Oracle Linux 6272 Published by

Oracle Linux has been updated with multiple updates, including a tzdata bug fix and an update to the unbreakable Enterprise kernel:

ELBA-2024-8805 Oracle Linux 7 tzdata bug fix and enhancement update (aarch64)
ELSA-2024-12845 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
ELBA-2024-12846 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
ELSA-2024-12845 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
ELSA-2024-12845 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update




ELBA-2024-8805 Oracle Linux 7 tzdata bug fix and enhancement update (aarch64)


Oracle Linux Bug Fix Advisory ELBA-2024-8805

http://linux.oracle.com/errata/ELBA-2024-8805.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
tzdata-2024b-2.el7.noarch.rpm
tzdata-java-2024b-2.el7.noarch.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//tzdata-2024b-2.el7.src.rpm

Description of changes:

[2024b-2]
- Harden against links to removed zones (RHEL-60063)

[2024b-1]
- Update to tzdata-2024b
- Improve historical data for Mexico, Mongolia, and Portugal.
- System V names are now obsolescent.
- The main data form now uses %z.
- The code now conforms to RFC 8536 for early timestamps.
- Support POSIX.1-2024, which removes asctime_r and ctime_r.
- Assume POSIX.2-1992 or later for shell scripts.
- SUPPORT_C89 now defaults to 1.
- Include two upstream patches for month names as in April vs Apr.

[2024a-2]
- Add java patch to fix incorrect calculations for
Africa/Casablanca starting in 2027. (RHEL-26860)



ELSA-2024-12845 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2024-12845

http://linux.oracle.com/errata/ELSA-2024-12845.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.336.5.3.1.el7uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.336.5.3.1.el7uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.336.5.3.1.el7uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.336.5.3.1.el7uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.336.5.3.1.el7uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.336.5.3.1.el7uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.336.5.3.1.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.336.5.3.1.el7uek.x86_64.rpm

aarch64:
kernel-uek-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.336.5.3.1.el7uek.noarch.rpm
kernel-uek-tools-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm
kernel-uek-tools-libs-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm
perf-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm
python-perf-5.4.17-2136.336.5.3.1.el7uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.336.5.3.1.el7uek.src.rpm

Related CVEs:

CVE-2024-26734
CVE-2024-47674

Description of changes:

[5.4.17-2136.336.5.3.1.el8uek]
- mm: avoid leaving partial pfn mappings around in error case (Linus Torvalds) [Orabug: 37311329] {CVE-2024-47674}
- mm: add remap_pfn_range_notrack (Christoph Hellwig) [Orabug: 37311329] {CVE-2024-47674}
- mm/memory.c: make remap_pfn_range() reject unaligned addr (Alex Zhang) [Orabug: 37311329] {CVE-2024-47674}
- mm: fix ambiguous comments for better code readability (chenqiwu) [Orabug: 37311329] {CVE-2024-47674}
- mm: clarify a confusing comment for remap_pfn_range() (WANG Wenhu) [Orabug: 37311329] {CVE-2024-47674}
- devlink: fix possible use-after-free and memory leaks in devlink_init() (Vasiliy Kovalev) [Orabug: 37311325] {CVE-2024-26734}



ELBA-2024-12846 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update


Oracle Linux Bug Fix Advisory ELBA-2024-12846

http://linux.oracle.com/errata/ELBA-2024-12846.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-core-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-debug-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-devel-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-doc-5.15.0-302.167.6.1.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-container-5.15.0-302.167.6.1.el8uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-302.167.6.1.el8uek.x86_64.rpm

aarch64:
bpftool-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-core-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-debug-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-debug-core-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-debug-modules-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-debug-modules-extra-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-devel-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-doc-5.15.0-302.167.6.1.el8uek.noarch.rpm
kernel-uek-modules-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-modules-extra-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-container-5.15.0-302.167.6.1.el8uek.aarch64.rpm
kernel-uek-container-debug-5.15.0-302.167.6.1.el8uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.15.0-302.167.6.1.el8uek.src.rpm

Description of changes:

