[El-errata] New Ksplice updates for UEKR5 4.14.35 on OL7 (ELBA-2020-5523)
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Jan 29 01:16:44 PST 2020
Synopsis: ELBA-2020-5523 can now be patched using Ksplice
Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle Linux Bug Fix Advisory, ELBA-2020-5523.
More information about this errata can be found at
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack running UEKR5 4.14.35
on OL7 install these updates.
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
* Memory leak in Mellanox ConnextX HCA Infiniband CX-3 virtual functions.
Missing resource deallocation for Mellanox ConnectX HCA CX-3 virtual
function handling could result in a memory leak and eventual resource
Orabug: 30811362, 30811374
* NULL pointer dereference when mounting a CIFS filesystem with invalid mount option.
A missing check when mounting a CIFS filesystem with an invalid devname
as a mount option could lead to a NULL pointer dereference. A local
attacker could use this flaw to cause a denial-of-service.
* CVE-2019-15917: Use-after-free when registering Bluetooth HCI uart device.
A logic error when registering Bluetooth HCI uart device could lead to a
use-after-free. A local attacker could use this flaw to cause a
* Memory corruption in Reliable Datagram Socket send completion.
Incorrect locking when completing a Reliable Datagram Socket send could
result in memory corruption and a kernel crash.
* Oracle ASM device hang during offline.
Incorrect error handling could result in an Oracle ASM device being
stuck in the online state during an offline operation.
* Network stall during RDMA failover.
A logic error when performing failover for an RDMA connection could
result in lengthly networking stalls under specific conditions.
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the El-errata