- New version (109.0.5414.119).
- Add a workaround to make the https_proxy environment variable work (ALT#44986).
- Security fixes:
- CVE-2023-0471: Use after free in WebTransport.
- CVE-2023-0472: Use after free in WebRTC.
- CVE-2023-0473: Type Confusion in ServiceWorker API.
- CVE-2023-0474: Use after free in GuestView.
- Updated to kernel-5.14.0-247.el9:
+ ALSA: add AMD Pink Sardine DMIC driver
+ bnxt_re: Driver update to v6.0
+ CNB: genirq/msi: Use a named struct for PCI/MSI attributes and other PCI/MSI cleanups
+ CNB: rebase/update devlink for RHEL 9.2
+ config: Enable Security Path
+ gitlab-ci: use CI templates from production branch
+ nvme: fix SRCU protection of nvme_ns_head list
+ perf hv_gpci events fails with not supported error
+ powerpc/perf: Fix branch_filter support for multiple filters
+ [redhat] Enable CONFIG_GPIO_CDEV_V1
+ [s390]: RHEL9 - s390/kexec: fix ipl report address for kdump
+ Support for decoding CPER CXL protocol error sections
+ update Chrome and Mellanox platform drivers to v6.0
+ Update cpuidle to match Linux v6.0
- Updated to kernel-5.14.0-243.el9:
+ aquantia: Do not purge addresses when setting the number of rings
+ arm64: Update drivers/soc/tegra to v6.0
+ blk-cgroup: Fix potential lockup in blkcg_rstat_flush()
+ DG2 DRM Backport
+ drm/amd: Delay removal of the firmware framebuffer
+ Fix call trace from create_trace_option_files in kernel/trace/trace.c
+ Fix for CSB.V bit never becomes valid for NX Gzip job during LPAR migration
+ Follow-up fixes for nfsd for 9.2
+ fs/exec: switch timens when a task gets a new mm
+ ixgbe: Driver update for RHEL9.2
+ mailbox: qcom-ipcc: update qcom-ipcc
+ net: Backport data race annotations in the networking stack (part 2)
+ perf test: Fix "all PMU test" to skip parametrized events
+ perf tools: Fix empty version number when building outside of a git repo
+ powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe()
+ redhat: ignore rpminspect runpath report on urandom_read selftest binaries
+ rtla: Add License to spec file and sync summary text with upstream
+ [s390]: RHEL9 - dasd: fix no record found for raw_track_access
+ [s390]: RHEL9 - s390/cio: add dev_busid sysfs entry for each subchannel
+ selftests/bpf: test_stacktrace_build_id: use kprobe/urandom_read
+ Update intel_idle to upstream 6.0
+ vsock: backport latest commits for RHEL-9-2
+ xfrm: Fix oops in __xfrm_state_delete()
- New release (109.0).
- Security fixes:
+ CVE-2023-23597: Logic bug in process allocation allowed to read arbitrary files
+ CVE-2023-23598: Arbitrary file read from GTK drag and drop on Linux
+ CVE-2023-23599: Malicious command could be hidden in devtools output on Windows
+ CVE-2023-23600: Notification permissions persisted between Normal and Private Browsing on Android
+ CVE-2023-23601: URL being dragged from cross-origin iframe into same tab triggers navigation
+ CVE-2023-23602: Content Security Policy wasn't being correctly applied to WebSockets in WebWorkers
+ CVE-2023-23603: Calls to <code>console.log</code> allowed bypasing Content Security Policy via format directive
+ CVE-2023-23604: Creation of duplicate <code>SystemPrincipal</code> from less secure contexts
+ CVE-2023-23605: Memory safety bugs fixed in Firefox 109 and Firefox ESR 102.7
+ CVE-2023-23606: Memory safety bugs fixed in Firefox 109
- Updated to kernel-5.14.0-236.el9 (fixes: CVE-2022-2964, CVE-2022-4139):
+ [9.2] MEI Backport for Intel DG2 support
+ Add support for second RPL-S CPUID
+ ADL-N: Fix multiple packages shown on a single-package system
+ bpf, xdp: update to 6.0
+ cpu/hotplug: Fix some cpuhp->target issues
+ crypto: xts - drop xts_check_key()
+ drm/i915: fix TLB invalidation for Gen12 video and compute engines
+ During DLPAR operations in shared mode and dedicated mode with smt loop, device tree entries are not getting populated
+ fs: add mode_strip_sgid() helper
+ KVM: nVMX: Inject #GP, not #UD, if "generic" VMXON CR0/CR4 check fails
+ mmc: bcm2835: stop setting chan_config->slave_id
+ net: skb free reason sync part 2
+ net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup
+ net: vrf: determine the dst using the original ifindex for multicast
+ pNFS/filelayout: Fix coalescing test for single DS
+ Revert "nvme: warn about shared namespaces without CONFIG_NVME_MULTIPATH"
+ sched/core: Fix bugs in user_cpus_ptr handling
+ scsi: target: core: Fix hard lockup when executing a compare-and-write command
+ [SPR] CPU: AMX: Improve the init_fpstate setup code
+ tracing: Add linear buckets to histogram logic
+ vmxnet3: correctly report csum_level for encapsulated packet
+ vxlan: Backport vxlan file split
+ x86: remove vendor checks from prefer_mwait_c1_over_halt
- New version (109.0.5414.74).
