[El-errata] ELSA-2008-0607 Important: Enterprise Linux 4 kernel security and bug fix update

Thu Jul 24 12:22:58 PDT 2008

Enterprise Linux Security Advisory ELSA-2008-0607

https://rhn.redhat.com/errata/RHSA-2008-0607.html

The following updated rpms for Enterprise Linux 4 have been uploaded to 
the Unbreakable Linux Network:

i386:
kernel-2.6.9-67.0.22.0.1.EL.i686.rpm
kernel-devel-2.6.9-67.0.22.0.1.EL.i686.rpm
kernel-doc-2.6.9-67.0.22.0.1.EL.noarch.rpm
kernel-hugemem-2.6.9-67.0.22.0.1.EL.i686.rpm
kernel-hugemem-devel-2.6.9-67.0.22.0.1.EL.i686.rpm
kernel-smp-2.6.9-67.0.22.0.1.EL.i686.rpm
kernel-smp-devel-2.6.9-67.0.22.0.1.EL.i686.rpm
kernel-xenU-2.6.9-67.0.22.0.1.EL.i686.rpm
kernel-xenU-devel-2.6.9-67.0.22.0.1.EL.i686.rpm

x86_64:
kernel-2.6.9-67.0.22.0.1.EL.x86_64.rpm
kernel-devel-2.6.9-67.0.22.0.1.EL.x86_64.rpm
kernel-doc-2.6.9-67.0.22.0.1.EL.noarch.rpm
kernel-largesmp-2.6.9-67.0.22.0.1.EL.x86_64.rpm
kernel-largesmp-devel-2.6.9-67.0.22.0.1.EL.x86_64.rpm
kernel-smp-2.6.9-67.0.22.0.1.EL.x86_64.rpm
kernel-smp-devel-2.6.9-67.0.22.0.1.EL.x86_64.rpm
kernel-xenU-2.6.9-67.0.22.0.1.EL.x86_64.rpm
kernel-xenU-devel-2.6.9-67.0.22.0.1.EL.x86_64.rpm

ia64:
kernel-2.6.9-67.0.22.0.1.EL.ia64.rpm
kernel-devel-2.6.9-67.0.22.0.1.EL.ia64.rpm
kernel-doc-2.6.9-67.0.22.0.1.EL.noarch.rpm
kernel-largesmp-2.6.9-67.0.22.0.1.EL.ia64.rpm
kernel-largesmp-devel-2.6.9-67.0.22.0.1.EL.ia64.rpm

SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/kernel-2.6.9-67.0.22.0.1.EL.src.rpm

The following packages were rebuilt to be in sync with the updated 
kernel version (no changes other than updating the version number):

i386:
oracleasm-2.6.9-67.0.22.0.1.EL-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.22.0.1.ELhugemem-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.22.0.1.ELsmp-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.22.0.1.ELxenU-2.0.3-2.i686.rpm
ocfs2-2.6.9-67.0.22.0.1.EL-1.2.9-1.el4.i686.rpm
ocfs2-2.6.9-67.0.22.0.1.ELhugemem-1.2.9-1.el4.i686.rpm
ocfs2-2.6.9-67.0.22.0.1.ELsmp-1.2.9-1.el4.i686.rpm
ocfs2-2.6.9-67.0.22.0.1.ELxenU-1.2.9-1.el4.i686.rpm

x86_64:
oracleasm-2.6.9-67.0.22.0.1.EL-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.22.0.1.ELlargesmp-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.22.0.1.ELsmp-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.22.0.1.ELxenU-2.0.3-2.x86_64.rpm
ocfs2-2.6.9-67.0.22.0.1.EL-1.2.9-1.el4.x86_64.rpm
ocfs2-2.6.9-67.0.22.0.1.ELlargesmp-1.2.9-1.el4.x86_64.rpm
ocfs2-2.6.9-67.0.22.0.1.ELsmp-1.2.9-1.el4.x86_64.rpm
ocfs2-2.6.9-67.0.22.0.1.ELxenU-1.2.9-1.el4.x86_64.rpm

ia64:
oracleasm-2.6.9-67.0.22.0.1.EL-2.0.3-2.ia64.rpm
oracleasm-2.6.9-67.0.22.0.1.ELlargesmp-2.0.3-2.ia64.rpm
ocfs2-2.6.9-67.0.22.0.1.EL-1.2.9-1.el4.ia64.rpm
ocfs2-2.6.9-67.0.22.0.1.ELlargesmp-1.2.9-1.el4.ia64.rpm

SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/oracleasm-2.6.9-67.0.22.0.1.EL-2.0.3-2.src.rpm
http://oss.oracle.com/el4/SRPMS-updates/ocfs2-2.6.9-67.0.22.0.1.EL-1.2.9-1.el4.src.rpm

Description of changes:

[2.6.9-67.0.22.0.1.EL]
- fix skb alignment that was causing sendto() to fail with EFAULT (Olaf 
Kirch) [orabug 6845794]
- fix entropy flag in bnx2 driver to generate entropy pool (John 
Sobecki)  [orabug 5931647]
- fix  enomem due to larger mtu size page alloc (Zach Brown) [orabug 
5486128]
- fix per_cpu() api bug_on with rds (Zach Brown) [orabug 5760648]
- remove patch sysrq-b that queues upto keventd thread [orabug 6125546]
- allow more than 4GB hugepage for single user (Herbert van den Bergh) 
[orabug 6002738]
- netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]
- fix pv guest oops on live migration (Chuck Anderson) [orabugz 4118]

[2.6.9-67.0.22]
-[revert] sys_times: Fix system unresponsiveness during many concurrent 
invocation of sys_times (Vitaly Mayatskikh) [449101 435280]

[2.6.9-67.0.21]
-rpc: do not block on skb allocation (Jeff Layton) [450185 439436]
-Fix deadlock possibility in arch_get_unmapped_area_topdown() (Vitaly 
Mayatskikh) [450760 450094]
-[usb] ohci-hcd: Fix kernel failed to boot and dropped to xmon on ppc64 
(Vitaly Mayatskikh) [450865 443052]
-sctp: make sure length argument passed does not overflow (Neil Horman) 
[452479 452480] {CVE-2008-2826}
-sit: Fix exploitable remote memory leak (Jiri Pirko) [446035 446036] 
{CVE-2008-2136}