ELSA-2006-0617

ELSA-2006-0617 - Important kernel security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2006-11-30

Description


[2.6.9-42.0.3.0.2]
-rebuilt for EL

[2.6.9-42.0.3.0.1]
-Fix bonding primary=ethX so it picks correct network [IT 101532] [ORA 5136660]

[2.6.9-42.0.3]
-fix mprotect to not allow permission subversion (Jason Baron) [190073] {CVE-2006-2071}
-fix sys_perfmonctl() file descriptor reference count issue (Anil Keshavamurthy) [204360] {CVE-2006-3741}
-Fix hugepage crash on failing mmap (Larry Woodman) [165345] {CVE-2005-4811}
-sctp: create abort messages properly (Neil Horman) [204460] {CVE-2006-4535}
-fix oops occuring from malformed ULE packet (Neil Horman) [204912] {CVE-2006-4623}
-ipw2[12]00: restore get_wireless_stats pointer (John Linville) [198820]
-ipw2200: accept broadcast MAC traffic (John Linville) [203421]
-fix netfilter do_add_counters race (Thomas Graf) [191698] {CVE-2006-0039}
-fix ip over atm clip_mkip may dereference freed pointer (Thomas Graf) [206265]
-ppc64: Clear EN_ATTN bit in PPC970 HID0 (David Woodhouse) [201684] {CVE-2006-4093}

[2.6.9-42.0.2]
-sctp: Fix data overflow in iovec computation (Neil Horman) [202122]

[2.6.9-42.0.1]
-fix O_DIRECT writes to memory holes can leak a page reference (Jeff Moyer) [191736] {CVE-2004-2660}
-fix sctp chunk length overflow (Neil Horman) [192636] {CVE-2006-1858}
-fix possible DoS in write routine of ftdi_sio driver (Pete Zaitcev) [197610] {CVE-2006-2936}
-fix typo in drivers/cdrom/cdrom.c (Chip Coldwell) [197670] {CVE-2006-2935}
-Fix reboot on IBM Pizzaro machines (Bastien Nocera) [200111]
-don't shut down on bogus filehandles from nfs clients (Eric Sandeen) [199172] {CVE-2006-3468}
-fix for prevention of setuid/gid on /proc/ files (Ernie Petrides) [198973] {CVE-2006-3626}
-fix SNMP NAT netfilter memory corruption (Thomas Graf) [192632] {CVE-2006-2444}
-fix for non-hugemem x86 DoS w/bogus %ds/%es values (Ernie Petrides) [196280] {CVE-2006-2932]


Related CVEs


CVE-2004-2660
CVE-2006-1858
CVE-2006-2444
CVE-2006-2932
CVE-2006-2935
CVE-2006-2936
CVE-2006-3468
CVE-2006-3626
CVE-2006-3745

