ELSA-2011-0927

ELSA-2011-0927 - kernel security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2011-07-18

Description



[2.6.18-238.19.1.0.1.el5]
- [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason)
[orabug 12342275]
- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346]
- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]
- bonding: reread information about speed and duplex when interface goes up (John Haxby) [orabug 11890822]
- [scsi] fix scsi hotplug and rescan race [orabug 10260172]
- fix filp_close() race (Joe Jin) [orabug 10335998]
- fix missing aio_complete() in end_io (Joel Becker) [orabug 10365195]
- make xenkbd.abs_pointer=1 by default [orabug 67188919]
- [xen] check to see if hypervisor supports memory reservation change
(Chuck Anderson) [orabug 7556514]
- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki)
[orabug 10315433]
- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]
- [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]
- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]
- [rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572, 9344105]
RDS: Fix BUG_ONs to not fire when in a tasklet
ipoib: Fix lockup of the tx queue
RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)
RDS: Properly unmap when getting a remote access error (Tina Yang)
RDS: Fix locking in rds_send_drop_to()
- [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702]
- [nfs] too many getattr and access calls after direct I/O [orabug 9348191]
- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)
[orabug 9107465]
- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)
[orabug 9764220]
- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]
- fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro,
Guru Anbalagane) [orabug 6124033]
- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]
- [ib] fix memory corruption (Andy Grover) [orabug 9972346]
- [aio] patch removes limit on number of retries (Srinivas Eeda) [orabug 10044782]
- [loop] Do not call loop_unplug for not configured loop device (orabug 10314497)

[2.6.18-238.19.1.el5]
- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780}
- Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780}
- Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742]
- Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742]
- Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742]
- Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]

[2.6.18-238.18.1.el5]
- [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]
- [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742]
- [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742]
- [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742]

[2.6.18-238.17.1.el5]
- [net] bluetooth: l2cap and rfcomm: fix info leak to userspace (Thomas Graf) [703020 703021] {CVE-2011-2492}
- [net] inet_diag: fix inet_diag_bc_audit data validation (Thomas Graf) [714538 714539] {CVE-2011-2213}
- [misc] signal: fix kill signal spoofing issue (Oleg Nesterov) [690030 690031] {CVE-2011-1182}
- [fs] proc: fix signedness issue in next_pidmap (Oleg Nesterov) [697826 697827] {CVE-2011-1593}
- [char] agp: fix OOM and buffer overflow (Jerome Marchand) [699009 699010] {CVE-2011-1746}
- [char] agp: fix arbitrary kernel memory writes (Jerome Marchand) [699005 699006] {CVE-2011-2022 CVE-2011-1745}
- [infiniband] core: Handle large number of entries in poll CQ (Jay Fenlason) [668370 668371] {CVE-2011-1044 CVE-2010-4649}
- [infiniband] core: fix panic in ib_cm:cm_work_handler (Jay Fenlason) [679995 679996] {CVE-2011-0695}
- [fs] validate size of EFI GUID partition entries (Anton Arapov) [703027 703028] {CVE-2011-1776}

[2.6.18-238.16.1.el5]
- [xen] hvm: secure vmx cpuid (Andrew Jones) [706324 706323] {CVE-2011-1936}
- [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780}
- [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780}

[2.6.18-238.15.1.el5]
- [block] cciss: reading a write only register causes a hang (Phillip Lougher) [713948 696153]
- [fs] gfs2: fix resource group bitmap corruption (Robert S Peterson) [711519 690555]
- [net] sctp: fix calc of INIT/INIT-ACK chunk length to set (Thomas Graf) [695384 695385] {CVE-2011-1573}
- [fs] xfs: prevent leaking uninit stack memory in FSGEOMETRY_V1 p2 (Phillip Lougher) [677265 677266] {CVE-2011-0711}
- [fs] xfs: prevent leaking uninit stack memory in FSGEOMETRY_V1 (Phillip Lougher) [677265 677266] {CVE-2011-0711}
- [net] core: Fix memory leak/corruption on VLAN GRO_DROP (Herbert Xu) [695174 691565] {CVE-2011-1576}
- [pci] SRIOV: release VF BAR resources when device is hot unplug (Don Dutile) [707899 698879]
- [scsi] iscsi_tcp: fix iscsi's sk_user_data access (Mike Christie) [703056 677703]
- [message] mptfusion: add ioc_reset_in_progress reset in SoftReset (Tomas Henzl) [712034 662160]

