[El-errata] ELSA-2013-0747-1 Moderate: Oracle Linux 5 kernel security and bug fix update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Apr 18 05:48:23 PDT 2013
Oracle Linux Security Advisory ELSA-2013-0747-1
https://rhn.redhat.com/errata/RHSA-2013-0747.html
The following updated rpms for Oracle Linux 5 have been uploaded to the
Unbreakable Linux Network:
i386:
kernel-2.6.18-348.4.1.0.1.el5.i686.rpm
kernel-PAE-2.6.18-348.4.1.0.1.el5.i686.rpm
kernel-PAE-devel-2.6.18-348.4.1.0.1.el5.i686.rpm
kernel-debug-2.6.18-348.4.1.0.1.el5.i686.rpm
kernel-debug-devel-2.6.18-348.4.1.0.1.el5.i686.rpm
kernel-devel-2.6.18-348.4.1.0.1.el5.i686.rpm
kernel-doc-2.6.18-348.4.1.0.1.el5.noarch.rpm
kernel-headers-2.6.18-348.4.1.0.1.el5.i386.rpm
kernel-xen-2.6.18-348.4.1.0.1.el5.i686.rpm
kernel-xen-devel-2.6.18-348.4.1.0.1.el5.i686.rpm
x86_64:
kernel-2.6.18-348.4.1.0.1.el5.x86_64.rpm
kernel-debug-2.6.18-348.4.1.0.1.el5.x86_64.rpm
kernel-debug-devel-2.6.18-348.4.1.0.1.el5.x86_64.rpm
kernel-devel-2.6.18-348.4.1.0.1.el5.x86_64.rpm
kernel-doc-2.6.18-348.4.1.0.1.el5.noarch.rpm
kernel-headers-2.6.18-348.4.1.0.1.el5.x86_64.rpm
kernel-xen-2.6.18-348.4.1.0.1.el5.x86_64.rpm
kernel-xen-devel-2.6.18-348.4.1.0.1.el5.x86_64.rpm
ia64:
kernel-2.6.18-348.4.1.0.1.el5.ia64.rpm
kernel-debug-2.6.18-348.4.1.0.1.el5.ia64.rpm
kernel-debug-devel-2.6.18-348.4.1.0.1.el5.ia64.rpm
kernel-devel-2.6.18-348.4.1.0.1.el5.ia64.rpm
kernel-doc-2.6.18-348.4.1.0.1.el5.noarch.rpm
kernel-headers-2.6.18-348.4.1.0.1.el5.ia64.rpm
kernel-xen-2.6.18-348.4.1.0.1.el5.ia64.rpm
kernel-xen-devel-2.6.18-348.4.1.0.1.el5.ia64.rpm
SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/kernel-2.6.18-348.4.1.0.1.el5.src.rpm
The following packages were rebuilt to be in sync with the updated
kernel version (no changes other than updating the version number):
i386:
oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-348.4.1.0.1.el5PAE-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-348.4.1.0.1.el5xen-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-348.4.1.0.1.el5debug-2.0.5-1.el5.i686.rpm
ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-348.4.1.0.1.el5PAE-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-348.4.1.0.1.el5xen-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-348.4.1.0.1.el5debug-1.4.10-1.el5.i686.rpm
x86_64:
oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.x86_64.rpm
oracleasm-2.6.18-348.4.1.0.1.el5xen-2.0.5-1.el5.x86_64.rpm
oracleasm-2.6.18-348.4.1.0.1.el5debug-2.0.5-1.el5.x86_64.rpm
ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.x86_64.rpm
ocfs2-2.6.18-348.4.1.0.1.el5xen-1.4.10-1.el5.x86_64.rpm
ocfs2-2.6.18-348.4.1.0.1.el5debug-1.4.10-1.el5.x86_64.rpm
ia64:
oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.ia64.rpm
oracleasm-2.6.18-348.4.1.0.1.el5xen-2.0.5-1.el5.ia64.rpm
oracleasm-2.6.18-348.4.1.0.1.el5debug-2.0.5-1.el5.ia64.rpm
ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.ia64.rpm
ocfs2-2.6.18-348.4.1.0.1.el5xen-1.4.10-1.el5.ia64.rpm
ocfs2-2.6.18-348.4.1.0.1.el5debug-1.4.10-1.el5.ia64.rpm
SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/oracleasm-2.6.18-348.4.1.0.1.el5-2.0.5-1.el5.src.rpm
http://oss.oracle.com/el5/SRPMS-updates/ocfs2-2.6.18-348.4.1.0.1.el5-1.4.10-1.el5.src.rpm
Description of changes:
kernel
[2.6.18-348.4.1.0.1.el5]
- [oprofile] x86, mm: Add __get_user_pages_fast() [orabug 14277030]
- [oprofile] export __get_user_pages_fast() function [orabug 14277030]
- [oprofile] oprofile, x86: Fix nmi-unsafe callgraph support [orabug
14277030]
- [oprofile] oprofile: use KM_NMI slot for kmap_atomic [orabug 14277030]
- [oprofile] oprofile: i386 add get_user_pages_fast support [orabug
14277030]
- [kernel] Initialize the local uninitialized variable stats. [orabug
14051367]
- [fs] JBD:make jbd support 512B blocks correctly for ocfs2. [orabug
13477763]
- [x86 ] fix fpu context corrupt when preempt in signal context [orabug
14038272]
- [mm] fix hugetlb page leak (Dave McCracken) [orabug 12375075]
- fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong
Duan)
- [x86] use dynamic vcpu_info remap to support more than 32 vcpus
(Zhenzhong Duan)
- [x86] Fix lvt0 reset when hvm boot up with noapic param
- [scsi] remove printk's when doing I/O to a dead device (John Sobecki,
Chris Mason)
[orabug 12342275]
- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug
12561346]
- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]
- [net] net: Redo the broken redhat netconsole over bonding (Tina Yang)
[orabug 12740042]
- [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin)
[orabug 12687646]
- fix filp_close() race (Joe Jin) [orabug 10335998]
- make xenkbd.abs_pointer=1 by default [orabug 67188919]
- [xen] check to see if hypervisor supports memory reservation change
(Chuck Anderson) [orabug 7556514]
- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf
(John Sobecki)
[orabug 10315433]
- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]
- [mm] Patch shrink_zone to yield during severe mempressure events, avoiding
hangs and evictions (John Sobecki,Chris Mason) [orabug 6086839]
- [mm] Enhance shrink_zone patch allow full swap utilization, and also be
NUMA-aware (John Sobecki,Chris Mason,Herbert van den Bergh) [orabug
9245919]
- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]
- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)
[orabug 9107465]
- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)
[orabug 9764220]
- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]
- fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro,
Guru Anbalagane) [orabug 6124033]
- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]
- [ib] fix memory corruption (Andy Grover) [orabug 9972346]
- [usb] USB: fix __must_check warnings in drivers/usb/core/ (Junxiao Bi)
[orabug 14795203]
- [usb] usbcore: fix endpoint device creation (Junxiao Bi) [orabug 14795203]
- [usb] usbcore: fix refcount bug in endpoint removal (Junxiao Bi)
[orabug 14795203]
[2.6.18-348.4.1.el5]
- [virt] xen-netback: backports (Andrew Jones) [910884 910885]
{CVE-2013-0216}
- [virt] xen-netback: netif_schedulable should take a netif (Andrew
Jones) [910884 910885] {CVE-2013-0216}
- [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor
Mammedov) [910876 910877] {CVE-2013-0231}
- [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera)
[923910 907524]
- [net] ipv4: Update MTU to all related cache entries (Amerigo Wang)
[923353 905190]
- [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190]
- [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf)
[922426 922427] {CVE-2012-6537}
- [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf)
[922426 922427] {CVE-2012-6537}
- [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf)
[922426 922427] {CVE-2012-6537}
- [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf)
[922384 922385] {CVE-2012-6546}
- [net] atm: fix info leak via getsockname() (Thomas Graf) [922384
922385] {CVE-2012-6546}
- [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349]
{CVE-2012-6547}
- [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329]
{CVE-2012-6542}
- [net] llc: fix info leak via getsockname() (Thomas Graf) [922327
922329] {CVE-2012-6542}
- [net] xfrm_user: return error pointer instead of NULL (Thomas Graf)
[919386 919387] {CVE-2013-1826}
- [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name
(Laszlo Ersek) [924134 862862]
- [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos)
[924087 918952]
More information about the El-errata
mailing list