An Oracle Linux Cloud Native Environment 1.1 Unbreakable Enterprise kernel-container security update has been released.

El-errata: ELSA-2021-9175 Important: Oracle Linux Cloud Native Environment 1.1 Unbreakable Enterprise kernel-container security update

Oracle Linux Cloud Native Environment Security Advisory ELSA-2021-9175

  http://linux.oracle.com/errata/ELSA-2021-9175.html

The following updated rpms for Oracle Linux Cloud Native Environment 1.1
have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-container-4.14.35-2047.502.4.el7.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-container-4.14.35-2047.502.4.el7.src.rpm


Description of changes:

[4.14.35-2047.502.4.el7]
- Revert "rds: ib: Remove two ib_modify_qp() calls" (Sharath Srinivasan)
[Orabug: 32715567]
- uek-rpm: Update SecureBoot Digicert 2021 certificates (Somasundaram
Krishnasamy) [Orabug: 32532514]

[4.14.35-2047.502.3.el7]
- video: hyperv_fb: Fix the mmap() regression for v5.4.y and older
(Dexuan Cui) [Orabug: 32620797]
- video: hyperv_fb: Fix the cache type when mapping the VRAM (Dexuan
Cui) [Orabug: 32620797]
- RDMA/core: Fix corrupted SL on passive side (Håkon Bugge) [Orabug:
32644356]

[4.14.35-2047.502.2.el7]
- EDAC: skx_common: downgrade message importance on missing PCI device
(Aristeu Rozanski) [Orabug: 32651294]
- Xen/gnttab: handle p2m update errors on a per-slot basis (Jan Beulich)
[Orabug: 32651477] {CVE-2021-28038}
- KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (Wanpeng Li)
[Orabug: 32633928]
- xen/netback: avoid race in xenvif_rx_ring_slots_available() (Juergen
Gross) [Orabug: 32640132]