[El-errata] ELSA-2014-3037 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update

Sat Jun 7 07:35:30 PDT 2014

Oracle Linux Security Advisory ELSA-2014-3037

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
kernel-uek-firmware-3.8.13-35.1.1.el6uek.noarch.rpm
kernel-uek-doc-3.8.13-35.1.1.el6uek.noarch.rpm
kernel-uek-3.8.13-35.1.1.el6uek.x86_64.rpm
kernel-uek-devel-3.8.13-35.1.1.el6uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-35.1.1.el6uek.x86_64.rpm
kernel-uek-debug-3.8.13-35.1.1.el6uek.x86_64.rpm
dtrace-modules-3.8.13-35.1.1.el6uek-0.4.3-4.el6.x86_64.rpm
dtrace-modules-headers-0.4.3-4.el6.x86_64.rpm
dtrace-modules-provider-headers-0.4.3-4.el6.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-3.8.13-35.1.1.el6uek.src.rpm
http://oss.oracle.com/ol6/SRPMS-updates/dtrace-modules-3.8.13-35.1.1.el6uek-0.4.3-4.el6.src.rpm

Description of changes:

kernel-uek
[3.8.13-35.1.1.el6uek]
- futex: Make lookup_pi_state more robust (Thomas Gleixner)  [Orabug: 
18918552]  {CVE-2014-3153}
- futex: Always cleanup owner tid in unlock_pi (Thomas Gleixner) 
[Orabug: 18918552]  {CVE-2014-3153}
- futex: Validate atomic acquisition in futex_lock_pi_atomic() (Thomas 
Gleixner)  [Orabug: 18918552]  {CVE-2014-3153}
- futex: Forbid uaddr == uaddr2 in futex_requeue(..., requeue_pi=1) 
(Thomas Gleixner)  [Orabug: 18918552]  {CVE-2014-3153} {CVE-2014-3153}