[El-errata] ELSA-2024-12814 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

Wed Nov 13 17:46:34 UTC 2024

Oracle Linux Security Advisory ELSA-2024-12814

http://linux.oracle.com/errata/ELSA-2024-12814.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-4.14.35-2047.542.2.el7uek.x86_64.rpm
kernel-uek-debug-4.14.35-2047.542.2.el7uek.x86_64.rpm
kernel-uek-debug-devel-4.14.35-2047.542.2.el7uek.x86_64.rpm
kernel-uek-devel-4.14.35-2047.542.2.el7uek.x86_64.rpm
kernel-uek-tools-4.14.35-2047.542.2.el7uek.x86_64.rpm
kernel-uek-doc-4.14.35-2047.542.2.el7uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-4.14.35-2047.542.2.el7uek.src.rpm

Related CVEs:

CVE-2024-41012
CVE-2024-41015
CVE-2024-41017
CVE-2024-41020
CVE-2024-41059
CVE-2024-41063
CVE-2024-41068
CVE-2024-41072
CVE-2024-41081

Description of changes:

[4.14.35-2047.542.2.el7uek]
- fs/dcache: allow fractional values in fs.negative-dentry-limit (Gautham Ananthakrishna)  [Orabug: 37156524]
- lib/math: move int_pow() from pwm_bl.c for wider use (Andy Shevchenko)  [Orabug: 37156524]

[4.14.35-2047.542.1.el7uek]
- genirq/cpuhotplug: Retry with cpu_online_mask when migration fails (Dongli Zhang)  [Orabug: 37132827]
- net/mlx5e: nullify cq->dbg pointer in mlx5_debug_cq_remove() (Valentine Fatiev)  [Orabug: 37104452]
- RDMA/cma: Always set static rate to 0 for RoCE (Mark Zhang)  [Orabug: 37100216]
- net/mlx5e: Fix memory leak in mlx5_core_destroy_cq() error path (Valentine Fatiev)  [Orabug: 37099360]
- LTS version v4.14.352 (Yifei Liu) 
- filelock: Fix fcntl/close race recovery compat path (Jann Horn) [Orabug: 36874759] {CVE-2024-41012} {CVE-2024-41020}
- jfs: don't walk off the end of ealist (lei lu) [Orabug: 36891668] {CVE-2024-41017}
- ocfs2: add bounds checking to ocfs2_check_dir_entry() (lei lu) [Orabug: 36891656] {CVE-2024-41015}
- ACPI: processor_idle: Fix invalid comparison with insertion sort for latency (Kuan-Wei Chiu) 
- ARM: 9324/1: fix get_user() broken with veneer (Masahiro Yamada) 
- filelock: Remove locks reliably when fcntl/close race is detected (Jann Horn) [Orabug: 36874759] {CVE-2024-41012} {CVE-2024-41020}
- hfsplus: fix uninit-value in copy_name (Edward Adam Davis) [Orabug: 36896970] {CVE-2024-41059}
- selftests/vDSO: fix clang build errors and warnings (John Hubbard) 
- spi: imx: Don't expect DMA for i.MX{25,35,50,51,53} cspi devices (Uwe Kleine-König) 
- fs: better handle deep ancestor chains in is_subdir() (Christian Brauner) 
- Bluetooth: hci_core: cancel all works upon hci_unregister_dev() (Tetsuo Handa) [Orabug: 36896995] {CVE-2024-41063}
- net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and DEV_STATS_ADD() (Yunshui Jiang) 
- net: usb: qmi_wwan: add Telit FN912 compositions (Daniele Palmas) 
- ALSA: dmaengine_pcm: terminate dmaengine before synchronize (Shengjiu Wang) 
- s390/sclp: Fix sclp_init() cleanup on failure (Heiko Carstens) [Orabug: 36897034] {CVE-2024-41068}
- Input: elantech - fix touchpad state on resume for Lenovo N24 (Jonathan Denose) 
- wifi: cfg80211: wext: add extra SIOCSIWSCAN data check (Dmitry Antipov) [Orabug: 36897313] {CVE-2024-41072}
- mei: demote client disconnect warning on suspend to debug (Alexander Usyskin) 
- fs/file: fix the check in find_next_fd() (Yuntao Wang) 
- kconfig: remove wrong expr_trans_bool() (Masahiro Yamada) 
- kconfig: gconf: give a proper initial state to the Save button (Masahiro Yamada) 
- ila: block BH in ila_output() (Eric Dumazet) [Orabug: 36897361] {CVE-2024-41081}
- Input: silead - Always support 10 fingers (Hans de Goede) 
- Input: silead - add support for capactive home button found on some x86 tablets (Hans de Goede) 
- wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan() (Dmitry Antipov) 
- wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata (Nicolas Escande) 
- ACPI: EC: Avoid returning AE_OK on errors in address space handler (Armin Wolf) 
- ACPI: EC: Abort address space access upon error (Armin Wolf) 
- scsi: qedf: Set qed_slowpath_params to zero before use (Saurav Kashyap) 
- gcc-plugins: Rename last_stmt() for GCC 14+ (Kees Cook)