Description
The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2013-0039 for details.
Related
{"id": "ORACLEVM_OVMSA-2013-0039.NASL", "vendorId": null, "type": "nessus", "bulletinFamily": "scanner", "title": "OracleVM 2.2 : kernel (OVMSA-2013-0039)", "description": "The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2013-0039 for details.", "published": "2014-11-26T00:00:00", "modified": "2021-01-04T00:00:00", "epss": [], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/79507", "reporter": "This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4538", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1746", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2847", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3547", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1745", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1895", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0727", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1585", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2482", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4536", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1173", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3638", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2407", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4308", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4248", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2908", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3621", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1389", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4020", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1583", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3858", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1162", "https://oss.oracle.com/pipermail/oraclevm-errata/2013-May/000153.html", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4307", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2692", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1388", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2521", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3296", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1078", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3067", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2942", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1087", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4157", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4073", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4258", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3637", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1833", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6304", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0745", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4249", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0726", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1080", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0747", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1182", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2240", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3877", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1084", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1641", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4141", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4242", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2798", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4158", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3078", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3432", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1160", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1083", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4081", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1083", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4537", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0007", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3876", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1044", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2248", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3612", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1010", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4083", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4567", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2022", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4138", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2136", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0748", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3477", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1573", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0622", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3191", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2203", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3286", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4655", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3859", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4067", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0521", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4110", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1188", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4021", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3726", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3620", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3080", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2226", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4649", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1776", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2525", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2848", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4127", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0746", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4077", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2406", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4080", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1163", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2963"], "cvelist": ["CVE-2006-6304", "CVE-2007-4567", "CVE-2009-0745", "CVE-2009-0746", "CVE-2009-0747", "CVE-2009-0748", "CVE-2009-1388", "CVE-2009-1389", "CVE-2009-1895", "CVE-2009-2406", "CVE-2009-2407", "CVE-2009-2692", "CVE-2009-2847", "CVE-2009-2848", "CVE-2009-2908", "CVE-2009-3080", "CVE-2009-3286", "CVE-2009-3547", "CVE-2009-3612", "CVE-2009-3620", "CVE-2009-3621", "CVE-2009-3726", "CVE-2009-4020", "CVE-2009-4021", "CVE-2009-4067", "CVE-2009-4138", "CVE-2009-4141", "CVE-2009-4307", "CVE-2009-4308", "CVE-2009-4536", "CVE-2009-4537", "CVE-2009-4538", "CVE-2010-0007", "CVE-2010-0415", "CVE-2010-0437", "CVE-2010-0622", "CVE-2010-0727", "CVE-2010-1083", "CVE-2010-1084", "CVE-2010-1086", "CVE-2010-1087", "CVE-2010-1088", "CVE-2010-1173", "CVE-2010-1188", "CVE-2010-1436", "CVE-2010-1437", "CVE-2010-1641", "CVE-2010-2226", "CVE-2010-2240", "CVE-2010-2248", "CVE-2010-2521", "CVE-2010-2798", "CVE-2010-2942", "CVE-2010-2963", "CVE-2010-3067", "CVE-2010-3078", "CVE-2010-3086", "CVE-2010-3296", "CVE-2010-3432", "CVE-2010-3442", "CVE-2010-3477", "CVE-2010-3858", "CVE-2010-3859", "CVE-2010-3876", "CVE-2010-3877", "CVE-2010-4073", "CVE-2010-4080", "CVE-2010-4081", "CVE-2010-4083", "CVE-2010-4157", "CVE-2010-4158", "CVE-2010-4242", "CVE-2010-4248", "CVE-2010-4249", "CVE-2010-4258", "CVE-2010-4346", "CVE-2010-4649", "CVE-2010-4655", "CVE-2011-0521", "CVE-2011-0726", "CVE-2011-1010", "CVE-2011-1020", "CVE-2011-1044", "CVE-2011-1078", "CVE-2011-1079", "CVE-2011-1080", "CVE-2011-1083", "CVE-2011-1090", "CVE-2011-1093", "CVE-2011-1160", "CVE-2011-1162", "CVE-2011-1163", "CVE-2011-1182", "CVE-2011-1573", "CVE-2011-1577", "CVE-2011-1585", "CVE-2011-1745", "CVE-2011-1746", "CVE-2011-1776", "CVE-2011-1833", "CVE-2011-2022", "CVE-2011-2203", "CVE-2011-2213", "CVE-2011-2482", "CVE-2011-2484", "CVE-2011-2491", "CVE-2011-2496", "CVE-2011-2525", "CVE-2011-3191", "CVE-2011-3637", "CVE-2011-3638", "CVE-2011-4077", "CVE-2011-4086", "CVE-2011-4110", "CVE-2011-4127", "CVE-2011-4324", "CVE-2011-4330", "CVE-2011-4348", "CVE-2012-1583", "CVE-2012-2136"], "immutableFields": [], "lastseen": "2023-12-07T15:43:15", "viewCount": 32, "enchantments": {"dependencies": {"references": [{"type": "altlinux", "idList": ["903D2847056CBDDD87086410B4478F51"]}, {"type": "amazon", "idList": ["ALAS-2011-016", "ALAS-2011-022", "ALAS-2011-026", "ALAS-2012-034", "ALAS-2012-045", "ALAS-2012-055", "ALAS-2012-083", "ALAS-2012-100", "ALAS-2013-148"]}, {"type": "android", "idList": ["ANDROID:SOCK_SENDPAGE"]}, {"type": "canvas", "idList": ["FS_PIPE_RACE_TO_NULL", "PROTO_OPS_NULL"]}, {"type": "centos", "idList": ["CESA-2009:1193", "CESA-2009:1222", "CESA-2009:1223", "CESA-2009:1233", "CESA-2009:1243", "CESA-2009:1438", "CESA-2009:1522", "CESA-2009:1541", "CESA-2009:1548", "CESA-2009:1550", "CESA-2009:1670", "CESA-2009:1671", "CESA-2010:0019", "CESA-2010:0020", "CESA-2010:0046", "CESA-2010:0076", "CESA-2010:0146", "CESA-2010:0147", "CESA-2010:0394", "CESA-2010:0398", "CESA-2010:0474", "CESA-2010:0504", "CESA-2010:0606", "CESA-2010:0610", "CESA-2010:0661", "CESA-2010:0676", "CESA-2010:0723", "CESA-2010:0779", "CESA-2010:0839", "CESA-2010:0936", "CESA-2011:0004", "CESA-2011:0162", "CESA-2011:0303", "CESA-2011:0429", "CESA-2011:0833", "CESA-2011:0927", "CESA-2011:1065", "CESA-2011:1212", "CESA-2011:1241", "CESA-2011:1386", "CESA-2011:1479", "CESA-2011:1849", "CESA-2012:0007", "CESA-2012:0050", "CESA-2012:0107", "CESA-2012:0350", "CESA-2012:0480", "CESA-2012:0571", "CESA-2012:0690", "CESA-2012:0743", "CESA-2012:0862", "CESA-2012:1061", "CESA-2012:1156", "CESA-2012:1445", "CESA-2012:1580"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2010-077"]}, {"type": "checkpoint_security", "idList": ["CPS:SK42600", "CPS:SK44718"]}, {"type": "cve", "idList": ["CVE-2006-6304", "CVE-2007-4567", "CVE-2007-6733", "CVE-2009-0745", "CVE-2009-0746", "CVE-2009-0747", "CVE-2009-0748", "CVE-2009-1388", "CVE-2009-1389", "CVE-2009-1895", "CVE-2009-2406", "CVE-2009-2407", "CVE-2009-2692", "CVE-2009-2847", "CVE-2009-2848", "CVE-2009-2908", "CVE-2009-2962", "CVE-2009-3080", "CVE-2009-3286", "CVE-2009-3547", "CVE-2009-3612", "CVE-2009-3620", "CVE-2009-3621", "CVE-2009-3726", "CVE-2009-4020", "CVE-2009-4021", "CVE-2009-4067", "CVE-2009-4138", "CVE-2009-4141", "CVE-2009-4307", "CVE-2009-4308", "CVE-2009-4536", "CVE-2009-4537", "CVE-2009-4538", "CVE-2010-0006", "CVE-2010-0007", "CVE-2010-0415", "CVE-2010-0437", "CVE-2010-0622", "CVE-2010-0727", "CVE-2010-1083", "CVE-2010-1084", "CVE-2010-1086", "CVE-2010-1087", "CVE-2010-1088", "CVE-2010-1173", "CVE-2010-1188", "CVE-2010-1436", "CVE-2010-1437", "CVE-2010-1641", "CVE-2010-2226", "CVE-2010-2240", "CVE-2010-2248", "CVE-2010-2521", "CVE-2010-2798", "CVE-2010-2942", "CVE-2010-2963", "CVE-2010-3067", "CVE-2010-3078", "CVE-2010-3086", "CVE-2010-3296", "CVE-2010-3432", "CVE-2010-3442", "CVE-2010-3477", "CVE-2010-3858", "CVE-2010-3859", "CVE-2010-3876", "CVE-2010-3877", "CVE-2010-4073", "CVE-2010-4080", "CVE-2010-4081", "CVE-2010-4083", "CVE-2010-4157", "CVE-2010-4158", "CVE-2010-4161", "CVE-2010-4242", "CVE-2010-4243", "CVE-2010-4248", "CVE-2010-4249", "CVE-2010-4258", "CVE-2010-4346", "CVE-2010-4649", "CVE-2010-4655", "CVE-2011-0521", "CVE-2011-0726", "CVE-2011-1010", "CVE-2011-1020", "CVE-2011-1044", "CVE-2011-1078", "CVE-2011-1079", "CVE-2011-1080", "CVE-2011-1083", "CVE-2011-1090", "CVE-2011-1093", "CVE-2011-1160", "CVE-2011-1161", "CVE-2011-1162", "CVE-2011-1163", "CVE-2011-1182", "CVE-2011-1573", "CVE-2011-1577", "CVE-2011-1585", "CVE-2011-1745", "CVE-2011-1746", "CVE-2011-1776", "CVE-2011-1833", "CVE-2011-2022", "CVE-2011-2203", "CVE-2011-2213", "CVE-2011-2482", "CVE-2011-2484", "CVE-2011-2491", "CVE-2011-2496", "CVE-2011-2525", "CVE-2011-3191", "CVE-2011-3637", "CVE-2011-3638", "CVE-2011-4077", "CVE-2011-4086", "CVE-2011-4110", "CVE-2011-4127", "CVE-2011-4324", "CVE-2011-4330", "CVE-2011-4331", "CVE-2011-4348", "CVE-2012-1583", "CVE-2012-2100", "CVE-2012-2136", "CVE-2012-2319", "CVE-2012-3375"]}, {"type": "debian", "idList": ["DEBIAN:DSA-1749-1:B61FF", "DEBIAN:DSA-1787-1:1654D", "DEBIAN:DSA-1844-1:B4D67", "DEBIAN:DSA-1845-1:D0DFF", "DEBIAN:DSA-1862-1:C1869", "DEBIAN:DSA-1864-1:B2834", "DEBIAN:DSA-1865-1:34CE7", "DEBIAN:DSA-1872-1:3575F", "DEBIAN:DSA-1915-1:E4B61", "DEBIAN:DSA-1927-1:8E712", "DEBIAN:DSA-1928-1:AD816", "DEBIAN:DSA-1929-1:8AEEF", "DEBIAN:DSA-1996-1:8BFAA", "DEBIAN:DSA-2003-1:E3418", "DEBIAN:DSA-2004-1:2FC61", "DEBIAN:DSA-2012-1:C7629", "DEBIAN:DSA-2053-1:F2BFF", "DEBIAN:DSA-2094-1:7CFE2", "DEBIAN:DSA-2110-1:0DEA0", "DEBIAN:DSA-2126-1:370B4", "DEBIAN:DSA-2153-1:FDD6A", "DEBIAN:DSA-2240-1:38C7A", "DEBIAN:DSA-2264-1:87A7B", "DEBIAN:DSA-2303-1:FAE10", "DEBIAN:DSA-2303-2:A9DDE", "DEBIAN:DSA-2310-1:3E5BE", "DEBIAN:DSA-2389-1:215DA", "DEBIAN:DSA-2443-1:B44D6", "DEBIAN:DSA-2469-1:2DCF0"]}, {"type": "debiancve", "idList": ["DEBIANCVE:CVE-2011-1833", "DEBIANCVE:CVE-2011-4127", "DEBIANCVE:CVE-2012-2136", "DEBIANCVE:CVE-2012-2319", "DEBIANCVE:CVE-2012-3375"]}, {"type": "exploitdb", "idList": ["EDB-ID:14594", "EDB-ID:15344", "EDB-ID:15704", "EDB-ID:17787", "EDB-ID:40812", "EDB-ID:9477", "EDB-ID:9479"]}, {"type": "exploitpack", "idList": ["EXPLOITPACK:06473E7FD71F4692F26EB2761FD044F3", "EXPLOITPACK:331055013C284D20013F7156B81DB5B6", "EXPLOITPACK:587E07B26CFC9328AECA2A6FF11BCAF8", "EXPLOITPACK:6985AA9DD35CB6473FAE5FAA5B8CCAEF", "EXPLOITPACK:A04C222D3C60D2D8F5E7BB9C2DAFD763", "EXPLOITPACK:EC59CF0D0A8C58A6BA88DD9DDE82A311", "EXPLOITPACK:FF3D313D03F8BCB90EE2F22064032248"]}, {"type": "f5", "idList": ["F5:K10772", "SOL10772", "SOL16471", "SOL16473", "SOL16479"]}, {"type": "fedora", "idList": ["FEDORA:09B7B10FE4D", "FEDORA:0A08C10F8CD", "FEDORA:0BE9E110D31", "FEDORA:0DA9510F842", "FEDORA:101AF111631", "FEDORA:13309110B4E", "FEDORA:17CB220C3B", "FEDORA:1EC1210F9FC", "FEDORA:1F915226FCF", "FEDORA:2478710F7EA", "FEDORA:24DB910F87E", "FEDORA:25A5910FA53", "FEDORA:2A7BE111947", "FEDORA:2AC1E20B4C", "FEDORA:2CF2010F7EA", "FEDORA:2DF3C10F88B", "FEDORA:2F91620B3E", "FEDORA:329D9110666", "FEDORA:345FEC1A79", "FEDORA:3462710F8B9", "FEDORA:369FF20D31", "FEDORA:39F6F111B8D", "FEDORA:3A49610F8D7", "FEDORA:3AD78110EC4", "FEDORA:3E64B10F9E5", "FEDORA:4065520A59", "FEDORA:412F021715", "FEDORA:41D6810F891", "FEDORA:43A4210F8C3", "FEDORA:45AC610F8D3", "FEDORA:4974E213B1", "FEDORA:4FDFD210DE", "FEDORA:5034E20B96", "FEDORA:513CA20F9D", "FEDORA:52EFE10F85C", "FEDORA:5395111136D", "FEDORA:58608110C02", "FEDORA:5AA2F10FA12", "FEDORA:5B2C610F862", "FEDORA:61B6920DF2", "FEDORA:66A1320B9A", "FEDORA:681FD20EB8", "FEDORA:6F955210EC", "FEDORA:7805A2110A", "FEDORA:7885D20A4C", "FEDORA:79974217D9", "FEDORA:79F1D2100D", "FEDORA:7AE2C1106A7", "FEDORA:7B88D10F857", "FEDORA:7D7AF111C05", "FEDORA:83389211E0", "FEDORA:8785411086D", "FEDORA:89B7F20922", "FEDORA:91FDD10F8A2", "FEDORA:921C610F878", "FEDORA:955C12085B", "FEDORA:95DEA218E7", "FEDORA:96988210E1", "FEDORA:A272A110C4A", "FEDORA:AB6BD21587", "FEDORA:ACEFF2102F", "FEDORA:B0F721107BF", "FEDORA:B100D20BA4", "FEDORA:B3FC210F880", "FEDORA:B72D7110F0C", "FEDORA:B78FB21E49", "FEDORA:B7B6820900", "FEDORA:BCC0720E13", "FEDORA:BD6A910FBAE", "FEDORA:C07E810F9BD", "FEDORA:C337E21244", "FEDORA:C5ABB10F8BB", "FEDORA:C6921110369", "FEDORA:C6B22C19F7", "FEDORA:C80E110F85F", "FEDORA:CAA68215A9", "FEDORA:CCE5920EB5", "FEDORA:D22E511080A", "FEDORA:D7C4010F8B4", "FEDORA:E07AD11061A", "FEDORA:E342B20FDA", "FEDORA:E3FE720DE6", "FEDORA:EC9CE112018", "FEDORA:EE22320D8D", "FEDORA:EE5BE10FCAD", "FEDORA:F394810F8A0"]}, {"type": "kitploit", "idList": ["KITPLOIT:5310354020898253604"]}, {"type": "nessus", "idList": ["ALA_ALAS-2011-16.NASL", "ALA_ALAS-2011-22.NASL", "ALA_ALAS-2011-26.NASL", "ALA_ALAS-2012-100.NASL", "ALA_ALAS-2012-34.NASL", "ALA_ALAS-2012-45.NASL", "ALA_ALAS-2012-55.NASL", "ALA_ALAS-2012-83.NASL", "ALA_ALAS-2013-148.NASL", "CENTOS_RHSA-2009-1193.NASL", "CENTOS_RHSA-2009-1222.NASL", "CENTOS_RHSA-2009-1223.NASL", "CENTOS_RHSA-2009-1233.NASL", "CENTOS_RHSA-2009-1243.NASL", "CENTOS_RHSA-2009-1438.NASL", "CENTOS_RHSA-2009-1522.NASL", "CENTOS_RHSA-2009-1541.NASL", "CENTOS_RHSA-2009-1548.NASL", "CENTOS_RHSA-2009-1550.NASL", "CENTOS_RHSA-2009-1670.NASL", "CENTOS_RHSA-2009-1671.NASL", "CENTOS_RHSA-2010-0019.NASL", "CENTOS_RHSA-2010-0020.NASL", "CENTOS_RHSA-2010-0046.NASL", "CENTOS_RHSA-2010-0076.NASL", "CENTOS_RHSA-2010-0146.NASL", "CENTOS_RHSA-2010-0147.NASL", "CENTOS_RHSA-2010-0394.NASL", "CENTOS_RHSA-2010-0398.NASL", "CENTOS_RHSA-2010-0474.NASL", "CENTOS_RHSA-2010-0504.NASL", "CENTOS_RHSA-2010-0606.NASL", "CENTOS_RHSA-2010-0610.NASL", "CENTOS_RHSA-2010-0661.NASL", "CENTOS_RHSA-2010-0676.NASL", "CENTOS_RHSA-2010-0723.NASL", "CENTOS_RHSA-2010-0779.NASL", "CENTOS_RHSA-2010-0839.NASL", "CENTOS_RHSA-2010-0936.NASL", "CENTOS_RHSA-2011-0004.NASL", "CENTOS_RHSA-2011-0162.NASL", "CENTOS_RHSA-2011-0303.NASL", "CENTOS_RHSA-2011-0429.NASL", "CENTOS_RHSA-2011-0833.NASL", "CENTOS_RHSA-2011-0927.NASL", "CENTOS_RHSA-2011-1065.NASL", "CENTOS_RHSA-2011-1212.NASL", "CENTOS_RHSA-2011-1241.NASL", "CENTOS_RHSA-2011-1386.NASL", "CENTOS_RHSA-2011-1479.NASL", "CENTOS_RHSA-2011-1849.NASL", "CENTOS_RHSA-2012-0007.NASL", "CENTOS_RHSA-2012-0050.NASL", "CENTOS_RHSA-2012-0107.NASL", "CENTOS_RHSA-2012-0350.NASL", "CENTOS_RHSA-2012-0480.NASL", "CENTOS_RHSA-2012-0571.NASL", "CENTOS_RHSA-2012-0690.NASL", "CENTOS_RHSA-2012-0743.NASL", "CENTOS_RHSA-2012-0862.NASL", "CENTOS_RHSA-2012-1061.NASL", "CENTOS_RHSA-2012-1156.NASL", "CENTOS_RHSA-2012-1445.NASL", "CENTOS_RHSA-2012-1580.NASL", "DEBIAN_DSA-1749.NASL", "DEBIAN_DSA-1787.NASL", "DEBIAN_DSA-1844.NASL", "DEBIAN_DSA-1845.NASL", "DEBIAN_DSA-1862.NASL", "DEBIAN_DSA-1864.NASL", "DEBIAN_DSA-1865.NASL", "DEBIAN_DSA-1872.NASL", "DEBIAN_DSA-1915.NASL", "DEBIAN_DSA-1927.NASL", "DEBIAN_DSA-1928.NASL", "DEBIAN_DSA-1929.NASL", "DEBIAN_DSA-1996.NASL", "DEBIAN_DSA-2003.NASL", "DEBIAN_DSA-2005.NASL", "DEBIAN_DSA-2012.NASL", "DEBIAN_DSA-2053.NASL", "DEBIAN_DSA-2094.NASL", "DEBIAN_DSA-2110.NASL", "DEBIAN_DSA-2126.NASL", "DEBIAN_DSA-2153.NASL", "DEBIAN_DSA-2240.NASL", "DEBIAN_DSA-2264.NASL", "DEBIAN_DSA-2303.NASL", "DEBIAN_DSA-2310.NASL", "DEBIAN_DSA-2389.NASL", "DEBIAN_DSA-2443.NASL", "DEBIAN_DSA-2469.NASL", "F5_BIGIP_SOL16471.NASL", "F5_BIGIP_SOL16473.NASL", "F5_BIGIP_SOL16479.NASL", "FEDORA_2009-10165.NASL", "FEDORA_2009-10525.NASL", "FEDORA_2009-10639.NASL", "FEDORA_2009-11032.NASL", "FEDORA_2009-11038.NASL", "FEDORA_2009-13098.NASL", "FEDORA_2009-6768.NASL", "FEDORA_2009-6846.NASL", "FEDORA_2009-6883.NASL", "FEDORA_2009-8144.NASL", "FEDORA_2009-8264.NASL", "FEDORA_2009-8647.NASL", "FEDORA_2009-8649.NASL", "FEDORA_2009-9044.NASL", "FEDORA_2010-0919.NASL", "FEDORA_2010-13058.NASL", "FEDORA_2010-13110.NASL", "FEDORA_2010-14832.NASL", "FEDORA_2010-14878.NASL", "FEDORA_2010-14890.NASL", "FEDORA_2010-1500.NASL", "FEDORA_2010-16826.NASL", "FEDORA_2010-1787.NASL", "FEDORA_2010-1804.NASL", "FEDORA_2010-18432.NASL", "FEDORA_2010-18493.NASL", "FEDORA_2010-18506.NASL", "FEDORA_2010-18983.NASL", "FEDORA_2010-9183.NASL", "FEDORA_2010-9209.NASL", "FEDORA_2011-10671.NASL", "FEDORA_2011-10718.NASL", "FEDORA_2011-10733.NASL", "FEDORA_2011-11103.NASL", "FEDORA_2011-1138.NASL", "FEDORA_2011-12823.NASL", "FEDORA_2011-12874.NASL", "FEDORA_2011-14747.NASL", "FEDORA_2011-15241.NASL", "FEDORA_2011-15856.NASL", "FEDORA_2011-16237.NASL", "FEDORA_2011-16346.NASL", "FEDORA_2011-16621.NASL", "FEDORA_2011-17372.NASL", "FEDORA_2011-17388.NASL", "FEDORA_2011-2134.NASL", "FEDORA_2011-6447.NASL", "FEDORA_2011-6541.NASL", "FEDORA_2011-7823.NASL", "FEDORA_2012-0861.NASL", "FEDORA_2012-0876.NASL", "FEDORA_2012-1497.NASL", "FEDORA_2012-1503.NASL", "MANDRIVA_MDVSA-2009-148.NASL", "MANDRIVA_MDVSA-2009-205.NASL", "MANDRIVA_MDVSA-2009-233.NASL", "MANDRIVA_MDVSA-2009-289.NASL", "MANDRIVA_MDVSA-2009-329.NASL", "MANDRIVA_MDVSA-2010-030.NASL", "MANDRIVA_MDVSA-2010-034.NASL", "MANDRIVA_MDVSA-2010-066.NASL", "MANDRIVA_MDVSA-2010-088.NASL", "MANDRIVA_MDVSA-2010-172.NASL", "MANDRIVA_MDVSA-2010-188.NASL", "MANDRIVA_MDVSA-2010-198.NASL", "MANDRIVA_MDVSA-2010-257.NASL", "NEWSTART_CGSL_NS-SA-2019-0118_HTTPD.NASL", "NEWSTART_CGSL_NS-SA-2019-0264_KERNEL.NASL", "NEWSTART_CGSL_NS-SA-2019-0266_KERNEL-RT.NASL", "OPENSUSE-2012-235.NASL", "OPENSUSE-2012-342.NASL", "OPENSUSE-2012-357.NASL", "OPENSUSE-2012-65.NASL", "OPENSUSE-2012-756.NASL", "ORACLELINUX_ELSA-2009-1193.NASL", "ORACLELINUX_ELSA-2009-1211.NASL", "ORACLELINUX_ELSA-2009-1222.NASL", "ORACLELINUX_ELSA-2009-1223.NASL", "ORACLELINUX_ELSA-2009-1233.NASL", "ORACLELINUX_ELSA-2009-1243.NASL", "ORACLELINUX_ELSA-2009-1438.NASL", "ORACLELINUX_ELSA-2009-1522.NASL", "ORACLELINUX_ELSA-2009-1541.NASL", "ORACLELINUX_ELSA-2009-1548.NASL", "ORACLELINUX_ELSA-2009-1550.NASL", "ORACLELINUX_ELSA-2009-1670.NASL", "ORACLELINUX_ELSA-2009-1671.NASL", "ORACLELINUX_ELSA-2010-0019.NASL", "ORACLELINUX_ELSA-2010-0020.NASL", "ORACLELINUX_ELSA-2010-0046.NASL", "ORACLELINUX_ELSA-2010-0076.NASL", "ORACLELINUX_ELSA-2010-0146.NASL", "ORACLELINUX_ELSA-2010-0147.NASL", "ORACLELINUX_ELSA-2010-0178.NASL", "ORACLELINUX_ELSA-2010-0291.NASL", "ORACLELINUX_ELSA-2010-0394.NASL", "ORACLELINUX_ELSA-2010-0398.NASL", "ORACLELINUX_ELSA-2010-0474.NASL", "ORACLELINUX_ELSA-2010-0504.NASL", "ORACLELINUX_ELSA-2010-0606.NASL", "ORACLELINUX_ELSA-2010-0610.NASL", "ORACLELINUX_ELSA-2010-0661.NASL", "ORACLELINUX_ELSA-2010-0676.NASL", "ORACLELINUX_ELSA-2010-0723.NASL", "ORACLELINUX_ELSA-2010-0779.NASL", "ORACLELINUX_ELSA-2010-0839.NASL", "ORACLELINUX_ELSA-2010-0936.NASL", "ORACLELINUX_ELSA-2010-2008.NASL", "ORACLELINUX_ELSA-2010-2009.NASL", "ORACLELINUX_ELSA-2010-2011.NASL", "ORACLELINUX_ELSA-2011-0004.NASL", "ORACLELINUX_ELSA-2011-0007.NASL", "ORACLELINUX_ELSA-2011-0017.NASL", "ORACLELINUX_ELSA-2011-0162.NASL", "ORACLELINUX_ELSA-2011-0263.NASL", "ORACLELINUX_ELSA-2011-0283.NASL", "ORACLELINUX_ELSA-2011-0303.NASL", "ORACLELINUX_ELSA-2011-0421.NASL", "ORACLELINUX_ELSA-2011-0429.NASL", "ORACLELINUX_ELSA-2011-0498.NASL", "ORACLELINUX_ELSA-2011-0542.NASL", "ORACLELINUX_ELSA-2011-0833.NASL", "ORACLELINUX_ELSA-2011-0836.NASL", "ORACLELINUX_ELSA-2011-0927.NASL", "ORACLELINUX_ELSA-2011-1065.NASL", "ORACLELINUX_ELSA-2011-1189.NASL", "ORACLELINUX_ELSA-2011-1212.NASL", "ORACLELINUX_ELSA-2011-1241.NASL", "ORACLELINUX_ELSA-2011-1350.NASL", "ORACLELINUX_ELSA-2011-1386.NASL", "ORACLELINUX_ELSA-2011-1465.NASL", "ORACLELINUX_ELSA-2011-1479.NASL", "ORACLELINUX_ELSA-2011-1530.NASL", "ORACLELINUX_ELSA-2011-1849.NASL", "ORACLELINUX_ELSA-2011-2010.NASL", "ORACLELINUX_ELSA-2011-2014.NASL", "ORACLELINUX_ELSA-2011-2015.NASL", "ORACLELINUX_ELSA-2011-2016.NASL", "ORACLELINUX_ELSA-2011-2024.NASL", "ORACLELINUX_ELSA-2011-2025.NASL", "ORACLELINUX_ELSA-2011-2029.NASL", "ORACLELINUX_ELSA-2011-2033.NASL", "ORACLELINUX_ELSA-2011-2037.NASL", "ORACLELINUX_ELSA-2011-2038.NASL", "ORACLELINUX_ELSA-2012-0007.NASL", "ORACLELINUX_ELSA-2012-0050.NASL", "ORACLELINUX_ELSA-2012-0107.NASL", "ORACLELINUX_ELSA-2012-0150.NASL", "ORACLELINUX_ELSA-2012-01501.NASL", "ORACLELINUX_ELSA-2012-0350.NASL", "ORACLELINUX_ELSA-2012-0480-1.NASL", "ORACLELINUX_ELSA-2012-0480.NASL", "ORACLELINUX_ELSA-2012-04801.NASL", "ORACLELINUX_ELSA-2012-0571.NASL", "ORACLELINUX_ELSA-2012-0690-1.NASL", "ORACLELINUX_ELSA-2012-0690.NASL", "ORACLELINUX_ELSA-2012-06901.NASL", "ORACLELINUX_ELSA-2012-0743.NASL", "ORACLELINUX_ELSA-2012-0862.NASL", "ORACLELINUX_ELSA-2012-1061-1.NASL", "ORACLELINUX_ELSA-2012-1061.NASL", "ORACLELINUX_ELSA-2012-10611.NASL", "ORACLELINUX_ELSA-2012-1156.NASL", "ORACLELINUX_ELSA-2012-13231.NASL", "ORACLELINUX_ELSA-2012-1445-1.NASL", "ORACLELINUX_ELSA-2012-1445.NASL", "ORACLELINUX_ELSA-2012-14451.NASL", "ORACLELINUX_ELSA-2012-1580.NASL", "ORACLELINUX_ELSA-2012-2003.NASL", "ORACLELINUX_ELSA-2012-2013.NASL", "ORACLELINUX_ELSA-2012-2014.NASL", "ORACLELINUX_ELSA-2012-2020.NASL", "ORACLELINUX_ELSA-2012-2021.NASL", "ORACLELINUX_ELSA-2012-2022.NASL", "ORACLELINUX_ELSA-2012-2025.NASL", "ORACLELINUX_ELSA-2012-2026.NASL", "ORACLELINUX_ELSA-2012-2048.NASL", "ORACLELINUX_ELSA-2019-4685.NASL", "ORACLEVM_OVMSA-2009-0017.NASL", "ORACLEVM_OVMSA-2009-0023.NASL", "ORACLEVM_OVMSA-2009-0033.NASL", "ORACLEVM_OVMSA-2012-0042.NASL", "ORACLEVM_OVMSA-2019-0024.NASL", "REDHAT-RHSA-2009-1193.NASL", "REDHAT-RHSA-2009-1211.NASL", "REDHAT-RHSA-2009-1222.NASL", "REDHAT-RHSA-2009-1223.NASL", "REDHAT-RHSA-2009-1233.NASL", "REDHAT-RHSA-2009-1243.NASL", "REDHAT-RHSA-2009-1438.NASL", "REDHAT-RHSA-2009-1457.NASL", "REDHAT-RHSA-2009-1466.NASL", "REDHAT-RHSA-2009-1469.NASL", "REDHAT-RHSA-2009-1522.NASL", "REDHAT-RHSA-2009-1541.NASL", "REDHAT-RHSA-2009-1548.NASL", "REDHAT-RHSA-2009-1550.NASL", "REDHAT-RHSA-2009-1587.NASL", "REDHAT-RHSA-2009-1588.NASL", "REDHAT-RHSA-2009-1670.NASL", "REDHAT-RHSA-2009-1671.NASL", "REDHAT-RHSA-2009-1672.NASL", "REDHAT-RHSA-2010-0019.NASL", "REDHAT-RHSA-2010-0020.NASL", "REDHAT-RHSA-2010-0046.NASL", "REDHAT-RHSA-2010-0053.NASL", "REDHAT-RHSA-2010-0076.NASL", "REDHAT-RHSA-2010-0079.NASL", "REDHAT-RHSA-2010-0111.NASL", "REDHAT-RHSA-2010-0146.NASL", "REDHAT-RHSA-2010-0147.NASL", "REDHAT-RHSA-2010-0148.NASL", "REDHAT-RHSA-2010-0149.NASL", "REDHAT-RHSA-2010-0178.NASL", "REDHAT-RHSA-2010-0291.NASL", "REDHAT-RHSA-2010-0342.NASL", "REDHAT-RHSA-2010-0380.NASL", "REDHAT-RHSA-2010-0394.NASL", "REDHAT-RHSA-2010-0398.NASL", "REDHAT-RHSA-2010-0424.NASL", "REDHAT-RHSA-2010-0439.NASL", "REDHAT-RHSA-2010-0474.NASL", "REDHAT-RHSA-2010-0476.NASL", "REDHAT-RHSA-2010-0504.NASL", "REDHAT-RHSA-2010-0521.NASL", "REDHAT-RHSA-2010-0606.NASL", "REDHAT-RHSA-2010-0610.NASL", "REDHAT-RHSA-2010-0622.NASL", "REDHAT-RHSA-2010-0660.NASL", "REDHAT-RHSA-2010-0661.NASL", "REDHAT-RHSA-2010-0670.NASL", "REDHAT-RHSA-2010-0676.NASL", "REDHAT-RHSA-2010-0677.NASL", "REDHAT-RHSA-2010-0723.NASL", "REDHAT-RHSA-2010-0779.NASL", "REDHAT-RHSA-2010-0839.NASL", "REDHAT-RHSA-2010-0842.NASL", "REDHAT-RHSA-2010-0893.NASL", "REDHAT-RHSA-2010-0907.NASL", "REDHAT-RHSA-2010-0936.NASL", "REDHAT-RHSA-2011-0004.NASL", "REDHAT-RHSA-2011-0007.NASL", "REDHAT-RHSA-2011-0017.NASL", "REDHAT-RHSA-2011-0162.NASL", "REDHAT-RHSA-2011-0263.NASL", "REDHAT-RHSA-2011-0303.NASL", "REDHAT-RHSA-2011-0421.NASL", "REDHAT-RHSA-2011-0429.NASL", "REDHAT-RHSA-2011-0439.NASL", "REDHAT-RHSA-2011-0498.NASL", "REDHAT-RHSA-2011-0542.NASL", "REDHAT-RHSA-2011-0833.NASL", "REDHAT-RHSA-2011-0836.NASL", "REDHAT-RHSA-2011-0883.NASL", "REDHAT-RHSA-2011-0927.NASL", "REDHAT-RHSA-2011-1065.NASL", "REDHAT-RHSA-2011-1090.NASL", "REDHAT-RHSA-2011-1163.NASL", "REDHAT-RHSA-2011-1189.NASL", "REDHAT-RHSA-2011-1212.NASL", "REDHAT-RHSA-2011-1241.NASL", "REDHAT-RHSA-2011-1253.NASL", "REDHAT-RHSA-2011-1321.NASL", "REDHAT-RHSA-2011-1350.NASL", "REDHAT-RHSA-2011-1386.NASL", "REDHAT-RHSA-2011-1408.NASL", "REDHAT-RHSA-2011-1465.NASL", "REDHAT-RHSA-2011-1479.NASL", "REDHAT-RHSA-2011-1530.NASL", "REDHAT-RHSA-2011-1813.NASL", "REDHAT-RHSA-2011-1849.NASL", "REDHAT-RHSA-2011-1850.NASL", "REDHAT-RHSA-2012-0007.NASL", "REDHAT-RHSA-2012-0010.NASL", "REDHAT-RHSA-2012-0050.NASL", "REDHAT-RHSA-2012-0107.NASL", "REDHAT-RHSA-2012-0116.NASL", "REDHAT-RHSA-2012-0150.NASL", "REDHAT-RHSA-2012-0168.NASL", "REDHAT-RHSA-2012-0333.NASL", "REDHAT-RHSA-2012-0350.NASL", "REDHAT-RHSA-2012-0358.NASL", "REDHAT-RHSA-2012-0422.NASL", "REDHAT-RHSA-2012-0480.NASL", "REDHAT-RHSA-2012-0488.NASL", "REDHAT-RHSA-2012-0517.NASL", "REDHAT-RHSA-2012-0571.NASL", "REDHAT-RHSA-2012-0670.NASL", "REDHAT-RHSA-2012-0690.NASL", "REDHAT-RHSA-2012-0720.NASL", "REDHAT-RHSA-2012-0743.NASL", "REDHAT-RHSA-2012-0862.NASL", "REDHAT-RHSA-2012-1061.NASL", "REDHAT-RHSA-2012-1087.NASL", "REDHAT-RHSA-2012-1129.NASL", "REDHAT-RHSA-2012-1156.NASL", "REDHAT-RHSA-2012-1200.NASL", "REDHAT-RHSA-2012-1445.NASL", "REDHAT-RHSA-2012-1580.NASL", "SLACKWARE_SSA_2009-230-01.NASL", "SLACKWARE_SSA_2010-240-06.NASL", "SL_20090808_KERNEL_FOR_SL_5_X.NASL", "SL_20090813_KERNEL_ON_SL4_X.NASL", "SL_20090824_KERNEL_ON_SL5_X.NASL", "SL_20090827_KERNEL_ON_SL3_X.NASL", "SL_20091103_KERNEL_ON_SL3_X.NASL", "SL_20091103_KERNEL_ON_SL4_X.NASL", "SL_20091103_KERNEL_ON_SL5_X.NASL", "SL_20091215_KERNEL_ON_SL4_X.NASL", "SL_20091215_KERNEL_ON_SL5_X.NASL", "SL_20100107_KERNEL_ON_SL4_X.NASL", "SL_20100107_KERNEL_ON_SL5_X.NASL", "SL_20100202_KERNEL_ON_SL4_X.NASL", "SL_20100316_KERNEL_ON_SL4_X.NASL", "SL_20100316_KERNEL_ON_SL5_X.NASL", "SL_20100330_GFS_KMOD_ON_SL_5_0.NASL", "SL_20100330_GFS_ON_SL3_X.NASL", "SL_20100505_KERNEL_ON_SL4_X.NASL", "SL_20100506_KERNEL_ON_SL_5_0.NASL", "SL_20100615_KERNEL_ON_SL4_X.NASL", "SL_20100701_KERNEL_ON_SL5_X.NASL", "SL_20100805_KERNEL_ON_SL4_X.NASL", "SL_20100810_KERNEL_ON_SL5_X.NASL", "SL_20100907_KERNEL_ON_SL4_X.NASL", "SL_20101019_KERNEL_ON_SL4_X.NASL", "SL_20101109_KERNEL_ON_SL5_X.NASL", "SL_20101110_KERNEL_ON_SL6_X.NASL", "SL_20101201_KERNEL_ON_SL4_X.NASL", "SL_20110104_KERNEL_ON_SL5_X.NASL", "SL_20110118_KERNEL_ON_SL4_X.NASL", "SL_20110216_KERNEL_ON_SL4_X.NASL", "SL_20110301_KERNEL_ON_SL5_X.NASL", "SL_20110407_KERNEL_ON_SL6_X.NASL", "SL_20110412_KERNEL_ON_SL5_X.NASL", "SL_20110510_KERNEL_ON_SL6_X.NASL", "SL_20110519_KERNEL_ON_SL6_X.NASL", "SL_20110531_KERNEL_ON_SL5_X.NASL", "SL_20110715_KERNEL_ON_SL5_X.NASL", "SL_20110823_KERNEL_ON_SL6_X.NASL", "SL_20110831_ECRYPTFS_UTILS_ON_SL5_X.NASL", "SL_20110906_KERNEL_ON_SL5_X.NASL", "SL_20111005_KERNEL_ON_SL6_X.NASL", "SL_20111020_KERNEL_ON_SL5_X.NASL", "SL_20111122_KERNEL_ON_SL6_X.NASL", "SL_20111129_KERNEL_ON_SL5_X.NASL", "SL_20111206_SCIENTIFIC_LINUX_6_KERNEL_ON_SL6_X.NASL", "SL_20111222_KERNEL_ON_SL6_X.NASL", "SL_20120110_KERNEL_ON_SL5_X.NASL", "SL_20120209_KERNEL_ON_SL5_X.NASL", "SL_20120306_KERNEL_ON_SL6_X.NASL", "SL_20120417_KERNEL_ON_SL5_X.NASL", "SL_20120515_KERNEL_ON_SL6_X.NASL", "SL_20120529_KERNEL_ON_SL5_X.NASL", "SL_20120618_KERNEL_ON_SL6_X.NASL", "SL_20120710_KERNEL_ON_SL5_X.NASL", "SL_20120814_KERNEL_ON_SL6_X.NASL", "SL_20121113_KERNEL_ON_SL5_X.NASL", "SL_20121218_KERNEL_ON_SL6_X.NASL", "SUSE9_12541.NASL", "SUSE9_12578.NASL", "SUSE9_12636.NASL", "SUSE9_12638.NASL", "SUSE9_12646.NASL", "SUSE9_12672.NASL", "SUSE9_12677.NASL", "SUSE_11_0_KERNEL-090814.NASL", "SUSE_11_0_KERNEL-100203.NASL", "SUSE_11_0_KERNEL-100301.NASL", "SUSE_11_1_KERNEL-090709.NASL", "SUSE_11_1_KERNEL-090816.NASL", "SUSE_11_1_KERNEL-091123.NASL", "SUSE_11_1_KERNEL-100107.NASL", "SUSE_11_1_KERNEL-100223.NASL", "SUSE_11_1_KERNEL-100709.NASL", "SUSE_11_1_KERNEL-101020.NASL", "SUSE_11_1_KERNEL-101202.NASL", "SUSE_11_2_KERNEL-091218.NASL", "SUSE_11_2_KERNEL-100128.NASL", "SUSE_11_2_KERNEL-100317.NASL", "SUSE_11_2_KERNEL-100921.NASL", "SUSE_11_2_KERNEL-101026.NASL", "SUSE_11_2_KERNEL-110413.NASL", "SUSE_11_2_KERNEL-DEBUG-101215.NASL", "SUSE_11_3_ECRYPTFS-UTILS-110811.NASL", "SUSE_11_3_KERNEL-100824.NASL", "SUSE_11_3_KERNEL-100915.NASL", "SUSE_11_3_KERNEL-100921.NASL", "SUSE_11_3_KERNEL-101026.NASL", "SUSE_11_3_KERNEL-101215.NASL", "SUSE_11_3_KERNEL-110414.NASL", "SUSE_11_3_KERNEL-110726.NASL", "SUSE_11_3_KERNEL-111026.NASL", "SUSE_11_3_KERNEL-120104.NASL", "SUSE_11_3_XORG-X11-XVNC-100819.NASL", "SUSE_11_4_ECRYPTFS-UTILS-110811.NASL", "SUSE_11_4_KERNEL-110426.NASL", "SUSE_11_4_KERNEL-110726.NASL", "SUSE_11_4_KERNEL-111026.NASL", "SUSE_11_4_KERNEL-120104.NASL", "SUSE_11_ECRYPTFS-UTILS-110804.NASL", "SUSE_11_KERNEL-090704.NASL", "SUSE_11_KERNEL-090708.NASL", "SUSE_11_KERNEL-090709.NASL", "SUSE_11_KERNEL-090816.NASL", "SUSE_11_KERNEL-091123.NASL", "SUSE_11_KERNEL-100108.NASL", "SUSE_11_KERNEL-100109.NASL", "SUSE_11_KERNEL-100223.NASL", "SUSE_11_KERNEL-100618.NASL", "SUSE_11_KERNEL-100709.NASL", "SUSE_11_KERNEL-100721.NASL", "SUSE_11_KERNEL-100903.NASL", "SUSE_11_KERNEL-101007.NASL", "SUSE_11_KERNEL-101020.NASL", "SUSE_11_KERNEL-101102.NASL", "SUSE_11_KERNEL-110104.NASL", "SUSE_11_KERNEL-110228.NASL", "SUSE_11_KERNEL-110414.NASL", "SUSE_11_KERNEL-110415.NASL", "SUSE_11_KERNEL-110718.NASL", "SUSE_11_KERNEL-110823.NASL", "SUSE_11_KERNEL-110824.NASL", "SUSE_11_KERNEL-110930.NASL", "SUSE_11_KERNEL-111202.NASL", "SUSE_11_KERNEL-120129.NASL", "SUSE_11_KERNEL-120130.NASL", "SUSE_11_KERNEL-120418.NASL", "SUSE_11_KERNEL-120428.NASL", "SUSE_11_KERNEL-120620.NASL", "SUSE_11_KERNEL-120621.NASL", "SUSE_11_KERNEL-120714.NASL", "SUSE_11_KERNEL-EC2-101103.NASL", "SUSE_11_XORG-X11-SERVER-DMX-120410.NASL", "SUSE_11_XORG-X11-SERVER-RDP-120410.NASL", "SUSE_11_XORG-X11-XVNC-100819.NASL", "SUSE_KERNEL-6437.NASL", "SUSE_KERNEL-6439.NASL", "SUSE_KERNEL-6440.NASL", "SUSE_KERNEL-6632.NASL", "SUSE_KERNEL-6636.NASL", "SUSE_KERNEL-6694.NASL", "SUSE_KERNEL-6697.NASL", "SUSE_KERNEL-6726.NASL", "SUSE_KERNEL-6730.NASL", "SUSE_KERNEL-6778.NASL", "SUSE_KERNEL-6779.NASL", "SUSE_KERNEL-6806.NASL", "SUSE_KERNEL-6810.NASL", "SUSE_KERNEL-6925.NASL", "SUSE_KERNEL-6929.NASL", "SUSE_KERNEL-6986.NASL", "SUSE_KERNEL-7011.NASL", "SUSE_KERNEL-7015.NASL", "SUSE_KERNEL-7059.NASL", "SUSE_KERNEL-7063.NASL", "SUSE_KERNEL-7112.NASL", "SUSE_KERNEL-7116.NASL", "SUSE_KERNEL-7133.NASL", "SUSE_KERNEL-7137.NASL", "SUSE_KERNEL-7160.NASL", "SUSE_KERNEL-7164.NASL", "SUSE_KERNEL-7257.NASL", "SUSE_KERNEL-7261.NASL", "SUSE_KERNEL-7303.NASL", "SUSE_KERNEL-7304.NASL", "SUSE_KERNEL-7381.NASL", "SUSE_KERNEL-7384.NASL", "SUSE_KERNEL-7515.NASL", "SUSE_KERNEL-7516.NASL", "SUSE_KERNEL-7568.NASL", "SUSE_KERNEL-7665.NASL", "SUSE_KERNEL-7666.NASL", "SUSE_KERNEL-7729.NASL", "SUSE_KERNEL-7734.NASL", "SUSE_KERNEL-7811.NASL", "SUSE_KERNEL-7812.NASL", "SUSE_KERNEL-7915.NASL", "SUSE_KERNEL-7918.NASL", "SUSE_KERNEL-8161.NASL", "SUSE_KERNEL-8162.NASL", "SUSE_KERNEL-8324.NASL", "SUSE_KERNEL-8325.NASL", "SUSE_SU-2012-1391-1.NASL", "SUSE_SU-2013-1832-1.NASL", "SUSE_SU-2014-0287-1.NASL", "SUSE_SU-2015-0812-1.NASL", "SUSE_XORG-X11-XVNC-7126.NASL", "UBUNTU_USN-1000-1.NASL", "UBUNTU_USN-1041-1.NASL", "UBUNTU_USN-1054-1.NASL", "UBUNTU_USN-1071-1.NASL", "UBUNTU_USN-1072-1.NASL", "UBUNTU_USN-1073-1.NASL", "UBUNTU_USN-1080-1.NASL", "UBUNTU_USN-1080-2.NASL", "UBUNTU_USN-1081-1.NASL", "UBUNTU_USN-1083-1.NASL", "UBUNTU_USN-1086-1.NASL", "UBUNTU_USN-1089-1.NASL", "UBUNTU_USN-1090-1.NASL", "UBUNTU_USN-1092-1.NASL", "UBUNTU_USN-1093-1.NASL", "UBUNTU_USN-1105-1.NASL", "UBUNTU_USN-1111-1.NASL", "UBUNTU_USN-1119-1.NASL", "UBUNTU_USN-1133-1.NASL", "UBUNTU_USN-1141-1.NASL", "UBUNTU_USN-1146-1.NASL", "UBUNTU_USN-1159-1.NASL", "UBUNTU_USN-1160-1.NASL", "UBUNTU_USN-1161-1.NASL", "UBUNTU_USN-1162-1.NASL", "UBUNTU_USN-1164-1.NASL", "UBUNTU_USN-1167-1.NASL", "UBUNTU_USN-1168-1.NASL", "UBUNTU_USN-1170-1.NASL", "UBUNTU_USN-1183-1.NASL", "UBUNTU_USN-1186-1.NASL", "UBUNTU_USN-1187-1.NASL", "UBUNTU_USN-1188-1.NASL", "UBUNTU_USN-1189-1.NASL", "UBUNTU_USN-1193-1.NASL", "UBUNTU_USN-1201-1.NASL", "UBUNTU_USN-1202-1.NASL", "UBUNTU_USN-1203-1.NASL", "UBUNTU_USN-1204-1.NASL", "UBUNTU_USN-1205-1.NASL", "UBUNTU_USN-1208-1.NASL", "UBUNTU_USN-1211-1.NASL", "UBUNTU_USN-1212-1.NASL", "UBUNTU_USN-1216-1.NASL", "UBUNTU_USN-1218-1.NASL", "UBUNTU_USN-1219-1.NASL", "UBUNTU_USN-1220-1.NASL", "UBUNTU_USN-1225-1.NASL", "UBUNTU_USN-1227-1.NASL", "UBUNTU_USN-1228-1.NASL", "UBUNTU_USN-1236-1.NASL", "UBUNTU_USN-1239-1.NASL", "UBUNTU_USN-1240-1.NASL", "UBUNTU_USN-1241-1.NASL", "UBUNTU_USN-1244-1.NASL", "UBUNTU_USN-1245-1.NASL", "UBUNTU_USN-1246-1.NASL", "UBUNTU_USN-1253-1.NASL", "UBUNTU_USN-1256-1.NASL", "UBUNTU_USN-1268-1.NASL", "UBUNTU_USN-1269-1.NASL", "UBUNTU_USN-1271-1.NASL", "UBUNTU_USN-1272-1.NASL", "UBUNTU_USN-1274-1.NASL", "UBUNTU_USN-1275-1.NASL", "UBUNTU_USN-1278-1.NASL", "UBUNTU_USN-1279-1.NASL", "UBUNTU_USN-1280-1.NASL", "UBUNTU_USN-1281-1.NASL", "UBUNTU_USN-1285-1.NASL", "UBUNTU_USN-1286-1.NASL", "UBUNTU_USN-1291-1.NASL", "UBUNTU_USN-1292-1.NASL", "UBUNTU_USN-1293-1.NASL", "UBUNTU_USN-1294-1.NASL", "UBUNTU_USN-1299-1.NASL", "UBUNTU_USN-1300-1.NASL", "UBUNTU_USN-1301-1.NASL", "UBUNTU_USN-1302-1.NASL", "UBUNTU_USN-1303-1.NASL", "UBUNTU_USN-1304-1.NASL", "UBUNTU_USN-1311-1.NASL", "UBUNTU_USN-1312-1.NASL", "UBUNTU_USN-1318-1.NASL", "UBUNTU_USN-1319-1.NASL", "UBUNTU_USN-1322-1.NASL", "UBUNTU_USN-1323-1.NASL", "UBUNTU_USN-1324-1.NASL", "UBUNTU_USN-1325-1.NASL", "UBUNTU_USN-1328-1.NASL", "UBUNTU_USN-1330-1.NASL", "UBUNTU_USN-1332-1.NASL", "UBUNTU_USN-1336-1.NASL", "UBUNTU_USN-1337-1.NASL", "UBUNTU_USN-1340-1.NASL", "UBUNTU_USN-1341-1.NASL", "UBUNTU_USN-1344-1.NASL", "UBUNTU_USN-1345-1.NASL", "UBUNTU_USN-1384-1.NASL", "UBUNTU_USN-1388-1.NASL", "UBUNTU_USN-1389-1.NASL", "UBUNTU_USN-1390-1.NASL", "UBUNTU_USN-1405-1.NASL", "UBUNTU_USN-1431-1.NASL", "UBUNTU_USN-1432-1.NASL", "UBUNTU_USN-1433-1.NASL", "UBUNTU_USN-1440-1.NASL", "UBUNTU_USN-1445-1.NASL", "UBUNTU_USN-1453-1.NASL", "UBUNTU_USN-1454-1.NASL", "UBUNTU_USN-1458-1.NASL", "UBUNTU_USN-1514-1.NASL", "UBUNTU_USN-1529-1.NASL", "UBUNTU_USN-1530-1.NASL", "UBUNTU_USN-1531-1.NASL", "UBUNTU_USN-1532-1.NASL", "UBUNTU_USN-1533-1.NASL", "UBUNTU_USN-1534-1.NASL", "UBUNTU_USN-1535-1.NASL", "UBUNTU_USN-1538-1.NASL", "UBUNTU_USN-1539-1.NASL", "UBUNTU_USN-1598-1.NASL", "UBUNTU_USN-558-1.NASL", "UBUNTU_USN-574-1.NASL", "UBUNTU_USN-751-1.NASL", "UBUNTU_USN-807-1.NASL", "UBUNTU_USN-819-1.NASL", "UBUNTU_USN-852-1.NASL", "UBUNTU_USN-864-1.NASL", "UBUNTU_USN-894-1.NASL", "UBUNTU_USN-914-1.NASL", "UBUNTU_USN-947-1.NASL", "UBUNTU_USN-947-2.NASL", "UBUNTU_USN-966-1.NASL", "UBUNTU_USN-974-1.NASL", "UBUNTU_USN-974-2.NASL", "VMWARE_ESXI_5_0_BUILD_515841_REMOTE.NASL", "VMWARE_VMSA-2009-0016.NASL", "VMWARE_VMSA-2009-0016_REMOTE.NASL", "VMWARE_VMSA-2010-0004.NASL", "VMWARE_VMSA-2010-0004_REMOTE.NASL", "VMWARE_VMSA-2010-0009.NASL", "VMWARE_VMSA-2010-0009_REMOTE.NASL", "VMWARE_VMSA-2010-0010.NASL", "VMWARE_VMSA-2010-0016.NASL", "VMWARE_VMSA-2011-0003.NASL", "VMWARE_VMSA-2011-0003_REMOTE.NASL", "VMWARE_VMSA-2011-0007.NASL", "VMWARE_VMSA-2011-0007_REMOTE.NASL", "VMWARE_VMSA-2011-0009.NASL", "VMWARE_VMSA-2011-0009_REMOTE.NASL", "VMWARE_VMSA-2011-0012.NASL", "VMWARE_VMSA-2011-0012_REMOTE.NASL", "VMWARE_VMSA-2012-0001.NASL", "VMWARE_VMSA-2012-0001_REMOTE.NASL", "VMWARE_VMSA-2012-0006.NASL", "VMWARE_VMSA-2012-0006_REMOTE.NASL", "VMWARE_VMSA-2012-0008.NASL", "VMWARE_VMSA-2012-0008_REMOTE.NASL", "VMWARE_VMSA-2012-0013.NASL", "VMWARE_VMSA-2012-0013_REMOTE.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:103448", "OPENVAS:103449", "OPENVAS:103450", "OPENVAS:103452", "OPENVAS:103454", "OPENVAS:103455", "OPENVAS:103458", "OPENVAS:103468", "OPENVAS:103558", "OPENVAS:1361412562310103448", "OPENVAS:1361412562310103449", "OPENVAS:1361412562310103450", "OPENVAS:1361412562310103452", "OPENVAS:1361412562310103454", "OPENVAS:1361412562310103455", "OPENVAS:1361412562310103458", "OPENVAS:1361412562310103468", "OPENVAS:1361412562310103558", "OPENVAS:1361412562310120128", "OPENVAS:1361412562310120219", "OPENVAS:1361412562310120252", "OPENVAS:1361412562310120263", "OPENVAS:1361412562310120275", "OPENVAS:1361412562310120395", "OPENVAS:1361412562310120399", "OPENVAS:1361412562310120412", "OPENVAS:1361412562310122014", "OPENVAS:1361412562310122018", "OPENVAS:1361412562310122019", "OPENVAS:1361412562310122029", "OPENVAS:1361412562310122034", "OPENVAS:1361412562310122050", "OPENVAS:1361412562310122051", "OPENVAS:1361412562310122052", "OPENVAS:1361412562310122066", "OPENVAS:1361412562310122075", "OPENVAS:1361412562310122078", "OPENVAS:1361412562310122091", "OPENVAS:1361412562310122102", "OPENVAS:1361412562310122103", "OPENVAS:1361412562310122106", "OPENVAS:1361412562310122122", "OPENVAS:1361412562310122132", "OPENVAS:1361412562310122151", "OPENVAS:1361412562310122155", "OPENVAS:1361412562310122162", "OPENVAS:1361412562310122175", "OPENVAS:1361412562310122177", "OPENVAS:1361412562310122179", "OPENVAS:1361412562310122192", "OPENVAS:1361412562310122193", "OPENVAS:1361412562310122198", "OPENVAS:1361412562310122217", "OPENVAS:1361412562310122233", "OPENVAS:1361412562310122244", "OPENVAS:1361412562310122281", "OPENVAS:1361412562310122285", "OPENVAS:1361412562310122291", "OPENVAS:1361412562310122298", "OPENVAS:1361412562310122306", "OPENVAS:1361412562310122313", "OPENVAS:1361412562310122315", "OPENVAS:1361412562310122324", "OPENVAS:1361412562310122332", "OPENVAS:1361412562310122349", "OPENVAS:1361412562310122359", "OPENVAS:1361412562310122369", "OPENVAS:1361412562310122375", "OPENVAS:1361412562310122384", "OPENVAS:1361412562310122396", "OPENVAS:1361412562310122403", "OPENVAS:1361412562310122408", "OPENVAS:1361412562310122422", "OPENVAS:1361412562310122448", "OPENVAS:1361412562310122454", "OPENVAS:1361412562310122460", "OPENVAS:1361412562310123845", "OPENVAS:1361412562310123862", "OPENVAS:1361412562310123866", "OPENVAS:1361412562310123875", "OPENVAS:1361412562310123879", "OPENVAS:1361412562310123898", "OPENVAS:1361412562310123899", "OPENVAS:1361412562310123900", "OPENVAS:1361412562310123913", "OPENVAS:1361412562310123914", "OPENVAS:1361412562310123920", "OPENVAS:1361412562310123921", "OPENVAS:1361412562310123922", "OPENVAS:1361412562310123935", "OPENVAS:1361412562310123937", "OPENVAS:1361412562310123956", "OPENVAS:1361412562310123959", "OPENVAS:1361412562310123968", "OPENVAS:1361412562310123971", "OPENVAS:1361412562310123993", "OPENVAS:136141256231063681", "OPENVAS:136141256231063939", "OPENVAS:136141256231064289", "OPENVAS:136141256231064291", "OPENVAS:136141256231064296", "OPENVAS:136141256231064376", "OPENVAS:136141256231064389", "OPENVAS:136141256231064483", "OPENVAS:136141256231064514", "OPENVAS:136141256231064551", "OPENVAS:136141256231064553", "OPENVAS:136141256231064555", "OPENVAS:136141256231064556", "OPENVAS:136141256231064588", "OPENVAS:136141256231064599", "OPENVAS:136141256231064668", "OPENVAS:136141256231064669", "OPENVAS:136141256231064671", "OPENVAS:136141256231064677", "OPENVAS:136141256231064703", "OPENVAS:136141256231064704", "OPENVAS:136141256231064707", "OPENVAS:136141256231064736", "OPENVAS:136141256231064745", "OPENVAS:136141256231064747", "OPENVAS:136141256231064748", "OPENVAS:136141256231064755", "OPENVAS:136141256231064761", "OPENVAS:136141256231064771", "OPENVAS:136141256231064791", "OPENVAS:136141256231064792", "OPENVAS:136141256231064794", "OPENVAS:136141256231064795", "OPENVAS:136141256231064796", "OPENVAS:136141256231064835", "OPENVAS:136141256231064906", "OPENVAS:136141256231064923", "OPENVAS:136141256231064929", "OPENVAS:136141256231064940", "OPENVAS:136141256231064943", "OPENVAS:136141256231064999", "OPENVAS:136141256231065354", "OPENVAS:136141256231065695", "OPENVAS:136141256231065709", "OPENVAS:136141256231065814", "OPENVAS:136141256231066048", "OPENVAS:136141256231066098", "OPENVAS:136141256231066124", "OPENVAS:136141256231066133", "OPENVAS:136141256231066174", "OPENVAS:136141256231066175", "OPENVAS:136141256231066176", "OPENVAS:136141256231066178", "OPENVAS:136141256231066200", "OPENVAS:136141256231066202", "OPENVAS:136141256231066207", "OPENVAS:136141256231066208", "OPENVAS:136141256231066209", "OPENVAS:136141256231066217", "OPENVAS:136141256231066218", "OPENVAS:136141256231066219", "OPENVAS:136141256231066276", "OPENVAS:136141256231066280", "OPENVAS:136141256231066289", "OPENVAS:136141256231066352", "OPENVAS:136141256231066356", "OPENVAS:136141256231066452", "OPENVAS:136141256231066460", "OPENVAS:136141256231066509", "OPENVAS:136141256231066534", "OPENVAS:136141256231066535", "OPENVAS:136141256231066581", "OPENVAS:136141256231066618", "OPENVAS:136141256231066622", "OPENVAS:136141256231066954", "OPENVAS:136141256231067036", "OPENVAS:136141256231067406", "OPENVAS:136141256231067981", "OPENVAS:136141256231068091", "OPENVAS:136141256231068171", "OPENVAS:136141256231068662", "OPENVAS:136141256231068992", "OPENVAS:136141256231069970", "OPENVAS:1361412562310830860", "OPENVAS:1361412562310830867", "OPENVAS:1361412562310830886", "OPENVAS:1361412562310830889", "OPENVAS:1361412562310830939", "OPENVAS:1361412562310830961", "OPENVAS:1361412562310831024", "OPENVAS:1361412562310831162", "OPENVAS:1361412562310831170", "OPENVAS:1361412562310831196", "OPENVAS:1361412562310831290", "OPENVAS:1361412562310831331", "OPENVAS:1361412562310840383", "OPENVAS:1361412562310840403", "OPENVAS:1361412562310840440", "OPENVAS:1361412562310840441", "OPENVAS:1361412562310840476", "OPENVAS:1361412562310840482", "OPENVAS:1361412562310840486", "OPENVAS:1361412562310840523", "OPENVAS:1361412562310840565", "OPENVAS:1361412562310840579", "OPENVAS:1361412562310840592", "OPENVAS:1361412562310840594", "OPENVAS:1361412562310840595", "OPENVAS:1361412562310840599", "OPENVAS:1361412562310840600", "OPENVAS:1361412562310840601", "OPENVAS:1361412562310840605", "OPENVAS:1361412562310840611", "OPENVAS:1361412562310840614", "OPENVAS:1361412562310840615", "OPENVAS:1361412562310840618", "OPENVAS:1361412562310840632", "OPENVAS:1361412562310840638", "OPENVAS:1361412562310840651", "OPENVAS:1361412562310840663", "OPENVAS:1361412562310840671", "OPENVAS:1361412562310840676", "OPENVAS:1361412562310840691", "OPENVAS:1361412562310840693", "OPENVAS:1361412562310840696", "OPENVAS:1361412562310840698", "OPENVAS:1361412562310840699", "OPENVAS:1361412562310840700", "OPENVAS:1361412562310840703", "OPENVAS:1361412562310840704", "OPENVAS:1361412562310840716", "OPENVAS:1361412562310840718", "OPENVAS:1361412562310840719", "OPENVAS:1361412562310840720", "OPENVAS:1361412562310840725", "OPENVAS:1361412562310840726", "OPENVAS:1361412562310840739", "OPENVAS:1361412562310840740", "OPENVAS:1361412562310840743", "OPENVAS:1361412562310840744", "OPENVAS:1361412562310840745", "OPENVAS:1361412562310840746", "OPENVAS:1361412562310840748", "OPENVAS:1361412562310840749", "OPENVAS:1361412562310840758", "OPENVAS:1361412562310840760", "OPENVAS:1361412562310840761", "OPENVAS:1361412562310840762", "OPENVAS:1361412562310840764", "OPENVAS:1361412562310840771", "OPENVAS:1361412562310840773", "OPENVAS:1361412562310840778", "OPENVAS:1361412562310840786", "OPENVAS:1361412562310840787", "OPENVAS:1361412562310840788", "OPENVAS:1361412562310840790", "OPENVAS:1361412562310840793", "OPENVAS:1361412562310840796", "OPENVAS:1361412562310840802", "OPENVAS:1361412562310840804", "OPENVAS:1361412562310840811", "OPENVAS:1361412562310840812", "OPENVAS:1361412562310840813", "OPENVAS:1361412562310840814", "OPENVAS:1361412562310840816", "OPENVAS:1361412562310840818", "OPENVAS:1361412562310840819", "OPENVAS:1361412562310840821", "OPENVAS:1361412562310840823", "OPENVAS:1361412562310840826", "OPENVAS:1361412562310840828", "OPENVAS:1361412562310840829", "OPENVAS:1361412562310840832", "OPENVAS:1361412562310840833", "OPENVAS:1361412562310840834", "OPENVAS:1361412562310840838", "OPENVAS:1361412562310840840", "OPENVAS:1361412562310840841", "OPENVAS:1361412562310840843", "OPENVAS:1361412562310840844", "OPENVAS:1361412562310840845", "OPENVAS:1361412562310840851", "OPENVAS:1361412562310840853", "OPENVAS:1361412562310840854", "OPENVAS:1361412562310840855", "OPENVAS:1361412562310840860", "OPENVAS:1361412562310840861", "OPENVAS:1361412562310840862", "OPENVAS:1361412562310840863", "OPENVAS:1361412562310840864", "OPENVAS:1361412562310840870", "OPENVAS:1361412562310840871", "OPENVAS:1361412562310840873", "OPENVAS:1361412562310840874", "OPENVAS:1361412562310840875", "OPENVAS:1361412562310840910", "OPENVAS:1361412562310840914", "OPENVAS:1361412562310840918", "OPENVAS:1361412562310840922", "OPENVAS:1361412562310840933", "OPENVAS:1361412562310840945", "OPENVAS:1361412562310840969", "OPENVAS:1361412562310840995", "OPENVAS:1361412562310840997", "OPENVAS:1361412562310841001", "OPENVAS:1361412562310841004", "OPENVAS:1361412562310841010", "OPENVAS:1361412562310841016", "OPENVAS:1361412562310841017", "OPENVAS:1361412562310841023", "OPENVAS:1361412562310841102", "OPENVAS:1361412562310841103", "OPENVAS:1361412562310841104", "OPENVAS:1361412562310841105", "OPENVAS:1361412562310841107", "OPENVAS:1361412562310841108", "OPENVAS:1361412562310841111", "OPENVAS:1361412562310841112", "OPENVAS:1361412562310841114", "OPENVAS:1361412562310841115", "OPENVAS:1361412562310841183", "OPENVAS:1361412562310850120", "OPENVAS:1361412562310850121", "OPENVAS:1361412562310850124", "OPENVAS:1361412562310850125", "OPENVAS:1361412562310850127", "OPENVAS:1361412562310850129", "OPENVAS:1361412562310850137", "OPENVAS:1361412562310850140", "OPENVAS:1361412562310850143", "OPENVAS:1361412562310850147", "OPENVAS:1361412562310850154", "OPENVAS:1361412562310850155", "OPENVAS:1361412562310850156", "OPENVAS:1361412562310850157", "OPENVAS:1361412562310850159", "OPENVAS:1361412562310850163", "OPENVAS:1361412562310850165", "OPENVAS:1361412562310850211", "OPENVAS:1361412562310850253", "OPENVAS:1361412562310861615", "OPENVAS:1361412562310861694", "OPENVAS:1361412562310861715", "OPENVAS:1361412562310861742", "OPENVAS:1361412562310861964", "OPENVAS:1361412562310862128", "OPENVAS:1361412562310862161", "OPENVAS:1361412562310862237", "OPENVAS:1361412562310862250", "OPENVAS:1361412562310862301", "OPENVAS:1361412562310862302", "OPENVAS:1361412562310862344", "OPENVAS:1361412562310862348", "OPENVAS:1361412562310862366", "OPENVAS:1361412562310862414", "OPENVAS:1361412562310862415", "OPENVAS:1361412562310862654", "OPENVAS:1361412562310862687", "OPENVAS:1361412562310862703", "OPENVAS:1361412562310862706", "OPENVAS:1361412562310862713", "OPENVAS:1361412562310862749", "OPENVAS:1361412562310862842", "OPENVAS:1361412562310862910", "OPENVAS:1361412562310863087", "OPENVAS:1361412562310863138", "OPENVAS:1361412562310863279", "OPENVAS:1361412562310863292", "OPENVAS:1361412562310863447", "OPENVAS:1361412562310863472", "OPENVAS:1361412562310863473", "OPENVAS:1361412562310863503", "OPENVAS:1361412562310863505", "OPENVAS:1361412562310863571", "OPENVAS:1361412562310863575", "OPENVAS:1361412562310863604", "OPENVAS:1361412562310863606", "OPENVAS:1361412562310863625", "OPENVAS:1361412562310863647", "OPENVAS:1361412562310863661", "OPENVAS:1361412562310863672", "OPENVAS:1361412562310863682", "OPENVAS:1361412562310863700", "OPENVAS:1361412562310863727", "OPENVAS:1361412562310863753", "OPENVAS:1361412562310863766", "OPENVAS:1361412562310863789", "OPENVAS:1361412562310863791", "OPENVAS:1361412562310863817", "OPENVAS:1361412562310863856", "OPENVAS:1361412562310863895", "OPENVAS:1361412562310863905", "OPENVAS:1361412562310863972", "OPENVAS:1361412562310864056", "OPENVAS:1361412562310864081", "OPENVAS:1361412562310864096", "OPENVAS:1361412562310864109", "OPENVAS:1361412562310864178", "OPENVAS:1361412562310864233", "OPENVAS:1361412562310864237", "OPENVAS:1361412562310864452", "OPENVAS:1361412562310864488", "OPENVAS:1361412562310864592", "OPENVAS:1361412562310864687", "OPENVAS:1361412562310864844", "OPENVAS:1361412562310864900", "OPENVAS:1361412562310864947", "OPENVAS:1361412562310870200", "OPENVAS:1361412562310870203", "OPENVAS:1361412562310870210", "OPENVAS:1361412562310870213", "OPENVAS:1361412562310870227", "OPENVAS:1361412562310870233", "OPENVAS:1361412562310870251", "OPENVAS:1361412562310870263", "OPENVAS:1361412562310870264", "OPENVAS:1361412562310870277", "OPENVAS:1361412562310870284", "OPENVAS:1361412562310870303", "OPENVAS:1361412562310870308", "OPENVAS:1361412562310870315", "OPENVAS:1361412562310870321", "OPENVAS:1361412562310870328", "OPENVAS:1361412562310870344", "OPENVAS:1361412562310870358", "OPENVAS:1361412562310870364", "OPENVAS:1361412562310870374", "OPENVAS:1361412562310870378", "OPENVAS:1361412562310870380", "OPENVAS:1361412562310870396", "OPENVAS:1361412562310870402", "OPENVAS:1361412562310870423", "OPENVAS:1361412562310870439", "OPENVAS:1361412562310870453", "OPENVAS:1361412562310870454", "OPENVAS:1361412562310870470", "OPENVAS:1361412562310870476", "OPENVAS:1361412562310870482", "OPENVAS:1361412562310870491", "OPENVAS:1361412562310870504", "OPENVAS:1361412562310870519", "OPENVAS:1361412562310870528", "OPENVAS:1361412562310870544", "OPENVAS:1361412562310870586", "OPENVAS:1361412562310870627", "OPENVAS:1361412562310870628", "OPENVAS:1361412562310870632", "OPENVAS:1361412562310870646", "OPENVAS:1361412562310870652", "OPENVAS:1361412562310870661", "OPENVAS:1361412562310870685", "OPENVAS:1361412562310870693", "OPENVAS:1361412562310870695", "OPENVAS:1361412562310870709", "OPENVAS:1361412562310870729", "OPENVAS:1361412562310870731", "OPENVAS:1361412562310870737", "OPENVAS:1361412562310870746", "OPENVAS:1361412562310870758", "OPENVAS:1361412562310870766", "OPENVAS:1361412562310870787", "OPENVAS:1361412562310870808", "OPENVAS:1361412562310870842", "OPENVAS:1361412562310870860", "OPENVAS:1361412562310870872", "OPENVAS:1361412562310880346", "OPENVAS:1361412562310880349", "OPENVAS:1361412562310880414", "OPENVAS:1361412562310880417", "OPENVAS:1361412562310880423", "OPENVAS:1361412562310880448", "OPENVAS:1361412562310880459", "OPENVAS:1361412562310880462", "OPENVAS:1361412562310880516", "OPENVAS:1361412562310880518", "OPENVAS:1361412562310880534", "OPENVAS:1361412562310880545", "OPENVAS:1361412562310880551", "OPENVAS:1361412562310880569", "OPENVAS:1361412562310880573", "OPENVAS:1361412562310880586", "OPENVAS:1361412562310880602", "OPENVAS:1361412562310880617", "OPENVAS:1361412562310880643", "OPENVAS:1361412562310880646", "OPENVAS:1361412562310880648", "OPENVAS:1361412562310880685", "OPENVAS:1361412562310880731", "OPENVAS:1361412562310880764", "OPENVAS:1361412562310880777", "OPENVAS:1361412562310880808", "OPENVAS:1361412562310880828", "OPENVAS:1361412562310880838", "OPENVAS:1361412562310880869", "OPENVAS:1361412562310880884", "OPENVAS:1361412562310880935", "OPENVAS:1361412562310880944", "OPENVAS:1361412562310880988", "OPENVAS:1361412562310880995", "OPENVAS:1361412562310880998", "OPENVAS:1361412562310881021", "OPENVAS:1361412562310881051", "OPENVAS:1361412562310881076", "OPENVAS:1361412562310881086", "OPENVAS:1361412562310881093", "OPENVAS:1361412562310881110", "OPENVAS:1361412562310881118", "OPENVAS:1361412562310881125", "OPENVAS:1361412562310881132", "OPENVAS:1361412562310881158", "OPENVAS:1361412562310881207", "OPENVAS:1361412562310881222", "OPENVAS:1361412562310881245", "OPENVAS:1361412562310881248", "OPENVAS:1361412562310881254", "OPENVAS:1361412562310881286", "OPENVAS:1361412562310881309", "OPENVAS:1361412562310881313", "OPENVAS:1361412562310881339", "OPENVAS:1361412562310881342", "OPENVAS:1361412562310881392", "OPENVAS:1361412562310881399", "OPENVAS:1361412562310881405", "OPENVAS:1361412562310881406", "OPENVAS:1361412562310881451", "OPENVAS:1361412562310881469", "OPENVAS:1361412562310881511", "OPENVAS:1361412562310881539", "OPENVAS:1361412562310881552", "OPENVAS:1361412562310892389", "OPENVAS:1361412562310892443", "OPENVAS:1361412562310892469", "OPENVAS:63681", "OPENVAS:63939", "OPENVAS:64289", "OPENVAS:64291", "OPENVAS:64296", "OPENVAS:64376", "OPENVAS:64389", "OPENVAS:64483", "OPENVAS:64514", "OPENVAS:64551", "OPENVAS:64553", "OPENVAS:64555", "OPENVAS:64556", "OPENVAS:64588", "OPENVAS:64599", "OPENVAS:64668", "OPENVAS:64669", "OPENVAS:64671", "OPENVAS:64677", "OPENVAS:64703", "OPENVAS:64704", "OPENVAS:64707", "OPENVAS:64736", "OPENVAS:64745", "OPENVAS:64747", "OPENVAS:64748", "OPENVAS:64755", "OPENVAS:64761", "OPENVAS:64771", "OPENVAS:64791", "OPENVAS:64792", "OPENVAS:64794", "OPENVAS:64795", "OPENVAS:64796", "OPENVAS:64835", "OPENVAS:64906", "OPENVAS:64923", "OPENVAS:64929", "OPENVAS:64940", "OPENVAS:64943", "OPENVAS:64999", "OPENVAS:65354", "OPENVAS:65695", "OPENVAS:65709", "OPENVAS:65814", "OPENVAS:66048", "OPENVAS:66098", "OPENVAS:66124", "OPENVAS:66133", "OPENVAS:66174", "OPENVAS:66175", "OPENVAS:66176", "OPENVAS:66178", "OPENVAS:66200", "OPENVAS:66202", "OPENVAS:66207", "OPENVAS:66208", "OPENVAS:66209", "OPENVAS:66217", "OPENVAS:66218", "OPENVAS:66219", "OPENVAS:66276", "OPENVAS:66280", "OPENVAS:66289", "OPENVAS:66352", "OPENVAS:66356", "OPENVAS:66452", "OPENVAS:66460", "OPENVAS:66509", "OPENVAS:66534", "OPENVAS:66535", "OPENVAS:66581", "OPENVAS:66618", "OPENVAS:66622", "OPENVAS:66954", "OPENVAS:67036", "OPENVAS:67406", "OPENVAS:67981", "OPENVAS:68091", "OPENVAS:68171", "OPENVAS:68662", "OPENVAS:68992", "OPENVAS:69970", "OPENVAS:830860", "OPENVAS:830867", "OPENVAS:830886", "OPENVAS:830889", "OPENVAS:830939", "OPENVAS:830961", "OPENVAS:831024", "OPENVAS:831162", "OPENVAS:831170", "OPENVAS:831196", "OPENVAS:831290", "OPENVAS:831331", "OPENVAS:840180", "OPENVAS:840307", "OPENVAS:840383", "OPENVAS:840403", "OPENVAS:840440", "OPENVAS:840441", "OPENVAS:840476", "OPENVAS:840482", "OPENVAS:840486", "OPENVAS:840523", "OPENVAS:840565", "OPENVAS:840579", "OPENVAS:840592", "OPENVAS:840594", "OPENVAS:840595", "OPENVAS:840599", "OPENVAS:840600", "OPENVAS:840601", "OPENVAS:840605", "OPENVAS:840611", "OPENVAS:840614", "OPENVAS:840615", "OPENVAS:840618", "OPENVAS:840632", "OPENVAS:840638", "OPENVAS:840651", "OPENVAS:840663", "OPENVAS:840671", "OPENVAS:840676", "OPENVAS:840691", "OPENVAS:840693", "OPENVAS:840696", "OPENVAS:840698", "OPENVAS:840699", "OPENVAS:840700", "OPENVAS:840703", "OPENVAS:840704", "OPENVAS:840716", "OPENVAS:840718", "OPENVAS:840719", "OPENVAS:840720", "OPENVAS:840725", "OPENVAS:840726", "OPENVAS:840739", "OPENVAS:840740", "OPENVAS:840743", "OPENVAS:840744", "OPENVAS:840745", "OPENVAS:840746", "OPENVAS:840748", "OPENVAS:840749", "OPENVAS:840758", "OPENVAS:840760", "OPENVAS:840761", "OPENVAS:840762", "OPENVAS:840764", "OPENVAS:840771", "OPENVAS:840773", "OPENVAS:840778", "OPENVAS:840786", "OPENVAS:840787", "OPENVAS:840788", "OPENVAS:840790", "OPENVAS:840793", "OPENVAS:840796", "OPENVAS:840802", "OPENVAS:840804", "OPENVAS:840811", "OPENVAS:840812", "OPENVAS:840813", "OPENVAS:840814", "OPENVAS:840816", "OPENVAS:840818", "OPENVAS:840819", "OPENVAS:840821", "OPENVAS:840823", "OPENVAS:840826", "OPENVAS:840828", "OPENVAS:840829", "OPENVAS:840832", "OPENVAS:840833", "OPENVAS:840834", "OPENVAS:840838", "OPENVAS:840840", "OPENVAS:840841", "OPENVAS:840843", "OPENVAS:840844", "OPENVAS:840845", "OPENVAS:840851", "OPENVAS:840853", "OPENVAS:840854", "OPENVAS:840855", "OPENVAS:840860", "OPENVAS:840861", "OPENVAS:840862", "OPENVAS:840863", "OPENVAS:840864", "OPENVAS:840870", "OPENVAS:840871", "OPENVAS:840873", "OPENVAS:840874", "OPENVAS:840875", "OPENVAS:840910", "OPENVAS:840914", "OPENVAS:840918", "OPENVAS:840922", "OPENVAS:840933", "OPENVAS:840945", "OPENVAS:840969", "OPENVAS:840995", "OPENVAS:840997", "OPENVAS:841001", "OPENVAS:841004", "OPENVAS:841010", "OPENVAS:841016", "OPENVAS:841017", "OPENVAS:841023", "OPENVAS:841102", "OPENVAS:841103", "OPENVAS:841104", "OPENVAS:841105", "OPENVAS:841107", "OPENVAS:841108", "OPENVAS:841111", "OPENVAS:841112", "OPENVAS:841114", "OPENVAS:841115", "OPENVAS:841183", "OPENVAS:850120", "OPENVAS:850121", "OPENVAS:850124", "OPENVAS:850125", "OPENVAS:850127", "OPENVAS:850129", "OPENVAS:850137", "OPENVAS:850140", "OPENVAS:850143", "OPENVAS:850147", "OPENVAS:850154", "OPENVAS:850155", "OPENVAS:850156", "OPENVAS:850157", "OPENVAS:850159", "OPENVAS:850163", "OPENVAS:850165", "OPENVAS:850211", "OPENVAS:850253", "OPENVAS:861615", "OPENVAS:861694", "OPENVAS:861715", "OPENVAS:861742", "OPENVAS:861964", "OPENVAS:862128", "OPENVAS:862161", "OPENVAS:862237", "OPENVAS:862250", "OPENVAS:862301", "OPENVAS:862302", "OPENVAS:862344", "OPENVAS:862348", "OPENVAS:862366", "OPENVAS:862414", "OPENVAS:862415", "OPENVAS:862654", "OPENVAS:862687", "OPENVAS:862703", "OPENVAS:862706", "OPENVAS:862713", "OPENVAS:862749", "OPENVAS:862842", "OPENVAS:862910", "OPENVAS:863087", "OPENVAS:863138", "OPENVAS:863279", "OPENVAS:863292", "OPENVAS:863447", "OPENVAS:863472", "OPENVAS:863473", "OPENVAS:863503", "OPENVAS:863505", "OPENVAS:863571", "OPENVAS:863575", "OPENVAS:863604", "OPENVAS:863606", "OPENVAS:863625", "OPENVAS:863647", "OPENVAS:863661", "OPENVAS:863672", "OPENVAS:863682", "OPENVAS:863700", "OPENVAS:863727", "OPENVAS:863753", "OPENVAS:863766", "OPENVAS:863789", "OPENVAS:863791", "OPENVAS:863817", "OPENVAS:863856", "OPENVAS:863895", "OPENVAS:863905", "OPENVAS:863972", "OPENVAS:864056", "OPENVAS:864081", "OPENVAS:864096", "OPENVAS:864109", "OPENVAS:864178", "OPENVAS:864233", "OPENVAS:864237", "OPENVAS:864452", "OPENVAS:864488", "OPENVAS:864592", "OPENVAS:864687", "OPENVAS:864844", "OPENVAS:864900", "OPENVAS:864947", "OPENVAS:870200", "OPENVAS:870203", "OPENVAS:870210", "OPENVAS:870213", "OPENVAS:870227", "OPENVAS:870233", "OPENVAS:870251", "OPENVAS:870263", "OPENVAS:870264", "OPENVAS:870277", "OPENVAS:870284", "OPENVAS:870303", "OPENVAS:870308", "OPENVAS:870315", "OPENVAS:870321", "OPENVAS:870328", "OPENVAS:870344", "OPENVAS:870358", "OPENVAS:870364", "OPENVAS:870374", "OPENVAS:870378", "OPENVAS:870380", "OPENVAS:870396", "OPENVAS:870402", "OPENVAS:870423", "OPENVAS:870439", "OPENVAS:870453", "OPENVAS:870454", "OPENVAS:870470", "OPENVAS:870476", "OPENVAS:870482", "OPENVAS:870491", "OPENVAS:870504", "OPENVAS:870519", "OPENVAS:870528", "OPENVAS:870544", "OPENVAS:870586", "OPENVAS:870627", "OPENVAS:870628", "OPENVAS:870632", "OPENVAS:870646", "OPENVAS:870652", "OPENVAS:870661", "OPENVAS:870685", "OPENVAS:870693", "OPENVAS:870695", "OPENVAS:870709", "OPENVAS:870729", "OPENVAS:870731", "OPENVAS:870737", "OPENVAS:870746", "OPENVAS:870758", "OPENVAS:870766", "OPENVAS:870787", "OPENVAS:870808", "OPENVAS:870842", "OPENVAS:870860", "OPENVAS:870872", "OPENVAS:880346", "OPENVAS:880349", "OPENVAS:880414", "OPENVAS:880417", "OPENVAS:880423", "OPENVAS:880448", "OPENVAS:880459", "OPENVAS:880462", "OPENVAS:880516", "OPENVAS:880518", "OPENVAS:880534", "OPENVAS:880545", "OPENVAS:880551", "OPENVAS:880569", "OPENVAS:880573", "OPENVAS:880586", "OPENVAS:880602", "OPENVAS:880617", "OPENVAS:880643", "OPENVAS:880646", "OPENVAS:880648", "OPENVAS:880685", "OPENVAS:880731", "OPENVAS:880764", "OPENVAS:880777", "OPENVAS:880808", "OPENVAS:880828", "OPENVAS:880838", "OPENVAS:880869", "OPENVAS:880884", "OPENVAS:880935", "OPENVAS:880944", "OPENVAS:880988", "OPENVAS:880995", "OPENVAS:880998", "OPENVAS:881021", "OPENVAS:881051", "OPENVAS:881076", "OPENVAS:881086", "OPENVAS:881093", "OPENVAS:881110", "OPENVAS:881118", "OPENVAS:881125", "OPENVAS:881132", "OPENVAS:881158", "OPENVAS:881207", "OPENVAS:881222", "OPENVAS:881245", "OPENVAS:881248", "OPENVAS:881254", "OPENVAS:881286", "OPENVAS:881309", "OPENVAS:881313", "OPENVAS:881339", "OPENVAS:881342", "OPENVAS:881392", "OPENVAS:881399", "OPENVAS:881405", "OPENVAS:881406", "OPENVAS:881451", "OPENVAS:881469", "OPENVAS:881511", "OPENVAS:881539", "OPENVAS:881552", "OPENVAS:892389", "OPENVAS:892443", "OPENVAS:892469"]}, {"type": "oraclelinux", "idList": ["ELSA-2009-1193", "ELSA-2009-1211", "ELSA-2009-1222", "ELSA-2009-1223", "ELSA-2009-1233", "ELSA-2009-1243", "ELSA-2009-1438", "ELSA-2009-1522", "ELSA-2009-1541", "ELSA-2009-1548", "ELSA-2009-1550", "ELSA-2009-1670", "ELSA-2009-1671", "ELSA-2010-0019", "ELSA-2010-0020", "ELSA-2010-0046", "ELSA-2010-0076", "ELSA-2010-0146", "ELSA-2010-0147", "ELSA-2010-0178", "ELSA-2010-0291", "ELSA-2010-0394", "ELSA-2010-0398", "ELSA-2010-0474", "ELSA-2010-0504", "ELSA-2010-0606", "ELSA-2010-0610", "ELSA-2010-0661", "ELSA-2010-0676", "ELSA-2010-0723", "ELSA-2010-0779", "ELSA-2010-0839", "ELSA-2010-0936", "ELSA-2010-2008", "ELSA-2010-2009", "ELSA-2010-2011", "ELSA-2011-0004", "ELSA-2011-0007", "ELSA-2011-0017", "ELSA-2011-0162", "ELSA-2011-0263", "ELSA-2011-0303", "ELSA-2011-0421", "ELSA-2011-0429", "ELSA-2011-0498", "ELSA-2011-0542", "ELSA-2011-0833", "ELSA-2011-0836", "ELSA-2011-0927", "ELSA-2011-1065", "ELSA-2011-1189", "ELSA-2011-1212", "ELSA-2011-1241", "ELSA-2011-1350", "ELSA-2011-1386", "ELSA-2011-1465", "ELSA-2011-1479", "ELSA-2011-1530", "ELSA-2011-1849", "ELSA-2011-2010", "ELSA-2011-2014", "ELSA-2011-2015", "ELSA-2011-2016", "ELSA-2011-2024", "ELSA-2011-2025", "ELSA-2011-2029", "ELSA-2011-2033", "ELSA-2011-2037", "ELSA-2011-2038", "ELSA-2012-0007", "ELSA-2012-0050", "ELSA-2012-0107", "ELSA-2012-0128", "ELSA-2012-0150", "ELSA-2012-0150-1", "ELSA-2012-0323", "ELSA-2012-0350", "ELSA-2012-0480", "ELSA-2012-0480-1", "ELSA-2012-0571", "ELSA-2012-0690", "ELSA-2012-0690-1", "ELSA-2012-0743", "ELSA-2012-0862", "ELSA-2012-1156", "ELSA-2012-2003", "ELSA-2012-2013", "ELSA-2012-2014", "ELSA-2012-2020", "ELSA-2012-2021", "ELSA-2012-2022", "ELSA-2012-2025", "ELSA-2012-2026", "ELSA-2013-0512", "ELSA-2019-4670", "ELSA-2019-4672", "ELSA-2019-4675", "ELSA-2019-4685