ELSA-2014-1997

ULN >
Oracle Linux Errata repository >
ELSA-2014-1997

ELSA-2014-1997 - kernel security and bug fix update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2014-12-16

Description

[2.6.32-504.3.3]
- [x86] traps: stop using IST for #SS (Petr Matousek) [1172810 1172811] {CVE-2014-9322}

[2.6.32-504.3.2]
- [md] dm-thin: fix pool_io_hints to avoid looking at max_hw_sectors (Mike Snitzer) [1161420 1161421 1142773 1145230]

[2.6.32-504.3.1]
- [s390] zcrypt: toleration of new crypto adapter hardware (Hendrik Brueckner) [1158311 1134984]
- [s390] zcrypt: support for extended number of ap domains (Hendrik Brueckner) [1158311 1134984]
- [md] dm-thin: fix potential for infinite loop in pool_io_hints (Mike Snitzer) [1161420 1161421 1142773 1145230]

[2.6.32-504.2.1]
- [fs] udf: Avoid infinite loop when processing indirect ICBs (Jacob Tanenbaum) [1142319 1142320] {CVE-2014-6410}
- [fs] isofs: unbound recursion when processing relocated directories (Jacob Tanenbaum) [1142268 1142269] {CVE-2014-5472 CVE-2014-5471}
- [net] ipv6: delete expired route in ip6_pmtu_deliver (Hannes Frederic Sowa) [1161418 1156137]
- [net] sctp: fix remote memory pressure from excessive queueing (Daniel Borkmann) [1155746 1154676] {CVE-2014-3688}
- [net] sctp: fix panic on duplicate ASCONF chunks (Daniel Borkmann) [1155733 1154676] {CVE-2014-3687}
- [net] sctp: fix skb_over_panic when receiving malformed ASCONF chunks (Daniel Borkmann) [1147857 1154676] {CVE-2014-3673}
- [net] sctp: handle association restarts when the socket is closed (Daniel Borkmann) [1147857 1154676]
- [md] dm-thin: refactor requeue_io to eliminate spinlock bouncing (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: optimize retry_bios_on_resume (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: sort the deferred cells (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: direct dispatch when breaking sharing (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: remap the bios in a cell immediately (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: defer whole cells rather than individual bios (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: factor out remap_and_issue_overwrite (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: performance improvement to discard processing (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: grab a virtual cell before looking up the mapping (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: implement thin_merge (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm: improve documentation and code clarity in dm_merge_bvec (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: adjust max_sectors_kb based on thinp blocksize (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] block: fix alignment_offset math that assumes io_min is a power-of-2 (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: throttle incoming IO (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: prefetch missing metadata pages (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-transaction-manager: add support for prefetching blocks of metadata (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin-metadata: change dm_thin_find_block to allow blocking, but not issuing, IO (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-bio-prison: switch to using a red black tree (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-bufio: evict buffers that are past the max age but retain some buffers (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-bufio: switch from a huge hash table to an rbtree (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-bufio: update last_accessed when relinking a buffer (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-bufio: use kzalloc when allocating dm_bufio_client (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin-metadata: do not allow the data block size to change (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: cleanup noflush_work to use a proper completion (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [md] dm-thin: fix DMERR typo in pool_status error path (Mike Snitzer) [1161420 1161421 1142773 1145230]
- [fs] xfs: xlog_cil_force_lsn doesn't always wait correctly (Eric Sandeen) [1158325 1133304]
- [netdrv] ixgbe: allow TXDCTL.WRTHRESH to be 1 will small ITR values (John Greene) [1158326 1132267]
- [netdrv] ixgbe: Intel Change to allow itr changes without CONFIG_BQL support (John Greene) [1158326 1132267]
- [video] offb: Fix setting of the pseudo-palette for >8bpp (Gerd Hoffmann) [1158328 1142450]
- [video] offb: Add palette hack for qemu 'standard vga' framebuffer (Gerd Hoffmann) [1158328 1142450]
- [video] offb: Fix bug in calculating requested vram size (Gerd Hoffmann) [1158328 1142450]
- [net] sock_queue_err_skb() dont mess with sk_forward_alloc (Jiri Benc) [1155427 1148257]
- [net] guard tcp_set_keepalive() to tcp sockets (Florian Westphal) [1141744 1141746] {CVE-2012-6657}
- Revert: [net] revert 'bridge: Set vlan_features to allow offloads on vlans' (Vlad Yasevich) [1144442 1121991]
- [x86] kvm: fix PIT timer race condition (mguzik) [1149592 1149593] {CVE-2014-3611}
- [x86] kvm: vmx: handle invept and invvpid vm exits gracefull (mguzik) [1144826 1144837 1144827 1144838] {CVE-2014-3646 CVE-2014-3645}

