[El-errata] ELBA-2012-2012 Oracle Linux 6 Unbreakable Enterprise kernel bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Mon May 14 17:05:00 PDT 2012


Oracle Linux Bug Fix Advisory ELBA-2012-2012

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
kernel-uek-firmware-2.6.32-300.24.1.el6uek.noarch.rpm
kernel-uek-doc-2.6.32-300.24.1.el6uek.noarch.rpm
kernel-uek-2.6.32-300.24.1.el6uek.i686.rpm
kernel-uek-headers-2.6.32-300.24.1.el6uek.i686.rpm
kernel-uek-devel-2.6.32-300.24.1.el6uek.i686.rpm
kernel-uek-debug-devel-2.6.32-300.24.1.el6uek.i686.rpm
kernel-uek-debug-2.6.32-300.24.1.el6uek.i686.rpm
ofa-2.6.32-300.24.1.el6uek-1.5.1-4.0.47.i686.rpm
ofa-2.6.32-300.24.1.el6uekdebug-1.5.1-4.0.47.i686.rpm
mlnx_en-2.6.32-300.24.1.el6uek-1.5.7-0.1.i686.rpm
mlnx_en-2.6.32-300.24.1.el6uekdebug-1.5.7-0.1.i686.rpm

x86_64:
kernel-uek-firmware-2.6.32-300.24.1.el6uek.noarch.rpm
kernel-uek-doc-2.6.32-300.24.1.el6uek.noarch.rpm
kernel-uek-2.6.32-300.24.1.el6uek.x86_64.rpm
kernel-uek-headers-2.6.32-300.24.1.el6uek.x86_64.rpm
kernel-uek-devel-2.6.32-300.24.1.el6uek.x86_64.rpm
kernel-uek-debug-devel-2.6.32-300.24.1.el6uek.x86_64.rpm
kernel-uek-debug-2.6.32-300.24.1.el6uek.x86_64.rpm
ofa-2.6.32-300.24.1.el6uek-1.5.1-4.0.47.x86_64.rpm
ofa-2.6.32-300.24.1.el6uekdebug-1.5.1-4.0.47.x86_64.rpm
mlnx_en-2.6.32-300.24.1.el6uek-1.5.7-0.1.x86_64.rpm
mlnx_en-2.6.32-300.24.1.el6uekdebug-1.5.7-0.1.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-uek-2.6.32-300.24.1.el6uek.src.rpm
http://oss.oracle.com/ol6/SRPMS-updates/ofa-2.6.32-300.24.1.el6uek-1.5.1-4.0.47.src.rpm
http://oss.oracle.com/ol6/SRPMS-updates/mlnx_en-2.6.32-300.24.1.el6uek-1.5.7-0.1.src.rpm


Users with Oracle Linux Premier Support can now use Ksplice to patch
against this Bug Fix Advisory.

We recommend that all users of  Oracle Linux 5 install these updates.

Users of Ksplice Uptrack can install these updates by running :

# /usr/sbin/uptrack-upgrade -y
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any additional action.

Description of changes:

* Improve performance of kernel core dump.

Accesses to /proc/vmcore have been tuned to improve the performance of
obtaining a kernel core file.


* CVE-2012-1601: Denial of service in KVM VCPU creation.

Inconsistent state in the creation of KVM virtual CPU's could
lead to NULL pointer dereferences.  A unprivileged local user
could use this flaw to crash the system.


* NULL pointer dereference in SCSI subsystem.

A NULL pointer dereference in the SCSI subsystem could result in a
kernel panic.

kernel-uek:

[2.6.32-300.24.1.el6uek]
- [scsi] hpsa: Remove some PCI IDs if for OL5. (Joe Jin)
- [block] cciss: fix incorrect PCI IDs and add two new ones (Joe Jin)
- [scsi] hpsa: add some older controllers to the kdump blacklist (Joe Jin)
- [block] cciss: Add IRQF_SHARED back in for the non-MSI(X) interrupt 
handler
   (Joe Jin)
- [block] cciss: add some older controllers to the kdump blacklist (Joe Jin)
- cciss: add small delay when using PCI Power Management to reset for kump
   (Mike Miller)

[2.6.32-300.23.1.el6uek]
- scsi_prep_fn() check for empty queue (Maxim Uvarov) [Orabug: 13962432]
- mm, x86: Saving vmcore with non-lazy freeing of vmas (Cliff Wickman) 
[Orabug: 13729957]
- fs/proc/vmcore.c: add hook to read_from_oldmem() to check for non-ram 
pages
   (Olaf Hering) [Orabug: 13729957]
- /proc/vmcore: fix seeking (Arnd Bergmann) [Orabug: 13729957]
- procfs: Use generic_file_llseek in /proc/vmcore (Frederic Weisbecker) 
[Orabug: 13729957]
- dm mpath: wait for pg_init completion when suspending (Kiyoshi Ueda) 
[Orabug: 13962432]
- dm mpath: prevent io from work queue while suspended (Mike Anderson) 
[Orabug: 13962432]
- dm mpath: add mutex to synchronize adding and flushing work (Mike 
Anderson) [Orabug: 13962432]
- dm mpath: flush workqueues before suspend completes (Kiyoshi Ueda) 
[Orabug: 13962432]

[2.6.32-300.22.1.el6uek]
- KVM: Ensure all vcpus are consistent with in-kernel irqchip settings (Dan
   Carpenter) {CVE-2012-1601}
- KVM: x86: disallow multiple KVM_CREATE_IRQCHIP (Marcelo Tosatti) 
{CVE-2012-1601}





More information about the El-errata mailing list