[El-errata] ELSA-2007-0705 Important: Enterprise Linux 5 kernel security update

el-errata at oss.oracle.com el-errata at oss.oracle.com
Fri Sep 14 12:51:05 PDT 2007 

Enterprise Linux Security Advisory ELSA-2007-0705

https://rhn.redhat.com/errata/RHSA-2007-0705.html

The following updated rpms for Enterprise Linux 5 have been uploaded to 
the Unbreakable Linux Network:

i386:
kernel-2.6.18-8.1.10.0.1.el5.i686.rpm
kernel-PAE-2.6.18-8.1.10.0.1.el5.i686.rpm
kernel-PAE-devel-2.6.18-8.1.10.0.1.el5.i686.rpm
kernel-devel-2.6.18-8.1.10.0.1.el5.i686.rpm
kernel-doc-2.6.18-8.1.10.0.1.el5.noarch.rpm
kernel-headers-2.6.18-8.1.10.0.1.el5.i386.rpm
kernel-xen-2.6.18-8.1.10.0.1.el5.i686.rpm
kernel-xen-devel-2.6.18-8.1.10.0.1.el5.i686.rpm

x86_64:
kernel-2.6.18-8.1.10.0.1.el5.x86_64.rpm
kernel-devel-2.6.18-8.1.10.0.1.el5.x86_64.rpm
kernel-doc-2.6.18-8.1.10.0.1.el5.noarch.rpm
kernel-headers-2.6.18-8.1.10.0.1.el5.x86_64.rpm
kernel-xen-2.6.18-8.1.10.0.1.el5.x86_64.rpm
kernel-xen-devel-2.6.18-8.1.10.0.1.el5.x86_64.rpm


SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/kernel-2.6.18-8.1.10.0.1.el5.src.rpm


The following packages were rebuilt to be in sync with the updated kernel version (no changes other than updating the version number):


i386:
oracleasm-2.6.18-8.1.10.0.1.el5-2.0.4-1.el5.i686.rpm
oracleasm-2.6.18-8.1.10.0.1.el5PAE-2.0.4-1.el5.i686.rpm
oracleasm-2.6.18-8.1.10.0.1.el5xen-2.0.4-1.el5.i686.rpm
ocfs2-2.6.18-8.1.10.0.1.el5-1.2.6-6.el5.i686.rpm
ocfs2-2.6.18-8.1.10.0.1.el5PAE-1.2.6-6.el5.i686.rpm
ocfs2-2.6.18-8.1.10.0.1.el5xen-1.2.6-6.el5.i686.rpm

x86_64:
oracleasm-2.6.18-8.1.10.0.1.el5-2.0.4-1.el5.x86_64.rpm
oracleasm-2.6.18-8.1.10.0.1.el5xen-2.0.4-1.el5.x86_64.rpm
ocfs2-2.6.18-8.1.10.0.1.el5-1.2.6-6.el5.x86_64.rpm
ocfs2-2.6.18-8.1.10.0.1.el5xen-1.2.6-6.el5.x86_64.rpm

SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/oracleasm-2.6.18-8.1.10.0.1.el5-2.0.4-1.el5.src.rpm
http://oss.oracle.com/el5/SRPMS-updates/ocfs2-2.6.18-8.1.10.0.1.el5-1.2.6-6.el5.src.rpm


Description of changes:

[2.6.18-8.1.10.0.1.el5]
- Fix bonding primary=ethX (Bert Barbe) [IT 101532] [ORA 5136660]
- Add entropy module option to e1000/bnx2 (John Sobecki) [ORA 6045759]

[2.6.18-8.1.10.el5]
- [mm] Prevent the stack growth into hugetlb reserved regions (Konrad 
Rzeszutek) [253313] {CVE-2007-3739}

[2.6.18-8.1.9.el5]
- [misc] cpuset information leak (Prarit Bhargava ) [245773] {CVE-2007-2875}
- [net] ip_conntrack_sctp: fix remotely triggerable panic (Don Howard ) 
[245774] {CVE-2007-2876}
- [misc] Overflow in CAPI subsystem (Anton Arapov ) [232260] {CVE-2007-1217}
- [CIFS] fix signing sec= mount options (Jeff Layton ) [253315] 
{CVE-2007-3843}
- [CIFS] respect umask when unix extensions are enabled (Jeff Layton ) 
[253314] {CVE-2007-3740}
- [misc] i915_dma: fix batch buffer security bit for i965 chipsets 
(Aristeu Rozanski ) [252305] {CVE-2007-3851}
- [fs] - Move msdos compat ioctl to msdos dir (Eric Sandeen ) [253317]
- [fs] - fix VFAT compat ioctls on 64-bit systems (Eric Sandeen ) 
[253317] {CVE-2007-2878}

More information about the El-errata mailing list