[2.6.18-238.14.1.el5]
- [input] evdev: implement proper locking (Marc Milgram) [710426 680561]
- [input] evdev: rename list to client in handlers (Marc Milgram) [710426 680561]

[2.6.18-238.13.1.el5]
- [fs] gfs2: fix processes waiting on already-available inode glock (Phillip Lougher) [709767 694669]


Related CVEs


CVE-2010-4649
CVE-2011-0695
CVE-2011-0711
CVE-2011-1044
CVE-2011-1182
CVE-2011-1573
CVE-2011-1576
CVE-2011-1593
CVE-2011-1745
CVE-2011-1746
CVE-2011-1776
CVE-2011-1936
CVE-2011-2022
CVE-2011-2213
CVE-2011-2492

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) kernel-2.6.18-238.19.1.0.1.el5.src.rpm62ea87f2f140e115f2bb353ed76258d0ELSA-2019-4732
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.src.rpmac9dbec453d7ee0b3c634384e037fe56-
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.src.rpm02681eb948dbc02fa2267c087296f8e7-
kernel-2.6.18-238.19.1.0.1.el5.i686.rpm10bd0441d40c49974aaf566267dc57efELSA-2019-4732
kernel-PAE-2.6.18-238.19.1.0.1.el5.i686.rpmb8fec335e4617936e3024f0c6f94e88eELSA-2019-4732
kernel-PAE-devel-2.6.18-238.19.1.0.1.el5.i686.rpm8481102a3a3c044938c87b5a589b2dccELSA-2019-4732
kernel-debug-2.6.18-238.19.1.0.1.el5.i686.rpm8ad586d6ec9b1db2dac928d57650aa49ELSA-2019-4732
kernel-debug-devel-2.6.18-238.19.1.0.1.el5.i686.rpm52fd6fecddf27618b4a4f6bd6c5d84e8ELSA-2019-4732
kernel-devel-2.6.18-238.19.1.0.1.el5.i686.rpmc41026bd9b0661d667ea3714bb67391dELSA-2019-4732
kernel-doc-2.6.18-238.19.1.0.1.el5.noarch.rpm4e32ecb4fe52023cdc6fa363cd07c842ELSA-2019-4732
kernel-headers-2.6.18-238.19.1.0.1.el5.i386.rpmce310bfd26a34b60b556748a27834d2fELSA-2019-4732
kernel-xen-2.6.18-238.19.1.0.1.el5.i686.rpm2a342eaf4244bdf68477f308b9cf1b27ELSA-2019-4732
kernel-xen-devel-2.6.18-238.19.1.0.1.el5.i686.rpm7e6ca8a4d9b62fe228e62eaf337cd57aELSA-2019-4732
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.i686.rpm41ac87dce1ebbad418cf56f277fada49-
ocfs2-2.6.18-238.19.1.0.1.el5PAE-1.4.8-2.el5.i686.rpm4a14972ff581094538ccf00aeb75a71b-
ocfs2-2.6.18-238.19.1.0.1.el5debug-1.4.8-2.el5.i686.rpmb1f80ecceb8dfc2bb93f068fdb4fbd26-
ocfs2-2.6.18-238.19.1.0.1.el5xen-1.4.8-2.el5.i686.rpm3859eb7928b0dcec11658c102ec8be17-
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.i686.rpm60e18afd77b319fe358cb5895c099fd9-
oracleasm-2.6.18-238.19.1.0.1.el5PAE-2.0.5-1.el5.i686.rpm52a09cfdd5bd55b538ab3efda38883f4-
oracleasm-2.6.18-238.19.1.0.1.el5debug-2.0.5-1.el5.i686.rpmc0048ae16ac36d4fccfc709205a0cbc4-
oracleasm-2.6.18-238.19.1.0.1.el5xen-2.0.5-1.el5.i686.rpmf17b3ed0ee75bf37fac62a5eba38272e-
Oracle Linux 5 (ia64) kernel-2.6.18-238.19.1.0.1.el5.src.rpm62ea87f2f140e115f2bb353ed76258d0ELSA-2019-4732
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.src.rpmac9dbec453d7ee0b3c634384e037fe56-
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.src.rpm02681eb948dbc02fa2267c087296f8e7-
kernel-2.6.18-238.19.1.0.1.el5.ia64.rpmf243dcf2c0fb2c92ac0ecab7ed62a3c6ELSA-2019-4732
kernel-debug-2.6.18-238.19.1.0.1.el5.ia64.rpm9deffb598fd1874843410d4b73744a4bELSA-2019-4732
kernel-debug-devel-2.6.18-238.19.1.0.1.el5.ia64.rpm7ea1377d923f069bd203b120d40b7968ELSA-2019-4732
kernel-devel-2.6.18-238.19.1.0.1.el5.ia64.rpm2ba976d54143a49dde72479820edf2acELSA-2019-4732
kernel-doc-2.6.18-238.19.1.0.1.el5.noarch.rpm4e32ecb4fe52023cdc6fa363cd07c842ELSA-2019-4732
kernel-headers-2.6.18-238.19.1.0.1.el5.ia64.rpm261655b156d783a48d333f856af71bb8ELSA-2019-4732
kernel-xen-2.6.18-238.19.1.0.1.el5.ia64.rpm3724374cbc8873378a310d6096bbc933ELSA-2019-4732
kernel-xen-devel-2.6.18-238.19.1.0.1.el5.ia64.rpme108a13805e11bb04eab3eb91139ffd5ELSA-2019-4732
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.ia64.rpm9d843c162cda1d6452c7704f001e0358-
ocfs2-2.6.18-238.19.1.0.1.el5debug-1.4.8-2.el5.ia64.rpmb53f6e438ff2e34a04c7934c9615f26f-
ocfs2-2.6.18-238.19.1.0.1.el5xen-1.4.8-2.el5.ia64.rpm47914c23fff2ed873dce10d43d8461ba-
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.ia64.rpm1845123409e9481f8a817a7b50203d9b-
oracleasm-2.6.18-238.19.1.0.1.el5debug-2.0.5-1.el5.ia64.rpm27b63591ee354171c885fb4ac8a75a44-
oracleasm-2.6.18-238.19.1.0.1.el5xen-2.0.5-1.el5.ia64.rpma06c2d91ab414ad7e28427836d64b209-
Oracle Linux 5 (x86_64) kernel-2.6.18-238.19.1.0.1.el5.src.rpm62ea87f2f140e115f2bb353ed76258d0ELSA-2019-4732
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.src.rpmac9dbec453d7ee0b3c634384e037fe56-
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.src.rpm02681eb948dbc02fa2267c087296f8e7-
kernel-2.6.18-238.19.1.0.1.el5.x86_64.rpm7f07611cdb014b5074001a6c19b101d0ELSA-2019-4732
kernel-debug-2.6.18-238.19.1.0.1.el5.x86_64.rpm6ecf59597ac33c2e1555f38eb37c3b28ELSA-2019-4732
kernel-debug-devel-2.6.18-238.19.1.0.1.el5.x86_64.rpm09f5a57b761c31034d5f4d79d0ef06e6ELSA-2019-4732
kernel-devel-2.6.18-238.19.1.0.1.el5.x86_64.rpmc26406df6b76aed7876f3326d1856f36ELSA-2019-4732
kernel-doc-2.6.18-238.19.1.0.1.el5.noarch.rpm4e32ecb4fe52023cdc6fa363cd07c842ELSA-2019-4732
kernel-headers-2.6.18-238.19.1.0.1.el5.x86_64.rpm4c00c13a5b7708badf65266c09841200ELSA-2019-4732
kernel-xen-2.6.18-238.19.1.0.1.el5.x86_64.rpmaf0c893f9a325627fe585f55bde55037ELSA-2019-4732
kernel-xen-devel-2.6.18-238.19.1.0.1.el5.x86_64.rpm51f7990ec4d609ea5a922a4e086039eeELSA-2019-4732
ocfs2-2.6.18-238.19.1.0.1.el5-1.4.8-2.el5.x86_64.rpm0f1cf528af1063d0b2f0e198734ff277-
ocfs2-2.6.18-238.19.1.0.1.el5debug-1.4.8-2.el5.x86_64.rpma2dd955e2d953c6883a45c7d9dea60f9-
ocfs2-2.6.18-238.19.1.0.1.el5xen-1.4.8-2.el5.x86_64.rpmc90935d74358c8ee3c705cd3e9a354c6-
oracleasm-2.6.18-238.19.1.0.1.el5-2.0.5-1.el5.x86_64.rpm5175230d4793756e5148afba7e75549a-
oracleasm-2.6.18-238.19.1.0.1.el5debug-2.0.5-1.el5.x86_64.rpmfa3c11a0b6eb72739499911c5992d877-
oracleasm-2.6.18-238.19.1.0.1.el5xen-2.0.5-1.el5.x86_64.rpm1e4c45f4603bb1cd74a35ebdd5a6cc19-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete