From 8ce6f979880e9f1d0e3393a049ea632650d1a97a Mon Sep 17 00:00:00 2001 From: Denys Vlasenko Date: Tue, 7 Nov 2023 12:51:25 +0100 Subject: [PATCH] kernel-rt-4.18.0-522.rt7.311.el8 * Tue Nov 07 2023 Denys Vlasenko [4.18.0-522.rt7.311.el8] - [rt] build kernel-rt-4.18.0-522.rt7.311.el8 [RHEL-5332] - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Florian Westphal) [RHEL-8444] {CVE-2023-42753} - cxgb4: fix use after free bugs caused by circular dependency problem (Ricardo Robaina) [RHEL-6261 RHEL-7058] {CVE-2023-4133} - ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (Florian Westphal) [RHEL-5742] - bpf: Fix incorrect verifier pruning due to missing register precision taints (Artem Savkov) [RHEL-7534 RHEL-7535] {CVE-2023-2163} - mm/memcontrol.c: remove the redundant updating of stats_flush_threshold (Waiman Long) [2238379] - virtio_balloon: Fix endless deflation and inflation on arm64 (Gavin Shan) [RHEL-1672] - i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera) [RHEL-6384] - libfs: take cursors out of list when moving past the end of directory (Jeffrey Layton) [RHEL-15148] - net/core: Fix ETH_P_1588 flow dissector (Paolo Abeni) [RHEL-14379] - skbuff: skb_segment, Call zero copy functions before using skbuff frags (Paolo Abeni) [RHEL-14379] - net: prevent skb corruption on frag list segmentation (Paolo Abeni) [RHEL-14379] - udp6: Fix race condition in udp6_sendmsg & connect (Paolo Abeni) [RHEL-14379] - scsi: megaraid_sas: Driver version update to 07.727.03.00-rc1 (Tomas Henzl) [RHEL-8244] - scsi: megaraid_sas: Log message when controller reset is requested but not issued (Tomas Henzl) [RHEL-8244] - scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for selected registers (Tomas Henzl) [RHEL-8244] - scsi: megaraid_sas: Fix deadlock on firmware crashdump (Tomas Henzl) [RHEL-8244] - scsi: megaraid_sas: Use pci_dev_id() to simplify the code (Tomas Henzl) [RHEL-8244] - scsi: megaraid_sas: Convert union megasas_sgl to flex-arrays (Tomas Henzl) [RHEL-8244] - scsi: smartpqi: Change driver version to 2.1.24-046 (Don Brace) [RHEL-1728] - scsi: smartpqi: Enhance error messages (Don Brace) [RHEL-1728] - scsi: smartpqi: Enhance controller offline notification (Don Brace) [RHEL-1728] - scsi: smartpqi: Enhance shutdown notification (Don Brace) [RHEL-1728] - scsi: smartpqi: Simplify lun_number assignment (Don Brace) [RHEL-1728] - scsi: smartpqi: Rename pciinfo to pci_info (Don Brace) [RHEL-1728] - scsi: smartpqi: Rename MACRO to clarify purpose (Don Brace) [RHEL-1728] - scsi: smartpqi: Add abort handler (Don Brace) [RHEL-1728] - x86/sgx: mark as supported (Vladis Dronov) [2041881] - x86/sgx: Resolves SECS reclaim vs. page fault for EAUG race (Vladis Dronov) [2041881] - x86/sgx: Break up long non-preemptible delays in sgx_vepc_release() (Vladis Dronov) [2041881] - Documentation: Fix typos (only the SGX part) (Vladis Dronov) [2041881] - x86/sgx: Avoid using iterator after loop in sgx_mmu_notifier_release() (Vladis Dronov) [2041881] - selftests/sgx: Add "test_encl.elf" to TEST_FILES (Vladis Dronov) [2041881] - convert sgx_set_attribute() to fdget()/fdput() (Vladis Dronov) [2041881] - x86/sgx: use VM_ACCESS_FLAGS (Vladis Dronov) [2041881] - x86/sgx: Replace kmap/kunmap_atomic() calls (Vladis Dronov) [2041881] - x86/sgx: Allow enclaves to use Asynchrounous Exit Notification (Vladis Dronov) [2041881] - x86/sgx: Reduce delay and interference of enclave release (Vladis Dronov) [2041881] - x86/vdso: Conditionally export __vdso_sgx_enter_enclave() (Vladis Dronov) [2041881] - x86/sgx: Add overflow check in sgx_validate_offset_length() (Vladis Dronov) [2041881] Resolves: RHEL-5332, RHEL-7535, RHEL-7058, RHEL-8451 Signed-off-by: Denys Vlasenko --- kernel.spec | 50 ++++++++++++++++++++++++++++++++++++++++++++++---- sources | 2 +- 2 files changed, 47 insertions(+), 5 deletions(-) diff --git a/kernel.spec b/kernel.spec index b1d41db..f279405 100644 --- a/kernel.spec +++ b/kernel.spec @@ -12,7 +12,7 @@ # change below to w4T.xzdio): %define _binary_payload w3T.xzdio -%global distro_build 521 +%global distro_build 522 # Sign the x86_64 kernel for secure boot authentication %ifarch x86_64 aarch64 s390x ppc64le @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 521.rt7.310.el8 +%define pkgrelease 522.rt7.311.el8 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 521.rt7.310%{?dist} +%define specrelease 522.rt7.311%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -147,7 +147,7 @@ # The preempt RT patch level %global rttag .rt7 # realtimeN -%global rtbuild .310 +%global rtbuild .311 %define with_doc 0 %define with_headers 0 %define with_cross_headers 0 @@ -2698,6 +2698,48 @@ fi # # %changelog +* Tue Nov 07 2023 Denys Vlasenko [4.18.0-522.rt7.311.el8] +- [rt] build kernel-rt-4.18.0-522.rt7.311.el8 [RHEL-5332] +- netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c (Florian Westphal) [RHEL-8444] {CVE-2023-42753} +- cxgb4: fix use after free bugs caused by circular dependency problem (Ricardo Robaina) [RHEL-6261 RHEL-7058] {CVE-2023-4133} +- ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (Florian Westphal) [RHEL-5742] +- bpf: Fix incorrect verifier pruning due to missing register precision taints (Artem Savkov) [RHEL-7534 RHEL-7535] {CVE-2023-2163} +- mm/memcontrol.c: remove the redundant updating of stats_flush_threshold (Waiman Long) [2238379] +- virtio_balloon: Fix endless deflation and inflation on arm64 (Gavin Shan) [RHEL-1672] +- i40e: Fix VF VLAN offloading when port VLAN is configured (Ivan Vecera) [RHEL-6384] +- libfs: take cursors out of list when moving past the end of directory (Jeffrey Layton) [RHEL-15148] +- net/core: Fix ETH_P_1588 flow dissector (Paolo Abeni) [RHEL-14379] +- skbuff: skb_segment, Call zero copy functions before using skbuff frags (Paolo Abeni) [RHEL-14379] +- net: prevent skb corruption on frag list segmentation (Paolo Abeni) [RHEL-14379] +- udp6: Fix race condition in udp6_sendmsg & connect (Paolo Abeni) [RHEL-14379] +- scsi: megaraid_sas: Driver version update to 07.727.03.00-rc1 (Tomas Henzl) [RHEL-8244] +- scsi: megaraid_sas: Log message when controller reset is requested but not issued (Tomas Henzl) [RHEL-8244] +- scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for selected registers (Tomas Henzl) [RHEL-8244] +- scsi: megaraid_sas: Fix deadlock on firmware crashdump (Tomas Henzl) [RHEL-8244] +- scsi: megaraid_sas: Use pci_dev_id() to simplify the code (Tomas Henzl) [RHEL-8244] +- scsi: megaraid_sas: Convert union megasas_sgl to flex-arrays (Tomas Henzl) [RHEL-8244] +- scsi: smartpqi: Change driver version to 2.1.24-046 (Don Brace) [RHEL-1728] +- scsi: smartpqi: Enhance error messages (Don Brace) [RHEL-1728] +- scsi: smartpqi: Enhance controller offline notification (Don Brace) [RHEL-1728] +- scsi: smartpqi: Enhance shutdown notification (Don Brace) [RHEL-1728] +- scsi: smartpqi: Simplify lun_number assignment (Don Brace) [RHEL-1728] +- scsi: smartpqi: Rename pciinfo to pci_info (Don Brace) [RHEL-1728] +- scsi: smartpqi: Rename MACRO to clarify purpose (Don Brace) [RHEL-1728] +- scsi: smartpqi: Add abort handler (Don Brace) [RHEL-1728] +- x86/sgx: mark as supported (Vladis Dronov) [2041881] +- x86/sgx: Resolves SECS reclaim vs. page fault for EAUG race (Vladis Dronov) [2041881] +- x86/sgx: Break up long non-preemptible delays in sgx_vepc_release() (Vladis Dronov) [2041881] +- Documentation: Fix typos (only the SGX part) (Vladis Dronov) [2041881] +- x86/sgx: Avoid using iterator after loop in sgx_mmu_notifier_release() (Vladis Dronov) [2041881] +- selftests/sgx: Add "test_encl.elf" to TEST_FILES (Vladis Dronov) [2041881] +- convert sgx_set_attribute() to fdget()/fdput() (Vladis Dronov) [2041881] +- x86/sgx: use VM_ACCESS_FLAGS (Vladis Dronov) [2041881] +- x86/sgx: Replace kmap/kunmap_atomic() calls (Vladis Dronov) [2041881] +- x86/sgx: Allow enclaves to use Asynchrounous Exit Notification (Vladis Dronov) [2041881] +- x86/sgx: Reduce delay and interference of enclave release (Vladis Dronov) [2041881] +- x86/vdso: Conditionally export __vdso_sgx_enter_enclave() (Vladis Dronov) [2041881] +- x86/sgx: Add overflow check in sgx_validate_offset_length() (Vladis Dronov) [2041881] + * Tue Oct 31 2023 Denys Vlasenko [4.18.0-521.rt7.310.el8] - [rt] build kernel-rt-4.18.0-521.rt7.310.el8 [RHEL-5332] - team: fix null-ptr-deref when team device type is changed (Hangbin Liu) [RHEL-13961] diff --git a/sources b/sources index 1c8bc51..69beff9 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (linux-4.18.0-521.rt7.310.el8.tar.xz) = 9d1b580d46a99f72ad7349445643253714ce18c46ae7e2b8302aed711b6936982fe1fbb3f4ce92683f93131722a4a9b34b5b2507457678c450aea072c5dba0c4 +SHA512 (linux-4.18.0-522.rt7.311.el8.tar.xz) = 6d91fcd54624dde66d463f4c7155a48c9518314f7753bed5f9da6d3f14f6463d414462546ac740f08e49fdc885a644ea455f559239f18ef8371890f2d37d25b4