Oracle Linux Bug Fix Advisory ELBA-2026-2264-1 http://linux.oracle.com/errata/ELBA-2026-2264-1.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-abi-stablelists-4.18.0-553.104.1.0.1.el8_10.noarch.rpm kernel-core-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-cross-headers-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-debug-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-debug-core-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-debug-devel-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-debug-modules-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-debug-modules-extra-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-devel-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-doc-4.18.0-553.104.1.0.1.el8_10.noarch.rpm kernel-headers-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-modules-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-modules-extra-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-tools-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-tools-libs-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm kernel-tools-libs-devel-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm perf-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm python3-perf-4.18.0-553.104.1.0.1.el8_10.x86_64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.104.1.0.1.el8_10.src.rpm Description of changes: [4.18.0-553.104.1.0.1] - scsi: core: Restrict legal sdev_state transitions via sysfs (Uday Shankar) [Orabug: 37778230] [4.18.0-553.104.1] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.3 - Remove upstream reference during boot (Kevin Lyons) [Orabug: 34750652] - Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985772] [4.18.0-553.104.1] - Revert "audit: Avoid excessive dput/dget in audit_context setup and reset paths" (Alexandra Hájková) [RHEL-145856] [4.18.0-553.103.1] - ext4: fix use-after-free in ext4_orphan_cleanup (CKI Backport Bot) [RHEL-136000] {CVE-2022-50673} - ext4: lost matching-pair of trace in ext4_truncate (CKI Backport Bot) [RHEL-136000] {CVE-2022-50673} - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (CKI Backport Bot) [RHEL-136904] {CVE-2025-40269} [4.18.0-553.102.1] - nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec (CKI Backport Bot) [RHEL-144327] {CVE-2026-22998} - NFSv4: ensure the open stateid seqid doesn't go backwards (Scott Mayhew) [RHEL-121683] - audit: Avoid excessive dput/dget in audit_context setup and reset paths (Waiman Long) [RHEL-140776] - lockref: remove lockref_put_not_zero (Waiman Long) [RHEL-140776] - lockref: stop doing cpu_relax in the cmpxchg loop (Waiman Long) [RHEL-140776] - lockref: remove unused 'lockref_get_or_lock()' function (Waiman Long) [RHEL-140776] - lockref: Limit number of cmpxchg loop retries (Waiman Long) [RHEL-140776] - net: use dst_dev_rcu() in sk_setup_caps() (Hangbin Liu) [RHEL-129079] {CVE-2025-40170} - ipv6: use RCU in ip6_xmit() (Hangbin Liu) [RHEL-129004] {CVE-2025-40135} - ipv6: use RCU in ip6_output() (Hangbin Liu) [RHEL-128966] {CVE-2025-40158} - net: dst: introduce dst->dev_rcu (Hangbin Liu) [RHEL-128966] - net: Add locking to protect skb->dev access in ip_output (Hangbin Liu) [RHEL-128966] - net: dst: add four helpers to annotate data-races around dst->dev (Hangbin Liu) [RHEL-128966] - ipv4: use RCU protection in __ip_rt_update_pmtu() (Hangbin Liu) [RHEL-128966] {CVE-2025-21766} - net: gain ipv4 mtu when mtu is not locked (Hangbin Liu) [RHEL-128966] - ipv4: use RCU protection in ip_dst_mtu_maybe_forward() (Hangbin Liu) [RHEL-128966] - ipv4: add RCU protection to ip4_dst_hoplimit() (Hangbin Liu) [RHEL-128966] [4.18.0-553.101.1] - i40e: avoid redundant VF link state updates (CKI Backport Bot) [RHEL-141878] - NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid (CKI Backport Bot) [RHEL-140255] {CVE-2025-68349} - vsock/vmci: Clear the vmci transport packet properly when initializing it (CKI Backport Bot) [RHEL-137692] {CVE-2025-38403} - sched: Fix stop_one_cpu_nowait() vs hotplug (Herton R. Krzesinski) [RHEL-85625] _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