"]}, {"type": "osv", "idList": ["OSV:DSA-1749-1", "OSV:DSA-1787-1", "OSV:DSA-1844-1", "OSV:DSA-1845-1", "OSV:DSA-1862-1", "OSV:DSA-1864-1", "OSV:DSA-1865-1", "OSV:DSA-1872-1", "OSV:DSA-1915-1", "OSV:DSA-1927-1", "OSV:DSA-1928-1", "OSV:DSA-1929-1", "OSV:DSA-1996-1", "OSV:DSA-2003-1", "OSV:DSA-2005-1", "OSV:DSA-2012-1", "OSV:DSA-2053-1", "OSV:DSA-2094-1", "OSV:DSA-2110-1", "OSV:DSA-2126-1", "OSV:DSA-2153-1", "OSV:DSA-2240-1", "OSV:DSA-2264-1", "OSV:DSA-2303-1", "OSV:DSA-2310-1", "OSV:DSA-2389-1", "OSV:DSA-2443-1", "OSV:DSA-2469-1"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:104820", "PACKETSTORM:105078", "PACKETSTORM:114856", "PACKETSTORM:139877", "PACKETSTORM:141912", "PACKETSTORM:90437", "PACKETSTORM:92642", "PACKETSTORM:95287", "PACKETSTORM:96141"]}, {"type": "prion", "idList": ["PRION:CVE-2007-4567", "PRION:CVE-2007-6733", "PRION:CVE-2009-0745", "PRION:CVE-2009-0746", "PRION:CVE-2009-0747", "PRION:CVE-2009-0748", "PRION:CVE-2009-1388", "PRION:CVE-2009-1389", "PRION:CVE-2009-1895", "PRION:CVE-2009-2406", "PRION:CVE-2009-2407", "PRION:CVE-2009-2692", "PRION:CVE-2009-2847", "PRION:CVE-2009-2848", "PRION:CVE-2009-2908", "PRION:CVE-2009-3080", "PRION:CVE-2009-3286", "PRION:CVE-2009-3547", "PRION:CVE-2009-3612", "PRION:CVE-2009-3620", "PRION:CVE-2009-3621", "PRION:CVE-2009-3726", "PRION:CVE-2009-4020", "PRION:CVE-2009-4021", "PRION:CVE-2009-4067", "PRION:CVE-2009-4138", "PRION:CVE-2009-4141", "PRION:CVE-2009-4307", "PRION:CVE-2009-4308", "PRION:CVE-2009-4536", "PRION:CVE-2009-4537", "PRION:CVE-2009-4538", "PRION:CVE-2010-0006", "PRION:CVE-2010-0007", "PRION:CVE-2010-0415", "PRION:CVE-2010-0437", "PRION:CVE-2010-0622", "PRION:CVE-2010-0727", "PRION:CVE-2010-1083", "PRION:CVE-2010-1084", "PRION:CVE-2010-1086", "PRION:CVE-2010-1087", "PRION:CVE-2010-1088", "PRION:CVE-2010-1173", "PRION:CVE-2010-1188", "PRION:CVE-2010-1436", "PRION:CVE-2010-1437", "PRION:CVE-2010-1641", "PRION:CVE-2010-2226", "PRION:CVE-2010-2240", "PRION:CVE-2010-2248", "PRION:CVE-2010-2521", "PRION:CVE-2010-2798", "PRION:CVE-2010-2942", "PRION:CVE-2010-2963", "PRION:CVE-2010-3067", "PRION:CVE-2010-3078", "PRION:CVE-2010-3086", "PRION:CVE-2010-3296", "PRION:CVE-2010-3432", "PRION:CVE-2010-3442", "PRION:CVE-2010-3477", "PRION:CVE-2010-3858", "PRION:CVE-2010-3859", "PRION:CVE-2010-3876", "PRION:CVE-2010-3877", "PRION:CVE-2010-4073", "PRION:CVE-2010-4080", "PRION:CVE-2010-4081", "PRION:CVE-2010-4083", "PRION:CVE-2010-4157", "PRION:CVE-2010-4158", "PRION:CVE-2010-4161", "PRION:CVE-2010-4242", "PRION:CVE-2010-4243", "PRION:CVE-2010-4248", "PRION:CVE-2010-4249", "PRION:CVE-2010-4258", "PRION:CVE-2010-4346", "PRION:CVE-2010-4649", "PRION:CVE-2010-4655", "PRION:CVE-2011-0521", "PRION:CVE-2011-0726", "PRION:CVE-2011-1010", "PRION:CVE-2011-1020", "PRION:CVE-2011-1044", "PRION:CVE-2011-1078", "PRION:CVE-2011-1079", "PRION:CVE-2011-1080", "PRION:CVE-2011-1083", "PRION:CVE-2011-1090", "PRION:CVE-2011-1093", "PRION:CVE-2011-1160", "PRION:CVE-2011-1162", "PRION:CVE-2011-1163", "PRION:CVE-2011-1182", "PRION:CVE-2011-1573", "PRION:CVE-2011-1577", "PRION:CVE-2011-1585", "PRION:CVE-2011-1745", "PRION:CVE-2011-1746", "PRION:CVE-2011-1776", "PRION:CVE-2011-1833", "PRION:CVE-2011-2022", "PRION:CVE-2011-2203", "PRION:CVE-2011-2213", "PRION:CVE-2011-2482", "PRION:CVE-2011-2484", "PRION:CVE-2011-2491", "PRION:CVE-2011-2496", "PRION:CVE-2011-2525", "PRION:CVE-2011-3191", "PRION:CVE-2011-3637", "PRION:CVE-2011-3638", "PRION:CVE-2011-4077", "PRION:CVE-2011-4086", "PRION:CVE-2011-4110", "PRION:CVE-2011-4127", "PRION:CVE-2011-4324", "PRION:CVE-2011-4330", "PRION:CVE-2011-4348", "PRION:CVE-2012-1583", "PRION:CVE-2012-2100", "PRION:CVE-2012-2136", "PRION:CVE-2012-2319", "PRION:CVE-2012-3375"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:87BA757A5FD1FA33FB143A6AD7B02E98"]}, {"type": "redhat", "idList": ["RHSA-2009:1157", "RHSA-2009:1193", "RHSA-2009:1211", "RHSA-2009:1222", "RHSA-2009:1223", "RHSA-2009:1233", "RHSA-2009:1239", "RHSA-2009:1243", "RHSA-2009:1438", "RHSA-2009:1457", "RHSA-2009:1466", "RHSA-2009:1469", "RHSA-2009:1522", "RHSA-2009:1540", "RHSA-2009:1541", "RHSA-2009:1548", "RHSA-2009:1550", "RHSA-2009:1587", "RHSA-2009:1588", "RHSA-2009:1635", "RHSA-2009:1670", "RHSA-2009:1671", "RHSA-2009:1672", "RHSA-2009:1692", "RHSA-2010:0019", "RHSA-2010:0020", "RHSA-2010:0041", "RHSA-2010:0046", "RHSA-2010:0053", "RHSA-2010:0076", "RHSA-2010:0079", "RHSA-2010:0095", "RHSA-2010:0111", "RHSA-2010:0146", "RHSA-2010:0147", "RHSA-2010:0148", "RHSA-2010:0149", "RHSA-2010:0161", "RHSA-2010:0172", "RHSA-2010:0178", "RHSA-2010:0291", "RHSA-2010:0330", "RHSA-2010:0331", "RHSA-2010:0342", "RHSA-2010:0380", "RHSA-2010:0394", "RHSA-2010:0398", "RHSA-2010:0424", "RHSA-2010:0439", "RHSA-2010:0440", "RHSA-2010:0474", "RHSA-2010:0476", "RHSA-2010:0504", "RHSA-2010:0521", "RHSA-2010:0606", "RHSA-2010:0610", "RHSA-2010:0622", "RHSA-2010:0631", "RHSA-2010:0660", "RHSA-2010:0661", "RHSA-2010:0670", "RHSA-2010:0676", "RHSA-2010:0677", "RHSA-2010:0723", "RHSA-2010:0758", "RHSA-2010:0771", "RHSA-2010:0779", "RHSA-2010:0839", "RHSA-2010:0842", "RHSA-2010:0882", "RHSA-2010:0893", "RHSA-2010:0907", "RHSA-2010:0936", "RHSA-2010:0958", "RHSA-2011:0004", "RHSA-2011:0007", "RHSA-2011:0017", "RHSA-2011:0162", "RHSA-2011:0263", "RHSA-2011:0303", "RHSA-2011:0330", "RHSA-2011:0421", "RHSA-2011:0429", "RHSA-2011:0439", "RHSA-2011:0498", "RHSA-2011:0500", "RHSA-2011:0542", "RHSA-2011:0833", "RHSA-2011:0836", "RHSA-2011:0927", "RHSA-2011:1065", "RHSA-2011:1090", "RHSA-2011:1163", "RHSA-2011:1189", "RHSA-2011:1212", "RHSA-2011:1241", "RHSA-2011:1253", "RHSA-2011:1321", "RHSA-2011:1350", "RHSA-2011:1386", "RHSA-2011:1408", "RHSA-2011:1465", "RHSA-2011:1479", "RHSA-2011:1530", "RHSA-2011:1813", "RHSA-2011:1849", "RHSA-2011:1850", "RHSA-2012:0007", "RHSA-2012:0010", "RHSA-2012:0050", "RHSA-2012:0107", "RHSA-2012:0116", "RHSA-2012:0150", "RHSA-2012:0168", "RHSA-2012:0333", "RHSA-2012:0350", "RHSA-2012:0358", "RHSA-2012:0422", "RHSA-2012:0480", "RHSA-2012:0488", "RHSA-2012:0517", "RHSA-2012:0571", "RHSA-2012:0670", "RHSA-2012:0690", "RHSA-2012:0720", "RHSA-2012:0743", "RHSA-2012:0862", "RHSA-2012:1061", "RHSA-2012:1087", "RHSA-2012:1129", "RHSA-2012:1156", "RHSA-2012:1200", "RHSA-2012:1445", "RHSA-2012:1580"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:15430", "SECURITYVULNS:DOC:21767", "SECURITYVULNS:DOC:22139", "SECURITYVULNS:DOC:22217", "SECURITYVULNS:DOC:22367", "SECURITYVULNS:DOC:22675", "SECURITYVULNS:DOC:22752", "SECURITYVULNS:DOC:23155", "SECURITYVULNS:DOC:23246", "SECURITYVULNS:DOC:23463", "SECURITYVULNS:DOC:23777", "SECURITYVULNS:DOC:23925", "SECURITYVULNS:DOC:24700", "SECURITYVULNS:DOC:24784", "SECURITYVULNS:DOC:25229", "SECURITYVULNS:DOC:25260", "SECURITYVULNS:DOC:25593", "SECURITYVULNS:DOC:25594", "SECURITYVULNS:DOC:25798", "SECURITYVULNS:DOC:25979", "SECURITYVULNS:DOC:25985", "SECURITYVULNS:DOC:26125", "SECURITYVULNS:DOC:26274", "SECURITYVULNS:DOC:26323", "SECURITYVULNS:DOC:26354", "SECURITYVULNS:DOC:26397", "SECURITYVULNS:DOC:26416", "SECURITYVULNS:DOC:26447", "SECURITYVULNS:DOC:26817", "SECURITYVULNS:DOC:27006", "SECURITYVULNS:DOC:27054", "SECURITYVULNS:DOC:27375", "SECURITYVULNS:DOC:27376", "SECURITYVULNS:DOC:27432", "SECURITYVULNS:DOC:27566", "SECURITYVULNS:DOC:27745", "SECURITYVULNS:DOC:27869", "SECURITYVULNS:DOC:27880", "SECURITYVULNS:DOC:28071", "SECURITYVULNS:DOC:28091", "SECURITYVULNS:DOC:28164", "SECURITYVULNS:DOC:28344", "SECURITYVULNS:DOC:28345", "SECURITYVULNS:DOC:28783", "SECURITYVULNS:DOC:30403", "SECURITYVULNS:DOC:30412", "SECURITYVULNS:VULN:10053", "SECURITYVULNS:VULN:10084", "SECURITYVULNS:VULN:10108", "SECURITYVULNS:VULN:10150", "SECURITYVULNS:VULN:10177", "SECURITYVULNS:VULN:10380", "SECURITYVULNS:VULN:10581", "SECURITYVULNS:VULN:10626", "SECURITYVULNS:VULN:10643", "SECURITYVULNS:VULN:10715", "SECURITYVULNS:VULN:10819", "SECURITYVULNS:VULN:10869", "SECURITYVULNS:VULN:11129", "SECURITYVULNS:VULN:11275", "SECURITYVULNS:VULN:11394", "SECURITYVULNS:VULN:11463", "SECURITYVULNS:VULN:11523", "SECURITYVULNS:VULN:11588", "SECURITYVULNS:VULN:11656", "SECURITYVULNS:VULN:11708", "SECURITYVULNS:VULN:11848", "SECURITYVULNS:VULN:11905", "SECURITYVULNS:VULN:11922", "SECURITYVULNS:VULN:12057", "SECURITYVULNS:VULN:12086", "SECURITYVULNS:VULN:12151", "SECURITYVULNS:VULN:12243", "SECURITYVULNS:VULN:12305", "SECURITYVULNS:VULN:12425", "SECURITYVULNS:VULN:12501", "SECURITYVULNS:VULN:13641", "SECURITYVULNS:VULN:9889"]}, {"type": "seebug", "idList": ["SSV:11599", "SSV:11761", "SSV:12073", "SSV:12088", "SSV:12103", "SSV:12354", "SSV:12385", "SSV:12439", "SSV:12454", "SSV:12509", "SSV:12576", "SSV:12588", "SSV:12593", "SSV:12670", "SSV:15037", "SSV:15092", "SSV:15184", "SSV:15185", "SSV:18941", "SSV:18942", "SSV:18949", "SSV:19107", "SSV:19299", "SSV:19311", "SSV:19388", "SSV:19420", "SSV:19421", "SSV:19425", "SSV:19427", "SSV:19531", "SSV:19827", "SSV:20014", "SSV:20015", "SSV:20016", "SSV:20133", "SSV:20134", "SSV:20207", "SSV:20259", "SSV:20261", "SSV:20272", "SSV:20276", "SSV:20278", "SSV:20280", "SSV:20293", "SSV:20314", "SSV:20357", "SSV:20536", "SSV:20652", "SSV:20653", "SSV:20654", "SSV:20865", "SSV:20896", "SSV:20924", "SSV:20956", "SSV:23126", "SSV:24237", "SSV:24240", "SSV:24243", "SSV:24263", "SSV:26099", "SSV:30136", "SSV:60070", "SSV:60169", "SSV:66827", "SSV:66828", "SSV:69562", "SSV:70365", "SSV:72066"]}, {"type": "slackware", "idList": ["SSA-2009-230-01", "SSA-2010-240-06"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2011:0902-1", "OPENSUSE-SU-2012:0206-1", "OPENSUSE-SU-2012:0236-1", "SUSE-SA:2009:038", "SUSE-SA:2009:045", "SUSE-SA:2009:054", "SUSE-SA:2009:055", "SUSE-SA:2009:056", "SUSE-SA:2009:060", "SUSE-SA:2009:061", "SUSE-SA:2009:064", "SUSE-SA:2010:001", "SUSE-SA:2010:005", "SUSE-SA:2010:007", "SUSE-SA:2010:009", "SUSE-SA:2010:010", "SUSE-SA:2010:012", "SUSE-SA:2010:013", "SUSE-SA:2010:014", "SUSE-SA:2010:016", "SUSE-SA:2010:018", "SUSE-SA:2010:019", "SUSE-SA:2010:023", "SUSE-SA:2010:027", "SUSE-SA:2010:031", "SUSE-SA:2010:033", "SUSE-SA:2010:035", "SUSE-SA:2010:036", "SUSE-SA:2010:038", "SUSE-SA:2010:039", "SUSE-SA:2010:040", "SUSE-SA:2010:041", "SUSE-SA:2010:044", "SUSE-SA:2010:046", "SUSE-SA:2010:047", "SUSE-SA:2010:050", "SUSE-SA:2010:052", "SUSE-SA:2010:053", "SUSE-SA:2010:054", "SUSE-SA:2010:057", "SUSE-SA:2010:060", "SUSE-SA:2011:001", "SUSE-SA:2011:002", "SUSE-SA:2011:004", "SUSE-SA:2011:005", "SUSE-SA:2011:007", "SUSE-SA:2011:008", "SUSE-SA:2011:012", "SUSE-SA:2011:015", "SUSE-SA:2011:017", "SUSE-SA:2011:019", "SUSE-SA:2011:020", "SUSE-SA:2011:021", "SUSE-SA:2011:026", "SUSE-SA:2011:027", "SUSE-SA:2011:031", "SUSE-SA:2011:034", "SUSE-SA:2011:038", "SUSE-SA:2011:040", "SUSE-SA:2011:041", "SUSE-SA:2011:042", "SUSE-SA:2011:046", "SUSE-SU-2011:0711-1", "SUSE-SU-2011:0832-1", "SUSE-SU-2011:0898-1", "SUSE-SU-2011:0899-1", "SUSE-SU-2011:0984-1", "SUSE-SU-2011:0984-2", "SUSE-SU-2011:0984-3", "SUSE-SU-2011:1058-1", "SUSE-SU-2011:1100-1", "SUSE-SU-2011:1101-1", "SUSE-SU-2011:1195-1", "SUSE-SU-2011:1319-1", "SUSE-SU-2011:1319-2", "SUSE-SU-2012:0153-1", "SUSE-SU-2012:0153-2", "SUSE-SU-2012:0364-1", "SUSE-SU-2012:0554-1", "SUSE-SU-2012:0554-2", "SUSE-SU-2012:0616-1", "SUSE-SU-2012:0736-1", "SUSE-SU-2012:0789-1", "SUSE-SU-2012:1391-1", "SUSE-SU-2015:0812-1"]}, {"type": "threatpost", "idList": ["THREATPOST:5C498E77806919FE36F529695A6607BA", "THREATPOST:9B247D64D74F86C01215CC8DF7D85698"]}, {"type": "ubuntu", "idList": ["USN-1000-1", "USN-1041-1", "USN-1054-1", "USN-1071-1", "USN-1072-1", "USN-1073-1", "USN-1074-1", "USN-1074-2", "USN-1080-1", "USN-1080-2", "USN-1081-1", "USN-1083-1", "USN-1086-1", "USN-1089-1", "USN-1092-1", "USN-1093-1", "USN-1105-1", "USN-1111-1", "USN-1119-1", "USN-1133-1", "USN-1141-1", "USN-1146-1", "USN-1159-1", "USN-1160-1", "USN-1161-1", "USN-1162-1", "USN-1164-1", "USN-1167-1", "USN-1168-1", "USN-1170-1", "USN-1183-1", "USN-1186-1", "USN-1187-1", "USN-1188-1", "USN-1189-1", "USN-1193-1", "USN-1201-1", "USN-1202-1", "USN-1203-1", "USN-1204-1", "USN-1205-1", "USN-1208-1", "USN-1211-1", "USN-1212-1", "USN-1216-1", "USN-1218-1", "USN-1219-1", "USN-1220-1", "USN-1225-1", "USN-1227-1", "USN-1228-1", "USN-1236-1", "USN-1239-1", "USN-1240-1", "USN-1241-1", "USN-1244-1", "USN-1245-1", "USN-1246-1", "USN-1253-1", "USN-1256-1", "USN-1260-1", "USN-1268-1", "USN-1269-1", "USN-1271-1", "USN-1272-1", "USN-1274-1", "USN-1275-1", "USN-1278-1", "USN-1279-1", "USN-1280-1", "USN-1281-1", "USN-1285-1", "USN-1286-1", "USN-1291-1", "USN-1292-1", "USN-1293-1", "USN-1294-1", "USN-1299-1", "USN-1300-1", "USN-1301-1", "USN-1302-1", "USN-1303-1", "USN-1304-1", "USN-1311-1", "USN-1312-1", "USN-1318-1", "USN-1319-1", "USN-1323-1", "USN-1324-1", "USN-1325-1", "USN-1328-1", "USN-1330-1", "USN-1332-1", "USN-1336-1", "USN-1337-1", "USN-1340-1", "USN-1341-1", "USN-1344-1", "USN-1345-1", "USN-1384-1", "USN-1388-1", "USN-1389-1", "USN-1390-1", "USN-1405-1", "USN-1431-1", "USN-1432-1", "USN-1433-1", "USN-1440-1", "USN-1445-1", "USN-1446-1", "USN-1453-1", "USN-1454-1", "USN-1458-1", "USN-1514-1", "USN-1529-1", "USN-1530-1", "USN-1531-1", "USN-1532-1", "USN-1533-1", "USN-1534-1", "USN-1535-1", "USN-1538-1", "USN-1539-1", "USN-1598-1", "USN-558-1", "USN-574-1", "USN-751-1", "USN-807-1", "USN-819-1", "USN-852-1", "USN-864-1", "USN-894-1", "USN-914-1", "USN-947-1", "USN-947-2", "USN-966-1", "USN-974-1", "USN-974-2"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2006-6304", "UB:CVE-2007-4567", "UB:CVE-2007-6733", "UB:CVE-2008-0352", "UB:CVE-2009-0745", "UB:CVE-2009-0746", "UB:CVE-2009-0747", "UB:CVE-2009-0748", "UB:CVE-2009-1388", "UB:CVE-2009-1389", "UB:CVE-2009-1895", "UB:CVE-2009-2406", "UB:CVE-2009-2407", "UB:CVE-2009-2692", "UB:CVE-2009-2847", "UB:CVE-2009-2848", "UB:CVE-2009-2908", "UB:CVE-2009-3080", "UB:CVE-2009-3286", "UB:CVE-2009-3547", "UB:CVE-2009-3612", "UB:CVE-2009-3620", "UB:CVE-2009-3621", "UB:CVE-2009-3726", "UB:CVE-2009-4020", "UB:CVE-2009-4021", "UB:CVE-2009-4067", "UB:CVE-2009-4138", "UB:CVE-2009-4141", "UB:CVE-2009-4307", "UB:CVE-2009-4308", "UB:CVE-2009-4536", "UB:CVE-2009-4537", "UB:CVE-2009-4538", "UB:CVE-2010-0006", "UB:CVE-2010-0007", "UB:CVE-2010-0415", "UB:CVE-2010-0437", "UB:CVE-2010-0622", "UB:CVE-2010-0727", "UB:CVE-2010-1083", "UB:CVE-2010-1084", "UB:CVE-2010-1086", "UB:CVE-2010-1087", "UB:CVE-2010-1088", "UB:CVE-2010-1173", "UB:CVE-2010-1188", "UB:CVE-2010-1436", "UB:CVE-2010-1437", "UB:CVE-2010-1641", "UB:CVE-2010-2226", "UB:CVE-2010-2240", "UB:CVE-2010-2248", "UB:CVE-2010-2521", "UB:CVE-2010-2798", "UB:CVE-2010-2942", "UB:CVE-2010-2963", "UB:CVE-2010-3067", "UB:CVE-2010-3078", "UB:CVE-2010-3086", "UB:CVE-2010-3296", "UB:CVE-2010-3432", "UB:CVE-2010-3442", "UB:CVE-2010-3477", "UB:CVE-2010-3858", "UB:CVE-2010-3859", "UB:CVE-2010-3876", "UB:CVE-2010-3877", "UB:CVE-2010-4073", "UB:CVE-2010-4080", "UB:CVE-2010-4081", "UB:CVE-2010-4083", "UB:CVE-2010-4157", "UB:CVE-2010-4158", "UB:CVE-2010-4160", "UB:CVE-2010-4161", "UB:CVE-2010-4242", "UB:CVE-2010-4243", "UB:CVE-2010-4248", "UB:CVE-2010-4249", "UB:CVE-2010-4258", "UB:CVE-2010-4346", "UB:CVE-2010-4649", "UB:CVE-2010-4655", "UB:CVE-2011-0521", "UB:CVE-2011-0726", "UB:CVE-2011-1010", "UB:CVE-2011-1020", "UB:CVE-2011-1044", "UB:CVE-2011-1078", "UB:CVE-2011-1079", "UB:CVE-2011-1080", "UB:CVE-2011-1083", "UB:CVE-2011-1090", "UB:CVE-2011-1093", "UB:CVE-2011-1160", "UB:CVE-2011-1162", "UB:CVE-2011-1163", "UB:CVE-2011-1182", "UB:CVE-2011-1573", "UB:CVE-2011-1577", "UB:CVE-2011-1585", "UB:CVE-2011-1745", "UB:CVE-2011-1746", "UB:CVE-2011-1776", "UB:CVE-2011-1833", "UB:CVE-2011-2022", "UB:CVE-2011-2203", "UB:CVE-2011-2213", "UB:CVE-2011-2482", "UB:CVE-2011-2484", "UB:CVE-2011-2491", "UB:CVE-2011-2496", "UB:CVE-2011-2525", "UB:CVE-2011-3191", "UB:CVE-2011-3637", "UB:CVE-2011-3638", "UB:CVE-2011-4077", "UB:CVE-2011-4086", "UB:CVE-2011-4110", "UB:CVE-2011-4127", "UB:CVE-2011-4324", "UB:CVE-2011-4330", "UB:CVE-2011-4348", "UB:CVE-2012-1583", "UB:CVE-2012-2100", "UB:CVE-2012-2136", "UB:CVE-2012-2319", "UB:CVE-2012-3375"]}, {"type": "veracode", "idList": ["VERACODE:10696", "VERACODE:10724", "VERACODE:13775", "VERACODE:13844", "VERACODE:23731", "VERACODE:23749", "VERACODE:23750", "VERACODE:23751", "VERACODE:23752", "VERACODE:23765", "VERACODE:23766", "VERACODE:23767", "VERACODE:23768", "VERACODE:23769", "VERACODE:23770", "VERACODE:23778", "VERACODE:23876", "VERACODE:23878", "VERACODE:23879", "VERACODE:23893", "VERACODE:23895", "VERACODE:23899", "VERACODE:23900", "VERACODE:23901", "VERACODE:23902", "VERACODE:23917", "VERACODE:23918", "VERACODE:23919", "VERACODE:23924", "VERACODE:23943", "VERACODE:23944", "VERACODE:23945", "VERACODE:23946", "VERACODE:23987", "VERACODE:23992", "VERACODE:23999", "VERACODE:24000", "VERACODE:24041", "VERACODE:24043", "VERACODE:24044", "VERACODE:24054", "VERACODE:24102", "VERACODE:24118", "VERACODE:24121", "VERACODE:24122", "VERACODE:24123", "VERACODE:24154", "VERACODE:24157", "VERACODE:24183", "VERACODE:24184", "VERACODE:24185", "VERACODE:24187", "VERACODE:24245", "VERACODE:24247", "VERACODE:24253", "VERACODE:24254", "VERACODE:24255", "VERACODE:24257", "VERACODE:24258", "VERACODE:24283", "VERACODE:24284", "VERACODE:24292", "VERACODE:24306", "VERACODE:24341", "VERACODE:24342", "VERACODE:24344", "VERACODE:24346", "VERACODE:24347", "VERACODE:24349", "VERACODE:24351", "VERACODE:24455", "VERACODE:24457", "VERACODE:24466", "VERACODE:24471", "VERACODE:24473", "VERACODE:24490", "VERACODE:24491", "VERACODE:24497", "VERACODE:24498", "VERACODE:24500", "VERACODE:24501", "VERACODE:24512", "VERACODE:24513", "VERACODE:24514", "VERACODE:24515", "VERACODE:24516", "VERACODE:24517", "VERACODE:24524", "VERACODE:24582", "VERACODE:24653", "VERACODE:24660", "VERACODE:24661", "VERACODE:24670", "VERACODE:24671", "VERACODE:24695", "VERACODE:24753", "VERACODE:24754", "VERACODE:24755", "VERACODE:24756", "VERACODE:24770", "VERACODE:24778", "VERACODE:24780", "VERACODE:24782", "VERACODE:24785", "VERACODE:24817", "VERACODE:24818", "VERACODE:24887", "VERACODE:24888", "VERACODE:24890", "VERACODE:24892", "VERACODE:24893", "VERACODE:24894", "VERACODE:24898", "VERACODE:24904", "VERACODE:24983"]}, {"type": "vmware", "idList": ["VMSA-2009-0016", "VMSA-2009-0016.6", "VMSA-2010-0004", "VMSA-2010-0004.5", "VMSA-2010-0009", "VMSA-2010-0009.2", "VMSA-2010-0010", "VMSA-2010-0016", "VMSA-2010-0016.1", "VMSA-2010-0017.1", "VMSA-2011-0007", "VMSA-2011-0009", "VMSA-2011-0009.3", "VMSA-2011-0012", "VMSA-2011-0012.3", "VMSA-2012-0001", "VMSA-2012-0001.2", "VMSA-2012-0006", "VMSA-2012-0006.2", "VMSA-2012-0008", "VMSA-2012-0008.1", "VMSA-2012-0013", "VMSA-2012-0013.2"]}, {"type": "zdt", "idList": ["1337DAY-ID-26409"]}]}, "score": {"value": 1.4, "vector": "NONE"}, "backreferences": {"references": [{"type": "amazon", "idList": ["ALAS-2011-022"]}, {"type": "android", "idList": ["ANDROID:SOCK_SENDPAGE"]}, {"type": "canvas", "idList": ["FS_PIPE_RACE_TO_NULL"]}, {"type": "centos", "idList": ["CESA-2009:1193", "CESA-2009:1222", "CESA-2009:1223", "CESA-2009:1233", "CESA-2009:1243", "CESA-2009:1438", "CESA-2009:1522", "CESA-2009:1541", "CESA-2009:1548", "CESA-2009:1550", "CESA-2009:1670", "CESA-2009:1671", "CESA-2010:0019", "CESA-2010:0020", "CESA-2010:0046", "CESA-2010:0076", "CESA-2010:0146", "CESA-2010:0147", "CESA-2010:0394", "CESA-2010:0398", "CESA-2010:0474", "CESA-2010:0504", "CESA-2010:0606", "CESA-2010:0610", "CESA-2010:0661", "CESA-2010:0676", "CESA-2010:0723", "CESA-2010:0779", "CESA-2010:0839", "CESA-2010:0936", "CESA-2011:0004", "CESA-2011:0162", "CESA-2011:0303", "CESA-2011:0429", "CESA-2011:0833", "CESA-2011:0927", "CESA-2011:1065", "CESA-2011:1212", "CESA-2011:1241", "CESA-2011:1386", "CESA-2011:1479", "CESA-2011:1849", "CESA-2012:0007", "CESA-2012:0050", "CESA-2012:0107", "CESA-2012:0350", "CESA-2012:0480", "CESA-2012:0571", "CESA-2012:0690", "CESA-2012:0743", "CESA-2012:0862", "CESA-2012:1061", "CESA-2012:1156", "CESA-2012:1445", "CESA-2012:1580"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2010-077"]}, {"type": "checkpoint_security", "idList": ["CPS:SK42600", "CPS:SK44718"]}, {"type": "cve", "idList": ["CVE-2006-6304", "CVE-2007-4567"]}, {"type": "debian", "idList": ["DEBIAN:DSA-1864-1:B2834", "DEBIAN:DSA-1872-1:3575F", "DEBIAN:DSA-1915-1:E4B61", "DEBIAN:DSA-2003-1:E3418"]}, {"type": "debiancve", "idList": ["DEBIANCVE:CVE-2012-2136"]}, {"type": "exploitdb", "idList": ["EDB-ID:9477"]}, {"type": "exploitpack", "idList": ["EXPLOITPACK:587E07B26CFC9328AECA2A6FF11BCAF8"]}, {"type": "f5", "idList": ["SOL10772", "SOL16471", "SOL16473", "SOL16479"]}, {"type": "fedora", "idList": ["FEDORA:955C12085B"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/SUSE-CVE-2011-1182/"]}, {"type": "nessus", "idList": ["CENTOS_RHSA-2009-1671.NASL", "CENTOS_RHSA-2010-0020.NASL", "CENTOS_RHSA-2010-0046.NASL", "CENTOS_RHSA-2010-0610.NASL", "DEBIAN_DSA-1862.NASL", "DEBIAN_DSA-2003.NASL", "DEBIAN_DSA-2443.NASL", "FEDORA_2010-13058.NASL", "FEDORA_2010-13110.NASL", "FEDORA_2010-9183.NASL", "NEWSTART_CGSL_NS-SA-2019-0264_KERNEL.NASL", "NEWSTART_CGSL_NS-SA-2019-0266_KERNEL-RT.NASL", "OPENSUSE-2012-756.NASL", "ORACLELINUX_ELSA-2010-0146.NASL", "ORACLELINUX_ELSA-2010-0676.NASL", "ORACLELINUX_ELSA-2011-2025.NASL", "ORACLELINUX_ELSA-2012-0480-1.NASL", "ORACLELINUX_ELSA-2012-1156.NASL", "REDHAT-RHSA-2010-0053.NASL", "REDHAT-RHSA-2010-0079.NASL", "REDHAT-RHSA-2010-0660.NASL", "REDHAT-RHSA-2010-0723.NASL", "REDHAT-RHSA-2010-0842.NASL", "REDHAT-RHSA-2011-0004.NASL", "REDHAT-RHSA-2011-0883.NASL", "REDHAT-RHSA-2011-1163.NASL", "REDHAT-RHSA-2011-1189.NASL", "REDHAT-RHSA-2011-1253.NASL", "SL_20111020_KERNEL_ON_SL5_X.NASL", "SUSE_11_KERNEL-110930.NASL", "SUSE_11_KERNEL-120129.NASL", "SUSE_11_XORG-X11-SERVER-DMX-120410.NASL", "SUSE_11_XORG-X11-SERVER-RDP-120410.NASL", "SUSE_KERNEL-7381.NASL", "SUSE_KERNEL-8324.NASL", "UBUNTU_USN-1080-1.NASL", "UBUNTU_USN-1202-1.NASL", "UBUNTU_USN-1211-1.NASL", "UBUNTU_USN-1269-1.NASL", "UBUNTU_USN-1292-1.NASL", "UBUNTU_USN-1388-1.NASL", "UBUNTU_USN-1390-1.NASL", "UBUNTU_USN-1534-1.NASL", "UBUNTU_USN-1535-1.NASL", "UBUNTU_USN-558-1.NASL", "UBUNTU_USN-966-1.NASL", "VMWARE_ESXI_5_0_BUILD_515841_REMOTE.NASL", "VMWARE_VMSA-2011-0012_REMOTE.NASL", "VMWARE_VMSA-2012-0008_REMOTE.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:103454", "OPENVAS:1361412562310103454", "OPENVAS:1361412562310122018", "OPENVAS:1361412562310122233", "OPENVAS:1361412562310122291", "OPENVAS:1361412562310122315", "OPENVAS:1361412562310122359", "OPENVAS:1361412562310122422", "OPENVAS:136141256231064555", "OPENVAS:136141256231064669", "OPENVAS:136141256231064677", "OPENVAS:136141256231064747", "OPENVAS:136141256231066202", "OPENVAS:136141256231067036", "OPENVAS:136141256231068662", "OPENVAS:1361412562310830939", "OPENVAS:1361412562310840599", "OPENVAS:1361412562310840605", "OPENVAS:1361412562310840614", "OPENVAS:1361412562310840663", "OPENVAS:1361412562310840700", "OPENVAS:1361412562310840740", "OPENVAS:1361412562310840760", "OPENVAS:1361412562310840812", "OPENVAS:1361412562310840914", "OPENVAS:1361412562310840922", "OPENVAS:1361412562310850140", "OPENVAS:1361412562310863447", "OPENVAS:1361412562310863472", "OPENVAS:1361412562310870233", "OPENVAS:1361412562310870380", "OPENVAS:1361412562310870402", "OPENVAS:1361412562310870423", "OPENVAS:1361412562310870491", "OPENVAS:1361412562310870646", "OPENVAS:1361412562310870661", "OPENVAS:1361412562310880462", "OPENVAS:1361412562310880944", "OPENVAS:1361412562310881125", "OPENVAS:63681", "OPENVAS:64745", "OPENVAS:64796", "OPENVAS:64906", "OPENVAS:66124", "OPENVAS:66535", "OPENVAS:830961", "OPENVAS:831331", "OPENVAS:840441", "OPENVAS:840618", "OPENVAS:840676", "OPENVAS:840773", "OPENVAS:840864", "OPENVAS:841001", "OPENVAS:841111", "OPENVAS:850129", "OPENVAS:850137", "OPENVAS:863604", "OPENVAS:863625", "OPENVAS:864056", "OPENVAS:870200", "OPENVAS:870227", "OPENVAS:870233", "OPENVAS:870378", "OPENVAS:880459", "OPENVAS:880545", "OPENVAS:880646", "OPENVAS:880731", "OPENVAS:880884", "OPENVAS:881451", "OPENVAS:892443"]}, {"type": "oraclelinux", "idList": ["ELSA-2009-1193", "ELSA-2009-1211", "ELSA-2009-1438", "ELSA-2009-1522", "ELSA-2009-1541", "ELSA-2009-1548", "ELSA-2009-1550", "ELSA-2009-1670", "ELSA-2009-1671", "ELSA-2010-0046", "ELSA-2010-0076", "ELSA-2010-0291", "ELSA-2010-0394", "ELSA-2010-0398", "ELSA-2010-0474", "ELSA-2010-0504", "ELSA-2010-0606", "ELSA-2010-0661", "ELSA-2010-0676", "ELSA-2010-0723", "ELSA-2010-0779", "ELSA-2010-0839", "ELSA-2010-0936", "ELSA-2010-2008", "ELSA-2010-2009", "ELSA-2010-2011", "ELSA-2011-0004", "ELSA-2011-0007", "ELSA-2011-0162", "ELSA-2011-0263", "ELSA-2011-0303", "ELSA-2011-0421", "ELSA-2011-0429", "ELSA-2011-0498", "ELSA-2011-0542", "ELSA-2011-0833", "ELSA-2011-0836", "ELSA-2011-0927", "ELSA-2011-1065", "ELSA-2011-1189", "ELSA-2011-1212", "ELSA-2011-1241", "ELSA-2011-1350", "ELSA-2011-1479", "ELSA-2011-1849", "ELSA-2011-2010", "ELSA-2011-2014", "ELSA-2011-2015", "ELSA-2011-2016", "ELSA-2011-2024", "ELSA-2011-2025", "ELSA-2011-2029", "ELSA-2011-2037", "ELSA-2011-2038", "ELSA-2012-0007", "ELSA-2012-0050", "ELSA-2012-0107", "ELSA-2012-0150", "ELSA-2012-0150-1", "ELSA-2012-0350", "ELSA-2012-0480", "ELSA-2012-0480-1", "ELSA-2012-0571", "ELSA-2012-0690", "ELSA-2012-0690-1", "ELSA-2012-0743", "ELSA-2012-0862", "ELSA-2012-1156", "ELSA-2012-2003", "ELSA-2012-2013", "ELSA-2012-2014", "ELSA-2012-2020", "ELSA-2012-2021", "ELSA-2012-2022", "ELSA-2012-2025", "ELSA-2012-2026"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:114856", "PACKETSTORM:95287"]}, {"type": "redhat", "idList": ["RHSA-2009:1193", "RHSA-2009:1211", "RHSA-2009:1243", "RHSA-2009:1438", "RHSA-2009:1522", "RHSA-2009:1541", "RHSA-2009:1548", "RHSA-2009:1588", "RHSA-2009:1670", "RHSA-2009:1671", "RHSA-2009:1692", "RHSA-2010:0046", "RHSA-2010:0178", "RHSA-2010:0331", "RHSA-2010:0342", "RHSA-2010:0394", "RHSA-2010:0424", "RHSA-2010:0474", "RHSA-2010:0606", "RHSA-2010:0661", "RHSA-2010:0676", "RHSA-2010:0677", "RHSA-2010:0723", "RHSA-2010:0779", "RHSA-2010:0839", "RHSA-2010:0842", "RHSA-2010:0936", "RHSA-2011:0004", "RHSA-2011:0007", "RHSA-2011:0017", "RHSA-2011:0162", "RHSA-2011:0421", "RHSA-2011:0429", "RHSA-2011:0498", "RHSA-2011:0542", "RHSA-2011:0833", "RHSA-2011:0836", "RHSA-2011:0927", "RHSA-2011:1065", "RHSA-2011:1189", "RHSA-2011:1212", "RHSA-2011:1241", "RHSA-2011:1321", "RHSA-2011:1350", "RHSA-2011:1386", "RHSA-2011:1479", "RHSA-2011:1530", "RHSA-2011:1813", "RHSA-2011:1849", "RHSA-2012:0007", "RHSA-2012:0107", "RHSA-2012:0116", "RHSA-2012:0150", "RHSA-2012:0333", "RHSA-2012:0350", "RHSA-2012:0480", "RHSA-2012:0517", "RHSA-2012:0571", "RHSA-2012:0670", "RHSA-2012:0690", "RHSA-2012:0743", "RHSA-2012:0862", "RHSA-2012:1061", "RHSA-2012:1087", "RHSA-2012:1129", "RHSA-2012:1156", "RHSA-2012:1445", "RHSA-2012:1580"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:26447", "SECURITYVULNS:DOC:27432", "SECURITYVULNS:VULN:10819", "SECURITYVULNS:VULN:10869"]}, {"type": "seebug", "idList": ["SSV:12576", "SSV:15185", "SSV:19311", "SSV:19427", "SSV:19827", "SSV:20896", "SSV:20924", "SSV:60070"]}, {"type": "slackware", "idList": ["SSA-2010-240-06"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2011:0902-1", "SUSE-SA:2009:038", "SUSE-SA:2009:064", "SUSE-SA:2010:031", "SUSE-SA:2010:035", "SUSE-SA:2010:052", "SUSE-SA:2010:060", "SUSE-SA:2011:007", "SUSE-SA:2011:015", "SUSE-SA:2011:040"]}, {"type": "ubuntu", "idList": ["USN-1071-1", "USN-1074-1", "USN-1086-1", "USN-1133-1", "USN-1188-1", "USN-1236-1", "USN-1292-1", "USN-1345-1", "USN-1405-1", "USN-1446-1"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2007-4567", "UB:CVE-2009-2692", "UB:CVE-2009-2848", "UB:CVE-2009-2908", "UB:CVE-2009-4308", "UB:CVE-2009-4536", "UB:CVE-2009-4538", "UB:CVE-2010-0437", "UB:CVE-2010-1084", "UB:CVE-2010-2226", "UB:CVE-2010-2240", "UB:CVE-2010-4080", "UB:CVE-2011-1163", "UB:CVE-2011-2022", "UB:CVE-2011-3191", "UB:CVE-2011-4324"]}, {"type": "vmware", "idList": ["VMSA-2010-0016.1", "VMSA-2012-0001", "VMSA-2012-0006"]}, {"type": "zdt", "idList": ["1337DAY-ID-26409"]}]}, "exploitation": null, "epss": [{"cve": "CVE-2006-6304", "epss": "0.010720000", "percentile": "0.819870000", "modified": "2023-03-13"}, {"cve": "CVE-2007-4567", "epss": "0.076510000", "percentile": "0.930930000", "modified": "2023-03-13"}, {"cve": "CVE-2009-0745", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-0746", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2009-0747", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-0748", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-1388", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-1389", "epss": "0.126830000", "percentile": "0.945390000", "modified": "2023-03-13"}, {"cve": "CVE-2009-1895", "epss": "0.000620000", "percentile": "0.243650000", "modified": "2023-03-13"}, {"cve": "CVE-2009-2406", "epss": "0.000440000", "percentile": "0.082990000", "modified": "2023-03-13"}, {"cve": "CVE-2009-2407", "epss": "0.000440000", "percentile": "0.082990000", "modified": "2023-03-13"}, {"cve": "CVE-2009-2692", "epss": "0.000580000", "percentile": "0.220290000", "modified": "2023-03-13"}, {"cve": "CVE-2009-2847", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2009-2848", "epss": "0.000520000", "percentile": "0.181060000", "modified": "2023-03-13"}, {"cve": "CVE-2009-2908", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-3080", "epss": "0.000520000", "percentile": "0.185360000", "modified": "2023-03-13"}, {"cve": "CVE-2009-3286", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-3547", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2009-3612", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-3620", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-3621", "epss": "0.000450000", "percentile": "0.123140000", "modified": "2023-03-13"}, {"cve": "CVE-2009-3726", "epss": "0.002990000", "percentile": "0.646650000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4020", "epss": "0.082760000", "percentile": "0.933270000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4021", "epss": "0.000640000", "percentile": "0.261570000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4067", "epss": "0.002940000", "percentile": "0.643460000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4138", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4141", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4307", "epss": "0.025140000", "percentile": "0.884610000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4308", "epss": "0.045040000", "percentile": "0.911790000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4536", "epss": "0.017720000", "percentile": "0.860920000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4537", "epss": "0.054750000", "percentile": "0.919850000", "modified": "2023-03-13"}, {"cve": "CVE-2009-4538", "epss": "0.005560000", "percentile": "0.741390000", "modified": "2023-03-13"}, {"cve": "CVE-2010-0007", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-0415", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2010-0437", "epss": "0.040520000", "percentile": "0.907300000", "modified": "2023-03-13"}, {"cve": "CVE-2010-0622", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-0727", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1083", "epss": "0.000620000", "percentile": "0.241930000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1084", "epss": "0.047570000", "percentile": "0.914050000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1086", "epss": "0.004520000", "percentile": "0.711920000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1087", "epss": "0.005900000", "percentile": "0.749460000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1088", "epss": "0.003300000", "percentile": "0.664050000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1173", "epss": "0.869480000", "percentile": "0.979990000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1188", "epss": "0.048480000", "percentile": "0.914790000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1436", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1437", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