From e84ea13bd0196053b74431bc2ce3b801ec4c39e9 Mon Sep 17 00:00:00 2001 From: Denys Vlasenko Date: Tue, 21 May 2024 00:16:59 +0200 Subject: [PATCH] kernel-4.18.0-553.5.1.el8_10 * Mon May 20 2024 Denys Vlasenko [4.18.0-553.5.1.el8_10] - tools/power/turbostat: Fix uncore frequency file string (David Arcari) [RHEL-29238] - tools/power turbostat: Expand probe_intel_uncore_frequency() (David Arcari) [RHEL-29238] - uio: Fix use-after-free in uio_open (Ricardo Robaina) [RHEL-26232] {CVE-2023-52439} - net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send (Ken Cox) [RHEL-27316] {CVE-2021-47013} - keys: Fix linking a duplicate key to a keyring's assoc_array (David Howells) [RHEL-30772] - keys: Hoist locking out of __key_link_begin() (David Howells) [RHEL-30772] - keys: Break bits out of key_unlink() (David Howells) [RHEL-30772] - keys: Change keyring_serialise_link_sem to a mutex (David Howells) [RHEL-30772] - wifi: brcm80211: handle pmk_op allocation failure (Jose Ignacio Tornos Martinez) [RHEL-35150] {CVE-2024-27048} - wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work (Jose Ignacio Tornos Martinez) [RHEL-35140] {CVE-2024-27052} - wifi: iwlwifi: mvm: ensure offloading TID queue exists (Jose Ignacio Tornos Martinez) [RHEL-35130] {CVE-2024-27056} - wifi: mt76: mt7921e: fix use-after-free in free_irq() (Jose Ignacio Tornos Martinez) [RHEL-34866] {CVE-2024-26892} - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete (Jose Ignacio Tornos Martinez) [RHEL-34189] {CVE-2024-26897} - wifi: iwlwifi: mvm: fix a crash when we run out of stations (Jose Ignacio Tornos Martinez) [RHEL-31547] {CVE-2024-26693} - wifi: iwlwifi: fix double-free bug (Jose Ignacio Tornos Martinez) [RHEL-31543] {CVE-2024-26694} - wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() (Jose Ignacio Tornos Martinez) [RHEL-29089] {CVE-2023-52594} - wifi: rt2x00: restart beacon queue when hardware reset (Jose Ignacio Tornos Martinez) [RHEL-29093] {CVE-2023-52595} - wifi: iwlwifi: fix a memory corruption (Jose Ignacio Tornos Martinez) [RHEL-28903] {CVE-2024-26610} Resolves: RHEL-26232, RHEL-27316, RHEL-28903, RHEL-29089, RHEL-29093, RHEL-29238, RHEL-30772, RHEL-31543, RHEL-31547, RHEL-34189, RHEL-34866, RHEL-35130, RHEL-35140, RHEL-35150 Signed-off-by: Denys Vlasenko --- kernel.spec | 24 ++++++++++++++++++++++-- sources | 4 ++-- 2 files changed, 24 insertions(+), 4 deletions(-) diff --git a/kernel.spec b/kernel.spec index e312ef9fa..fa00a2867 100644 --- a/kernel.spec +++ b/kernel.spec @@ -38,10 +38,10 @@ # define buildid .local %define specversion 4.18.0 -%define pkgrelease 553.4.1.el8_10 +%define pkgrelease 553.5.1.el8_10 # allow pkg_release to have configurable %%{?dist} tag -%define specrelease 553.4.1%{?dist} +%define specrelease 553.5.1%{?dist} %define pkg_release %{specrelease}%{?buildid} @@ -2696,6 +2696,26 @@ fi # # %changelog +* Mon May 20 2024 Denys Vlasenko [4.18.0-553.5.1.el8_10] +- tools/power/turbostat: Fix uncore frequency file string (David Arcari) [RHEL-29238] +- tools/power