- Security fixes:
- CVE-2023-0128: Use after free in Overview Mode.
- CVE-2023-0129: Heap buffer overflow in Network Service.
- CVE-2023-0130: Inappropriate implementation in Fullscreen API.
- CVE-2023-0131: Inappropriate implementation in iframe Sandbox.
- CVE-2023-0132: Inappropriate implementation in Permission prompts.
- CVE-2023-0133: Inappropriate implementation in Permission prompts.
- CVE-2023-0134: Use after free in Cart.
- CVE-2023-0135: Use after free in Cart.
- CVE-2023-0136: Inappropriate implementation in Fullscreen API.
- CVE-2023-0137: Heap buffer overflow in Platform Apps.
- CVE-2023-0138: Heap buffer overflow in libphonenumber.
- CVE-2023-0139: Insufficient validation of untrusted input in Downloads.
- CVE-2023-0140: Inappropriate implementation in File System API.
- CVE-2023-0141: Insufficient policy enforcement in CORS.
- Updated to kernel-5.14.0-232.el9:
+ arm64: kdump: Support crashkernel=X fall back to reserve region above DMA zones
+ cifs: fix NULL ptr dereference in refresh_mounts()
+ ice: Add devlink port split support
+ perf: Please add new perf-stat metricgroup "pipeline" for the AMD CPUs
+ s390: fix double free of GS and RI CBs on fork() failure
+ Use MFST GUID instead of AMD GUID
- Updated to kernel-5.14.0-229.el9 (fixes: CVE-2022-4129):
+ eBPF enhancements in kernel for Power
+ hwmon: (coretemp) Check for null before removing sysfs attrs
+ l2tp: Serialize access to sk_user_data with sk_callback_lock
+ RHEL: ALSA: add kunit module soc-utils-test to mod-internal.list
+ [s390]: RHEL9 - zfcp: fix double free of FSF request when qdio send fails
+ scsi: target: iscsi: Fix a race condition between login_work and the login thread
- New version (2.34.0).
- Feature guestfs:
+ Add programs used by libguestfs (thx Egor Ignatov).
+ Add raid modules and udev rules (thx Egor Ignatov).
+ Config guestfs.mk.example: remove features already required by guestfs (thx Egor Ignatov).
+ Feature moved into subpackage because it has many external dependencies.
- Feature kickstart:
+ Do not show rsync progress on serial console.
+ Ask mdadm to create device nodes in /dev.
- Misc:
+ Update busybox 1.35.0.