2010-1641", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-2226", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-2240", "epss": "0.001610000", "percentile": "0.509350000", "modified": "2023-03-13"}, {"cve": "CVE-2010-2248", "epss": "0.232100000", "percentile": "0.957690000", "modified": "2023-03-13"}, {"cve": "CVE-2010-2521", "epss": "0.152010000", "percentile": "0.949320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-2798", "epss": "0.000470000", "percentile": "0.143960000", "modified": "2023-03-13"}, {"cve": "CVE-2010-2942", "epss": "0.000520000", "percentile": "0.181060000", "modified": "2023-03-13"}, {"cve": "CVE-2010-2963", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3067", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3078", "epss": "0.000520000", "percentile": "0.181060000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3086", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3296", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3432", "epss": "0.017130000", "percentile": "0.858720000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3442", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3477", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3858", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3859", "epss": "0.000440000", "percentile": "0.082990000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3876", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-3877", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4073", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4080", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4081", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4083", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4157", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4158", "epss": "0.000440000", "percentile": "0.084470000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4242", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4248", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4249", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4258", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4346", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4649", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2010-4655", "epss": "0.000520000", "percentile": "0.181060000", "modified": "2023-03-13"}, {"cve": "CVE-2011-0521", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-0726", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1010", "epss": "0.000460000", "percentile": "0.127860000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1020", "epss": "0.000440000", "percentile": "0.084470000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1044", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1078", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1079", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1080", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1083", "epss": "0.000420000", "percentile": "0.004990000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1090", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1093", "epss": "0.027100000", "percentile": "0.888400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1160", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1162", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1163", "epss": "0.000440000", "percentile": "0.082320000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1182", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1573", "epss": "0.009600000", "percentile": "0.809060000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1577", "epss": "0.003520000", "percentile": "0.674400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1585", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1745", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1746", "epss": "0.000420000", "percentile": "0.056740000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1776", "epss": "0.002250000", "percentile": "0.589190000", "modified": "2023-03-13"}, {"cve": "CVE-2011-1833", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2022", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2203", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2213", "epss": "0.000440000", "percentile": "0.083650000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2482", "epss": "0.009550000", "percentile": "0.808620000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2484", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2491", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2496", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-2525", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-3191", "epss": "0.001910000", "percentile": "0.549120000", "modified": "2023-03-13"}, {"cve": "CVE-2011-3637", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-3638", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-4077", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-4086", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-4110", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-4127", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-4324", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-4330", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}, {"cve": "CVE-2011-4348", "epss": "0.012820000", "percentile": "0.836480000", "modified": "2023-03-13"}, {"cve": "CVE-2012-1583", "epss": "0.064730000", "percentile": "0.925700000", "modified": "2023-03-13"}, {"cve": "CVE-2012-2136", "epss": "0.000420000", "percentile": "0.056400000", "modified": "2023-03-13"}], "vulnersScore": 1.4}, "_state": {"dependencies": 1701964665, "score": 1701965246, "epss": 0}, "_internal": {"score_hash": "14945dfa755e9ddfd65f3d16a9062b57"}, "pluginID": "79507", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from OracleVM\n# Security Advisory OVMSA-2013-0039.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(79507);\n script_version(\"1.27\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/04\");\n\n script_cve_id(\"CVE-2006-6304\", \"CVE-2007-4567\", \"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\", \"CVE-2009-1388\", \"CVE-2009-1389\", \"CVE-2009-1895\", \"CVE-2009-2406\", \"CVE-2009-2407\", \"CVE-2009-2692\", \"CVE-2009-2847\", \"CVE-2009-2848\", \"CVE-2009-2908\", \"CVE-2009-3080\", \"CVE-2009-3286\", \"CVE-2009-3547\", \"CVE-2009-3612\", \"CVE-2009-3620\", \"CVE-2009-3621\", \"CVE-2009-3726\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4067\", \"CVE-2009-4138\", \"CVE-2009-4141\", \"CVE-2009-4307\", \"CVE-2009-4308\", \"CVE-2009-4536\", \"CVE-2009-4537\", \"CVE-2009-4538\", \"CVE-2010-0007\", \"CVE-2010-0415\", \"CVE-2010-0437\", \"CVE-2010-0622\", \"CVE-2010-0727\", \"CVE-2010-1083\", \"CVE-2010-1084\", \"CVE-2010-1086\", \"CVE-2010-1087\", \"CVE-2010-1088\", \"CVE-2010-1173\", \"CVE-2010-1188\", \"CVE-2010-1436\", \"CVE-2010-1437\", \"CVE-2010-1641\", \"CVE-2010-2226\", \"CVE-2010-2240\", \"CVE-2010-2248\", \"CVE-2010-2521\", \"CVE-2010-2798\", \"CVE-2010-2942\", \"CVE-2010-2963\", \"CVE-2010-3067\", \"CVE-2010-3078\", \"CVE-2010-3086\", \"CVE-2010-3296\", \"CVE-2010-3432\", \"CVE-2010-3442\", \"CVE-2010-3477\", \"CVE-2010-3858\", \"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-3877\", \"CVE-2010-4073\", \"CVE-2010-4080\", \"CVE-2010-4081\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4248\", \"CVE-2010-4249\", \"CVE-2010-4258\", \"CVE-2010-4346\", \"CVE-2010-4649\", \"CVE-2010-4655\", \"CVE-2011-0521\", \"CVE-2011-0726\", \"CVE-2011-1010\", \"CVE-2011-1020\", \"CVE-2011-1044\", \"CVE-2011-1078\", \"CVE-2011-1079\", \"CVE-2011-1080\", \"CVE-2011-1083\", \"CVE-2011-1090\", \"CVE-2011-1093\", \"CVE-2011-1160\", \"CVE-2011-1162\", \"CVE-2011-1163\", \"CVE-2011-1182\", \"CVE-2011-1573\", \"CVE-2011-1577\", \"CVE-2011-1585\", \"CVE-2011-1745\", \"CVE-2011-1746\", \"CVE-2011-1776\", \"CVE-2011-1833\", \"CVE-2011-2022\", \"CVE-2011-2203\", \"CVE-2011-2213\", \"CVE-2011-2482\", \"CVE-2011-2484\", \"CVE-2011-2491\", \"CVE-2011-2496\", \"CVE-2011-2525\", \"CVE-2011-3191\", \"CVE-2011-3637\", \"CVE-2011-3638\", \"CVE-2011-4077\", \"CVE-2011-4086\", \"CVE-2011-4110\", \"CVE-2011-4127\", \"CVE-2011-4324\", \"CVE-2011-4330\", \"CVE-2011-4348\", \"CVE-2012-1583\", \"CVE-2012-2136\");\n script_bugtraq_id(35281, 35647, 35850, 35851, 35930, 36038, 36472, 36639, 36723, 36824, 36827, 36901, 36936, 37068, 37069, 37339, 37519, 37521, 37523, 37762, 37806, 38144, 38165, 38185, 38479, 38898, 39016, 39042, 39044, 39101, 39569, 39715, 39719, 39794, 40356, 40920, 42124, 42242, 42249, 42505, 42529, 43022, 43221, 43353, 43480, 43787, 43809, 44242, 44301, 44354, 44630, 44648, 44754, 44758, 45014, 45028, 45037, 45058, 45063, 45073, 45159, 45323, 45972, 45986, 46073, 46488, 46492, 46567, 46616, 46630, 46766, 46793, 46866, 46878, 47003, 47308, 47321, 47343, 47381, 47534, 47535, 47791, 47796, 47843, 48236, 48333, 48383, 48641, 48687, 49108, 49141, 49295, 49373, 50322, 50370, 50750, 50755, 50764, 50798, 51176, 51361, 51363, 51945, 53139, 53721);\n\n script_name(english:\"OracleVM 2.2 : kernel (OVMSA-2013-0039)\");\n script_summary(english:\"Checks the RPM output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\"The remote OracleVM host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"The remote OracleVM system is missing necessary patches to address\ncritical security updates : please see Oracle VM Security Advisory\nOVMSA-2013-0039 for details.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/oraclevm-errata/2013-May/000153.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'Linux Kernel Sendpage Local Privilege Escalation');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(16, 20, 119, 189, 200, 264, 362, 399);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-PAE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-PAE-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-ovs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:vm:kernel-ovs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:vm_server:2.2\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/12/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/05/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/26\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"OracleVM Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleVM/release\", \"Host/OracleVM/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/OracleVM/release\");\nif (isnull(release) || \"OVS\" >!< release) audit(AUDIT_OS_NOT, \"OracleVM\");\nif (! preg(pattern:\"^OVS\" + \"2\\.2\" + \"(\\.[0-9]|$)\", string:release)) audit(AUDIT_OS_NOT, \"OracleVM 2.2\", \"OracleVM \" + release);\nif (!get_kb_item(\"Host/OracleVM/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"OracleVM\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-PAE-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-PAE-devel-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-devel-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-ovs-2.6.18-128.2.1.5.10.el5\")) flag++;\nif (rpm_check(release:\"OVS2.2\", reference:\"kernel-ovs-devel-2.6.18-128.2.1.5.10.el5\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel / kernel-PAE / kernel-PAE-devel / kernel-devel / kernel-ovs / etc\");\n}\n", "naslFamily": "OracleVM Local Security Checks", "cpe": ["p-cpe:/a:oracle:vm:kernel", "p-cpe:/a:oracle:vm:kernel-pae", "p-cpe:/a:oracle:vm:kernel-pae-devel", "p-cpe:/a:oracle:vm:kernel-devel", "p-cpe:/a:oracle:vm:kernel-ovs", "p-cpe:/a:oracle:vm:kernel-ovs-devel", "cpe:/o:oracle:vm_server:2.2"], "solution": "Update the affected packages.", "nessusSeverity": "Critical", "cvssScoreSource": "", "vendor_cvss2": {"score": 10, "vector": "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "vendor_cvss3": {"score": 8.8, "vector": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2013-05-23T00:00:00", "vulnerabilityPublicationDate": "2006-12-14T00:00:00", "exploitableWith": ["Core Impact", "CANVAS(CANVAS)", "Metasploit(Linux Kernel Sendpage Local Privilege Escalation)"]}
{"oraclelinux": [{"lastseen": "2019-05-29T18:38:21", "description": "[2.6.9-100]\n-cxgb3: prevent reading uninitialized stack memory to fix xgb_extension_ioctl infoleak (Eugene Teo) [633153] {CVE-2010-3296}\n-mlx4: disable MSI-X by default (Andy Gospodarek) [530596]\n-ext3: call fs invalidatepage instead of block_invalidatepage (Josef Bacik) [488611]\n-av7110: check for negative array offset (Mauro Carvalho Chehab) [672400] {CVE-2011-0521}\n-ext3: don not dirty unmapped data buffers (Josef Bacik) [488611]\n-net: clear heap allocations for privileged ethtool actions (Jiri Pirko) [672431] {CVE-2010-4655}\n[2.6.9-99]\n-bonding: fix active backup failover due to jiffie wrap (Andy Gospodarek) [641112]\n[2.6.9-98]\n-sound: fix a buffer overflow in the oss mixer (David Howells) [667619] {CVE-2010-4527}\n[2.6.9-97]\n-fs: fix filesystem corruption on ext2 (Alexander Viro) [662839]\n-sky2: fix oops in sky2_xmit_frame after tx timeout (Don Howard) [614559]\n-netdump: fix netdump failures on large memory systems (Neil Horman) [488557]\n[2.6.9-96]\n-usb: ehci amd periodic frame list table quirk (Don Zickus) [651334]\n-fs: truncate blocks outside i_size after O_DIRECT write error (Eric Sandeen) [665067]\n[2.6.9-95]\n-jbd: skip buffers that have a different jh (Josef Bacik) [488611]\n-unix: fix local socket dos (Neil Horman) [656758] {CVE-2010-4249}\n-s390x: qdio: fix zfcp stall with more than 63 active qdio devices (Hendrik Brueckner) [662130]\n-ehci-hcd: fix fatal error during bootup (Don Zickus) [656447]\n[2.6.9-94]\n-modules: sysctl to block module loading (Jerome Marchand) [645220]\n-redhat: added config_security_dmesg_restrict option (Frantisek Hrbata) [653252]\n-kernel: restrict unprivileged access to kernel syslog (Frantisek Hrbata) [653252]\n-sysctl: introduce ctl_unnumbered definition in sysctl.h (Frantisek Hrbata) [653252]\n-usb: allow usbstorage to have luns greater than 2TB (Don Zickus) [658824]\n-serial: clean data before filling it (Mauro Carvalho Chehab) [648809] {CVE-2010-4075}\n-sched: fix task starvation on Hyperthreaded cpus (Vitaly Mayatskikh) [488089]\n-s390: sclp: handle zero length event buffers (Hans-Joachim Picht) [487692]\n[2.6.9-93]\n-kernel: failure to revert address limit override in oops error path (Dave Anderson) [659569] {CVE-2010-4258}\n-nfsv4: fix oops in nfs4_kill_super (Jeff Layton) [660448]\n-net: filter: make sure filters dont read uninitialized memory (Jiri Pirko) [651701] {CVE-2010-4158}\n-net: limit sendto()/recvfrom()/iovec total length to INT_MAX (Jiri Pirko) [651924] {CVE-2010-3859}\n-bluetooth: fix missing null check (Jarod Wilson) [655663] {CVE-2010-4242}\n-ipc: initialize structure memory to zero for compat functions (Xiaotian Feng) [648811] {CVE-2010-4073}\n-ipc: shm: fix information leak to userland (Xiaotian Feng) [648817] {CVE-2010-4072}\n-netfront: default to copying instead of flipping (Laszlo Ersek) [653505]\n-net: packet: fix information leak to userland (Jiri Pirko) [649896] {CVE-2010-3876}\n-scsi: gdth: integer overflow in ioc_general (Frantisek Hrbata) [651174] {CVE-2010-4157}\n-sys_semctl: semctl fix kernel stack leakage (Xiaotian Feng) [648794] {CVE-2010-4083}\n-alsa: rme9652: prevent reading uninitialized stack memory (Stanislaw Gruszka) [648807] {CVE-2010-4080}\n-fs: only return EIO once on msync/fsync after IO failure (Rik van Riel) [645633]\n-xen: virtio_net: add get_drvinfo() to virtio_net (Laszlo Ersek) [647196]\n-xen: netfront: add get_drvinfo() to netfront (Laszlo Ersek) [647187]\n-kernel: fix possible integer overflow in mm/fremap.c (Larry Woodman) [637045]\n[2.6.9-92]\n-mm: revert patch to reduce large file latency during writebacks (Larry Woodman) [488070]\n[2.6.9-91]\n-mm: prevent panic when setting /proc/sys/vm/nr_hugepages (Larry Woodman) [647567]\n-net: sctp: do not reset the packet during sctp_packet_config() (Jiri Pirko) [637865] {CVE-2010-3432}\n-scsi: fix panic in sysfs_hash_and_remove() when