ELSA-2011-1189

ELSA-2011-1189 - kernel security, bug fix, and enhancement update

Type:SECURITY
Impact:IMPORTANT
Release Date:2011-08-23

Description



[2.6.32-131.12.1.el6]
- [netdrv] be2net: clear intr bit in be_probe() (Ivan Vecera) [726308 722596]

[2.6.32-131.11.1.el6]
- [mm] hold the page lock until after set_page_stable_node (Andrea Arcangeli) [726095 683658]
- [netdrv] be2net: remove certain cmd failure logging (Ivan Vecera) [725329 719304]
- [net] nl80211: missing check for valid SSID size in scan operation (Stanislaw Gruszka) [718157 718158] {CVE-2011-2517}
- [net] bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. (Thomas Graf) [703022 703023] {CVE-2011-2492}
- [net] inet_diag: fix validation of user data in inet_diag_bc_audit() (Thomas Graf) [714540 714541] {CVE-2011-2213}
- [fs] proc: restrict access to /proc/PID/io (Oleg Nesterov) [716829 716830] {CVE-2011-2495}
- [fs] validate size of EFI GUID partition entries (Anton Arapov) [703029 703030] {CVE-2011-1776}
- [fs] ext4: Fix max file size and logical block counting of extent format file (Lukas Czerner) [722568 722569] {CVE-2011-2695}
- [virt] kvm: Disable device assignment without interrupt remapping (Alex Williamson) [716306 711504] {CVE-2011-1898}
- [virt] iommu-api: Extension to check for interrupt remapping (Alex Williamson) [716306 711504] {CVE-2011-1898}
- [netdrv] r8169: fix Rx checksum offloading bugs (Ivan Vecera) [723807 635596]
- [netdrv] be2net: changes for BE3 native mode support (Ivan Vecera) [723820 695231]

[2.6.32-131.10.1.el6]
- [virt] ksm: fix race between ksmd and exiting task (Andrea Arcangeli) [710340 710341] {CVE-2011-2183}
- [kernel] proc: signedness issue in next_pidmap() (Jerome Marchand) [697824 697825] {CVE-2011-1593}
- [net] bluetooth: Prevent buffer overflow in l2cap config request (Jiri Pirko) [716809 716810] {CVE-2011-2497}
- [fs] NLM: Don't hang forever on NLM unlock requests (Jeff Layton) [709548 709549] {CVE-2011-2491}
- [fs] NFS: Fix NFSv3 exclusive open semantics (Jeff Layton) [719925 694210]
- [fs] GFS2: Incorrect inode state during deallocation (Steven Whitehouse) [714982 712139]
- [virt] KVM: Fix register corruption in pvclock_scale_delta (Avi Kivity) [719910 712102]
- [netdrv] ehea: Fix memory hotplug oops (Steve Best) [720914 702036]
- [net] Fix memory leak/corruption on VLAN GRO_DROP (Herbert Xu) [695175 695176] {CVE-2011-1576}
- [md] Fix resync hang after surprise removal (James Paradis) [719928 707268]
- GFS2: make sure fallocate bytes is a multiple of blksize (Benjamin Marzinski) [720863 695763] {CVE-2011-2689}
- [kernel] Prevent rt_sigqueueinfo and rt_tgsigqueueinfo from spoofing the signal code (Oleg Nesterov) [715521 690033] {CVE-2011-1182}
- [redhat] config: enable parallel port printer support (Aristeu Rozanski) [713827 635968]

[2.6.32-131.9.1.el6]
- [scsi] cciss: Annotate cciss_kdump_soft_reset and cciss_sent_reset as __devinit (Tomas Henzl) [715397 698268]
- [scsi] cciss: Don't wait forever for soft reset to complete, give up after awhile (Tomas Henzl) [715397 698268]
- [scsi] cciss: use cmd_alloc not cmd_special_alloc for the kdump soft reset command (Tomas Henzl) [715397 698268]
- [scsi] cciss: do not use bit 2 doorbell reset (Tomas Henzl) [715397 698268]
- [scsi] cciss: do not attempt PCI power management reset method if we know it won't work (Tomas Henzl) [715397 698268]
- [scsi] cciss: increase timeouts for post-reset no-ops (Tomas Henzl) [715397 698268]
- [scsi] cciss: remove superfluous sleeps around reset code (Tomas Henzl) [715397 698268]
- [scsi] cciss: do soft reset if hard reset is broken (Tomas Henzl) [715397 698268]
- [scsi] cciss: clarify messages around reset behavior (Tomas Henzl) [715397 698268]
- [scsi] cciss: increase time to wait for board reset to start (Tomas Henzl) [715397 698268]
- [scsi] cciss: factor out irq_request code (Tomas Henzl) [715397 698268]
- [scsi] cciss: factor out scatterlist allocation functions (Tomas Henzl) [715397 698268]
- [scsi] cciss: factor out command pool allocation functions (Tomas Henzl) [715397 698268]
- [scsi] cciss: use new doorbell-bit-5 reset method (Tomas Henzl) [715397 698268]
- [scsi] cciss: wait longer for no-op to complete after resetting controller (Tomas Henzl) [715397 698268]
- [scsi] cciss: do a better job of detecting controller reset failure (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do not attempt PCI PM reset if we know it will not work (Tomas Henzl) [715397 698268]
- [scsi] hpsa: remove superfluous sleeps around reset code (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do soft reset if hard reset is broken (Tomas Henzl) [715397 698268]
- [scsi] hpsa: clarify messages around reset behavior (Tomas Henzl) [715397 698268]
- [scsi] hpsa: factor out irq request code (Tomas Henzl) [715397 698268]
- [scsi] hpsa: factor out cmd_pool allocation functions (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do not use bit 2 doorbell reset, it causes NMIs (Tomas Henzl) [715397 698268]
- [scsi] hpsa: wait longer for no-op to complete after resetting controller (Tomas Henzl) [715397 698268]
- [scsi] hpsa: use new doorbell-bit-5 reset method (Tomas Henzl) [715397 698268]
- [scsi] hpsa: adjust timing of post-reset sleeps (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do a better job of detecting controller reset failure (Tomas Henzl) [715397 698268]

