[El-errata] ELSA-2007-0488 Important: Enterprise Linux 4 kernel security update
el-errata at oss.oracle.com
el-errata at oss.oracle.com
Tue Jun 26 11:24:40 PDT 2007
Enterprise Linux Security Advisory ELSA-2007-0488
https://rhn.redhat.com/errata/RHSA-2007-0488.html
The following updated rpms for Enterprise Linux 4 have been uploaded to
the Unbreakable Linux Network:
i386:
kernel-2.6.9-55.0.2.0.1.EL.i686.rpm
kernel-devel-2.6.9-55.0.2.0.1.EL.i686.rpm
kernel-doc-2.6.9-55.0.2.0.1.EL.noarch.rpm
kernel-hugemem-2.6.9-55.0.2.0.1.EL.i686.rpm
kernel-hugemem-devel-2.6.9-55.0.2.0.1.EL.i686.rpm
kernel-smp-2.6.9-55.0.2.0.1.EL.i686.rpmel
kernel-smp-devel-2.6.9-55.0.2.0.1.EL.i686.rpm
kernel-sourcecode-2.6.9-55.0.2.0.1.EL.i386.rpm
kernel-xenU-2.6.9-55.0.2.0.1.EL.i686.rpm
kernel-xenU-devel-2.6.9-55.0.2.0.1.EL.i686.rpm
x86_64:
kernel-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-devel-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-doc-2.6.9-55.0.2.0.1.EL.noarch.rpm
kernel-largesmp-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-largesmp-devel-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-smp-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-smp-devel-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-sourcecode-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-xenU-2.6.9-55.0.2.0.1.EL.x86_64.rpm
kernel-xenU-devel-2.6.9-55.0.2.0.1.EL.x86_64.rpm
SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/kernel-2.6.9-55.0.2.0.1.EL.src.rpm
The following packages were rebuilt to be in sync with the updated kernel version (no changes other than updating the version number):
i386:
ocfs2-2.6.9-55.0.2.0.1.EL-1.2.5-1.i686.rpm
ocfs2-2.6.9-55.0.2.0.1.ELhugemem-1.2.5-1.i686.rpm
ocfs2-2.6.9-55.0.2.0.1.ELsmp-1.2.5-1.i686.rpm
oracleasm-2.6.9-55.0.2.0.1.EL-2.0.3-2.i686.rpm
oracleasm-2.6.9-55.0.2.0.1.ELhugemem-2.0.3-2.i686.rpm
oracleasm-2.6.9-55.0.2.0.1.ELsmp-2.0.3-2.i686.rpm
x86_64:
ocfs2-2.6.9-55.0.2.0.1.EL-1.2.5-1.x86_64.rpm
ocfs2-2.6.9-55.0.2.0.1.ELlargesmp-1.2.5-1.x86_64.rpm
ocfs2-2.6.9-55.0.2.0.1.ELsmp-1.2.5-1.x86_64.rpm
oracleasm-2.6.9-55.0.2.0.1.EL-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-55.0.2.0.1.ELlargesmp-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-55.0.2.0.1.ELsmp-2.0.3-2.x86_64.rpm
SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/ocfs2-2.6.9-55.0.2.0.1.EL-1.2.5-1.src.rpm
http://oss.oracle.com/el4/SRPMS-updates/oracleasm-2.6.9-55.0.2.0.1.EL-2.0.3-2.src.rpm
Description of changes:
[2.6.9-55.0.2.0.1]
- fix entropy flag in bnx2 driver to generate entropy pool (John
Sobecki) [orabug 5931647]
- fix for nfs open call taking longer issue (Chuck Lever) orabug 5580407
bz [219412]
- fix enomem due to larger mtu size page alloc (Zach Brown) orabug 5486128
- fix per_cpu() api bug_on with rds (Zach Brown) orabug 5760648
- limit nr_requests in cfq io scheduler ( Jens Axboe) bz 234278 orabug
5899829
[2.6.9-55.0.2]
-cciss: fix size calculation in diskdump (Bryn Reeves) [243902]
[2.6.9-55.0.1]
-fix kernel spinlock panic in nfs/inode.c (Peter Staubach) [240855]
-fix core-dumping unreadable binaries via PT_INTERP (Eric Sandeen)
[243256] {CVE-2007-0958}
-nlm: when reclaiming locks, skip non-posix locks (Jeff Layton) [243251]
{CVE-2006-5158}
-add missing fput() in a 32-bit ioctl on 64-bit x86 systems (Jeff Burke)
[243252] {CVE-2007-0773}
-prevent oops in compat_sys_mount with NULL data pointer (Jeff Layton)
[243263] {CVE-2006-7203}
-fix 32bit-compat rt_sigtimedwait (Guy Streeter) [240458]
-nfs: fix repeated NFS mount failures lead to kernel panic (Peter
Staubach) [240851]
-safely store sysfs inode nrs in the sysfs dirent (Eric Sandeen) [242558]
-protect sysfs ->s_dentry w/ locking (Eric Sandeen) [242558]
-fix nr_unused accounting (Eric Sandeen) [241784]
-fix bluetooth setsockopt() information leaks (Don Howard) [243259]
{CVE-2007-1353}
-fix DoS in PPPOE (Neil Horman) [243262] {CVE-2007-2525}
-fix out of bounds fib_probs access vulnerability (Neil Horman) [243261]
{CVE-2007-2172}
-ip_conntrack_sctp: fix remotely triggerable NULL ptr dereference (Don
Howard) [243746] {CVE-2007-2876
More information about the El-errata
mailing list