[Oraclevm-errata] OVMSA-2013-0039 Oracle VM 2.2 kernel security and bug fix update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Thu May 23 16:26:21 PDT 2013
Oracle VM Security Advisory OVMSA-2013-0039
The following updated rpms for Oracle VM 2.2 have been uploaded to the
Unbreakable Linux Network:
i386:
kernel-2.6.18-128.2.1.5.10.el5.i686.rpm
kernel-devel-2.6.18-128.2.1.5.10.el5.i686.rpm
kernel-ovs-2.6.18-128.2.1.5.10.el5.i686.rpm
kernel-ovs-devel-2.6.18-128.2.1.5.10.el5.i686.rpm
kernel-PAE-2.6.18-128.2.1.5.10.el5.i686.rpm
kernel-PAE-devel-2.6.18-128.2.1.5.10.el5.i686.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/2.2/SRPMS-updates/kernel-2.6.18-128.2.1.5.10.el5.src.rpm
Description of changes:
[2.6.18-128.2.1.5.10.el5]
- Revert for bug 16171644 causing oom [Orabug 16822036]
- Revert for bug 14470382 causing hang in bonded interface [Orabug 16725983]
[2.6.18-128.2.1.5.9.el5]
- [fs] ocfs2: fix dlm lock migration (Junxiao Bi) [Orabug 14276711]
- [net] core: add NETDEV_BONDING_FAILOVER event (Jianhai Luan)
[Orabug 14470382]
- [net] bonding: deliver netdev event for fail-over under the active-backup
mode (Jianhai Luan) [Orabug 14470382]
- [net] bonding: remap muticast addresses without using dev_close() and
dev_open() (Jianhai Luan) [Orabug 14470382]
- [net] xen-netback notify frontend to send gratuitous ARP (Jianhai Luan)
[Orabug 14470382]
[2.6.18-128.2.1.5.8.el5]
- xen/blkback: don't fail empty barrier requests [Orabug 16171644]
[2.6.18-128.2.1.5.7.el5]
- Make connection track ip fragment bridge in status.(Joe Jin) [orabug
14348016,15899784]
[2.6.18-128.2.1.5.6.el5]
- Merge ocfs2-1.4.10 patches [orabug 16212894]
[2.6.18-128.2.1.5.5.el5]
- [xen] mm: Don't allocate PTE from highmem even CONFIG_HIGHPTE=y (Joe
Jin) [orabug 12613999]
- [net] qlge: upgrade to 1.00.00.31 (Joe Jin) [orabug 16180664]
[2.6.18-128.2.1.5.4.el5]
- backport bfa-2.3.2.5 from el5-u7 (Zhenzhong Duan) [orabug 12628854]
[2.6.18-128.2.1.5.3.el5]
- Upgrade mpt2sas to 09.101.00.00 (Joe Jin) [orabug 14335453]
- [acpi] bus: check if list is empty before kfree()ing it (Joe Jin)
[orabug 13952978]
- [block] loop: fix fastfs losetup release race (Joe Jin) [orabug 13705189]
- update lpfc driver from 8.2.0.48.2p to 8.2.0.106.1p. (Xiaowei Hu)
[orabug 13466013]
- update bnx2 to 2.1.12b
update cnic to 2.5.7g
update bnx2x to 1.70.32
update bnx2i to 2.7.0.4h (Xiaowei Hu) [orabug 13325099]
- modify iscsi lib layer to fit the new bnx2i driver (Xiaowei Hu)
[orabug 13325099]
- backport bfa-2.3.2.5 from el5-u7 (Zhenzhong Duan) [orabug 12628854]
- ocfs2: kernel panic with mount on write-protected device (Sunil
Mushran, Tiger Yang) [orabug 12581206]
- [scsi] update megaraid_sas driver to ol5u8 latest 00.00.05.40-rh2.
(Xiaowei Hu) [orabug 14697499]
- update bnx2 to 2.2.3c; bnx2x to 1.74.09; bnx2i to 2.7.4.1d (Xiaowei
Hu) [14546764]
- Fix leap second hang (Prarit Bhargava) [orabug 14193802]
[2.6.18-128.2.1.5.2.el5]
- OVM 2.2.2 -> OVM 2.2.3 CVEs
- CVE-2009-1388-Denial-of-service-in-ptrace [orabug 14071808]
{CVE-2009-1388}
- CVE-2009-1389-Remote-buffer-overflow-in-RTL8169-driv [orabug 14071808]
{CVE-2009-1389}
- CVE-2009-2406-Buffer-validation-errors-in-eCryptfs-t [orabug 14071808]
{CVE-2009-2406}
- CVE-2009-2407-Buffer-validation-error-in-eCryptfs-ta [orabug 14071808]
{CVE-2009-2407}
- CVE-2009-1895-Fix-bypass-of-mmap_min_addr-restrictio [orabug 14071808]
{CVE-2009-1895}
- CVE-2009-2692-Local-privilege-escalation-in-sock_sen [orabug 14071808]
{CVE-2009-2692}
- CVE-2009-0745-Denial-of-Service-during-ext4-resize [orabug 14071808]
{CVE-2009-0745}
- CVE-2009-0746-Denial-of-service-with-corrupted-ext4- [orabug 14071808]
{CVE-2009-0746}
- CVE-2009-0747-Denial-of-service-mounting-corrupted-e [orabug 14071808]
{CVE-2009-0747}
- CVE-2009-0748-Denial-of-service-mounting-corrupted-e [orabug 14071808]
{CVE-2009-0748}
- CVE-2009-2848-Local-privilege-escalation-due-to-clea [orabug 14071808]
{CVE-2009-2848}
- CVE-2009-2847-Information-leak-in-sigaltstack [orabug 14071808]
{CVE-2009-2847}
- Ksplice-Fix-for-CVE-2009-3286-without-modifying-stru [orabug 14071808]
{CVE-2009-3286}
- CVE-2009-2908-NULL-pointer-dereference-in-eCryptfs [orabug 14071808]
{CVE-2009-2908}
- CVE-2009-3547-NULL-pointer-dereference-opening-pipes [orabug 14071808]
{CVE-2009-3547}
- CVE-2009-3621-Denial-of-service-shutting-down-abstra [orabug 14071808]
{CVE-2009-3621}
- CVE-2009-3620-NULL-pointer-dereference-in-ATI-Rage-1 [orabug 14071808]
{CVE-2009-3620}
- CVE-2009-3726-NFSv4-Denial-of-Service-in-NFS-client [orabug 14071808]
{CVE-2009-3726}
- CVE-2009-3612-Information-leak-in-the-netlink-subsys [orabug 14071808]
{CVE-2009-3612}
- CVE-2007-4567-Remote-denial-of-service-in-IPv6 [orabug 14071808]
{CVE-2007-4567}
- CVE-2009-4538-Denial-of-service-in-e1000e-driver [orabug 14071808]
{CVE-2009-4538}
- CVE-2009-4537-Buffer-underflow-in-r8169-driver [orabug 14071808]
{CVE-2009-4537}
- CVE-2009-4536-Denial-of-service-in-e1000-driver [orabug 14071808]
{CVE-2009-4536}
- CVE-2009-4141-Local-privilege-escalation-in-fasync_h [orabug 14071808]
{CVE-2009-4141}
- CVE-2009-3080-Privilege-Escalation-in-GDT-driver [orabug 14071808]
{2009-3080}
- CVE-2009-4021-Denial-of-service-in-fuse_direct_io [orabug 14071808]
{CVE-2009-4021}
- CVE-2009-4020-Buffer-overflow-mounting-corrupted-hfs [orabug 14071808]
{CVE-2009-4020}
- CVE-2006-6304-Rewrite-attack-flaw-in-do_coredump [orabug 14071808]
{CVE-2006-6304}
- CVE-2009-4138-NULL-pointer-dereference-flaw-in-firew [orabug 14071808]
{CVE-2009-4138}
- CVE-2010-0437-NULL-pointer-dereference-in-ip6_dst_lo [orabug 14071808]
{CVE-2010-0437}
- CVE-2010-0007-Missing-capabilities-check-in-ebtables [orabug 14071808]
{CVE-2010-0007}
- CVE-2010-0415-Information-Leak-in-sys_move_pages [orabug 14071808]
{CVE-2010-0415}
- CVE-2009-4308-NULL-pointer-dereference-in-ext4-decod [orabug 14071808]
{CVE-2009-4308}
- CVE-2009-4307-Divide-by-zero-mounting-an-ext4-filesy [orabug 14071808]
{CVE-2009-4307}
- CVE-2010-0727-Denial-of-Service-in-GFS2-locking [orabug 14071808]
{CVE-2010-0727}
- CVE-2010-1086-Infinite-loop-in-ULE-implementation [orabug 14071808]
{CVE-2010-1086}
- CVE-2010-1436-Privilege-escalation-in-GFS2-server [orabug 14071808]
{CVE-2010-1436}
- CVE-2010-1087-Oops-when-truncating-a-file-in-NFS [orabug 14071808]
{CVE-2010-1087}
- CVE-2010-1088-Privilege-escalation-with-automount-sy [orabug 14071808]
{CVE-2010-1088}
- CVE-2010-0622-Privilege-escalation-by-futex-corrupti [orabug 14071808]
{CVE-2010-0622}
- CVE-2010-1437-Privilege-escalation-in-key-management [orabug 14071808]
{CVE-2010-1437}
- CVE-2010-1641-Permission-check-bypass-in-GFS2 [orabug 14071808]
{CVE-2010-1641}
- CVE-2010-1084-Privilege-escalation-in-Bluetooth-subs [orabug 14071808]
{CVE-2010-1084}
- CVE-2010-2248-Remote-denial-of-service-in-CIFS-clien [orabug 14071808]
{CVE-2010-2248}
- CVE-2010-2521-Remote-buffer-overflow-in-NFSv4-server [orabug 14071808]
{CVE-2010-2521}
- CVE-2010-2240 [orabug 14071808] {CVE-2010-2240}
- CVE-2010-2226-Read-access-to-write-only-files-in-XFS [orabug 14071808]
{CVE-2010-2226}
- CVE-2010-2798-Denial-of-service-in-GFS2 [orabug 14071808] {CVE-2010-2798}
- CVE-2010-1173-sctp-Fix-skb_over_panic-resulting-from-multiple-inva
[orabug 14071808] {CVE-2010-1173}
- Improved-fix-to-CVE-2010-1173 [orabug 14071808] {CVE-2010-1173}
- CVE-2010-1083-Information-leak-in-USB-implementation [orabug 14071808]
{CVE-2010-1083}
- CVE-2010-2942-Information-leaks-in-traffic-control-d [orabug 14071808]
{CVE-2010-2942}
- CVE-2010-3067-Information-leak-in-sys_io_submit [orabug 14071808]
{CVE-2010-3067}
- CVE-2010-3078-Information-leak-in-xfs_ioc_fsgetxattr [orabug 14071808]
{CVE-2010-3078}
- CVE-2010-3086-Denial-of-Service-in-futex-atomic-oper [orabug 14071808]
{CVE-2010-3086}
- CVE-2010-3477-Information-leak-in-tcf_act_police_dum [orabug 14071808]
{CVE-2010-3477}
- CVE-2010-2963-Kernel-memory-overwrite-in-VIDIOCSMICR [orabug 14071808]
{CVE-2010-2963}
- CVE-2010-3432-Remote-denial-of-service-vulnerability [orabug 14071808]
{CVE-2010-3432}
- CVE-2010-3442-Heap-corruption-vulnerability-in-ALSA- [orabug 14071808]
{CVE-2010-3442}
- CVE-2010-3876-Kernel-information-leak-in-packet-subs [orabug 14071808]
{CVE-2010-3876}
- CVE-2010-4248-Race-condition-in-__exit_signal-with-m [orabug 14071808]
{CVE-2010-4248}
- CVE-2010-4083-Kernel-information-leak-in-semctl-sysc [orabug 14071808]
{CVE-2010-4083}
- CVE-2010-4242-NULL-pointer-dereference-in-Bluetooth- [orabug 14071808]
{CVE-2010-4242}
- CVE-2010-4157-Memory-corruption-in-Intel-ICP-RAID-dr [orabug 14071808]
{CVE-2010-4157}
- CVE-2010-3858-Denial-of-service-vulnerability-with-l [orabug 14071808]
{CVE-2010-3858}
- CVE-2010-3859-Heap-overflow-vulnerability-in-TIPC-pr [orabug 14071808]
{CVE-2010-3859}
- CVE-2010-3296-Kernel-information-leak-in-cxgb-driver [orabug 14071808]
{CVE-2010-3296}
- CVE-2010-3877-Kernel-information-leak-in-tipc-driver [orabug 14071808]
{CVE-2010-3877}
- CVE-2010-4073-Kernel-information-leaks-in-ipc-compat [orabug 14071808]
{CVE-2010-4073}
- CVE-2010-4258-Failure-to-revert-address-limit-overri [orabug 14071808]
{CVE-2010-4258}
- CVE-2010-4080-and-CVE-2010-4081-Information-leaks-in [orabug 14071808]
{CVE-2010-4080}
- CVE-2010-4158-Kernel-information-leak-in-socket-filt [orabug 14071808]
{CVE-2010-4158}
- CVE-2010-4249-Local-denial-of-service-vulnerability- [orabug 14071808]
{CVE-2010-4249}
- CVE-2010-4655-Information-leak-in-ethtool_get_regs [orabug 14071808]
{CVE-2010-4655}
- CVE-2010-1188-Use-after-free-bug-in-tcp_rcv_state_pr [orabug 14071808]
{CVE-2010-1188}
- CVE-2010-4346-mmap_min_addr-bypass-in-install_specia [orabug 14071808]
{CVE-2010-4346}
- CVE-2011-0521-Missing-boundary-check-in-dvb_ca_ioctl [orabug 14071808]
{CVE-2011-0521}
- CVE-2011-1090-Denial-of-Service-in-NFSv4-client [orabug 14071808]
{CVE-2011-1090}
- CVE-2011-1010-Denial-of-service-parsing-malformed-Ma [orabug 14071808]
{CVE-2011-1010}
- CVE-2011-1079-Missing-validation-in-bnep_sock_ioctl [orabug 14071808]
{CVE-2011-1079}
- CVE-2011-1093-Remote-Denial-of-Service-in-DCCP [orabug 14071808]
{CVE-2011-1093}
- CVE-2011-0726-Information-leak-in-proc-pid-stat [orabug 14071808]
{CVE-2011-0726}
- CVE-2011-1080-Information-leak-in-netfilter [orabug 14071808]
{CVE-2011-1080}
- CVE-2011-1163-Kernel-information-leak-parsing-malfor [orabug 14071808]
{CVE-2011-1163}
- USB-Audio-regression-introduced-by-CVE-2010-1083-fix [orabug 14071808]
{CVE-2010-1083}
- CVE-2011-1577-Missing-boundary-checks-in-GPT-partiti [orabug 14071808]
{CVE-2011-1577}
- CVE-2011-1078-Information-leak-in-Bluetooth-sco [orabug 14071808]
{CVE-2011-1078}
- CVE-2011-1573-Remote-denial-of-service-in-SCTP [orabug 14071808]
{CVE-2011-1573}
- CVE-2011-1776-Missing-validation-for-GPT-partitions [orabug 14071808]
{CVE-2011-1776}
- CVE-2010-4649-CVE-2011-1044-Buffer-overflow-in-Infin [orabug 14071808]
{CVE-2010-4649}
- CVE-2011-1745-CVE-2011-2022-Privilege-escalation-in- [orabug 14071808]
{CVE-2011-1745}
- CVE-2011-1746-Integer-overflow-in-agp_allocate_memor [orabug 14071808]
{CVE-2011-1746}
- CVE-2011-1182-Missing-validation-check-in-signals-im [orabug 14071808]
{CVE-2011-1182}
- CVE-2011-2213-Denial-of-service-in-inet_diag_bc_audi [orabug 14071808]
{CVE-2011-2213}
- CVE-2011-2525-Denial-of-Service-in-packet-scheduler- [orabug 14071808]
{CVE-2011-2525}
- CVE-2011-2482-Remote-denial-of-service-vulnerability [orabug 14071808]
{CVE-2011-2482}
- CVE-2011-2491 [orabug 14071808] {CVE-2011-2491}
- CVE-2011-1160-Information-leak-in-tpm-driver [orabug 14071808]
{CVE-2011-1160}
- CVE-2011-1585-Authentication-bypass-in-CIFS [orabug 14071808]
{CVE-2011-1585}
- CVE-2011-2484-Denial-of-service-in-taskstats-subsyst [orabug 14071808]
{CVE-2011-2484}
- CVE-2011-2496 [orabug 14071808] {CVE-2011-2496}
- CVE-2009-4067-Buffer-overflow-in-Auerswald-usb-drive [orabug 14071808]
{CVE-2009-4067}
- CVE-2011-1833-Information-disclosure-in-eCryptfs [orabug 14071808]
{CVE-2011-1833}
- CVE-2011-3191-Memory-corruption-in-CIFSFindNext [orabug 14071808]
{CVE-2011-3191}
- CVE-2011-4110-Null-pointer-dereference-in-key-subsys [orabug 14071808]
{CVE-2011-4110}
- CVE-2011-1162-Information-leak-in-TPM-driver [orabug 14071808]
{CVE-2011-1162}
- CVE-2011-2203-Null-pointer-dereference-mounting-HFS- [orabug 14071808]
{CVE-2011-2203}
- CVE-2011-4077-Buffer-overflow-in-xfs_readlink [orabug 14071808]
{CVE-2011-4077}
- CVE-2011-4330-Buffer-overflow-in-HFS-file-name-trans [orabug 14071808]
{CVE-2011-4330}
- CVE-2011-4324-Denial-of-service-vulnerability-in-NFS [orabug 14071808]
{CVE-2011-4324}
- CVE-2011-4348-Socket-locking-race-in-SCTP [orabug 14071808]
{CVE-2011-4348}
- CVE-2011-1020-and-CVE-2011-3637 [orabug 14071808] {CVE-2011-1020}
- CVE-2011-4086-Denial-of-service-in-journaling-block- [orabug 14071808]
{CVE-2011-4086}
- CVE-2011-3638-Disk-layout-corruption-bug-in-ext4-fil [orabug 14071808]
{CVE-2011-3638}
- CVE-2011-4127-Privilege-escalation-in-SCSI-SG_IO-ioc [orabug 14071808]
{CVE-2011-4127}
- CVE-2011-1083 [orabug 14071808] {CVE-2011-1083}
- CVE-2012-1583-use-after-free-in-IPv6-tunneling [orabug 14071808]
{CVE-2012-1583}
- CVE-2012-2136 [orabug 14071808] {CVE-2012-2136}
[2.6.18-128.2.1.4.49.el5]
- [nfs] add an nfsiod workqueue (Ian Kent) [489931]
- [nfs] nfsiod: ensure the asynchronous RPC calls complete (Ian Kent)
[489931]
- [nfs] sunrpc: allow rpc_release() CB run on another workq (Ian Kent)
[489931]
- [nfs] fix a deadlock with lazy umount -2 (Ian Kent) [489931]
- [nfs] fix a deadlock with lazy umount (Ian Kent) [489931]
- [fs] nfs: Fix a use-after-free case in nfs_async_rename() (Jeff
Layton) [511901]
- [fs] nfs: make sillyrename an async operation (Jeff Layton) [511901]
- [fs] nfs: move nfs_sillyrename to unlink.c (Jeff Layton) [511901]
- [fs] nfs: standardize the rename response container (Jeff Layton) [511901]
- [fs] nfs: standardize the rename args container (Jeff Layton) [511901]
[2.6.18-128.2.1.4.48.el5]
- netback: Fixes for delayed copy of tx network packets(Joe Jin) [Orabug
12975068,13058629]
[2.6.18-128.2.1.4.47.el5]
- merge the patches for 2.6.18-128.2.1.4.45 and .46 to branches/ovm-2.2.2/:
- ovs-xen-dom0-ocfs2-1.4.8-fixversion.patch
- bonding_jiffies_overflow.patch
- bonding_delay_fix.patch
- add Oracle bug numbers to the patch headers
[2.6.18-128.2.1.4.46.el5]
- update ixgbe to 3.7.17 [orabug 13947240]
[2.6.18-128.2.1.4.45.el5]
- fix bonding failover problems with patches from upstream [orabug 12696763]
More information about the Oraclevm-errata
mailing list