[2.6.32-131.8.1.el6]
- [fs] GFS2: force a log flush when invalidating the rindex glock (Benjamin Marzinski) [717018 702263]

[2.6.32-131.7.1.el6]
- [virt] xen: bump memory limit for x86_64 domU PV guest to 128Gb (Igor Mammedov) [716539 669739]


Related CVEs


CVE-2011-1898
CVE-2011-2492
CVE-2011-1182
CVE-2011-1576
CVE-2011-1593
CVE-2011-1776
CVE-2011-2183
CVE-2011-2495
CVE-2011-2213
CVE-2011-2517
CVE-2011-2497
CVE-2011-2695
CVE-2011-2491
CVE-2011-2689

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 6 (i386) kernel-2.6.32-131.12.1.el6.src.rpm1f5bbcb7c20736201544ea1b2e504200db23c32146cf1110754563bc1c2f9470ELSA-2024-1831ol6_i386_latest_archive
kernel-2.6.32-131.12.1.el6.src.rpm1f5bbcb7c20736201544ea1b2e504200db23c32146cf1110754563bc1c2f9470ELSA-2024-1831ol6_u1_i386_patch
kernel-2.6.32-131.12.1.el6.i686.rpmdf2ac66870574154a2b8a0793062ed79525e220e96a7e8b0d0c0589075826000ELSA-2024-1831ol6_i386_latest_archive
kernel-2.6.32-131.12.1.el6.i686.rpmdf2ac66870574154a2b8a0793062ed79525e220e96a7e8b0d0c0589075826000ELSA-2024-1831ol6_u1_i386_patch
kernel-debug-2.6.32-131.12.1.el6.i686.rpm45191665b4534bcfae1739cf673d6220e8adc2af1838568c35b0054b45139272ELSA-2024-1831ol6_i386_latest_archive
kernel-debug-2.6.32-131.12.1.el6.i686.rpm45191665b4534bcfae1739cf673d6220e8adc2af1838568c35b0054b45139272ELSA-2024-1831ol6_u1_i386_patch
kernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm91ca15f5d18e7d634ed687e7d5106aed0e83e89d14d8ef5b5313760de7a8c5abELSA-2024-1831ol6_i386_latest_archive
kernel-debug-devel-2.6.32-131.12.1.el6.i686.rpm91ca15f5d18e7d634ed687e7d5106aed0e83e89d14d8ef5b5313760de7a8c5abELSA-2024-1831ol6_u1_i386_patch
kernel-devel-2.6.32-131.12.1.el6.i686.rpm38adeea34be2f68182a0d93ca1fd62bee292b650ca0b12bc48447477c4a6d983ELSA-2024-1831ol6_i386_latest_archive
kernel-devel-2.6.32-131.12.1.el6.i686.rpm38adeea34be2f68182a0d93ca1fd62bee292b650ca0b12bc48447477c4a6d983ELSA-2024-1831ol6_u1_i386_patch
kernel-doc-2.6.32-131.12.1.el6.noarch.rpm0ade746ffe297611ac41db511193d377954802480eaedf63dd8285d895307b10ELSA-2024-1831ol6_i386_latest_archive
kernel-doc-2.6.32-131.12.1.el6.noarch.rpm0ade746ffe297611ac41db511193d377954802480eaedf63dd8285d895307b10ELSA-2024-1831ol6_u1_i386_patch
kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm002eb4b62c281c82939e8962b7004530004a93236c3b7a7d6e31dd486a85eac9ELSA-2024-1831ol6_i386_latest_archive
kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm002eb4b62c281c82939e8962b7004530004a93236c3b7a7d6e31dd486a85eac9ELSA-2024-1831ol6_u1_i386_patch
kernel-headers-2.6.32-131.12.1.el6.i686.rpm79b69197ecf93602f84a8c14dd4da44c556479951447244563f0a6cad54fd06bELSA-2024-1831ol6_i386_latest_archive
kernel-headers-2.6.32-131.12.1.el6.i686.rpm79b69197ecf93602f84a8c14dd4da44c556479951447244563f0a6cad54fd06bELSA-2024-1831ol6_u1_i386_patch
perf-2.6.32-131.12.1.el6.i686.rpm4551e49cc76b256c41e5dba3bbae3cddcf8465a367906c4eee5f7dfd71aa6b51ELSA-2024-1831ol6_i386_latest_archive
perf-2.6.32-131.12.1.el6.i686.rpm4551e49cc76b256c41e5dba3bbae3cddcf8465a367906c4eee5f7dfd71aa6b51ELSA-2024-1831ol6_u1_i386_patch
Oracle Linux 6 (x86_64) kernel-2.6.32-131.12.1.el6.src.rpm1f5bbcb7c20736201544ea1b2e504200db23c32146cf1110754563bc1c2f9470ELSA-2024-1831ol6_u1_x86_64_patch
kernel-2.6.32-131.12.1.el6.src.rpm1f5bbcb7c20736201544ea1b2e504200db23c32146cf1110754563bc1c2f9470ELSA-2024-1831ol6_x86_64_latest_archive
kernel-2.6.32-131.12.1.el6.x86_64.rpm9640c56d116b5d881a3fb4a2dfa65f53fdb3ab4dc70c6df4ee46141e284e94b6ELSA-2024-1831ol6_u1_x86_64_patch
kernel-2.6.32-131.12.1.el6.x86_64.rpm9640c56d116b5d881a3fb4a2dfa65f53fdb3ab4dc70c6df4ee46141e284e94b6ELSA-2024-1831ol6_x86_64_latest_archive
kernel-debug-2.6.32-131.12.1.el6.x86_64.rpmd62ddb8960ba4fc19daa94beacad1f401646ffd3c0337deb15eaeab00b7a659bELSA-2024-1831ol6_u1_x86_64_patch
kernel-debug-2.6.32-131.12.1.el6.x86_64.rpmd62ddb8960ba4fc19daa94beacad1f401646ffd3c0337deb15eaeab00b7a659bELSA-2024-1831ol6_x86_64_latest_archive
kernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm0e655dac9d9e1c1b95a95e66e6454c989aed8d954f1e35737c9b43ec7e2ef8d1ELSA-2024-1831ol6_u1_x86_64_patch
kernel-debug-devel-2.6.32-131.12.1.el6.x86_64.rpm0e655dac9d9e1c1b95a95e66e6454c989aed8d954f1e35737c9b43ec7e2ef8d1ELSA-2024-1831ol6_x86_64_latest_archive
kernel-devel-2.6.32-131.12.1.el6.x86_64.rpmb0597ead79c08a1cff8f78a89e234322116e3a481bd31fcd835906e2ff65970fELSA-2024-1831ol6_u1_x86_64_patch
kernel-devel-2.6.32-131.12.1.el6.x86_64.rpmb0597ead79c08a1cff8f78a89e234322116e3a481bd31fcd835906e2ff65970fELSA-2024-1831ol6_x86_64_latest_archive
kernel-doc-2.6.32-131.12.1.el6.noarch.rpm0ade746ffe297611ac41db511193d377954802480eaedf63dd8285d895307b10ELSA-2024-1831ol6_u1_x86_64_patch
kernel-doc-2.6.32-131.12.1.el6.noarch.rpm0ade746ffe297611ac41db511193d377954802480eaedf63dd8285d895307b10ELSA-2024-1831ol6_x86_64_latest_archive
kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm002eb4b62c281c82939e8962b7004530004a93236c3b7a7d6e31dd486a85eac9ELSA-2024-1831ol6_u1_x86_64_patch
kernel-firmware-2.6.32-131.12.1.el6.noarch.rpm002eb4b62c281c82939e8962b7004530004a93236c3b7a7d6e31dd486a85eac9ELSA-2024-1831ol6_x86_64_latest_archive
kernel-headers-2.6.32-131.12.1.el6.x86_64.rpm27203eef12fb1b813ee882eab148565a25a1e89c8f8c2a1dc21ceb180fed4c67ELSA-2024-1831ol6_u1_x86_64_patch
kernel-headers-2.6.32-131.12.1.el6.x86_64.rpm27203eef12fb1b813ee882eab148565a25a1e89c8f8c2a1dc21ceb180fed4c67ELSA-2024-1831ol6_x86_64_latest_archive
perf-2.6.32-131.12.1.el6.x86_64.rpm3e3f6bbc1d20f6590c6b67975ada29bf0d5a1cbf7a0d94c7bd119796524fcc40ELSA-2024-1831ol6_u1_x86_64_patch
perf-2.6.32-131.12.1.el6.x86_64.rpm3e3f6bbc1d20f6590c6b67975ada29bf0d5a1cbf7a0d94c7bd119796524fcc40ELSA-2024-1831ol6_x86_64_latest_archive



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete