Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2011-0004

Опубликовано: 04 янв. 2011
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2011-0004: kernel security, bug fix, and enhancement update (IMPORTANT)

[2.6.18-194.32.1.0.1.el5]

  • [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514]
  • Add entropy support to igb (John Sobecki) [orabug 7607479]
  • [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]
  • [NET] Add xen pv/bonding netconsole support (Tina Yang) [orabug 6993043] [bz 7258]
  • [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]
  • fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]
  • [nfsd] fix failure of file creation from hpux client (Wen gang Wang) [orabug 7579314]
  • [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702]
  • [net] bonding: fix xen+bonding+netconsole panic issue (Joe Jin) [orabug 9504524]
  • [rds] Patch rds to 1.4.2-14 (Andy Grover) [orabug 9471572, 9344105] RDS: Fix BUG_ONs to not fire when in a tasklet ipoib: Fix lockup of the tx queue RDS: Do not call set_page_dirty() with irqs off (Sherman Pun) RDS: Properly unmap when getting a remote access error (Tina Yang) RDS: Fix locking in rds_send_drop_to()
  • [mm] Enhance shrink_zone patch allow full swap utilization, and also be NUMA-aware (John Sobecki, Chris Mason, Herbert van den Bergh) [orabug 9245919]
  • [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson) [orabug 9107465]
  • [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson) [orabug 9764220]
  • Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]
  • fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro, Guru Anbalagane) [orabug 6124033]
  • [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]
  • [ib] fix memory corruption (Andy Grover) [orabug 9972346]
  • make xenkbd.abs_pointer=1 by default (John Haxby) [orabug 67188919]
  • fix filp_close() race (Joe Jin) [orabug 10335998]

[2.6.18-194.32.1.el5]

  • [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]

[2.6.18-194.31.1.el5]

  • [fs] nfs: set lock_context field in nfs_writepage_sync (Jeff Layton) [663381 660580]
  • [fs] nfs: remove problematic calls to nfs_clear_request (Jeff Layton) [663353 656492]
  • [fs] nfs: handle alloc failures in nfs_create_request (Jeff Layton) [663353 656492]
  • [fs] nfs: clean up nfs_create_request (Jeff Layton) [663353 656492]
  • [virt] xen: fix netback hotplug regression in xenbus fix (Laszlo Ersek) [636412 635999] {CVE-2010-3699}

[2.6.18-194.30.1.el5]

  • [scsi] lpfc: set heartbeat timer off by default (Rob Evers) [658079 655119]
  • [misc] posix-cpu-timers: workaround for mt exec problems (Oleg Nesterov) [656265 656266] {CVE-2010-4248}
  • [fs] setup_arg_pages: diagnose excessive argument size (Oleg Nesterov) [645226 645227] {CVE-2010-3858}
  • [net] inet_diag: make sure we run audited bytecode (Jiri Pirko) [651266 651267] {CVE-2010-3880}
  • [net] limit sendto/recvfrom/iovec total length to INT_MAX (Jiri Pirko) [645871 645872] {CVE-2010-3859}
  • [bluetooth] hci_ldisc: fix missing NULL check (Jarod Wilson) [655664 655666] {CVE-2010-4242}
  • [virt] xen: add bounds req-process loop in blkback/blktap (Laszlo Ersek) [656208 654546] {CVE-2010-4247}
  • [virt] xen: don't leak dev refs on bad xenbus transitions (Laszlo Ersek) [636412 635999] {CVE-2010-3699}
  • [scsi] lpfc: fix crashes on NULL pnode dereference (Rob Evers) [658864 649489]
  • [scsi] qla2xxx: check null fcport in _queuecommands (Chad Dupuis) [657029 644863]
  • [fs] gfs2: fix race in unlinked inode deallocation (Robert S Peterson) [651811 643165]
  • [scsi] lpfc: fix a BUG_ON in lpfc_abort_handler (Rob Evers) [658378 639028]
  • [scsi] re-enable transistions from OFFLINE to RUNNING (Mike Christie) [658934 641193]
  • [scsi] scsi_dh_alua: handle transitioning state correctly (Mike Snitzer) [657028 619361]
  • [misc] add round_jiffies_up and related routines (Michal Schmidt) [658520 556476]
  • [fs] fix dcache accounting bug (Josef Bacik) [658857 596548]
  • [usb] uhci: fix oops in uhci_scan_schedule (Pete Zaitcev) [657319 516851]
  • [scsi] lpfc: fix panic in lpfc_scsi_cmd_iocb_cmpl (Rob Evers) [658379 603806]

[2.6.18-194.29.1.el5]

  • [net] rds: fix rds_iovec page count overflow (Jiri Pirko) [647421 647422] {CVE-2010-3865}
  • [net] fix deadlock in sock_queue_rcv_skb (Danny Feng) [652536 652537] {CVE-2010-4161}
  • [net] packet: fix information leak to userland (Jiri Pirko) [649897 649898] {CVE-2010-3876}
  • [ipc] sys_semctl: fix kernel stack leakage (Danny Feng) [648721 648722] {CVE-2010-4083}
  • [misc] kernel: remove yield from stop_machine paths (Oleg Nesterov) [651818 634454]
  • [fs] dlm: reduce cond_resched during send (David Teigland) [653335 604139]
  • [fs] dlm: use TCP_NODELAY (David Teigland) [653335 604139]
  • [net] sctp: do not reset packet during sctp_packet_config (Jiri Pirko) [637866 637867] {CVE-2010-3432}
  • [net] bonding: no lock on copy/clear VLAN list on slave (Andy Gospodarek) [652561 627974]
  • [scsi] gdth: prevent integer overflow in ioc_general (Frantisek Hrbata) [651175 651176] {CVE-2010-4157}
  • [kernel] add stop_machine barrier to fix lock contention (Prarit Bhargava) [651818 634454]

[2.6.18-194.28.1.el5]

  • [net] bnx2: Increase max rx ring size from 1K to 2K (Andy Gospodarek) [649255 640026]
  • [net] bnx2: fixup broken NAPI accounting (Andy Gospodarek) [649255 640026]
  • [pci] include DL580 G7 in bfsort whitelist (Tony Camuso) [646765 644879]
  • [sound] core: prevent heap corruption in snd_ctl_new (Jerome Marchand) [638483 638484] {CVE-2010-3442}
  • [net] ixgbe: add option to control interrupt mode (Andy Gospodarek) [643339 571495]
  • [fs] execve: fix interactivity and response to SIGKILL (Dave Anderson) [643344 629176]
  • [usb] fix test of wrong variable in create_by_name (Don Howard) [643347 594635]
  • [fs] gfs2: fix stuck in inode wait, no glocks stuck (Robert S Peterson) [651805 595397]
  • [net] gro: fix bogus gso_size on the first fraglist entry (Herbert Xu) [648938 588015]
  • [virt] xen: fix Connected state after netback dev closed (Paolo Bonzini) [643345 591548]
  • [net] tun: orphan an skb on tx (Michael S. Tsirkin) [643348 584412]

[2.6.18-194.27.1.el5]

  • [net] netxen: fix set mac addr (Andy Gospodarek) [647681 562937]

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

kernel

2.6.18-194.32.1.0.1.el5

kernel-debug

2.6.18-194.32.1.0.1.el5

kernel-debug-devel

2.6.18-194.32.1.0.1.el5

kernel-devel

2.6.18-194.32.1.0.1.el5

kernel-doc

2.6.18-194.32.1.0.1.el5

kernel-headers

2.6.18-194.32.1.0.1.el5

kernel-xen

2.6.18-194.32.1.0.1.el5

kernel-xen-devel

2.6.18-194.32.1.0.1.el5

ocfs2-2.6.18-194.32.1.0.1.el5

1.4.7-1.el5

ocfs2-2.6.18-194.32.1.0.1.el5debug

1.4.7-1.el5

ocfs2-2.6.18-194.32.1.0.1.el5xen

1.4.7-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5

2.0.5-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5debug

2.0.5-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5xen

2.0.5-1.el5

Oracle Linux x86_64

kernel

2.6.18-194.32.1.0.1.el5

kernel-debug

2.6.18-194.32.1.0.1.el5

kernel-debug-devel

2.6.18-194.32.1.0.1.el5

kernel-devel

2.6.18-194.32.1.0.1.el5

kernel-doc

2.6.18-194.32.1.0.1.el5

kernel-headers

2.6.18-194.32.1.0.1.el5

kernel-xen

2.6.18-194.32.1.0.1.el5

kernel-xen-devel

2.6.18-194.32.1.0.1.el5

ocfs2-2.6.18-194.32.1.0.1.el5

1.4.7-1.el5

ocfs2-2.6.18-194.32.1.0.1.el5debug

1.4.7-1.el5

ocfs2-2.6.18-194.32.1.0.1.el5xen

1.4.7-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5

2.0.5-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5debug

2.0.5-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5xen

2.0.5-1.el5

Oracle Linux i386

kernel

2.6.18-194.32.1.0.1.el5

kernel-PAE

2.6.18-194.32.1.0.1.el5

kernel-PAE-devel

2.6.18-194.32.1.0.1.el5

kernel-debug

2.6.18-194.32.1.0.1.el5

kernel-debug-devel

2.6.18-194.32.1.0.1.el5

kernel-devel

2.6.18-194.32.1.0.1.el5

kernel-doc

2.6.18-194.32.1.0.1.el5

kernel-headers

2.6.18-194.32.1.0.1.el5

kernel-xen

2.6.18-194.32.1.0.1.el5

kernel-xen-devel

2.6.18-194.32.1.0.1.el5

ocfs2-2.6.18-194.32.1.0.1.el5

1.4.7-1.el5

ocfs2-2.6.18-194.32.1.0.1.el5PAE

1.4.7-1.el5

ocfs2-2.6.18-194.32.1.0.1.el5debug

1.4.7-1.el5

ocfs2-2.6.18-194.32.1.0.1.el5xen

1.4.7-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5

2.0.5-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5PAE

2.0.5-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5debug

2.0.5-1.el5

oracleasm-2.6.18-194.32.1.0.1.el5xen

2.0.5-1.el5

Связанные CVE

CVE-2010-3432
CVE-2010-3859
CVE-2010-4083
CVE-2010-4157
CVE-2010-3876
CVE-2010-4161
CVE-2010-4247
CVE-2010-3442
CVE-2010-3699
CVE-2010-3858
CVE-2010-3865
CVE-2010-3880
CVE-2010-4242
CVE-2010-4248

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2010-3432

ubuntu
больше 14 лет назад

The sctp_packet_config function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial of service (panic) via a certain sequence of SCTP traffic.

redhat логотип

CVE-2010-3432

redhat
почти 15 лет назад

The sctp_packet_config function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial of service (panic) via a certain sequence of SCTP traffic.

nvd логотип

CVE-2010-3432

nvd
больше 14 лет назад

The sctp_packet_config function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial of service (panic) via a certain sequence of SCTP traffic.

debian логотип

CVE-2010-3432

debian
больше 14 лет назад

The sctp_packet_config function in net/sctp/output.c in the Linux kern ...

fstec логотип

BDU:2015-08638

fstec
больше 14 лет назад

Уязвимости операционной системы CentOS, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

Уязвимость ELSA-2011-0004