From 3f730cbffff5c1c2c85bb0f2bd6cbbf9e2bd1571 Mon Sep 17 00:00:00 2001 From: Rado Vrbovsky Date: Tue, 8 Oct 2024 09:33:14 +0000 Subject: [PATCH] kernel-5.14.0-516.el9 * Tue Oct 08 2024 Rado Vrbovsky [5.14.0-516.el9] - memcg: protect concurrent access to mem_cgroup_idr (Rafael Aquini) [RHEL-56254] {CVE-2024-43892} - bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (Michal Schmidt) [RHEL-57259] {CVE-2024-44984} - intel_th: pci: Add Granite Rapids SOC support (Michael Petlan) [RHEL-15664] - dma: fix call order in dmam_free_coherent (Eder Zulian) [RHEL-54751] {CVE-2024-43856} - dmaengine: idxd: Avoid unnecessary destruction of file_ida (Jerry Snitselaar) [RHEL-44508] {CVE-2024-38629} - tipc: Return non-zero value from tipc_udp_addr2str() on error (Xin Long) [RHEL-55074] {CVE-2024-42284} - net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (Michal Schmidt) [RHEL-57119] {CVE-2024-44970} - net/mlx5e: Fix CT entry update leaks of modify header context (Michal Schmidt) [RHEL-55628] {CVE-2024-43864} - net/mlx5: Always drain health in shutdown callback (Michal Schmidt) [RHEL-55616] {CVE-2024-43866} - net/mlx5: SF, Stop waiting for FW as teardown was called (Michal Schmidt) [RHEL-55616] - net/mlx5: Fix missing lock on sync reset reload (Michal Schmidt) [RHEL-55121] {CVE-2024-42268} - ionic: fix kernel panic in XDP_TX action (CKI Backport Bot) [RHEL-47730] {CVE-2024-40907} - r8169: Fix possible ring buffer corruption on fragmented Tx packets. (Izabela Bakollari) [RHEL-44037] {CVE-2024-38586} - ata: libata-core: Fix double free on error (Tomas Henzl) [RHEL-53777] - ata: libata: Fix memory leak for error path in ata_host_alloc() (Tomas Henzl) [RHEL-53777] - ata: ahci: Clean up sysfs file on error (Tomas Henzl) [RHEL-53777] - ata: libata-core: Fix null pointer dereference on error (Tomas Henzl) [RHEL-53777] - ata: libata-core: Add ATA_HORKAGE_NOLPM for all Crucial BX SSD1 models (Tomas Henzl) [RHEL-53777] - ata: ahci: Do not enable LPM if no LPM states are supported by the HBA (Tomas Henzl) [RHEL-53777] - ata: libata-scsi: Set the RMB bit only for removable media devices (Tomas Henzl) [RHEL-53777] - ata: libata-core: Do not try to set sleeping devices to standby (Tomas Henzl) [RHEL-53777] - KVM: s390: fix validity interception issue when gisa is switched off (CKI Backport Bot) [RHEL-57197] {CVE-2024-45005} - wifi: rtw89: limit the PPDU length for VHT rate to 0x40000 (Narpat Mali) [RHEL-35542] - wifi: rtw89: 885xbx: apply common settings to 8851B, 8852B and 8852BT (Narpat Mali) [RHEL-35542] - wifi: rtw89: 8852b: fix definition of KIP register number (Narpat Mali) [RHEL-35542] - wifi: rtw89: 8852b: set AMSDU limit to 5000 (Narpat Mali) [RHEL-35542] Resolves: RHEL-35542 Signed-off-by: Rado Vrbovsky --- Makefile.rhelver | 2 +- kernel.changelog | 63 ++++++++++++++++++++++++++++++++++++++++++++++++ kernel.spec | 36 ++++++++++++++++++++++++--- sources | 6 ++--- 4 files changed, 99 insertions(+), 8 deletions(-) diff --git a/Makefile.rhelver b/Makefile.rhelver index 7d723f2d3..b45e432b6 100644 --- a/Makefile.rhelver +++ b/Makefile.rhelver @@ -12,7 +12,7 @@ RHEL_MINOR = 6 # # Use this spot to avoid future merge conflicts. # Do not trim this comment. -RHEL_RELEASE = 515 +RHEL_RELEASE = 516 # # ZSTREAM diff --git a/kernel.changelog b/kernel.changelog index 2829d1935..9f1387fb9 100644 --- a/kernel.changelog +++ b/kernel.changelog @@ -1,3 +1,32 @@ +* Tue Oct 08 2024 Rado Vrbovsky [5.14.0-516.el9] +- memcg: protect concurrent access to mem_cgroup_idr (Rafael Aquini) [RHEL-56254] {CVE-2024-43892} +- bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (Michal Schmidt) [RHEL-57259] {CVE-2024-44984} +- intel_th: pci: Add Granite Rapids SOC support (Michael Petlan) [RHEL-15664] +- dma: fix call order in dmam_free_coherent (Eder Zulian) [RHEL-54751] {CVE-2024-43856} +- dmaengine: idxd: Avoid unnecessary destruction of file_ida (Jerry Snitselaar) [RHEL-44508] {CVE-2024-38629} +- tipc: Return non-zero value from tipc_udp_addr2str() on error (Xin Long) [RHEL-55074] {CVE-2024-42284} +- net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (Michal Schmidt) [RHEL-57119] {CVE-2024-44970} +- net/mlx5e: Fix CT entry update leaks of modify header context (Michal Schmidt) [RHEL-55628] {CVE-2024-43864} +- net/mlx5: Always drain health in shutdown callback (Michal Schmidt) [RHEL-55616] {CVE-2024-43866} +- net/mlx5: SF, Stop waiting for FW as teardown was called (Michal Schmidt) [RHEL-55616] +- net/mlx5: Fix missing lock on sync reset reload (Michal Schmidt) [RHEL-55121] {CVE-2024-42268} +- ionic: fix kernel panic in XDP_TX action (CKI Backport Bot) [RHEL-47730] {CVE-2024-40907} +- r8169: Fix possible ring buffer corruption on fragmented Tx packets. (Izabela Bakollari) [RHEL-44037] {CVE-2024-38586} +- ata: libata-core: Fix double free on error (Tomas Henzl) [RHEL-53777] +- ata: libata: Fix memory leak for error path in ata_host_alloc() (Tomas Henzl) [RHEL-53777] +- ata: ahci: Clean up sysfs file on error (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Fix null pointer dereference on error (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Add ATA_HORKAGE_NOLPM for all Crucial BX SSD1 models (Tomas Henzl) [RHEL-53777] +- ata: ahci: Do not enable LPM if no LPM states are supported by the HBA (Tomas Henzl) [RHEL-53777] +- ata: libata-scsi: Set the RMB bit only for removable media devices (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Do not try to set sleeping devices to standby (Tomas Henzl) [RHEL-53777] +- KVM: s390: fix validity interception issue when gisa is switched off (CKI Backport Bot) [RHEL-57197] {CVE-2024-45005} +- wifi: rtw89: limit the PPDU length for VHT rate to 0x40000 (Narpat Mali) [RHEL-35542] +- wifi: rtw89: 885xbx: apply common settings to 8851B, 8852B and 8852BT (Narpat Mali) [RHEL-35542] +- wifi: rtw89: 8852b: fix definition of KIP register number (Narpat Mali) [RHEL-35542] +- wifi: rtw89: 8852b: set AMSDU limit to 5000 (Narpat Mali) [RHEL-35542] +Resolves: RHEL-35542 + * Wed Oct 02 2024 Rado Vrbovsky [5.14.0-515.el9] - smb: client: fix double put of @cfile in smb2_set_path_size() (Paulo Alcantara) [RHEL-57983] - smb: client: fix double put of @cfile in smb2_rename_path() (Paulo Alcantara) [RHEL-57983] @@ -3547,6 +3576,40 @@ Resolves: RHEL-3230, RHEL-37349, RHEL-38600, RHEL-50255, RHEL-52234, RHEL-53992, - Revert "x86/topology: Fix max_siblings calculation for some hybrid cpus" (David Arcari) [RHEL-43147] Resolves: RHEL-43147, RHEL-54768 +* Mon Sep 30 2024 Lucas Zampieri [5.14.0-503.11.1.el9_5] +- memcg: protect concurrent access to mem_cgroup_idr (Rafael Aquini) [RHEL-56254] {CVE-2024-43892} +- bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (Michal Schmidt) [RHEL-57259] {CVE-2024-44984} +Resolves: RHEL-56254, RHEL-57259 + +* Fri Sep 27 2024 Lucas Zampieri [5.14.0-503.10.1.el9_5] +- intel_th: pci: Add Granite Rapids SOC support (Michael Petlan) [RHEL-15664] +- dma: fix call order in dmam_free_coherent (Eder Zulian) [RHEL-54751] {CVE-2024-43856} +- dmaengine: idxd: Avoid unnecessary destruction of file_ida (Jerry Snitselaar) [RHEL-44508] {CVE-2024-38629} +Resolves: RHEL-15664, RHEL-44508, RHEL-54751 + +* Thu Sep 26 2024 Lucas Zampieri [5.14.0-503.9.1.el9_5] +- tipc: Return non-zero value from tipc_udp_addr2str() on error (Xin Long) [RHEL-55074] {CVE-2024-42284} +- net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (Michal Schmidt) [RHEL-57119] {CVE-2024-44970} +- net/mlx5e: Fix CT entry update leaks of modify header context (Michal Schmidt) [RHEL-55628] {CVE-2024-43864} +- net/mlx5: Always drain health in shutdown callback (Michal Schmidt) [RHEL-55616] {CVE-2024-43866} +- net/mlx5: SF, Stop waiting for FW as teardown was called (Michal Schmidt) [RHEL-55616] +- net/mlx5: Fix missing lock on sync reset reload (Michal Schmidt) [RHEL-55121] {CVE-2024-42268} +Resolves: RHEL-55074, RHEL-55121, RHEL-55616, RHEL-55628, RHEL-57119 + +* Mon Sep 23 2024 Lucas Zampieri [5.14.0-503.8.1.el9_5] +- ionic: fix kernel panic in XDP_TX action (CKI Backport Bot) [RHEL-47730] {CVE-2024-40907} +- r8169: Fix possible ring buffer corruption on fragmented Tx packets. (Izabela Bakollari) [RHEL-44037] {CVE-2024-38586} +- ata: libata-core: Fix double free on error (Tomas Henzl) [RHEL-53777] +- ata: libata: Fix memory leak for error path in ata_host_alloc() (Tomas Henzl) [RHEL-53777] +- ata: ahci: Clean up sysfs file on error (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Fix null pointer dereference on error (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Add ATA_HORKAGE_NOLPM for all Crucial BX SSD1 models (Tomas Henzl) [RHEL-53777] +- ata: ahci: Do not enable LPM if no LPM states are supported by the HBA (Tomas Henzl) [RHEL-53777] +- ata: libata-scsi: Set the RMB bit only for removable media devices (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Do not try to set sleeping devices to standby (Tomas Henzl) [RHEL-53777] +- KVM: s390: fix validity interception issue when gisa is switched off (CKI Backport Bot) [RHEL-57197] {CVE-2024-45005} +Resolves: RHEL-44037, RHEL-47730, RHEL-53777, RHEL-57197 + * Fri Sep 20 2024 Lucas Zampieri [5.14.0-503.7.1.el9_5] - wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate_he() (Jose Ignacio Tornos Martinez) [RHEL-55579] {CVE-2024-43879} - wifi: mac80211: fix NULL dereference at band check in starting tx ba session (Jose Ignacio Tornos Martinez) [RHEL-56191] {CVE-2024-43911} diff --git a/kernel.spec b/kernel.spec index 812cc9804..d03842305 100755 --- a/kernel.spec +++ b/kernel.spec @@ -165,15 +165,15 @@ Summary: The Linux kernel # define buildid .local %define specversion 5.14.0 %define patchversion 5.14 -%define pkgrelease 515 +%define pkgrelease 516 %define kversion 5 -%define tarfile_release 5.14.0-515.el9 +%define tarfile_release 5.14.0-516.el9 # This is needed to do merge window version magic %define patchlevel 14 # This allows pkg_release to have configurable %%{?dist} tag -%define specrelease 515%{?buildid}%{?dist} +%define specrelease 516%{?buildid}%{?dist} # This defines the kabi tarball version -%define kabiversion 5.14.0-515.el9 +%define kabiversion 5.14.0-516.el9 # # End of genspec.sh variables @@ -3806,6 +3806,34 @@ fi # # %changelog +* Tue Oct 08 2024 Rado Vrbovsky [5.14.0-516.el9] +- memcg: protect concurrent access to mem_cgroup_idr (Rafael Aquini) [RHEL-56254] {CVE-2024-43892} +- bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (Michal Schmidt) [RHEL-57259] {CVE-2024-44984} +- intel_th: pci: Add Granite Rapids SOC support (Michael Petlan) [RHEL-15664] +- dma: fix call order in dmam_free_coherent (Eder Zulian) [RHEL-54751] {CVE-2024-43856} +- dmaengine: idxd: Avoid unnecessary destruction of file_ida (Jerry Snitselaar) [RHEL-44508] {CVE-2024-38629} +- tipc: Return non-zero value from tipc_udp_addr2str() on error (Xin Long) [RHEL-55074] {CVE-2024-42284} +- net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (Michal Schmidt) [RHEL-57119] {CVE-2024-44970} +- net/mlx5e: Fix CT entry update leaks of modify header context (Michal Schmidt) [RHEL-55628] {CVE-2024-43864} +- net/mlx5: Always drain health in shutdown callback (Michal Schmidt) [RHEL-55616] {CVE-2024-43866} +- net/mlx5: SF, Stop waiting for FW as teardown was called (Michal Schmidt) [RHEL-55616] +- net/mlx5: Fix missing lock on sync reset reload (Michal Schmidt) [RHEL-55121] {CVE-2024-42268} +- ionic: fix kernel panic in XDP_TX action (CKI Backport Bot) [RHEL-47730] {CVE-2024-40907} +- r8169: Fix possible ring buffer corruption on fragmented Tx packets. (Izabela Bakollari) [RHEL-44037] {CVE-2024-38586} +- ata: libata-core: Fix double free on error (Tomas Henzl) [RHEL-53777] +- ata: libata: Fix memory leak for error path in ata_host_alloc() (Tomas Henzl) [RHEL-53777] +- ata: ahci: Clean up sysfs file on error (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Fix null pointer dereference on error (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Add ATA_HORKAGE_NOLPM for all Crucial BX SSD1 models (Tomas Henzl) [RHEL-53777] +- ata: ahci: Do not enable LPM if no LPM states are supported by the HBA (Tomas Henzl) [RHEL-53777] +- ata: libata-scsi: Set the RMB bit only for removable media devices (Tomas Henzl) [RHEL-53777] +- ata: libata-core: Do not try to set sleeping devices to standby (Tomas Henzl) [RHEL-53777] +- KVM: s390: fix validity interception issue when gisa is switched off (CKI Backport Bot) [RHEL-57197] {CVE-2024-45005} +- wifi: rtw89: limit the PPDU length for VHT rate to 0x40000 (Narpat Mali) [RHEL-35542] +- wifi: rtw89: 885xbx: apply common settings to 8851B, 8852B and 8852BT (Narpat Mali) [RHEL-35542] +- wifi: rtw89: 8852b: fix definition of KIP register number (Narpat Mali) [RHEL-35542] +- wifi: rtw89: 8852b: set AMSDU limit to 5000 (Narpat Mali) [RHEL-35542] + * Wed Oct 02 2024 Rado Vrbovsky [5.14.0-515.el9] - smb: client: fix double put of @cfile in smb2_set_path_size() (Paulo Alcantara) [RHEL-57983] - smb: client: fix double put of @cfile in smb2_rename_path() (Paulo Alcantara) [RHEL-57983] diff --git a/sources b/sources index 580540a78..bb0b0e551 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (linux-5.14.0-515.el9.tar.xz) = 80a06a1b2348adeaace99f87828d774cbe277cc23d6f95071461e8afa110891ecf00bfc90ebbf5ee0233a9e3bf3aca7135ed20221a4e7637ab11dbdcbee14b36 -SHA512 (kernel-abi-stablelists-5.14.0-515.el9.tar.bz2) = 94278ba697ea5ea4a5cbf4f8df1dea882ba83b9a31186e4b27efd351116496df0ae37635f3f0fe3675836747280a7bac3b9f877e58de1dcbcb6f0e935ceccc26 -SHA512 (kernel-kabi-dw-5.14.0-515.el9.tar.bz2) = 3d08f838767b27b87724fed347ce3be63fce15e5eded0576121c474d14db4a6d07895b350c635e343d5522ac237dfd982d1f39b8480c4129f4eb79f6a64115cb +SHA512 (linux-5.14.0-516.el9.tar.xz) = 6be0e4a5366b73e1fdeb170382c180216ef6f2b2b223008a48712af6442afe500c956ebfba5ccb17c33369ba91d5bddfc5c3a4d0ee6060cab5bafea95dcd85a4 +SHA512 (kernel-abi-stablelists-5.14.0-516.el9.tar.bz2) = a4b6d77aa1347dd0dd9c5352e76cda45f9b4c11eebe9fa4fca9c99036a22c644c5807cd9c4a3d79effcb862a19e7c77709ceba8327898b0ad858365ea9962028 +SHA512 (kernel-kabi-dw-5.14.0-516.el9.tar.bz2) = 3d08f838767b27b87724fed347ce3be63fce15e5eded0576121c474d14db4a6d07895b350c635e343d5522ac237dfd982d1f39b8480c4129f4eb79f6a64115cb