-
Fri Apr 23 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.503.1.el7uek]
- bpf, x86: Validate computation of branch displacements for x86-64 (Piotr Krysiuk) [Orabug: 32759961] {CVE-2021-29154}
- uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. (Somasundaram Krishnasamy) [Orabug: 32781585]
- ext4: handle error of ext4_setup_system_zone() on remount (Jan Kara) [Orabug: 32656590] {CVE-2021-3428}
-
Fri Apr 16 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.503.0.el7uek]
- tcp: do not mess with cloned skbs in tcp_add_backlog() (Eric Dumazet) [Orabug: 32660047]
- iommu/amd: Set DTE[IntTabLen] to represent 512 IRTEs (Suravee Suthikulpanit) [Orabug: 32640437]
- iommu/amd: Increase interrupt remapping table limit to 512 entries (Suravee Suthikulpanit) [Orabug: 32640437]
- rds: ib: move statistics counting from caller to callee in rds_ib_recv_refill (Håkon Bugge) [Orabug: 32702021]
- uek-rpm: Enable IRQ time accounting option for UEK5 (Saeed Mirzamohammadi) [Orabug: 32733985]
- btrfs: fix race when cloning extent buffer during rewind of an old root (Filipe Manana) [Orabug: 32669453] {CVE-2021-28964}
- perf/x86/intel: Fix a crash caused by zero PEBS status (Kan Liang) [Orabug: 32669472] {CVE-2021-28971}
- xen-blkback: don't leak persistent grants from xen_blkbk_map() (Jan Beulich) [Orabug: 32697854] {CVE-2021-28688}
- ocfs2: fix deadlock between setattr and dio_end_io_write (Wengang Wang) [Orabug: 32545320]
- rds: Add code to debug rds_tcp loopback hang (Rao Shoaib) [Orabug: 32422982]
- bpf: Add sanity check for upper ptr_limit (Piotr Krysiuk) [Orabug: 32656764] {CVE-2020-27170} {CVE-2020-27171}
- bpf: Simplify alu_limit masking for pointer arithmetic (Piotr Krysiuk) [Orabug: 32656764] {CVE-2020-27170} {CVE-2020-27171}
- bpf: Prohibit alu ops for pointer types not defining ptr_limit (Piotr Krysiuk) [Orabug: 32656764] {CVE-2020-27170} {CVE-2020-27171}
- netfilter: x_tables: Use correct memory barriers. (Mark Tomlinson) [Orabug: 32709123] {CVE-2021-29650}
- netfilter: x_tables: make xt_replace_table wait until old rules are not used anymore (Florian Westphal) [Orabug: 32709123] {CVE-2021-29650}
-
Wed Apr 14 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.502.5.el7uek]
- md/bitmap: wait for external bitmap writes to complete during tear down (Sudhakar Panneerselvam) [Orabug: 32655105]
- IB/mlx5: Reduce max order of memory allocated for xlt update (Praveen Kumar Kannoju) [Orabug: 32751642]
- IB/mlx5: Use fragmented QP's buffer for in-kernel users (Guy Levi) [Orabug: 32627473]
- net/mlx5: Refactor fragmented buffer struct fields and init flow (Tariq Toukan) [Orabug: 32627473]
-
Mon Apr 05 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.502.4.el7uek]
- Revert "rds: ib: Remove two ib_modify_qp() calls" (Sharath Srinivasan) [Orabug: 32715567]
- uek-rpm: Update SecureBoot Digicert 2021 certificates (Somasundaram Krishnasamy) [Orabug: 32532514]
-
Fri Mar 26 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.502.3.el7uek]
- video: hyperv_fb: Fix the mmap() regression for v5.4.y and older (Dexuan Cui) [Orabug: 32620797]
- video: hyperv_fb: Fix the cache type when mapping the VRAM (Dexuan Cui) [Orabug: 32620797]
- RDMA/core: Fix corrupted SL on passive side (Håkon Bugge) [Orabug: 32644356]
-
Fri Mar 19 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.502.2.el7uek]
- EDAC: skx_common: downgrade message importance on missing PCI device (Aristeu Rozanski) [Orabug: 32651294]
- Xen/gnttab: handle p2m update errors on a per-slot basis (Jan Beulich) [Orabug: 32651477] {CVE-2021-28038}
- KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (Wanpeng Li) [Orabug: 32633928]
- xen/netback: avoid race in xenvif_rx_ring_slots_available() (Juergen Gross) [Orabug: 32640132]
-
Fri Mar 12 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.502.1.el7uek]
- mm/vmscan: fix infinite loop in drop_slab_node (Chunxin Zang) [Orabug: 32619973]
- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [Orabug: 32603381] {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [Orabug: 32603381] {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365}
- scsi: iscsi: Report connection state in sysfs (Gabriel Krisman Bertazi) [Orabug: 32603381] {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365}
- sysfs: Add sysfs_emit and sysfs_emit_at to format sysfs output (Joe Perches) [Orabug: 32603381] {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Lee Duncan) [Orabug: 32603381] {CVE-2021-27363} {CVE-2021-27364} {CVE-2021-27365}
- uek-rpm: add opbmc to nano-kernel (Eric Snowberg) [Orabug: 32555678]
- ovl: restore creds in all return paths of ovl_iterate (Somasundaram Krishnasamy) [Orabug: 32608965]
-
Fri Mar 05 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.502.0.el7uek]
- rds: rds_drop_egress events should be enabled as part of RDS_RTD_SND (Alan Maguire) [Orabug: 32586918]
- rds: use dedicated rds_send_lock_contention tracepoint instead of drop (Alan Maguire) [Orabug: 32586918]
- rds: ensure saddr/daddr for tracepoints is not NULL (Alan Maguire) [Orabug: 32580944]
- hsr: use netdev_err() instead of WARN_ONCE() (Taehee Yoo) [Orabug: 32576073]
- vhost: do not try to access device IOTLB when not initialized (Jason Wang) [Orabug: 31906788]
- uek-rpm: config-aarch-embedded2 update for Feb 2021 Elba patches (Dave Kleikamp) [Orabug: 32544715]
- huge page support for device memory (Neel Patel) [Orabug: 32544715]
- mmc: sdhci-cadence-elba.c: Remove SDHCI_QUIRK_BROKEN_TIMEOUT_VAL (David Clear) [Orabug: 32544715]
- KVM: nVMX: use correct clean fields when copying from eVMCS (Vitaly Kuznetsov) [Orabug: 32544092]
- net/mlx4_en: Handle TX error CQE (Moshe Shemesh) [Orabug: 32492971]
- net/mlx4_en: Avoid scheduling restart task if it is already running (Moshe Shemesh) [Orabug: 32492971]
- PCI: hotplug: Add module parameter to allow user control of LEDs (James Puthukattukaran) [Orabug: 32527186]
- net/rds: Reject error code change (Ka-Cheong Poon) [Orabug: 32565543]
- rds: ib: Remove two ib_modify_qp() calls (Håkon Bugge) [Orabug: 32519917]
- arm64: kexec: add support for kexec with spin-table (Henry Willard) [Orabug: 32546040]
- x86/kvm/hyper-v: move VMX controls sanitization out of nested_enable_evmcs() (Vitaly Kuznetsov) [Orabug: 32543800]
- x86/kvm/hyper-v: remove stale evmcs_already_enabled check from nested_enable_evmcs() (Vitaly Kuznetsov) [Orabug: 32543800]
- net/rds: Need to check shutdown progress in rds_conn_path_destroy() (Ka-Cheong Poon) [Orabug: 32536002]
- A/A Bonding: In rdmaip synchronize access to ip_config[].rdmaip_dev (Sharath Srinivasan) [Orabug: 32050122]
- net/rds: In rds_send_xmit() use sg_next() to get the next sg entry (Sharath Srinivasan) [Orabug: 32125836]
- net/rds: increase 1MB MR pool size for RDS (Manjunath Patil) [Orabug: 32551377]
-
Mon Feb 22 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.501.0.el7uek]
- block/diskstats: accumulate all per-cpu counters in one pass (Konstantin Khlebnikov) [Orabug: 32531559]
- uek-rpm: config-aarch-embedded2 update for Jan 2021 Elba patches (Dave Kleikamp) [Orabug: 32532588]
- dts/pensando: Fix compatile -> compatible typeo. (David Clear) [Orabug: 32532588]
- Interrupt domain controllers for Elba ASIC. (David Clear) [Orabug: 32532588]
- elba_defconfig: CONFIG_PTP_1588_CLOCK=y (David Clear) [Orabug: 32532588]
- soc/pensando: pcie driver (David Clear) [Orabug: 32532588]
- pcie: control access to pcie clock domain registers (David Clear) [Orabug: 32532588]
- mmc: sdhci-cadence-elba ADMA and HS200 tuning support (David Clear) [Orabug: 32532588]
- enable rcu callback offloading & adaptive tick mode to reduce jitter (David Clear) [Orabug: 32532588]
- uek-rpm: Enable perf trace support for OL7 kernel builds. (Mridula Shastry) [Orabug: 32528194]
- uek-rpm: update config-aarch-embedded2 for Elba (Dave Kleikamp) [Orabug: 32361844]
- elba: u-boot environment partitions in the device-tree (David Clear) [Orabug: 32361844]
- i2c: Add Elba Ortano Lattice RD1173 I2C controller driver. (David Clear) [Orabug: 32361844]
- elba: one more mnet for elba.dtsi (David Clear) [Orabug: 32361844]
- elba: Add IPv6 support to elba_defconfig (David Clear) [Orabug: 32361844]
- mmc: sdhci-cadence-elba sdhci driver cleanup (David Clear) [Orabug: 32361844]
- spi-dw: custom chip-select handler for elba (David Clear) [Orabug: 32361844]
- arch/arm64: Pensando elba dts and config files (David Clear) [Orabug: 32361844]
- drivers/soc/pensando: crash dump driver. (David Clear) [Orabug: 32361844]
- drivers/pensando/soc: Boot State Machine (BSM) integration. (David Clear) [Orabug: 32361844]
- drivers/soc/pensando: /dev/capmem driver. (David Clear) [Orabug: 32361844]
- drivers/mmc/host: Pensando Elba support in the Cadence EMMC host controller (David Clear) [Orabug: 32361844]
- drivers/gpio: support the Elba SPI chip-selects. (David Clear) [Orabug: 32361844]
- arch/arm64: Pensando Elba SoC declaration. (David Clear) [Orabug: 32361844]
- mmc: sdhci-cadence: fix PHY write (Vladimir Kondratiev) [Orabug: 32361844]
- mmc: sdhci-cadence: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN for UniPhier (Masahiro Yamada) [Orabug: 32361844]
- mmc: sdhci-cadence: remove unneeded 'inline' marker (Masahiro Yamada) [Orabug: 32361844]
- mmc: sdhci-cadence: use struct_size() helper (Gustavo A. R. Silva) [Orabug: 32361844]
- mmc: sdhci-cadence: fix logically and structurally dead code (Gustavo A. R. Silva) [Orabug: 32361844]
- mmc: sdhci-cadence: send tune request twice to work around errata (Masahiro Yamada) [Orabug: 32361844]
- mmc: sdhci-cadence: use bitfield access macros for cleanup (Masahiro Yamada) [Orabug: 32361844]
- Revert "Support the reset pulse width from the device-tree." (Dave Kleikamp) [Orabug: 32361844]
- Revert "Initial Pensando Capri SoC declaration" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Add Capri EMMC phy and instantiate the driver in the dts" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Capri SPI driver" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Interrupt domain controllers for Capri ASIC." (Dave Kleikamp) [Orabug: 32361844]
- Revert "Add uio support for Capri PCIE and Link interrupts" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Pensando/Capri PCIE panic handler." (Dave Kleikamp) [Orabug: 32361844]
- Revert "Pensando crash dump driver" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Pensando Boot State Machine (BSM) integration." (Dave Kleikamp) [Orabug: 32361844]
- Revert "Add mnic nodes to the Pensando devicetree" (Dave Kleikamp) [Orabug: 32361844]
- Revert "mtd/spi-nor/cadence-quadspi.c: Speed up reads." (Dave Kleikamp) [Orabug: 32361844]
- Revert "Add /proc/xmaps" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Add Pensando Capri board .dts files and default configs" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Provide for precise control of pgprot for Pensando" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Kconfig option to disable outer-cache-allocate for Pensando" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Add /dev/capmem driver for Pensando" (Dave Kleikamp) [Orabug: 32361844]
- Revert "Make low-speed APB bus accesses single threaded" (Dave Kleikamp) [Orabug: 32361844]
- sched/topology: Assert non-NUMA topology masks don't (partially) overlap (Valentin Schneider) [Orabug: 32485794]
- x86/msr: Add a pointer to an URL which contains further details (Borislav Petkov) [Orabug: 32409137]
- x86/msr: Downgrade unrecognized MSR message (Borislav Petkov) [Orabug: 32409137]
- x86/msr: Do not allow writes to MSR_IA32_ENERGY_PERF_BIAS (Borislav Petkov) [Orabug: 32409137]
- x86/msr: Prevent userspace MSR access from dominating the console (Chris Down) [Orabug: 32409137]
- x86/msr: Filter MSR writes (Borislav Petkov) [Orabug: 32409137]
- tools/power/x86_energy_perf_policy: Read energy_perf_bias from sysfs (Borislav Petkov) [Orabug: 32409137]
- tools/power/turbostat: Read energy_perf_bias from sysfs (Borislav Petkov) [Orabug: 32409137]
- tools/power/cpupower: Read energy_perf_bias from sysfs (Borislav Petkov) [Orabug: 32409137]
- uek-rpm: Enable Oracle Pilot BMC module (Eric Snowberg) [Orabug: 32422664]
- hwmon: Add a new Oracle Pilot BMC driver (Eric Snowberg) [Orabug: 32422664]
- ovl: verify permissions in ovl_path_open() (Miklos Szeredi) [Orabug: 32435220] {CVE-2020-16120}
- ovl: switch to mounter creds in readdir (Miklos Szeredi) [Orabug: 32435220] {CVE-2020-16120}
- ovl: pass correct flags for opening real directory (Miklos Szeredi) [Orabug: 32435220]
- l2tp: fix race in pppol2tp_release with session object destroy (James Chapman) [Orabug: 32435324]
- l2tp: fix races with tunnel socket close (James Chapman) [Orabug: 32435324]
- l2tp: don't use inet_shutdown on ppp session destroy (James Chapman) [Orabug: 32435324]
- l2tp: don't use inet_shutdown on tunnel destroy (James Chapman) [Orabug: 32435324]
- l2tp: exit_net cleanup check added (Vasily Averin) [Orabug: 32435324]
- l2tp: remove the .tunnel_sock field from struct pppol2tp_session (Guillaume Nault) [Orabug: 32435324]
- l2tp: avoid using ->tunnel_sock for getting session's parent tunnel (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove .tunnel_sock from struct l2tp_eth (Guillaume Nault) [Orabug: 32435324]
- l2tp: don't close sessions in l2tp_tunnel_destruct() (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove field 'dev' from struct l2tp_eth (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove l2tp_tunnel_count and l2tp_session_count (Guillaume Nault) [Orabug: 32435324]
- l2tp: remove ->ref() and ->deref() (Guillaume Nault) [Orabug: 32435324]
- net: l2tp: mark expected switch fall-through (Gustavo A. R. Silva) [Orabug: 32435324]
- l2tp: initialise PPP sessions before registering them (Guillaume Nault) [Orabug: 32435324]
- rds: CONFIG_RDS_DEBUG + tracepoints breaks rds build (Alan Maguire) [Orabug: 32442506]
- futex: Handle faults correctly for PI futexes (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Simplify fixup_pi_state_owner() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Use pi_state_update_owner() in put_pi_state() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- rtmutex: Remove unused argument from rt_mutex_proxy_unlock() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Thomas Gleixner) [Orabug: 32447189] {CVE-2021-3347}
- futex: Don't enable IRQs unconditionally in put_pi_state() (Dan Carpenter) [Orabug: 32447189] {CVE-2021-3347}
- nbd: freeze the queue while we're adding connections (Josef Bacik) [Orabug: 32447287] {CVE-2021-3348}
- rds: avoid crash on IB conn path shutdown prepare (Alan Maguire) [Orabug: 32457375]
- net/rds: WARNING in rds_conn_drop (Ka-Cheong Poon) [Orabug: 32481707]
- rds: tracepoints incorrectly reporting valid rds ping as drop (Alan Maguire) [Orabug: 32490010]
- rds: tracepoint-related KASAN: use-after-free Read in rds_send_xmit (Alan Maguire) [Orabug: 32490032]
- selinux: allow reading labels before policy is loaded (Jonathan Lebon) [Orabug: 32492279]
- selinux: allow labeling before policy is loaded (Jonathan Lebon) [Orabug: 32492279]
-
Wed Feb 17 2021 Somasundaram Krishnasamy <somasundaram.krishnasamy@oracle.com> [4.14.35-2047.500.10.el7uek]
- xen-blkback: fix error handling in xen_blkbk_map() (Jan Beulich) [Orabug: 32492110] {CVE-2021-26930}
- xen-scsiback: don't "handle" error by BUG() (Jan Beulich) [Orabug: 32492102] {CVE-2021-26931}
- xen-netback: don't "handle" error by BUG() (Jan Beulich) [Orabug: 32492102] {CVE-2021-26931}
- xen-blkback: don't "handle" error by BUG() (Jan Beulich) [Orabug: 32492102] {CVE-2021-26931}
- Xen/gntdev: correct error checking in gntdev_map_grant_pages() (Jan Beulich) [Orabug: 32492094] {CVE-2021-26932}
- Xen/gntdev: correct dev_bus_addr handling in gntdev_map_grant_pages() (Jan Beulich) [Orabug: 32492094] {CVE-2021-26932}
- Xen/x86: also check kernel mapping in set_foreign_p2m_mapping() (Jan Beulich) [Orabug: 32492094] {CVE-2021-26932}
- Xen/x86: don't bail early from clear_foreign_p2m_mapping() (Jan Beulich) [Orabug: 32492094] {CVE-2021-26932}
- tap: fix use-after-free (Michael S. Tsirkin) [Orabug: 32466083]
- vhost scsi: alloc vhost_scsi with kvzalloc() to avoid delay (Dongli Zhang) [Orabug: 32471695]
- Fix double free KASAN warnings and use after free of kmalloc-32 object. (Imran Khan) [Orabug: 32480357]