From e75b633a3a35ab667d25b78bdb1f148f13c67288 Mon Sep 17 00:00:00 2001 From: Scott Weaver Date: Mon, 5 Feb 2024 14:18:52 -0500 Subject: [PATCH] kernel-5.14.0-418.el9 * Mon Feb 05 2024 Scott Weaver [5.14.0-418.el9] - atm: Fix Use-After-Free in do_vcc_ioctl (Guillaume Nault) [RHEL-21181 RHEL-21185] {CVE-2023-51780} - netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses (Florian Westphal) [RHEL-21369] - netfilter: nft_redir: use `struct nf_nat_range2` throughout and deduplicate eval call-backs (Florian Westphal) [RHEL-21369] - netfilter: nf_nat: fix action not being set for all ct states (Florian Westphal) [RHEL-21369] - netfilter: conntrack: fix extension size table (Florian Westphal) [RHEL-21369] - netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value. (Florian Westphal) [RHEL-21369] - netfilter: conntrack: set icmpv6 redirects as RELATED (Florian Westphal) [RHEL-21369] - cifs: fix session state transition to avoid use-after-free issue (Jay Shin) [RHEL-20534] - perf/x86/amd: Reject branch stack for IBS events (Michael Petlan) [RHEL-10908] - smb: client: fix potential OOB in smb2_dump_detail() (Scott Mayhew) [RHEL-21677 RHEL-19147] {CVE-2023-6610} - smb: client: fix potential OOB in cifs_dump_detail() (Scott Mayhew) [RHEL-21677 RHEL-19147] {CVE-2023-6610} - x86/mce/inject: Clear test status value (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Add support for AMD family 1Ah models 00h-1Fh and 40h-4Fh (Aristeu Rozanski) [RHEL-10032] - hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Rename f17h_determine_edac_ctl_cap() (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Split setup_mci_misc_attrs() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Split ecc_enabled() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Split read_mc_regs() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Split determine_memory_type() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Split read_base_mask() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Split prep_chip_selects() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Rework hw_info_{get,put} (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Merge struct amd64_family_type into struct amd64_pvt (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Do not discover ECC symbol size for Family 17h and later (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Drop dbam_to_cs() for Family 17h and later (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Split get_csrow_nr_pages() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Rename debug_display_dimm_sizes() (Aristeu Rozanski) [RHEL-10032] - x86/MCE/AMD: Use an u64 for bank_map (Aristeu Rozanski) [RHEL-10032] - x86/mce: Make sure logged MCEs are processed after sysfs update (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Remove early_channel_count() (Aristeu Rozanski) [RHEL-10032] - x86/mce: Check whether writes to MCA_STATUS are getting ignored (Aristeu Rozanski) [RHEL-10032] - x86/mce: Use arch atomic and bit helpers (Aristeu Rozanski) [RHEL-10032] - cpumask: Add a x86-specific cpumask_clear_cpu() helper (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Add context struct (Aristeu Rozanski) [RHEL-10032] - EDAC/amd64: Allow for DF Indirect Broadcast reads (Aristeu Rozanski) [RHEL-10032] - thunderbolt: Set lane bonding bit only for downstream port (Desnes Nunes) [RHEL-21056] - rh_messages.h: update driver and device lists (Scott Weaver) [RHEL-22125] - kobject: Fix slab-out-of-bounds in fill_kobj_path() (Waiman Long) [RHEL-20927 RHEL-20929] {CVE-2023-45863} - kobject: modify kobject_get_path() to take a const * (Waiman Long) [RHEL-20927 RHEL-20929] {CVE-2023-45863} - hv_netvsc: Calculate correct ring size when PAGE_SIZE is not 4 Kbytes (Maxim Levitsky) [RHEL-23420] - hv_netvsc: remove duplicated including of slab.h (Maxim Levitsky) [RHEL-23420] - hv_netvsc: rndis_filter needs to select NLS (Maxim Levitsky) [RHEL-23420] - hv_netvsc: Mark VF as slave before exposing it to user-mode (Maxim Levitsky) [RHEL-23420] - hv_netvsc: Fix race of register_netdevice_notifier and VF register (Maxim Levitsky) [RHEL-23420] - hv_netvsc: fix race of netvsc and VF register_netdevice (Maxim Levitsky) [RHEL-23420] - hv_netvsc: fix netvsc_send_completion to avoid multiple message length checks (Maxim Levitsky) [RHEL-23420] - hv_netvsc: Allocate rx indirection table size dynamically (Maxim Levitsky) [RHEL-23420] - RDMA/mana_ib: Add CQ interrupt support for RAW QP (Maxim Levitsky) [RHEL-23420] - RDMA/mana_ib: query device capabilities (Maxim Levitsky) [RHEL-23420] - RDMA/mana_ib: register RDMA device with GDMA (Maxim Levitsky) [RHEL-23420] - net: mana: select PAGE_POOL (Maxim Levitsky) [RHEL-23420] - net: mana: add msix index sharing between EQs (Maxim Levitsky) [RHEL-23420] - net: mana: Fix spelling mistake "enforecement" -> "enforcement" (Maxim Levitsky) [RHEL-23420] - net :mana :Add remaining GDMA stats for MANA to ethtool (Maxim Levitsky) [RHEL-23420] - net: mana: Use xdp_set_features_flag instead of direct assignment (Maxim Levitsky) [RHEL-23420] - net: mana: Fix oversized sge0 for GSO packets (Maxim Levitsky) [RHEL-23420] - net: mana: Fix the tso_bytes calculation (Maxim Levitsky) [RHEL-23420] - net: mana: Fix TX CQE error handling (Maxim Levitsky) [RHEL-23420] - net: mana: Add gdma stats to ethtool output for mana (Maxim Levitsky) [RHEL-23420] - net: mana: Fix MANA VF unload when hardware is unresponsive (Maxim Levitsky) [RHEL-23420] - net: mana: Add page pool for RX buffers (Maxim Levitsky) [RHEL-23420] - net: mana: Configure hwc timeout from hardware (Maxim Levitsky) [RHEL-23420] - RDMA/mana_ib: Use v2 version of cfg_rx_steer_req to enable RX coalescing (Maxim Levitsky) [RHEL-23420] - Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg (Ricardo Robaina) [RHEL-20744 RHEL-20742] {CVE-2023-51779} - IB/core: Reorder GID delete code for RoCE (Ivan Vecera) [RHEL-22388] Resolves: RHEL-10032, RHEL-10908, RHEL-20534, RHEL-20744, RHEL-20927, RHEL-21056, RHEL-21181, RHEL-21369, RHEL-21677, RHEL-22125, RHEL-22388, RHEL-23420, RHEL-21185, RHEL-19147, RHEL-20929, RHEL-20742 Signed-off-by: Scott Weaver --- Makefile.rhelver | 2 +- kernel.spec | 75 +++++++++++++++++++++++++++++++++++++++++++++--- sources | 6 ++-- 3 files changed, 75 insertions(+), 8 deletions(-) diff --git a/Makefile.rhelver b/Makefile.rhelver index 17c8fdc..ef8a695 100644 --- a/Makefile.rhelver +++ b/Makefile.rhelver @@ -12,7 +12,7 @@ RHEL_MINOR = 4 # # Use this spot to avoid future merge conflicts. # Do not trim this comment. -RHEL_RELEASE = 417 +RHEL_RELEASE = 418 # # ZSTREAM diff --git a/kernel.spec b/kernel.spec index 22e4a95..837abdc 100755 --- a/kernel.spec +++ b/kernel.spec @@ -165,15 +165,15 @@ Summary: The Linux kernel # define buildid .local %define specversion 5.14.0 %define patchversion 5.14 -%define pkgrelease 417 +%define pkgrelease 418 %define kversion 5 -%define tarfile_release 5.14.0-417.el9 +%define tarfile_release 5.14.0-418.el9 # This is needed to do merge window version magic %define patchlevel 14 # This allows pkg_release to have configurable %%{?dist} tag -%define specrelease 417%{?buildid}%{?dist} +%define specrelease 418%{?buildid}%{?dist} # This defines the kabi tarball version -%define kabiversion 5.14.0-417.el9 +%define kabiversion 5.14.0-418.el9 # # End of genspec.sh variables @@ -3727,6 +3727,73 @@ fi # # %changelog +* Mon Feb 05 2024 Scott Weaver [5.14.0-418.el9] +- atm: Fix Use-After-Free in do_vcc_ioctl (Guillaume Nault) [RHEL-21181 RHEL-21185] {CVE-2023-51780} +- netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses (Florian Westphal) [RHEL-21369] +- netfilter: nft_redir: use `struct nf_nat_range2` throughout and deduplicate eval call-backs (Florian Westphal) [RHEL-21369] +- netfilter: nf_nat: fix action not being set for all ct states (Florian Westphal) [RHEL-21369] +- netfilter: conntrack: fix extension size table (Florian Westphal) [RHEL-21369] +- netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value. (Florian Westphal) [RHEL-21369] +- netfilter: conntrack: set icmpv6 redirects as RELATED (Florian Westphal) [RHEL-21369] +- cifs: fix session state transition to avoid use-after-free issue (Jay Shin) [RHEL-20534] +- perf/x86/amd: Reject branch stack for IBS events (Michael Petlan) [RHEL-10908] +- smb: client: fix potential OOB in smb2_dump_detail() (Scott Mayhew) [RHEL-21677 RHEL-19147] {CVE-2023-6610} +- smb: client: fix potential OOB in cifs_dump_detail() (Scott Mayhew) [RHEL-21677 RHEL-19147] {CVE-2023-6610} +- x86/mce/inject: Clear test status value (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Add support for AMD family 1Ah models 00h-1Fh and 40h-4Fh (Aristeu Rozanski) [RHEL-10032] +- hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Rename f17h_determine_edac_ctl_cap() (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Split setup_mci_misc_attrs() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Split ecc_enabled() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Split read_mc_regs() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Split determine_memory_type() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Split read_base_mask() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Split prep_chip_selects() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Rework hw_info_{get,put} (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Merge struct amd64_family_type into struct amd64_pvt (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Do not discover ECC symbol size for Family 17h and later (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Drop dbam_to_cs() for Family 17h and later (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Split get_csrow_nr_pages() into dct/umc functions (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Rename debug_display_dimm_sizes() (Aristeu Rozanski) [RHEL-10032] +- x86/MCE/AMD: Use an u64 for bank_map (Aristeu Rozanski) [RHEL-10032] +- x86/mce: Make sure logged MCEs are processed after sysfs update (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Remove early_channel_count() (Aristeu Rozanski) [RHEL-10032] +- x86/mce: Check whether writes to MCA_STATUS are getting ignored (Aristeu Rozanski) [RHEL-10032] +- x86/mce: Use arch atomic and bit helpers (Aristeu Rozanski) [RHEL-10032] +- cpumask: Add a x86-specific cpumask_clear_cpu() helper (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Add context struct (Aristeu Rozanski) [RHEL-10032] +- EDAC/amd64: Allow for DF Indirect Broadcast reads (Aristeu Rozanski) [RHEL-10032] +- thunderbolt: Set lane bonding bit only for downstream port (Desnes Nunes) [RHEL-21056] +- rh_messages.h: update driver and device lists (Scott Weaver) [RHEL-22125] +- kobject: Fix slab-out-of-bounds in fill_kobj_path() (Waiman Long) [RHEL-20927 RHEL-20929] {CVE-2023-45863} +- kobject: modify kobject_get_path() to take a const * (Waiman Long) [RHEL-20927 RHEL-20929] {CVE-2023-45863} +- hv_netvsc: Calculate correct ring size when PAGE_SIZE is not 4 Kbytes (Maxim Levitsky) [RHEL-23420] +- hv_netvsc: remove duplicated including of slab.h (Maxim Levitsky) [RHEL-23420] +- hv_netvsc: rndis_filter needs to select NLS (Maxim Levitsky) [RHEL-23420] +- hv_netvsc: Mark VF as slave before exposing it to user-mode (Maxim Levitsky) [RHEL-23420] +- hv_netvsc: Fix race of register_netdevice_notifier and VF register (Maxim Levitsky) [RHEL-23420] +- hv_netvsc: fix race of netvsc and VF register_netdevice (Maxim Levitsky) [RHEL-23420] +- hv_netvsc: fix netvsc_send_completion to avoid multiple message length checks (Maxim Levitsky) [RHEL-23420] +- hv_netvsc: Allocate rx indirection table size dynamically (Maxim Levitsky) [RHEL-23420] +- RDMA/mana_ib: Add CQ interrupt support for RAW QP (Maxim Levitsky) [RHEL-23420] +- RDMA/mana_ib: query device capabilities (Maxim Levitsky) [RHEL-23420] +- RDMA/mana_ib: register RDMA device with GDMA (Maxim Levitsky) [RHEL-23420] +- net: mana: select PAGE_POOL (Maxim Levitsky) [RHEL-23420] +- net: mana: add msix index sharing between EQs (Maxim Levitsky) [RHEL-23420] +- net: mana: Fix spelling mistake "enforecement" -> "enforcement" (Maxim Levitsky) [RHEL-23420] +- net :mana :Add remaining GDMA stats for MANA to ethtool (Maxim Levitsky) [RHEL-23420] +- net: mana: Use xdp_set_features_flag instead of direct assignment (Maxim Levitsky) [RHEL-23420] +- net: mana: Fix oversized sge0 for GSO packets (Maxim Levitsky) [RHEL-23420] +- net: mana: Fix the tso_bytes calculation (Maxim Levitsky) [RHEL-23420] +- net: mana: Fix TX CQE error handling (Maxim Levitsky) [RHEL-23420] +- net: mana: Add gdma stats to ethtool output for mana (Maxim Levitsky) [RHEL-23420] +- net: mana: Fix MANA VF unload when hardware is unresponsive (Maxim Levitsky) [RHEL-23420] +- net: mana: Add page pool for RX buffers (Maxim Levitsky) [RHEL-23420] +- net: mana: Configure hwc timeout from hardware (Maxim Levitsky) [RHEL-23420] +- RDMA/mana_ib: Use v2 version of cfg_rx_steer_req to enable RX coalescing (Maxim Levitsky) [RHEL-23420] +- Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg (Ricardo Robaina) [RHEL-20744 RHEL-20742] {CVE-2023-51779} +- IB/core: Reorder GID delete code for RoCE (Ivan Vecera) [RHEL-22388] + * Thu Feb 01 2024 Scott Weaver [5.14.0-417.el9] - bpf: Limit the number of uprobes when attaching program to multiple uprobes (Jerome Marchand) [RHEL-21411] - xfrm: don't require advance ESN callback for packet offload (Mohammad Kabat) [RHEL-882] diff --git a/sources b/sources index ff4dd02..5be143b 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (linux-5.14.0-417.el9.tar.xz) = 933062b373833bff1ca04f2bc7a68915026bfc3f21ccb689032913e8da8a88f6d0e579f9a69791d5fe5dc5def86e747602d6ddecb4d5e5d15bb116d7b1eb3dae -SHA512 (kernel-abi-stablelists-5.14.0-417.el9.tar.bz2) = d6800385dab9b2dcc6e86b39c2009c1d98e7270872f635fa463c34291e1144932cd0a7fa60b4bee101bddfc53f9a6c6e46189cc4a77d6c06614640bc962bb32d -SHA512 (kernel-kabi-dw-5.14.0-417.el9.tar.bz2) = b24007ca6d89200b3634a58433664b846388d9eb6f763f039c3fe061c6a75eef2e81b57a27da9be0efb425828b6e3ff5f94ee836c3bd1e73d8ae2a6c4ff35311 +SHA512 (linux-5.14.0-418.el9.tar.xz) = 9a92ac1b534d342635f6b108aef81db9b0021af179494a4e4e0bf97410a382a31235c1793db3aa8bbfc889bccf0976395ef30a62bf2f946ba7f98252e9330574 +SHA512 (kernel-abi-stablelists-5.14.0-418.el9.tar.bz2) = 909ab08b4307d34cec8f440b7e0c0f988fff16e2cc3b904f093e2565fc14b67efd2889eaff405fef85eb2820b8675be663f25b42eb7e94490c33a9c588080b0d +SHA512 (kernel-kabi-dw-5.14.0-418.el9.tar.bz2) = 9ce69b2efd7ef4b0dd30e9f9ad95c18ebc5089447deafccedec198593d4931beae52be0e625a08a91e7345351247328f340dbfd736acd7ae701642eb7567d084