Stay Connected:

ELSA-2014-0159

ELSA-2014-0159 - kernel security and bug fix update

Type:SECURITY
Severity:IMPORTANT
Release Date:2014-02-11

Description


[2.6.32-431.5.1]
- [net] sctp: fix checksum marking for outgoing packets (Daniel Borkmann) [1046041 1040385]
- [kernel] ptrace: Cleanup useless header (Aaron Tomlin) [1046043 1036312]
- [kernel] ptrace: kill BKL in ptrace syscall (Aaron Tomlin) [1046043 1036312]
- [fs] nfs: Prevent a 3-way deadlock between layoutreturn, open and state recovery (Steve Dickson) [1045094 1034487]
- [fs] nfs: Ensure that rmdir() waits for sillyrenames to complete (Steve Dickson) [1051395 1034348]
- [fs] nfs: wait on recovery for async session errors (Steve Dickson) [1051393 1030049]
- [fs] nfs: Re-use exit code in nfs4_async_handle_error() (Steve Dickson) [1051393 1030049]
- [fs] nfs: Update list of irrecoverable errors on DELEGRETURN (Steve Dickson) [1051393 1030049]
- [exec] ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039486 1039487] {CVE-2013-2929}
- [net] ipv6: router reachability probing (Jiri Benc) [1043779 1029585]
- [net] ipv6: remove the unnecessary statement in find_match() (Jiri Benc) [1043779 1029585]
- [net] ipv6: fix route selection if kernel is not compiled with CONFIG_IPV6_ROUTER_PREF (Jiri Benc) [1043779 1029585]
- [net] ipv6: Fix default route failover when CONFIG_IPV6_ROUTER_PREF=n (Jiri Benc) [1043779 1029585]
- [net] ipv6: probe routes asynchronous in rt6_probe (Jiri Benc) [1040826 1030094]
- [net] ndisc: Update neigh->updated with write lock (Jiri Benc) [1040826 1030094]
- [net] ipv6: prevent fib6_run_gc() contention (Jiri Benc) [1040826 1030094]
- [net] netfilter: push reasm skb through instead of original frag skbs (Jiri Pirko) [1049590 1011214]
- [net] ip6_output: fragment outgoing reassembled skb properly (Jiri Pirko) [1049590 1011214]
- [net] netfilter: nf_conntrack_ipv6: improve fragmentation handling (Jiri Pirko) [1049590 1011214]
- [net] ipv4: fix path MTU discovery with connection tracking (Jiri Pirko) [1049590 1011214]
- [net] ipv6: Make IP6CB(skb)->nhoff 16-bit (Jiri Pirko) [1049590 1011214]
- [edac] Add error decoding support for AMD Fam16h processors (Prarit Bhargava) [1051394 1020290]
- [netdrv] bnx2x: correct VF-PF channel locking scheme (Michal Schmidt) [1040498 1029203]
- [netdrv] bnx2x: handle known but unsupported VF messages (Michal Schmidt) [1040498 1029203]
- [netdrv] bnx2x: Lock DMAE when used by statistic flow (Michal Schmidt) [1040497 1029200]
- [net] ipv6: fix leaking uninitialized port number of offender sockaddr (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
- [net] inet: fix addr_len/msg->msg_namelen assignment in recv_error functions (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
- [net] inet: prevent leakage of uninitialized memory to user in recv syscalls (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
- [net] ipvs: Add boundary check on ioctl arguments (Denys Vlasenko) [1030817 1030818] {CVE-2013-4588}
- [s390] qeth: avoid buffer overflow in snmp ioctl (Hendrik Brueckner) [1038935 1034266]
- [md] fix calculation of stacking limits on level change (Jes Sorensen) [1035347 1026864]
- [ata] ahci: fix turning on LEDs in ahci_start_port() (David Milburn) [1035339 1017105]
- [ata] libata: implement cross-port EH exclusion (David Milburn) [1035339 1017105]
- [ata] libata add ap to ata_wait_register and intro ata_msleep (David Milburn) [1035339 1017105]
- [netdrv] igb: Update link modes display in ethtool (Stefan Assmann) [1032389 1019578]

