ELSA-2011-2015

Описание

[2.6.32-100.28.15.el6]

• sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set {CVE-2011-1573}
• dccp: fix oops on Reset after close {CVE-2011-1093}
• bridge: netfilter: fix information leak {CVE-2011-1080}
• Bluetooth: bnep: fix buffer overflow {CVE-2011-1079}
• net: don't allow CAP_NET_ADMIN to load non-netdev kernel modules {CVE-2011-1019}
• ipip: add module alias for tunl0 tunnel device
• gre: add module alias for gre0 tunnel device
• drm/radeon/kms: check AA resolve registers on r300 {CVE-2011-1016}
• drm/radeon: fix regression with AA resolve checking {CVE-2011-1016}
• drm: fix unsigned vs signed comparison issue in modeset ctl ioctl {CVE-2011-1013}
• proc: protect mm start_code/end_code in /proc/pid/stat {CVE-2011-0726}
• ALSA: caiaq - Fix possible string-buffer overflow {CVE-2011-0712}
• xfs: zero proper structure size for geometry calls {CVE-2011-0711}
• xfs: prevent leaking uninitialized stack memory in FSGEOMETRY_V1 {CVE-2011-0711}
• ima: fix add LSM rule bug {CVE-2011-0006}
• IB/uverbs: Handle large number of entries in poll CQ {CVE-2010-4649, CVE-2011-1044}
• CAN: Use inode instead of kernel address for /proc file {CVE-2010-4565}

[2.6.32-100.28.14.el6]

• IB/qib: fix qib compile warning.
• IB/core: Allow device-specific per-port sysfs files.
• dm crypt: add plain64 iv.
• firmware: add firmware for qib.
• Infiniband: Add QLogic PCIe QLE InfiniBand host channel adapters support.