[El-errata] ELSA-2008-0167 Moderate: Enterprise Linux 4 kernel security and bug fix update

Fri Mar 14 17:04:01 PDT 2008

Enterprise Linux Security Advisory ELSA-2008-0167

https://rhn.redhat.com/errata/RHSA-2008-0167.html

The following updated rpms for Enterprise Linux 4 have been uploaded to 
the Unbreakable Linux Network:

i386:
kernel-2.6.9-67.0.7.0.1.EL.i686.rpm
kernel-devel-2.6.9-67.0.7.0.1.EL.i686.rpm
kernel-doc-2.6.9-67.0.7.0.1.EL.noarch.rpm
kernel-hugemem-2.6.9-67.0.7.0.1.EL.i686.rpm
kernel-hugemem-devel-2.6.9-67.0.7.0.1.EL.i686.rpm
kernel-smp-2.6.9-67.0.7.0.1.EL.i686.rpm
kernel-smp-devel-2.6.9-67.0.7.0.1.EL.i686.rpm
kernel-xenU-2.6.9-67.0.7.0.1.EL.i686.rpm
kernel-xenU-devel-2.6.9-67.0.7.0.1.EL.i686.rpm

x86_64:
kernel-2.6.9-67.0.7.0.1.EL.x86_64.rpm
kernel-devel-2.6.9-67.0.7.0.1.EL.x86_64.rpm
kernel-doc-2.6.9-67.0.7.0.1.EL.noarch.rpm
kernel-largesmp-2.6.9-67.0.7.0.1.EL.x86_64.rpm
kernel-largesmp-devel-2.6.9-67.0.7.0.1.EL.x86_64.rpm
kernel-smp-2.6.9-67.0.7.0.1.EL.x86_64.rpm
kernel-smp-devel-2.6.9-67.0.7.0.1.EL.x86_64.rpm
kernel-xenU-2.6.9-67.0.7.0.1.EL.x86_64.rpm
kernel-xenU-devel-2.6.9-67.0.7.0.1.EL.x86_64.rpm

SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/kernel-2.6.9-67.0.7.0.1.EL.src.rpm

The following packages were rebuilt to be in sync with the updated 
kernel version (no changes other than updating the version number):

i386:
oracleasm-2.6.9-67.0.7.0.1.EL-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.7.0.1.ELhugemem-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.7.0.1.ELsmp-2.0.3-2.i686.rpm
oracleasm-2.6.9-67.0.7.0.1.ELxenU-2.0.3-2.i686.rpm
ocfs2-2.6.9-67.0.7.0.1.EL-1.2.8-2.el4.i686.rpm
ocfs2-2.6.9-67.0.7.0.1.ELhugemem-1.2.8-2.el4.i686.rpm
ocfs2-2.6.9-67.0.7.0.1.ELsmp-1.2.8-2.el4.i686.rpm
ocfs2-2.6.9-67.0.7.0.1.ELxenU-1.2.8-2.el4.i686.rpm

x86_64:
oracleasm-2.6.9-67.0.7.0.1.EL-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.7.0.1.ELlargesmp-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.7.0.1.ELsmp-2.0.3-2.x86_64.rpm
oracleasm-2.6.9-67.0.7.0.1.ELxenU-2.0.3-2.x86_64.rpm
ocfs2-2.6.9-67.0.7.0.1.EL-1.2.8-2.el4.x86_64.rpm
ocfs2-2.6.9-67.0.7.0.1.ELlargesmp-1.2.8-2.el4.x86_64.rpm
ocfs2-2.6.9-67.0.7.0.1.ELsmp-1.2.8-2.el4.x86_64.rpm
ocfs2-2.6.9-67.0.7.0.1.ELxenU-1.2.8-2.el4.x86_64.rpm

SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/oracleasm-2.6.9-67.0.7.0.1.EL-2.0.3-2.src.rpm
http://oss.oracle.com/el4/SRPMS-updates/ocfs2-2.6.9-67.0.7.0.1.EL-1.2.8-2.el4.src.rpm

Description of changes:

[2.6.9-67.0.7.0.1.EL]
- fix skb alignment that was causing sendto() to fail with EFAULT (Olaf 
Kirch) [orabug 6845794]
- fix entropy flag in bnx2 driver to generate entropy pool (John 
Sobecki)  [orabug 5931647]
- fix  enomem due to larger mtu size page alloc (Zach Brown) [orabug 
5486128]
- fix per_cpu() api bug_on with rds (Zach Brown) [orabug 5760648]
- remove patch sysrq-b that queues upto keventd thread [orabug 6125546]
- allow more than 4GB hugepage for single user (Herbert van den Bergh) 
[orabug 6002738]
- netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]

[2.6.9-67.0.7]
-x86_64: Prevent iounmap from sleeping with a spinlock held (Larry 
Woodman) [433267]

[2.6.9-67.0.6]
-cifs: fix buffer overflow if server sends corrupt response to small 
request (Jeff Layton) [372971] {CVE-2
007-5904}

[2.6.9-67.0.5]
-audit: break execve records into smaller parts (Eric Paris) [427393] 
{CVE-2008-0004}
-s390: qeth: hipersockets layer-3 interface to drop non-IP packets 
(Hans-Joachim Picht) [430670]
-acpiphp: Examine slots below P2P bridges (Prarit Bhargava) [428174]