- Updated to kernel-5.14.0-226.el9 (fixes: CVE-2022-21505, CVE-2022-3628, CVE-2022-42896):
+ Backport Aspeed conversion to shmem
+ block: Do not reread partition table on exclusively open device
+ Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM
+ bonding: driver update to v6.1
+ CNB: ipsec: be explicit with XFRM offload direction
+ hwmon: (pwm-fan) Refactor fan power on/off
+ iavf driver update
+ igbvf: Driver Update
+ lib/irq_poll: Prevent softirq pending leak in irq_poll_cpu_dead()
+ lockdown: Fix kexec lockdown bypass with ima policy
+ macsec: backports from upstream
+ net: tls: rebase to 6.0+
+ net/tunnel: wait until all sk_user_data reader finish before releasing the sock
+ [s390]: RHEL9 - KVM: s390: pv: don't allow userspace to set the clock under PV
+ tipc: re-fetch skb cb after tipc_msg_validate
+ v5.18 backports for s390 expolines
+ wifi: brcmfmac: Fix potential buffer overflow in brcmf_fweh_event_worker()
+ wireless: update to v6.0
+ wireless update to v6.0: base with all dependencies
+ x86/bugs: Add late bug fixes to x86 speculation bugs
- Updated to kernel-5.14.0-219.el9 (fixes: CVE-2022-2873):
+ Add fixes to drivers/misc/sram to support NVIDIA Orin
+ Bring MD code the latest upstream
+ CNB: fortify: Provide a memcpy trap door for sharp corners
+ CNB: tracing/events: Add __vstring() and __assign_vstr() helper macros
+ crypto: backport wireguard s390 fix
+ hyper-v: Video and HID driver updates for RHEL-9.2
+ i2c: ismt: Fix an out-of-bounds bug in ismt_access()
+ kernfs: switch global kernfs_rwsem lock to per-fs lock
+ powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address
+ redhat/configs: Enable CONFIG_CRYPTO_CURVE25519
+ Redo missing uapi/linux/stddef.h: Add include guards
+ vmxnet3: driver update to v6.0
+ x86/fpu: Drop fpregs lock before inheriting FPU permissions
- New version (3.86).
- Set nssckbi version number to 2.60.
- Certificate Authority Changes:
+ Remove CN=EC-ACC
+ Remove CN=Network Solutions Certificate Authority
+ Remove CN=Staat der Nederlanden EV Root CA
+ Remove CN=SwissSign Platinum CA - G2
- New release (108.0).
- Security fixes:
+ CVE-2022-46871: libusrsctp library out of date
+ CVE-2022-46872: Arbitrary file read from a compromised content process
+ CVE-2022-46873: Firefox did not implement the CSP directive unsafe-hashes
+ CVE-2022-46874: Drag and Dropped Filenames could have been truncated to malicious extensions
+ CVE-2022-46875: Download Protections were bypassed by .atloc and .ftploc files on Mac OS
+ CVE-2022-46877: Fullscreen notification bypass
+ CVE-2022-46878: Memory safety bugs fixed in Firefox 108 and Firefox ESR 102.6
+ CVE-2022-46879: Memory safety bugs fixed in Firefox 108
- Updated to kernel-5.14.0-207.el9:
+ [9.2] DRM backport part 2: main backport
+ block: fix direct io device mapper errors
+ CNB: ptp: introduce helpers to adjust by scaled parts per million
+ dt-bindings: gpio: gpio-vf610: Updates
+ dt-bindings: serial: fsl-lpuart: Updates
+ fs: allow cross-vfsmount reflink/dedupe
+ fuse: add file_modified() to fallocate
+ ice: Driver Update to 6.0
+ ISH updates and bug fixes
+ Merge commit '4fc3237d0cf85530cfd3c73be94441ea20ab2df3'
+ mm: migrate: fix THP's mapcount on isolation
+ ping: convert to RCU lookups, get rid of rwlock
+ Rebase selftests/rseq to v6.0
+ redhat/configs: Change the amd-pstate driver from builtin to loadable
+ skx_common: use driver decoder when possible
+ spec: Update bpftool versioning scheme
+ x86/sgx: update sgx subsystem upto v6.0
+ Various changes and improvements that are poorly described in merge.
- New version (108.0.5359.71).
- Use LLVM 15.
- Security fixes:
- CVE-2022-4174: Type Confusion in V8.
- CVE-2022-4175: Use after free in Camera Capture.
- CVE-2022-4176: Out of bounds write in Lacros Graphics.
- CVE-2022-4177: Use after free in Extensions.
- CVE-2022-4178: Use after free in Mojo.
- CVE-2022-4179: Use after free in Audio.
- CVE-2022-4180: Use after free in Mojo.
- CVE-2022-4181: Use after free in Forms.
