logo
DATABASE RESOURCES PRICING ABOUT US

Unbreakable Enterprise kernel-container security update

Description

[5.4.17-2102.204.4.2] - rds/ib: quarantine STALE mr before dereg (Manjunath Patil) [Orabug: 33150447] - rds/ib: update mr incarnation after forming inv wr (Manjunath Patil) [Orabug: 33177348] - rds/ib: avoid dereg of mr in frwr_clean (Manjunath Patil) [Orabug: 33150427] - arm64: mm: kdump: Fix /proc/kcore (Henry Willard) [Orabug: 32570847] [5.4.17-2102.204.4] - Revert x86/reboot: Force all cpus to exit VMX root if VMX is supported (Somasundaram Krishnasamy) [Orabug: 33167303] - scsi: core: Retry I/O for Notify (Enable Spinup) Required error (Quat Le) [Orabug: 33165876] - A/A Bonding: dev_hold/put() the delayed GARP work handlers netdev in rdmaip (Sharath Srinivasan) [Orabug: 33161268] - rds: ib: Increase entropy of RDMA IOVAs (Hakon Bugge) [Orabug: 33104687] [5.4.17-2102.204.3] - rds: Check for illegal flags when creating an MR (Hakon Bugge) [Orabug: 33144338] - seq_file: disallow extremely large seq buffer allocations (Eric Sandeen) [Orabug: 33135632] {CVE-2021-33909} [5.4.17-2102.204.2] - RDMA/core/sa_query: Remove unused argument (Hakon Bugge) [Orabug: 33113136] - RDMA/cma: Fix incorrect Packet Lifetime calculation (Hakon Bugge) [Orabug: 33113136] - RDMA: Remove a few extra calls to ib_get_client_data() (Jason Gunthorpe) [Orabug: 33113136] - RDMA/cma: Protect RMW with qp_mutex (Hakon Bugge) [Orabug: 33113136] - IB/cma: Introduce rdma_set_min_rnr_timer() (Hakon Bugge) [Orabug: 33113136] - RDMA/iwcm: Allow AFONLY binding for IPv6 addresses (Bernard Metzler) [Orabug: 33113136] - RDMA/cma: Remove unnecessary INIT->INIT transition (Hakon Bugge) [Orabug: 33113136] - RDMA/cma: Use ACK timeout for RoCE packetLifeTime (Dag Moxnes) [Orabug: 33113136] - crypto: ccp - Dont initialize SEV support without the SEV feature (Venu Busireddy) [Orabug: 33110762] - xfs: fix out of bound access (Junxiao Bi) [Orabug: 33089469] - ext4: use ext4_grp_locked_error in mb_find_extent (Stephen Brennan) [Orabug: 33042746] - PCI/ERR: Retain status from error notification (Keith Busch) [Orabug: 32995246] - perf maps: Do not use an rbtree to sort by map name (Arnaldo Carvalho de Melo) [Orabug: 32726674] - block: return the correct bvec when checking for gaps (Long Li) [Orabug: 33000789] [5.4.17-2102.204.1] - LTS tag: v5.4.128 (Jack Vogel) - ARM: OMAP: replace setup_irq() by request_irq() (afzal mohammed) - KVM: arm/arm64: Fix KVM_VGIC_V3_ADDR_TYPE_REDIST read (Eric Auger) - tools headers UAPI: Sync linux/in.h copy with the kernel sources (Arnaldo Carvalho de Melo) - net: fec_ptp: add clock rate zero check (Fugang Duan) - net: stmmac: disable clocks in stmmac_remove_config_dt() (Joakim Zhang) - mm/slub.c: include swab.h (Andrew Morton) - mm/slub: fix redzoning for small allocations (Kees Cook) - mm/slub: clarify verification reporting (Kees Cook) - net: bridge: fix vlan tunnel dst refcnt when egressing (Nikolay Aleksandrov) - net: bridge: fix vlan tunnel dst null pointer dereference (Nikolay Aleksandrov) - net: ll_temac: Fix TX BD buffer overwrite (Esben Haabendal) - net: ll_temac: Make sure to free skb when it is completely used (Esben Haabendal) - drm/amdgpu/gfx9: fix the doorbell missing when in CGPG issue. (Yifan Zhang) - drm/amdgpu/gfx10: enlarge CP_MEC_DOORBELL_RANGE_UPPER to cover full doorbell. (Yifan Zhang) - cfg80211: avoid double free of PMSR request (Avraham Stern) - cfg80211: make certificate generation more robust (Johannes Berg) - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (Bumyong Lee) - x86/fpu: Reset state for all signal restore failures (Thomas Gleixner) - x86/pkru: Write hardware init value to PKRU when xstate is init (Thomas Gleixner) - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (Thomas Gleixner) - ARCv2: save ABI registers across signal handling (Vineet Gupta) - KVM: x86: Immediately reset the MMU context when the SMM flag is cleared (Sean Christopherson) - PCI: Work around Huawei Intelligent NIC VF FLR erratum (Chiqijun) - PCI: Add ACS quirk for Broadcom BCM57414 NIC (Sriharsha Basavapatna) - PCI: aardvark: Fix kernel panic during PIO transfer (Pali Rohar) - PCI: aardvark: Dont rely on jiffies while holding spinlock (Remi Pommarel) - PCI: Mark some NVIDIA GPUs to avoid bus reset (Shanker Donthineni) - PCI: Mark TI C667X to avoid bus reset (Antti Jarvinen) - tracing: Do no increment trace_clock_global() by one (Steven Rostedt (VMware)) - tracing: Do not stop recording comms if the trace file is being read (Steven Rostedt (VMware)) - tracing: Do not stop recording cmdlines when tracing is off (Steven Rostedt (VMware)) - usb: core: hub: Disable autosuspend for Cypress CY7C65632 (Andrew Lunn) - can: mcba_usb: fix memory leak in mcba_usb (Pavel Skripkin) - can: j1939: fix Use-after-Free, hold skb ref while in use (Oleksij Rempel) - can: bcm/raw/isotp: use per module netdevice notifier (Tetsuo Handa) - can: bcm: fix infoleak in struct bcm_msg_head (Norbert Slusarek) - hwmon: (scpi-hwmon) shows the negative temperature properly (Riwen Lu) - radeon: use memcpy_to/fromio for UVD fw upload (Chen Li) - pinctrl: ralink: rt2880: avoid to error in calls is pin is already enabled (Sergio Paracuellos) - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd() (Patrice Chotard) - ASoC: rt5659: Fix the lost powers for the HDA header (Jack Yu) - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (Axel Lin) - net: ethernet: fix potential use-after-free in ec_bhf_remove (Pavel Skripkin) - icmp: dont send out ICMP messages with a source address of 0.0.0.0 (Toke Hoiland-Jorgensen) - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path (Somnath Kotur) - bnxt_en: Rediscover PHY capabilities after firmware reset (Michael Chan) - cxgb4: fix wrong shift. (Pavel Machek) - net: cdc_eem: fix tx fixup skb leak (Linyu Yuan) - net: hamradio: fix memory leak in mkiss_close (Pavel Skripkin) - be2net: Fix an error handling path in be_probe() (Christophe JAILLET) - net/af_unix: fix a data-race in unix_dgram_sendmsg / unix_release_sock (Eric Dumazet) - net: ipv4: fix memory leak in ip_mc_add1_src (Chengyang Fan) - net: fec_ptp: fix issue caused by refactor the fec_devtype (Joakim Zhang) - net: usb: fix possible use-after-free in smsc75xx_bind (Dongliang Mu) - lantiq: net: fix duplicated skb in rx descriptor ring (Aleksander Jan Bajkowski) - net: cdc_ncm: switch to eth%d interface naming (Maciej zenczykowski) - ptp: improve max_adj check against unreasonable values (Jakub Kicinski) - net: qrtr: fix OOB Read in qrtr_endpoint_post (Pavel Skripkin) - netxen_nic: Fix an error handling path in netxen_nic_probe() (Christophe JAILLET) - qlcnic: Fix an error handling path in qlcnic_probe() (Christophe JAILLET) - net: make get_net_ns return error if NET_NS is disabled (Changbin Du) - net: stmmac: dwmac1000: Fix extended MAC address registers definition (Jisheng Zhang) - alx: Fix an error handling path in alx_probe() (Christophe JAILLET) - sch_cake: Fix out of bounds when parsing TCP options and header (Maxim Mikityanskiy) - netfilter: synproxy: Fix out of bounds when parsing TCP options (Maxim Mikityanskiy) - net/mlx5e: Block offload of outer header csum for UDP tunnels (Aya Levin) - net/mlx5e: allow TSO on VXLAN over VLAN topologies (Davide Caratti) - net/mlx5: Consider RoCE cap before init RDMA resources (Maor Gottlieb) - net/mlx5e: Fix page reclaim for dead peer hairpin (Dima Chumak) - net/mlx5e: Remove dependency in IPsec initialization flows (Huy Nguyen) - net/sched: act_ct: handle DNAT tuple collision (Marcelo Ricardo Leitner) - rtnetlink: Fix regression in bridge VLAN configuration (Ido Schimmel) - udp: fix race between close() and udp_abort() (Paolo Abeni) - net: lantiq: disable interrupt before sheduling NAPI (Aleksander Jan Bajkowski) - net: rds: fix memory leak in rds_recvmsg (Pavel Skripkin) - vrf: fix maximum MTU (Nicolas Dichtel) - net: ipv4: fix memory leak in netlbl_cipsov4_add_std (Nanyong Sun) - batman-adv: Avoid WARN_ON timing related checks (Sven Eckelmann) - kvm: LAPIC: Restore guard to prevent illegal APIC register access (Jim Mattson) - mm/memory-failure: make sure wait for page writeback in memory_failure (yangerkun) - afs: Fix an IS_ERR() vs NULL check (Dan Carpenter) - dmaengine: stedma40: add missing iounmap() on error in d40_probe() (Yang Yingliang) - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM (Randy Dunlap) - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM (Randy Dunlap) - LTS tag: v5.4.127 (Jack Vogel) - fib: Return the correct errno code (Zheng Yongjun) - net: Return the correct errno code (Zheng Yongjun) - net/x25: Return the correct errno code (Zheng Yongjun) - rtnetlink: Fix missing error code in rtnl_bridge_notify() (Jiapeng Chong) - drm/amd/display: Allow bandwidth validation for 0 streams. (Bindu Ramamurthy) - net: ipconfig: Dont override command-line hostnames or domains (Josh Triplett) - nvme-loop: check for NVME_LOOP_Q_LIVE in nvme_loop_destroy_admin_queue() (Hannes Reinecke) - nvme-loop: clear NVME_LOOP_Q_LIVE when nvme_loop_configure_admin_queue() fails (Hannes Reinecke) - nvme-loop: reset queue count to 1 in nvme_loop_destroy_io_queues() (Hannes Reinecke) - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (Ewan D. Milne) - scsi: qedf: Do not put host in qedf_vport_create() unconditionally (Daniel Wagner) - ethernet: myri10ge: Fix missing error code in myri10ge_probe() (Jiapeng Chong) - scsi: target: core: Fix warning on realtime kernels (Maurizio Lombardi) - gfs2: Fix use-after-free in gfs2_glock_shrink_scan (Hillf Danton) - riscv: Use -mno-relax when using lld linker (Khem Raj) - HID: gt683r: add missing MODULE_DEVICE_TABLE (Bixuan Cui) - gfs2: Prevent direct-I/O write fallback errors from getting lost (Andreas Gruenbacher) - ARM: OMAP2+: Fix build warning when mmc_omap is not built (Yongqiang Liu) - drm/tegra: sor: Do not leak runtime PM reference (Pavel Machek (CIP)) - HID: usbhid: fix info leak in hid_submit_ctrl (Anirudh Rayabharam) - HID: Add BUS_VIRTUAL to hid_connect logging (Mark Bolhuis) - HID: multitouch: set Stylus suffix for Stylus-application devices, too (Ahelenia Ziemianska) - HID: hid-sensor-hub: Return error for hid_set_field() failure (Srinivas Pandruvada) - HID: hid-input: add mapping for emoji picker key (Dmitry Torokhov) - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 (Nirenjan Krishnan) - net: ieee802154: fix null deref in parse dev addr (Dan Robertson) - LTS tag: v5.4.126 (Jack Vogel) - proc: only require mm_struct for writing (Linus Torvalds) - tracing: Correct the length check which causes memory corruption (Liangyan) - ftrace: Do not blindly read the ip address in ftrace_bug() (Steven Rostedt (VMware)) - scsi: core: Only put parent device if host state differs from SHOST_CREATED (Ming Lei) - scsi: core: Put .shost_dev in failure path if host state changes to RUNNING (Ming Lei) - scsi: core: Fix failure handling of scsi_add_host_with_dma() (Ming Lei) - scsi: core: Fix error handling of scsi_host_alloc() (Ming Lei) - NFSv4: nfs4_proc_set_acl needs to restore NFS_CAP_UIDGID_NOMAP on error. (Dai Ngo) - NFSv4: Fix second deadlock in nfs4_evict_inode() (Trond Myklebust) - NFS: Fix use-after-free in nfs4_init_client() (Anna Schumaker) - kvm: fix previous commit for 32-bit builds (Paolo Bonzini) - perf session: Correct buffer copying when peeking events (Leo Yan) - NFSv4: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode() (Trond Myklebust) - NFS: Fix a potential NULL dereference in nfs_get_client() (Dan Carpenter) - IB/mlx5: Fix initializing CQ fragments buffer (Alaa Hleihel) - KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message (Sean Christopherson) - sched/fair: Make sure to update tg contrib for blocked load (Vincent Guittot) - perf: Fix data race between pin_count increment/decrement (Marco Elver) - vmlinux.lds.h: Avoid orphan section with !SMP (Nathan Chancellor) - RDMA/mlx4: Do not map the core_clock page to user space unless enabled (Shay Drory) - RDMA/ipoib: Fix warning caused by destroying non-initial netns (Kamal Heib) - usb: typec: mux: Fix copy-paste mistake in typec_mux_match (Bjorn Andersson) - regulator: max77620: Use device_set_of_node_from_dev() (Dmitry Osipenko) - regulator: core: resolve supply for boot-on/always-on regulators (Dmitry Baryshkov) - usb: fix various gadget panics on 10gbps cabling (Maciej zenczykowski) - usb: fix various gadgets null ptr deref on 10gbps cabling. (Maciej zenczykowski) - usb: gadget: eem: fix wrong eem header operation (Linyu Yuan) - USB: serial: cp210x: fix alternate function for CP2102N QFN20 (Stefan Agner) - USB: serial: quatech2: fix control-request directions (Johan Hovold) - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (Alexandre GRIVEAUX) - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (George McCollister) - usb: gadget: f_fs: Ensure io_completion_wq is idle during unbind (Wesley Cheng) - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (Mayank Rana) - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (Andy Shevchenko) - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling (Thomas Petazzoni) - usb: dwc3: ep0: fix NULL pointer exception (Marian-Cristian Rotariu) - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms (Kyle Tso) - usb: f_ncm: only first packet of aggregate needs to start timer (Maciej zenczykowski) - USB: f_ncm: ncm_bitrate (speed) is unsigned (Maciej zenczykowski) - cgroup1: dont allow in renaming (Alexander Kuznetsov) - btrfs: promote debugging asserts to full-fledged checks in validate_super (Nikolay Borisov) - btrfs: return value from btrfs_mark_extent_written() in case of error (Ritesh Harjani) - staging: rtl8723bs: Fix uninitialized variables (Wenli Looi) - kvm: avoid speculation-based attacks from out-of-range memslot accesses (Paolo Bonzini) - drm: Lock pointer access in drm_master_release() (Desmond Cheong Zhi Xi) - drm: Fix use-after-free read in drm_getunique() (Desmond Cheong Zhi Xi) - spi: bcm2835: Fix out-of-bounds access with more than 4 slaves (Lukas Wunner) - x86/boot: Add .text.* to setup.ld (Arvind Sankar) - i2c: mpc: implement erratum A-004447 workaround (Chris Packham) - i2c: mpc: Make use of i2c_recover_bus() (Chris Packham) - spi: Cleanup on failure of initial setup (Lukas Wunner) - spi: Dont have controller clean up spi device before driver unbind (Saravana Kannan) - powerpc/fsl: set fsl,i2c-erratum-a004447 flag for P1010 i2c controllers (Chris Packham) - powerpc/fsl: set fsl,i2c-erratum-a004447 flag for P2041 i2c controllers (Chris Packham) - nvme-tcp: remove incorrect Kconfig dep in BLK_DEV_NVME (Sagi Grimberg) - bnx2x: Fix missing error code in bnx2x_iov_init_one() (Jiapeng Chong) - dm verity: fix require_signatures module_param permissions (John Keeping) - MIPS: Fix kernel hang under FUNCTION_GRAPH_TRACER and PREEMPT_TRACER (Tiezhu Yang) - nvme-fabrics: decode host pathing error for connect (Hannes Reinecke) - net: dsa: microchip: enable phy errata workaround on 9567 (George McCollister) - net: appletalk: cops: Fix data race in cops_probe1 (Saubhik Mukherjee) - net: macb: ensure the device is available before accessing GEMGXL control registers (Zong Li) - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal (Dmitry Bogdanov) - scsi: hisi_sas: Drop free_irq() of devm_request_irq() allocated irq (Yang Yingliang) - scsi: vmw_pvscsi: Set correct residual data length (Matt Wang) - net/qla3xxx: fix schedule while atomic in ql_sem_spinlock (Zheyu Ma) - wq: handle VM suspension in stall detection (Sergey Senozhatsky) - cgroup: disable controllers at parse time (Shakeel Butt) - net: mdiobus: get rid of a BUG_ON() (Dan Carpenter) - netlink: disable IRQs for netlink_lock_table() (Johannes Berg) - bonding: init notify_work earlier to avoid uninitialized use (Johannes Berg) - isdn: mISDN: netjet: Fix crash in nj_probe: (Zheyu Ma) - spi: sprd: Add missing MODULE_DEVICE_TABLE (Chunyan Zhang) - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE (Zou Wei) - vfio-ccw: Serialize FSM IDLE state with I/O completion (Eric Farman) - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (Hans de Goede) - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (Hans de Goede) - usb: cdns3: Fix runtime PM imbalance on error (Dinghao Liu) - net/nfc/rawsock.c: fix a permission check bug (Jeimon) - spi: Fix spi device unregister flow (Saravana Kannan) - ASoC: max98088: fix ni clock divider calculation (Marco Felsch) - proc: Track /proc//attr/ opener mm_struct (Kees Cook) - LTS tag: v5.4.125 (Jack Vogel) - neighbour: allow NUD_NOARP entries to be forced GCed (David Ahern) - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops (Roja Rani Yarubandi) - xen-pciback: redo VF placement in the virtual topology (Jan Beulich) - lib/lz4: explicitly support in-place decompression (Gao Xiang) - x86/kvm: Disable all PV features on crash (Vitaly Kuznetsov) - x86/kvm: Disable kvmclock on all CPUs on shutdown (Vitaly Kuznetsov) - x86/kvm: Teardown PV features on boot CPU as well (Vitaly Kuznetsov) - KVM: arm64: Fix debug register indexing (Marc Zyngier) - KVM: SVM: Truncate GPR value for DR and CR accesses in !64-bit mode (Sean Christopherson) - btrfs: fix unmountable seed device after fstrim (Anand Jain) - mm/filemap: fix storing to a THP shadow entry (Matthew Wilcox (Oracle)) - XArray: add xas_split (Matthew Wilcox (Oracle)) - XArray: add xa_get_order (Matthew Wilcox (Oracle)) - mm: add thp_order (Matthew Wilcox (Oracle)) - mm, hugetlb: fix simple resv_huge_pages underflow on UFFDIO_COPY (Mina Almasry) - btrfs: fixup error handling in fixup_inode_link_counts (Josef Bacik) - btrfs: return errors from btrfs_del_csums in cleanup_ref_head (Josef Bacik) - btrfs: fix error handling in btrfs_del_csums (Josef Bacik) - btrfs: mark ordered extent and inode with error if we fail to finish (Josef Bacik) - drm/amdgpu: make sure we unpin the UVD BO (Nirmoy Das) - drm/amdgpu: Dont query CE and UE errors (Luben Tuikov) - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (Krzysztof Kozlowski) - ocfs2: fix data corruption by fallocate (Junxiao Bi) - pid: take a reference when initializing (Mark Rutland) - usb: dwc2: Fix build in periphal-only mode (Phil Elwell) - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed (Ye Bin) - ARM: dts: imx6q-dhcom: Add PU,VDD1P1,VDD2P5 regulators (Marek Vasut) - ARM: dts: imx6dl-yapp4: Fix RGMII connection to QCA8334 switch (Michal Vokax) - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (Carlos M) - ALSA: timer: Fix master timer notification (Takashi Iwai) - HID: multitouch: require Finger field to mark Win8 reports as MT (Ahelenia Ziemianska) - HID: magicmouse: fix NULL-deref on disconnect (Johan Hovold) - HID: i2c-hid: Skip ELAN power-on command after reset (Johnny Chuang) - net: caif: fix memory leak in cfusbl_device_notify (Pavel Skripkin) - net: caif: fix memory leak in caif_device_notify (Pavel Skripkin) - net: caif: add proper error handling (Pavel Skripkin) - net: caif: added cfserl_release function (Pavel Skripkin) - Bluetooth: use correct lock to prevent UAF of hdev object (Lin Ma) - Bluetooth: fix the erroneous flush_work() order (Lin Ma) {CVE-2021-3564} - tipc: fix unique bearer names sanity check (Hoang Le) - tipc: add extack messages for bearer/media failure (Hoang Le) - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act (Tony Lindgren) - ARM: dts: imx: emcon-avari: Fix nxp,pca8574 #gpio-cells (Geert Uytterhoeven) - ARM: dts: imx7d-pico: Fix the tuning-step property (Fabio Estevam) - ARM: dts: imx7d-meerkat96: Fix the tuning-step property (Fabio Estevam) - arm64: dts: zii-ultra: fix 12V_MAIN voltage (Lucas Stach) - arm64: dts: ls1028a: fix memory node (Michael Walle) - i40e: add correct exception tracing for XDP (Magnus Karlsson) - i40e: optimize for XDP_REDIRECT in xsk path (Magnus Karlsson) - i2c: qcom-geni: Add shutdown callback for i2c (Roja Rani Yarubandi) - ice: Allow all LLDP packets from PF to Tx (Dave Ertman) - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (Brett Creeley) - ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions (Coco Li) - ixgbevf: add correct exception tracing for XDP (Magnus Karlsson) - ieee802154: fix error return code in ieee802154_llsec_getparams() (Wei Yongjun) - ieee802154: fix error return code in ieee802154_add_iface() (Zhen Lei) - netfilter: nfnetlink_cthelper: hit EBUSY on updates if size mismatches (Pablo Neira Ayuso) - netfilter: nft_ct: skip expectations for confirmed conntrack (Pablo Neira Ayuso) - ACPICA: Clean up context mutex during object deletion (Erik Kaneda) - net/sched: act_ct: Fix ct template allocation for zone 0 (Ariel Levkovich) - HID: i2c-hid: fix format string mismatch (Arnd Bergmann) - HID: pidff: fix error return code in hid_pidff_init() (Zhen Lei) - ipvs: ignore IP_VS_SVC_F_HASHED flag when adding service (Julian Anastasov) - vfio/platform: fix module_put call in error flow (Max Gurtovoy) - samples: vfio-mdev: fix error handing in mdpy_fb_probe() (Wei Yongjun) - vfio/pci: zap_vma_ptes() needs MMU (Randy Dunlap) - vfio/pci: Fix error return code in vfio_ecap_init() (Zhen Lei) - efi: cper: fix snprintf() use in cper_dimm_err_location() (Rasmus Villemoes) - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared (Heiner Kallweit) - netfilter: conntrack: unregister ipv4 sockopts on error unwind (Florian Westphal) - hwmon: (dell-smm-hwmon) Fix index values (Armin Wolf) - nl80211: validate key indexes for cfg80211_registered_device (Anant Thazhemadam) - ALSA: usb: update old-style static const declaration (Pierre-Louis Bossart) - net: usb: cdc_ncm: dont spew notifications (Grant Grundler) - btrfs: tree-checker: do not error out if extent ref hash doesnt match (Josef Bacik) - LTS tag: v5.4.124 (Jack Vogel) - usb: core: reduce power-on-good delay time of root hub (Chunfeng Yun) - neighbour: Prevent Race condition in neighbour subsytem (Chinmay Agarwal) - net: hso: bail out on interrupt URB allocation failure (Johan Hovold) - Revert Revert ALSA: usx2y: Fix potential NULL pointer dereference (Greg Kroah-Hartman) - net: hns3: check the return of skb_checksum_help() (Yunsheng Lin) - drivers/net/ethernet: clean up unused assignments (Jesse Brandeburg) - i915: fix build warning in intel_dp_get_link_status() (Greg Kroah-Hartman) - drm/i915/display: fix compiler warning about array overrun (Linus Torvalds) - MIPS: ralink: export rt_sysc_membase for rt2880_wdt.c (Randy Dunlap) - MIPS: alchemy: xxs1500: add gpio-au1000.h header file (Randy Dunlap) - sch_dsmark: fix a NULL deref in qdisc_reset() (Taehee Yoo) - net: ethernet: mtk_eth_soc: Fix packet statistics support for MT7628/88 (Stefan Roese) - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be static (kernel test robot) - ipv6: record frag_max_size in atomic fragments in input path (Francesco Ruggeri) - net: lantiq: fix memory corruption in RX ring (Aleksander Jan Bajkowski) - scsi: libsas: Use _safe() loop in sas_resume_port() (Dan Carpenter) - ixgbe: fix large MTU request from VF (Jesse Brandeburg) - bpf: Set mac_len in bpf_skb_change_head (Jussi Maki) - ASoC: cs35l33: fix an error code in probe() (Dan Carpenter) - staging: emxx_udc: fix loop in _nbu2ss_nuke() (Dan Carpenter) - cxgb4: avoid accessing registers when clearing filters (Raju Rangoju) - gve: Correct SKB queue index validation. (David Awogbemila) - gve: Upgrade memory barrier in poll routine (Catherine Sullivan) - gve: Add NULL pointer checks when freeing irqs. (David Awogbemila) - gve: Update mgmt_msix_idx if num_ntfy changes (David Awogbemila) - gve: Check TX QPL was actually assigned (Catherine Sullivan) - mld: fix panic in mld_newpack() (Taehee Yoo) - bnxt_en: Include new P5 HV definition in VF check. (Andy Gospodarek) - net: bnx2: Fix error return code in bnx2_init_board() (Zhen Lei) - net: hso: check for allocation failure in hso_create_bulk_serial_device() (Dan Carpenter) - tls splice: check SPLICE_F_NONBLOCK instead of MSG_DONTWAIT (Jim Ma) - openvswitch: meter: fix race when getting now_ms. (Tao Liu) - net: mdio: octeon: Fix some double free issues (Christophe JAILLET) - net: mdio: thunder: Fix a double free issue in the .remove function (Christophe JAILLET) - net: fec: fix the potential memory leak in fec_enet_init() (Fugang Duan) - net: really orphan skbs tied to closing sk (Paolo Abeni) - vfio-ccw: Check initialized flag in cp_init() (Eric Farman) - ASoC: cs42l42: Regmap must use_single_read/write (Richard Fitzgerald) - net: dsa: fix error code getting shifted with 4 in dsa_slave_get_sset_count (Vladimir Oltean) - net: netcp: Fix an error message (Christophe JAILLET) - drm/amd/amdgpu: fix a potential deadlock in gpu reset (Lang Yu) - drm/amdgpu: Fix a use-after-free (xinhui pan) - drm/amd/amdgpu: fix refcount leak (Jingwen Chen) - drm/amd/display: Disconnect non-DP with no EDID (Chris Park) - SMB3: incorrect file id in requests compounded with open (Steve French) - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (Teava Radu) - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI (Andy Shevchenko) - platform/x86: hp-wireless: add AMDs hardware id to the supported list (Shyam Sundar S K) - btrfs: do not BUG_ON in link_to_fixup_dir (Josef Bacik) - openrisc: Define memory barrier mb (Peter Zijlstra) - scsi: BusLogic: Fix 64-bit system enumeration error for Buslogic (Matt Wang) - btrfs: return whole extents in fiemap (Boris Burkov) - brcmfmac: properly check for bus register errors (Greg Kroah-Hartman) - Revert brcmfmac: add a check for the status of usb_register (Greg Kroah-Hartman) - net: liquidio: Add missing null pointer checks (Tom Seewald) - Revert net: liquidio: fix a NULL pointer dereference (Greg Kroah-Hartman) - media: gspca: properly check for errors in po1030_probe() (Greg Kroah-Hartman) - Revert media: gspca: Check the return value of write_bridge for timeout (Greg Kroah-Hartman) - media: gspca: mt9m111: Check write_bridge for timeout (Alaa Emad) - Revert media: gspca: mt9m111: Check write_bridge for timeout (Greg Kroah-Hartman) - media: dvb: Add check on sp8870_readreg return (Alaa Emad) - Revert media: dvb: Add check on sp8870_readreg (Greg Kroah-Hartman) - ASoC: cs43130: handle errors in cs43130_probe() properly (Greg Kroah-Hartman) - Revert ASoC: cs43130: fix a NULL pointer dereference (Greg Kroah-Hartman) - libertas: register sysfs groups properly (Greg Kroah-Hartman) - Revert libertas: add checks for the return value of sysfs_create_group (Greg Kroah-Hartman) - dmaengine: qcom_hidma: comment platform_driver_register call (Phillip Potter) - Revert dmaengine: qcom_hidma: Check for driver register failure (Greg Kroah-Hartman) - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info (Phillip Potter) - Revert isdn: mISDN: Fix potential NULL pointer dereference of kzalloc (Greg Kroah-Hartman) - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (Anirudh Rayabharam) - Revert ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (Greg Kroah-Hartman) - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (Phillip Potter) - Revert isdn: mISDNinfineon: fix potential NULL pointer dereference (Greg Kroah-Hartman) - Revert ALSA: usx2y: Fix potential NULL pointer dereference (Greg Kroah-Hartman) - Revert ALSA: gus: add a check of the status of snd_ctl_add (Greg Kroah-Hartman) - char: hpet: add checks after calling ioremap (Tom Seewald) - Revert char: hpet: fix a missing check of ioremap (Greg Kroah-Hartman) - net: caif: remove BUG_ON(dev == NULL) in caif_xmit (Du Cheng) - Revert net/smc: fix a NULL pointer dereference (Greg Kroah-Hartman) - net: fujitsu: fix potential null-ptr-deref (Anirudh Rayabharam) - Revert net: fujitsu: fix a potential NULL pointer dereference (Greg Kroah-Hartman) - serial: max310x: unregister uart driver in case of failure and abort (Atul Gopinathan) - Revert serial: max310x: pass return value of spi_register_driver (Greg Kroah-Hartman) - Revert ALSA: sb: fix a missing check of snd_ctl_add (Greg Kroah-Hartman) - Revert media: usb: gspca: add a missed check for goto_low_power (Greg Kroah-Hartman) - gpio: cadence: Add missing MODULE_DEVICE_TABLE (Zou Wei) - platform/x86: hp_accel: Avoid invoking _INI to speed up resume (Kai-Heng Feng) - perf jevents: Fix getting maximum number of fds (Felix Fietkau) - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E (Geert Uytterhoeven) - i2c: i801: Dont generate an interrupt on bus reset (Jean Delvare) - i2c: s3c2410: fix possible NULL pointer deref on read message after write (Krzysztof Kozlowski) - net: dsa: sja1105: error out on unsupported PHY mode (Vladimir Oltean) - net: dsa: fix a crash if ->get_sset_count() fails (Dan Carpenter) - net: dsa: mt7530: fix VLAN traffic leaks (DENG Qingfang) - spi: spi-fsl-dspi: Fix a resource leak in an error handling path (Christophe JAILLET) - tipc: skb_linearize the head skb when reassembling msgs (Xin Long) - tipc: wait and exit until all work queues are done (Xin Long) - Revert net:tipc: Fix a double free in tipc_sk_mcast_rcv (Hoang Le) - net/mlx5e: Fix nullptr in add_vlan_push_action() (Dima Chumak) - net/mlx5e: Fix multipath lag activation (Dima Chumak) - drm/meson: fix shutdown crash when component not probed (Neil Armstrong) - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config (Zhang Xiaoxu) - NFS: Dont corrupt the value of pg_bytes_written in nfs_do_recoalesce() (Trond Myklebust) - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() (Trond Myklebust) - NFS: fix an incorrect limit in filelayout_decode_layout() (Dan Carpenter) - fs/nfs: Use fatal_signal_pending instead of signal_pending (zhouchuangao) - Bluetooth: cmtp: fix file refcount when cmtp_attach_device fails (Thadeu Lima de Souza Cascardo) - spi: spi-geni-qcom: Fix use-after-free on unbind (Lukas Wunner) - net: usb: fix memory leak in smsc75xx_bind (Pavel Skripkin) - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen() (Yoshihiro Shimoda) - usb: dwc3: gadget: Properly track pending and queued SG (Thinh Nguyen) - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID (Srinivas Pandruvada) - USB: serial: pl2303: add device id for ADLINK ND-6530 GC (Zolton Jheng) - USB: serial: ftdi_sio: add IDs for IDS GmbH Products (Dominik Andreas Schorpp) - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (Daniele Palmas) - USB: serial: ti_usb_3410_5052: add startech.com device id (Sean MacLennan) - serial: rp2: use request_firmware instead of request_firmware_nowait (Zheyu Ma) - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting (Geert Uytterhoeven) - serial: tegra: Fix a mask operation that is always true (Colin Ian King) - USB: usbfs: Dont WARN about excessively large memory allocations (Alan Stern) - USB: trancevibrator: fix control-request direction (Johan Hovold) - serial: 8250_pci: handle FL_NOIRQ board flag (Christian Gmeiner) - serial: 8250_pci: Add support for new HPE serial device (Randy Wright) - iio: adc: ad7793: Add missing error code in ad7793_setup() (YueHaibing) - iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers (Jonathan Cameron) - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error. (Jonathan Cameron) - iio: adc: ad7768-1: Fix too small buffer passed to iio_push_to_buffers_with_timestamp() (Jonathan Cameron) - iio: gyro: fxas21002c: balance runtime power in error path (Rui Miguel Silva) - staging: iio: cdc: ad7746: avoid overwrite of num_channels (Lucas Stankus) - mei: request autosuspend after sending rx flow control (Alexander Usyskin) - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue (Mathias Nyman) - misc/uss720: fix memory leak in uss720_probe (Dongliang Mu) - serial: core: fix suspicious security_locked_down() call (Ondrej Mosnacek) - Documentation: seccomp: Fix user notification documentation (Sargun Dhillon) - kgdb: fix gcc-11 warnings harder (Greg Kroah-Hartman) - selftests/gpio: Fix build when source tree is read only (Michael Ellerman) - selftests/gpio: Move include of lib.mk up (Michael Ellerman) - selftests/gpio: Use TEST_GEN_PROGS_EXTENDED (Michael Ellerman) - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate (James Zhu) - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate (James Zhu) - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate (James Zhu) - dm snapshot: properly fix a crash when an origin has no snapshots (Mikulas Patocka) - ath10k: Validate first subframe of A-MSDU before processing the list (Sriram R) - ath10k: Fix TKIP Michael MIC verification for PCIe (Wen Gong) {CVE-2020-26141} - ath10k: drop MPDU which has discard flag set by firmware for SDIO (Wen Gong) {CVE-2020-24588} - ath10k: drop fragments with multicast DA for SDIO (Wen Gong) {CVE-2020-26145} - ath10k: drop fragments with multicast DA for PCIe (Wen Gong) {CVE-2020-26145} - ath10k: add CCMP PN replay protection for fragmented frames for PCIe (Wen Gong) - mac80211: extend protection against mixed key and fragment cache attacks (Wen Gong) {CVE-2020-24586} {CVE-2020-24587} - mac80211: do not accept/forward invalid EAPOL frames (Johannes Berg) - mac80211: prevent attacks on TKIP/WEP as well (Johannes Berg) - mac80211: check defrag PN against current frame (Johannes Berg) - mac80211: add fragment cache to sta_info (Johannes Berg) - mac80211: drop A-MSDUs on old ciphers (Johannes Berg) {CVE-2020-24588} - cfg80211: mitigate A-MSDU aggregation attacks (Mathy Vanhoef) {CVE-2020-24588} - mac80211: properly handle A-MSDUs that start with an RFC 1042 header (Mathy Vanhoef) - mac80211: prevent mixed key and fragment cache attacks (Mathy Vanhoef) {CVE-2020-24587} {CVE-2020-24586} - mac80211: assure all fragments are encrypted (Mathy Vanhoef) {CVE-2020-26147} - net: hso: fix control-request directions (Johan Hovold) - proc: Check /proc//attr/ writes against file opener (Kees Cook) - perf scripts python: exported-sql-viewer.py: Fix warning display (Adrian Hunter) - perf scripts python: exported-sql-viewer.py: Fix Array TypeError (Adrian Hunter) - perf scripts python: exported-sql-viewer.py: Fix copy to clipboard from Top Calls by elapsed Time report (Adrian Hunter) - perf intel-pt: Fix transaction abort handling (Adrian Hunter) - perf intel-pt: Fix sample instruction bytes (Adrian Hunter) - iommu/vt-d: Fix sysfs leak in alloc_iommu() (Rolf Eike Beer) - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() (Anna Schumaker) - cifs: set server->cipher_type to AES-128-CCM for SMB3.0 (Aurelien Aptel) - ALSA: usb-audio: scarlett2: Improve driver startup messages (Geoffrey D. Bennett) - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci (Geoffrey D. Bennett) - ALSA: hda/realtek: Headphone volume is controlled by Front mixer (Hui Wang) - LTS tag: v5.4.123 (Jack Vogel) - NFC: nci: fix memory leak in nci_allocate_device (Dongliang Mu) - perf unwind: Set userdata for all __report_module() paths (Dave Rigby) - perf unwind: Fix separate debug info files when using elfutils libdws unwinder (Jan Kratochvil) - usb: dwc3: gadget: Enable suspend events (Jack Pham) - bpf: No need to simulate speculative domain for immediates (Daniel Borkmann) - bpf: Fix mask direction swap upon off reg sign change (Daniel Borkmann) - bpf: Wrap aux data inside bpf_sanitize_info container (Daniel Borkmann) - LTS tag: v5.4.122 (Jack Vogel) - Bluetooth: SMP: Fail if remote and local public keys are identical (Luiz Augusto von Dentz) - video: hgafb: correctly handle card detect failure during probe (Anirudh Rayabharam) - nvmet: use new ana_log_size instead the old one (Hou Pu) - Bluetooth: L2CAP: Fix handling LE modes by L2CAP_OPTIONS (Luiz Augusto von Dentz) - ext4: fix error handling in ext4_end_enable_verity() (Eric Biggers) - nvme-multipath: fix double initialization of ANA state (Christoph Hellwig) - tty: vt: always invoke vc->vc_sw->con_resize callback (Tetsuo Handa) - vt: Fix character height handling with VT_RESIZEX (Maciej W. Rozycki) - vgacon: Record video mode changes with VT_RESIZEX (Maciej W. Rozycki) - video: hgafb: fix potential NULL pointer dereference (Igor Matheus Andrade Torrente) - qlcnic: Add null check after calling netdev_alloc_skb (Tom Seewald) - leds: lp5523: check return value of lp5xx_read and jump to cleanup code (Phillip Potter) - ics932s401: fix broken handling of errors when word reading fails (Darrick J. Wong) - net: rtlwifi: properly check for alloc_workqueue() failure (Greg Kroah-Hartman) - scsi: ufs: handle cleanup correctly on devm_reset_control_get error (Phillip Potter) - net: stmicro: handle clk_prepare() failure during init (Anirudh Rayabharam) - ethernet: sun: niu: fix missing checks of niu_pci_eeprom_read() (Du Cheng) - Revert niu: fix missing checks of niu_pci_eeprom_read (Greg Kroah-Hartman) - Revert qlcnic: Avoid potential NULL pointer dereference (Greg Kroah-Hartman) - Revert rtlwifi: fix a potential NULL pointer dereference (Greg Kroah-Hartman) - Revert media: rcar_drif: fix a memory disclosure (Greg Kroah-Hartman) - cdrom: gdrom: initialize global variable at init time (Greg Kroah-Hartman) - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom (Atul Gopinathan) - Revert gdrom: fix a memory leak bug (Greg Kroah-Hartman) - Revert scsi: ufs: fix a missing check of devm_reset_control_get (Greg Kroah-Hartman) - Revert ecryptfs: replace BUG_ON with error handling code (Greg Kroah-Hartman) - Revert video: imsttfb: fix potential NULL pointer dereferences (Greg Kroah-Hartman) - Revert hwmon: (lm80) fix a missing check of bus read in lm80 probe (Greg Kroah-Hartman) - Revert leds: lp5523: fix a missing check of return value of lp55xx_read (Greg Kroah-Hartman) - Revert net: stmicro: fix a missing check of clk_prepare (Greg Kroah-Hartman) - Revert video: hgafb: fix potential NULL pointer dereference (Greg Kroah-Hartman) - dm snapshot: fix crash with transient storage and zero chunk size (Mikulas Patocka) - xen-pciback: reconfigure also from backend watch handler (Jan Beulich) - mmc: sdhci-pci-gli: increase 1.8V regulator wait (Daniel Beer) - drm/amdgpu: update sdma golden setting for Navi12 (Guchun Chen) - drm/amdgpu: update gc golden setting for Navi12 (Guchun Chen) - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang (Changfeng) - Revert serial: mvebu-uart: Fix to avoid a potential NULL pointer dereference (Greg Kroah-Hartman) - rapidio: handle create_workqueue() failure (Anirudh Rayabharam) - Revert rapidio: fix a NULL pointer dereference when create_workqueue() fails (Greg Kroah-Hartman) - uio_hv_generic: Fix a memory leak in error handling paths (Christophe JAILLET) - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx (Elia Devito) - ALSA: hda/realtek: Add fixup for HP OMEN laptop (Takashi Iwai) - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA (Takashi Iwai) - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 (PeiSen Hou) - ALSA: hda/realtek: reset eapd coeff to default value for alc287 (Hui Wang) - ALSA: firewire-lib: fix check for the size of isochronous packet payload (Takashi Sakamoto) - Revert ALSA: sb8: add a check for request_region (Greg Kroah-Hartman) - ALSA: hda: fixup headset for ASUS GU502 laptop (Daniel Cordova A) - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro (Takashi Sakamoto) - ALSA: usb-audio: Validate MS endpoint descriptors (Takashi Iwai) - ALSA: firewire-lib: fix calculation for size of IR context payload (Takashi Sakamoto) - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 (Takashi Sakamoto) - ALSA: line6: Fix racy initialization of LINE6 MIDI (Takashi Iwai) - ALSA: intel8x0: Dont update period unless prepared (Takashi Iwai) - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency (Takashi Sakamoto) - cifs: fix memory leak in smb2_copychunk_range (Ronnie Sahlberg) - btrfs: avoid RCU stalls while running delayed iputs (Josef Bacik) - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (Zqiang) - nvmet: seset ns->file when open fails (Daniel Wagner) - ptrace: make ptrace() fail if the tracee changed its pid unexpectedly (Oleg Nesterov) - RDMA/uverbs: Fix a NULL vs IS_ERR() bug (Dan Carpenter) - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (Hans de Goede) - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue (Liming Sun) - RDMA/core: Dont access cm_id after its destruction (Shay Drory) - RDMA/mlx5: Recover from fatal event in dual port mode (Maor Gottlieb) - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() (Zhen Lei) - scsi: ufs: core: Increase the usable queue depth (Bart Van Assche) - RDMA/rxe: Clear all QP fields if creation failed (Leon Romanovsky) - RDMA/siw: Release xarray entry (Leon Romanovsky) - RDMA/siw: Properly check send and receive CQ pointers (Leon Romanovsky) - openrisc: Fix a memory leak (Christophe JAILLET) - firmware: arm_scpi: Prevent the ternary sign expansion bug (Dan Carpenter)


Affected Package


OS OS Version Package Name Package Version
oracle linux 7 kernel-uek-container 5.4.17-2102.204.4.2.el7
oracle linux 7 kernel-uek-container 5.4.17-2102.204.4.2.el7
oracle linux 7 kernel-uek-container-debug 5.4.17-2102.204.4.2.el7
oracle linux 8 kernel-uek-container 5.4.17-2102.204.4.2.el8
oracle linux 8 kernel-uek-container 5.4.17-2102.204.4.2.el8
oracle linux 8 kernel-uek-container-debug 5.4.17-2102.204.4.2.el8

Related