[Oraclevm-errata] OVMSA-2018-0037 Important: Oracle VM 3.4 Unbreakable Enterprise kernel security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Fri Apr 27 07:16:51 PDT 2018


Oracle VM Security Advisory OVMSA-2018-0037

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kernel-uek-4.1.12-124.14.2.el6uek.x86_64.rpm
kernel-uek-firmware-4.1.12-124.14.2.el6uek.noarch.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/kernel-uek-4.1.12-124.14.2.el6uek.src.rpm



Description of changes:

[4.1.12-124.14.2.el6uek]
- scsi: iscsi_tcp: set BDI_CAP_STABLE_WRITES when data digest enabled 
(Jianchao Wang)  [Orabug: 27726302]
- block: fix bio_will_gap() for first bvec with offset (Ming Lei) 
[Orabug: 27775588]
- block: relax check on sg gap (Ming Lei)  [Orabug: 27775588]
- block: don't optimize for non-cloned bio in bio_get_last_bvec() (Ming 
Lei)  [Orabug: 27775588]
- block: merge: get the 1st and last bvec via helpers (Ming Lei) 
[Orabug: 27775588]
- block: get the 1st and last bvec via helpers (Ming Lei)  [Orabug: 
27775588]
- block: check virt boundary in bio_will_gap() (Ming Lei)  [Orabug: 
27775588]
- block: bio: introduce helpers to get the 1st and last bvec (Ming Lei) 
[Orabug: 27775588]
- Failing to send a CLOSE if file is opened WRONLY and server reboots on 
a 4.x mount (Olga Kornievskaia)  [Orabug: 27848303]
- ext4: add validity checks for bitmap block numbers (Theodore Ts'o) 
[Orabug: 27854373]  {CVE-2018-1093} {CVE-2018-1093}
- ocfs2: Take inode cluster lock before moving reflinked inode from 
orphan dir (Ashish Samant)  [Orabug: 27869411]
- Input: gtco - fix potential out-of-bound access (Dmitry Torokhov) 
[Orabug: 27869844]  {CVE-2017-16643}
- Input: ims-psu - check if CDC union descriptor is sane (Dmitry 
Torokhov)  [Orabug: 27870333]  {CVE-2017-16645}
- vfio/pci: Virtualize Maximum Payload Size (Alex Williamson)
- vfio-pci: Virtualize PCIe & AF FLR (Alex Williamson)
- uek-rpm: Disable DMA CMA (Jianchao Wang)  [Orabug: 27892359]
- nvme-pci: fix multiple ctrl removal scheduling (Rakesh Pandit) 
[Orabug: 27892359]
- nvme-pci: Fix nvme queue cleanup if IRQ setup fails (Jianchao Wang) 
[Orabug: 27892359]
- nvme/pci: Fix stuck nvme reset (Keith Busch)  [Orabug: 27892359]
- nvme: don't schedule multiple resets (Keith Busch)  [Orabug: 27892359]
- blk-mq: fix use-after-free in blk_mq_free_tag_set() (Junichi Nomura) 
[Orabug: 27892359]
- USB: core: prevent malicious bNumInterfaces overflow (Alan Stern) 
[Orabug: 27895909]
- driver core: platform: fix race condition with driver_override (Adrian 
Salido)  [Orabug: 27897874]  {CVE-2017-12146}
- usb/core: usb_alloc_dev(): fix setting of ->portnum (Nicolai Stange) 
[Orabug: 27908746]



More information about the Oraclevm-errata mailing list