1.el9_7
rtla
5.14.0-611.13.1.el9_7
rv
5.14.0-611.13.1.el9_7
kernel-cross-headers
5.14.0-611.13.1.el9_7
kernel-tools-libs-devel
5.14.0-611.13.1.el9_7
libperf
5.14.0-611.13.1.el9_7
Связанные CVE
Связанные уязвимости
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: fs, fix UAF in flow counter release Fix a kernel trace [1] caused by releasing an HWS action of a local flow counter in mlx5_cmd_hws_delete_fte(), where the HWS action refcount and mutex were not initialized and the counter struct could already be freed when deleting the rule. Fix it by adding the missing initializations and adding refcount for the local flow counter struct. [1] Kernel log: Call Trace: <TASK> dump_stack_lvl+0x34/0x48 mlx5_fs_put_hws_action.part.0.cold+0x21/0x94 [mlx5_core] mlx5_fc_put_hws_action+0x96/0xad [mlx5_core] mlx5_fs_destroy_fs_actions+0x8b/0x152 [mlx5_core] mlx5_cmd_hws_delete_fte+0x5a/0xa0 [mlx5_core] del_hw_fte+0x1ce/0x260 [mlx5_core] mlx5_del_flow_rules+0x12d/0x240 [mlx5_core] ? ttwu_queue_wakelist+0xf4/0x110 mlx5_ib_destroy_flow+0x103/0x1b0 [mlx5_ib] uverbs_free_flow+0x20/0x50 [ib_uverbs] destroy_hw_idr_uobject+0x1b/0x50 [ib_uverbs] uverbs_destroy_uobject+0x34/0x1a0 [ib_uverbs...
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: fs, fix UAF in flow counter release Fix a kernel trace [1] caused by releasing an HWS action of a local flow counter in mlx5_cmd_hws_delete_fte(), where the HWS action refcount and mutex were not initialized and the counter struct could already be freed when deleting the rule. Fix it by adding the missing initializations and adding refcount for the local flow counter struct. [1] Kernel log: Call Trace: <TASK> dump_stack_lvl+0x34/0x48 mlx5_fs_put_hws_action.part.0.cold+0x21/0x94 [mlx5_core] mlx5_fc_put_hws_action+0x96/0xad [mlx5_core] mlx5_fs_destroy_fs_actions+0x8b/0x152 [mlx5_core] mlx5_cmd_hws_delete_fte+0x5a/0xa0 [mlx5_core] del_hw_fte+0x1ce/0x260 [mlx5_core] mlx5_del_flow_rules+0x12d/0x240 [mlx5_core] ? ttwu_queue_wakelist+0xf4/0x110 mlx5_ib_destroy_flow+0x103/0x1b0 [mlx5_ib] uverbs_free_flow+0x20/0x50 [ib_uverbs] destroy_hw_idr_uobject+0x1b/0x50 [ib_uverbs] uverbs_destroy_u
In the Linux kernel, the following vulnerability has been resolved: n ...