| bpftool-3.10.0-1160.49.1.el7.x86_64
[8.5 MiB] |
Changelog
by Rado Vrbovsky (2021-11-09):
- NFS: Fix interrupted slots by sending a solo SEQUENCE operation (Scott Mayhew) [2007465]
|
| bpftool-3.10.0-1160.45.1.el7.x86_64
[8.5 MiB] |
Changelog
by Rado Vrbovsky (2021-09-24):
- CI: handle RT branches in a single config (Veronika Kabatova)
- CI: Drop private CI config (Veronika Kabatova)
- CI: extend template use (Veronika Kabatova)
- mm: page_counter: mitigate consequences of a page_counter underflow (Scott Wood) [2000973]
- KVM: nSVM: always intercept VMLOAD/VMSAVE when nested(CVE-2021-3656) (Jon Maloy) [1985425] {CVE-2021-3656}
- KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (Marcelo Tosatti) [1991856]
- KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl (CVE-2021-3653) (Jon Maloy) [1985408] {CVE-2021-3653}
- scsi: qedf: Initiate cleanup for ELS commands as well (Nilesh Javali) [1982702]
|
| bpftool-3.10.0-1160.42.2.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-08-31):
- net_sched: cls_route: remove the right filter from hashtable (Ivan Vecera) [1992926]
|
| bpftool-3.10.0-1160.41.1.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-08-16):
- ixgbe: fix warning: sysfs: cannot create duplicate filename (Daniel Vacek) [1915449]
|
| bpftool-3.10.0-1160.36.2.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-07-07):
- seq_file: Disallow extremely large seq buffer allocations (Ian Kent) [1975251]
|
| bpftool-3.10.0-1160.31.1.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-05-26):
- mm/userfaultfd: do not access vma->vm_mm after calling handle_userfault() (Philipp Rudo) [1917840]
- scsi: qla2xxx: Fix the call trace for flush workqueue (Nilesh Javali) [1937945]
- futex: Handle faults correctly for PI futexes (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Provide and use pi_state_update_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Replace pointless printk in fixup_owner() (Donghai Qiao) [1935108] {CVE-2021-3347}
- futex: Ensure the correct return value from futex_lock_pi() (Donghai Qiao) [1935108] {CVE-2021-3347}
- scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry() (Nilesh Javali) [1933784]
- scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (Philipp Rudo) [1917839]
- net: netfilter: Avoid deadlock when loading logger backend (Phil Sutter) [1858329]
- net: netfilter: Link nfnetlink into bzImage (Phil Sutter) [1858329]
|
| bpftool-3.10.0-1160.25.1.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-04-13):
- redhat: Enable CKI RT verification for kernel-private (Juri Lelli)
- redhat: Enable CKI RT verification (Juri Lelli)
- RDMA/ipoib: Remove racy Subnet Manager sendonly join checks (Honggang Li) [1922460]
- net: sched: protect against stack overflow in TC act_mirred (Davide Caratti) [1916682]
- floppy: check_events callback should not return a negative number (Jay Shin) [1928576]
- floppy: fix lock_fdc() signal handling (Jay Shin) [1928576]
- ipv6: clean up anycast when an interface is destroyed (Xin Long) [1917700]
- virtio_net: fix virtnet_open and virtnet_probe competing for try_fill_recv (Laurent Vivier) [1895319]
|
| bpftool-3.10.0-1160.24.1.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-03-25):
- scsi: iscsi: Verify lengths on passthrough PDUs (Chris Leech) [1930826] {CVE-2021-27365}
- scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE (Chris Leech) [1930849] {CVE-2021-27363}
- scsi: iscsi: Restrict sessions and handles to admin capabilities (Chris Leech) [1930807] {CVE-2021-27364}
- redhat: add CI file for kernel-private (Bruno Meneguele)
|
| bpftool-3.10.0-1160.21.1.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-02-22):
- [pinctrl] devicetree: Avoid taking direct reference to device name string (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [pinctrl] Delete an error message (Aristeu Rozanski) [1922902] {CVE-2020-0427}
- [tty] vt: keyboard, reorder user buffer handling in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, rename i to kb_func in vt_do_kdgkb_ioctl (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, extend func_buf_lock to readers (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: keyboard, simplify vt_kdgkbsent (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] keyboard, do not speculate on func_table index (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [tty] vt: fix write/write race in ioctl(KDSKBSENT) handler (Aristeu Rozanski) [1896775] {CVE-2020-25656}
- [iommu] amd: return error on real irq alloc failure (Jerry Snitselaar) [1918273]
- [iommu] amd: Set DTE[IntTabLen] to represent 512 IRTEs (Jerry Snitselaar) [1921187]
- [iommu] amd: Increase interrupt remapping table limit to 512 entries (Jerry Snitselaar) [1921187]
- [scsi] lpfc: Fix LUN loss after cable pull (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix NVMe rport deregister and registration during ADISC (Dick Kennedy) [1875961]
- [scsi] lpfc: Fix ADISC reception terminating login state if a NVME target (Dick Kennedy) [1875961]
- [netdrv] i40e: revert "i40e: don't report link up for a VF who hasn't enabled queues" (Stefan Assmann) [1901064]
|
| bpftool-3.10.0-1160.15.2.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2021-01-21):
- [fs] nfs: Fix security label length not being reset (Dave Wysochanski) [1917504]
|
| bpftool-3.10.0-1160.11.1.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2020-11-30):
- [netdrv] hdlc_ppp: add range checks in ppp_cp_parse_cr() (Guillaume Nault) [1882078] {CVE-2020-25643}
- [fs] ext4: fix potential negative array index in do_split() (Pavel Reichl) [1846164] {CVE-2020-14314}
- [fs] nfsd: apply umask on fs without ACL support ("J. Bruce Fields") [1870215] {CVE-2020-24394}
- [kernel] watchdog/core: Remove the park_in_progress obfuscation (Waiman Long) [1860661]
- [mm] swap_slots: recheck cache->slots_ret under spin_lock_irq() protection (Rafael Aquini) [1862915]
- [netdrv] ethernet: i40e: Set RX_ONLY mode for unicast promiscuous on VLAN (Stefan Assmann) [1845677]
- [infiniband] mlx5: Fix use-after-free in dereg_mr() (Alaa Hleihel) [1880184]
|
| bpftool-3.10.0-1160.6.1.el7.x86_64
[8.5 MiB] |
Changelog
by Augusto Caringi (2020-10-21):
- [net] netfilter: nf_queue: place bridge physports into queue_entry struct (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: do not release refcouts until nf_reinject is done (Florian Westphal) [1885682]
- [net] netfilter: nf_queue: make nf_queue_entry_release_refs static (Florian Westphal) [1885682]
- [net] bluetooth: l2cap: Fix calling sk_filter on non-socket based channel (Gopal Tiwari) [1888253] {CVE-2020-12351}
- [net] bluetooth: a2mp: Fix not initializing all members (Gopal Tiwari) [1888797] {CVE-2020-12352}
|
| bpftool-3.10.0-1127.19.1.el7.x86_64
[8.4 MiB] |
Changelog
by Augusto Caringi (2020-08-11):
- [mm] memcg: fix NULL pointer dereference in __mem_cgroup_usage_unregister_event (Waiman Long) [1867441 1842715]
- [mm] memcg: only free spare array when readers are done (Waiman Long) [1867441 1842715]
- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1866971 1862840]
- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1866971 1862840]
- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1866971 1862840]
|
| bpftool-3.10.0-1127.18.2.el7.x86_64
[8.4 MiB] |
Changelog
by Augusto Caringi (2020-07-20):
- [crypto] pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1837429 1837430] {CVE-2020-10713}
- [kernel] Move to dual-signing to split signing keys up better (pjones) [1837429 1837430] {CVE-2020-10713}
|
| bpftool-3.10.0-1062.12.1.el7.x86_64
[8.2 MiB] |
Changelog
by CentOS Sources (2020-02-04):
- Apply debranding changes
|