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	kernel-2.6.32-504.3.3.el6.src.rpm	4fd5cae91e500091b63b84d8d3961f7957b6049306f208048cb73d0a56b95235	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-2.6.32-504.3.3.el6.src.rpm	4fd5cae91e500091b63b84d8d3961f7957b6049306f208048cb73d0a56b95235	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-2.6.32-504.3.3.el6.i686.rpm	167883b0a269aa3c9a30dcd0e46931aa24decf9561922b5ac0007cdfd40fde5f	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-2.6.32-504.3.3.el6.i686.rpm	167883b0a269aa3c9a30dcd0e46931aa24decf9561922b5ac0007cdfd40fde5f	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-abi-whitelists-2.6.32-504.3.3.el6.noarch.rpm	0280cdc9433d033bb6e5825126859731d088ca44fa602074134a1de6c90a038c	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-abi-whitelists-2.6.32-504.3.3.el6.noarch.rpm	0280cdc9433d033bb6e5825126859731d088ca44fa602074134a1de6c90a038c	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-debug-2.6.32-504.3.3.el6.i686.rpm	5090006fe889f99dcca78de8f6f783d2d083bf13c1c835811ea5ace815fb10ca	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-debug-2.6.32-504.3.3.el6.i686.rpm	5090006fe889f99dcca78de8f6f783d2d083bf13c1c835811ea5ace815fb10ca	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-debug-devel-2.6.32-504.3.3.el6.i686.rpm	c3c4b8ba2d429e984d00c6f0fe9da939d7fe18d670d74705560e4f1eec592aea	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-debug-devel-2.6.32-504.3.3.el6.i686.rpm	c3c4b8ba2d429e984d00c6f0fe9da939d7fe18d670d74705560e4f1eec592aea	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-devel-2.6.32-504.3.3.el6.i686.rpm	9cde5eb4d0dcc4261691192ec06cb672a4cc66a493fa57dc54a5f48a9a0de108	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-devel-2.6.32-504.3.3.el6.i686.rpm	9cde5eb4d0dcc4261691192ec06cb672a4cc66a493fa57dc54a5f48a9a0de108	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-doc-2.6.32-504.3.3.el6.noarch.rpm	29fd72a01880ebe799b9a35bc36245432d679aab33ebc9fe0bce3fcbd03d0038	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-doc-2.6.32-504.3.3.el6.noarch.rpm	29fd72a01880ebe799b9a35bc36245432d679aab33ebc9fe0bce3fcbd03d0038	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-firmware-2.6.32-504.3.3.el6.noarch.rpm	c0917d3f378bb506ac4dd206f23ebe62df4df1d396b6b70b2555f7cb76aedfc1	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-firmware-2.6.32-504.3.3.el6.noarch.rpm	c0917d3f378bb506ac4dd206f23ebe62df4df1d396b6b70b2555f7cb76aedfc1	ELSA-2024-1831	ol6_u6_i386_patch
	kernel-headers-2.6.32-504.3.3.el6.i686.rpm	0fd7bbd061fca5f44a7f2d79c81b99716a104cb9951ed81b8cf8e13f63516d9b	ELSA-2024-1831	ol6_i386_latest_archive
	kernel-headers-2.6.32-504.3.3.el6.i686.rpm	0fd7bbd061fca5f44a7f2d79c81b99716a104cb9951ed81b8cf8e13f63516d9b	ELSA-2024-1831	ol6_u6_i386_patch
	perf-2.6.32-504.3.3.el6.i686.rpm	5a4df05286582ac5ba7aa1565d962324f552fd0edda792e7896053dc5a72aad6	ELSA-2024-1831	ol6_i386_latest_archive
	perf-2.6.32-504.3.3.el6.i686.rpm	5a4df05286582ac5ba7aa1565d962324f552fd0edda792e7896053dc5a72aad6	ELSA-2024-1831	ol6_u6_i386_patch
	python-perf-2.6.32-504.3.3.el6.i686.rpm	c512bc861924c2e5ee1452daef0fdf7cde29d6f87184dc5de78212c519b731e4	ELSA-2024-1831	ol6_i386_latest_archive
	python-perf-2.6.32-504.3.3.el6.i686.rpm	c512bc861924c2e5ee1452daef0fdf7cde29d6f87184dc5de78212c519b731e4	ELSA-2024-1831	ol6_u6_i386_patch

