[El-errata] ELSA-2012-1540 Important: Oracle Linux 5 kernel security, bug fix, and enhancement update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Dec 5 17:24:19 PST 2012
Oracle Linux Security Advisory ELSA-2012-1540
https://rhn.redhat.com/errata/RHSA-2012-1540.html
The following updated rpms for Oracle Linux 5 have been uploaded to the
Unbreakable Linux Network:
i386:
kernel-2.6.18-308.24.1.el5.i686.rpm
kernel-PAE-2.6.18-308.24.1.el5.i686.rpm
kernel-PAE-devel-2.6.18-308.24.1.el5.i686.rpm
kernel-debug-2.6.18-308.24.1.el5.i686.rpm
kernel-debug-devel-2.6.18-308.24.1.el5.i686.rpm
kernel-devel-2.6.18-308.24.1.el5.i686.rpm
kernel-doc-2.6.18-308.24.1.el5.noarch.rpm
kernel-headers-2.6.18-308.24.1.el5.i386.rpm
kernel-xen-2.6.18-308.24.1.el5.i686.rpm
kernel-xen-devel-2.6.18-308.24.1.el5.i686.rpm
x86_64:
kernel-2.6.18-308.24.1.el5.x86_64.rpm
kernel-debug-2.6.18-308.24.1.el5.x86_64.rpm
kernel-debug-devel-2.6.18-308.24.1.el5.x86_64.rpm
kernel-devel-2.6.18-308.24.1.el5.x86_64.rpm
kernel-doc-2.6.18-308.24.1.el5.noarch.rpm
kernel-headers-2.6.18-308.24.1.el5.x86_64.rpm
kernel-xen-2.6.18-308.24.1.el5.x86_64.rpm
kernel-xen-devel-2.6.18-308.24.1.el5.x86_64.rpm
ia64:
kernel-2.6.18-308.24.1.el5.ia64.rpm
kernel-debug-2.6.18-308.24.1.el5.ia64.rpm
kernel-debug-devel-2.6.18-308.24.1.el5.ia64.rpm
kernel-devel-2.6.18-308.24.1.el5.ia64.rpm
kernel-doc-2.6.18-308.24.1.el5.noarch.rpm
kernel-headers-2.6.18-308.24.1.el5.ia64.rpm
kernel-xen-2.6.18-308.24.1.el5.ia64.rpm
kernel-xen-devel-2.6.18-308.24.1.el5.ia64.rpm
SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/kernel-2.6.18-308.24.1.el5.src.rpm
The following packages were rebuilt to be in sync with the updated
kernel version (no changes other than updating the version number):
i386:
oracleasm-2.6.18-308.24.1.el5-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-308.24.1.el5PAE-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-308.24.1.el5xen-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-308.24.1.el5debug-2.0.5-1.el5.i686.rpm
ocfs2-2.6.18-308.24.1.el5-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-308.24.1.el5PAE-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-308.24.1.el5xen-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-308.24.1.el5debug-1.4.10-1.el5.i686.rpm
x86_64:
oracleasm-2.6.18-308.24.1.el5-2.0.5-1.el5.x86_64.rpm
oracleasm-2.6.18-308.24.1.el5xen-2.0.5-1.el5.x86_64.rpm
oracleasm-2.6.18-308.24.1.el5debug-2.0.5-1.el5.x86_64.rpm
ocfs2-2.6.18-308.24.1.el5-1.4.10-1.el5.x86_64.rpm
ocfs2-2.6.18-308.24.1.el5xen-1.4.10-1.el5.x86_64.rpm
ocfs2-2.6.18-308.24.1.el5debug-1.4.10-1.el5.x86_64.rpm
ia64:
oracleasm-2.6.18-308.24.1.el5-2.0.5-1.el5.ia64.rpm
oracleasm-2.6.18-308.24.1.el5xen-2.0.5-1.el5.ia64.rpm
oracleasm-2.6.18-308.24.1.el5debug-2.0.5-1.el5.ia64.rpm
ocfs2-2.6.18-308.24.1.el5-1.4.10-1.el5.ia64.rpm
ocfs2-2.6.18-308.24.1.el5xen-1.4.10-1.el5.ia64.rpm
ocfs2-2.6.18-308.24.1.el5debug-1.4.10-1.el5.ia64.rpm
SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/oracleasm-2.6.18-308.24.1.el5-2.0.5-1.el5.src.rpm
http://oss.oracle.com/el5/SRPMS-updates/ocfs2-2.6.18-308.24.1.el5-1.4.10-1.el5.src.rpm
Description of changes:
kernel
[2.6.18-308.24.1.el5]
- Revert: [scsi] sg: fix races during device removal (Ewan Milne)
[868950 861004]
[2.6.18-308.23.1.el5]
- [net] bnx2x: Add remote-fault link detection (Alexander Gordeev)
[870120 796905]
- [net] bnx2x: Cosmetic changes (Alexander Gordeev) [870120 796905]
- [net] rds-ping cause kernel panic (Alexander Gordeev) [822755 822756]
{CVE-2012-2372}
- [xen] add guest address range checks to XENMEM_exchange handlers (Igor
Mammedov) [878033 878034] {CVE-2012-5513}
- [xen] x86/physmap: Prevent incorrect updates of m2p mappings (Igor
Mammedov) [870148 870149] {CVE-2012-4537}
- [xen] VCPU/timer: Dos vulnerability prev overflow in calculations
(Igor Mammedov) [870150 870151] {CVE-2012-4535}
- [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]
[2.6.18-308.22.1.el5]
- [net] bonding: fix link down handling in 802.3ad mode (Andy
Gospodarek) [877943 782866]
[2.6.18-308.21.1.el5]
- [fs] ext4: race-cond protect for convert_unwritten_extents_endio
(Lukas Czerner) [869910 869911] {CVE-2012-4508}
- [fs] ext4: serialize fallocate w/ ext4_convert_unwritten_extents
(Lukas Czerner) [869910 869911] {CVE-2012-4508}
- [fs] ext4: flush the i_completed_io_list during ext4_truncate (Lukas
Czerner) [869910 869911] {CVE-2012-4508}
- [net] WARN if struct ip_options was allocated directly by kmalloc
(Jiri Pirko) [874973 872612]
- [net] ipv4: add RCU protection to inet->opt (Jiri Pirko) [872113
855302] {CVE-2012-3552}
- [scsi] qla2xx: Don't toggle inter bits after IRQ lines attached (Chad
Dupuis) [870118 800708]
More information about the El-errata
mailing list