From 6adc56a7989aca20fc28f04b741b16b2d5f75381 Mon Sep 17 00:00:00 2001 From: Denys Vlasenko Date: Wed, 15 Nov 2023 17:48:38 +0100 Subject: [PATCH] kernel-4.18.0-525.el8 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Wed Nov 15 2023 Denys Vlasenko [4.18.0-525.el8] - net: xfrm: Fix xfrm_address_filter OOB read (Wander Lairson Costa) [2227304] {CVE-2023-39194} - drm/qxl: fix UAF on handle creation (Wander Lairson Costa) [2218333] {CVE-2023-39198} - x86/sev: Make enc_dec_hypercall() accept a size instead of npages (Vitaly Kuznetsov) [RHEL-3656] - net: virtio_net_hdr_to_skb: count transport header in UFO (Cindy Lu) [RHEL-6030] - ice: reset first in crash dump kernels (Petr Oros) [2139761] - perf/core: Fix potential NULL deref (Wander Lairson Costa) [RHEL-14982] {CVE-2023-5717} - perf: Disallow mis-matched inherited group reads (Wander Lairson Costa) [RHEL-14982] {CVE-2023-5717} - scsi: mpt3sas: Drop redundant pci_enable_pcie_error_reporting() (Tomas Henzl) [RHEL-8246] - scsi: mpt3sas: Fix in error path (Tomas Henzl) [RHEL-8246] - scsi: mpt3sas: Fix loop logic (Tomas Henzl) [RHEL-8246] - scsi: mpt3sas: Remove volatile qualifier (Tomas Henzl) [RHEL-8246] - scsi: mpt3sas: Perform additional retries if doorbell read returns 0 (Tomas Henzl) [RHEL-8246] - scsi: mpi3mr: Split off bus_reset function from host_reset (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: Update driver version to 8.5.0.0.0 (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: Enhance handling of devices removed after controller reset (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: WRITE SAME implementation (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: Add support for more than 1MB I/O (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: Update MPI Headers to version 3.00.28 (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: Invoke soft reset upon TSU or event ack time out (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: Propagate sense data for admin queue SCSI I/O (Tomas Henzl) [RHEL-8232] - scsi: mpi3mr: Fix the type used for pointers to bitmap (Tomas Henzl) [RHEL-8232] - regmap: Drop initial version of maximum transfer length fixes (Mark Langsdorf) [RHEL-1022] - regmap: Account for register length when chunking (Mark Langsdorf) [RHEL-1022] - driver core: update comments in device_rename() (Mark Langsdorf) [RHEL-1022] - cacheinfo: Add use_arch[|_cache]_info field/function (Mark Langsdorf) [RHEL-1022] - arch_topology: Remove early cacheinfo error message if -ENOENT (Mark Langsdorf) [RHEL-1022] - cacheinfo: Allow early level detection when DT/ACPI info is missing/broken (Mark Langsdorf) [RHEL-1022] - cacheinfo: Check sib_leaf in cache_leaves_are_shared() (Mark Langsdorf) [RHEL-1022] - cacheinfo: Add arch specific early level initializer (Mark Langsdorf) [RHEL-1022] - regmap: Factor out single value register syncing (Mark Langsdorf) [RHEL-1022] - regmap: Add RAM backed register map (Mark Langsdorf) [RHEL-1022] - regmap: Removed compressed cache support (Mark Langsdorf) [RHEL-1022] - base: soc: populate machine name in soc_device_register if empty (Mark Langsdorf) [RHEL-1022] - regmap: Clarify error for unknown cache types (Mark Langsdorf) [RHEL-1022] - regmap: Handle sparse caches in the default sync (Mark Langsdorf) [RHEL-1022] - regmap: add a helper to translate the register address (Mark Langsdorf) [RHEL-1022] - regmap: cache: Silence checkpatch warning (Mark Langsdorf) [RHEL-1022] - regmap: cache: Return error in cache sync operations for REGCACHE_NONE (Mark Langsdorf) [RHEL-1022] - devres: Pass unique name of the resource to devm_add_action() (Mark Langsdorf) [RHEL-1022] - device property: Clarify description of returned value in some functions (Mark Langsdorf) [RHEL-1022] - driver core: Make state_synced device attribute writeable (Mark Langsdorf) [RHEL-1022] - PM: domains: fix memory leak with using debugfs_lookup() (Mark Langsdorf) [RHEL-1022] - PM: runtime: Do not call __rpm_callback() from rpm_idle() (Mark Langsdorf) [RHEL-1022] - kobject: kset_uevent_ops: make name() callback take a const * (Mark Langsdorf) [RHEL-1022] - kobject: kset_uevent_ops: make filter() callback take a const * (Mark Langsdorf) [RHEL-1022] - kobject: make get_ktype() take a const pointer (Mark Langsdorf) [RHEL-1022] - kobject: make kobject_get_ownership() take a constant kobject * (Mark Langsdorf) [RHEL-1022] - arm64: topology: move store_cpu_topology() to shared code (Mark Langsdorf) [RHEL-1022] - filemap: skip write and wait if end offset precedes start (Nico Pache) [RHEL-5620] - mm/mempolicy: clean up the code logic in queue_pages_pte_range (Nico Pache) [RHEL-5620] - mm:vmscan: fix inaccurate reclaim during proactive reclaim (Nico Pache) [RHEL-5620] - mm/page_alloc: don't wake kswapd from rmqueue() unless __GFP_KSWAPD_RECLAIM is specified (Nico Pache) [RHEL-5620] - writeback: fix call of incorrect macro (Nico Pache) [RHEL-5620] - mm/page_alloc: use write_seqlock_irqsave() instead write_seqlock() + local_irq_save(). (Nico Pache) [RHEL-5620] - mm/page_alloc: fix potential deadlock on zonelist_update_seq seqlock (Nico Pache) [RHEL-5620] - writeback, cgroup: fix null-ptr-deref write in bdi_split_work_to_wbs (Nico Pache) [RHEL-5620] - mm/khugepaged: check again on anon uffd-wp during isolation (Nico Pache) [RHEL-5620] - mm/swap: fix swap_info_struct race between swapoff and get_swap_pages() (Nico Pache) [RHEL-5620] - mm/fadvise: use LLONG_MAX instead of -1 for eof (Nico Pache) [RHEL-5620] - mm: Make failslab writable again (Nico Pache) [RHEL-5620] - mm: migrate: fix THP's mapcount on isolation (Nico Pache) [RHEL-5620] - mm/memremap.c: map FS_DAX device memory as decrypted (Nico Pache) [RHEL-5620] - mm/page_alloc: add missing is_migrate_isolate() check in set_page_guard() (Nico Pache) [RHEL-5620] - mm: pagewalk: Fix race between unmap and page walker (Nico Pache) [RHEL-5620] - mm/slub: add missing TID updates on slab deactivation (Nico Pache) [RHEL-5620] - hugetlb: fix huge_pmd_unshare address update (Nico Pache) [RHEL-5620] - fs-writeback: writeback_sb_inodes:Recalculate 'wrote' according skipped pages (Nico Pache) [RHEL-5620] - highmem: fix checks in __kmap_local_sched_{in,out} (Nico Pache) [RHEL-5620] - mm: fix race between MADV_FREE reclaim and blkdev direct IO read (Nico Pache) [RHEL-5620] - mm/thp: fix NR_FILE_MAPPED accounting in page_*_file_rmap() (Nico Pache) [RHEL-5620] - memblock: use kfree() to release kmalloced memblock regions (Nico Pache) [RHEL-5620] - mm/list_lru.c: prefer struct_size over open coded arithmetic (Nico Pache) [RHEL-5620] - mm/kmemleak: allow __GFP_NOLOCKDEP passed to kmemleak's gfp (Nico Pache) [RHEL-5620] - mm/hugetlb: initialize hugetlb_usage in mm_init (Nico Pache) [RHEL-5620] - mm: mempolicy: don't have to split pmd for huge zero page (Nico Pache) [RHEL-5620] - mm/thp: fix page_vma_mapped_walk() if THP mapped by ptes (Nico Pache) [RHEL-5620] - mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (Nico Pache) [RHEL-5620] - delayacct: clear right task's flag after blkio completes (Nico Pache) [RHEL-5620] - mm: remove lru_add_drain_all in alloc_contig_range (Nico Pache) [RHEL-5620] - mm: always have io_remap_pfn_range() set pgprot_decrypted() (Nico Pache) [RHEL-5620] - mm/page_alloc: fix documentation error (Nico Pache) [RHEL-5620] - s390/mm: mmap base does not depend on ADDR_NO_RANDOMIZE personality (Nico Pache) [RHEL-5620] - powerpc/mm: Fix "sz" set but not used warning (Nico Pache) [RHEL-5620] - powerpc/mm/hash: Handle mmap_min_addr correctly in get_unmapped_area topdown search (Nico Pache) [RHEL-5620] - mm: ksm: do not block on page lock when searching stable tree (Nico Pache) [RHEL-5620] - powerpc/hugetlbpage: Rmove unhelpful HUGEPD_*_SHIFT macros (Nico Pache) [RHEL-5620] - arm64: mm: Export __sync_icache_dcache() for xen-privcmd (Nico Pache) [RHEL-5620] Resolves: rhbz#2139761, rhbz#2218333, rhbz#2227304, RHEL-1022, RHEL-14982, RHEL-3656, RHEL-5620, RHEL-6030, RHEL-8232, RHEL-8246 Signed-off-by: Denys Vlasenko --- kernel.spec | 95 +++++++++++++++++++++++++++++++++++++++++++++++++++-- sources | 6 ++-- 2 files changed, 95 insertions(+), 6 deletions(-) diff --git a/kernel.spec b/kernel.spec index 98846a19e..a249efb71 100644 --- a/kernel.spec +++ b/kernel.spec @@ -12,7 +12,7 @@ # change below to w4T.xzdio): %define _binary_payload w3T.xzdio -%global distro_build 524 +%global distro_build 525 # Sign the x86_64 kernel for secure boot authentication %ifarch x86_64 aarch64 s390x ppc64le @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 524.el8 +%define pkgrelease 525.el8 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 524%{?dist} +%define specrelease 525%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -2695,6 +2695,95 @@ fi # # %changelog +* Wed Nov 15 2023 Denys Vlasenko [4.18.0-525.el8] +- net: xfrm: Fix xfrm_address_filter OOB read (Wander Lairson Costa) [2227304] {CVE-2023-39194} +- drm/qxl: fix UAF on handle creation (Wander Lairson Costa) [2218333] {CVE-2023-39198} +- x86/sev: Make enc_dec_hypercall() accept a size instead of npages (Vitaly Kuznetsov) [RHEL-3656] +- net: virtio_net_hdr_to_skb: count transport header in UFO (Cindy Lu) [RHEL-6030] +- ice: reset first in crash dump kernels (Petr Oros) [2139761] +- perf/core: Fix potential NULL deref (Wander Lairson Costa) [RHEL-14982] {CVE-2023-5717} +- perf: Disallow mis-matched inherited group reads (Wander Lairson Costa) [RHEL-14982] {CVE-2023-5717} +- scsi: mpt3sas: Drop redundant pci_enable_pcie_error_reporting() (Tomas Henzl) [RHEL-8246] +- scsi: mpt3sas: Fix in error path (Tomas Henzl) [RHEL-8246] +- scsi: mpt3sas: Fix loop logic (Tomas Henzl) [RHEL-8246] +- scsi: mpt3sas: Remove volatile qualifier (Tomas Henzl) [RHEL-8246] +- scsi: mpt3sas: Perform additional retries if doorbell read returns 0 (Tomas Henzl) [RHEL-8246] +- scsi: mpi3mr: Split off bus_reset function from host_reset (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: Update driver version to 8.5.0.0.0 (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: Enhance handling of devices removed after controller reset (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: WRITE SAME implementation (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: Add support for more than 1MB I/O (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: Update MPI Headers to version 3.00.28 (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: Invoke soft reset upon TSU or event ack time out (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: Propagate sense data for admin queue SCSI I/O (Tomas Henzl) [RHEL-8232] +- scsi: mpi3mr: Fix the type used for pointers to bitmap (Tomas Henzl) [RHEL-8232] +- regmap: Drop initial version of maximum transfer length fixes (Mark Langsdorf) [RHEL-1022] +- regmap: Account for register length when chunking (Mark Langsdorf) [RHEL-1022] +- driver core: update comments in device_rename() (Mark Langsdorf) [RHEL-1022] +- cacheinfo: Add use_arch[|_cache]_info field/function (Mark Langsdorf) [RHEL-1022] +- arch_topology: Remove early cacheinfo error message if -ENOENT (Mark Langsdorf) [RHEL-1022] +- cacheinfo: Allow early level detection when DT/ACPI info is missing/broken (Mark Langsdorf) [RHEL-1022] +- cacheinfo: Check sib_leaf in cache_leaves_are_shared() (Mark Langsdorf) [RHEL-1022] +- cacheinfo: Add arch specific early level initializer (Mark Langsdorf) [RHEL-1022] +- regmap: Factor out single value register syncing (Mark Langsdorf) [RHEL-1022] +- regmap: Add RAM backed register map (Mark Langsdorf) [RHEL-1022] +- regmap: Removed compressed cache support (Mark Langsdorf) [RHEL-1022] +- base: soc: populate machine name in soc_device_register if empty (Mark Langsdorf) [RHEL-1022] +- regmap: Clarify error for unknown cache types (Mark Langsdorf) [RHEL-1022] +- regmap: Handle sparse caches in the default sync (Mark Langsdorf) [RHEL-1022] +- regmap: add a helper to translate the register address (Mark Langsdorf) [RHEL-1022] +- regmap: cache: Silence checkpatch warning (Mark Langsdorf) [RHEL-1022] +- regmap: cache: Return error in cache sync operations for REGCACHE_NONE (Mark Langsdorf) [RHEL-1022] +- devres: Pass unique name of the resource to devm_add_action() (Mark Langsdorf) [RHEL-1022] +- device property: Clarify description of returned value in some functions (Mark Langsdorf) [RHEL-1022] +- driver core: Make state_synced device attribute writeable (Mark Langsdorf) [RHEL-1022] +- PM: domains: fix memory leak with using debugfs_lookup() (Mark Langsdorf) [RHEL-1022] +- PM: runtime: Do not call __rpm_callback() from rpm_idle() (Mark Langsdorf) [RHEL-1022] +- kobject: kset_uevent_ops: make name() callback take a const * (Mark Langsdorf) [RHEL-1022] +- kobject: kset_uevent_ops: make filter() callback take a const * (Mark Langsdorf) [RHEL-1022] +- kobject: make get_ktype() take a const pointer (Mark Langsdorf) [RHEL-1022] +- kobject: make kobject_get_ownership() take a constant kobject * (Mark Langsdorf) [RHEL-1022] +- arm64: topology: move store_cpu_topology() to shared code (Mark Langsdorf) [RHEL-1022] +- filemap: skip write and wait if end offset precedes start (Nico Pache) [RHEL-5620] +- mm/mempolicy: clean up the code logic in queue_pages_pte_range (Nico Pache) [RHEL-5620] +- mm:vmscan: fix inaccurate reclaim during proactive reclaim (Nico Pache) [RHEL-5620] +- mm/page_alloc: don't wake kswapd from rmqueue() unless __GFP_KSWAPD_RECLAIM is specified (Nico Pache) [RHEL-5620] +- writeback: fix call of incorrect macro (Nico Pache) [RHEL-5620] +- mm/page_alloc: use write_seqlock_irqsave() instead write_seqlock() + local_irq_save(). (Nico Pache) [RHEL-5620] +- mm/page_alloc: fix potential deadlock on zonelist_update_seq seqlock (Nico Pache) [RHEL-5620] +- writeback, cgroup: fix null-ptr-deref write in bdi_split_work_to_wbs (Nico Pache) [RHEL-5620] +- mm/khugepaged: check again on anon uffd-wp during isolation (Nico Pache) [RHEL-5620] +- mm/swap: fix swap_info_struct race between swapoff and get_swap_pages() (Nico Pache) [RHEL-5620] +- mm/fadvise: use LLONG_MAX instead of -1 for eof (Nico Pache) [RHEL-5620] +- mm: Make failslab writable again (Nico Pache) [RHEL-5620] +- mm: migrate: fix THP's mapcount on isolation (Nico Pache) [RHEL-5620] +- mm/memremap.c: map FS_DAX device memory as decrypted (Nico Pache) [RHEL-5620] +- mm/page_alloc: add missing is_migrate_isolate() check in set_page_guard() (Nico Pache) [RHEL-5620] +- mm: pagewalk: Fix race between unmap and page walker (Nico Pache) [RHEL-5620] +- mm/slub: add missing TID updates on slab deactivation (Nico Pache) [RHEL-5620] +- hugetlb: fix huge_pmd_unshare address update (Nico Pache) [RHEL-5620] +- fs-writeback: writeback_sb_inodes:Recalculate 'wrote' according skipped pages (Nico Pache) [RHEL-5620] +- highmem: fix checks in __kmap_local_sched_{in,out} (Nico Pache) [RHEL-5620] +- mm: fix race between MADV_FREE reclaim and blkdev direct IO read (Nico Pache) [RHEL-5620] +- mm/thp: fix NR_FILE_MAPPED accounting in page_*_file_rmap() (Nico Pache) [RHEL-5620] +- memblock: use kfree() to release kmalloced memblock regions (Nico Pache) [RHEL-5620] +- mm/list_lru.c: prefer struct_size over open coded arithmetic (Nico Pache) [RHEL-5620] +- mm/kmemleak: allow __GFP_NOLOCKDEP passed to kmemleak's gfp (Nico Pache) [RHEL-5620] +- mm/hugetlb: initialize hugetlb_usage in mm_init (Nico Pache) [RHEL-5620] +- mm: mempolicy: don't have to split pmd for huge zero page (Nico Pache) [RHEL-5620] +- mm/thp: fix page_vma_mapped_walk() if THP mapped by ptes (Nico Pache) [RHEL-5620] +- mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (Nico Pache) [RHEL-5620] +- delayacct: clear right task's flag after blkio completes (Nico Pache) [RHEL-5620] +- mm: remove lru_add_drain_all in alloc_contig_range (Nico Pache) [RHEL-5620] +- mm: always have io_remap_pfn_range() set pgprot_decrypted() (Nico Pache) [RHEL-5620] +- mm/page_alloc: fix documentation error (Nico Pache) [RHEL-5620] +- s390/mm: mmap base does not depend on ADDR_NO_RANDOMIZE personality (Nico Pache) [RHEL-5620] +- powerpc/mm: Fix "sz" set but not used warning (Nico Pache) [RHEL-5620] +- powerpc/mm/hash: Handle mmap_min_addr correctly in get_unmapped_area topdown search (Nico Pache) [RHEL-5620] +- mm: ksm: do not block on page lock when searching stable tree (Nico Pache) [RHEL-5620] +- powerpc/hugetlbpage: Rmove unhelpful HUGEPD_*_SHIFT macros (Nico Pache) [RHEL-5620] +- arm64: mm: Export __sync_icache_dcache() for xen-privcmd (Nico Pache) [RHEL-5620] + * Sun Nov 12 2023 Denys Vlasenko [4.18.0-524.el8] - pNFS/filelayout: treat GETDEVICEINFO errors as layout failure (Scott Mayhew) [RHEL-4969] - mm/kmemleak: move up cond_resched() call in page scanning loop (Waiman Long) [RHEL-8630] diff --git a/sources b/sources index 1b2f90494..55056cd85 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (linux-4.18.0-524.el8.tar.xz) = 150f44be09917286b85e09ab4338a833c1f83bad5db51a8a5a24281d019f3027337d4274323d07123765f1946f7f0ec578eb4a0a0f65f79718be53351a6311b8 -SHA512 (kernel-abi-stablelists-4.18.0-524.tar.bz2) = 0fb40a506a1fabbfad2ae13d2e8a1dcb956bc1912f69689b3e8d3d1a6aa9fbe6ca36f96ab9f98d2fda4563f82457ea46633420e6f057eec2fade14c227300bfb -SHA512 (kernel-kabi-dw-4.18.0-524.tar.bz2) = f7bbf94096acc33486535d9eece268c543c6a05d93ee262d64dc22b220f1cb3ff49b4cf091a5c748811c4229fdf674be4c816174575161b0ca5e457726595b32 +SHA512 (linux-4.18.0-525.el8.tar.xz) = 1a87696aa65306b12134d02ede47dc94105bd8b1db2b7b159f988cc9d910582bfb48fadbc09f940735fb096d1c982ab80cb95fc65b2b27c4ecc17e4b77ea3998 +SHA512 (kernel-abi-stablelists-4.18.0-525.tar.bz2) = 34db298bd66cee059ec427c8c711eb06d6c9dd7c09efe4f71d7a9610b7800c9af065241538f6ee936c2ae186b97962f4f28fff98df375d89e4e45d8ee47b2a29 +SHA512 (kernel-kabi-dw-4.18.0-525.tar.bz2) = d716899a00a955b542acffa31dc7c05601d4350f6515a94878e1a0d517da8c0ceb9948d8a57769ffda7783a3a1048a99098125d0f85c13e5c351b02bebcc8502