<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
</head>
<body bgcolor="#ffffff" text="#000000">
<tt>Oracle Linux Security Advisory ELSA-2011-0927<br>
<br>
<a class="moz-txt-link-freetext"
href="https://rhn.redhat.com/errata/RHSA-2011-0927.html">https://rhn.redhat.com/errata/RHSA-2011-0927.html</a><br>
<br>
The following updated rpms for Oracle Linux 5 have been uploaded
to the Unbreakable Linux Network:<br>
<br>
i386:<br>
kernel-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
kernel-PAE-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
kernel-PAE-devel-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
kernel-debug-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
kernel-debug-devel-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
kernel-devel-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
kernel-doc-2.6.18-238.19.1.0.1.el5.noarch.rpm<br>
kernel-headers-2.6.18-238.19.1.0.1.el5.i386.rpm<br>
kernel-xen-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
kernel-xen-devel-2.6.18-238.19.1.0.1.el5.i686.rpm<br>
<br>
x86_64:<br>
kernel-2.6.18-238.19.1.0.1.el5.x86_64.rpm<br>
kernel-debug-2.6.18-238.19.1.0.1.el5.x86_64.rpm<br>
kernel-debug-devel-2.6.18-238.19.1.0.1.el5.x86_64.rpm<br>
kernel-devel-2.6.18-238.19.1.0.1.el5.x86_64.rpm<br>
kernel-doc-2.6.18-238.19.1.0.1.el5.noarch.rpm<br>
kernel-headers-2.6.18-238.19.1.0.1.el5.x86_64.rpm<br>
kernel-xen-2.6.18-238.19.1.0.1.el5.x86_64.rpm<br>
kernel-xen-devel-2.6.18-238.19.1.0.1.el5.x86_64.rpm<br>
<br>
ia64:<br>
kernel-2.6.18-238.19.1.0.1.el5.ia64.rpm<br>
kernel-debug-2.6.18-238.19.1.0.1.el5.ia64.rpm<br>
kernel-debug-devel-2.6.18-238.19.1.0.1.el5.ia64.rpm<br>
kernel-devel-2.6.18-238.19.1.0.1.el5.ia64.rpm<br>
kernel-doc-2.6.18-238.19.1.0.1.el5.noarch.rpm<br>
kernel-headers-2.6.18-238.19.1.0.1.el5.ia64.rpm<br>
kernel-xen-2.6.18-238.19.1.0.1.el5.ia64.rpm<br>
kernel-xen-devel-2.6.18-238.19.1.0.1.el5.ia64.rpm<br>
<br>
<br>
SRPMS:<br>
<a class="moz-txt-link-freetext"
href="http://oss.oracle.com/ol5/SRPMS-updates/kernel-2.6.18-238.19.1.0.1.el5.src.rpm">http://oss.oracle.com/ol5/SRPMS-updates/kernel-2.6.18-238.19.1.0.1.el5.src.rpm</a><br>
<br>
The following packages were rebuilt to be in sync with the updated
kernel version (no changes other than updating the version
number): <br>
<br>
i386:<br>
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.i686.rpm<br>
oracleasm-2.6.18-238.19.1.0.1.el5PAE-2.0.5-1.el5.i686.rpm<br>
oracleasm-2.6.18-238.19.1.0.1.el5xen-2.0.5-1.el5.i686.rpm<br>
oracleasm-2.6.18-238.19.1.0.1.el5debug-2.0.5-1.el5.i686.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.i686.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5PAE-1.4.8-2.el5.i686.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5xen-1.4.8-2.el5.i686.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5debug-1.4.8-2.el5.i686.rpm<br>
<br>
x86_64:<br>
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.x86_64.rpm<br>
oracleasm-2.6.18-238.19.1.0.1.el5xen-2.0.5-1.el5.x86_64.rpm<br>
oracleasm-2.6.18-238.19.1.0.1.el5debug-2.0.5-1.el5.x86_64.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.x86_64.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5xen-1.4.8-2.el5.x86_64.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5debug-1.4.8-2.el5.x86_64.rpm<br>
<br>
ia64:<br>
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.ia64.rpm<br>
oracleasm-2.6.18-238.19.1.0.1.el5xen-2.0.5-1.el5.ia64.rpm<br>
oracleasm-2.6.18-238.19.1.0.1.el5debug-2.0.5-1.el5.ia64.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.ia64.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5xen-1.4.8-2.el5.ia64.rpm<br>
ocfs2-2.6.18-238.19.1.0.1.el5debug-1.4.8-2.el5.ia64.rpm<br>
<br>
<br>
SRPMS:<br>
<a class="moz-txt-link-freetext"
href="http://oss.oracle.com/el5/SRPMS-updates/oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.src.rpm">http://oss.oracle.com/el5/SRPMS-updates/oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.src.rpm</a><br>
<a class="moz-txt-link-freetext"
href="http://oss.oracle.com/el5/SRPMS-updates/ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.src.rpm">http://oss.oracle.com/el5/SRPMS-updates/ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.src.rpm</a><br>
<br>
Description of changes:<br>
<br>
[2.6.18-238.19.1.0.1.el5]<br>
- [scsi] remove printk's when doing I/O to a dead device (John
Sobecki, Chris Mason) [orabug 12342275]<br>
- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin)
[orabug 12561346]<br>
- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug
12404566]<br>
- bonding: reread information about speed and duplex when
interface goes up (John Haxby) [orabug 11890822]<br>
- [scsi] fix scsi hotplug and rescan race [orabug 10260172]<br>
- fix filp_close() race (Joe Jin) [orabug 10335998]<br>
- fix missing aio_complete() in end_io (Joel Becker) [orabug
10365195]<br>
- make xenkbd.abs_pointer=1 by default [orabug 67188919]<br>
- [xen] check to see if hypervisor supports memory reservation
change<br>
(Chuck Anderson) [orabug 7556514]<br>
- [net] Enable entropy for
bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki) [orabug
10315433]<br>
- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043]
[bz 7258]<br>
- [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug
6086839]<br>
- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]<br>
- [rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572,
9344105]<br>
RDS: Fix BUG_ONs to not fire when in a tasklet<br>
ipoib: Fix lockup of the tx queue<br>
RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)<br>
RDS: Properly unmap when getting a remote access error (Tina
Yang)<br>
RDS: Fix locking in rds_send_drop_to()<br>
- [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug
8746702]<br>
- [nfs] too many getattr and access calls after direct I/O [orabug
9348191]<br>
- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck
Anderson) [orabug 9107465]<br>
- [xen] PV guest with FC HBA hangs during shutdown (Chuck
Anderson) [orabug 9764220]<br>
- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug
9450615]<br>
- fix overcommit memory to use percpu_counter for el5 (KOSAKI
Motohiro,Guru Anbalagane) [orabug 6124033]<br>
- [ipmi] make configurable timeouts for kcs of ipmi [orabug
9752208]<br>
- [ib] fix memory corruption (Andy Grover) [orabug 9972346]<br>
- [aio] patch removes limit on number of retries (Srinivas Eeda)
[orabug 10044782]<br>
- [loop] Do not call loop_unplug for not configured loop device
(orabug 10314497)<br>
<br>
[2.6.18-238.19.1.el5]<br>
- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715
702657] {CVE-2011-1780}<br>
- Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715
702657] {CVE-2011-1780}<br>
- Revert: [xen] let __get_instruction_length always read into own
buffer (Paolo Bonzini) [719066 717742]<br>
- Revert: [xen] remove unused argument to __get_instruction_length
(Phillip Lougher) [719066 717742]<br>
- Revert: [xen] prep __get_instruction_length_from_list for
partial buffers (Paolo Bonzini) [719066 717742]<br>
- Revert: [xen] disregard trailing bytes in an invalid page (Paolo
Bonzini) [719066 717742]<br>
<br>
[2.6.18-238.18.1.el5]<br>
- [xen] disregard trailing bytes in an invalid page (Paolo
Bonzini) [719066 717742]<br>
- [xen] prep __get_instruction_length_from_list for partial
buffers (Paolo Bonzini) [719066 717742]<br>
- [xen] remove unused argument to __get_instruction_length
(Phillip Lougher) [719066 717742]<br>
- [xen] let __get_instruction_length always read into own buffer
(Paolo Bonzini) [719066 717742]<br>
<br>
[2.6.18-238.17.1.el5]<br>
- [net] bluetooth: l2cap and rfcomm: fix info leak to userspace
(Thomas Graf) [703020 703021] {CVE-2011-2492}<br>
- [net] inet_diag: fix inet_diag_bc_audit data validation (Thomas
Graf) [714538 714539] {CVE-2011-2213}<br>
- [misc] signal: fix kill signal spoofing issue (Oleg Nesterov)
[690030 690031] {CVE-2011-1182}<br>
- [fs] proc: fix signedness issue in next_pidmap (Oleg Nesterov)
[697826 697827] {CVE-2011-1593}<br>
- [char] agp: fix OOM and buffer overflow (Jerome Marchand)
[699009 699010] {CVE-2011-1746}<br>
- [char] agp: fix arbitrary kernel memory writes (Jerome Marchand)
[699005 699006] {CVE-2011-2022 CVE-2011-1745}<br>
- [infiniband] core: Handle large number of entries in poll CQ
(Jay Fenlason) [668370 668371] {CVE-2011-1044 CVE-2010-4649}<br>
- [infiniband] core: fix panic in ib_cm:cm_work_handler (Jay
Fenlason) [679995 679996] {CVE-2011-0695}<br>
- [fs] validate size of EFI GUID partition entries (Anton Arapov)
[703027 703028] {CVE-2011-1776}<br>
<br>
[2.6.18-238.16.1.el5]<br>
- [xen] hvm: secure vmx cpuid (Andrew Jones) [706324 706323]
{CVE-2011-1936}<br>
- [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657]
{CVE-2011-1780}<br>
- [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657]
{CVE-2011-1780}<br>
<br>
[2.6.18-238.15.1.el5]<br>
- [block] cciss: reading a write only register causes a hang
(Phillip Lougher) [713948 696153]<br>
- [fs] gfs2: fix resource group bitmap corruption (Robert S
Peterson) [711519 690555]<br>
- [net] sctp: fix calc of INIT/INIT-ACK chunk length to set
(Thomas Graf) [695384 695385] {CVE-2011-1573}<br>
- [fs] xfs: prevent leaking uninit stack memory in FSGEOMETRY_V1
p2 (Phillip Lougher) [677265 677266] {CVE-2011-0711}<br>
- [fs] xfs: prevent leaking uninit stack memory in FSGEOMETRY_V1
(Phillip Lougher) [677265 677266] {CVE-2011-0711}<br>
- [net] core: Fix memory leak/corruption on VLAN GRO_DROP (Herbert
Xu) [695174 691565] {CVE-2011-1576}<br>
- [pci] SRIOV: release VF BAR resources when device is hot unplug
(Don Dutile) [707899 698879]<br>
- [scsi] iscsi_tcp: fix iscsi's sk_user_data access (Mike
Christie) [703056 677703]<br>
- [message] mptfusion: add ioc_reset_in_progress reset in
SoftReset (Tomas Henzl) [712034 662160]<br>
<br>
[2.6.18-238.14.1.el5]<br>
- [input] evdev: implement proper locking (Marc Milgram) [710426
680561]<br>
- [input] evdev: rename list to client in handlers (Marc Milgram)
[710426 680561]<br>
<br>
[2.6.18-238.13.1.el5]<br>
- [fs] gfs2: fix processes waiting on already-available inode
glock (Phillip Lougher) [709767 694669]</tt>
<!-- This signature was generated by the MyDesktop Oracle Business Signature utility version 3.5.7 -->
</body>
</html>