[El-errata] ELSA-2008-0973 Important: Enterprise Linux 3 kernel security and bug fix update

Errata Announcements for Enterprise Linux el-errata at oss.oracle.com
Thu Dec 18 22:41:53 PST 2008


Enterprise Linux Security Advisory ELSA-2008-0973

https://rhn.redhat.com/errata/RHSA-2008-0973.html

The following updated rpms for Enterprise Linux 3 have been uploaded to 
the Unbreakable Linux Network:

i386:
kernel-2.4.21-58.0.0.0.1.EL.athlon.rpm
kernel-2.4.21-58.0.0.0.1.EL.i686.rpm
kernel-BOOT-2.4.21-58.0.0.0.1.EL.i386.rpm
kernel-doc-2.4.21-58.0.0.0.1.EL.i386.rpm
kernel-hugemem-2.4.21-58.0.0.0.1.EL.i686.rpm
kernel-hugemem-unsupported-2.4.21-58.0.0.0.1.EL.i686.rpm
kernel-smp-2.4.21-58.0.0.0.1.EL.athlon.rpm
kernel-smp-2.4.21-58.0.0.0.1.EL.i686.rpm
kernel-smp-unsupported-2.4.21-58.0.0.0.1.EL.athlon.rpm
kernel-smp-unsupported-2.4.21-58.0.0.0.1.EL.i686.rpm
kernel-source-2.4.21-58.0.0.0.1.EL.i386.rpm
kernel-unsupported-2.4.21-58.0.0.0.1.EL.athlon.rpm
kernel-unsupported-2.4.21-58.0.0.0.1.EL.i686.rpm

x86_64:
kernel-2.4.21-58.0.0.0.1.EL.ia32e.rpm
kernel-2.4.21-58.0.0.0.1.EL.x86_64.rpm
kernel-doc-2.4.21-58.0.0.0.1.EL.x86_64.rpm
kernel-smp-2.4.21-58.0.0.0.1.EL.x86_64.rpm
kernel-smp-unsupported-2.4.21-58.0.0.0.1.EL.x86_64.rpm
kernel-source-2.4.21-58.0.0.0.1.EL.x86_64.rpm
kernel-unsupported-2.4.21-58.0.0.0.1.EL.ia32e.rpm
kernel-unsupported-2.4.21-58.0.0.0.1.EL.x86_64.rpm


SRPMS:
http://oss.oracle.com/el3/SRPMS-updates/kernel-2.4.21-58.0.0.0.1.EL.src.rpm

The following packages were rebuilt to be in sync with the updated 
kernel version (no changes other than updating the version number):

i386:
oracleasm-2.4.21-58.0.0.0.1.EL-1.0.5-1.i686.rpm
oracleasm-2.4.21-58.0.0.0.1.ELhugemem-1.0.5-1.i686.rpm
oracleasm-2.4.21-58.0.0.0.1.ELsmp-1.0.5-1.i686.rpm

x86_64:
oracleasm-2.4.21-58.0.0.0.1.EL-1.0.5-1.ia32e.rpm
oracleasm-2.4.21-58.0.0.0.1.EL-1.0.5-1.x86_64.rpm
oracleasm-2.4.21-58.0.0.0.1.ELsmp-1.0.5-1.x86_64.rpm


SRPMS:
http://oss.oracle.com/el3/SRPMS-updates/oracleasm-2.4.21-58.0.0.0.1.EL-1.0.5-1.src.rpm

Description of changes:

[2.4.21-58.0.0.0.1.EL]
- add directio support for qla drivers (herb) [ora 6346849]
- support PT Quad card [ora 5751043]
- io to nfs partition hangs [ora 5088963]
- add entropy for bnx2 nic [ora 5931647]
- avoid large allocation-fragmentation in MTU (zab)
- fix clear highpage (wli)

[2.4.21-58.EL]
- copy_user doesn't zero tail bytes on page fault (Don Howard) [433941] 
{CVE-2008-2729}
- Fix long symlink support (Fabio Olive Leite) [BZ 438758]
- Fix possible buffer overflow in ASN.1 parsing routine (Don Howard) 
[444461] {CVE-2008-1673}
- Fix exploitable remote memory leak in sit (Don Howard) [446034] 
{CVE-2008-2136}
- Fix possible panic in mptctl_gettargetinfo (Don Howard) [451955]
- Add add NULL pointer checks in tty drivers (Don Howard) [453158] 
{CVE-2008-2812}
- Add a kernel parameter to disable lost tick accounting on x86_64 (Don 
Howard) [455921]
- Fix possible isdn_net buffer overflows (Don Howard) [456361] 
{CVE-2007-6063}
- Fix lookup on deleted directory (Eugene Teo) [457862] {CVE-2008-3275}
- Add missing capability checks in sbni_ioctl (Eugene Teo) [460404] 
{CVE-2008-3525}
- Remove suid/sgid bits on ftruncate (dhoward) [463684] {CVE-2008-4210}





More information about the El-errata mailing list