[El-errata] ELSA-2025-2501 Important: Oracle Linux 7 kernel security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Apr 1 12:46:00 UTC 2025
Oracle Linux Security Advisory ELSA-2025-2501
http://linux.oracle.com/errata/ELSA-2025-2501.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
bpftool-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-abi-whitelists-3.10.0-1160.119.1.0.7.el7.noarch.rpm
kernel-debug-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-debug-devel-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-devel-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-doc-3.10.0-1160.119.1.0.7.el7.noarch.rpm
kernel-headers-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-tools-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-tools-libs-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
perf-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
python-perf-3.10.0-1160.119.1.0.7.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-3.10.0-1160.119.1.0.7.el7.src.rpm
Related CVEs:
CVE-2023-52922
CVE-2024-50302
CVE-2024-53197
Description of changes:
[3.10.0-1160.119.1.0.7]
- ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices (Beno_t Sevens) {CVE-2024-53197} [Orabug: 37686305]
- can: bcm: Fix UAF in bcm_proc_show() (YueHaibing) {CVE-2023-52922} [Orabug: 37686305]
- HID: core: zero-initialize the report buffer (Beno_t Sevens) {CVE-2024-50302} [Orabug: 37686305]
[3.10.0-1160.119.1.0.6]
- media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (Benoit Sevens) {CVE-2024-53104} [Orabug: 37584712]
[3.10.0-1160.119.1.0.5]
- wifi: mac80211: Avoid address calculations via out of bounds array indexing (Kees Cook) [Orabug: 37092983]
[3.10.0-1160.119.1.0.4]
- fuse: fix pipe buffer lifetime for direct_io (Miklos Szeredi) [Orabug: 36947298]
[3.10.0-1160.119.1.0.3]
- net: fix __dst_negative_advice() race (Eric Dumazet) [Orabug: 36947298]
[3.10.0-1160.119.1.0.2]
- md/raid5: fix oops during stripe resizing (Ritika Srivastava) [Orabug: 34048726]
- blk-mq: Remove generation seqeunce (Ritika Srivastava) [Orabug: 33964689]
- block: init flush rq ref count to 1 (Ritika Srivastava) [Orabug: 33964689]
- block: fix null pointer dereference in blk_mq_rq_timed_out() (Ritika Srivastava) [Orabug: 33964689]
- [xen/netfront] stop tx queues during live migration (Orabug: 33446314)
- [xen/balloon] Support xend-based toolstack (Orabug: 28663970)
- [x86/apic/x2apic] avoid allocate multiple irq vectors for a single interrupt on multiple cpu, otherwise irq vectors would be used up when there are only 2 cpu online per node. [Orabug: 28691156]
- [bonding] avoid repeated display of same link status change. [Orabug: 28109857]
- [ipc] ipc/sem.c: bugfix for semctl(,,GETZCNT) (Manfred Spraul) [Orabug: 22552377]
- kexec: Increase KEXEC_AUTO_RESERVED_SIZE to 256M [Orabug: 31517048]
More information about the El-errata
mailing list