[ol7_UEKR4_archive] kernel-uek-firmware-4.1.12-124.48.5.el7uek.noarch

Name:	kernel-uek-firmware
Version:	4.1.12
Release:	124.48.5.el7uek
Architecture:	noarch
Group:	Development/System
Size:	3004314
License:	GPL+ and GPLv2+ and MIT and Redistributable, no modification permitted
RPM:	kernel-uek-firmware-4.1.12-124.48.5.el7uek.noarch.rpm
Source RPM:	kernel-uek-4.1.12-124.48.5.el7uek.src.rpm
Build Date:	Fri Feb 19 2021
Build Host:	host-100-100-224-39.blddevtest1iad.osdevelopmeniad.oraclevcn.com
Vendor:	Oracle America
URL:	http://www.kernel.org/
Summary:	Firmware files used by the Linux kernel
Description:	Kernel firmware includes firmware files required for some devices to operate.

Changelog (Show File list) (Show related packages)

Thu Feb 18 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.5.el7uek]

- kernel/acct.c: fix the acct->needcheck check in check_free_space() (Oleg Nesterov)  [Orabug: 31587485]  
- HID: hid-input: clear unmapped usages (Dmitry Torokhov)  [Orabug: 32464790]  {CVE-2020-0431} 
- tcp: fix to update snd_wl1 in bulk receiver fast path (Neal Cardwell)  [Orabug: 32498826]

Thu Feb 18 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.4.el7uek]

- xen-blkback: fix error handling in xen_blkbk_map() (Jan Beulich)  [Orabug: 32520758]  {CVE-2021-26930} 
- xen-scsiback: don't "handle" error by BUG() (Jan Beulich)  [Orabug: 32520750]  {CVE-2021-26931} 
- xen-netback: don't "handle" error by BUG() (Jan Beulich)  [Orabug: 32520750]  {CVE-2021-26931} 
- xen-blkback: don't "handle" error by BUG() (Jan Beulich)  [Orabug: 32520750]  {CVE-2021-26931} 
- Xen/gntdev: correct error checking in gntdev_map_grant_pages() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932} 
- Xen/gntdev: correct dev_bus_addr handling in gntdev_map_grant_pages() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932} 
- Xen/x86: also check kernel mapping in set_foreign_p2m_mapping() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932} 
- Xen/x86: don't bail early from clear_foreign_p2m_mapping() (Jan Beulich)  [Orabug: 32520717]  {CVE-2021-26932}

Tue Feb 09 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.3.el7uek]

- bnxt_en: Fix ethtool -x crash when device is down. (Michael Chan)  [Orabug: 32466092]

Tue Feb 09 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.2.el7uek]

- vhost scsi: alloc vhost_scsi with kvzalloc() to avoid delay (Dongli Zhang)  [Orabug: 32471166]

Tue Feb 02 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.48.1.el7uek]

- nfs: Fix security label length not being reset (Jeffrey Mitchell)  [Orabug: 32350996]  
- rds: Add code to debug rds_tcp loopback hang (Rao Shoaib)  [Orabug: 32382656]

Tue Jan 19 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.47.3.el7uek]

- sysctl: handle overflow in proc_get_long (Christian Brauner)  [Orabug: 31588015]

Tue Jan 12 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.47.2.el7uek]

- mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Qing Xu)  [Orabug: 31350932]  {CVE-2020-12653} 
- lockd: don't use interval-based rebinding over TCP (Calum Mackay)  [Orabug: 31435700]  
- ALSA: rawmidi: Fix racy buffer resize under concurrent accesses (Takashi Iwai)  [Orabug: 32240688]  {CVE-2020-27786} 
- xenbus/xenbus_backend: Disallow pending watch messages (SeongJae Park)  [Orabug: 32247942]  {CVE-2020-29568} 
- xen/xenbus: Count pending messages for each watch (SeongJae Park)  [Orabug: 32247942]  {CVE-2020-29568} 
- xen/xenbus/xen_bus_type: Support will_handle watch callback (SeongJae Park)  [Orabug: 32247942]  {CVE-2020-29568} 
- xen/xenbus: Add 'will_handle' callback support in xenbus_watch_path() (SeongJae Park)  [Orabug: 32247942]  {CVE-2020-29568} 
- xen/xenbus: Allow watches discard events before queueing (SeongJae Park)  [Orabug: 32247942]  {CVE-2020-29568} 
- KVM: x86: clflushopt should be treated as a no-op by emulation (David Edmondson)  [Orabug: 32251907]  
- tty: Fix ->session locking (Jann Horn)  [Orabug: 32266682]  {CVE-2020-29660} 
- tty: Fix ->pgrp locking in tiocspgrp() (Jann Horn)  [Orabug: 32266682]  {CVE-2020-29660} 
- tty: core: Use correct spinlock flavor in tiocspgrp() (Peter Hurley)  [Orabug: 32266682]  {CVE-2020-29660} 
- mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start (Zhang Xiaohui)  [Orabug: 32349208]  {CVE-2020-36158}

