[LU-17220] kernel update [RHEL7.9 3.10.0-1160.102.1.el7] Created: 24/Oct/23  Updated: 27/Oct/23

Status: Open
Project: Lustre
Component/s: None
Affects Version/s: Lustre 2.16.0, Lustre 2.15.4
Fix Version/s: None

Type: Improvement Priority: Minor
Reporter: Jian Yu Assignee: Jian Yu
Resolution: Unresolved Votes: 0
Labels: None

Issue Links:
Related
is related to LU-17112 kernel update [RHEL7.9 3.10.0-1160.99... Resolved
Severity: 3
Rank (Obsolete): 9223372036854775807

 Description   

Security Fix(es):

  • kernel: net/sched: cls_u32 component reference counter leak if tcf_change_indev() fails (CVE-2023-3609)
  • kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation (CVE-2023-32233)
  • kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval() (CVE-2023-35001)

Bug Fix(es):

  • Low memory deadlock with md devices and external (imsm) metadata handling (BZ#1703180)
  • cifs: memory leak in smb2_query_symlink (BZ#2166706)
  • bnxt_en: panic in bnxt_tx_int Redux (BZ#2175062)
  • NFS client loop in BIND_CONN_TO_SESSION (BZ#2219604)

https://access.redhat.com/errata/product/69/ver=/rhel---7/x86_64/RHSA-2023:5622

 Comments   
Comment by Gerrit Updater [ 24/Oct/23 ]

"Jian Yu <yujian@whamcloud.com>" uploaded a new patch: https://review.whamcloud.com/c/fs/lustre-release/+/52819
Subject: LU-17220 kernel: update RHEL 7.9 [3.10.0-1160.102.1.el7]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 1feea616fd7addf842afdc836e7f32686ea159ae

Generated at Sat Feb 10 03:33:38 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.