[El-errata] ELSA-2024-12845 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

Tue Nov 26 11:04:49 UTC 2024

Oracle Linux Security Advisory ELSA-2024-12845

http://linux.oracle.com/errata/ELSA-2024-12845.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
kernel-uek-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.336.5.3.1.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.336.5.3.1.el8uek.src.rpm

Related CVEs:

CVE-2024-26734
CVE-2024-47674

Description of changes:

[5.4.17-2136.336.5.3.1.el8uek]
- mm: avoid leaving partial pfn mappings around in error case (Linus Torvalds)  [Orabug: 37311329]  {CVE-2024-47674}
- mm: add remap_pfn_range_notrack (Christoph Hellwig)  [Orabug: 37311329]  {CVE-2024-47674}
- mm/memory.c: make remap_pfn_range() reject unaligned addr (Alex Zhang)  [Orabug: 37311329]  {CVE-2024-47674}
- mm: fix ambiguous comments for better code readability (chenqiwu)  [Orabug: 37311329]  {CVE-2024-47674}
- mm: clarify a confusing comment for remap_pfn_range() (WANG Wenhu)  [Orabug: 37311329]  {CVE-2024-47674}
- devlink: fix possible use-after-free and memory leaks in devlink_init() (Vasiliy Kovalev)  [Orabug: 37311325]  {CVE-2024-26734}