Oracle Linux 6 (x86_64)	kernel-2.6.32-504.3.3.el6.src.rpm	4fd5cae91e500091b63b84d8d3961f7957b6049306f208048cb73d0a56b95235	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-2.6.32-504.3.3.el6.src.rpm	4fd5cae91e500091b63b84d8d3961f7957b6049306f208048cb73d0a56b95235	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-2.6.32-504.3.3.el6.x86_64.rpm	a48d1c15358c58d60e8e2efd663df85886223f5436cb7b8c9138c1f603f3d134	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-2.6.32-504.3.3.el6.x86_64.rpm	a48d1c15358c58d60e8e2efd663df85886223f5436cb7b8c9138c1f603f3d134	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-abi-whitelists-2.6.32-504.3.3.el6.noarch.rpm	0280cdc9433d033bb6e5825126859731d088ca44fa602074134a1de6c90a038c	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-abi-whitelists-2.6.32-504.3.3.el6.noarch.rpm	0280cdc9433d033bb6e5825126859731d088ca44fa602074134a1de6c90a038c	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-debug-2.6.32-504.3.3.el6.x86_64.rpm	0adc0167e85f26641a23f52aefd6024483559eb36b460163a97fdc1964db0cef	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-debug-2.6.32-504.3.3.el6.x86_64.rpm	0adc0167e85f26641a23f52aefd6024483559eb36b460163a97fdc1964db0cef	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-debug-devel-2.6.32-504.3.3.el6.x86_64.rpm	3ea1c891ad023662cf4a7acbd142bc772d5277e31fa0e7ccd552ff9ddb6da3c7	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-debug-devel-2.6.32-504.3.3.el6.x86_64.rpm	3ea1c891ad023662cf4a7acbd142bc772d5277e31fa0e7ccd552ff9ddb6da3c7	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-devel-2.6.32-504.3.3.el6.x86_64.rpm	c9d679e33a6d4fcfcd169d93a0d3496508f3db5e99661e5d1029df60e5ccb1f5	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-devel-2.6.32-504.3.3.el6.x86_64.rpm	c9d679e33a6d4fcfcd169d93a0d3496508f3db5e99661e5d1029df60e5ccb1f5	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-doc-2.6.32-504.3.3.el6.noarch.rpm	29fd72a01880ebe799b9a35bc36245432d679aab33ebc9fe0bce3fcbd03d0038	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-doc-2.6.32-504.3.3.el6.noarch.rpm	29fd72a01880ebe799b9a35bc36245432d679aab33ebc9fe0bce3fcbd03d0038	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-firmware-2.6.32-504.3.3.el6.noarch.rpm	c0917d3f378bb506ac4dd206f23ebe62df4df1d396b6b70b2555f7cb76aedfc1	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-firmware-2.6.32-504.3.3.el6.noarch.rpm	c0917d3f378bb506ac4dd206f23ebe62df4df1d396b6b70b2555f7cb76aedfc1	ELSA-2024-1831	ol6_x86_64_latest_archive
	kernel-headers-2.6.32-504.3.3.el6.x86_64.rpm	20984560c09f65b5a27c3da33970bb61d1caf735ee4525e2fd53d2e9bb45961e	ELSA-2024-1831	ol6_u6_x86_64_patch
	kernel-headers-2.6.32-504.3.3.el6.x86_64.rpm	20984560c09f65b5a27c3da33970bb61d1caf735ee4525e2fd53d2e9bb45961e	ELSA-2024-1831	ol6_x86_64_latest_archive
	perf-2.6.32-504.3.3.el6.x86_64.rpm	a119717ad67497cc33f8d048a6b5120bea321c55b291df622b760d7cac6e2082	ELSA-2024-1831	ol6_u6_x86_64_patch
	perf-2.6.32-504.3.3.el6.x86_64.rpm	a119717ad67497cc33f8d048a6b5120bea321c55b291df622b760d7cac6e2082	ELSA-2024-1831	ol6_x86_64_latest_archive
	python-perf-2.6.32-504.3.3.el6.x86_64.rpm	0cc5ff7ea6d09471bbccd907f2e1aa3bc787f491055c876b9c743af4a56ee8f1	ELSA-2024-1831	ol6_u6_x86_64_patch
	python-perf-2.6.32-504.3.3.el6.x86_64.rpm	0cc5ff7ea6d09471bbccd907f2e1aa3bc787f491055c876b9c743af4a56ee8f1	ELSA-2024-1831	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691