- CVE-2022-4182: Inappropriate implementation in Fenced Frames.
- CVE-2022-4183: Insufficient policy enforcement in Popup Blocker.
- CVE-2022-4184: Insufficient policy enforcement in Autofill.
- CVE-2022-4185: Inappropriate implementation in Navigation.
- CVE-2022-4186: Insufficient validation of untrusted input in Downloads.
- CVE-2022-4187: Insufficient policy enforcement in DevTools.
- CVE-2022-4188: Insufficient validation of untrusted input in CORS.
- CVE-2022-4189: Insufficient policy enforcement in DevTools.
- CVE-2022-4190: Insufficient data validation in Directory.
- CVE-2022-4191: Use after free in Sign-In.
- CVE-2022-4192: Use after free in Live Caption.
- CVE-2022-4193: Insufficient policy enforcement in File System API.
- CVE-2022-4194: Use after free in Accessibility.
- CVE-2022-4195: Insufficient policy enforcement in Safe Browsing.
- Updated to kernel-5.14.0-200.el9:
+ arm64: kdump: Reimplement crashkernel=X fixup
+ bnx2x: driver updates
+ BPF and XDP rebase to v5.18
+ ipvlan/macvlan: phase-1 backports for RHEL-9.2
+ net: raw: Convert to raw sockets to RCU.
+ qed*: driver update
+ soc: imx: add i.MX93 SRC power domain and media blk ctrl drivers
- Updated to kernel-5.14.0-198.el9:
+ Add fixes to drivers/firmware for NVIDIA Orin support
+ atlantic: fix deadlock at aq_nic_stop
+ CNB: net: add skb_[inner_]tcp_all_headers helpers
+ crypto: ccp - Add support for new CCP/PSP device ID
+ megaraid_sas: driver update
+ Merge remote-tracking branch 'origin/merge-requests/1372' into bz2115520
+ mm, oom: do not trigger out_of_memory from the #PF
+ powerpc/pseries: Enable POWER Architecture Platform Watchdog Driver
+ sched: Persistent user requested cpu affinity
+ Scheduler updates for 9.2
+ scsi: mpi3mr: driver update
+ scsi: mpt3sas: driver update
+ tcp: BIG TCP implementation
+ tg3: Driver update for RHEL-9.2.0
+ Update drivers/powercap to enable support for Arm SystemReady IR platforms
- New version (107.0.5304.110).
- Security fixes:
- CVE-2022-3885: Use after free in V8.
- CVE-2022-3886: Use after free in Speech Recognition.
- CVE-2022-3887: Use after free in Web Workers.
- CVE-2022-3888: Use after free in WebCodecs.
- CVE-2022-3889: Type Confusion in V8.
- CVE-2022-3890: Heap buffer overflow in Crashpad.
- New release (107.0).
- Security fixes:
+ CVE-2022-45403: Service Workers might have learned size of cross-origin media files
+ CVE-2022-45404: Fullscreen notification bypass
+ CVE-2022-45405: Use-after-free in InputStream implementation
+ CVE-2022-45406: Use-after-free of a JavaScript Realm
+ CVE-2022-45407: Loading fonts on workers was not thread-safe
+ CVE-2022-45408: Fullscreen notification bypass via windowName
+ CVE-2022-45409: Use-after-free in Garbage Collection
+ CVE-2022-45410: ServiceWorker-intercepted requests bypassed SameSite cookie policy
+ CVE-2022-45411: Cross-Site Tracing was possible via non-standard override headers
+ CVE-2022-45412: Symlinks may resolve to partially uninitialized buffers
+ CVE-2022-45413: SameSite=Strict cookies could have been sent cross-site via intent URLs
+ CVE-2022-40674: Use-after-free vulnerability in expat
+ CVE-2022-45415: Downloaded file may have been saved with malicious extension
+ CVE-2022-45416: Keystroke Side-Channel Leakage
+ CVE-2022-45417: Service Workers in Private Browsing Mode may have been written to disk
+ CVE-2022-45418: Custom mouse cursor could have been drawn over browser UiI
+ CVE-2022-45419: Deleting a security exception did not take effect immediately
+ CVE-2022-45420: Iframe contents could be rendered outside the iframe
+ CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5