turbostat: Expand probe_intel_uncore_frequency() (David Arcari) [RHEL-29238] +- uio: Fix use-after-free in uio_open (Ricardo Robaina) [RHEL-26232] {CVE-2023-52439} +- net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send (Ken Cox) [RHEL-27316] {CVE-2021-47013} +- keys: Fix linking a duplicate key to a keyring's assoc_array (David Howells) [RHEL-30772] +- keys: Hoist locking out of __key_link_begin() (David Howells) [RHEL-30772] +- keys: Break bits out of key_unlink() (David Howells) [RHEL-30772] +- keys: Change keyring_serialise_link_sem to a mutex (David Howells) [RHEL-30772] +- wifi: brcm80211: handle pmk_op allocation failure (Jose Ignacio Tornos Martinez) [RHEL-35150] {CVE-2024-27048} +- wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work (Jose Ignacio Tornos Martinez) [RHEL-35140] {CVE-2024-27052} +- wifi: iwlwifi: mvm: ensure offloading TID queue exists (Jose Ignacio Tornos Martinez) [RHEL-35130] {CVE-2024-27056} +- wifi: mt76: mt7921e: fix use-after-free in free_irq() (Jose Ignacio Tornos Martinez) [RHEL-34866] {CVE-2024-26892} +- wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete (Jose Ignacio Tornos Martinez) [RHEL-34189] {CVE-2024-26897} +- wifi: iwlwifi: mvm: fix a crash when we run out of stations (Jose Ignacio Tornos Martinez) [RHEL-31547] {CVE-2024-26693} +- wifi: iwlwifi: fix double-free bug (Jose Ignacio Tornos Martinez) [RHEL-31543] {CVE-2024-26694} +- wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() (Jose Ignacio Tornos Martinez) [RHEL-29089] {CVE-2023-52594} +- wifi: rt2x00: restart beacon queue when hardware reset (Jose Ignacio Tornos Martinez) [RHEL-29093] {CVE-2023-52595} +- wifi: iwlwifi: fix a memory corruption (Jose Ignacio Tornos Martinez) [RHEL-28903] {CVE-2024-26610} + * Wed May 15 2024 Denys Vlasenko [4.18.0-553.4.1.el8_10] - cpuhotplug: Fix kABI breakage caused by CPUHP_AP_HYPERV_ONLINE (Vitaly Kuznetsov) [RHEL-36117] - net/mlx5e: Prevent deadlock while disabling aRFS (Kamal Heib) [RHEL-35041] {CVE-2024-27014} diff --git a/sources b/sources index de712fdf1..82ca21310 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (linux-4.18.0-553.4.1.el8_10.tar.xz) = 69d0102f5895e8d5ef8333ff40c718e63a5f6d46e3784c3a8d6ccdaf137fa1578990775b54cdea303ad7809aa57cb015fda5c0db72946fe9bc7e23da7b75ecc2 -SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 541ecefa7ae6f4e9abbd3ba4e4906140564827ecfbe310d772272edd0bf8982ace5ac6e1969187e75b2f365b99978547bb4a0d8b3e6df445a4087aeb14bede0a +SHA512 (linux-4.18.0-553.5.1.el8_10.tar.xz) = 2a117fc1f444c51e45871df95a40ad6db04c70505c6e483ef2f7bc76c376fa8e47f6a597119564e50e1149c06bd3437a481baf0fb1b5d91f215bb7135987f1a5 +SHA512 (kernel-abi-stablelists-4.18.0-553.tar.bz2) = 9ba75e6231c2d95cb9c086faab46a4c1bb0a206180e5d501e14d3705e027d6d888272334dfbbe096f5ce318de50528540b30b44f328a511edc6a14072992a823 SHA512 (kernel-kabi-dw-4.18.0-553.tar.bz2) = 8a671ed3c9b7f4b25fd4e594b62bc4a26474cb705d3ed22ca376618b3c7962fc72ace1ffd02c9c3a192d9d2c449d38228809542d7f16ebad16f8127020eb2faf