[Ksplice][Fedora-15-updates] New updates available via Ksplice (FEDORA-2011-16621)

[Tim Abbott]

Synopsis: FEDORA-2011-16621 can now be patched using Ksplice
CVEs: CVE-2011-4110 CVE-2011-4131 CVE-2011-4132 CVE-2011-4330

Systems running Fedora 15 can now use Ksplice to patch against the
latest Fedora security update, FEDORA-2011-16621.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack on Fedora 15 install
these updates.  You can install these updates by running:

# /usr/sbin/uptrack-upgrade -y

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any additional action.


DESCRIPTION

* CVE-2011-4110: Denial of service in kernel key management facilities.

A flaw in the way user-defined key types were handled allowed an
uprivileged local user to crash the system via a NULL pointer
dereference and kernel OOPS.


* CVE-2011-4330: Buffer overflow in hfs.

On a corrupted file system the filename length could be wrong, leading
to a buffer overflow with user-controlled data.


* Integer overflow in xen grant references driver.

On 32-bit systems, a high value of op.count could lead to a series of
integer overflows which could result in memory corruption.


* CVE-2011-4132: Denial of service in Journaling Block Device layer.

A flaw in the way the Journaling Block Device (JBD) layer handled an
invalid log first block value allowed an attacker to mount a malicious
ext3 or ext4 image that would crash the system.


* CVE-2011-4131: Kernel crash in NFSv4.

nfs4_getfacl decoding causes a kernel crash when a server returns more
than 2 GETATTR bitmap words in response to the FATTR4_ACL attribute
request.


* NULL pointer dereference in 802.11 radiotap support.

When receiving failed PLCP frames is enabled, the kernel
will crash when adding a radiotap header to the frame.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.