ELSA-2015-1778

Описание

[3.10.0-229.14.1.OL7]

• Oracle Linux certificates (Alexey Petrenko)

[3.10.0-229.14.1]

• [s390] zcrypt: Fixed reset and interrupt handling of AP queues (Hendrik Brueckner) [1248381 1238230]

[3.10.0-229.13.1]

• [dma] ioat: fix tasklet tear down (Herton R. Krzesinski) [1251523 1210093]
• [drm] radeon: Fix VGA switcheroo problem related to hotplug (missing hunk) (Rob Clark) [1207879 1223472]
• [security] keys: Ensure we free the assoc array edit if edit is valid (David Howells) [1246039 1244171] {CVE-2015-1333}
• [net] tcp: properly handle stretch acks in slow start (Florian Westphal) [1243903 1151756]
• [net] tcp: fix no cwnd growth after timeout (Florian Westphal) [1243903 1151756]
• [net] tcp: increase throughput when reordering is high (Florian Westphal) [1243903 1151756]
• [of] Fix sysfs_dirent cache integrity issue (Gustavo Duarte) [1249120 1225539]
• [tty] vt: don't set font mappings on vc not supporting this (Jarod Wilson) [1248384 1213538]
• [scsi] fix regression in scsi_send_eh_cmnd() (Ewan Milne) [1243412 1167454]
• [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240760 1240761] {CVE-2015-5364 CVE-2015-5366}
• [fs] Convert MessageID in smb2_hdr to LE (Sachin Prabhu) [1238693 1161441]
• [x86] bpf_jit: fix compilation of large bpf programs (Denys Vlasenko) [1236938 1236939] {CVE-2015-4700}
• [net] sctp: fix ASCONF list handling (Marcelo Leitner) [1227960 1206474] {CVE-2015-3212}
• [fs] ext4: allocate entire range in zero range (Lukas Czerner) [1193909 1187071] {CVE-2015-0275}
• [x86] ASLR bruteforce possible for vdso library (Jacob Tanenbaum) [1184898 1184899] {CVE-2014-9585}

[3.10.0-229.12.1]

• [ethernet] ixgbe: remove CIAA/D register reads from bad VF check (John Greene) [1245597 1205903]
• [kernel] sched: Avoid throttle_cfs_rq() racing with period_timer stopping (Rik van Riel) [1241078 1236413]