[ELSA-2021-9005] Unbreakable Enterprise kernel security update
[4.14.35-2025.404.1.1]
- target: fix XCOPY NAA identifier lookup (David Disseldorp) [Orabug: 32248040] {CVE-2020-28374}
[4.14.35-2025.404.1]
- xenbus/xenbus_backend: Disallow pending watch messages (SeongJae Park) [Orabug: 32253412] {CVE-2020-29568}
- xen/xenbus: Count pending messages for each watch (SeongJae Park) [Orabug: 32253412] {CVE-2020-29568}
- xen/xenbus/xen_bus_type: Support will_handle watch callback (SeongJae Park) [Orabug: 32253412] {CVE-2020-29568}
- xen/xenbus: Add 'will_handle' callback support in xenbus_watch_path() (SeongJae Park) [Orabug: 32253412] {CVE-2020-29568}
- xen/xenbus: Allow watches discard events before queueing (SeongJae Park) [Orabug: 32253412] {CVE-2020-29568}
- xen-blkback: set ring->xenblkd to NULL after kthread_stop() (Pawel Wieczorkiewicz) [Orabug: 32260256] {CVE-2020-29569}
[4.14.35-2025.404.0]
- vhost scsi: Add support for LUN resets. (Mike Christie) [Orabug: 32201584]
- vhost/scsi: Use copy_to_iter() to send control queue response (Bijan Mottahedeh) [Orabug: 32201584]
- vhost scsi: add lun parser helper (Mike Christie) [Orabug: 32201584]
- scsi: sd: Allow user to configure command retries (Mike Christie) [Orabug: 32201584]
- scsi: core: Add limitless cmd retry support (Mike Christie) [Orabug: 32201584]
[4.14.35-2025.403.5]
- dm crypt: Allow unaligned bio buffer lengths for skcipher devices (Sudhakar Panneerselvam) [Orabug: 32210463]
- mm: thp: make the THP mapcount atomic against __split_huge_pmd_locked() (Andrea Arcangeli) [Orabug: 32212583] {CVE-2020-29368}
- perf/core: Fix race in the perf_mmap_close() function (Jiri Olsa) [Orabug: 32233358] {CVE-2020-14351}
[4.14.35-2025.403.4]
- icmp: randomize the global rate limiter (Eric Dumazet) [Orabug: 32227961] {CVE-2020-25705}
- ocfs2: initialize ip_next_orphan (Wengang Wang) [Orabug: 32159055]
- hv_netvsc: make recording RSS hash depend on feature flag (Stephen Hemminger) [Orabug: 32159975]
- hv_netvsc: record hardware hash in skb (Stephen Hemminger) [Orabug: 32159975]
- Fonts: Support FONT_EXTRA_WORDS macros for built-in fonts (Peilin Ye) [Orabug: 32176263] {CVE-2020-28915}
- fbdev, newport_con: Move FONT_EXTRA_WORDS macros into linux/font.h (Peilin Ye) [Orabug: 32176263] {CVE-2020-28915}
- block: Fix use-after-free in blkdev_get() (Jason Yan) [Orabug: 32194608] {CVE-2020-15436}
- serial: 8250: fix null-ptr-deref in serial8250_start_tx() (Yang Yingliang) [Orabug: 32194712] {CVE-2020-15437}
- staging: rts5208: rename SG_END macro (Arnd Bergmann) [Orabug: 32218496]
- misc: rtsx: rename SG_END macro (Arnd Bergmann) [Orabug: 32218496]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/perf?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools-libs?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-tools-libs-devel?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
|
pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7
|
< 4.14.35-2025.404.1.1.el7uek |
- ID
- ELSA-2021-9005
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2021-9005.html
- Published
-
2021-01-12T00:00:00
(3 years ago) - Modified
-
2021-01-12T00:00:00
(3 years ago) - Rights
- Copyright 2021 Oracle, Inc.
- Other Advisories
-
-
ALAS-2021-1477
-
ALAS-2021-1480
-
ALAS2-2021-1588
-
ALAS2-2021-1600
-
ALPINE:CVE-2020-29568
-
ALPINE:CVE-2020-29569
-
ALSA-2021:1093
-
ASA-202101-30
-
ASA-202101-31
-
ASA-202101-32
-
ASA-202101-33
-
DSA-4843-1
-
ELSA-2021-0856
-
ELSA-2021-1093
-
ELSA-2021-9006
-
ELSA-2021-9007
-
ELSA-2021-9008
-
ELSA-2021-9009
-
ELSA-2021-9023
-
ELSA-2021-9024
-
ELSA-2021-9025
-
ELSA-2021-9030
-
ELSA-2021-9035
-
ELSA-2021-9037
-
ELSA-2021-9038
-
ELSA-2021-9039
-
ELSA-2021-9306
-
ELSA-2021-9307
-
FEDORA-2021-082e638d02
-
FEDORA-2021-4a91649cf3
-
FEDORA-2021-620fb40359
-
FREEBSD:5D91370B-61FD-11EB-B87A-901B0EF719AB
-
GLSA-202107-30
-
MS:CVE-2020-28374
-
MS:CVE-2020-29569
-
openSUSE-SU-2021:0060-1
-
openSUSE-SU-2021:0075-1
-
openSUSE-SU-2021:0241-1
-
RHSA-2021:0856
-
RHSA-2021:0857
-
RHSA-2021:0862
-
RHSA-2021:1081
-
RHSA-2021:1093
-
SUSE-SU-2021:0117-1
-
SUSE-SU-2021:0118-1
-
SUSE-SU-2021:0133-1
-
SUSE-SU-2021:0347-1
-
SUSE-SU-2021:0348-1
-
SUSE-SU-2021:0353-1
-
SUSE-SU-2021:0354-1
-
SUSE-SU-2021:0359-1
-
SUSE-SU-2021:0362-1
-
SUSE-SU-2021:0367-1
-
SUSE-SU-2021:0377-1
-
SUSE-SU-2021:0386-1
-
SUSE-SU-2021:0408-1
-
SUSE-SU-2021:0427-1
-
SUSE-SU-2021:0433-1
-
SUSE-SU-2021:0434-1
-
SUSE-SU-2021:0437-1
-
SUSE-SU-2021:0438-1
-
SUSE-SU-2021:0452-1
-
SUSE-SU-2021:0532-1
-
SUSE-SU-2021:0743-1
-
SUSE-SU-2021:0744-1
-
SUSE-SU-2021:0818-1
-
SUSE-SU-2021:0823-1
-
SUSE-SU-2021:0826-1
-
SUSE-SU-2021:0835-1
-
SUSE-SU-2021:0841-1
-
SUSE-SU-2021:0842-1
-
SUSE-SU-2021:0849-1
-
SUSE-SU-2021:0853-1
-
SUSE-SU-2021:0859-1
-
SUSE-SU-2021:0868-1
-
SUSE-SU-2021:0870-1
-
USN-4694-1
-
USN-4709-1
-
USN-4711-1
-
USN-4713-1
-
USN-4713-2
-
USN-4748-1
-
USN-4749-1
-
USN-4750-1
-
USN-4751-1
-
USN-4753-1
-
USN-4876-1
-
USN-4901-1
-
XSA-349
-
XSA-350
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2021-9005 |
|
|
| CVE | CVE-2020-29568 |
|
|
| CVE | CVE-2020-29569 |
|
|
| CVE | CVE-2020-28374 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/python-perf?distro=oraclelinux-7 | oraclelinux |
python-perf
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-7 | oraclelinux |
perf
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek?distro=oraclelinux-7 | oraclelinux |
kernel-uek
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools-libs?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools-libs
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-tools-libs-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-tools-libs-devel
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-headers?distro=oraclelinux-7 | oraclelinux |
kernel-uek-headers
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-doc?distro=oraclelinux-7 | oraclelinux |
kernel-uek-doc
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-devel
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uek-debug-devel?distro=oraclelinux-7 | oraclelinux |
kernel-uek-debug-devel
|
< 4.14.35-2025.404.1.1.el7uek | oraclelinux-7 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |