[ELSA-2022-9013] Unbreakable Enterprise kernel-container security update

Severity Important

Affected Packages 4

CVEs 2

[5.4.17-2136.302.7.2]
- xfs: map unwritten blocks in XFS_IOC_{ALLOC,FREE}SP just like fallocate (Darrick J. Wong) [Orabug: 33699625] {CVE-2021-4155}

[5.4.17-2136.302.7.1]
- fget: check that the fd still exists after getting a ref to it (Linus Torvalds) [Orabug: 33691332] {CVE-2021-0920}

[5.4.17-2136.302.7]
- rds: ib: Reduce the contention caused by the asynchronous workers to flush the mr pool (Praveen Kumar Kannoju) [Orabug: 33671425]
- rds: ib: Ack seq not always received in monotonic increasing order (Hakon Bugge) [Orabug: 33671414]
- net/rds: Don't pummel the subnet-manager (Gerd Rausch) [Orabug: 33671407]
- EDAC/i10nm: Add detection of memory levels for ICX/SPR servers (Qiuxu Zhuo) [Orabug: 33601775]
- EDAC/skx_common: Add new ADXL components for 2-level memory (Qiuxu Zhuo) [Orabug: 33601775]
- EDAC, skx_common: Refactor so that we initialize dev in result of adxl decode. (Tony Luck) [Orabug: 33601775]
- uek-rpm: Add ktime_get_coarse_ts64 to KABI (John Donnelly) [Orabug: 33671383]
- cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (Giovanni Gherdovich) [Orabug: 33671378]
- net: ipv6: Discard next-hop MTU less than minimum link MTU (Georg Kohmann) [Orabug: 33671371]
- ocfs2: fix race between searching chunks and release journal_head from buffer_head (Gautham Ananthakrishna) [Orabug: 33671363]
- rds/ib: Use both iova and key in free_mr socket call (aru kolappan) [Orabug: 33671236]

Package	Affected Version
pkg:rpm/oraclelinux/kernel-uek-container?distro=oraclelinux-8	< 5.4.17-2136.302.7.2.el8
pkg:rpm/oraclelinux/kernel-uek-container?distro=oraclelinux-7	< 5.4.17-2136.302.7.2.el7
pkg:rpm/oraclelinux/kernel-uek-container-debug?distro=oraclelinux-8	< 5.4.17-2136.302.7.2.el8
pkg:rpm/oraclelinux/kernel-uek-container-debug?distro=oraclelinux-7	< 5.4.17-2136.302.7.2.el7

ID

ELSA-2022-9013

Severity

important

URL

https://linux.oracle.com/errata/ELSA-2022-9013.html

Published

2022-01-10T00:00:00
(2 years ago)

Modified

2022-01-10T00:00:00
(2 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2022-9013	https://linux.oracle.com/errata/ELSA-2022-9013.html
CVE	CVE-2021-0920	https://linux.oracle.com/cve/CVE-2021-0920.html
CVE	CVE-2021-4155	https://linux.oracle.com/cve/CVE-2021-4155.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/kernel-uek-container?distro=oraclelinux-8	oraclelinux	kernel-uek-container	< 5.4.17-2136.302.7.2.el8	oraclelinux-8
Affected	pkg:rpm/oraclelinux/kernel-uek-container?distro=oraclelinux-7	oraclelinux	kernel-uek-container	< 5.4.17-2136.302.7.2.el7	oraclelinux-7
Affected	pkg:rpm/oraclelinux/kernel-uek-container-debug?distro=oraclelinux-8	oraclelinux	kernel-uek-container-debug	< 5.4.17-2136.302.7.2.el8	oraclelinux-8
Affected	pkg:rpm/oraclelinux/kernel-uek-container-debug?distro=oraclelinux-7	oraclelinux	kernel-uek-container-debug	< 5.4.17-2136.302.7.2.el7	oraclelinux-7

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date