Kernel, GDK-Pixbuf2, OpenJDK, and more updates for Oracle Linux

Oracle Linux 6415 Published 2025-08-13 07:55 by Philipp Esselbach

News

ELBA-2025-20518 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-20518

http://linux.oracle.com/errata/ELBA-2025-20518.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.343.5.5.el7uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.343.5.5.el7uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.343.5.5.el7uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.343.5.5.el7uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.343.5.5.el7uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.343.5.5.el7uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.343.5.5.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.343.5.5.el7uek.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-5.4.17-2136.343.5.5.el7uek.src.rpm

Description of changes:

[5.4.17-2136.343.5.5.el7uek]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38243275]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38243274]

[5.4.17-2136.343.5.4.el7uek]
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38232071]

ELSA-2025-20521 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2025-20521

http://linux.oracle.com/errata/ELSA-2025-20521.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
kernel-uek-5.4.17-2136.346.6.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.346.6.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.346.6.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.346.6.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.346.6.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.346.6.el8uek.src.rpm

Related CVEs:

CVE-2023-6931
CVE-2024-36350
CVE-2024-36357
CVE-2024-38541
CVE-2024-56655
CVE-2025-37819
CVE-2025-37890
CVE-2025-37909
CVE-2025-37913
CVE-2025-37915
CVE-2025-37923
CVE-2025-37927
CVE-2025-37932
CVE-2025-37949
CVE-2025-37953
CVE-2025-37969
CVE-2025-37970
CVE-2025-37990
CVE-2025-37991
CVE-2025-37994
CVE-2025-37995
CVE-2025-37997
CVE-2025-37998
CVE-2025-38000
CVE-2025-38001
CVE-2025-38003
CVE-2025-38004
CVE-2025-38023
CVE-2025-38024
CVE-2025-38034
CVE-2025-38035
CVE-2025-38037
CVE-2025-38044
CVE-2025-38051
CVE-2025-38058
CVE-2025-38061
CVE-2025-38065
CVE-2025-38066
CVE-2025-38072
CVE-2025-38075
CVE-2025-38078
CVE-2025-38079

Description of changes:

[5.4.17-2136.346.6.el8uek]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38109070]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38189315]

[5.4.17-2136.346.5.el8uek]
- perf: Fix perf_event_validate_size() lockdep splat (Mark Rutland) [Orabug: 36261486] {CVE-2023-6931}
- perf: Fix perf_event_validate_size() (Peter Zijlstra) [Orabug: 36261486] {CVE-2023-6931}
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38182891]

[5.4.17-2136.346.4.el8uek]
- pwm: mediatek: Ensure to disable clocks in error path (Uwe Kleine-König)
- Revert "mmc: sdhci: Disable SD card clock before changing parameters" (Ulf Hansson)
- net/sched: Always pass notifications when child class becomes empty (Lion Ackermann)

[5.4.17-2136.346.3.el8uek]
- x86/bpf: Classic BPF program can fail when BHB barrier is used (Alexandre Chartre) [Orabug: 38151403]
- Add Zen34 clients (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/process: Move the buffer clearing before MONITOR (Kim Phillips) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- KVM: SVM: Advertize TSA CPUID bits to guests (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Add a Transient Scheduler Attacks mitigation (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- KVM: x86: add support for CPUID leaf 0x80000021 (Paolo Bonzini) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Rename MDS machinery to something more generic (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/CPU/AMD: Add ZenX generations flags (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Free X86_BUG_AMD_APIC_C1E and X86_BUG_AMD_E400 bits (Boris Ostrovsky) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}

[5.4.17-2136.346.2.el8uek]
- Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older (Breno Leitao)
- tracing: Fix compilation warning on arm32 (Pan Taixi)
- PM: sleep: Fix power.is_suspended cleanup for direct-complete devices (Rafael J. Wysocki)
- LTS tag: v5.4.294 (Alok Tiwari)
- platform/x86: thinkpad_acpi: Ignore battery threshold change event notification (Mark Pearson)
- platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys (Valtteri Koskivuori)
- spi: spi-sun4i: fix early activation (Alessandro Grassi)
- um: let 'make clean' properly clean underlying SUBARCH as well (Masahiro Yamada)
- platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS (John Chau)
- nfs: don't share pNFS DS connections between net namespaces (Jeff Layton)
- HID: quirks: Add ADATA XPG alpha wireless mouse support (Milton Barrera)
- coredump: hand a pidfd to the usermode coredump helper (Christian Brauner)
- fork: use pidfd_prepare() (Christian Brauner)
- pid: add pidfd_prepare() (Christian Brauner)
- pidfd: check pid has attached task in fdinfo (Christian Brauner)
- coredump: fix error handling for replace_fd() (Christian Brauner)
- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (Pedro Tammela) [Orabug: 38049365] {CVE-2025-38001}
- smb: client: Reset all search buffer pointers when releasing buffer (Zhaolong Wang)
- smb: client: Fix use-after-free in cifs_fill_dirent (Zhaolong Wang) [Orabug: 38094972] {CVE-2025-38051}
- drm/i915/gvt: fix unterminated-string-initialization warning (Jani Nikula)
- netfilter: nf_tables: do not defer rule destruction via call_rcu (Florian Westphal) [Orabug: 38186911] {CVE-2024-56655}
- netfilter: nf_tables: wait for rcu grace period on net_device removal (Pablo Neira Ayuso)
- netfilter: nf_tables: pass nft_chain to destroy function, not nft_ctx (Florian Westphal)
- kbuild: Disable -Wdefault-const-init-unsafe (Nathan Chancellor)
- spi: spi-fsl-dspi: restrict register range for regmap access (Larisa Grigore)
- mm/page_alloc.c: avoid infinite retries caused by cpuset race (Tianyang Zhang)
- drm/edid: fixed the bug that hdr metadata was not reset (Feijuan Li)
- llc: fix data loss when reading from a socket in llc_ui_recvmsg() (Gavrilov Ilia)
- ALSA: pcm: Fix race of buffer access at PCM OSS layer (Takashi Iwai) [Orabug: 38095147] {CVE-2025-38078}
- can: bcm: add missing rcu read protection for procfs content (Oliver Hartkopp) [Orabug: 38049371] {CVE-2025-38003}
- can: bcm: add locking for bcm_op runtime updates (Oliver Hartkopp) [Orabug: 38049376] {CVE-2025-38004}
- crypto: algif_hash - fix double free in hash_accept (Ivan Pravdin) [Orabug: 38095156] {CVE-2025-38079}
- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (Cong Wang) [Orabug: 38049359] {CVE-2025-38000}
- net: dwmac-sun8i: Use parsed internal PHY address instead of 1 (Paul Kocialkowski)
- bridge: netfilter: Fix forwarding of fragmented packets (Ido Schimmel)
- xfrm: Sanitize marks before insert (Paul Chaignon)
- __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock (Al Viro) [Orabug: 38095002] {CVE-2025-38058}
- xenbus: Allow PVH dom0 a non-local xenstore (Jason Andryuk)
- btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref (Goldwyn Rodrigues) [Orabug: 38094858] {CVE-2025-38034}
- nvmet-tcp: don't restore null sk_state_change (Alistair Francis) [Orabug: 38094865] {CVE-2025-38035}
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 (Takashi Iwai)
- pinctrl: meson: define the pull up/down resistor value as 60 kOhm (Martin Blumenstingl)
- drm: Add valid clones check (Jessica Zhang)
- drm/atomic: clarify the rules around drm_atomic_state->allow_modeset (Simona Vetter)
- regulator: ad5398: Add device tree support (Isaac Scott)
- wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate (Bitterblue Smith)
- bpftool: Fix readlink usage in get_fd_type (Viktor Malik)
- HID: usbkbd: Fix the bit shift number for LED_KANA (Junan)
- scsi: st: Restore some drive settings after reset (Kai Mäkisara)
- scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine (Justin Tee)
- rcu: fix header guard for rcu_all_qs() (Ankur Arora)
- rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y (Ankur Arora)
- vxlan: Annotate FDB data races (Ido Schimmel) [Orabug: 38094881] {CVE-2025-38037}
- hwmon: (xgene-hwmon) use appropriate type for the latency value (Andrey Vatoropin)
- ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). (Kuniyuki Iwashima)
- net/mlx5e: reduce rep rxq depth to 256 for ECPF (William Tu)
- net/mlx5e: set the tx_queue_len for pfifo_fast (William Tu)
- net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB (Alexei Lazar)
- phy: core: don't require set_mode() callback for phy_get_mode() to work (Dmitry Baryshkov)
- net/mlx4_core: Avoid impossible mlx4_db_alloc() order value (Kees Cook)
- smack: recognize ipv4 CIPSO w/o categories (Konstantin Andreev)
- pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map (Valentin Caron)
- ASoC: ops: Enforce platform maximum on initial value (Martin Povišer)
- net/mlx5: Apply rate-limiting to high temperature warning (Shahar Shitrit)
- net/mlx5: Modify LSB bitmask in temperature event to include only the first bit (Shahar Shitrit)
- ACPI: HED: Always initialize before evged (Xiaofei Tan)
- PCI: Fix old_size lower bound in calculate_iosize() too (Ilpo Järvinen)
- EDAC/ie31200: work around false positive build warning (Arnd Bergmann)
- net: pktgen: fix access outside of user given buffer in pktgen_thread_write() (Peter Seiderer) [Orabug: 38095027] {CVE-2025-38061}
- wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU (Bitterblue Smith)
- scsi: mpt3sas: Send a diag reset if target reset fails (Shivasharan S)
- MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core (Paul Burton)
- MIPS: Use arch specific syscall name match function (Bibo Mao)
- cpuidle: menu: Avoid discarding useful information (Rafael J. Wysocki)
- x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() (Waiman Long)
- bonding: report duplicate MAC address in all situations (Hangbin Liu)
- net: xgene-v2: remove incorrect ACPI_PTR annotation (Arnd Bergmann)
- drm/amdkfd: KFD release_work possible circular locking (Philip Yang)
- net/mlx5: Avoid report two health errors on same syndrome (Moshe Shemesh)
- fpga: altera-cvp: Increase credit timeout (Kuhanh Murugasen Krishnan)
- drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence (AngeloGioacchino Del Regno)
- hwmon: (gpio-fan) Add missing mutex locks (Alexander Stein)
- x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 (Breno Leitao)
- net: pktgen: fix mpls maximum labels list parsing (Peter Seiderer)
- pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" (Artur Weber)
- media: cx231xx: set device_caps for 417 (Hans Verkuil) [Orabug: 38094937] {CVE-2025-38044}
- orangefs: Do not truncate file size (Matthew Wilcox) [Orabug: 38095058] {CVE-2025-38065}
- dm cache: prevent BUG_ON by blocking retries on failed device resumes (Ming-Hung Tsai) [Orabug: 38095065] {CVE-2025-38066}
- media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() (Markus Elfring)
- ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 (Svyatoslav Ryhel)
- ieee802154: ca8210: Use proper setters and getters for bitwise types (Andy Shevchenko)
- rtc: ds1307: stop disabling alarms on probe (Alexandre Belloni)
- powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 (Andreas Schwab)
- mmc: sdhci: Disable SD card clock before changing parameters (Erick Shepherd)
- netfilter: conntrack: Bound nf_conntrack sysctl writes (Nicolas Bouchinet)
- posix-timers: Add cond_resched() to posix_timer_add() search loop (Eric Dumazet)
- xen: Add support for XenServer 6.1 platform device (Frediano Ziglio)
- dm: restrict dm device size to 2^63-512 bytes (Mikulas Patocka)
- kbuild: fix argument parsing in scripts/config (Seyediman Seyedarab)
- scsi: st: ERASE does not change tape location (Kai Mäkisara)
- scsi: st: Tighten the page format heuristics with MODE SELECT (Kai Mäkisara)
- ext4: reorder capability check last (Christian Göttsche)
- um: Update min_low_pfn to match changes in uml_reserved (Tiwei Bie)
- um: Store full CSGSFS and SS register from mcontext (Benjamin Berg)
- btrfs: send: return -ENAMETOOLONG when attempting a path that is too long (Filipe Manana)
- btrfs: avoid linker error in btrfs_find_create_tree_block() (Mark Harmstone)
- i2c: pxa: fix call balance of i2c->clk handling routines (Vitalii Mordan)
- mmc: host: Wait for Vdd to settle on card power off (Erick Shepherd)
- libnvdimm/labels: Fix divide error in nd_label_data_init() (Robert Richter) [Orabug: 38095111] {CVE-2025-38072}
- pNFS/flexfiles: Report ENETDOWN as a connection error (Trond Myklebust)
- tools/build: Don't pass test log files to linker (Ian Rogers)
- dql: Fix dql->limit value when reset. (Jing Su)
- SUNRPC: rpc_clnt_set_transport() must not change the autobind setting (Trond Myklebust)
- NFSv4: Treat ENETUNREACH errors as fatal for state recovery (Trond Myklebust)
- fbdev: core: tileblit: Implement missing margin clearing for tileblit (Zsolt Kajtar)
- fbdev: fsl-diu-fb: add missing device_remove_file() (Shixiong Ou)
- mailbox: use error ret code of of_parse_phandle_with_args() (Tudor Ambarus)
- kconfig: merge_config: use an empty file as initfile (Daniel Gomez)
- cgroup: Fix compilation issue due to cgroup_mutex not being exported (Gao Xu)
- dma-mapping: avoid potential unused data compilation warning (Marek Szyprowski)
- scsi: target: iscsi: Fix timeout on deleted connection (Dmitry Bogdanov) [Orabug: 38095136] {CVE-2025-38075}
- openvswitch: Fix unsafe attribute parsing in output_userspace() (Eelco Chaudron) [Orabug: 38015150] {CVE-2025-37998}
- Input: synaptics - enable InterTouch on TUXEDO InfinityBook Pro 14 v5 (Aditya Garg)
- Input: synaptics - enable SMBus for HP Elitebook 850 G1 (Dmitry Torokhov)
- clocksource/i8253: Use raw_spinlock_irqsave() in clockevent_i8253_disable() (Sebastian Andrzej Siewior)
- phy: renesas: rcar-gen3-usb2: Set timing registers only once (Claudiu Beznea)
- phy: Fix error handling in tegra_xusb_port_init (Ma Ke)
- ALSA: es1968: Add error handling for snd_pcm_hw_constraint_pow2() (Xu Wang)
- NFSv4/pnfs: Reset the layout state after a layoutreturn (Trond Myklebust)
- NFSv4/pnfs: pnfs_set_layout_stateid() should update the layout cred (Trond Myklebust)
- qlcnic: fix memory leak in qlcnic_sriov_channel_cfg_cmd() (Abdun Nihaal)
- ALSA: sh: SND_AICA should depend on SH_DMA_API (Geert Uytterhoeven)
- net: dsa: sja1105: discard incoming frames in BR_STATE_LISTENING (Vladimir Oltean)
- spi: loopback-test: Do not split 1024-byte hexdumps (Geert Uytterhoeven)
- nfs: handle failure of nfs_get_lock_context in unlock path (Li Lingfeng) [Orabug: 38094820] {CVE-2025-38023}
- RDMA/rxe: Fix slab-use-after-free Read in rxe_queue_cleanup bug (Zhu Yanjun) [Orabug: 38094829] {CVE-2025-38024}
- iio: chemical: sps30: use aligned_s64 for timestamp (David Lechner)
- iio: adc: ad7768-1: Fix insufficient alignment of timestamp. (Jonathan Cameron)
- staging: axis-fifo: Correct handling of tx_fifo_depth for size validation (Gabriel)
- staging: axis-fifo: avoid parsing ignored device tree properties (Quentin Deslandes)
- staging: axis-fifo: Remove hardware resets for user errors (Gabriel)
- staging: axis-fifo: replace spinlock with mutex (Quentin Deslandes)
- platform/x86: asus-wmi: Fix wlan_ctrl_by_user detection (Hans de Goede)
- do_umount(): add missing barrier before refcount checks in sync case (Al Viro)
- MIPS: Fix MAX_REG_OFFSET (Thorsten Blum)
- iio: adc: dln2: Use aligned_s64 for timestamp (Jonathan Cameron)
- types: Complement the aligned types with signed 64-bit one (Andy Shevchenko)
- usb: usbtmc: Fix erroneous generic_read ioctl return (Dave Penkler)
- usb: usbtmc: Fix erroneous wait_srq ioctl return (Dave Penkler)
- usb: usbtmc: Fix erroneous get_stb ioctl error returns (Dave Penkler)
- USB: usbtmc: use interruptible sleep in usbtmc_read (Oliver Neukum)
- usb: typec: ucsi: displayport: Fix NULL pointer access (Andrei Kuchynski) [Orabug: 38015128] {CVE-2025-37994}
- usb: typec: tcpm: delay SNK_TRY_WAIT_DEBOUNCE to SRC_TRYWAIT transition (Rd Babiera)
- ocfs2: stop quota recovery before disabling quotas (Jan Kara)
- ocfs2: implement handshaking with ocfs2 recovery thread (Jan Kara)
- ocfs2: switch osb->disable_recovery to enum (Jan Kara)
- module: ensure that kobject_put() is safe for module type kobjects (Dmitry Antipov) [Orabug: 38015133] {CVE-2025-37995}
- xenbus: Use kref to track req lifetime (Jason Andryuk) [Orabug: 37976936] {CVE-2025-37949}
- usb: uhci-platform: Make the clock really optional (Alexey Charkov)
- iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo (Silvano Seva) [Orabug: 37977033] {CVE-2025-37969}
- iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo (Silvano Seva) [Orabug: 37977039] {CVE-2025-37970}
- iio: adis16201: Correct inclinometer channel resolution (Gabriel)
- iio: adc: ad7606: fix serial register access (Angelo Dureghello)
- staging: iio: adc: ad7816: Correct conditional logic for store mode (Gabriel)
- Input: synaptics - enable InterTouch on Dell Precision M3800 (Aditya Garg)
- Input: synaptics - enable InterTouch on Dynabook Portege X30L-G (Aditya Garg)
- Input: synaptics - enable InterTouch on Dynabook Portege X30-D (Manuel Fombuena)
- net: dsa: b53: fix learning on VLAN unaware bridges (Jonas Gorski)
- netfilter: ipset: fix region locking in hash types (Jozsef Kadlecsik) [Orabug: 38015143] {CVE-2025-37997}
- sch_htb: make htb_deactivate() idempotent (Cong Wang) [Orabug: 38186817] {CVE-2025-37953}
- dm: fix copying after src array boundaries (Tudor Ambarus)
- iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid (Pavel Paklov) [Orabug: 37976839] {CVE-2025-37927}
- arm64: dts: rockchip: fix iface clock-name on px30 iommus (Heiko Stuebner)
- usb: chipidea: ci_hdrc_imx: implement usb_phy_init() error handling (Fedor Pchelkin)
- usb: chipidea: ci_hdrc_imx: use dev_err_probe() (Alexander Stein)
- usb: chipidea: imx: refine the error handling for hsic (Peter Chen)
- usb: chipidea: imx: change hsic power regulator as optional (Peter Chen)
- irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() (Suzuki K Poulose) [Orabug: 37930014] {CVE-2025-37819}
- irqchip/gic-v2m: Mark a few functions __init (Thomas Gleixner)
- irqchip/gic-v2m: Add const to of_device_id (Xiang Wangx)
- sch_htb: make htb_qlen_notify() idempotent (Cong Wang) [Orabug: 37976860] {CVE-2025-37932}
- of: module: add buffer overflow check in of_modalias() (Sergey Shtylyov) [Orabug: 36753382] {CVE-2024-38541}
- PCI: imx6: Skip controller_id generation logic for i.MX7D (Richard Zhu)
- net: fec: ERR007885 Workaround for conventional TX (Mattias Barthel)
- net: lan743x: Fix memleak issue when GSO enabled (Thangaraj Samynathan) [Orabug: 37976767] {CVE-2025-37909}
- lan743x: fix endianness when accessing descriptors (Alexey Denisov)
- lan743x: remove redundant initialization of variable current_head_index (Colin Ian King)
- nvme-tcp: fix premature queue removal and I/O failover (Michael Liang)
- net: dlink: Correct endianness handling of led_mode (Simon Horman)
- net_sched: qfq: Fix double list add in class with netem as child qdisc (Victor Nogueira) [Orabug: 37976785] {CVE-2025-37913}
- net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (Victor Nogueira) [Orabug: 37967412] {CVE-2025-37890}
- net_sched: drr: Fix double list add in class with netem as child qdisc (Victor Nogueira) [Orabug: 37976794] {CVE-2025-37915}
- net/mlx5: E-Switch, Initialize MAC Address for Default GID (Maor Gottlieb)
- tracing: Fix oob write in trace_seq_to_buffer() (Jeongjun Park) [Orabug: 37976823] {CVE-2025-37923}
- dm: always update the array size in realloc_argv on success (Benjamin Marzinski)
- dm-integrity: fix a warning on invalid table line (Mikulas Patocka)
- wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage() (Xu Wang) [Orabug: 37977121] {CVE-2025-37990}
- amd-xgbe: Fix to ensure dependent features are toggled with RX checksum offload (Vishal Badole)
- parisc: Fix double SIGFPE crash (Helge Deller) [Orabug: 37977129] {CVE-2025-37991}
- i2c: imx-lpi2c: Fix clock count when probe defers (Clark Wang)
- EDAC/altera: Set DDR and SDMMC interrupt mask before registration (Niravkumar L Rabara)
- EDAC/altera: Test the correct error reg offset (Niravkumar L Rabara)

[5.4.17-2136.346.1.el8uek]
- scsi: qedf: Wait for stag work during unload (Saurav Kashyap) [Orabug: 37296386]
- scsi: qedf: Don't process stag work during unload and recovery (Saurav Kashyap) [Orabug: 37296386]

ELSA-2025-20521 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2025-20521

http://linux.oracle.com/errata/ELSA-2025-20521.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.346.6.el7uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.346.6.el7uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.346.6.el7uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.346.6.el7uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.346.6.el7uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.346.6.el7uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.346.6.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.346.6.el7uek.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-uek-5.4.17-2136.346.6.el7uek.src.rpm

Related CVEs:

CVE-2023-6931
CVE-2024-36350
CVE-2024-36357
CVE-2024-38541
CVE-2024-56655
CVE-2025-37819
CVE-2025-37890
CVE-2025-37909
CVE-2025-37913
CVE-2025-37915
CVE-2025-37923
CVE-2025-37927
CVE-2025-37932
CVE-2025-37949
CVE-2025-37953
CVE-2025-37969
CVE-2025-37970
CVE-2025-37990
CVE-2025-37991
CVE-2025-37994
CVE-2025-37995
CVE-2025-37997
CVE-2025-37998
CVE-2025-38000
CVE-2025-38001
CVE-2025-38003
CVE-2025-38004
CVE-2025-38023
CVE-2025-38024
CVE-2025-38034
CVE-2025-38035
CVE-2025-38037
CVE-2025-38044
CVE-2025-38051
CVE-2025-38058
CVE-2025-38061
CVE-2025-38065
CVE-2025-38066
CVE-2025-38072
CVE-2025-38075
CVE-2025-38078
CVE-2025-38079

Description of changes:

[5.4.17-2136.346.6.el7uek]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38109070]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38189315]

[5.4.17-2136.346.5.el7uek]
- perf: Fix perf_event_validate_size() lockdep splat (Mark Rutland) [Orabug: 36261486] {CVE-2023-6931}
- perf: Fix perf_event_validate_size() (Peter Zijlstra) [Orabug: 36261486] {CVE-2023-6931}
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38182891]

[5.4.17-2136.346.4.el7uek]
- pwm: mediatek: Ensure to disable clocks in error path (Uwe Kleine-König)
- Revert "mmc: sdhci: Disable SD card clock before changing parameters" (Ulf Hansson)
- net/sched: Always pass notifications when child class becomes empty (Lion Ackermann)

[5.4.17-2136.346.3.el7uek]
- x86/bpf: Classic BPF program can fail when BHB barrier is used (Alexandre Chartre) [Orabug: 38151403]
- Add Zen34 clients (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/process: Move the buffer clearing before MONITOR (Kim Phillips) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- KVM: SVM: Advertize TSA CPUID bits to guests (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Add a Transient Scheduler Attacks mitigation (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- KVM: x86: add support for CPUID leaf 0x80000021 (Paolo Bonzini) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Rename MDS machinery to something more generic (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/CPU/AMD: Add ZenX generations flags (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Free X86_BUG_AMD_APIC_C1E and X86_BUG_AMD_E400 bits (Boris Ostrovsky) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}

[5.4.17-2136.346.2.el7uek]
- Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older (Breno Leitao)
- tracing: Fix compilation warning on arm32 (Pan Taixi)
- PM: sleep: Fix power.is_suspended cleanup for direct-complete devices (Rafael J. Wysocki)
- LTS tag: v5.4.294 (Alok Tiwari)
- platform/x86: thinkpad_acpi: Ignore battery threshold change event notification (Mark Pearson)
- platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys (Valtteri Koskivuori)
- spi: spi-sun4i: fix early activation (Alessandro Grassi)
- um: let 'make clean' properly clean underlying SUBARCH as well (Masahiro Yamada)
- platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS (John Chau)
- nfs: don't share pNFS DS connections between net namespaces (Jeff Layton)
- HID: quirks: Add ADATA XPG alpha wireless mouse support (Milton Barrera)
- coredump: hand a pidfd to the usermode coredump helper (Christian Brauner)
- fork: use pidfd_prepare() (Christian Brauner)
- pid: add pidfd_prepare() (Christian Brauner)
- pidfd: check pid has attached task in fdinfo (Christian Brauner)
- coredump: fix error handling for replace_fd() (Christian Brauner)
- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (Pedro Tammela) [Orabug: 38049365] {CVE-2025-38001}
- smb: client: Reset all search buffer pointers when releasing buffer (Zhaolong Wang)
- smb: client: Fix use-after-free in cifs_fill_dirent (Zhaolong Wang) [Orabug: 38094972] {CVE-2025-38051}
- drm/i915/gvt: fix unterminated-string-initialization warning (Jani Nikula)
- netfilter: nf_tables: do not defer rule destruction via call_rcu (Florian Westphal) [Orabug: 38186911] {CVE-2024-56655}
- netfilter: nf_tables: wait for rcu grace period on net_device removal (Pablo Neira Ayuso)
- netfilter: nf_tables: pass nft_chain to destroy function, not nft_ctx (Florian Westphal)
- kbuild: Disable -Wdefault-const-init-unsafe (Nathan Chancellor)
- spi: spi-fsl-dspi: restrict register range for regmap access (Larisa Grigore)
- mm/page_alloc.c: avoid infinite retries caused by cpuset race (Tianyang Zhang)
- drm/edid: fixed the bug that hdr metadata was not reset (Feijuan Li)
- llc: fix data loss when reading from a socket in llc_ui_recvmsg() (Gavrilov Ilia)
- ALSA: pcm: Fix race of buffer access at PCM OSS layer (Takashi Iwai) [Orabug: 38095147] {CVE-2025-38078}
- can: bcm: add missing rcu read protection for procfs content (Oliver Hartkopp) [Orabug: 38049371] {CVE-2025-38003}
- can: bcm: add locking for bcm_op runtime updates (Oliver Hartkopp) [Orabug: 38049376] {CVE-2025-38004}
- crypto: algif_hash - fix double free in hash_accept (Ivan Pravdin) [Orabug: 38095156] {CVE-2025-38079}
- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (Cong Wang) [Orabug: 38049359] {CVE-2025-38000}
- net: dwmac-sun8i: Use parsed internal PHY address instead of 1 (Paul Kocialkowski)
- bridge: netfilter: Fix forwarding of fragmented packets (Ido Schimmel)
- xfrm: Sanitize marks before insert (Paul Chaignon)
- __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock (Al Viro) [Orabug: 38095002] {CVE-2025-38058}
- xenbus: Allow PVH dom0 a non-local xenstore (Jason Andryuk)
- btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref (Goldwyn Rodrigues) [Orabug: 38094858] {CVE-2025-38034}
- nvmet-tcp: don't restore null sk_state_change (Alistair Francis) [Orabug: 38094865] {CVE-2025-38035}
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 (Takashi Iwai)
- pinctrl: meson: define the pull up/down resistor value as 60 kOhm (Martin Blumenstingl)
- drm: Add valid clones check (Jessica Zhang)
- drm/atomic: clarify the rules around drm_atomic_state->allow_modeset (Simona Vetter)
- regulator: ad5398: Add device tree support (Isaac Scott)
- wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate (Bitterblue Smith)
- bpftool: Fix readlink usage in get_fd_type (Viktor Malik)
- HID: usbkbd: Fix the bit shift number for LED_KANA (Junan)
- scsi: st: Restore some drive settings after reset (Kai Mäkisara)
- scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine (Justin Tee)
- rcu: fix header guard for rcu_all_qs() (Ankur Arora)
- rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y (Ankur Arora)
- vxlan: Annotate FDB data races (Ido Schimmel) [Orabug: 38094881] {CVE-2025-38037}
- hwmon: (xgene-hwmon) use appropriate type for the latency value (Andrey Vatoropin)
- ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). (Kuniyuki Iwashima)
- net/mlx5e: reduce rep rxq depth to 256 for ECPF (William Tu)
- net/mlx5e: set the tx_queue_len for pfifo_fast (William Tu)
- net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB (Alexei Lazar)
- phy: core: don't require set_mode() callback for phy_get_mode() to work (Dmitry Baryshkov)
- net/mlx4_core: Avoid impossible mlx4_db_alloc() order value (Kees Cook)
- smack: recognize ipv4 CIPSO w/o categories (Konstantin Andreev)
- pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map (Valentin Caron)
- ASoC: ops: Enforce platform maximum on initial value (Martin Povišer)
- net/mlx5: Apply rate-limiting to high temperature warning (Shahar Shitrit)
- net/mlx5: Modify LSB bitmask in temperature event to include only the first bit (Shahar Shitrit)
- ACPI: HED: Always initialize before evged (Xiaofei Tan)
- PCI: Fix old_size lower bound in calculate_iosize() too (Ilpo Järvinen)
- EDAC/ie31200: work around false positive build warning (Arnd Bergmann)
- net: pktgen: fix access outside of user given buffer in pktgen_thread_write() (Peter Seiderer) [Orabug: 38095027] {CVE-2025-38061}
- wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU (Bitterblue Smith)
- scsi: mpt3sas: Send a diag reset if target reset fails (Shivasharan S)
- MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core (Paul Burton)
- MIPS: Use arch specific syscall name match function (Bibo Mao)
- cpuidle: menu: Avoid discarding useful information (Rafael J. Wysocki)
- x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() (Waiman Long)
- bonding: report duplicate MAC address in all situations (Hangbin Liu)
- net: xgene-v2: remove incorrect ACPI_PTR annotation (Arnd Bergmann)
- drm/amdkfd: KFD release_work possible circular locking (Philip Yang)
- net/mlx5: Avoid report two health errors on same syndrome (Moshe Shemesh)
- fpga: altera-cvp: Increase credit timeout (Kuhanh Murugasen Krishnan)
- drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence (AngeloGioacchino Del Regno)
- hwmon: (gpio-fan) Add missing mutex locks (Alexander Stein)
- x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 (Breno Leitao)
- net: pktgen: fix mpls maximum labels list parsing (Peter Seiderer)
- pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" (Artur Weber)
- media: cx231xx: set device_caps for 417 (Hans Verkuil) [Orabug: 38094937] {CVE-2025-38044}
- orangefs: Do not truncate file size (Matthew Wilcox) [Orabug: 38095058] {CVE-2025-38065}
- dm cache: prevent BUG_ON by blocking retries on failed device resumes (Ming-Hung Tsai) [Orabug: 38095065] {CVE-2025-38066}
- media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() (Markus Elfring)
- ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 (Svyatoslav Ryhel)
- ieee802154: ca8210: Use proper setters and getters for bitwise types (Andy Shevchenko)
- rtc: ds1307: stop disabling alarms on probe (Alexandre Belloni)
- powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 (Andreas Schwab)
- mmc: sdhci: Disable SD card clock before changing parameters (Erick Shepherd)
- netfilter: conntrack: Bound nf_conntrack sysctl writes (Nicolas Bouchinet)
- posix-timers: Add cond_resched() to posix_timer_add() search loop (Eric Dumazet)
- xen: Add support for XenServer 6.1 platform device (Frediano Ziglio)
- dm: restrict dm device size to 2^63-512 bytes (Mikulas Patocka)
- kbuild: fix argument parsing in scripts/config (Seyediman Seyedarab)
- scsi: st: ERASE does not change tape location (Kai Mäkisara)
- scsi: st: Tighten the page format heuristics with MODE SELECT (Kai Mäkisara)
- ext4: reorder capability check last (Christian Göttsche)
- um: Update min_low_pfn to match changes in uml_reserved (Tiwei Bie)
- um: Store full CSGSFS and SS register from mcontext (Benjamin Berg)
- btrfs: send: return -ENAMETOOLONG when attempting a path that is too long (Filipe Manana)
- btrfs: avoid linker error in btrfs_find_create_tree_block() (Mark Harmstone)
- i2c: pxa: fix call balance of i2c->clk handling routines (Vitalii Mordan)
- mmc: host: Wait for Vdd to settle on card power off (Erick Shepherd)
- libnvdimm/labels: Fix divide error in nd_label_data_init() (Robert Richter) [Orabug: 38095111] {CVE-2025-38072}
- pNFS/flexfiles: Report ENETDOWN as a connection error (Trond Myklebust)
- tools/build: Don't pass test log files to linker (Ian Rogers)
- dql: Fix dql->limit value when reset. (Jing Su)
- SUNRPC: rpc_clnt_set_transport() must not change the autobind setting (Trond Myklebust)
- NFSv4: Treat ENETUNREACH errors as fatal for state recovery (Trond Myklebust)
- fbdev: core: tileblit: Implement missing margin clearing for tileblit (Zsolt Kajtar)
- fbdev: fsl-diu-fb: add missing device_remove_file() (Shixiong Ou)
- mailbox: use error ret code of of_parse_phandle_with_args() (Tudor Ambarus)
- kconfig: merge_config: use an empty file as initfile (Daniel Gomez)
- cgroup: Fix compilation issue due to cgroup_mutex not being exported (Gao Xu)
- dma-mapping: avoid potential unused data compilation warning (Marek Szyprowski)
- scsi: target: iscsi: Fix timeout on deleted connection (Dmitry Bogdanov) [Orabug: 38095136] {CVE-2025-38075}
- openvswitch: Fix unsafe attribute parsing in output_userspace() (Eelco Chaudron) [Orabug: 38015150] {CVE-2025-37998}
- Input: synaptics - enable InterTouch on TUXEDO InfinityBook Pro 14 v5 (Aditya Garg)
- Input: synaptics - enable SMBus for HP Elitebook 850 G1 (Dmitry Torokhov)
- clocksource/i8253: Use raw_spinlock_irqsave() in clockevent_i8253_disable() (Sebastian Andrzej Siewior)
- phy: renesas: rcar-gen3-usb2: Set timing registers only once (Claudiu Beznea)
- phy: Fix error handling in tegra_xusb_port_init (Ma Ke)
- ALSA: es1968: Add error handling for snd_pcm_hw_constraint_pow2() (Xu Wang)
- NFSv4/pnfs: Reset the layout state after a layoutreturn (Trond Myklebust)
- NFSv4/pnfs: pnfs_set_layout_stateid() should update the layout cred (Trond Myklebust)
- qlcnic: fix memory leak in qlcnic_sriov_channel_cfg_cmd() (Abdun Nihaal)
- ALSA: sh: SND_AICA should depend on SH_DMA_API (Geert Uytterhoeven)
- net: dsa: sja1105: discard incoming frames in BR_STATE_LISTENING (Vladimir Oltean)
- spi: loopback-test: Do not split 1024-byte hexdumps (Geert Uytterhoeven)
- nfs: handle failure of nfs_get_lock_context in unlock path (Li Lingfeng) [Orabug: 38094820] {CVE-2025-38023}
- RDMA/rxe: Fix slab-use-after-free Read in rxe_queue_cleanup bug (Zhu Yanjun) [Orabug: 38094829] {CVE-2025-38024}
- iio: chemical: sps30: use aligned_s64 for timestamp (David Lechner)
- iio: adc: ad7768-1: Fix insufficient alignment of timestamp. (Jonathan Cameron)
- staging: axis-fifo: Correct handling of tx_fifo_depth for size validation (Gabriel)
- staging: axis-fifo: avoid parsing ignored device tree properties (Quentin Deslandes)
- staging: axis-fifo: Remove hardware resets for user errors (Gabriel)
- staging: axis-fifo: replace spinlock with mutex (Quentin Deslandes)
- platform/x86: asus-wmi: Fix wlan_ctrl_by_user detection (Hans de Goede)
- do_umount(): add missing barrier before refcount checks in sync case (Al Viro)
- MIPS: Fix MAX_REG_OFFSET (Thorsten Blum)
- iio: adc: dln2: Use aligned_s64 for timestamp (Jonathan Cameron)
- types: Complement the aligned types with signed 64-bit one (Andy Shevchenko)
- usb: usbtmc: Fix erroneous generic_read ioctl return (Dave Penkler)
- usb: usbtmc: Fix erroneous wait_srq ioctl return (Dave Penkler)
- usb: usbtmc: Fix erroneous get_stb ioctl error returns (Dave Penkler)
- USB: usbtmc: use interruptible sleep in usbtmc_read (Oliver Neukum)
- usb: typec: ucsi: displayport: Fix NULL pointer access (Andrei Kuchynski) [Orabug: 38015128] {CVE-2025-37994}
- usb: typec: tcpm: delay SNK_TRY_WAIT_DEBOUNCE to SRC_TRYWAIT transition (Rd Babiera)
- ocfs2: stop quota recovery before disabling quotas (Jan Kara)
- ocfs2: implement handshaking with ocfs2 recovery thread (Jan Kara)
- ocfs2: switch osb->disable_recovery to enum (Jan Kara)
- module: ensure that kobject_put() is safe for module type kobjects (Dmitry Antipov) [Orabug: 38015133] {CVE-2025-37995}
- xenbus: Use kref to track req lifetime (Jason Andryuk) [Orabug: 37976936] {CVE-2025-37949}
- usb: uhci-platform: Make the clock really optional (Alexey Charkov)
- iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo (Silvano Seva) [Orabug: 37977033] {CVE-2025-37969}
- iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo (Silvano Seva) [Orabug: 37977039] {CVE-2025-37970}
- iio: adis16201: Correct inclinometer channel resolution (Gabriel)
- iio: adc: ad7606: fix serial register access (Angelo Dureghello)
- staging: iio: adc: ad7816: Correct conditional logic for store mode (Gabriel)
- Input: synaptics - enable InterTouch on Dell Precision M3800 (Aditya Garg)
- Input: synaptics - enable InterTouch on Dynabook Portege X30L-G (Aditya Garg)
- Input: synaptics - enable InterTouch on Dynabook Portege X30-D (Manuel Fombuena)
- net: dsa: b53: fix learning on VLAN unaware bridges (Jonas Gorski)
- netfilter: ipset: fix region locking in hash types (Jozsef Kadlecsik) [Orabug: 38015143] {CVE-2025-37997}
- sch_htb: make htb_deactivate() idempotent (Cong Wang) [Orabug: 38186817] {CVE-2025-37953}
- dm: fix copying after src array boundaries (Tudor Ambarus)
- iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid (Pavel Paklov) [Orabug: 37976839] {CVE-2025-37927}
- arm64: dts: rockchip: fix iface clock-name on px30 iommus (Heiko Stuebner)
- usb: chipidea: ci_hdrc_imx: implement usb_phy_init() error handling (Fedor Pchelkin)
- usb: chipidea: ci_hdrc_imx: use dev_err_probe() (Alexander Stein)
- usb: chipidea: imx: refine the error handling for hsic (Peter Chen)
- usb: chipidea: imx: change hsic power regulator as optional (Peter Chen)
- irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() (Suzuki K Poulose) [Orabug: 37930014] {CVE-2025-37819}
- irqchip/gic-v2m: Mark a few functions __init (Thomas Gleixner)
- irqchip/gic-v2m: Add const to of_device_id (Xiang Wangx)
- sch_htb: make htb_qlen_notify() idempotent (Cong Wang) [Orabug: 37976860] {CVE-2025-37932}
- of: module: add buffer overflow check in of_modalias() (Sergey Shtylyov) [Orabug: 36753382] {CVE-2024-38541}
- PCI: imx6: Skip controller_id generation logic for i.MX7D (Richard Zhu)
- net: fec: ERR007885 Workaround for conventional TX (Mattias Barthel)
- net: lan743x: Fix memleak issue when GSO enabled (Thangaraj Samynathan) [Orabug: 37976767] {CVE-2025-37909}
- lan743x: fix endianness when accessing descriptors (Alexey Denisov)
- lan743x: remove redundant initialization of variable current_head_index (Colin Ian King)
- nvme-tcp: fix premature queue removal and I/O failover (Michael Liang)
- net: dlink: Correct endianness handling of led_mode (Simon Horman)
- net_sched: qfq: Fix double list add in class with netem as child qdisc (Victor Nogueira) [Orabug: 37976785] {CVE-2025-37913}
- net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (Victor Nogueira) [Orabug: 37967412] {CVE-2025-37890}
- net_sched: drr: Fix double list add in class with netem as child qdisc (Victor Nogueira) [Orabug: 37976794] {CVE-2025-37915}
- net/mlx5: E-Switch, Initialize MAC Address for Default GID (Maor Gottlieb)
- tracing: Fix oob write in trace_seq_to_buffer() (Jeongjun Park) [Orabug: 37976823] {CVE-2025-37923}
- dm: always update the array size in realloc_argv on success (Benjamin Marzinski)
- dm-integrity: fix a warning on invalid table line (Mikulas Patocka)
- wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage() (Xu Wang) [Orabug: 37977121] {CVE-2025-37990}
- amd-xgbe: Fix to ensure dependent features are toggled with RX checksum offload (Vishal Badole)
- parisc: Fix double SIGFPE crash (Helge Deller) [Orabug: 37977129] {CVE-2025-37991}
- i2c: imx-lpi2c: Fix clock count when probe defers (Clark Wang)
- EDAC/altera: Set DDR and SDMMC interrupt mask before registration (Niravkumar L Rabara)
- EDAC/altera: Test the correct error reg offset (Niravkumar L Rabara)

[5.4.17-2136.346.1.el7uek]
- scsi: qedf: Wait for stag work during unload (Saurav Kashyap) [Orabug: 37296386]
- scsi: qedf: Don't process stag work during unload and recovery (Saurav Kashyap) [Orabug: 37296386]

ELSA-2025-13315 Moderate: Oracle Linux 8 gdk-pixbuf2 security update

Oracle Linux Security Advisory ELSA-2025-13315

http://linux.oracle.com/errata/ELSA-2025-13315.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gdk-pixbuf2-2.36.12-7.el8_10.i686.rpm
gdk-pixbuf2-2.36.12-7.el8_10.x86_64.rpm
gdk-pixbuf2-devel-2.36.12-7.el8_10.i686.rpm
gdk-pixbuf2-devel-2.36.12-7.el8_10.x86_64.rpm
gdk-pixbuf2-modules-2.36.12-7.el8_10.i686.rpm
gdk-pixbuf2-modules-2.36.12-7.el8_10.x86_64.rpm
gdk-pixbuf2-xlib-2.36.12-7.el8_10.i686.rpm
gdk-pixbuf2-xlib-2.36.12-7.el8_10.x86_64.rpm
gdk-pixbuf2-xlib-devel-2.36.12-7.el8_10.i686.rpm
gdk-pixbuf2-xlib-devel-2.36.12-7.el8_10.x86_64.rpm

aarch64:
gdk-pixbuf2-2.36.12-7.el8_10.aarch64.rpm
gdk-pixbuf2-devel-2.36.12-7.el8_10.aarch64.rpm
gdk-pixbuf2-modules-2.36.12-7.el8_10.aarch64.rpm
gdk-pixbuf2-xlib-2.36.12-7.el8_10.aarch64.rpm
gdk-pixbuf2-xlib-devel-2.36.12-7.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/gdk-pixbuf2-2.36.12-7.el8_10.src.rpm

Related CVEs:

CVE-2025-7345

Description of changes:

[2.36.12-7]
- Backport fixes for CVE-2025-7345
- Resolves: RHEL-102346

ELSA-2025-10861 Important: Oracle Linux 7 java-1.8.0-openjdk security update

Oracle Linux Security Advisory ELSA-2025-10861

http://linux.oracle.com/errata/ELSA-2025-10861.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
java-1.8.0-openjdk-1.8.0.462.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-1.8.0.462.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-accessibility-1.8.0.462.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-accessibility-1.8.0.462.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-demo-1.8.0.462.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-demo-1.8.0.462.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-devel-1.8.0.462.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-devel-1.8.0.462.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-headless-1.8.0.462.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-headless-1.8.0.462.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-javadoc-1.8.0.462.b08-1.0.1.el7_9.noarch.rpm
java-1.8.0-openjdk-javadoc-zip-1.8.0.462.b08-1.0.1.el7_9.noarch.rpm
java-1.8.0-openjdk-src-1.8.0.462.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-src-1.8.0.462.b08-1.0.1.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/java-1.8.0-openjdk-1.8.0.462.b08-1.0.1.el7_9.src.rpm

Related CVEs:

CVE-2025-30749
CVE-2025-30754
CVE-2025-30761
CVE-2025-50106

Description of changes:

[1:1.8.0.462.b08-1.0.1]
- Update to 8u462-b08 (GA) [Orabug: 38248370]
- Update release notes for 8u462-b08.
- Require tzdata 2025b due to upstream inclusion of JDK-8352716
- Add early backport of JDK-8339414
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2025-07-15 @ 1pm PT. **
- Resolves: RHEL-101654
- Resolves: RHEL-102307
- Resolves: RHEL-102907

ELBA-2025-20518 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-20518

http://linux.oracle.com/errata/ELBA-2025-20518.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
kernel-uek-5.4.17-2136.343.5.5.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.343.5.5.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.343.5.5.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.343.5.5.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.343.5.5.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.343.5.5.el8uek.src.rpm

Description of changes:

[5.4.17-2136.343.5.5]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38243275]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38243274]

[5.4.17-2136.343.5.4]
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38232071]" -s " Unbreakable Enterprise kernel bug fix update

ELSA-2025-13589 Moderate: Oracle Linux 8 kernel security update

Oracle Linux Security Advisory ELSA-2025-13589

http://linux.oracle.com/errata/ELSA-2025-13589.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.69.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.69.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.69.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.69.1.el8_10.x86_64.rpm
perf-4.18.0-553.69.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.69.1.el8_10.x86_64.rpm

aarch64:
bpftool-4.18.0-553.69.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.69.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.69.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.69.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.69.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.69.1.el8_10.aarch64.rpm
perf-4.18.0-553.69.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.69.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.69.1.el8_10.src.rpm

Related CVEs:

CVE-2021-47670
CVE-2024-56644
CVE-2025-21727
CVE-2025-21759
CVE-2025-38085
CVE-2025-38159

Description of changes:

[4.18.0-553.69.1.el8_10.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 bitmap_sector() (Nigel Croxon) [RHEL-57991]
- md: add a new callback pers->bitmap_sector() (Nigel Croxon) [RHEL-57991]
- md/md-bitmap: remove the last parameter for bimtap_ops->endwrite() (Nigel Croxon) [RHEL-57991]
- md/md-bitmap: factor behind write counters out from bitmap_{start/end}write() (Nigel Croxon) [RHEL-57991]
- md/raid5: recheck if reshape has finished with device_lock held (Nigel Croxon) [RHEL-57991]
- md/md-linear: enable io accounting (Nigel Croxon) [RHEL-59928]
- md/md-multipath: enable io accounting (Nigel Croxon) [RHEL-59928]
- md/raid10: switch to use md_account_bio() for io accounting (Nigel Croxon) [RHEL-59928]
- md/raid1: switch to use md_account_bio() for io accounting (Nigel Croxon) [RHEL-59928]
- raid5: fix missing io accounting in raid5_align_endio() (Nigel Croxon) [RHEL-59928]
- md: also clone new io if io accounting is disabled (Nigel Croxon) [RHEL-59928]
- sch_cbq: make cbq_qlen_notify() idempotent (Ivan Vecera) [RHEL-93376]
- net/sched: Always pass notifications when child class becomes empty (CKI Backport Bot) [RHEL-93376] {CVE-2025-38350}
- sch_htb: make htb_deactivate() idempotent (CKI Backport Bot) [RHEL-93376] {CVE-2025-38350}
- codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() (CKI Backport Bot) [RHEL-93376] {CVE-2025-38350}
- sch_qfq: make qfq_qlen_notify() idempotent (CKI Backport Bot) [RHEL-93376] {CVE-2025-38350}
- sch_drr: make drr_qlen_notify() idempotent (CKI Backport Bot) [RHEL-93376] {CVE-2025-38350}
- sch_htb: make htb_qlen_notify() idempotent (CKI Backport Bot) [RHEL-93376] {CVE-2025-38350}
- can: peak_usb: fix use after free bugs (CKI Backport Bot) [RHEL-99447] {CVE-2021-47670}
- wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds (CKI Backport Bot) [RHEL-103141] {CVE-2025-38159}
- net/ipv6: release expired exception dst cached in socket (Guillaume Nault) [RHEL-105794] {CVE-2024-56644}

[4.18.0-553.67.1.el8_10]
- mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race (Rafael Aquini) [RHEL-101233] {CVE-2025-38085}
- mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (Rafael Aquini) [RHEL-101233] {CVE-2025-38085}
- mm/khugepaged: fix GUP-fast interaction by sending IPI (Rafael Aquini) [RHEL-101233] {CVE-2025-38085}
- mm/khugepaged: take the right locks for page table retraction (Rafael Aquini) [RHEL-101233] {CVE-2025-38085}
- mm/khugepaged: unify collapse pmd clear, flush and free (Rafael Aquini) [RHEL-101233] {CVE-2025-38085}
- padata: fix UAF in padata_reorder (Waiman Long) [RHEL-101398] {CVE-2025-21727}
- redhat: update BUILD_TARGET to rhel-8.10.0-z-test-pesign (Jan Stancek)
- ftrace: Clean up hash direct_functions on register failures (Gregory Bell) [RHEL-103912]

ELSA-2025-20521 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2025-20521

http://linux.oracle.com/errata/ELSA-2025-20521.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.346.6.el8uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.346.6.el8uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.346.6.el8uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.346.6.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.346.6.el8uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.346.6.el8uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.346.6.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.346.6.el8uek.src.rpm

Related CVEs:

CVE-2023-6931
CVE-2024-36350
CVE-2024-36357
CVE-2024-38541
CVE-2024-56655
CVE-2025-37819
CVE-2025-37890
CVE-2025-37909
CVE-2025-37913
CVE-2025-37915
CVE-2025-37923
CVE-2025-37927
CVE-2025-37932
CVE-2025-37949
CVE-2025-37953
CVE-2025-37969
CVE-2025-37970
CVE-2025-37990
CVE-2025-37991
CVE-2025-37994
CVE-2025-37995
CVE-2025-37997
CVE-2025-37998
CVE-2025-38000
CVE-2025-38001
CVE-2025-38003
CVE-2025-38004
CVE-2025-38023
CVE-2025-38024
CVE-2025-38034
CVE-2025-38035
CVE-2025-38037
CVE-2025-38044
CVE-2025-38051
CVE-2025-38058
CVE-2025-38061
CVE-2025-38065
CVE-2025-38066
CVE-2025-38072
CVE-2025-38075
CVE-2025-38078
CVE-2025-38079

Description of changes:

[5.4.17-2136.346.6.el8uek]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38109070]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38189315]

[5.4.17-2136.346.5.el8uek]
- perf: Fix perf_event_validate_size() lockdep splat (Mark Rutland) [Orabug: 36261486] {CVE-2023-6931}
- perf: Fix perf_event_validate_size() (Peter Zijlstra) [Orabug: 36261486] {CVE-2023-6931}
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38182891]

[5.4.17-2136.346.4.el8uek]
- pwm: mediatek: Ensure to disable clocks in error path (Uwe Kleine-König)
- Revert "mmc: sdhci: Disable SD card clock before changing parameters" (Ulf Hansson)
- net/sched: Always pass notifications when child class becomes empty (Lion Ackermann)

[5.4.17-2136.346.3.el8uek]
- x86/bpf: Classic BPF program can fail when BHB barrier is used (Alexandre Chartre) [Orabug: 38151403]
- Add Zen34 clients (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/process: Move the buffer clearing before MONITOR (Kim Phillips) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- KVM: SVM: Advertize TSA CPUID bits to guests (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Add a Transient Scheduler Attacks mitigation (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- KVM: x86: add support for CPUID leaf 0x80000021 (Paolo Bonzini) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Rename MDS machinery to something more generic (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/CPU/AMD: Add ZenX generations flags (Borislav Petkov) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}
- x86/bugs: Free X86_BUG_AMD_APIC_C1E and X86_BUG_AMD_E400 bits (Boris Ostrovsky) [Orabug: 38172250] {CVE-2024-36350,CVE-2024-36357}

[5.4.17-2136.346.2.el8uek]
- Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older (Breno Leitao)
- tracing: Fix compilation warning on arm32 (Pan Taixi)
- PM: sleep: Fix power.is_suspended cleanup for direct-complete devices (Rafael J. Wysocki)
- LTS tag: v5.4.294 (Alok Tiwari)
- platform/x86: thinkpad_acpi: Ignore battery threshold change event notification (Mark Pearson)
- platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys (Valtteri Koskivuori)
- spi: spi-sun4i: fix early activation (Alessandro Grassi)
- um: let 'make clean' properly clean underlying SUBARCH as well (Masahiro Yamada)
- platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS (John Chau)
- nfs: don't share pNFS DS connections between net namespaces (Jeff Layton)
- HID: quirks: Add ADATA XPG alpha wireless mouse support (Milton Barrera)
- coredump: hand a pidfd to the usermode coredump helper (Christian Brauner)
- fork: use pidfd_prepare() (Christian Brauner)
- pid: add pidfd_prepare() (Christian Brauner)
- pidfd: check pid has attached task in fdinfo (Christian Brauner)
- coredump: fix error handling for replace_fd() (Christian Brauner)
- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (Pedro Tammela) [Orabug: 38049365] {CVE-2025-38001}
- smb: client: Reset all search buffer pointers when releasing buffer (Zhaolong Wang)
- smb: client: Fix use-after-free in cifs_fill_dirent (Zhaolong Wang) [Orabug: 38094972] {CVE-2025-38051}
- drm/i915/gvt: fix unterminated-string-initialization warning (Jani Nikula)
- netfilter: nf_tables: do not defer rule destruction via call_rcu (Florian Westphal) [Orabug: 38186911] {CVE-2024-56655}
- netfilter: nf_tables: wait for rcu grace period on net_device removal (Pablo Neira Ayuso)
- netfilter: nf_tables: pass nft_chain to destroy function, not nft_ctx (Florian Westphal)
- kbuild: Disable -Wdefault-const-init-unsafe (Nathan Chancellor)
- spi: spi-fsl-dspi: restrict register range for regmap access (Larisa Grigore)
- mm/page_alloc.c: avoid infinite retries caused by cpuset race (Tianyang Zhang)
- drm/edid: fixed the bug that hdr metadata was not reset (Feijuan Li)
- llc: fix data loss when reading from a socket in llc_ui_recvmsg() (Gavrilov Ilia)
- ALSA: pcm: Fix race of buffer access at PCM OSS layer (Takashi Iwai) [Orabug: 38095147] {CVE-2025-38078}
- can: bcm: add missing rcu read protection for procfs content (Oliver Hartkopp) [Orabug: 38049371] {CVE-2025-38003}
- can: bcm: add locking for bcm_op runtime updates (Oliver Hartkopp) [Orabug: 38049376] {CVE-2025-38004}
- crypto: algif_hash - fix double free in hash_accept (Ivan Pravdin) [Orabug: 38095156] {CVE-2025-38079}
- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (Cong Wang) [Orabug: 38049359] {CVE-2025-38000}
- net: dwmac-sun8i: Use parsed internal PHY address instead of 1 (Paul Kocialkowski)
- bridge: netfilter: Fix forwarding of fragmented packets (Ido Schimmel)
- xfrm: Sanitize marks before insert (Paul Chaignon)
- __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock (Al Viro) [Orabug: 38095002] {CVE-2025-38058}
- xenbus: Allow PVH dom0 a non-local xenstore (Jason Andryuk)
- btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref (Goldwyn Rodrigues) [Orabug: 38094858] {CVE-2025-38034}
- nvmet-tcp: don't restore null sk_state_change (Alistair Francis) [Orabug: 38094865] {CVE-2025-38035}
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 (Takashi Iwai)
- pinctrl: meson: define the pull up/down resistor value as 60 kOhm (Martin Blumenstingl)
- drm: Add valid clones check (Jessica Zhang)
- drm/atomic: clarify the rules around drm_atomic_state->allow_modeset (Simona Vetter)
- regulator: ad5398: Add device tree support (Isaac Scott)
- wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate (Bitterblue Smith)
- bpftool: Fix readlink usage in get_fd_type (Viktor Malik)
- HID: usbkbd: Fix the bit shift number for LED_KANA (Junan)
- scsi: st: Restore some drive settings after reset (Kai Mäkisara)
- scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine (Justin Tee)
- rcu: fix header guard for rcu_all_qs() (Ankur Arora)
- rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y (Ankur Arora)
- vxlan: Annotate FDB data races (Ido Schimmel) [Orabug: 38094881] {CVE-2025-38037}
- hwmon: (xgene-hwmon) use appropriate type for the latency value (Andrey Vatoropin)
- ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). (Kuniyuki Iwashima)
- net/mlx5e: reduce rep rxq depth to 256 for ECPF (William Tu)
- net/mlx5e: set the tx_queue_len for pfifo_fast (William Tu)
- net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB (Alexei Lazar)
- phy: core: don't require set_mode() callback for phy_get_mode() to work (Dmitry Baryshkov)
- net/mlx4_core: Avoid impossible mlx4_db_alloc() order value (Kees Cook)
- smack: recognize ipv4 CIPSO w/o categories (Konstantin Andreev)
- pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map (Valentin Caron)
- ASoC: ops: Enforce platform maximum on initial value (Martin Povišer)
- net/mlx5: Apply rate-limiting to high temperature warning (Shahar Shitrit)
- net/mlx5: Modify LSB bitmask in temperature event to include only the first bit (Shahar Shitrit)
- ACPI: HED: Always initialize before evged (Xiaofei Tan)
- PCI: Fix old_size lower bound in calculate_iosize() too (Ilpo Järvinen)
- EDAC/ie31200: work around false positive build warning (Arnd Bergmann)
- net: pktgen: fix access outside of user given buffer in pktgen_thread_write() (Peter Seiderer) [Orabug: 38095027] {CVE-2025-38061}
- wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU (Bitterblue Smith)
- scsi: mpt3sas: Send a diag reset if target reset fails (Shivasharan S)
- MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core (Paul Burton)
- MIPS: Use arch specific syscall name match function (Bibo Mao)
- cpuidle: menu: Avoid discarding useful information (Rafael J. Wysocki)
- x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() (Waiman Long)
- bonding: report duplicate MAC address in all situations (Hangbin Liu)
- net: xgene-v2: remove incorrect ACPI_PTR annotation (Arnd Bergmann)
- drm/amdkfd: KFD release_work possible circular locking (Philip Yang)
- net/mlx5: Avoid report two health errors on same syndrome (Moshe Shemesh)
- fpga: altera-cvp: Increase credit timeout (Kuhanh Murugasen Krishnan)
- drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence (AngeloGioacchino Del Regno)
- hwmon: (gpio-fan) Add missing mutex locks (Alexander Stein)
- x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 (Breno Leitao)
- net: pktgen: fix mpls maximum labels list parsing (Peter Seiderer)
- pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" (Artur Weber)
- media: cx231xx: set device_caps for 417 (Hans Verkuil) [Orabug: 38094937] {CVE-2025-38044}
- orangefs: Do not truncate file size (Matthew Wilcox) [Orabug: 38095058] {CVE-2025-38065}
- dm cache: prevent BUG_ON by blocking retries on failed device resumes (Ming-Hung Tsai) [Orabug: 38095065] {CVE-2025-38066}
- media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() (Markus Elfring)
- ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 (Svyatoslav Ryhel)
- ieee802154: ca8210: Use proper setters and getters for bitwise types (Andy Shevchenko)
- rtc: ds1307: stop disabling alarms on probe (Alexandre Belloni)
- powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 (Andreas Schwab)
- mmc: sdhci: Disable SD card clock before changing parameters (Erick Shepherd)
- netfilter: conntrack: Bound nf_conntrack sysctl writes (Nicolas Bouchinet)
- posix-timers: Add cond_resched() to posix_timer_add() search loop (Eric Dumazet)
- xen: Add support for XenServer 6.1 platform device (Frediano Ziglio)
- dm: restrict dm device size to 2^63-512 bytes (Mikulas Patocka)
- kbuild: fix argument parsing in scripts/config (Seyediman Seyedarab)
- scsi: st: ERASE does not change tape location (Kai Mäkisara)
- scsi: st: Tighten the page format heuristics with MODE SELECT (Kai Mäkisara)
- ext4: reorder capability check last (Christian Göttsche)
- um: Update min_low_pfn to match changes in uml_reserved (Tiwei Bie)
- um: Store full CSGSFS and SS register from mcontext (Benjamin Berg)
- btrfs: send: return -ENAMETOOLONG when attempting a path that is too long (Filipe Manana)
- btrfs: avoid linker error in btrfs_find_create_tree_block() (Mark Harmstone)
- i2c: pxa: fix call balance of i2c->clk handling routines (Vitalii Mordan)
- mmc: host: Wait for Vdd to settle on card power off (Erick Shepherd)
- libnvdimm/labels: Fix divide error in nd_label_data_init() (Robert Richter) [Orabug: 38095111] {CVE-2025-38072}
- pNFS/flexfiles: Report ENETDOWN as a connection error (Trond Myklebust)
- tools/build: Don't pass test log files to linker (Ian Rogers)
- dql: Fix dql->limit value when reset. (Jing Su)
- SUNRPC: rpc_clnt_set_transport() must not change the autobind setting (Trond Myklebust)
- NFSv4: Treat ENETUNREACH errors as fatal for state recovery (Trond Myklebust)
- fbdev: core: tileblit: Implement missing margin clearing for tileblit (Zsolt Kajtar)
- fbdev: fsl-diu-fb: add missing device_remove_file() (Shixiong Ou)
- mailbox: use error ret code of of_parse_phandle_with_args() (Tudor Ambarus)
- kconfig: merge_config: use an empty file as initfile (Daniel Gomez)
- cgroup: Fix compilation issue due to cgroup_mutex not being exported (Gao Xu)
- dma-mapping: avoid potential unused data compilation warning (Marek Szyprowski)
- scsi: target: iscsi: Fix timeout on deleted connection (Dmitry Bogdanov) [Orabug: 38095136] {CVE-2025-38075}
- openvswitch: Fix unsafe attribute parsing in output_userspace() (Eelco Chaudron) [Orabug: 38015150] {CVE-2025-37998}
- Input: synaptics - enable InterTouch on TUXEDO InfinityBook Pro 14 v5 (Aditya Garg)
- Input: synaptics - enable SMBus for HP Elitebook 850 G1 (Dmitry Torokhov)
- clocksource/i8253: Use raw_spinlock_irqsave() in clockevent_i8253_disable() (Sebastian Andrzej Siewior)
- phy: renesas: rcar-gen3-usb2: Set timing registers only once (Claudiu Beznea)
- phy: Fix error handling in tegra_xusb_port_init (Ma Ke)
- ALSA: es1968: Add error handling for snd_pcm_hw_constraint_pow2() (Xu Wang)
- NFSv4/pnfs: Reset the layout state after a layoutreturn (Trond Myklebust)
- NFSv4/pnfs: pnfs_set_layout_stateid() should update the layout cred (Trond Myklebust)
- qlcnic: fix memory leak in qlcnic_sriov_channel_cfg_cmd() (Abdun Nihaal)
- ALSA: sh: SND_AICA should depend on SH_DMA_API (Geert Uytterhoeven)
- net: dsa: sja1105: discard incoming frames in BR_STATE_LISTENING (Vladimir Oltean)
- spi: loopback-test: Do not split 1024-byte hexdumps (Geert Uytterhoeven)
- nfs: handle failure of nfs_get_lock_context in unlock path (Li Lingfeng) [Orabug: 38094820] {CVE-2025-38023}
- RDMA/rxe: Fix slab-use-after-free Read in rxe_queue_cleanup bug (Zhu Yanjun) [Orabug: 38094829] {CVE-2025-38024}
- iio: chemical: sps30: use aligned_s64 for timestamp (David Lechner)
- iio: adc: ad7768-1: Fix insufficient alignment of timestamp. (Jonathan Cameron)
- staging: axis-fifo: Correct handling of tx_fifo_depth for size validation (Gabriel)
- staging: axis-fifo: avoid parsing ignored device tree properties (Quentin Deslandes)
- staging: axis-fifo: Remove hardware resets for user errors (Gabriel)
- staging: axis-fifo: replace spinlock with mutex (Quentin Deslandes)
- platform/x86: asus-wmi: Fix wlan_ctrl_by_user detection (Hans de Goede)
- do_umount(): add missing barrier before refcount checks in sync case (Al Viro)
- MIPS: Fix MAX_REG_OFFSET (Thorsten Blum)
- iio: adc: dln2: Use aligned_s64 for timestamp (Jonathan Cameron)
- types: Complement the aligned types with signed 64-bit one (Andy Shevchenko)
- usb: usbtmc: Fix erroneous generic_read ioctl return (Dave Penkler)
- usb: usbtmc: Fix erroneous wait_srq ioctl return (Dave Penkler)
- usb: usbtmc: Fix erroneous get_stb ioctl error returns (Dave Penkler)
- USB: usbtmc: use interruptible sleep in usbtmc_read (Oliver Neukum)
- usb: typec: ucsi: displayport: Fix NULL pointer access (Andrei Kuchynski) [Orabug: 38015128] {CVE-2025-37994}
- usb: typec: tcpm: delay SNK_TRY_WAIT_DEBOUNCE to SRC_TRYWAIT transition (Rd Babiera)
- ocfs2: stop quota recovery before disabling quotas (Jan Kara)
- ocfs2: implement handshaking with ocfs2 recovery thread (Jan Kara)
- ocfs2: switch osb->disable_recovery to enum (Jan Kara)
- module: ensure that kobject_put() is safe for module type kobjects (Dmitry Antipov) [Orabug: 38015133] {CVE-2025-37995}
- xenbus: Use kref to track req lifetime (Jason Andryuk) [Orabug: 37976936] {CVE-2025-37949}
- usb: uhci-platform: Make the clock really optional (Alexey Charkov)
- iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_tagged_fifo (Silvano Seva) [Orabug: 37977033] {CVE-2025-37969}
- iio: imu: st_lsm6dsx: fix possible lockup in st_lsm6dsx_read_fifo (Silvano Seva) [Orabug: 37977039] {CVE-2025-37970}
- iio: adis16201: Correct inclinometer channel resolution (Gabriel)
- iio: adc: ad7606: fix serial register access (Angelo Dureghello)
- staging: iio: adc: ad7816: Correct conditional logic for store mode (Gabriel)
- Input: synaptics - enable InterTouch on Dell Precision M3800 (Aditya Garg)
- Input: synaptics - enable InterTouch on Dynabook Portege X30L-G (Aditya Garg)
- Input: synaptics - enable InterTouch on Dynabook Portege X30-D (Manuel Fombuena)
- net: dsa: b53: fix learning on VLAN unaware bridges (Jonas Gorski)
- netfilter: ipset: fix region locking in hash types (Jozsef Kadlecsik) [Orabug: 38015143] {CVE-2025-37997}
- sch_htb: make htb_deactivate() idempotent (Cong Wang) [Orabug: 38186817] {CVE-2025-37953}
- dm: fix copying after src array boundaries (Tudor Ambarus)
- iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid (Pavel Paklov) [Orabug: 37976839] {CVE-2025-37927}
- arm64: dts: rockchip: fix iface clock-name on px30 iommus (Heiko Stuebner)
- usb: chipidea: ci_hdrc_imx: implement usb_phy_init() error handling (Fedor Pchelkin)
- usb: chipidea: ci_hdrc_imx: use dev_err_probe() (Alexander Stein)
- usb: chipidea: imx: refine the error handling for hsic (Peter Chen)
- usb: chipidea: imx: change hsic power regulator as optional (Peter Chen)
- irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() (Suzuki K Poulose) [Orabug: 37930014] {CVE-2025-37819}
- irqchip/gic-v2m: Mark a few functions __init (Thomas Gleixner)
- irqchip/gic-v2m: Add const to of_device_id (Xiang Wangx)
- sch_htb: make htb_qlen_notify() idempotent (Cong Wang) [Orabug: 37976860] {CVE-2025-37932}
- of: module: add buffer overflow check in of_modalias() (Sergey Shtylyov) [Orabug: 36753382] {CVE-2024-38541}
- PCI: imx6: Skip controller_id generation logic for i.MX7D (Richard Zhu)
- net: fec: ERR007885 Workaround for conventional TX (Mattias Barthel)
- net: lan743x: Fix memleak issue when GSO enabled (Thangaraj Samynathan) [Orabug: 37976767] {CVE-2025-37909}
- lan743x: fix endianness when accessing descriptors (Alexey Denisov)
- lan743x: remove redundant initialization of variable current_head_index (Colin Ian King)
- nvme-tcp: fix premature queue removal and I/O failover (Michael Liang)
- net: dlink: Correct endianness handling of led_mode (Simon Horman)
- net_sched: qfq: Fix double list add in class with netem as child qdisc (Victor Nogueira) [Orabug: 37976785] {CVE-2025-37913}
- net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (Victor Nogueira) [Orabug: 37967412] {CVE-2025-37890}
- net_sched: drr: Fix double list add in class with netem as child qdisc (Victor Nogueira) [Orabug: 37976794] {CVE-2025-37915}
- net/mlx5: E-Switch, Initialize MAC Address for Default GID (Maor Gottlieb)
- tracing: Fix oob write in trace_seq_to_buffer() (Jeongjun Park) [Orabug: 37976823] {CVE-2025-37923}
- dm: always update the array size in realloc_argv on success (Benjamin Marzinski)
- dm-integrity: fix a warning on invalid table line (Mikulas Patocka)
- wifi: brcm80211: fmac: Add error handling for brcmf_usb_dl_writeimage() (Xu Wang) [Orabug: 37977121] {CVE-2025-37990}
- amd-xgbe: Fix to ensure dependent features are toggled with RX checksum offload (Vishal Badole)
- parisc: Fix double SIGFPE crash (Helge Deller) [Orabug: 37977129] {CVE-2025-37991}
- i2c: imx-lpi2c: Fix clock count when probe defers (Clark Wang)
- EDAC/altera: Set DDR and SDMMC interrupt mask before registration (Niravkumar L Rabara)
- EDAC/altera: Test the correct error reg offset (Niravkumar L Rabara)

[5.4.17-2136.346.1.el8uek]
- scsi: qedf: Wait for stag work during unload (Saurav Kashyap) [Orabug: 37296386]
- scsi: qedf: Don't process stag work during unload and recovery (Saurav Kashyap) [Orabug: 37296386]

ELBA-2025-20518 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-20518

http://linux.oracle.com/errata/ELBA-2025-20518.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.343.5.5.el8uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.343.5.5.el8uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.343.5.5.el8uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.343.5.5.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.343.5.5.el8uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.343.5.5.el8uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.343.5.5.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.4.17-2136.343.5.5.el8uek.src.rpm

Description of changes:

[5.4.17-2136.343.5.5]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38243275]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38243274]

[5.4.17-2136.343.5.4]
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38232071]

ELSA-2025-20520 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2025-20520

http://linux.oracle.com/errata/ELSA-2025-20520.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-core-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-debug-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-devel-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-doc-5.15.0-311.185.9.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-container-5.15.0-311.185.9.el8uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-311.185.9.el8uek.x86_64.rpm

aarch64:
bpftool-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-core-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-debug-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-devel-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-doc-5.15.0-311.185.9.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-container-5.15.0-311.185.9.el8uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-311.185.9.el8uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.15.0-311.185.9.el8uek.src.rpm

Related CVEs:

CVE-2023-6931
CVE-2024-36350
CVE-2024-36357
CVE-2024-53100
CVE-2024-57996
CVE-2025-37752
CVE-2025-38089

Description of changes:

[5.15.0-311.185.9.el8uek]
- nfs: ignore SB_RDONLY when remounting nfs (Li Lingfeng) [Orabug: 37781252]

[5.15.0-311.185.8.el8uek]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38182400]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38189328]

[5.15.0-311.185.7.el8uek]
- perf: Fix perf_event_validate_size() lockdep splat (Mark Rutland) [Orabug: 36261485] {CVE-2023-6931}
- perf: Fix perf_event_validate_size() (Peter Zijlstra) [Orabug: 36261485] {CVE-2023-6931}

[5.15.0-311.185.6.el8uek]
- gre: Fix IPv6 multicast route creation. (Guillaume Nault)
- pwm: mediatek: Ensure to disable clocks in error path (Uwe Kleine-König)
- Revert "mmc: sdhci: Disable SD card clock before changing parameters" (Ulf Hansson)
- net/sched: Always pass notifications when child class becomes empty (Lion Ackermann)
- Revert "ipv6: save dontfrag in cork" (Brett A C Sheffield (Librecast))
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38182990]
- Revert "net/rds: Add krefs to struct rds_connection" (Håkon Bugge) [Orabug: 38165949]
- Revert "net/rds: tracepoints for rds_conn_kref_get and put" (Håkon Bugge) [Orabug: 38165949]
- sched: Change nr_uninterruptible type to unsigned long (Aruna Ramakrishna) [Orabug: 37942383]

[5.15.0-311.185.5.el8uek]
- KVM: x86: Remove VT-d mention in posted interrupt tracepoint (Alejandro Jimenez) [Orabug: 38195091]
- KVM: x86: Only set APICV_INHIBIT_REASON_ABSENT if APICv is enabled (Alejandro Jimenez) [Orabug: 38195091]
- KVM: x86: Print names of apicv inhibit reasons in traces (Alejandro Jimenez) [Orabug: 38195091]
- KVM: SVM: Always update local APIC on writes to logical dest register (Sean Christopherson) [Orabug: 38195091]
- x86: Pin task-stack in __get_wchan() (Peter Zijlstra) [Orabug: 38161988]
- x86: Fix __get_wchan() for !STACKTRACE (Peter Zijlstra) [Orabug: 38161988]
- sched: Add wrapper for get_wchan() to keep task blocked (Kees Cook) [Orabug: 38161988]
- x86: Fix get_wchan() to support the ORC unwinder (Qi Zheng) [Orabug: 38161988]
- nvme: tcp: avoid race between queue_lock lock and destroy (Hannes Reinecke) [Orabug: 37331887] {CVE-2024-53100}
- PCI/AER: Add sysfs attributes for log ratelimits (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Ratelimit correctable and non-fatal error logging (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Simplify add_error_device() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Convert aer_get_device_error_info(), aer_print_error() to index (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Reduce pci_print_aer() correctable error level to KERN_WARNING (Karolina Stolarek) [Orabug: 36952192]
- PCI/AER: Check log level once and remember it (Karolina Stolarek) [Orabug: 36952192]
- PCI/AER: Trace error event before ratelimiting (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Update statistics before ratelimiting (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Simplify pci_print_aer() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Initialize aer_err_info before using it (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Move aer_print_source() earlier in file (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Rename aer_print_port_info() to aer_print_source() (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Extract bus/dev/fn in aer_print_port_info() with PCI_BUS_NUM(), etc (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Consolidate Error Source ID logging in aer_isr_one_error_type() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Factor COR/UNCOR error handling out from aer_isr_one_error() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Descope pci_printk() to aer_printk() (Ilpo Järvinen) [Orabug: 36952192]

[5.15.0-311.185.4.el8uek]
- KVM: arm64: Sanitize PM{C,I}NTEN{SET,CLR}, PMOVS{SET,CLR} before first run (Raghavendra Rao Ananta) [Orabug: 38178527]
- KVM: arm64: PMU: Add a helper to read a vCPU's PMCR_EL0 (Reiji Watanabe) [Orabug: 38178527]
- vhost-scsi: Fix vhost_scsi struct use after free (Mike Christie) [Orabug: 38178300]
- sunrpc: handle SVC_GARBAGE during svc auth processing as auth error (Jeff Layton) [Orabug: 38137450] {CVE-2025-38089}
- bnxt_en: Cap the size of HWRM_PORT_PHY_QCFG forwarded response (Michael Chan) [Orabug: 35789734]

[5.15.0-311.185.3.el8uek]
- net_sched: sch_sfq: move the limit validation (Octavian Purdila) [Orabug: 38160459] {CVE-2025-37752}
- net_sched: sch_sfq: use a temporary work area for validating configuration (Octavian Purdila)
- mm: synchronise PGD in x86 when utilising dax vmemmap optimisation (Lorenzo Stoakes) [Orabug: 38055896]
- rds: ib: Make sure a QP in INIT state is transitioned to ERR (Håkon Bugge) [Orabug: 38119112]
- Reapply "rds: ib: Make sure receives are posted before connection is up" (Håkon Bugge) [Orabug: 38119112]
- rds: Fix array index out of bounds in rds_message_purge() (Harshit Mogalapalli) [Orabug: 38158026]
- block: assign bi_bdev for cloned bios in blk_rq_prep_clone (Christoph Hellwig) [Orabug: 38172722]
- fs/proc: do_task_stat: use __for_each_thread() (Oleg Nesterov) [Orabug: 38092818]
- Add Zen34 clients (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/process: Move the buffer clearing before MONITOR (Kim Phillips) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- Add normal counters (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- KVM: SVM: Advertize TSA CPUID bits to guests (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Add a Transient Scheduler Attacks mitigation (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Rename MDS machinery to something more generic (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/CPU/AMD: Add ZenX generations flags (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Free X86_BUG_AMD_APIC_C1E and X86_BUG_AMD_E400 bits (Boris Ostrovsky) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}

[5.15.0-311.185.2.el8uek]
- Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older (Breno Leitao)
- Revert "cpufreq: tegra186: Share policy per cluster" (Jon Hunter)
- net: tipc: fix refcount warning in tipc_aead_encrypt (Charalampos Mitrodimas)
- tracing: Fix compilation warning on arm32 (Pan Taixi)
- PM: sleep: Fix power.is_suspended cleanup for direct-complete devices (Rafael J. Wysocki)
- nfs: clear SB_RDONLY before getting superblock (Li Lingfeng)
- usb: usbtmc: Fix read_stb function and get_stb ioctl (Dave Penkler)
- acpi-cpufreq: Fix nominal_freq units to KHz in get_max_boost_ratio() (Gautham R. Shenoy)
- LTS version: v5.15.185 (Vijayendra Suman)
- perf/arm-cmn: Initialise cmn->cpu earlier (Robin Murphy)
- platform/x86: thinkpad_acpi: Ignore battery threshold change event notification (Mark Pearson)
- platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys (Valtteri Koskivuori)
- tpm: tis: Double the timeout B to 4s (Michal Suchanek)
- nvme-pci: add NVME_QUIRK_NO_DEEPEST_PS quirk for SOLIDIGM P44 Pro (Ilya Guterman)
- spi: spi-sun4i: fix early activation (Alessandro Grassi)
- um: let 'make clean' properly clean underlying SUBARCH as well (Masahiro Yamada)
- platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS (John Chau)
- nfs: don't share pNFS DS connections between net namespaces (Jeff Layton)
- HID: quirks: Add ADATA XPG alpha wireless mouse support (Milton Barrera)
- coredump: hand a pidfd to the usermode coredump helper (Christian Brauner)
- fork: use pidfd_prepare() (Christian Brauner)
- pid: add pidfd_prepare() (Christian Brauner)
- coredump: fix error handling for replace_fd() (Christian Brauner)
- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (Pedro Tammela)
- arm64: dts: qcom: sm8350: Fix typo in pil_camera_mem node (Alok Tiwari)
- smb: client: Reset all search buffer pointers when releasing buffer (Wang Zhaolong)
- smb: client: Fix use-after-free in cifs_fill_dirent (Wang Zhaolong)
- drm/i915/gvt: fix unterminated-string-initialization warning (Jani Nikula)
- xen/swiotlb: relax alignment requirements (Juergen Gross)
- i3c: master: svc: Fix implicit fallthrough in svc_i3c_master_ibi_work() (Nathan Chancellor)
- kbuild: Disable -Wdefault-const-init-unsafe (Nathan Chancellor)
- spi: spi-fsl-dspi: Reset SR flags before sending a new message (Larisa Grigore)
- spi: spi-fsl-dspi: Halt the module after a new message transfer (Bogdan-Gabriel Roman)
- spi: spi-fsl-dspi: restrict register range for regmap access (Larisa Grigore)
- Revert "arm64: dts: allwinner: h6: Use RSB for AXP805 PMIC connection" (Jernej Skrabec)
- mm/page_alloc.c: avoid infinite retries caused by cpuset race (Tianyang Zhang)
- drm/edid: fixed the bug that hdr metadata was not reset (feijuan.li)
- platform/x86: dell-wmi-sysman: Avoid buffer overflow in current_password_store() (Vladimir Moskovkin)
- llc: fix data loss when reading from a socket in llc_ui_recvmsg() (Ilia Gavrilov)
- ALSA: pcm: Fix race of buffer access at PCM OSS layer (Takashi Iwai)
- can: bcm: add missing rcu read protection for procfs content (Oliver Hartkopp)
- can: bcm: add locking for bcm_op runtime updates (Oliver Hartkopp)
- crypto: algif_hash - fix double free in hash_accept (Ivan Pravdin)
- octeontx2-af: Set LMT_ENA bit for APR table entries (Subbaraya Sundeep)
- net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done (Wang Liang)
- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (Cong Wang)
- net: dwmac-sun8i: Use parsed internal PHY address instead of 1 (Paul Kocialkowski)
- Bluetooth: L2CAP: Fix not checking l2cap_chan security level (Luiz Augusto von Dentz)
- xfrm: Sanitize marks before insert (Paul Chaignon)
- remoteproc: qcom_wcnss: Fix on platforms without fallback regulators (Matti Lehtimäki)
- __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock (Al Viro)
- xenbus: Allow PVH dom0 a non-local xenstore (Jason Andryuk)
- btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref (Goldwyn Rodrigues)
- nvmet-tcp: don't restore null sk_state_change (Alistair Francis)
- ALSA: hda/realtek: Add quirk for HP Spectre x360 15-df1xxx (Takashi Iwai)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 (Takashi Iwai)
- pinctrl: meson: define the pull up/down resistor value as 60 kOhm (Martin Blumenstingl)
- ASoC: imx-card: Adjust over allocation of memory in imx_card_parse_of() (Chenyuan Yang)
- drm: Add valid clones check (Jessica Zhang)
- drm/atomic: clarify the rules around drm_atomic_state->allow_modeset (Simona Vetter)
- wifi: ath9k: return by of_get_mac_address (Rosen Penev)
- regulator: ad5398: Add device tree support (Isaac Scott)
- spi: zynqmp-gqspi: Always acknowledge interrupts (Sean Anderson)
- wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate (Bitterblue Smith)
- perf/amd/ibs: Fix perf_ibs_op.cnt_mask for CurCnt (Ravi Bangoria)
- bpftool: Fix readlink usage in get_fd_type (Viktor Malik)
- drm/ast: Find VBIOS mode from regular display size (Thomas Zimmermann)
- HID: usbkbd: Fix the bit shift number for LED_KANA (junan)
- scsi: st: Restore some drive settings after reset (Kai Mäkisara)
- scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine (Justin Tee)
- net/mana: fix warning in the writer of client oob (Konstantin Taranov)
- rcu: fix header guard for rcu_all_qs() (Ankur Arora)
- rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y (Ankur Arora)
- r8169: don't scan PHY addresses > 0 (Heiner Kallweit)
- vxlan: Annotate FDB data races (Ido Schimmel)
- media: qcom: camss: csid: Only add TPG v4l2 ctrl if TPG hardware is available (Depeng Shao)
- hwmon: (xgene-hwmon) use appropriate type for the latency value (Andrey Vatoropin)
- clk: qcom: camcc-sm8250: Use clk_rcg2_shared_ops for some RCGs (Jordan Crouse)
- wifi: rtw88: Fix download_firmware_validate() for RTL8814AU (Bitterblue Smith)
- r8152: add vendor/device ID pair for Dell Alienware AW1022z (Aleksander Jan Bajkowski)
- ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). (Kuniyuki Iwashima)
- arch/powerpc/perf: Check the instruction type before creating sample with perf_mem_data_src (Athira Rajeev)
- wifi: mac80211: remove misplaced drv_mgd_complete_tx() call (Johannes Berg)
- wifi: mac80211: don't unconditionally call drv_mgd_complete_tx() (Johannes Berg)
- net/mlx5e: reduce rep rxq depth to 256 for ECPF (William Tu)
- net/mlx5e: set the tx_queue_len for pfifo_fast (William Tu)
- net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB (Alexei Lazar)
- drm/amd/display: Initial psr_version with correct setting (Tom Chung)
- drm/amdgpu: reset psp->cmd to NULL after releasing the buffer (Jiang Liu)
- phy: core: don't require set_mode() callback for phy_get_mode() to work (Dmitry Baryshkov)
- net/mlx4_core: Avoid impossible mlx4_db_alloc() order value (Kees Cook)
- media: v4l: Memset argument to 0 before calling get_mbus_config pad op (Sakari Ailus)
- smack: recognize ipv4 CIPSO w/o categories (Konstantin Andreev)
- pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map (Valentin Caron)
- ASoC: soc-dai: check return value at snd_soc_dai_set_tdm_slot() (Kuninori Morimoto)
- ASoC: tas2764: Power up/down amp on mute ops (Hector Martin)
- ASoC: ops: Enforce platform maximum on initial value (Martin Povišer)
- net/mlx5: Apply rate-limiting to high temperature warning (Shahar Shitrit)
- net/mlx5: Modify LSB bitmask in temperature event to include only the first bit (Shahar Shitrit)
- ACPI: HED: Always initialize before evged (Xiaofei Tan)
- PCI: Fix old_size lower bound in calculate_iosize() too (Ilpo Järvinen)
- eth: mlx4: don't try to complete XDP frames in netpoll (Jakub Kicinski)
- can: c_can: Use of_property_present() to test existence of DT property (Krzysztof Kozlowski)
- RDMA/core: Fix best page size finding when it can cross SG entries (Michael Margolin)
- EDAC/ie31200: work around false positive build warning (Arnd Bergmann)
- net: pktgen: fix access outside of user given buffer in pktgen_thread_write() (Peter Seiderer)
- wifi: rtw88: Fix rtw_desc_to_mcsrate() to handle MCS16-31 (Bitterblue Smith)
- wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU (Bitterblue Smith)
- wifi: rtw88: Fix rtw_init_vht_cap() for RTL8814AU (Bitterblue Smith)
- scsi: mpt3sas: Send a diag reset if target reset fails (Shivasharan S)
- clocksource: mips-gic-timer: Enable counter when CPUs start (Paul Burton)
- MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core (Paul Burton)
- MIPS: Use arch specific syscall name match function (Bibo Mao)
- x86/kaslr: Reduce KASLR entropy on most x86 systems (Balbir Singh)
- libbpf: Fix out-of-bound read (Nandakumar Edamana)
- cpuidle: menu: Avoid discarding useful information (Rafael J. Wysocki)
- x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() (Waiman Long)
- drm/amd/display: handle max_downscale_src_width fail check (Yihan Zhu)
- x86/build: Fix broken copy command in genimage.sh when making isoimage (Nir Lichtman)
- soc: ti: k3-socinfo: Do not use syscon helper to build regmap (Andrew Davis)
- bonding: report duplicate MAC address in all situations (Hangbin Liu)
- net: xgene-v2: remove incorrect ACPI_PTR annotation (Arnd Bergmann)
- drm/amdkfd: KFD release_work possible circular locking (Philip Yang)
- selftests/net: have gro.sh -t return a correct exit code (Kevin Krakauer)
- net/mlx5: Avoid report two health errors on same syndrome (Moshe Shemesh)
- firmware: arm_ffa: Set dma_mask for ffa devices (Viresh Kumar)
- PCI: brcmstb: Add a softdep to MIP MSI-X driver (Stanimir Varbanov)
- PCI: brcmstb: Expand inbound window size up to 64GB (Stanimir Varbanov)
- fpga: altera-cvp: Increase credit timeout (Kuhanh Murugasen Krishnan)
- drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence (AngeloGioacchino Del Regno)
- ARM: at91: pm: fix at91_suspend_finish for ZQ calibration (Li Bin)
- hwmon: (gpio-fan) Add missing mutex locks (Alexander Stein)
- x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 (Breno Leitao)
- clk: imx8mp: inform CCF of maximum frequency of clocks (Ahmad Fatoum)
- media: uvcvideo: Add sanity check to uvc_ioctl_xu_ctrl_map (Ricardo Ribalda)
- ipv4: fib: Move fib_valid_key_len() to rtm_to_fib_config(). (Kuniyuki Iwashima)
- net: pktgen: fix mpls maximum labels list parsing (Peter Seiderer)
- net: ethernet: ti: cpsw_new: populate netdev of_node (Alexander Sverdlin)
- pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" (Artur Weber)
- media: cx231xx: set device_caps for 417 (Hans Verkuil)
- drm/amdgpu: Do not program AGP BAR regs under SRIOV in gfxhub_v1_0.c (Victor Lu)
- remoteproc: qcom_wcnss: Handle platforms with only single power domain (Matti Lehtimäki)
- orangefs: Do not truncate file size (Matthew Wilcox (Oracle))
- dm cache: prevent BUG_ON by blocking retries on failed device resumes (Ming-Hung Tsai)
- media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() (Markus Elfring)
- ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 (Svyatoslav Ryhel)
- ieee802154: ca8210: Use proper setters and getters for bitwise types (Andy Shevchenko)
- rtc: ds1307: stop disabling alarms on probe (Alexandre Belloni)
- tcp: bring back NUMA dispersion in inet_ehash_locks_alloc() (Eric Dumazet)
- powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 (Andreas Schwab)
- arm64: tegra: p2597: Fix gpio for vdd-1v8-dis regulator (Diogo Ivo)
- crypto: lzo - Fix compression buffer overrun (Herbert Xu)
- cpufreq: tegra186: Share policy per cluster (Aaron Kling)
- ASoC: qcom: sm8250: explicitly set format in sm8250_be_hw_params_fixup() (Alexey Klimov)
- auxdisplay: charlcd: Partially revert "Move hwidth and bwidth to struct hd44780_common" (Andy Shevchenko)
- ipv6: save dontfrag in cork (Willem de Bruijn)
- mmc: sdhci: Disable SD card clock before changing parameters (Erick Shepherd)
- arm64/mm: Check PUD_TYPE_TABLE in pud_bad() (Ryan Roberts)
- netfilter: conntrack: Bound nf_conntrack sysctl writes (Nicolas Bouchinet)
- timer_list: Don't use %pK through printk() (Thomas Weißschuh)
- posix-timers: Add cond_resched() to posix_timer_add() search loop (Eric Dumazet)
- RDMA/uverbs: Propagate errors from rdma_lookup_get_uobject() (Maher Sanalla)
- xen: Add support for XenServer 6.1 platform device (Frediano Ziglio)
- dm: restrict dm device size to 2^63-512 bytes (Mikulas Patocka)
- crypto: octeontx2 - suppress auth failure screaming due to negative tests (Shashank Gupta)
- kbuild: fix argument parsing in scripts/config (Seyediman Seyedarab)
- ASoC: mediatek: mt6359: Add stub for mt6359_accdet_enable_jack_detect (Nícolas F. R. A. Prado)
- rtc: rv3032: fix EERD location (Alexandre Belloni)
- tcp: reorganize tcp_in_ack_event() and tcp_count_delivered() (Ilpo Järvinen)
- vfio/pci: Handle INTx IRQ_NOTCONNECTED (Alex Williamson)
- scsi: st: ERASE does not change tape location (Kai Mäkisara)
- scsi: st: Tighten the page format heuristics with MODE SELECT (Kai Mäkisara)
- ext4: reorder capability check last (Christian Göttsche)
- um: Update min_low_pfn to match changes in uml_reserved (Tiwei Bie)
- um: Store full CSGSFS and SS register from mcontext (Benjamin Berg)
- dlm: make tcp still work in multi-link env (Heming Zhao)
- i3c: master: svc: Fix missing STOP for master request (Stanley Chu)
- btrfs: send: return -ENAMETOOLONG when attempting a path that is too long (Filipe Manana)
- btrfs: get zone unusable bytes while holding lock at btrfs_reclaim_bgs_work() (Filipe Manana)
- btrfs: avoid linker error in btrfs_find_create_tree_block() (Mark Harmstone)
- btrfs: make btrfs_discard_workfn() block_group ref explicit (Boris Burkov)
- i2c: pxa: fix call balance of i2c->clk handling routines (Vitalii Mordan)
- i2c: qup: Vote for interconnect bandwidth to DRAM (Stephan Gerhold)
- wifi: mt76: only mark tx-status-failed frames as ACKed on mt76x0/2 (Felix Fietkau)
- mmc: host: Wait for Vdd to settle on card power off (Erick Shepherd)
- libnvdimm/labels: Fix divide error in nd_label_data_init() (Robert Richter)
- PCI: vmd: Disable MSI remapping bypass under Xen (Roger Pau Monne)
- pNFS/flexfiles: Report ENETDOWN as a connection error (Trond Myklebust)
- tools/build: Don't pass test log files to linker (Ian Rogers)
- PCI: dwc: ep: Ensure proper iteration over outbound map windows (Frank Li)
- lockdep: Fix wait context check on softirq for PREEMPT_RT (Ryo Takakura)
- dql: Fix dql->limit value when reset. (Jing Su)
- thermal/drivers/qoriq: Power down TMU on system suspend (Alice Guo)
- SUNRPC: rpcbind should never reset the port to the value '0' (Trond Myklebust)
- SUNRPC: rpc_clnt_set_transport() must not change the autobind setting (Trond Myklebust)
- NFSv4: Treat ENETUNREACH errors as fatal for state recovery (Trond Myklebust)
- fbdev: core: tileblit: Implement missing margin clearing for tileblit (Zsolt Kajtar)
- fbcon: Use correct erase colour for clearing in fbcon (Zsolt Kajtar)
- fbdev: fsl-diu-fb: add missing device_remove_file() (Shixiong Ou)
- mailbox: use error ret code of of_parse_phandle_with_args() (Tudor Ambarus)
- tracing: Mark binary printing functions with __printf() attribute (Andy Shevchenko)
- NFSv4: Check for delegation validity in nfs_start_delegation_return_locked() (Trond Myklebust)
- kconfig: merge_config: use an empty file as initfile (Daniel Gomez)
- samples/bpf: Fix compilation failure for samples/bpf on LoongArch Fedora (Haoran Jiang)
- bpf: fix possible endless loop in BPF map iteration (Brandon Kammerdiener)
- net: enetc: refactor bulk flipping of RX buffers to separate function (Vladimir Oltean)
- cgroup: Fix compilation issue due to cgroup_mutex not being exported (gaoxu)
- dma-mapping: avoid potential unused data compilation warning (Marek Szyprowski)
- virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN (Zhongqiu Han)
- scsi: target: iscsi: Fix timeout on deleted connection (Dmitry Bogdanov)

ELBA-2025-20517 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-20517

http://linux.oracle.com/errata/ELBA-2025-20517.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-core-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-debug-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-devel-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-doc-5.15.0-308.179.6.14.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-container-5.15.0-308.179.6.14.el8uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-308.179.6.14.el8uek.x86_64.rpm

aarch64:
bpftool-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-core-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-debug-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-devel-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-doc-5.15.0-308.179.6.14.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-container-5.15.0-308.179.6.14.el8uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-308.179.6.14.el8uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-uek-5.15.0-308.179.6.14.el8uek.src.rpm

Description of changes:

[5.15.0-308.179.6.14.el8uek]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38244064]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38244060]

[5.15.0-308.179.6.13.el8uek]
- vhost-scsi: Fix vhost_scsi struct use after free (Mike Christie) [Orabug: 38232300]
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38232286]

[5.15.0-308.179.6.12.el8uek]
- x86: Pin task-stack in __get_wchan() (Peter Zijlstra) [Orabug: 38212634]
- x86: Fix __get_wchan() for !STACKTRACE (Peter Zijlstra) [Orabug: 38212634]
- sched: Add wrapper for get_wchan() to keep task blocked (Kees Cook) [Orabug: 38212634]
- x86: Fix get_wchan() to support the ORC unwinder (Qi Zheng) [Orabug: 38212634]

ELSA-2025-20520 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2025-20520

http://linux.oracle.com/errata/ELSA-2025-20520.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-core-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-debug-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-devel-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-doc-5.15.0-311.185.9.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-container-5.15.0-311.185.9.el9uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-311.185.9.el9uek.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-311.185.9.el9uek.src.rpm

Related CVEs:

CVE-2023-6931
CVE-2024-36350
CVE-2024-36357
CVE-2024-53100
CVE-2024-57996
CVE-2025-37752
CVE-2025-38089

Description of changes:

[5.15.0-311.185.9.el9uek]
- nfs: ignore SB_RDONLY when remounting nfs (Li Lingfeng) [Orabug: 37781252]

[5.15.0-311.185.8.el9uek]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38182400]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38189328]

[5.15.0-311.185.7.el9uek]
- perf: Fix perf_event_validate_size() lockdep splat (Mark Rutland) [Orabug: 36261485] {CVE-2023-6931}
- perf: Fix perf_event_validate_size() (Peter Zijlstra) [Orabug: 36261485] {CVE-2023-6931}

[5.15.0-311.185.6.el9uek]
- gre: Fix IPv6 multicast route creation. (Guillaume Nault)
- pwm: mediatek: Ensure to disable clocks in error path (Uwe Kleine-König)
- Revert "mmc: sdhci: Disable SD card clock before changing parameters" (Ulf Hansson)
- net/sched: Always pass notifications when child class becomes empty (Lion Ackermann)
- Revert "ipv6: save dontfrag in cork" (Brett A C Sheffield (Librecast))
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38182990]
- Revert "net/rds: Add krefs to struct rds_connection" (Håkon Bugge) [Orabug: 38165949]
- Revert "net/rds: tracepoints for rds_conn_kref_get and put" (Håkon Bugge) [Orabug: 38165949]
- sched: Change nr_uninterruptible type to unsigned long (Aruna Ramakrishna) [Orabug: 37942383]

[5.15.0-311.185.5.el9uek]
- KVM: x86: Remove VT-d mention in posted interrupt tracepoint (Alejandro Jimenez) [Orabug: 38195091]
- KVM: x86: Only set APICV_INHIBIT_REASON_ABSENT if APICv is enabled (Alejandro Jimenez) [Orabug: 38195091]
- KVM: x86: Print names of apicv inhibit reasons in traces (Alejandro Jimenez) [Orabug: 38195091]
- KVM: SVM: Always update local APIC on writes to logical dest register (Sean Christopherson) [Orabug: 38195091]
- x86: Pin task-stack in __get_wchan() (Peter Zijlstra) [Orabug: 38161988]
- x86: Fix __get_wchan() for !STACKTRACE (Peter Zijlstra) [Orabug: 38161988]
- sched: Add wrapper for get_wchan() to keep task blocked (Kees Cook) [Orabug: 38161988]
- x86: Fix get_wchan() to support the ORC unwinder (Qi Zheng) [Orabug: 38161988]
- nvme: tcp: avoid race between queue_lock lock and destroy (Hannes Reinecke) [Orabug: 37331887] {CVE-2024-53100}
- PCI/AER: Add sysfs attributes for log ratelimits (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Ratelimit correctable and non-fatal error logging (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Simplify add_error_device() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Convert aer_get_device_error_info(), aer_print_error() to index (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Reduce pci_print_aer() correctable error level to KERN_WARNING (Karolina Stolarek) [Orabug: 36952192]
- PCI/AER: Check log level once and remember it (Karolina Stolarek) [Orabug: 36952192]
- PCI/AER: Trace error event before ratelimiting (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Update statistics before ratelimiting (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Simplify pci_print_aer() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Initialize aer_err_info before using it (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Move aer_print_source() earlier in file (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Rename aer_print_port_info() to aer_print_source() (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Extract bus/dev/fn in aer_print_port_info() with PCI_BUS_NUM(), etc (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Consolidate Error Source ID logging in aer_isr_one_error_type() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Factor COR/UNCOR error handling out from aer_isr_one_error() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Descope pci_printk() to aer_printk() (Ilpo Järvinen) [Orabug: 36952192]

[5.15.0-311.185.4.el9uek]
- KVM: arm64: Sanitize PM{C,I}NTEN{SET,CLR}, PMOVS{SET,CLR} before first run (Raghavendra Rao Ananta) [Orabug: 38178527]
- KVM: arm64: PMU: Add a helper to read a vCPU's PMCR_EL0 (Reiji Watanabe) [Orabug: 38178527]
- vhost-scsi: Fix vhost_scsi struct use after free (Mike Christie) [Orabug: 38178300]
- sunrpc: handle SVC_GARBAGE during svc auth processing as auth error (Jeff Layton) [Orabug: 38137450] {CVE-2025-38089}
- bnxt_en: Cap the size of HWRM_PORT_PHY_QCFG forwarded response (Michael Chan) [Orabug: 35789734]

[5.15.0-311.185.3.el9uek]
- net_sched: sch_sfq: move the limit validation (Octavian Purdila) [Orabug: 38160459] {CVE-2025-37752}
- net_sched: sch_sfq: use a temporary work area for validating configuration (Octavian Purdila)
- mm: synchronise PGD in x86 when utilising dax vmemmap optimisation (Lorenzo Stoakes) [Orabug: 38055896]
- rds: ib: Make sure a QP in INIT state is transitioned to ERR (Håkon Bugge) [Orabug: 38119112]
- Reapply "rds: ib: Make sure receives are posted before connection is up" (Håkon Bugge) [Orabug: 38119112]
- rds: Fix array index out of bounds in rds_message_purge() (Harshit Mogalapalli) [Orabug: 38158026]
- block: assign bi_bdev for cloned bios in blk_rq_prep_clone (Christoph Hellwig) [Orabug: 38172722]
- fs/proc: do_task_stat: use __for_each_thread() (Oleg Nesterov) [Orabug: 38092818]
- Add Zen34 clients (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/process: Move the buffer clearing before MONITOR (Kim Phillips) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- Add normal counters (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- KVM: SVM: Advertize TSA CPUID bits to guests (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Add a Transient Scheduler Attacks mitigation (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Rename MDS machinery to something more generic (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/CPU/AMD: Add ZenX generations flags (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Free X86_BUG_AMD_APIC_C1E and X86_BUG_AMD_E400 bits (Boris Ostrovsky) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}

[5.15.0-311.185.2.el9uek]
- Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older (Breno Leitao)
- Revert "cpufreq: tegra186: Share policy per cluster" (Jon Hunter)
- net: tipc: fix refcount warning in tipc_aead_encrypt (Charalampos Mitrodimas)
- tracing: Fix compilation warning on arm32 (Pan Taixi)
- PM: sleep: Fix power.is_suspended cleanup for direct-complete devices (Rafael J. Wysocki)
- nfs: clear SB_RDONLY before getting superblock (Li Lingfeng)
- usb: usbtmc: Fix read_stb function and get_stb ioctl (Dave Penkler)
- acpi-cpufreq: Fix nominal_freq units to KHz in get_max_boost_ratio() (Gautham R. Shenoy)
- LTS version: v5.15.185 (Vijayendra Suman)
- perf/arm-cmn: Initialise cmn->cpu earlier (Robin Murphy)
- platform/x86: thinkpad_acpi: Ignore battery threshold change event notification (Mark Pearson)
- platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys (Valtteri Koskivuori)
- tpm: tis: Double the timeout B to 4s (Michal Suchanek)
- nvme-pci: add NVME_QUIRK_NO_DEEPEST_PS quirk for SOLIDIGM P44 Pro (Ilya Guterman)
- spi: spi-sun4i: fix early activation (Alessandro Grassi)
- um: let 'make clean' properly clean underlying SUBARCH as well (Masahiro Yamada)
- platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS (John Chau)
- nfs: don't share pNFS DS connections between net namespaces (Jeff Layton)
- HID: quirks: Add ADATA XPG alpha wireless mouse support (Milton Barrera)
- coredump: hand a pidfd to the usermode coredump helper (Christian Brauner)
- fork: use pidfd_prepare() (Christian Brauner)
- pid: add pidfd_prepare() (Christian Brauner)
- coredump: fix error handling for replace_fd() (Christian Brauner)
- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (Pedro Tammela)
- arm64: dts: qcom: sm8350: Fix typo in pil_camera_mem node (Alok Tiwari)
- smb: client: Reset all search buffer pointers when releasing buffer (Wang Zhaolong)
- smb: client: Fix use-after-free in cifs_fill_dirent (Wang Zhaolong)
- drm/i915/gvt: fix unterminated-string-initialization warning (Jani Nikula)
- xen/swiotlb: relax alignment requirements (Juergen Gross)
- i3c: master: svc: Fix implicit fallthrough in svc_i3c_master_ibi_work() (Nathan Chancellor)
- kbuild: Disable -Wdefault-const-init-unsafe (Nathan Chancellor)
- spi: spi-fsl-dspi: Reset SR flags before sending a new message (Larisa Grigore)
- spi: spi-fsl-dspi: Halt the module after a new message transfer (Bogdan-Gabriel Roman)
- spi: spi-fsl-dspi: restrict register range for regmap access (Larisa Grigore)
- Revert "arm64: dts: allwinner: h6: Use RSB for AXP805 PMIC connection" (Jernej Skrabec)
- mm/page_alloc.c: avoid infinite retries caused by cpuset race (Tianyang Zhang)
- drm/edid: fixed the bug that hdr metadata was not reset (feijuan.li)
- platform/x86: dell-wmi-sysman: Avoid buffer overflow in current_password_store() (Vladimir Moskovkin)
- llc: fix data loss when reading from a socket in llc_ui_recvmsg() (Ilia Gavrilov)
- ALSA: pcm: Fix race of buffer access at PCM OSS layer (Takashi Iwai)
- can: bcm: add missing rcu read protection for procfs content (Oliver Hartkopp)
- can: bcm: add locking for bcm_op runtime updates (Oliver Hartkopp)
- crypto: algif_hash - fix double free in hash_accept (Ivan Pravdin)
- octeontx2-af: Set LMT_ENA bit for APR table entries (Subbaraya Sundeep)
- net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done (Wang Liang)
- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (Cong Wang)
- net: dwmac-sun8i: Use parsed internal PHY address instead of 1 (Paul Kocialkowski)
- Bluetooth: L2CAP: Fix not checking l2cap_chan security level (Luiz Augusto von Dentz)
- xfrm: Sanitize marks before insert (Paul Chaignon)
- remoteproc: qcom_wcnss: Fix on platforms without fallback regulators (Matti Lehtimäki)
- __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock (Al Viro)
- xenbus: Allow PVH dom0 a non-local xenstore (Jason Andryuk)
- btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref (Goldwyn Rodrigues)
- nvmet-tcp: don't restore null sk_state_change (Alistair Francis)
- ALSA: hda/realtek: Add quirk for HP Spectre x360 15-df1xxx (Takashi Iwai)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 (Takashi Iwai)
- pinctrl: meson: define the pull up/down resistor value as 60 kOhm (Martin Blumenstingl)
- ASoC: imx-card: Adjust over allocation of memory in imx_card_parse_of() (Chenyuan Yang)
- drm: Add valid clones check (Jessica Zhang)
- drm/atomic: clarify the rules around drm_atomic_state->allow_modeset (Simona Vetter)
- wifi: ath9k: return by of_get_mac_address (Rosen Penev)
- regulator: ad5398: Add device tree support (Isaac Scott)
- spi: zynqmp-gqspi: Always acknowledge interrupts (Sean Anderson)
- wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate (Bitterblue Smith)
- perf/amd/ibs: Fix perf_ibs_op.cnt_mask for CurCnt (Ravi Bangoria)
- bpftool: Fix readlink usage in get_fd_type (Viktor Malik)
- drm/ast: Find VBIOS mode from regular display size (Thomas Zimmermann)
- HID: usbkbd: Fix the bit shift number for LED_KANA (junan)
- scsi: st: Restore some drive settings after reset (Kai Mäkisara)
- scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine (Justin Tee)
- net/mana: fix warning in the writer of client oob (Konstantin Taranov)
- rcu: fix header guard for rcu_all_qs() (Ankur Arora)
- rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y (Ankur Arora)
- r8169: don't scan PHY addresses > 0 (Heiner Kallweit)
- vxlan: Annotate FDB data races (Ido Schimmel)
- media: qcom: camss: csid: Only add TPG v4l2 ctrl if TPG hardware is available (Depeng Shao)
- hwmon: (xgene-hwmon) use appropriate type for the latency value (Andrey Vatoropin)
- clk: qcom: camcc-sm8250: Use clk_rcg2_shared_ops for some RCGs (Jordan Crouse)
- wifi: rtw88: Fix download_firmware_validate() for RTL8814AU (Bitterblue Smith)
- r8152: add vendor/device ID pair for Dell Alienware AW1022z (Aleksander Jan Bajkowski)
- ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). (Kuniyuki Iwashima)
- arch/powerpc/perf: Check the instruction type before creating sample with perf_mem_data_src (Athira Rajeev)
- wifi: mac80211: remove misplaced drv_mgd_complete_tx() call (Johannes Berg)
- wifi: mac80211: don't unconditionally call drv_mgd_complete_tx() (Johannes Berg)
- net/mlx5e: reduce rep rxq depth to 256 for ECPF (William Tu)
- net/mlx5e: set the tx_queue_len for pfifo_fast (William Tu)
- net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB (Alexei Lazar)
- drm/amd/display: Initial psr_version with correct setting (Tom Chung)
- drm/amdgpu: reset psp->cmd to NULL after releasing the buffer (Jiang Liu)
- phy: core: don't require set_mode() callback for phy_get_mode() to work (Dmitry Baryshkov)
- net/mlx4_core: Avoid impossible mlx4_db_alloc() order value (Kees Cook)
- media: v4l: Memset argument to 0 before calling get_mbus_config pad op (Sakari Ailus)
- smack: recognize ipv4 CIPSO w/o categories (Konstantin Andreev)
- pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map (Valentin Caron)
- ASoC: soc-dai: check return value at snd_soc_dai_set_tdm_slot() (Kuninori Morimoto)
- ASoC: tas2764: Power up/down amp on mute ops (Hector Martin)
- ASoC: ops: Enforce platform maximum on initial value (Martin Povišer)
- net/mlx5: Apply rate-limiting to high temperature warning (Shahar Shitrit)
- net/mlx5: Modify LSB bitmask in temperature event to include only the first bit (Shahar Shitrit)
- ACPI: HED: Always initialize before evged (Xiaofei Tan)
- PCI: Fix old_size lower bound in calculate_iosize() too (Ilpo Järvinen)
- eth: mlx4: don't try to complete XDP frames in netpoll (Jakub Kicinski)
- can: c_can: Use of_property_present() to test existence of DT property (Krzysztof Kozlowski)
- RDMA/core: Fix best page size finding when it can cross SG entries (Michael Margolin)
- EDAC/ie31200: work around false positive build warning (Arnd Bergmann)
- net: pktgen: fix access outside of user given buffer in pktgen_thread_write() (Peter Seiderer)
- wifi: rtw88: Fix rtw_desc_to_mcsrate() to handle MCS16-31 (Bitterblue Smith)
- wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU (Bitterblue Smith)
- wifi: rtw88: Fix rtw_init_vht_cap() for RTL8814AU (Bitterblue Smith)
- scsi: mpt3sas: Send a diag reset if target reset fails (Shivasharan S)
- clocksource: mips-gic-timer: Enable counter when CPUs start (Paul Burton)
- MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core (Paul Burton)
- MIPS: Use arch specific syscall name match function (Bibo Mao)
- x86/kaslr: Reduce KASLR entropy on most x86 systems (Balbir Singh)
- libbpf: Fix out-of-bound read (Nandakumar Edamana)
- cpuidle: menu: Avoid discarding useful information (Rafael J. Wysocki)
- x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() (Waiman Long)
- drm/amd/display: handle max_downscale_src_width fail check (Yihan Zhu)
- x86/build: Fix broken copy command in genimage.sh when making isoimage (Nir Lichtman)
- soc: ti: k3-socinfo: Do not use syscon helper to build regmap (Andrew Davis)
- bonding: report duplicate MAC address in all situations (Hangbin Liu)
- net: xgene-v2: remove incorrect ACPI_PTR annotation (Arnd Bergmann)
- drm/amdkfd: KFD release_work possible circular locking (Philip Yang)
- selftests/net: have gro.sh -t return a correct exit code (Kevin Krakauer)
- net/mlx5: Avoid report two health errors on same syndrome (Moshe Shemesh)
- firmware: arm_ffa: Set dma_mask for ffa devices (Viresh Kumar)
- PCI: brcmstb: Add a softdep to MIP MSI-X driver (Stanimir Varbanov)
- PCI: brcmstb: Expand inbound window size up to 64GB (Stanimir Varbanov)
- fpga: altera-cvp: Increase credit timeout (Kuhanh Murugasen Krishnan)
- drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence (AngeloGioacchino Del Regno)
- ARM: at91: pm: fix at91_suspend_finish for ZQ calibration (Li Bin)
- hwmon: (gpio-fan) Add missing mutex locks (Alexander Stein)
- x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 (Breno Leitao)
- clk: imx8mp: inform CCF of maximum frequency of clocks (Ahmad Fatoum)
- media: uvcvideo: Add sanity check to uvc_ioctl_xu_ctrl_map (Ricardo Ribalda)
- ipv4: fib: Move fib_valid_key_len() to rtm_to_fib_config(). (Kuniyuki Iwashima)
- net: pktgen: fix mpls maximum labels list parsing (Peter Seiderer)
- net: ethernet: ti: cpsw_new: populate netdev of_node (Alexander Sverdlin)
- pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" (Artur Weber)
- media: cx231xx: set device_caps for 417 (Hans Verkuil)
- drm/amdgpu: Do not program AGP BAR regs under SRIOV in gfxhub_v1_0.c (Victor Lu)
- remoteproc: qcom_wcnss: Handle platforms with only single power domain (Matti Lehtimäki)
- orangefs: Do not truncate file size (Matthew Wilcox (Oracle))
- dm cache: prevent BUG_ON by blocking retries on failed device resumes (Ming-Hung Tsai)
- media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() (Markus Elfring)
- ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 (Svyatoslav Ryhel)
- ieee802154: ca8210: Use proper setters and getters for bitwise types (Andy Shevchenko)
- rtc: ds1307: stop disabling alarms on probe (Alexandre Belloni)
- tcp: bring back NUMA dispersion in inet_ehash_locks_alloc() (Eric Dumazet)
- powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 (Andreas Schwab)
- arm64: tegra: p2597: Fix gpio for vdd-1v8-dis regulator (Diogo Ivo)
- crypto: lzo - Fix compression buffer overrun (Herbert Xu)
- cpufreq: tegra186: Share policy per cluster (Aaron Kling)
- ASoC: qcom: sm8250: explicitly set format in sm8250_be_hw_params_fixup() (Alexey Klimov)
- auxdisplay: charlcd: Partially revert "Move hwidth and bwidth to struct hd44780_common" (Andy Shevchenko)
- ipv6: save dontfrag in cork (Willem de Bruijn)
- mmc: sdhci: Disable SD card clock before changing parameters (Erick Shepherd)
- arm64/mm: Check PUD_TYPE_TABLE in pud_bad() (Ryan Roberts)
- netfilter: conntrack: Bound nf_conntrack sysctl writes (Nicolas Bouchinet)
- timer_list: Don't use %pK through printk() (Thomas Weißschuh)
- posix-timers: Add cond_resched() to posix_timer_add() search loop (Eric Dumazet)
- RDMA/uverbs: Propagate errors from rdma_lookup_get_uobject() (Maher Sanalla)
- xen: Add support for XenServer 6.1 platform device (Frediano Ziglio)
- dm: restrict dm device size to 2^63-512 bytes (Mikulas Patocka)
- crypto: octeontx2 - suppress auth failure screaming due to negative tests (Shashank Gupta)
- kbuild: fix argument parsing in scripts/config (Seyediman Seyedarab)
- ASoC: mediatek: mt6359: Add stub for mt6359_accdet_enable_jack_detect (Nícolas F. R. A. Prado)
- rtc: rv3032: fix EERD location (Alexandre Belloni)
- tcp: reorganize tcp_in_ack_event() and tcp_count_delivered() (Ilpo Järvinen)
- vfio/pci: Handle INTx IRQ_NOTCONNECTED (Alex Williamson)
- scsi: st: ERASE does not change tape location (Kai Mäkisara)
- scsi: st: Tighten the page format heuristics with MODE SELECT (Kai Mäkisara)
- ext4: reorder capability check last (Christian Göttsche)
- um: Update min_low_pfn to match changes in uml_reserved (Tiwei Bie)
- um: Store full CSGSFS and SS register from mcontext (Benjamin Berg)
- dlm: make tcp still work in multi-link env (Heming Zhao)
- i3c: master: svc: Fix missing STOP for master request (Stanley Chu)
- btrfs: send: return -ENAMETOOLONG when attempting a path that is too long (Filipe Manana)
- btrfs: get zone unusable bytes while holding lock at btrfs_reclaim_bgs_work() (Filipe Manana)
- btrfs: avoid linker error in btrfs_find_create_tree_block() (Mark Harmstone)
- btrfs: make btrfs_discard_workfn() block_group ref explicit (Boris Burkov)
- i2c: pxa: fix call balance of i2c->clk handling routines (Vitalii Mordan)
- i2c: qup: Vote for interconnect bandwidth to DRAM (Stephan Gerhold)
- wifi: mt76: only mark tx-status-failed frames as ACKed on mt76x0/2 (Felix Fietkau)
- mmc: host: Wait for Vdd to settle on card power off (Erick Shepherd)
- libnvdimm/labels: Fix divide error in nd_label_data_init() (Robert Richter)
- PCI: vmd: Disable MSI remapping bypass under Xen (Roger Pau Monne)
- pNFS/flexfiles: Report ENETDOWN as a connection error (Trond Myklebust)
- tools/build: Don't pass test log files to linker (Ian Rogers)
- PCI: dwc: ep: Ensure proper iteration over outbound map windows (Frank Li)
- lockdep: Fix wait context check on softirq for PREEMPT_RT (Ryo Takakura)
- dql: Fix dql->limit value when reset. (Jing Su)
- thermal/drivers/qoriq: Power down TMU on system suspend (Alice Guo)
- SUNRPC: rpcbind should never reset the port to the value '0' (Trond Myklebust)
- SUNRPC: rpc_clnt_set_transport() must not change the autobind setting (Trond Myklebust)
- NFSv4: Treat ENETUNREACH errors as fatal for state recovery (Trond Myklebust)
- fbdev: core: tileblit: Implement missing margin clearing for tileblit (Zsolt Kajtar)
- fbcon: Use correct erase colour for clearing in fbcon (Zsolt Kajtar)
- fbdev: fsl-diu-fb: add missing device_remove_file() (Shixiong Ou)
- mailbox: use error ret code of of_parse_phandle_with_args() (Tudor Ambarus)
- tracing: Mark binary printing functions with __printf() attribute (Andy Shevchenko)
- NFSv4: Check for delegation validity in nfs_start_delegation_return_locked() (Trond Myklebust)
- kconfig: merge_config: use an empty file as initfile (Daniel Gomez)
- samples/bpf: Fix compilation failure for samples/bpf on LoongArch Fedora (Haoran Jiang)
- bpf: fix possible endless loop in BPF map iteration (Brandon Kammerdiener)
- net: enetc: refactor bulk flipping of RX buffers to separate function (Vladimir Oltean)
- cgroup: Fix compilation issue due to cgroup_mutex not being exported (gaoxu)
- dma-mapping: avoid potential unused data compilation warning (Marek Szyprowski)
- virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN (Zhongqiu Han)
- scsi: target: iscsi: Fix timeout on deleted connection (Dmitry Bogdanov)

ELBA-2025-20517 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-20517

http://linux.oracle.com/errata/ELBA-2025-20517.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-core-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-debug-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-devel-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-doc-5.15.0-308.179.6.14.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-container-5.15.0-308.179.6.14.el9uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-308.179.6.14.el9uek.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-308.179.6.14.el9uek.src.rpm

Description of changes:

[5.15.0-308.179.6.14.el9uek]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38244064]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38244060]

[5.15.0-308.179.6.13.el9uek]
- vhost-scsi: Fix vhost_scsi struct use after free (Mike Christie) [Orabug: 38232300]
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38232286]

[5.15.0-308.179.6.12.el9uek]
- x86: Pin task-stack in __get_wchan() (Peter Zijlstra) [Orabug: 38212634]
- x86: Fix __get_wchan() for !STACKTRACE (Peter Zijlstra) [Orabug: 38212634]
- sched: Add wrapper for get_wchan() to keep task blocked (Kees Cook) [Orabug: 38212634]
- x86: Fix get_wchan() to support the ORC unwinder (Qi Zheng) [Orabug: 38212634]

ELSA-2025-13578 Moderate: Oracle Linux 9 python3.11-setuptools security update

Oracle Linux Security Advisory ELSA-2025-13578

http://linux.oracle.com/errata/ELSA-2025-13578.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.11-setuptools-65.5.1-4.el9_6.noarch.rpm
python3.11-setuptools-wheel-65.5.1-4.el9_6.noarch.rpm

aarch64:
python3.11-setuptools-65.5.1-4.el9_6.noarch.rpm
python3.11-setuptools-wheel-65.5.1-4.el9_6.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.11-setuptools-65.5.1-4.el9_6.src.rpm

Related CVEs:

CVE-2025-47273

Description of changes:

[65.5.1-4]
- Security fix for CVE-2025-47273
Resolves: RHEL-101113

ELBA-2025-13612 Oracle Linux 9 passt bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-13612

http://linux.oracle.com/errata/ELBA-2025-13612.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
passt-0^20250217.ga1e48a0-10.el9_6.x86_64.rpm
passt-selinux-0^20250217.ga1e48a0-10.el9_6.noarch.rpm

aarch64:
passt-0^20250217.ga1e48a0-10.el9_6.aarch64.rpm
passt-selinux-0^20250217.ga1e48a0-10.el9_6.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/passt-0^20250217.ga1e48a0-10.el9_6.src.rpm

Description of changes:

[0^20250217.ga1e48a0-10]
- Resolves: RHEL-106424

ELBA-2025-13616 Oracle Linux 9 cockpit bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-13616

http://linux.oracle.com/errata/ELBA-2025-13616.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
cockpit-334.2-1.0.1.el9_6.x86_64.rpm
cockpit-bridge-334.2-1.0.1.el9_6.x86_64.rpm
cockpit-doc-334.2-1.0.1.el9_6.noarch.rpm
cockpit-packagekit-334.2-1.0.1.el9_6.noarch.rpm
cockpit-storaged-334.2-1.0.1.el9_6.noarch.rpm
cockpit-system-334.2-1.0.1.el9_6.noarch.rpm
cockpit-ws-334.2-1.0.1.el9_6.x86_64.rpm

aarch64:
cockpit-334.2-1.0.1.el9_6.aarch64.rpm
cockpit-bridge-334.2-1.0.1.el9_6.aarch64.rpm
cockpit-doc-334.2-1.0.1.el9_6.noarch.rpm
cockpit-packagekit-334.2-1.0.1.el9_6.noarch.rpm
cockpit-storaged-334.2-1.0.1.el9_6.noarch.rpm
cockpit-system-334.2-1.0.1.el9_6.noarch.rpm
cockpit-ws-334.2-1.0.1.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/cockpit-334.2-1.0.1.el9_6.src.rpm

Description of changes:

[334.2-1.0.1]
- Storage: Enable btrfs support [Orabug: 37464632]
- Replaced upstream urls in documentation with oracle links [Orabug: 36528753]
- Drop subscription-manager-cockpit requirement for ol [Orabug: 34681110]
- Remove duplicate reference to server in cockpit [Orabug: 34030494]
- Update documentation links [Orabug: 30271413], [Orabug: 32013095],
[Orabug: 32795691], [Orabug: 34398512], [Orabug: 34742876], [Orabug: 37253273]
- Update spec file for new release

[334.2]
- Remove recommends on subscription-manager-cockpit if applicable

[334.2-1]
- bridge: Fix inotify memory leak (RHEL-107665)

ELBA-2025-12867 Oracle Linux 9 kmod-kvdo bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-12867

http://linux.oracle.com/errata/ELBA-2025-12867.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
kmod-kvdo-8.2.5.14-163.0.1.el9_6.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kmod-kvdo-8.2.5.14-163.0.1.el9_6.src.rpm

Description of changes:

[8.2.5.14-163.0.1.el9]
- Update for kernel-5.14.0-570.el9
- add OL signature

ELSA-2025-20520 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2025-20520

http://linux.oracle.com/errata/ELSA-2025-20520.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

aarch64:
bpftool-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-container-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-core-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-debug-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-devel-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-doc-5.15.0-311.185.9.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek64k-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek64k-core-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek64k-devel-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek64k-modules-5.15.0-311.185.9.el9uek.aarch64.rpm
kernel-uek64k-modules-extra-5.15.0-311.185.9.el9uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-311.185.9.el9uek.src.rpm

Related CVEs:

CVE-2023-6931
CVE-2024-36350
CVE-2024-36357
CVE-2024-53100
CVE-2024-57996
CVE-2025-37752
CVE-2025-38089

Description of changes:

[5.15.0-311.185.9.el9uek]
- nfs: ignore SB_RDONLY when remounting nfs (Li Lingfeng) [Orabug: 37781252]

[5.15.0-311.185.8.el9uek]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38182400]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38189328]

[5.15.0-311.185.7.el9uek]
- perf: Fix perf_event_validate_size() lockdep splat (Mark Rutland) [Orabug: 36261485] {CVE-2023-6931}
- perf: Fix perf_event_validate_size() (Peter Zijlstra) [Orabug: 36261485] {CVE-2023-6931}

[5.15.0-311.185.6.el9uek]
- gre: Fix IPv6 multicast route creation. (Guillaume Nault)
- pwm: mediatek: Ensure to disable clocks in error path (Uwe Kleine-König)
- Revert "mmc: sdhci: Disable SD card clock before changing parameters" (Ulf Hansson)
- net/sched: Always pass notifications when child class becomes empty (Lion Ackermann)
- Revert "ipv6: save dontfrag in cork" (Brett A C Sheffield (Librecast))
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38182990]
- Revert "net/rds: Add krefs to struct rds_connection" (Håkon Bugge) [Orabug: 38165949]
- Revert "net/rds: tracepoints for rds_conn_kref_get and put" (Håkon Bugge) [Orabug: 38165949]
- sched: Change nr_uninterruptible type to unsigned long (Aruna Ramakrishna) [Orabug: 37942383]

[5.15.0-311.185.5.el9uek]
- KVM: x86: Remove VT-d mention in posted interrupt tracepoint (Alejandro Jimenez) [Orabug: 38195091]
- KVM: x86: Only set APICV_INHIBIT_REASON_ABSENT if APICv is enabled (Alejandro Jimenez) [Orabug: 38195091]
- KVM: x86: Print names of apicv inhibit reasons in traces (Alejandro Jimenez) [Orabug: 38195091]
- KVM: SVM: Always update local APIC on writes to logical dest register (Sean Christopherson) [Orabug: 38195091]
- x86: Pin task-stack in __get_wchan() (Peter Zijlstra) [Orabug: 38161988]
- x86: Fix __get_wchan() for !STACKTRACE (Peter Zijlstra) [Orabug: 38161988]
- sched: Add wrapper for get_wchan() to keep task blocked (Kees Cook) [Orabug: 38161988]
- x86: Fix get_wchan() to support the ORC unwinder (Qi Zheng) [Orabug: 38161988]
- nvme: tcp: avoid race between queue_lock lock and destroy (Hannes Reinecke) [Orabug: 37331887] {CVE-2024-53100}
- PCI/AER: Add sysfs attributes for log ratelimits (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Ratelimit correctable and non-fatal error logging (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Simplify add_error_device() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Convert aer_get_device_error_info(), aer_print_error() to index (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Reduce pci_print_aer() correctable error level to KERN_WARNING (Karolina Stolarek) [Orabug: 36952192]
- PCI/AER: Check log level once and remember it (Karolina Stolarek) [Orabug: 36952192]
- PCI/AER: Trace error event before ratelimiting (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Update statistics before ratelimiting (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Simplify pci_print_aer() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Initialize aer_err_info before using it (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Move aer_print_source() earlier in file (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Rename aer_print_port_info() to aer_print_source() (Jon Pan-Doh) [Orabug: 36952192]
- PCI/AER: Extract bus/dev/fn in aer_print_port_info() with PCI_BUS_NUM(), etc (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Consolidate Error Source ID logging in aer_isr_one_error_type() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Factor COR/UNCOR error handling out from aer_isr_one_error() (Bjorn Helgaas) [Orabug: 36952192]
- PCI/AER: Descope pci_printk() to aer_printk() (Ilpo Järvinen) [Orabug: 36952192]

[5.15.0-311.185.4.el9uek]
- KVM: arm64: Sanitize PM{C,I}NTEN{SET,CLR}, PMOVS{SET,CLR} before first run (Raghavendra Rao Ananta) [Orabug: 38178527]
- KVM: arm64: PMU: Add a helper to read a vCPU's PMCR_EL0 (Reiji Watanabe) [Orabug: 38178527]
- vhost-scsi: Fix vhost_scsi struct use after free (Mike Christie) [Orabug: 38178300]
- sunrpc: handle SVC_GARBAGE during svc auth processing as auth error (Jeff Layton) [Orabug: 38137450] {CVE-2025-38089}
- bnxt_en: Cap the size of HWRM_PORT_PHY_QCFG forwarded response (Michael Chan) [Orabug: 35789734]

[5.15.0-311.185.3.el9uek]
- net_sched: sch_sfq: move the limit validation (Octavian Purdila) [Orabug: 38160459] {CVE-2025-37752}
- net_sched: sch_sfq: use a temporary work area for validating configuration (Octavian Purdila)
- mm: synchronise PGD in x86 when utilising dax vmemmap optimisation (Lorenzo Stoakes) [Orabug: 38055896]
- rds: ib: Make sure a QP in INIT state is transitioned to ERR (Håkon Bugge) [Orabug: 38119112]
- Reapply "rds: ib: Make sure receives are posted before connection is up" (Håkon Bugge) [Orabug: 38119112]
- rds: Fix array index out of bounds in rds_message_purge() (Harshit Mogalapalli) [Orabug: 38158026]
- block: assign bi_bdev for cloned bios in blk_rq_prep_clone (Christoph Hellwig) [Orabug: 38172722]
- fs/proc: do_task_stat: use __for_each_thread() (Oleg Nesterov) [Orabug: 38092818]
- Add Zen34 clients (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/process: Move the buffer clearing before MONITOR (Kim Phillips) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- Add normal counters (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- KVM: SVM: Advertize TSA CPUID bits to guests (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Add a Transient Scheduler Attacks mitigation (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Rename MDS machinery to something more generic (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/CPU/AMD: Add ZenX generations flags (Borislav Petkov (AMD)) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}
- x86/bugs: Free X86_BUG_AMD_APIC_C1E and X86_BUG_AMD_E400 bits (Boris Ostrovsky) [Orabug: 38167060] {CVE-2024-36350} {CVE-2024-36357}

[5.15.0-311.185.2.el9uek]
- Revert "x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2" on v6.6 and older (Breno Leitao)
- Revert "cpufreq: tegra186: Share policy per cluster" (Jon Hunter)
- net: tipc: fix refcount warning in tipc_aead_encrypt (Charalampos Mitrodimas)
- tracing: Fix compilation warning on arm32 (Pan Taixi)
- PM: sleep: Fix power.is_suspended cleanup for direct-complete devices (Rafael J. Wysocki)
- nfs: clear SB_RDONLY before getting superblock (Li Lingfeng)
- usb: usbtmc: Fix read_stb function and get_stb ioctl (Dave Penkler)
- acpi-cpufreq: Fix nominal_freq units to KHz in get_max_boost_ratio() (Gautham R. Shenoy)
- LTS version: v5.15.185 (Vijayendra Suman)
- perf/arm-cmn: Initialise cmn->cpu earlier (Robin Murphy)
- platform/x86: thinkpad_acpi: Ignore battery threshold change event notification (Mark Pearson)
- platform/x86: fujitsu-laptop: Support Lifebook S2110 hotkeys (Valtteri Koskivuori)
- tpm: tis: Double the timeout B to 4s (Michal Suchanek)
- nvme-pci: add NVME_QUIRK_NO_DEEPEST_PS quirk for SOLIDIGM P44 Pro (Ilya Guterman)
- spi: spi-sun4i: fix early activation (Alessandro Grassi)
- um: let 'make clean' properly clean underlying SUBARCH as well (Masahiro Yamada)
- platform/x86: thinkpad_acpi: Support also NEC Lavie X1475JAS (John Chau)
- nfs: don't share pNFS DS connections between net namespaces (Jeff Layton)
- HID: quirks: Add ADATA XPG alpha wireless mouse support (Milton Barrera)
- coredump: hand a pidfd to the usermode coredump helper (Christian Brauner)
- fork: use pidfd_prepare() (Christian Brauner)
- pid: add pidfd_prepare() (Christian Brauner)
- coredump: fix error handling for replace_fd() (Christian Brauner)
- net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (Pedro Tammela)
- arm64: dts: qcom: sm8350: Fix typo in pil_camera_mem node (Alok Tiwari)
- smb: client: Reset all search buffer pointers when releasing buffer (Wang Zhaolong)
- smb: client: Fix use-after-free in cifs_fill_dirent (Wang Zhaolong)
- drm/i915/gvt: fix unterminated-string-initialization warning (Jani Nikula)
- xen/swiotlb: relax alignment requirements (Juergen Gross)
- i3c: master: svc: Fix implicit fallthrough in svc_i3c_master_ibi_work() (Nathan Chancellor)
- kbuild: Disable -Wdefault-const-init-unsafe (Nathan Chancellor)
- spi: spi-fsl-dspi: Reset SR flags before sending a new message (Larisa Grigore)
- spi: spi-fsl-dspi: Halt the module after a new message transfer (Bogdan-Gabriel Roman)
- spi: spi-fsl-dspi: restrict register range for regmap access (Larisa Grigore)
- Revert "arm64: dts: allwinner: h6: Use RSB for AXP805 PMIC connection" (Jernej Skrabec)
- mm/page_alloc.c: avoid infinite retries caused by cpuset race (Tianyang Zhang)
- drm/edid: fixed the bug that hdr metadata was not reset (feijuan.li)
- platform/x86: dell-wmi-sysman: Avoid buffer overflow in current_password_store() (Vladimir Moskovkin)
- llc: fix data loss when reading from a socket in llc_ui_recvmsg() (Ilia Gavrilov)
- ALSA: pcm: Fix race of buffer access at PCM OSS layer (Takashi Iwai)
- can: bcm: add missing rcu read protection for procfs content (Oliver Hartkopp)
- can: bcm: add locking for bcm_op runtime updates (Oliver Hartkopp)
- crypto: algif_hash - fix double free in hash_accept (Ivan Pravdin)
- octeontx2-af: Set LMT_ENA bit for APR table entries (Subbaraya Sundeep)
- net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done (Wang Liang)
- sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (Cong Wang)
- net: dwmac-sun8i: Use parsed internal PHY address instead of 1 (Paul Kocialkowski)
- Bluetooth: L2CAP: Fix not checking l2cap_chan security level (Luiz Augusto von Dentz)
- xfrm: Sanitize marks before insert (Paul Chaignon)
- remoteproc: qcom_wcnss: Fix on platforms without fallback regulators (Matti Lehtimäki)
- __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock (Al Viro)
- xenbus: Allow PVH dom0 a non-local xenstore (Jason Andryuk)
- btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref (Goldwyn Rodrigues)
- nvmet-tcp: don't restore null sk_state_change (Alistair Francis)
- ALSA: hda/realtek: Add quirk for HP Spectre x360 15-df1xxx (Takashi Iwai)
- ASoC: Intel: bytcr_rt5640: Add DMI quirk for Acer Aspire SW3-013 (Takashi Iwai)
- pinctrl: meson: define the pull up/down resistor value as 60 kOhm (Martin Blumenstingl)
- ASoC: imx-card: Adjust over allocation of memory in imx_card_parse_of() (Chenyuan Yang)
- drm: Add valid clones check (Jessica Zhang)
- drm/atomic: clarify the rules around drm_atomic_state->allow_modeset (Simona Vetter)
- wifi: ath9k: return by of_get_mac_address (Rosen Penev)
- regulator: ad5398: Add device tree support (Isaac Scott)
- spi: zynqmp-gqspi: Always acknowledge interrupts (Sean Anderson)
- wifi: rtw88: Don't use static local variable in rtw8822b_set_tx_power_index_by_rate (Bitterblue Smith)
- perf/amd/ibs: Fix perf_ibs_op.cnt_mask for CurCnt (Ravi Bangoria)
- bpftool: Fix readlink usage in get_fd_type (Viktor Malik)
- drm/ast: Find VBIOS mode from regular display size (Thomas Zimmermann)
- HID: usbkbd: Fix the bit shift number for LED_KANA (junan)
- scsi: st: Restore some drive settings after reset (Kai Mäkisara)
- scsi: lpfc: Handle duplicate D_IDs in ndlp search-by D_ID routine (Justin Tee)
- net/mana: fix warning in the writer of client oob (Konstantin Taranov)
- rcu: fix header guard for rcu_all_qs() (Ankur Arora)
- rcu: handle quiescent states for PREEMPT_RCU=n, PREEMPT_COUNT=y (Ankur Arora)
- r8169: don't scan PHY addresses > 0 (Heiner Kallweit)
- vxlan: Annotate FDB data races (Ido Schimmel)
- media: qcom: camss: csid: Only add TPG v4l2 ctrl if TPG hardware is available (Depeng Shao)
- hwmon: (xgene-hwmon) use appropriate type for the latency value (Andrey Vatoropin)
- clk: qcom: camcc-sm8250: Use clk_rcg2_shared_ops for some RCGs (Jordan Crouse)
- wifi: rtw88: Fix download_firmware_validate() for RTL8814AU (Bitterblue Smith)
- r8152: add vendor/device ID pair for Dell Alienware AW1022z (Aleksander Jan Bajkowski)
- ip: fib_rules: Fetch net from fib_rule in fib[46]_rule_configure(). (Kuniyuki Iwashima)
- arch/powerpc/perf: Check the instruction type before creating sample with perf_mem_data_src (Athira Rajeev)
- wifi: mac80211: remove misplaced drv_mgd_complete_tx() call (Johannes Berg)
- wifi: mac80211: don't unconditionally call drv_mgd_complete_tx() (Johannes Berg)
- net/mlx5e: reduce rep rxq depth to 256 for ECPF (William Tu)
- net/mlx5e: set the tx_queue_len for pfifo_fast (William Tu)
- net/mlx5: Extend Ethtool loopback selftest to support non-linear SKB (Alexei Lazar)
- drm/amd/display: Initial psr_version with correct setting (Tom Chung)
- drm/amdgpu: reset psp->cmd to NULL after releasing the buffer (Jiang Liu)
- phy: core: don't require set_mode() callback for phy_get_mode() to work (Dmitry Baryshkov)
- net/mlx4_core: Avoid impossible mlx4_db_alloc() order value (Kees Cook)
- media: v4l: Memset argument to 0 before calling get_mbus_config pad op (Sakari Ailus)
- smack: recognize ipv4 CIPSO w/o categories (Konstantin Andreev)
- pinctrl: devicetree: do not goto err when probing hogs in pinctrl_dt_to_map (Valentin Caron)
- ASoC: soc-dai: check return value at snd_soc_dai_set_tdm_slot() (Kuninori Morimoto)
- ASoC: tas2764: Power up/down amp on mute ops (Hector Martin)
- ASoC: ops: Enforce platform maximum on initial value (Martin Povišer)
- net/mlx5: Apply rate-limiting to high temperature warning (Shahar Shitrit)
- net/mlx5: Modify LSB bitmask in temperature event to include only the first bit (Shahar Shitrit)
- ACPI: HED: Always initialize before evged (Xiaofei Tan)
- PCI: Fix old_size lower bound in calculate_iosize() too (Ilpo Järvinen)
- eth: mlx4: don't try to complete XDP frames in netpoll (Jakub Kicinski)
- can: c_can: Use of_property_present() to test existence of DT property (Krzysztof Kozlowski)
- RDMA/core: Fix best page size finding when it can cross SG entries (Michael Margolin)
- EDAC/ie31200: work around false positive build warning (Arnd Bergmann)
- net: pktgen: fix access outside of user given buffer in pktgen_thread_write() (Peter Seiderer)
- wifi: rtw88: Fix rtw_desc_to_mcsrate() to handle MCS16-31 (Bitterblue Smith)
- wifi: rtw88: Fix rtw_init_ht_cap() for RTL8814AU (Bitterblue Smith)
- wifi: rtw88: Fix rtw_init_vht_cap() for RTL8814AU (Bitterblue Smith)
- scsi: mpt3sas: Send a diag reset if target reset fails (Shivasharan S)
- clocksource: mips-gic-timer: Enable counter when CPUs start (Paul Burton)
- MIPS: pm-cps: Use per-CPU variables as per-CPU, not per-core (Paul Burton)
- MIPS: Use arch specific syscall name match function (Bibo Mao)
- x86/kaslr: Reduce KASLR entropy on most x86 systems (Balbir Singh)
- libbpf: Fix out-of-bound read (Nandakumar Edamana)
- cpuidle: menu: Avoid discarding useful information (Rafael J. Wysocki)
- x86/nmi: Add an emergency handler in nmi_desc & use it in nmi_shootdown_cpus() (Waiman Long)
- drm/amd/display: handle max_downscale_src_width fail check (Yihan Zhu)
- x86/build: Fix broken copy command in genimage.sh when making isoimage (Nir Lichtman)
- soc: ti: k3-socinfo: Do not use syscon helper to build regmap (Andrew Davis)
- bonding: report duplicate MAC address in all situations (Hangbin Liu)
- net: xgene-v2: remove incorrect ACPI_PTR annotation (Arnd Bergmann)
- drm/amdkfd: KFD release_work possible circular locking (Philip Yang)
- selftests/net: have gro.sh -t return a correct exit code (Kevin Krakauer)
- net/mlx5: Avoid report two health errors on same syndrome (Moshe Shemesh)
- firmware: arm_ffa: Set dma_mask for ffa devices (Viresh Kumar)
- PCI: brcmstb: Add a softdep to MIP MSI-X driver (Stanimir Varbanov)
- PCI: brcmstb: Expand inbound window size up to 64GB (Stanimir Varbanov)
- fpga: altera-cvp: Increase credit timeout (Kuhanh Murugasen Krishnan)
- drm/mediatek: mtk_dpi: Add checks for reg_h_fre_con existence (AngeloGioacchino Del Regno)
- ARM: at91: pm: fix at91_suspend_finish for ZQ calibration (Li Bin)
- hwmon: (gpio-fan) Add missing mutex locks (Alexander Stein)
- x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 (Breno Leitao)
- clk: imx8mp: inform CCF of maximum frequency of clocks (Ahmad Fatoum)
- media: uvcvideo: Add sanity check to uvc_ioctl_xu_ctrl_map (Ricardo Ribalda)
- ipv4: fib: Move fib_valid_key_len() to rtm_to_fib_config(). (Kuniyuki Iwashima)
- net: pktgen: fix mpls maximum labels list parsing (Peter Seiderer)
- net: ethernet: ti: cpsw_new: populate netdev of_node (Alexander Sverdlin)
- pinctrl: bcm281xx: Use "unsigned int" instead of bare "unsigned" (Artur Weber)
- media: cx231xx: set device_caps for 417 (Hans Verkuil)
- drm/amdgpu: Do not program AGP BAR regs under SRIOV in gfxhub_v1_0.c (Victor Lu)
- remoteproc: qcom_wcnss: Handle platforms with only single power domain (Matti Lehtimäki)
- orangefs: Do not truncate file size (Matthew Wilcox (Oracle))
- dm cache: prevent BUG_ON by blocking retries on failed device resumes (Ming-Hung Tsai)
- media: c8sectpfe: Call of_node_put(i2c_bus) only once in c8sectpfe_probe() (Markus Elfring)
- ARM: tegra: Switch DSI-B clock parent to PLLD on Tegra114 (Svyatoslav Ryhel)
- ieee802154: ca8210: Use proper setters and getters for bitwise types (Andy Shevchenko)
- rtc: ds1307: stop disabling alarms on probe (Alexandre Belloni)
- tcp: bring back NUMA dispersion in inet_ehash_locks_alloc() (Eric Dumazet)
- powerpc/prom_init: Fixup missing #size-cells on PowerBook6,7 (Andreas Schwab)
- arm64: tegra: p2597: Fix gpio for vdd-1v8-dis regulator (Diogo Ivo)
- crypto: lzo - Fix compression buffer overrun (Herbert Xu)
- cpufreq: tegra186: Share policy per cluster (Aaron Kling)
- ASoC: qcom: sm8250: explicitly set format in sm8250_be_hw_params_fixup() (Alexey Klimov)
- auxdisplay: charlcd: Partially revert "Move hwidth and bwidth to struct hd44780_common" (Andy Shevchenko)
- ipv6: save dontfrag in cork (Willem de Bruijn)
- mmc: sdhci: Disable SD card clock before changing parameters (Erick Shepherd)
- arm64/mm: Check PUD_TYPE_TABLE in pud_bad() (Ryan Roberts)
- netfilter: conntrack: Bound nf_conntrack sysctl writes (Nicolas Bouchinet)
- timer_list: Don't use %pK through printk() (Thomas Weißschuh)
- posix-timers: Add cond_resched() to posix_timer_add() search loop (Eric Dumazet)
- RDMA/uverbs: Propagate errors from rdma_lookup_get_uobject() (Maher Sanalla)
- xen: Add support for XenServer 6.1 platform device (Frediano Ziglio)
- dm: restrict dm device size to 2^63-512 bytes (Mikulas Patocka)
- crypto: octeontx2 - suppress auth failure screaming due to negative tests (Shashank Gupta)
- kbuild: fix argument parsing in scripts/config (Seyediman Seyedarab)
- ASoC: mediatek: mt6359: Add stub for mt6359_accdet_enable_jack_detect (Nícolas F. R. A. Prado)
- rtc: rv3032: fix EERD location (Alexandre Belloni)
- tcp: reorganize tcp_in_ack_event() and tcp_count_delivered() (Ilpo Järvinen)
- vfio/pci: Handle INTx IRQ_NOTCONNECTED (Alex Williamson)
- scsi: st: ERASE does not change tape location (Kai Mäkisara)
- scsi: st: Tighten the page format heuristics with MODE SELECT (Kai Mäkisara)
- ext4: reorder capability check last (Christian Göttsche)
- um: Update min_low_pfn to match changes in uml_reserved (Tiwei Bie)
- um: Store full CSGSFS and SS register from mcontext (Benjamin Berg)
- dlm: make tcp still work in multi-link env (Heming Zhao)
- i3c: master: svc: Fix missing STOP for master request (Stanley Chu)
- btrfs: send: return -ENAMETOOLONG when attempting a path that is too long (Filipe Manana)
- btrfs: get zone unusable bytes while holding lock at btrfs_reclaim_bgs_work() (Filipe Manana)
- btrfs: avoid linker error in btrfs_find_create_tree_block() (Mark Harmstone)
- btrfs: make btrfs_discard_workfn() block_group ref explicit (Boris Burkov)
- i2c: pxa: fix call balance of i2c->clk handling routines (Vitalii Mordan)
- i2c: qup: Vote for interconnect bandwidth to DRAM (Stephan Gerhold)
- wifi: mt76: only mark tx-status-failed frames as ACKed on mt76x0/2 (Felix Fietkau)
- mmc: host: Wait for Vdd to settle on card power off (Erick Shepherd)
- libnvdimm/labels: Fix divide error in nd_label_data_init() (Robert Richter)
- PCI: vmd: Disable MSI remapping bypass under Xen (Roger Pau Monne)
- pNFS/flexfiles: Report ENETDOWN as a connection error (Trond Myklebust)
- tools/build: Don't pass test log files to linker (Ian Rogers)
- PCI: dwc: ep: Ensure proper iteration over outbound map windows (Frank Li)
- lockdep: Fix wait context check on softirq for PREEMPT_RT (Ryo Takakura)
- dql: Fix dql->limit value when reset. (Jing Su)
- thermal/drivers/qoriq: Power down TMU on system suspend (Alice Guo)
- SUNRPC: rpcbind should never reset the port to the value '0' (Trond Myklebust)
- SUNRPC: rpc_clnt_set_transport() must not change the autobind setting (Trond Myklebust)
- NFSv4: Treat ENETUNREACH errors as fatal for state recovery (Trond Myklebust)
- fbdev: core: tileblit: Implement missing margin clearing for tileblit (Zsolt Kajtar)
- fbcon: Use correct erase colour for clearing in fbcon (Zsolt Kajtar)
- fbdev: fsl-diu-fb: add missing device_remove_file() (Shixiong Ou)
- mailbox: use error ret code of of_parse_phandle_with_args() (Tudor Ambarus)
- tracing: Mark binary printing functions with __printf() attribute (Andy Shevchenko)
- NFSv4: Check for delegation validity in nfs_start_delegation_return_locked() (Trond Myklebust)
- kconfig: merge_config: use an empty file as initfile (Daniel Gomez)
- samples/bpf: Fix compilation failure for samples/bpf on LoongArch Fedora (Haoran Jiang)
- bpf: fix possible endless loop in BPF map iteration (Brandon Kammerdiener)
- net: enetc: refactor bulk flipping of RX buffers to separate function (Vladimir Oltean)
- cgroup: Fix compilation issue due to cgroup_mutex not being exported (gaoxu)
- dma-mapping: avoid potential unused data compilation warning (Marek Szyprowski)
- virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN (Zhongqiu Han)
- scsi: target: iscsi: Fix timeout on deleted connection (Dmitry Bogdanov)

ELBA-2025-20517 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-20517

http://linux.oracle.com/errata/ELBA-2025-20517.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

aarch64:
bpftool-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-container-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-core-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-debug-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-devel-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-doc-5.15.0-308.179.6.14.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek64k-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek64k-core-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek64k-devel-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek64k-modules-5.15.0-308.179.6.14.el9uek.aarch64.rpm
kernel-uek64k-modules-extra-5.15.0-308.179.6.14.el9uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-308.179.6.14.el9uek.src.rpm

Description of changes:

[5.15.0-308.179.6.14.el9uek]
- net/rds: poll eq during user-reset (Praveen Kumar Kannoju) [Orabug: 38244064]
- net/mlx5: Add poll-eq API to be used by ULP's (Praveen Kumar Kannoju) [Orabug: 38244060]

[5.15.0-308.179.6.13.el9uek]
- vhost-scsi: Fix vhost_scsi struct use after free (Mike Christie) [Orabug: 38232300]
- net/mlx5: set graceful_period to 0 to allow multiple transmission queue recovery (Praveen Kumar Kannoju) [Orabug: 38232286]

[5.15.0-308.179.6.12.el9uek]
- x86: Pin task-stack in __get_wchan() (Peter Zijlstra) [Orabug: 38212634]
- x86: Fix __get_wchan() for !STACKTRACE (Peter Zijlstra) [Orabug: 38212634]
- sched: Add wrapper for get_wchan() to keep task blocked (Kees Cook) [Orabug: 38212634]
- x86: Fix get_wchan() to support the ORC unwinder (Qi Zheng) [Orabug: 38212634]

OLAMSA-2025-0013 Important: Oracle Linux 9 python3.11-cryptography security update

Oracle Linux Security Advisory OLAMSA-2025-0013

http://linux.oracle.com/errata/OLAMSA-2025-0013.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.11-cryptography-41.0.7-4.el9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.11-cryptography-41.0.7-4.el9.src.rpm

Related CVEs:

CVE-2024-26130

Description of changes:

[41.0.7-4]
- OLAM-878 Apply patch for CVE-2024-26130

ELSA-2025-13604 Moderate: Oracle Linux 10 python-requests security update

Oracle Linux Security Advisory ELSA-2025-13604

http://linux.oracle.com/errata/ELSA-2025-13604.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-requests-2.32.4-1.el10_0.noarch.rpm

aarch64:
python3-requests-2.32.4-1.el10_0.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/python-requests-2.32.4-1.el10_0.src.rpm

Related CVEs:

CVE-2024-47081

Description of changes:

[2.32.4-1]
- Update to 2.32.4
- Security fix for CVE-2024-47081: .netrc credentials leak via malicious URLs
Resolves: RHEL-105460

ELSA-2025-13429 Moderate: Oracle Linux 10 libxml2 security update

Oracle Linux Security Advisory ELSA-2025-13429

http://linux.oracle.com/errata/ELSA-2025-13429.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxml2-2.12.5-9.el10_0.x86_64.rpm
libxml2-devel-2.12.5-9.el10_0.x86_64.rpm
libxml2-static-2.12.5-9.el10_0.x86_64.rpm
python3-libxml2-2.12.5-9.el10_0.x86_64.rpm

aarch64:
libxml2-2.12.5-9.el10_0.aarch64.rpm
libxml2-devel-2.12.5-9.el10_0.aarch64.rpm
libxml2-static-2.12.5-9.el10_0.aarch64.rpm
python3-libxml2-2.12.5-9.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libxml2-2.12.5-9.el10_0.src.rpm

Related CVEs:

CVE-2025-32414
CVE-2025-32415

Description of changes:

[2.12.5-9]
- Fix CVE-2025-32415 (RHEL-100174)
- Fix CVE-2025-32414 (RHEL-99861)

ELSA-2025-13240 Moderate: Oracle Linux 10 glibc security update

Oracle Linux Security Advisory ELSA-2025-13240

http://linux.oracle.com/errata/ELSA-2025-13240.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
glibc-2.39-46.0.1.el10_0.x86_64.rpm
glibc-all-langpacks-2.39-46.0.1.el10_0.x86_64.rpm
glibc-benchtests-2.39-46.0.1.el10_0.x86_64.rpm
glibc-common-2.39-46.0.1.el10_0.x86_64.rpm
glibc-devel-2.39-46.0.1.el10_0.x86_64.rpm
glibc-doc-2.39-46.0.1.el10_0.noarch.rpm
glibc-gconv-extra-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-aa-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-af-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-agr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ak-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-am-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-an-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-anp-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ar-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-as-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ast-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ayc-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-az-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-be-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bem-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ber-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bg-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bhb-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bho-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bo-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-br-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-brx-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-bs-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-byn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ca-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ce-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-chr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ckb-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-cmn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-crh-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-cs-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-csb-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-cv-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-cy-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-da-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-de-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-doi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-dsb-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-dv-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-dz-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-el-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-en-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-eo-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-es-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-et-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-eu-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-fa-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ff-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-fi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-fil-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-fo-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-fr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-fur-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-fy-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ga-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-gbm-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-gd-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-gez-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-gl-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-gu-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-gv-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ha-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hak-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-he-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hif-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hne-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hsb-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ht-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hu-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-hy-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ia-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-id-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ig-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ik-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-is-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-it-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-iu-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ja-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ka-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-kab-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-kk-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-kl-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-km-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-kn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ko-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-kok-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ks-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ku-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-kv-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-kw-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ky-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-lb-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-lg-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-li-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-lij-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ln-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-lo-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-lt-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-lv-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-lzh-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mag-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mai-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mfe-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mg-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mhr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-miq-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mjw-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mk-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ml-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mni-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mnw-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ms-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-mt-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-my-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nan-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nb-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nds-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ne-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nhn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-niu-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nl-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-nso-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-oc-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-om-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-or-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-os-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-pa-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-pap-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-pl-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ps-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-pt-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-quz-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-raj-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-rif-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ro-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ru-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-rw-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sa-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sah-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sat-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sc-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sd-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-se-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sgs-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-shn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-shs-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-si-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sid-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sk-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sl-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sm-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-so-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sq-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ss-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ssy-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-st-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-su-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sv-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-sw-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-syr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-szl-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ta-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tcy-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-te-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tg-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-th-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-the-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ti-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tig-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tk-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tl-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tn-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-to-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tok-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tpi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tr-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ts-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-tt-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ug-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-uk-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-unm-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ur-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-uz-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-ve-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-vi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-wa-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-wae-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-wal-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-wo-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-xh-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-yi-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-yo-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-yue-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-yuw-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-zgh-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-zh-2.39-46.0.1.el10_0.x86_64.rpm
glibc-langpack-zu-2.39-46.0.1.el10_0.x86_64.rpm
glibc-locale-source-2.39-46.0.1.el10_0.x86_64.rpm
glibc-minimal-langpack-2.39-46.0.1.el10_0.x86_64.rpm
glibc-nss-devel-2.39-46.0.1.el10_0.x86_64.rpm
glibc-static-2.39-46.0.1.el10_0.x86_64.rpm
glibc-utils-2.39-46.0.1.el10_0.x86_64.rpm
libnsl-2.39-46.0.1.el10_0.x86_64.rpm
nss_db-2.39-46.0.1.el10_0.x86_64.rpm
nss_hesiod-2.39-46.0.1.el10_0.x86_64.rpm

aarch64:
glibc-2.39-46.0.1.el10_0.aarch64.rpm
glibc-all-langpacks-2.39-46.0.1.el10_0.aarch64.rpm
glibc-benchtests-2.39-46.0.1.el10_0.aarch64.rpm
glibc-common-2.39-46.0.1.el10_0.aarch64.rpm
glibc-devel-2.39-46.0.1.el10_0.aarch64.rpm
glibc-doc-2.39-46.0.1.el10_0.noarch.rpm
glibc-gconv-extra-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-aa-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-af-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-agr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ak-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-am-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-an-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-anp-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ar-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-as-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ast-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ayc-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-az-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-be-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bem-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ber-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bg-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bhb-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bho-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bo-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-br-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-brx-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-bs-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-byn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ca-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ce-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-chr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ckb-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-cmn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-crh-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-cs-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-csb-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-cv-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-cy-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-da-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-de-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-doi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-dsb-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-dv-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-dz-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-el-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-en-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-eo-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-es-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-et-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-eu-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-fa-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ff-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-fi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-fil-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-fo-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-fr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-fur-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-fy-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ga-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-gbm-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-gd-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-gez-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-gl-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-gu-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-gv-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ha-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hak-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-he-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hif-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hne-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hsb-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ht-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hu-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-hy-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ia-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-id-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ig-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ik-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-is-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-it-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-iu-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ja-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ka-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-kab-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-kk-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-kl-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-km-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-kn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ko-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-kok-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ks-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ku-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-kv-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-kw-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ky-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-lb-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-lg-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-li-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-lij-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ln-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-lo-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-lt-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-lv-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-lzh-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mag-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mai-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mfe-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mg-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mhr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-miq-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mjw-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mk-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ml-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mni-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mnw-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ms-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-mt-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-my-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nan-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nb-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nds-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ne-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nhn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-niu-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nl-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-nso-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-oc-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-om-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-or-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-os-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-pa-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-pap-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-pl-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ps-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-pt-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-quz-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-raj-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-rif-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ro-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ru-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-rw-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sa-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sah-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sat-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sc-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sd-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-se-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sgs-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-shn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-shs-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-si-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sid-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sk-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sl-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sm-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-so-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sq-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ss-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ssy-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-st-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-su-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sv-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-sw-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-syr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-szl-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ta-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tcy-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-te-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tg-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-th-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-the-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ti-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tig-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tk-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tl-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tn-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-to-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tok-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tpi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tr-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ts-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-tt-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ug-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-uk-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-unm-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ur-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-uz-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-ve-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-vi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-wa-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-wae-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-wal-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-wo-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-xh-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-yi-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-yo-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-yue-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-yuw-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-zgh-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-zh-2.39-46.0.1.el10_0.aarch64.rpm
glibc-langpack-zu-2.39-46.0.1.el10_0.aarch64.rpm
glibc-locale-source-2.39-46.0.1.el10_0.aarch64.rpm
glibc-minimal-langpack-2.39-46.0.1.el10_0.aarch64.rpm
glibc-nss-devel-2.39-46.0.1.el10_0.aarch64.rpm
glibc-static-2.39-46.0.1.el10_0.aarch64.rpm
glibc-utils-2.39-46.0.1.el10_0.aarch64.rpm
libnsl-2.39-46.0.1.el10_0.aarch64.rpm
nss_db-2.39-46.0.1.el10_0.aarch64.rpm
nss_hesiod-2.39-46.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/glibc-2.39-46.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-8058

Description of changes:

[2.39-46.0.1]
- Forward port Oracle changes.
Reviewed-by: David Faust [david.faust@oracle.com]
Oracle history:
July-15-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.39-43.0.1
- Forward port Oracle changes.
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
March-5-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.39-37.0.1
- Forward port Oracle changes to 2.39-37.
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
Jan-22-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.39-32.0.1
- Integration of relevant Oracle patches.
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]

[2.39-46]
- CVE-2025-8058: Double free in regcomp (RHEL-105324)

[2.39-45]
- Reduce spurious rebuilds while running tests (RHEL-95246)

[2.39-44]
- iconv: Do not create executable output files (RHEL-104151)

ELSA-2025-12662 Important: Oracle Linux 10 kernel security update

Oracle Linux Security Advisory ELSA-2025-12662

http://linux.oracle.com/errata/ELSA-2025-12662.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-abi-stablelists-6.12.0-55.25.1.0.1.el10_0.noarch.rpm
kernel-core-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-cross-headers-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-core-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-matched-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-core-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-extra-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-debug-uki-virt-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-devel-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-devel-matched-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-doc-6.12.0-55.25.1.0.1.el10_0.noarch.rpm
kernel-headers-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-modules-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-modules-core-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-modules-extra-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-tools-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-devel-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-addons-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
libperf-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
perf-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
python3-perf-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
rtla-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm
rv-6.12.0-55.25.1.0.1.el10_0.x86_64.rpm

aarch64:
kernel-cross-headers-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
kernel-headers-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
kernel-tools-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-devel-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
libperf-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
perf-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
python3-perf-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
rtla-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm
rv-6.12.0-55.25.1.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kernel-6.12.0-55.25.1.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-21727
CVE-2025-21928
CVE-2025-21929
CVE-2025-22020
CVE-2025-22085
CVE-2025-22113
CVE-2025-37890
CVE-2025-38052
CVE-2025-38086
CVE-2025-38087
CVE-2025-38264

Description of changes:

[6.12.0-55.25.1.0.1]
- nvme-pci: remove two deallocate zeroes quirks [Orabug: 37756650]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64

LibXML2, Thunderbird, Java, and more updates for RHEL

Amber-CLI, Go, Chromium, and more updates for SUSE

Kernel, GDK-Pixbuf2, OpenJDK, and more updates for Oracle Linux

ELBA-2025-20518 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update

ELSA-2025-20521 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

ELSA-2025-20521 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update

ELSA-2025-13315 Moderate: Oracle Linux 8 gdk-pixbuf2 security update

ELSA-2025-10861 Important: Oracle Linux 7 java-1.8.0-openjdk security update

ELBA-2025-20518 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update

ELSA-2025-13589 Moderate: Oracle Linux 8 kernel security update

ELSA-2025-20521 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

ELBA-2025-20518 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update

ELSA-2025-20520 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update

ELBA-2025-20517 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update

ELSA-2025-20520 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update

ELBA-2025-20517 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update

ELSA-2025-13578 Moderate: Oracle Linux 9 python3.11-setuptools security update

ELBA-2025-13612 Oracle Linux 9 passt bug fix and enhancement update

ELBA-2025-13616 Oracle Linux 9 cockpit bug fix and enhancement update

ELBA-2025-12867 Oracle Linux 9 kmod-kvdo bug fix and enhancement update

ELSA-2025-20520 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update

ELBA-2025-20517 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update

OLAMSA-2025-0013 Important: Oracle Linux 9 python3.11-cryptography security update

ELSA-2025-13604 Moderate: Oracle Linux 10 python-requests security update

ELSA-2025-13429 Moderate: Oracle Linux 10 libxml2 security update

ELSA-2025-13240 Moderate: Oracle Linux 10 glibc security update

ELSA-2025-12662 Important: Oracle Linux 10 kernel security update

Windows

Linux

macOS

Community