[2.6.32-431.4.1]
- [powerpc] signals: Improved mark VSX not saved with small contexts fix (Seth Jennings) [1044566 1044117]
- [powerpc] signals: Mark VSX not saved with small contexts (Seth Jennings) [1044566 1044117]


Related CVEs


CVE-2013-2929
CVE-2013-6381
CVE-2013-7263
CVE-2013-7265

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) kernel-2.6.32-431.5.1.el6.src.rpmabf86a2e8c8233202651c37dd6527afaELSA-2021-9212
kernel-2.6.32-431.5.1.el6.i686.rpm88c8300f7020c1e3ee2fe11ba4b5ec43ELSA-2021-9212
kernel-abi-whitelists-2.6.32-431.5.1.el6.noarch.rpmf9bc48de256eb8042421acef996b3248ELSA-2021-9212
kernel-debug-2.6.32-431.5.1.el6.i686.rpmd8b6f6abbc60b597693f7a0e6468fbfbELSA-2021-9212
kernel-debug-devel-2.6.32-431.5.1.el6.i686.rpm4304d5b5e91bde258d0595d4caf17e41ELSA-2021-9212
kernel-devel-2.6.32-431.5.1.el6.i686.rpma84a88b7890b50d57926c9d1d396dc01ELSA-2021-9212
kernel-doc-2.6.32-431.5.1.el6.noarch.rpm35166b45eaec86007d2f5ca338d69b31ELSA-2021-9212
kernel-firmware-2.6.32-431.5.1.el6.noarch.rpmadfff5f94007ee02d1633acf5b43f04dELSA-2021-9212
kernel-headers-2.6.32-431.5.1.el6.i686.rpma4d9164df02492fd24a94651a5e24417ELSA-2021-9212
perf-2.6.32-431.5.1.el6.i686.rpm234a802b0b26fe1db3448acaed9e39e2ELSA-2021-9212
python-perf-2.6.32-431.5.1.el6.i686.rpm32ffb33d4343e27d40113fbe3c1dc168ELSA-2021-9212
Oracle Linux 6 (x86_64) kernel-2.6.32-431.5.1.el6.src.rpmabf86a2e8c8233202651c37dd6527afaELSA-2021-9212
kernel-2.6.32-431.5.1.el6.x86_64.rpm600f6c29f56d8983331c098ddf5a6dccELSA-2021-9212
kernel-abi-whitelists-2.6.32-431.5.1.el6.noarch.rpmf9bc48de256eb8042421acef996b3248ELSA-2021-9212
kernel-debug-2.6.32-431.5.1.el6.x86_64.rpm99a2fe3c22078c30abd3ae7f69297447ELSA-2021-9212
kernel-debug-devel-2.6.32-431.5.1.el6.x86_64.rpmc52b5796219ed0272dc10e50f5ce0314ELSA-2021-9212
kernel-devel-2.6.32-431.5.1.el6.x86_64.rpmbb74a249393696300f4c605c7059402bELSA-2021-9212
kernel-doc-2.6.32-431.5.1.el6.noarch.rpm35166b45eaec86007d2f5ca338d69b31ELSA-2021-9212
kernel-firmware-2.6.32-431.5.1.el6.noarch.rpmadfff5f94007ee02d1633acf5b43f04dELSA-2021-9212
kernel-headers-2.6.32-431.5.1.el6.x86_64.rpmf6d85f2611dfd15621e58fed0069fbd5ELSA-2021-9212
perf-2.6.32-431.5.1.el6.x86_64.rpmb84812393df6b896a09bc3a55b329942ELSA-2021-9212
python-perf-2.6.32-431.5.1.el6.x86_64.rpm053438604b12477d6df8310933bea68bELSA-2021-9212



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights