[El-errata] ELSA-2008-0519 Important: Enterprise Linux 5 kernel security and bug fix update

Thu Jun 26 23:26:50 PDT 2008

Enterprise Linux Security Advisory ELSA-2008-0519

https://rhn.redhat.com/errata/RHSA-2008-0519.html

The following updated rpms for Enterprise Linux 5 have been uploaded to 
the Unbreakable Linux Network:

i386:
kernel-2.6.18-92.1.6.0.2.el5.i686.rpm
kernel-PAE-2.6.18-92.1.6.0.2.el5.i686.rpm
kernel-PAE-devel-2.6.18-92.1.6.0.2.el5.i686.rpm
kernel-debug-2.6.18-92.1.6.0.2.el5.i686.rpm
kernel-debug-devel-2.6.18-92.1.6.0.2.el5.i686.rpm
kernel-devel-2.6.18-92.1.6.0.2.el5.i686.rpm
kernel-doc-2.6.18-92.1.6.0.2.el5.noarch.rpm
kernel-headers-2.6.18-92.1.6.0.2.el5.i386.rpm
kernel-xen-2.6.18-92.1.6.0.2.el5.i686.rpm
kernel-xen-devel-2.6.18-92.1.6.0.2.el5.i686.rpm

x86_64:
kernel-2.6.18-92.1.6.0.2.el5.x86_64.rpm
kernel-debug-2.6.18-92.1.6.0.2.el5.x86_64.rpm
kernel-debug-devel-2.6.18-92.1.6.0.2.el5.x86_64.rpm
kernel-devel-2.6.18-92.1.6.0.2.el5.x86_64.rpm
kernel-doc-2.6.18-92.1.6.0.2.el5.noarch.rpm
kernel-headers-2.6.18-92.1.6.0.2.el5.x86_64.rpm
kernel-xen-2.6.18-92.1.6.0.2.el5.x86_64.rpm
kernel-xen-devel-2.6.18-92.1.6.0.2.el5.x86_64.rpm

SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/kernel-2.6.18-92.1.6.0.2.el5.src.rpm

The following packages were rebuilt to be in sync with the updated 
kernel version (no changes other than updating the version number):

i386:
oracleasm-2.6.18-92.1.6.0.2.el5-2.0.4-1.el5.i686.rpm
oracleasm-2.6.18-92.1.6.0.2.el5PAE-2.0.4-1.el5.i686.rpm
oracleasm-2.6.18-92.1.6.0.2.el5xen-2.0.4-1.el5.i686.rpm
oracleasm-2.6.18-92.1.6.0.2.el5debug-2.0.4-1.el5.i686.rpm
ocfs2-2.6.18-92.1.6.0.2.el5-1.2.9-1.el5.i686.rpm
ocfs2-2.6.18-92.1.6.0.2.el5PAE-1.2.9-1.el5.i686.rpm
ocfs2-2.6.18-92.1.6.0.2.el5xen-1.2.9-1.el5.i686.rpm
ocfs2-2.6.18-92.1.6.0.2.el5debug-1.2.9-1.el5.i686.rpm

x86_64:
oracleasm-2.6.18-92.1.6.0.2.el5-2.0.4-1.el5.x86_64.rpm
oracleasm-2.6.18-92.1.6.0.2.el5xen-2.0.4-1.el5.x86_64.rpm
oracleasm-2.6.18-92.1.6.0.2.el5debug-2.0.4-1.el5.x86_64.rpm
ocfs2-2.6.18-92.1.6.0.2.el5-1.2.9-1.el5.x86_64.rpm
ocfs2-2.6.18-92.1.6.0.2.el5xen-1.2.9-1.el5.x86_64.rpm
ocfs2-2.6.18-92.1.6.0.2.el5debug-1.2.9-1.el5.x86_64.rpm

SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/oracleasm-2.6.18-92.1.6.0.2.el5-2.0.4-1.el5.src.rpm
http://oss.oracle.com/el5/SRPMS-updates/ocfs2-2.6.18-92.1.6.0.2.el5-1.2.9-1.el5.src.rpm

Description of changes:

[2.6.18-92.1.6.0.2.el5]
- [NET] Add entropy support to e1000 and bnx2 (John Sobecki) [orabug 
6045759]
- [splice] Fix bad unlock_page() in error case (Jens Axboe) [orabug 6263574]
- [dio] fix error-path crashes (Linus Torvalds) [orabug 6242289]
- [NET] fix netpoll race (Tina Yang) [orabugz 5791]

[2.6.18-92.1.6.el5]
- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]

[2.6.18-92.1.5.el5]
- [x86_64] copy_user doesn't zero tail bytes on page fault (Vitaly 
Mayatskikh) [451275 451276] {CVE-2008-2729}

[2.6.18-92.1.4.el5]
- Revert: [misc] ttyS1 loses interrupt and stops transmitting (Simon 
McGrath ) [443071 440121]

[2.6.18-92.1.3.el5]
- [x86_64] fix possible data leaks in copy_from_user() routine (Anton 
Arapov ) [433944 433945] {CVE-2008-0598}

[2.6.18-92.1.2.el5]
- [misc] ttyS1 loses interrupt and stops transmitting (Simon McGrath ) 
[443071 440121]
- [net] DCCP sanity check feature length (Anton Arapov ) [447395 447396] 
{CVE-2008-2358}
- [misc] fix possible buffer overflow in ASN.1 parsing routine (Anton 
Arapov ) [444464 444465] {CVE-2008-1673}