[El-errata] ELSA-2007-1049 Important: Enterprise Linux 3 kernel security and bug fix update

Tue Dec 4 16:21:57 PST 2007

Enterprise Linux Security Advisory ELSA-2007-1049

https://rhn.redhat.com/errata/RHSA-2007-1049.html

The following updated rpms for Enterprise Linux 3 have been uploaded to the Unbreakable Linux Network:

i386:
kernel-2.4.21-53.EL.athlon.rpm
kernel-2.4.21-53.EL.i686.rpm
kernel-BOOT-2.4.21-53.EL.i386.rpm
kernel-doc-2.4.21-53.EL.i386.rpm
kernel-hugemem-2.4.21-53.EL.i686.rpm
kernel-hugemem-unsupported-2.4.21-53.EL.i686.rpm
kernel-smp-2.4.21-53.EL.athlon.rpm
kernel-smp-2.4.21-53.EL.i686.rpm
kernel-smp-unsupported-2.4.21-53.EL.athlon.rpm
kernel-smp-unsupported-2.4.21-53.EL.i686.rpm
kernel-source-2.4.21-53.EL.i386.rpm
kernel-unsupported-2.4.21-53.EL.athlon.rpm
kernel-unsupported-2.4.21-53.EL.i686.rpm

oracleasm-2.4.21-53.EL-1.0.5-1.i686.rpm
oracleasm-2.4.21-53.ELhugemem-1.0.5-1.i686.rpm
oracleasm-2.4.21-53.ELsmp-1.0.5-1.i686.rpm

x86_64:
kernel-2.4.21-53.EL.ia32e.rpm
kernel-2.4.21-53.EL.x86_64.rpm
kernel-doc-2.4.21-53.EL.x86_64.rpm
kernel-smp-2.4.21-53.EL.x86_64.rpm
kernel-smp-unsupported-2.4.21-53.EL.x86_64.rpm
kernel-source-2.4.21-53.EL.x86_64.rpm
kernel-unsupported-2.4.21-53.EL.ia32e.rpm
kernel-unsupported-2.4.21-53.EL.x86_64.rpm

oracleasm-2.4.21-53.EL-1.0.5-1.ia32e.rpm
oracleasm-2.4.21-53.EL-1.0.5-1.x86_64.rpm
oracleasm-2.4.21-53.ELsmp-1.0.5-1.x86_64.rpm

SRPMS:
http://oss.oracle.com/el3/SRPMS-updates/kernel-2.4.21-53.EL.src.rpm
http://oss.oracle.com/el3/SRPMS-updates/oracleasm-2.4.21-53.EL-1.0.5-1.src.rpm

Description of changes:

[kernel-2.4.21-53.EL]
- Fix ipv4 treason uncloaked message (Anton Arapov) [249237]
- Fix ipv4 fib-sem-out-of-bounds checking (Don Howard) [250429] {CVE-2007-2172}
- Reset current->pdeath_signal on SUID binary execution (Peter Zijlstra) [251117] {CVE-2007-3848}
- Fix local DoS with corrupted elf on ia64 (Don Howard) [289171] {CVE-2006-4538}
- prevent stack from growing into hugepages region (Don Howard) [294951] {CVE-2007-3739}
- Fix missing ioctl permission checks in aacraid (Don Howard) [298331] {CVE-2007-4308}

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://oss.oracle.com/pipermail/el-errata/attachments/20071204/08b91fce/attachment.html 