Tue Jan 12 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.47.1.el7uek]

- target: fix XCOPY NAA identifier lookup (Mike Christie)  [Orabug: 32374139]  {CVE-2020-28374}

Wed Jan 06 2021 Brian Maly <brian.maly@oracle.com> [4.1.12-124.46.4.el7uek]

- xen/events: block rogue events for some time (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/events: defer eoi in case of excessive number of events (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/events: use a common cpu hotplug hook for event channels (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/events: switch user event channels to lateeoi model (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/pciback: use lateeoi irq binding (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/scsiback: use lateeoi irq binding (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/netback: use lateeoi irq binding (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/blkback: use lateeoi irq binding (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/events: add a new "late EOI" evtchn framework (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/events: fix race in evtchn_fifo_unmask() (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen/events: add a proper barrier to 2-level uevent unmasking (Juergen Gross)  [Orabug: 31984335]  {CVE-2020-27673} 
- xen-blkback: set ring->xenblkd to NULL after kthread_stop() (Pawel Wieczorkiewicz)  [Orabug: 32223358]  {CVE-2020-29569}

Tue Dec 15 2020 Brian Maly <brian.maly@oracle.com> [4.1.12-124.46.3.el7uek]

- mwifiex: fix possible heap overflow in mwifiex_process_country_ie() (Ganapathi Bhat)  [Orabug: 30781859]  {CVE-2019-14895} {CVE-2019-14895} 
- ext4: fix ext4_empty_dir() for directories with holes (Jan Kara)  [Orabug: 31265320]  {CVE-2019-19037} {CVE-2019-19037} 
- netlabel: cope with NULL catmap (Paolo Abeni)  [Orabug: 31350493]  {CVE-2020-10711} 
- scsi: mptfusion: Fix double fetch bug in ioctl (Dan Carpenter)  [Orabug: 31350941]  {CVE-2020-12652} 
- scsi: mptfusion: Add bounds check in mptctl_hp_targetinfo() (Dan Carpenter)  [Orabug: 31350941]  {CVE-2020-12652} 
- USB: core: Fix free-while-in-use bug in the USB S-Glibrary (Alan Stern)  [Orabug: 31350967]  {CVE-2020-12464} 
- drivers: usb: core: Minimize irq disabling in usb_sg_cancel() (David Mosberger)  [Orabug: 31350967]  {CVE-2020-12464} 
- drivers: usb: core: Don't disable irqs in usb_sg_wait() during URB submit. (David Mosberger)  [Orabug: 31350967]  {CVE-2020-12464} 
- ext4: work around deleting a file with i_nlink == 0 safely (Theodore Ts'o)  [Orabug: 31351014]  {CVE-2019-19447} 
- xen/events: avoid removing an event channel while handling it (Juergen Gross)  [Orabug: 31984319]  
- xen: fix GCC warning and remove duplicate EVTCHN_ROW/EVTCHN_COL usage (Josh Abraham)  [Orabug: 31984319]  
- ext4: fix fencepost in s_first_meta_bg validation (Theodore Ts'o)  [Orabug: 32197511]  
- dm crypt: Allow unaligned bio buffer lengths for skcipher devices (Sudhakar Panneerselvam)  [Orabug: 32202000]  
- sched/fair: Don't free p->numa_faults with concurrent readers (Jann Horn)  [Orabug: 32212524]  {CVE-2019-20934} 
- netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Vasily Averin)  [Orabug: 32222844]  {CVE-2020-14305} 
- perf/core: Fix race in the perf_mmap_close() function (Jiri Olsa)  [Orabug: 32233360]  {CVE-2020-14351} 
- ext4: fix calculation of meta_bg descriptor backups (Andy Leiserson)  [Orabug: 32245133]