ELSA-2015-1534

ELSA-2015-1534 - kernel security and bug fix update

Type:SECURITY
Severity:MODERATE
Release Date:2015-08-05

Description


[3.10.0-229.11.1]
- Oracle Linux certificates (Alexey Petrenko)

[3.10.0-229.11.1]
- [fs] Fixing lease renewal (Steve Dickson) [1226328 1205048]
- [fs] revert 'nfs: Fixing lease renewal' (Carlos Maiolino) [1226328 1205048]
- [redhat] spec: Update dracut dependency to 033-241.|ael7b]_1.5 (Phillip Lougher) [1241571 1241344]

[3.10.0-229.10.1]
- [redhat] spec: Update dracut dependency to pull in drbg module (Phillip Lougher) [1241571 1241344]

[3.10.0-229.9.1]
- [crypto] krng: Remove krng (Herbert Xu) [1238210 1229738]
- [crypto] drbg: Add stdrng alias and increase priority (Herbert Xu) [1238210 1229738]
- [crypto] seqiv: Move IV seeding into init function (Herbert Xu) [1238210 1229738]
- [crypto] eseqiv: Move IV seeding into init function (Herbert Xu) [1238210 1229738]
- [crypto] chainiv: Move IV seeding into init function (Herbert Xu) [1238210 1229738]
- [s390] crypto: ghash - Fix incorrect ghash icv buffer handling (Herbert Xu) [1238211 1207598]
- [kernel] module: Call module notifier on failure after complete_formation() (Bandan Das) [1238937 1236273]
- [net] ipv4: kABI fix for 0bbf87d backport (Aristeu Rozanski) [1238208 1184764]
- [net] ipv4: Convert ipv4.ip_local_port_range to be per netns (Aristeu Rozanski) [1238208 1184764]
- [of] Eliminate of_allnodes list (Gustavo Duarte) [1236983 1210533]
- [scsi] ipr: Increase default adapter init stage change timeout (Steve Best) [1236139 1229217]
- [fs] libceph: fix double __remove_osd() problem (Sage Weil) [1236462 1229488]
- [fs] ext4: fix data corruption caused by unwritten and delayed extents (Lukas Czerner) [1235563 1213487]
- [kernel] watchdog: update watchdog_thresh properly (Ulrich Obergfell) [1223924 1216074]
- [kernel] watchdog: update watchdog attributes atomically (Ulrich Obergfell) [1223924 1216074]
- [virt] kvm: ensure hard lockup detection is disabled by default (Andrew Jones) [1236461 1111262]
- [watchdog] control hard lockup detection default (Andrew Jones) [1236461 1111262]
- [watchdog] Fix print-once on enable (Andrew Jones) [1236461 1111262]

[3.10.0-229.8.1]
- [fs] fs-cache: The retrieval remaining-pages counter needs to be atomic_t (David Howells) [1231809 1130457]
- [net] libceph: tcp_nodelay support (Sage Weil) [1231803 1197952]
- [powerpc] pseries: Simplify check for suspendability during suspend/migration (Gustavo Duarte) [1231638 1207295]
- [powerpc] pseries: Introduce api_version to migration sysfs interface (Gustavo Duarte) [1231638 1207295]
- [powerpc] pseries: Little endian fixes for post mobility device tree update (Gustavo Duarte) [1231638 1207295]
- [fs] sunrpc: Add missing support for RPC_CLNT_CREATE_NO_RETRANS_TIMEOUT (Steve Dickson) [1227825 1111712]
- [fs] nfs: Fixing lease renewal (Benjamin Coddington) [1226328 1205048]
- [powerpc] iommu: ddw: Fix endianness (Steve Best) [1224406 1189040]
- [usb] fix use-after-free bug in usb_hcd_unlink_urb() (Don Zickus) [1223239 1187256]
- [net] ipv4: Missing sk_nulls_node_init() in ping_unhash() (Denys Vlasenko) [1218104 1218105] {CVE-2015-3636}
- [net] nf_conntrack: reserve two bytes for nf_ct_ext->len (Marcelo Leitner) [1211096 1206164] {CVE-2014-9715}
- [net] ipv6: Don't reduce hop limit for an interface (Denys Vlasenko) [1208494 1208496] {CVE-2015-2922}
- [x86] kernel: execution in the early microcode loader (Jacob Tanenbaum) [1206829 1206830] {CVE-2015-2666}
- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Seth Jennings) [1202861 1198843] {CVE-2015-1805}


Related CVEs


CVE-2015-2922
CVE-2015-3636
CVE-2014-9715
CVE-2015-2666

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) kernel-3.10.0-229.11.1.el7.src.rpm3e08d0b5085203a1ffa61d35b359486bELBA-2021-1397-1
kernel-3.10.0-229.11.1.el7.x86_64.rpmb2f8ac556013934b6d32116e40a19555ELBA-2021-1397-1
kernel-abi-whitelists-3.10.0-229.11.1.el7.noarch.rpm571df0eb0baa25b247ba59dc5a657ac5ELBA-2021-1397-1
kernel-debug-3.10.0-229.11.1.el7.x86_64.rpm24014f8ff11c9bc114b379cff2ddf096ELBA-2021-1397-1
kernel-debug-devel-3.10.0-229.11.1.el7.x86_64.rpm20170bab3cc9463d7ce838cd66f1b612ELBA-2021-1397-1
kernel-devel-3.10.0-229.11.1.el7.x86_64.rpm444059d9a8e889d7c8ae4395278bff76ELBA-2021-1397-1
kernel-doc-3.10.0-229.11.1.el7.noarch.rpmd22edf1f3e13829bf6414b4aa51492a1ELBA-2021-1397-1
kernel-headers-3.10.0-229.11.1.el7.x86_64.rpm8b3090149f5f5f4b81944f8066c4175aELBA-2021-1397-1
kernel-tools-3.10.0-229.11.1.el7.x86_64.rpm413f760c489e53470d299188bd6b7320ELBA-2021-1397-1
kernel-tools-libs-3.10.0-229.11.1.el7.x86_64.rpm127369ac8c3c2bd4057ed61567fb993aELBA-2021-1397-1
kernel-tools-libs-devel-3.10.0-229.11.1.el7.x86_64.rpmf5a2a78653bcf7c1d3e5790035a007b8ELBA-2021-1397-1
perf-3.10.0-229.11.1.el7.x86_64.rpmf89e24f6a4c11ab28411c9bea2a1c10cELSA-2021-9220
python-perf-3.10.0-229.11.1.el7.x86_64.rpm9f931f2543f51f06a6b7eb5186ab736cELSA-2021-9220



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete