Описание
ELSA-2013-1034: kernel security and bug fix update (LOW)
kernel [2.6.18-348.12.1]
- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071]
- Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071]
- Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071]
- Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071]
- Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071]
- Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]
[2.6.18-348.11.1]
- Revert: [kernel] kmod: make request_module() killable (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- Revert: [kernel] kmod: avoid deadlock from recursive kmod call (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- Revert: [kernel] wait_for_helper: remove unneeded do_sigaction() (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- Revert: [kernel] Fix ____call_usermodehelper errs being silently ignored (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- Revert: [kernel] wait_for_helper: SIGCHLD from u/s cause use-after-free (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- Revert: [kernel] kmod: avoid deadlock from recursive request_module call (Frantisek Hrbata) [957152 949568]
- Revert: [x86-64] non lazy sleazy fpu implementation (Prarit Bhargava) [948187 731531]
- Revert: [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531]
- Revert: [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531]
- Revert: [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783]
[2.6.18-348.10.1]
- [net] Bluetooth: fix possible info leak in bt_sock_recvmsg() (Radomir Vrbovsky) [955600 955601] {CVE-2013-3224}
- [net] Bluetooth: HCI & L2CAP information leaks (Jacob Tanenbaum) [922415 922416] {CVE-2012-6544}
- [misc] signal: use __ARCH_HAS_SA_RESTORER instead of SA_RESTORER (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}
- [misc] signal: always clear sa_restorer on execve (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}
- [misc] signal: Def __ARCH_HAS_SA_RESTORER for sa_restorer clear (Nikola Pajkovsky) [920503 920504] {CVE-2013-0914}
- [net] cxgb4: zero out another firmware request struct (Jay Fenlason) [971872 872531]
- [net] cxgb4: clear out most firmware request structures (Jay Fenlason) [971872 872531]
- [kernel] Make futex_wait() use an hrtimer for timeout (Prarit Bhargava) [958021 864648]
[2.6.18-348.9.1]
- [net] tg3: buffer overflow in VPD firmware parsing (Jacob Tanenbaum) [949939 949940] {CVE-2013-1929}
- [net] atm: update msg_namelen in vcc_recvmsg() (Nikola Pajkovsky) [955222 955223] {CVE-2013-3222}
- [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]
- [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071]
- [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071]
- [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071]
- [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071]
- [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071]
- [net] llc: Fix missing msg_namelen update in llc_ui_recvmsg() (Jesper Brouer) [956096 956097] {CVE-2013-3231}
- [net] tipc: fix info leaks via msg_name in recv_msg/recv_stream (Jesper Brouer) [956148 956149] {CVE-2013-3235}
- [net] Bluetooth: RFCOMM Fix info leak in ioctl(RFCOMMGETDEVLIST) (Radomir Vrbovsky) [922406 922407] {CVE-2012-6545}
- [net] Bluetooth: RFCOMM - Fix info leak via getsockname() (Radomir Vrbovsky) [922406 922407] {CVE-2012-6545}
- [kernel] kmod: avoid deadlock from recursive request_module call (Frantisek Hrbata) [957152 949568]
- [kernel] wait_for_helper: SIGCHLD from u/s cause use-after-free (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- [kernel] Fix ____call_usermodehelper errs being silently ignored (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- [kernel] wait_for_helper: remove unneeded do_sigaction() (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- [kernel] kmod: avoid deadlock from recursive kmod call (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
- [kernel] kmod: make request_module() killable (Frantisek Hrbata) [858752 858753] {CVE-2012-4398}
[2.6.18-348.8.1]
- [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783]
[2.6.18-348.7.1]
- [pci] intel-iommu: Prev devs with RMRRs from going in SI Domain (Tony Camuso) [957606 839334]
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
kernel
2.6.18-348.12.1.el5
kernel-debug
2.6.18-348.12.1.el5
kernel-debug-devel
2.6.18-348.12.1.el5
kernel-devel
2.6.18-348.12.1.el5
kernel-doc
2.6.18-348.12.1.el5
kernel-headers
2.6.18-348.12.1.el5
kernel-xen
2.6.18-348.12.1.el5
kernel-xen-devel
2.6.18-348.12.1.el5
ocfs2-2.6.18-348.12.1.el5
1.4.10-1.el5
ocfs2-2.6.18-348.12.1.el5debug
1.4.10-1.el5
ocfs2-2.6.18-348.12.1.el5xen
1.4.10-1.el5
oracleasm-2.6.18-348.12.1.el5
2.0.5-1.el5
oracleasm-2.6.18-348.12.1.el5debug
2.0.5-1.el5
oracleasm-2.6.18-348.12.1.el5xen
2.0.5-1.el5
Oracle Linux x86_64
kernel
2.6.18-348.12.1.el5
kernel-debug
2.6.18-348.12.1.el5
kernel-debug-devel
2.6.18-348.12.1.el5
kernel-devel
2.6.18-348.12.1.el5
kernel-doc
2.6.18-348.12.1.el5
kernel-headers
2.6.18-348.12.1.el5
kernel-xen
2.6.18-348.12.1.el5
kernel-xen-devel
2.6.18-348.12.1.el5
ocfs2-2.6.18-348.12.1.el5
1.4.10-1.el5
ocfs2-2.6.18-348.12.1.el5debug
1.4.10-1.el5
ocfs2-2.6.18-348.12.1.el5xen
1.4.10-1.el5
oracleasm-2.6.18-348.12.1.el5
2.0.5-1.el5
oracleasm-2.6.18-348.12.1.el5debug
2.0.5-1.el5
oracleasm-2.6.18-348.12.1.el5xen
2.0.5-1.el5
Oracle Linux i386
kernel
2.6.18-348.12.1.el5
kernel-PAE
2.6.18-348.12.1.el5
kernel-PAE-devel
2.6.18-348.12.1.el5
kernel-debug
2.6.18-348.12.1.el5
kernel-debug-devel
2.6.18-348.12.1.el5
kernel-devel
2.6.18-348.12.1.el5
kernel-doc
2.6.18-348.12.1.el5
kernel-headers
2.6.18-348.12.1.el5
kernel-xen
2.6.18-348.12.1.el5
kernel-xen-devel
2.6.18-348.12.1.el5
ocfs2-2.6.18-348.12.1.el5
1.4.10-1.el5
ocfs2-2.6.18-348.12.1.el5PAE
1.4.10-1.el5
ocfs2-2.6.18-348.12.1.el5debug
1.4.10-1.el5
ocfs2-2.6.18-348.12.1.el5xen
1.4.10-1.el5
oracleasm-2.6.18-348.12.1.el5
2.0.5-1.el5
oracleasm-2.6.18-348.12.1.el5PAE
2.0.5-1.el5
oracleasm-2.6.18-348.12.1.el5debug
2.0.5-1.el5
oracleasm-2.6.18-348.12.1.el5xen
2.0.5-1.el5
Ссылки на источники
Связанные уязвимости
ELSA-2013-1034-1: kernel security and bug fix update (LOW)
The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the (1) L2CAP or (2) HCI implementation.
The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the (1) L2CAP or (2) HCI implementation.
The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that targets the (1) L2CAP or (2) HCI implementation.
The Bluetooth protocol stack in the Linux kernel before 3.6 does not p ...