[5.15.0-302.167.6.1.el8uek]
- blk-cgroup: Properly propagate the iostat update up the hierarchy (Waiman Long) [Orabug: 37311274]
- blk-cgroup: fix list corruption from reorder of WRITE ->lqueued (Ming Lei) [Orabug: 37311274]
- blk-cgroup: fix list corruption from resetting io stat (Ming Lei) [Orabug: 37311274]
- blk-cgroup: Flush stats before releasing blkcg_gq (Ming Lei) [Orabug: 37311274]
- blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats() (Waiman Long) [Orabug: 37311274]
- blk-cgroup: don't update io stat for root cgroup (Ming Lei) [Orabug: 37311274]
- blk-cgroup: Optimize blkcg_rstat_flush() (Waiman Long) [Orabug: 37311274]
- blk-cgroup: Return -ENOMEM directly in blkcg_css_alloc() error path (Waiman Long) [Orabug: 37311274]



ELSA-2024-12845 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2024-12845

http://linux.oracle.com/errata/ELSA-2024-12845.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-5.4.17-2136.336.5.3.1.el8uek.x86_64.rpm
kernel-uek-container-5.4.17-2136.336.5.3.1.el8uek.x86_64.rpm
kernel-uek-container-debug-5.4.17-2136.336.5.3.1.el8uek.x86_64.rpm
kernel-uek-debug-5.4.17-2136.336.5.3.1.el8uek.x86_64.rpm
kernel-uek-debug-devel-5.4.17-2136.336.5.3.1.el8uek.x86_64.rpm
kernel-uek-devel-5.4.17-2136.336.5.3.1.el8uek.x86_64.rpm
kernel-uek-doc-5.4.17-2136.336.5.3.1.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.336.5.3.1.el8uek.src.rpm

Related CVEs:

CVE-2024-26734
CVE-2024-47674

Description of changes:

[5.4.17-2136.336.5.3.1.el8uek]
- mm: avoid leaving partial pfn mappings around in error case (Linus Torvalds) [Orabug: 37311329] {CVE-2024-47674}
- mm: add remap_pfn_range_notrack (Christoph Hellwig) [Orabug: 37311329] {CVE-2024-47674}
- mm/memory.c: make remap_pfn_range() reject unaligned addr (Alex Zhang) [Orabug: 37311329] {CVE-2024-47674}
- mm: fix ambiguous comments for better code readability (chenqiwu) [Orabug: 37311329] {CVE-2024-47674}
- mm: clarify a confusing comment for remap_pfn_range() (WANG Wenhu) [Orabug: 37311329] {CVE-2024-47674}
- devlink: fix possible use-after-free and memory leaks in devlink_init() (Vasiliy Kovalev) [Orabug: 37311325] {CVE-2024-26734}



ELSA-2024-12845 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update


Oracle Linux Security Advisory ELSA-2024-12845

http://linux.oracle.com/errata/ELSA-2024-12845.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
kernel-uek-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-debug-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-debug-devel-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-devel-5.4.17-2136.336.5.3.1.el8uek.aarch64.rpm
kernel-uek-doc-5.4.17-2136.336.5.3.1.el8uek.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//kernel-uek-5.4.17-2136.336.5.3.1.el8uek.src.rpm

Related CVEs:

CVE-2024-26734
CVE-2024-47674

Description of changes:

[5.4.17-2136.336.5.3.1.el8uek]
- mm: avoid leaving partial pfn mappings around in error case (Linus Torvalds) [Orabug: 37311329] {CVE-2024-47674}
- mm: add remap_pfn_range_notrack (Christoph Hellwig) [Orabug: 37311329] {CVE-2024-47674}
- mm/memory.c: make remap_pfn_range() reject unaligned addr (Alex Zhang) [Orabug: 37311329] {CVE-2024-47674}
- mm: fix ambiguous comments for better code readability (chenqiwu) [Orabug: 37311329] {CVE-2024-47674}
- mm: clarify a confusing comment for remap_pfn_range() (WANG Wenhu) [Orabug: 37311329] {CVE-2024-47674}
- devlink: fix possible use-after-free and memory leaks in devlink_init() (Vasiliy Kovalev) [Orabug: 37311325] {CVE-2024-26734}