Описание
ELSA-2026-50253: Unbreakable Enterprise kernel security update: Copy Fail (IMPORTANT)
[5.15.0-319.201.4.4]
- crypto: algif_aead - Fix minimum RX size check for decryption (Herbert Xu) [Orabug: 39291961]
- crypto: af_alg - Fix page reassignment overflow in af_alg_pull_tsgl (Herbert Xu) [Orabug: 39291961]
- crypto: authencesn - Fix src offset when decrypting in-place (Herbert Xu) [Orabug: 39291961]
- crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption (Herbert Xu) [Orabug: 39291961]
- crypto: authenc - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39291961]
- crypto: algif_aead - snapshot IV for async AEAD requests (Douya Le) [Orabug: 39291961]
- crypto: algif_aead - Revert to operating out-of-place (Herbert Xu) [Orabug: 39291961] {CVE-2026-31431}
- crypto: algif_aead - use memcpy_sglist() instead of null skcipher (Eric Biggers) [Orabug: 39291961]
- crypto: scatterwalk - Backport memcpy_sglist() (Eric Biggers) [Orabug: 39291961]
- uek-rpm: Enable FWCTL for aarch64 (Dave Kleikamp) [Orabug: 39291938]
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
bpftool
5.15.0-319.201.4.4.el8uek
kernel-uek
5.15.0-319.201.4.4.el8uek
kernel-uek-container
5.15.0-319.201.4.4.el8uek
kernel-uek-container-debug
5.15.0-319.201.4.4.el8uek
kernel-uek-core
5.15.0-319.201.4.4.el8uek
kernel-uek-debug
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-core
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-devel
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-modules
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-modules-extra
5.15.0-319.201.4.4.el8uek
kernel-uek-devel
5.15.0-319.201.4.4.el8uek
kernel-uek-doc
5.15.0-319.201.4.4.el8uek
kernel-uek-modules
5.15.0-319.201.4.4.el8uek
kernel-uek-modules-extra
5.15.0-319.201.4.4.el8uek
Oracle Linux x86_64
bpftool
5.15.0-319.201.4.4.el8uek
kernel-uek
5.15.0-319.201.4.4.el8uek
kernel-uek-container
5.15.0-319.201.4.4.el8uek
kernel-uek-container-debug
5.15.0-319.201.4.4.el8uek
kernel-uek-core
5.15.0-319.201.4.4.el8uek
kernel-uek-debug
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-core
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-devel
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-modules
5.15.0-319.201.4.4.el8uek
kernel-uek-debug-modules-extra
5.15.0-319.201.4.4.el8uek
kernel-uek-devel
5.15.0-319.201.4.4.el8uek
kernel-uek-doc
5.15.0-319.201.4.4.el8uek
kernel-uek-modules
5.15.0-319.201.4.4.el8uek
kernel-uek-modules-extra
5.15.0-319.201.4.4.el8uek
Oracle Linux 9
Oracle Linux aarch64
bpftool
5.15.0-319.201.4.4.el9uek
kernel-uek
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-core
5.15.0-319.201.4.4.el9uek
kernel-uek-modules-extra
5.15.0-319.201.4.4.el9uek
kernel-uek64k
5.15.0-319.201.4.4.el9uek
kernel-uek64k-core
5.15.0-319.201.4.4.el9uek
kernel-uek64k-devel
5.15.0-319.201.4.4.el9uek
kernel-uek64k-modules
5.15.0-319.201.4.4.el9uek
kernel-uek64k-modules-extra
5.15.0-319.201.4.4.el9uek
kernel-uek-container
5.15.0-319.201.4.4.el9uek
kernel-uek-container-debug
5.15.0-319.201.4.4.el9uek
kernel-uek-core
5.15.0-319.201.4.4.el9uek
kernel-uek-debug
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-devel
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-modules
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-modules-extra
5.15.0-319.201.4.4.el9uek
kernel-uek-devel
5.15.0-319.201.4.4.el9uek
kernel-uek-doc
5.15.0-319.201.4.4.el9uek
kernel-uek-modules
5.15.0-319.201.4.4.el9uek
Oracle Linux x86_64
bpftool
5.15.0-319.201.4.4.el9uek
kernel-uek
5.15.0-319.201.4.4.el9uek
kernel-uek-container
5.15.0-319.201.4.4.el9uek
kernel-uek-container-debug
5.15.0-319.201.4.4.el9uek
kernel-uek-core
5.15.0-319.201.4.4.el9uek
kernel-uek-debug
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-core
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-devel
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-modules
5.15.0-319.201.4.4.el9uek
kernel-uek-debug-modules-extra
5.15.0-319.201.4.4.el9uek
kernel-uek-devel
5.15.0-319.201.4.4.el9uek
kernel-uek-doc
5.15.0-319.201.4.4.el9uek
kernel-uek-modules
5.15.0-319.201.4.4.el9uek
kernel-uek-modules-extra
5.15.0-319.201.4.4.el9uek
Связанные CVE
Связанные уязвимости
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
In the Linux kernel, the following vulnerability has been resolved: c ...