[El-errata] New updates available via Ksplice (ELBA-2013-2501)

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Fri Jan 18 09:33:06 PST 2013 

Synopsis: ELBA-2013-2501 can now be patched using Ksplice
CVEs: CVE-2012-4508

Users with Oracle Linux Premier Support can now use Ksplice to patch
against the latest Oracle kernel update, ELBA-2013-2501.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack on EL 5 install these
updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* cgroup notify_on_release logic error.

A logic error in the kernel cgroup implementation can cause
notify_on_release to not be triggered correctly when the last process in
a cgroup leaves.


* Incorrect stacktrace in kernel dmesg output.

The kernel uses the wrong register value when logging stacktrace
information leading to incorrect stacktraces in dmesg output.


* Incorrect ARP bridging in bonding.

When using adaptive load balancing, the kernel incorrectly modifies ARP
packets that arrived via a bridge rendering peers unable to communicate
with the destination that the ARP reply originated.


* ext4 filesystem corruption on fallocate.

Attempting to fallocate() a file over 4GB with insufficient space on an
ext4 filesystem could result in corruption of the filesystem image.


* CVE-2012-4508: Stale data exposure in ext4.

A race condition in the usage of asynchronous IO and fallocate on an
ext4 filesystem could lead to exposure of stale data from a deleted
file. An unprivileged local user could use this flaw to read privileged
information.


* Add suspend and resume support to Oracle VM API.

This update adds suspend and resume support to the Oracle VM messaging
driver, allowing VMs with the driver loaded to be migrated between hosts.


* Deadlock in RDS congestion queueing.

A deadlock can be triggered when transmitting RDS packets that been
queued because of congestion.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the El-errata mailing list