[El-errata] ELSA-2008-0508 Important: Enterprise Linux 4 kernel security and bug fix update

Errata Announcements for Enterprise Linux el-errata at oss.oracle.com
Thu Jun 26 18:03:59 PDT 2008


Enterprise Linux Security Advisory ELSA-2008-0508

https://rhn.redhat.com/errata/RHSA-2008-0508.html

The following updated rpms for Enterprise Linux 4 have been uploaded to 
the Unbreakable Linux Network:

i386:
kernel-2.6.9-67.0.20.0.1.EL.i686.rpm
kernel-devel-2.6.9-67.0.20.0.1.EL.i686.rpm
kernel-doc-2.6.9-67.0.20.0.1.EL.noarch.rpm
kernel-hugemem-2.6.9-67.0.20.0.1.EL.i686.rpm
kernel-hugemem-devel-2.6.9-67.0.20.0.1.EL.i686.rpm
kernel-smp-2.6.9-67.0.20.0.1.EL.i686.rpm
kernel-smp-devel-2.6.9-67.0.20.0.1.EL.i686.rpm
kernel-xenU-2.6.9-67.0.20.0.1.EL.i686.rpm
kernel-xenU-devel-2.6.9-67.0.20.0.1.EL.i686.rpm

x86_64:
kernel-2.6.9-67.0.20.0.1.EL.x86_64.rpm
kernel-devel-2.6.9-67.0.20.0.1.EL.x86_64.rpm
kernel-doc-2.6.9-67.0.20.0.1.EL.noarch.rpm
kernel-largesmp-2.6.9-67.0.20.0.1.EL.x86_64.rpm
kernel-largesmp-devel-2.6.9-67.0.20.0.1.EL.x86_64.rpm
kernel-smp-2.6.9-67.0.20.0.1.EL.x86_64.rpm
kernel-smp-devel-2.6.9-67.0.20.0.1.EL.x86_64.rpm
kernel-xenU-2.6.9-67.0.20.0.1.EL.x86_64.rpm
kernel-xenU-devel-2.6.9-67.0.20.0.1.EL.x86_64.rpm

ia64:
kernel-2.6.9-67.0.20.0.1.EL.ia64.rpm
kernel-devel-2.6.9-67.0.20.0.1.EL.ia64.rpm
kernel-doc-2.6.9-67.0.20.0.1.EL.noarch.rpm
kernel-largesmp-2.6.9-67.0.20.0.1.EL.ia64.rpm
kernel-largesmp-devel-2.6.9-67.0.20.0.1.EL.ia64.rpm


SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/kernel-2.6.9-67.0.20.0.1.EL.src.rpm

The following packages were rebuilt to be in sync with the updated 
kernel version (no changes other than updating the version number):

i386:
oracleasm-2.6.9-67.0.20.0.1.EL-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.20.0.1.ELhugemem-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.20.0.1.ELsmp-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.20.0.1.ELxenU-2.0.3-2.i686.rpm
ocfs2-2.6.9-67.0.20.0.1.EL-1.2.9-1.el4.i686.rpm
ocfs2-2.6.9-67.0.20.0.1.ELhugemem-1.2.9-1.el4.i686.rpm
ocfs2-2.6.9-67.0.20.0.1.ELsmp-1.2.9-1.el4.i686.rpm
ocfs2-2.6.9-67.0.20.0.1.ELxenU-1.2.9-1.el4.i686.rpm

x86_64:
oracleasm-2.6.9-67.0.20.0.1.EL-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.20.0.1.ELlargesmp-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.20.0.1.ELsmp-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.20.0.1.ELxenU-2.0.3-2.x86_64.rpm
ocfs2-2.6.9-67.0.20.0.1.EL-1.2.9-1.el4.x86_64.rpm
ocfs2-2.6.9-67.0.20.0.1.ELlargesmp-1.2.9-1.el4.x86_64.rpm
ocfs2-2.6.9-67.0.20.0.1.ELsmp-1.2.9-1.el4.x86_64.rpm
ocfs2-2.6.9-67.0.20.0.1.ELxenU-1.2.9-1.el4.x86_64.rpm

ia64:
oracleasm-2.6.9-67.0.20.0.1.EL-2.0.3-2.ia64.rpm
oracleasm-2.6.9-67.0.20.0.1.ELlargesmp-2.0.3-2.ia64.rpm
ocfs2-2.6.9-67.0.20.0.1.EL-1.2.9-1.el4.ia64.rpm
ocfs2-2.6.9-67.0.20.0.1.ELlargesmp-1.2.9-1.el4.ia64.rpm


SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/oracleasm-2.6.9-67.0.20.0.1.EL-2.0.3-2.src.rpm
http://oss.oracle.com/el4/SRPMS-updates/ocfs2-2.6.9-67.0.20.0.1.EL-1.2.9-1.el4.src.rpm

Description of changes:

[2.6.9-67.0.20.0.1.EL]
- fix skb alignment that was causing sendto() to fail with EFAULT (Olaf 
Kirch) [orabug 6845794]
- fix entropy flag in bnx2 driver to generate entropy pool (John 
Sobecki)  [orabug 5931647]
- fix  enomem due to larger mtu size page alloc (Zach Brown) [orabug 
5486128]
- fix per_cpu() api bug_on with rds (Zach Brown) [orabug 5760648]
- remove patch sysrq-b that queues upto keventd thread [orabug 6125546]
- allow more than 4GB hugepage for single user (Herbert van den Bergh) 
[orabug 6002738]
- netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]
- fix pv guest oops on live migration (Chuck Anderson) [orabugz 4118]

[2.6.9-67.0.20]
-x8664: copy_user doesn't zero tail bytes on page fault (Vitaly 
Mayatskikh) [451273 451274]

[2.6.9-67.0.19]
-[revert] Add HP DL580 G5 to bfsort whitelist (Tony Camuso) [437976 429727]

[2.6.9-67.0.18]
-sys_times: Fix system unresponsiveness during many concurrent 
invocation of sys_times (Vitaly Mayatskikh) [449101 435280]
-Add HP DL580 G5 to bfsort whitelist (Tony Camuso) [437976 429727]
-ptrace: fix ptrace_attach and ptrace_detach race (Jérôme Marchand) 
[449361 311931]
-[revert] neofb: avoid overwriting fb_info fields (Vitaly Mayatskikh) 
[430251]
-[revert] buffer overflow in moxa driver (Vitaly Mayatskikh) [423131] 
{CVE-2005-0504}

[2.6.9-67.0.17]
-x8664: copy_user leaks uninitialized data on page fault (Vitaly 
Mayatskikh) [433942 433943] {CVE-2008-0598}
-fix possible buffer overflow in ASN.1 parsing routine (Anton Arapov ) 
[444462 444463] {CVE-2008-1673}

[2.6.9-67.0.16]
-Kernel does not clear direction flag for signal handlers (Vitaly 
Mayatskikh) [437314 437315] {CVE-2008-1367}




More information about the El-errata mailing list