[El-errata] ELSA-2016-2006 Important: Oracle Linux 6 kernel security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Oct 4 21:04:12 PDT 2016


Oracle Linux Security Advisory ELSA-2016-2006

http://linux.oracle.com/errata/ELSA-2016-2006.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
kernel-2.6.32-642.6.1.el6.i686.rpm
kernel-abi-whitelists-2.6.32-642.6.1.el6.noarch.rpm
kernel-debug-2.6.32-642.6.1.el6.i686.rpm
kernel-debug-devel-2.6.32-642.6.1.el6.i686.rpm
kernel-devel-2.6.32-642.6.1.el6.i686.rpm
kernel-doc-2.6.32-642.6.1.el6.noarch.rpm
kernel-firmware-2.6.32-642.6.1.el6.noarch.rpm
kernel-headers-2.6.32-642.6.1.el6.i686.rpm
perf-2.6.32-642.6.1.el6.i686.rpm
python-perf-2.6.32-642.6.1.el6.i686.rpm

x86_64:
kernel-2.6.32-642.6.1.el6.x86_64.rpm
kernel-abi-whitelists-2.6.32-642.6.1.el6.noarch.rpm
kernel-debug-2.6.32-642.6.1.el6.x86_64.rpm
kernel-debug-devel-2.6.32-642.6.1.el6.i686.rpm
kernel-debug-devel-2.6.32-642.6.1.el6.x86_64.rpm
kernel-devel-2.6.32-642.6.1.el6.x86_64.rpm
kernel-doc-2.6.32-642.6.1.el6.noarch.rpm
kernel-firmware-2.6.32-642.6.1.el6.noarch.rpm
kernel-headers-2.6.32-642.6.1.el6.x86_64.rpm
perf-2.6.32-642.6.1.el6.x86_64.rpm
python-perf-2.6.32-642.6.1.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/kernel-2.6.32-642.6.1.el6.src.rpm



Description of changes:

[2.6.32-642.6.1.el6]
- [net] tcp: make challenge acks less predictable (Florian Westphal) 
[1355606 1355607] {CVE-2016-5696}
- [fs] sunrpc: move NO_CRKEY_TIMEOUT to the auth->au_flags (Scott 
Mayhew) [1366962 1294939]
- [usbhid] hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES 
commands (Yauheni Kaliuta) [1359999 1360008] {CVE-2016-5829}

[2.6.32-642.5.1.el6]
- [scsi] megaraid_sas: Do not fire MR_DCMD_PD_LIST_QUERY to controllers 
which do not support it (Tomas Henzl) [1359039 1352826]
- [scsi] libfc: sanity check cpu number extracted from xid (Chris Leech) 
[1359036 1351356]
- [security] keys: potential uninitialized variable (Mateusz Guzik) 
[1345945 1345946] {CVE-2016-4470}
- [fs] gfs2: Lock holder cleanup (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Large-filesystem fix for 32-bit systems (Robert S Peterson) 
[1359038 1238861]
- [fs] gfs2: Get rid of gfs2_ilookup (Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Fix gfs2_lookup_by_inum lock inversion (Robert S Peterson) 
[1359038 1238861]
- [fs] gfs2: Initialize iopen glock holder for new inodes (Robert S 
Peterson) [1359038 1238861]
- [fs] gfs2: Release iopen glock in gfs2_create_inode error cases 
(Robert S Peterson) [1359038 1238861]
- [fs] gfs2: Wait for iopen glock dequeues (Robert S Peterson) [1359038 
1238861]
- [fs] gfs2: Re-add an omission from upstream (Robert S Peterson) 
[1359038 1238861]
- [fs] gfs2: Eliminate parameter non_block on gfs2_inode_lookup (Robert 
S Peterson) [1359038 1238861]
- [fs] gfs2: Don't filter out I_FREEING inodes anymore (Robert S 
Peterson) [1359038 1238861]
- [fs] gfs2: Check if iopen is held when deleting inode (Robert S 
Peterson) [1359037 1173286]
- [fs] gfs2: Don't do glock put when inode creation fails (Robert S 
Peterson) [1359037 1173286]
- [fs] gfs2: Prevent delete work from occurring on glocks used for 
create (Robert S Peterson) [1359037 1173286]
- [fs] gfs2: Always use iopen glock for gl_deletes (Robert S Peterson) 
[1359037 1173286]
- [fs] gfs2: Update master statfs buffer with sd_statfs_spin locked 
(Robert S Peterson) [1359037 1173286]







More information about the El-errata mailing list