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 4 (i386) kernel-2.6.9-42.0.3.0.2.EL.src.rpm4b7c87056bda1608807598dced0cfb11ELBA-2011-1796
ocfs2-2.6.9-42.0.3.0.2.EL-1.2.3-2.src.rpm42ad3d1a43bf214c8288682df8e105a5ELBA-2008-2004
oracleasm-2.6.9-42.0.3.0.2.EL-2.0.3-2.src.rpm3cf1558ca4303861dbba654e9e5d3940-
kernel-2.6.9-42.0.3.0.2.EL.i686.rpmd7547e32f1e376ced5b0da3cb8d6949dELBA-2011-1796
kernel-devel-2.6.9-42.0.3.0.2.EL.i686.rpmc38d2df233367ba66abf85a881124e54ELBA-2011-1796
kernel-doc-2.6.9-42.0.3.0.2.EL.noarch.rpmbf3b8105ae22fb29a3e5a94957f7ae1bELBA-2011-1796
kernel-hugemem-2.6.9-42.0.3.0.2.EL.i686.rpmd34969a707626c7e66716aabf66f9125ELBA-2011-1796
kernel-hugemem-devel-2.6.9-42.0.3.0.2.EL.i686.rpmf61e9e050ac606cd785854e0f1d57176ELBA-2011-1796
kernel-smp-2.6.9-42.0.3.0.2.EL.i686.rpm9156fb8621770de7ab0516f0cc517f0aELBA-2011-1796
kernel-smp-devel-2.6.9-42.0.3.0.2.EL.i686.rpm79b82fc946cbf112dc72377f4447c501ELBA-2011-1796
kernel-sourcecode-2.6.9-42.0.3.0.2.EL.i686.rpme6be383cdc93b1c744e249e39a33a691ELBA-2007-0304
ocfs2-2.6.9-42.0.3.0.2.EL-1.2.3-2.i686.rpm96db20508e8d81cc8ea7ee4c2ccf473aELBA-2008-2004
ocfs2-2.6.9-42.0.3.0.2.ELhugemem-1.2.3-2.i686.rpm30d7ad6250aef9a98344cd9ae8633197ELBA-2008-2004
ocfs2-2.6.9-42.0.3.0.2.ELsmp-1.2.3-2.i686.rpmb33cfbd41204f8fe66f364ee7a7dac26ELBA-2008-2004
oracleasm-2.6.9-42.0.3.0.2.EL-2.0.3-2.i686.rpmed21a503cd6c51a6201c4372f8ca91a7-
oracleasm-2.6.9-42.0.3.0.2.ELhugemem-2.0.3-2.i686.rpm8b7105585a964852fcbd77d2af433412-
oracleasm-2.6.9-42.0.3.0.2.ELsmp-2.0.3-2.i686.rpmcb3aeabd02aa874520f5d89ac39e2ed7-
Oracle Linux 4 (x86_64) kernel-2.6.9-42.0.3.0.2.EL.src.rpm7802d5bf7d93dd8c80b0f08b3d840566ELBA-2011-1796
ocfs2-2.6.9-42.0.3.0.2.EL-1.2.3-2.src.rpme59abdd15685dd1cf0ed2db854e87ff9ELBA-2008-2004
oracleasm-2.6.9-42.0.3.0.2.EL-2.0.3-2.src.rpm899b6edf5c71571a859c8bd227b6168b-
kernel-2.6.9-42.0.3.0.2.EL.x86_64.rpm09bc65b37b7eec6ef97bff66b1215822ELBA-2011-1796
kernel-devel-2.6.9-42.0.3.0.2.EL.x86_64.rpm596fc1b5e3a99a7712e423dbc56fbd37ELBA-2011-1796
kernel-doc-2.6.9-42.0.3.0.2.EL.noarch.rpmbf3b8105ae22fb29a3e5a94957f7ae1bELBA-2011-1796
kernel-smp-2.6.9-42.0.3.0.2.EL.x86_64.rpm99ac19aedce140b217807888cc9a4c29ELBA-2011-1796
kernel-smp-devel-2.6.9-42.0.3.0.2.EL.x86_64.rpm3b3c07382dbfb738db7ca014e65958e7ELBA-2011-1796
kernel-sourcecode-2.6.9-42.0.3.0.2.EL.x86_64.rpmece2ed7df069b027862c7e07e804ab5aELBA-2007-0304
ocfs2-2.6.9-42.0.3.0.2.EL-1.2.3-2.x86_64.rpm470b67432a5c51df15297960a3407cccELBA-2008-2004
ocfs2-2.6.9-42.0.3.0.2.ELlargesmp-1.2.3-2.x86_64.rpm1af365b4aa5e44cd38cedf2f86bc2267ELBA-2008-2004
ocfs2-2.6.9-42.0.3.0.2.ELsmp-1.2.3-2.x86_64.rpm8548dcc00c3724094a9e91553951c0d8ELBA-2008-2004
oracleasm-2.6.9-42.0.3.0.2.EL-2.0.3-2.x86_64.rpmb2261b97741a7695f310579e1cf2a805-
oracleasm-2.6.9-42.0.3.0.2.ELlargesmp-2.0.3-2.x86_64.rpm3c6d2e3dd2d42824dc3fa99dbaaf50b8-
oracleasm-2.6.9-42.0.3.0.2.ELsmp-2.0.3-2.x86_64.rpm6151049103aadb4853c0f2308a939920-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete