kernel/kernel.spec
Denys Vlasenko 0b61259a24 kernel-4.18.0-534.el8
* Sat Jan 06 2024 Denys Vlasenko <dvlasenk@redhat.com> [4.18.0-534.el8]
- nfsd: lock_rename() needs both directories to live on the same fs (Jeffrey Layton) [RHEL-19591]
- HID: check empty report_list in hid_validate_values() (Desnes Nunes) [RHEL-19237 RHEL-19260] {CVE-2023-1073}
- ceph: do not print the whole xattr value if it's too long (Xiubo Li) [RHEL-16411]
- libceph: fix potential use-after-free on linger ping and resends (Jay Shin) [RHEL-20390]
- ceph: fix incorrect revoked caps assert in ceph_fill_file_size() (Xiubo Li) [RHEL-8003]
- ceph: silence smatch warning in reconnect_caps_cb() (Xiubo Li) [RHEL-16410]
- ceph: fix potential use-after-free bug when trimming caps (Xiubo Li) [RHEL-16410]
- ceph: don't let check_caps skip sending responses for revoke msgs (Xiubo Li) [RHEL-16412]
- ceph: issue a cap release immediately if no cap exists (Xiubo Li) [RHEL-16412]
- ceph: trigger to flush the buffer when making snapshot (Xiubo Li) [RHEL-16412]
- ceph: force updating the msg pointer in non-split case (Xiubo Li) [RHEL-16412]
- ceph: flush cap releases when the session is flushed (Xiubo Li) [RHEL-16412]
- ceph: reorder fields in 'struct ceph_snapid_map' (Xiubo Li) [RHEL-16412]
- ceph: voluntarily drop Xx caps for requests those touch parent mtime (Xiubo Li) [RHEL-16412]
- redhat/configs: Remove multi-buffer SHA configs (Štěpán Horáček) [RHEL-14477]
- crypto: tcrypt - remove all multibuffer ahash tests (Štěpán Horáček) [RHEL-14477]
- crypto: hash - Remove unused async iterators (Štěpán Horáček) [RHEL-14477]
- crypto: x86 - remove SHA multibuffer routines and mcryptd (Štěpán Horáček) [RHEL-14477]
- fs: group frequently accessed fields of struct super_block together (Miklos Szeredi) [RHEL-12504]
- fanotify: add API to attach/detach super block mark (Miklos Szeredi) [RHEL-12504]
- fsnotify: send path type events to group with super block marks (Miklos Szeredi) [RHEL-12504]
- fsnotify: add super block object type (Miklos Szeredi) [RHEL-12504]
- netfilter: nf_tables: set backend .flush always succeeds (Florian Westphal) [RHEL-1722]
- netfilter: nft_set_pipapo: no need to call pipapo_deactivate() from flush (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix memleak when more than 255 elements expired (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: disable toggling dormant table state more than once (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix table flag updates (Florian Westphal) [RHEL-1722]
- netfilter: nftables: update table flags from the commit phase (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: disallow element removal on anonymous sets (Florian Westphal) [RHEL-1722]
- netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration (Florian Westphal) [RHEL-1722]
- netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation fails (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix nft_trans type confusion (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: defer gc run if previous batch is still pending (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix out of memory error handling (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: use correct lock to protect gc_list (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: GC transaction race with abort path (Florian Westphal) [RHEL-1722]
- netfilter: nft_dynset: disallow object maps (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: GC transaction race with netns dismantle (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: don't fail inserts if duplicate has expired (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix kdoc warnings after gc rework (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix false-positive lockdep splat (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: remove busy mark and gc batch API (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: adapt set backend to use GC transaction API (Florian Westphal) [RHEL-1722] {CVE-2023-4244}
- netfilter: nf_tables: GC transaction API to avoid race with control plane (Florian Westphal) [RHEL-1722] {CVE-2023-4244}
- netfilter: nftables: rename set element data activation/deactivation functions (Florian Westphal) [RHEL-1722]
- netfilter: nft_set_rbtree: skip elements in transaction from garbage collection (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: don't skip expired elements during walk (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: fix spurious set element insertion failure (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: report use refcount overflow (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: add nft_chain_add() (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: disallow timeout for anonymous sets (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: disallow updates of anonymous sets (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: disallow element updates of bound anonymous sets (Florian Westphal) [RHEL-1722]
- netfilter: nft_set_pipapo: .walk does not deal with generations (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: integrate pipapo into commit protocol (Florian Westphal) [RHEL-1722]
- netfilter: nf_tables: honor NLM_F_CREATE and NLM_F_EXCL in event notification (Florian Westphal) [RHEL-1722]
- netfilter: nftables: add catch-all set element support (Florian Westphal) [RHEL-1722]
Resolves: RHEL-12504, RHEL-14477, RHEL-16410, RHEL-16411, RHEL-16412, RHEL-1722, RHEL-19237, RHEL-19260, RHEL-19591, RHEL-20390, RHEL-8003

Signed-off-by: Denys Vlasenko <dvlasenk@redhat.com>
2024-01-06 11:13:33 +01:00

10 MiB

The file is too large to be shown. View Raw