scsi device is removed (Mark Goodwin) [533299]\n[2.6.9-90]\n-kernel: prevent heap corruption in snd_ctl_new() (Jerome Marchand) [638482] {CVE-2010-3442}\n-forcedeth: latest bugfixes from upstream (Ivan Vecera) [552953]\n-forcedeth: remove CONFIG_FORCEDETH_NAPI=y from config-generic (Ivan Vecera) [552953]\n[2.6.9-89.45]\n-scsi: scsi_do_req submitted commands (tape) never complete when device goes (Rob Evers) [636289]\n-scsi: log msg when getting unit attention (Mike Christie) [585430]\n-jbd: fix panic in jbd when running bashmemory (Josef Bacik) [488611]\n-qla2xxx: work around hypertransport sync flood error on sun x4200 with qla2xxx (Chad Dupuis) [621621]\n-aio: implement request batching for better merging and throughput (Jeff Moyer) [508377]\n-fs: a bunch of patches to fix various nfsd/iget() races (Alexander Viro) [189918]\n-net: bonding: add debug module option (Jiri Pirko) [247116]\n-fix fd leaks if pipe() is called with an invalid address (Amerigo Wang) [509627]\n[2.6.9-89.44]\n-ide-scsi: fix deadlock in ide-scsi error handler (Doug Ledford) [526966]\n-mlx4_core: allocate sufficient memory for interrupt table (Doug Ledford) [530596]\n-mptbase: panic with domain validation while rebuilding after the disk is replaced (Rob Evers) [476874]\n-fs: buffer: __block_write_full_page simplification by removing last_bh logic (Jeff Moyer) [472752]\n-fs: buffer: __block_write_full_page speedup by removing get_bh() and put_bh() (Jeff Moyer) [472752]\n-fs: buffer: __block_write_full_page race fix (Jeff Moyer) [472752]\n-kernel: fix integer overflow in groups_search (Jerome Marchand) [457519]\n-cifs: remove bogus check in ntlm session setup code (Jeff Layton) [604786]\n-cifs: when renaming don not try to unlink negative dentry (Jeff Layton) [500904]\n-autofs4: fix lookup deadlock when user space uses a signal (Ian Kent) [477017]\n-fs: make sure data stored into inode is properly seen before unlocking new inode (Eric Sandeen) [563920]\n-ipc: hard_msgmax should be higher not lower on 64bit (Amerigo Wang) [525815]\n-fs: fix file truncations when both suid and write permissions set (Amerigo Wang) [525398]\n-block: fix rcu accesses in partition statistics (Jerome Marchand) [517523]\n-kernel headers: fix missing defintion that causes build break (Neil Horman) [504593]\n[2.6.9-89.43]\n-aacraid: fix file system going into read only mode (Rob Evers) [624713]\n-blkfront: xen domu, raid1, lvm, iscsi target export with blockio bug (Paolo Bonzini) [490148]\n-cciss: change version from 2.6.20.RH2 to 2.6.20.RH3 (Tomas Henzl) [594086]\n-cciss: added printk in do_cciss_request before BUG() (Tomas Henzl) [594086]\n-cciss: fix a nulll pointer dereference in complete_command() (Tomas Henzl) [594086]\n-cciss: fix an issue when sending command with no data (Tomas Henzl) [594086]\n-mm: honor __GFP_NOFAIL flag in __alloc_pages() (Lachlan McIlroy) [605455]\n-xen: fix crashing of x86 hvm guest on x86_64 (Radim Krcmar) [637658]\n-xen: hide xenbus warnings on hvm guest shutdown (Radim Krcmar) [505081]\n-powernow-k8: fix errant print statement during voltage transitions (Bhavna Sarathy) [217829]\n-fusion: add sleep before subsequent tur in scan function (Tomas Henzl) [495236]\n-bonding: fix a race condition in calls to slave mii ioctls (Flavio Leitner) [621209]\n-s390x: cio: vary off on chpid 00 causes unexpected recovery actions (Hendrik Brueckner) [619855]\n-netfilter: arp_tables: fix unaligned accesses caused by casting strings to long (Jiri Pirko) [591638]\n-net: neigh: fix state transition incomplete->failed via netlink request (Jiri Pirko) [485904]\n-x86_64: floating point state corruption after handling the signal (Oleg Nesterov) [564381]\n-pidhashing: enforce pid_max_limit in sysctls and lower pid_max_limit on 32bit systems (Jiri Pirko) [525941]\n-s390: cio: linux does not boot through xautolog with conmode 3270 (Hans-Joachim Picht) [526282]\n-net: fix proc net ip_conntrack seq_file operations (Danny Feng) [524884]\n-ia64: swiotlb: fix swiotlb pci_map_sg error handling (Tomas Henzl) [525427]\n-xen: try harder to balloon up under memory pressure (Andrew Jones) [507847]\n-mm: fix bogus memory node assumption in huge page allocation (AMEET M. PARANJAPE) [506827]\n-kernel: binfmt_misc c: avoid potential kernel stack overflow (Vitaly Mayatskikh) [459466]\n-net: fix ipvs wrr scheduler bug of updating current weight (Vitaly Mayatskikh) [462717]\n[2.6.9-89.42]\n-net: actually copy input_dev to new sk_buff in skb_clone (Andy Gospodarek) [616710]\n-net: fix reception of completely page backed sk_buffs (Andy Gospodarek) [500921]\n-net: fix various snmp counter issues (Thomas Graf) [500889]\n-xen: can enter tickless mode with rcu pending and hang (Paolo Bonzini) [427998]\n-xen: fix occasional deadlocks in xen netfront (Paolo Bonzini) [480937]\n-xen: xenbus suspend_mutex remains locked on trans fail (Paolo Bonzini) [456649]\n-ext2: put explicit checks to not divide by zero (Josef Bacik) [500181]\n-usb: ehci split iso fixes, full speed audio etc (Don Zickus) [624117]\n-xenbus: implement O_NONBLOCK for /proc/xen/xenbus (Paolo Bonzini) [607261]\n-nfs: initialize nfs_open_context list member at allocation time (Jeff Layton) [634632]\n-cifs: fix dentry hash calculation for case insensitive mounts (Jeff Layton) [562949]\n-cifs: fix length calculation for converted unicode readdir names (Jeff Layton) [562949]\n[2.6.9-89.41]\n-bonding: fix ALB mode to balance traffic on vlans (Flavio Leitner) [640803]\n[2.6.9-89.40]\n-bonding: interface doesn t issue igmp report on slave interface during failover (Flavio Leitner) [637556]\n[2.6.9-89.39]\n-net: fix info leak in police code (Neil Horman) [636390] {CVE-2010-3477}\n-aio: check for multiplication overflow in io_submit (Jeff Moyer) [629447] {CVE-2010-3067}\n-fs: buffer.c: fix race in __block_prepare_write (Jeff Moyer) [480404]\n-3c59x: fix deadlock in irq handler tx path when netconsole in use (Neil Horman) [557380]\n-udp: use memory barrier in datagram_poll (Flavio Leitner) [546251]\n[2.6.9-89.38]\n-compat: make compat_alloc_user_space incorporate the access_ok (Xiaotian Feng) [634462] {CVE-2010-3081}\n-ext3: ensure inode is deleted from orphan list in ext3_direct_io() (Lachlan McIlroy) [629143]\n-sb800: add quirk for iso on amd sb800 (Pete Zaitcev) [537447]\n[2.6.9-89.37]\n-virtio_net: Fix MAX_PACKET_LEN to support 802.1Q VLANs (Michael S. Tsirkin) [607533]\n-do_generic_mapping_read: clear page errors when issuing a fresh read of the page (Rik van Riel) [481371]\n-ide: backport VIA PCI chipset ids to via82cxxx driver (Mauro Carvalho Chehab) [504778]\n-nfsd4: relax new lock seqid check (Jeff Layton) [577369]\n-igb: fix transmission of jumbo frames with mtu>=2100 (Stefan Assmann) [494597]\n-net: fix tcp conntrack to handle the half opened connection correctly (Jiri Pirko) [531914]\n-net: fix promisc refcounting for interfaces listening for multicast traffic (Neil Horman) [481292]\n-sctp: assign tsns earlier to avoid reordering (Neil Horman) [532045]\n-cciss: switch to using hlist to fix panic (Tomas Henzl) [479090]\n-nfs: statfs error handling and error message fix (Jeff Layton) [520018]\n-kthreads: fix kthread_create vs kthread_stop race (Oleg Nesterov) [519006]\n[2.6.9-89.36]\n-nfsd4: fix share conflict tests in nfs_check_open() (Jeff Layton) [510184]\n-nfsd4: move open owner checks from nfsd4_process_open2 into new function (Jeff Layton) [510184]\n-nfsd4: renew lease on seqid modifying operations (Jeff Layton) [508752]\n-ahci: add SATA GEN3 related messages (David Milburn) [512715]\n-igmp: fix ip_mc_sf_allow() race due to a lock problem (Flavio Leitner) [562904]\n-xen: don not recreate xenfb thread on every restore (Chris Lalancette) [543823]\n-bcm5709: update firmware for bcm5709 from version 4.4.23 to 4.6.15 (John Feeney) [532858]\n-net: apply broken_stats workaround to 5706 and 5708 (Flavio Leitner) [515274]\n-nfsd: fix races when cleaning up after last nfsd thread exits (Jeff Layton) [501500]\n-nfs: nfsd returns nfs4_ok when the owner opens a file with permission set to 000 (Peter Staubach) [507527]\n-nfsv4: send the delegation stateid for setattr calls (Jeff Layton) [502884]\n-nfsv4: fix up races in nfs4_proc_setattr (Jeff Layton) [502884]\n-nfsv4: don t reuse expired nfs4_state_owner structs (Jeff Layton) [502884]\n-nfsv4: fix a credential reference leak in nfs4_get_state_owner (Jeff Layton) [502884]\n-nfsv4: poll more aggressively when handling nfs4err_delay (Jeff Layton) [502884]\n-nfsv4: flush nfsv4 work workqueue before killing superblock (Jeff Layton) [501335]\n-nfsv4: only queue nfs4_close_state job when called by rpciod (Jeff Layton) [501335]\n-nfsv4: switch nfs4 workqueue to a per client queue (Jeff Layton) [501335]\n-nfs: mounted nfsv4/krb5 export inaccessible following an nfs server reboot (Harshula) [514684] ", "cvss3": {}, "published": "2011-02-23T00:00:00", "type": "oraclelinux", "title": "Oracle Linux 4.9 kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2011-0521", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4527", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-3477", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-3296", "CVE-2010-4258", "CVE-2010-3442", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-3081", "CVE-2010-3067", "CVE-2010-3432", "CVE-2010-4075", "CVE-2010-4655"], "modified": "2011-02-23T00:00:00", "id": "ELSA-2011-0263", "href": "http://linux.oracle.com/errata/ELSA-2011-0263.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:34:24", "description": "[2.6.9-89.35.1.0.1.EL]\n- [XEN] fix cpu hotplug crash (Joe Jin) [orabug 7521308]\n- [XEN] Bring up vcpus before khelper init (Joe Jin) [orabug 7521308]\n- [XEN] flush the tlb cache immediately (Dave McCracken, Scott Shi) [orabug 9138767]\n- fix skb alignment that was causing sendto() to fail with EFAULT\n (Olaf Kirch) [orabug 6845794] - fix enomem due to larger mtu size page alloc (Zach Brown) [orabug 5486128]\n- backout patch sysrq-b that queues upto keventd thread (Guru Anbalagane)\n [orabug 6125546]\n- netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]\n- [XEN] Fix elf_core_dump (Tina Yang) [orabug 6995928]\n- use lfence instead of cpuid instruction to implement memory barriers\n (Herbert van den Bergh) [orabug 7452412]\n- add netpoll support to xen netfront (Tina Yang) [orabz 7261]\n- [xen] execshield: fix endless GPF fault loop (Stephen Tweedie)\n [orabug 7175395]\n- [xen]: port el5u2 patch that allows 64-bit PVHVM guest to boot with 32-bit\n dom0 [orabug 7452107] xenstore\n- [mm] update shrink_zone patch to allow 100% swap utilization (John Sobecki,\n Chris Mason, Chuck Anderson, Dave McCracken) [orabug 7566319,6086839]\n- [kernel] backport report_lost_ticks patch from EL5.2 (John Sobecki)\n [orabug 6110605]\n- [xen] fix for hung JVM thread after #GPF [orabug 7916406] (Chuck Anderson)\n- port EL5U3 patch to adjust totalhigh_pages in the balloon driver\n [orabug 8300888]\n- check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug7556514]\n- [XEN] use hypercall to fixmap pte updates (Mukesh Rathor) [orabug 8433329]\n- fix oops in nlmclnt_mark_reclaim (Trond Myklebust) [orabug 8568878]\n- [x86_64] Allowed machine_reboot running on boot_cpu (Joe Jin) [orabug 8425237]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n- [x86_64]: fix x86_64 largesmp kernel reboot hang (Joe Jin) [orabug bug9126592]\n- [nfs]: fix file attribute caching (Chuck Lever, Herbert van den Bergh)\n [orabug 8449921]\n- [mm] revert patch #2042 (John Sobecki) [orabug 8895251]\n- [x86_64] Add compat32 support for readahead and fadvise64 (John Haxby)\n [orabug 9458826]\n- [XEN] free pte on hugetlb_prefault to avoid the clear_page race\n (Dave McCracken, Joe Jin) [orabug 9493665]\n- [XEN] Flush tlb cache immediately to avoid clear_page race (Dave McCracken,\n Joe Jin) [orabug 9488844]\n- [aio] remove limit on number of retries (Srinivas Eeda) [orabug 10044782]\n[2.6.9-89.35.1]\n-unix: fix local socket dos (Neil Horman) [656757 656758] {CVE-2010-4249}\n-serial: clean data before filling it (Mauro Carvalho Chehab) [648808 648809]\n-net: fix reception of completely page backed sk_buffs (Andy Gospodarek) [664667 500921]\n-net: filter: make sure filters dont read uninitialized memory (Jiri Pirko) [651700 651701] {CVE-2010-4158}\n[2.6.9-89.34.1]\n-alsa: rme9652: prevent reading uninitialized stack memory (Stanislaw Gruszka) [648806 648807] {CVE-2010-4080}\n-bluetooth: fix missing null check (Jarod Wilson) [655662 655663] {CVE-2010-4242}\n-ipc: initialize structure memory to zero for compat functions (Xiaotian Feng) [648810 648811] {CVE-2010-4073}\n-ipc: shm: fix information leak to userland (Xiaotian Feng) [648816 648817] {CVE-2010-4072}\n-kernel: failure to revert address limit override in oops error path (Dave Anderson) [659568 659569] {CVE-2010-4258}\n-net: limit sendto()/recvfrom()/iovec total length to INT_MAX (Jiri Pirko) [656871 651924] {CVE-2010-3859}\n-net: packet: fix information leak to userland (Jiri Pirko) [649895 649896] {CVE-2010-3876}\n-scsi: gdth: integer overflow in ioc_general (Frantisek Hrbata) [651173 651174] {CVE-2010-4157}\n-sys_semctl: semctl fix kernel stack leakage (Xiaotian Feng) [648793 648794] {CVE-2010-4083}", "cvss3": {}, "published": "2011-01-18T00:00:00", "type": "oraclelinux", "title": "kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-4258", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-4075"], "modified": "2011-01-18T00:00:00", "id": "ELSA-2011-0162", "href": "http://linux.oracle.com/errata/ELSA-2011-0162.html", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:34:33", "description": "[2.6.18-238.el5]\n- [net] bnx2: remove extra call to pci_map_page (John Feeney) [663509]\n- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [663853]\n[2.6.18-237.el5]\n- [block] fully zeroize request struct in rq_init (Rob Evers) [662154]\n- [scsi] qla4xxx: update to 5.02.04.02.05.06-d0 (Chad Dupuis) [656999]\n- [scsi] qla4xxx: make get_sys_info function return void (Chad Dupuis) [656999]\n- [scsi] qla4xxx: dont default device to FAILED state (Chad Dupuis) [656999]\n- [scsi] qla4xxx: mask bits in F/W Options during init (Chad Dupuis) [656999]\n- [scsi] qla4xxx: update to 5.02.04.01.05.06-d0 (Chad Dupuis) [661768]\n- [scsi] qla4xxx: disable irq instead of req pci_slot_reset (Chad Dupuis) [661768]\n- [scsi] qla4xxx: no device add until scsi_add_host success (Chad Dupuis) [661768]\n- [fs] nfs: set lock_context field in nfs_writepage_sync (Jeff Layton) [660580]\n- [scsi] bfa: fix crash reading driver sysfs statistics (Rob Evers) [659880] {CVE-2010-4343}\n- [misc] cpufeature: avoid corrupting cpuid vendor id (Matthew Garrett) [568751]\n- [char] drm: dont set signal blocker on master process (Dave Airlie) [570604]\n- [fs] nfs: remove problematic calls to nfs_clear_request (Jeff Layton) [656492]\n- [fs] nfs: handle alloc failures in nfs_create_request (Jeff Layton) [656492]\n- [fs] nfs: clean up nfs_create_request (Jeff Layton) [656492]\n- [net] forcedeth: fix race condition in latest backport (Ivan Vecera) [658434]\n- [net] cxgb3: fix read of uninitialized stack memory (Jay Fenlason) [633155] {CVE-2010-3296}\n- [net] tg3: increase jumbo flag threshold (John Feeney) [660506]\n- [net] s2io: fix netdev initialization failure (Bob Picco) [654948]\n- [net] igb: only use vlan_gro_receive if vlans registered (Stefan Assmann) [660190] {CVE-2010-4263}\n- [net] ipv6: try all routers with unknown reachable state (Thomas Graf) [661393]\n- [misc] kernel: fix address limit override in OOPS path (Dave Anderson) [659571] {CVE-2010-4258}\n[2.6.18-236.el5]\n- [powerpc] support DLPAR remove operations (Steve Best) [655089]\n- [net] igb: fix tx packet count (Stefan Assmann) [658801]\n- [usb] serial: new driver MosChip MCS7840 (Stefan Assmann) [574507]\n- [fs] exec: copy fixes into compat_do_execve paths (Oleg Nesterov) [625694] {CVE-2010-4243}\n- [fs] exec: make argv/envp memory visible to oom-killer (Oleg Nesterov) [625694] {CVE-2010-4243}\n- [misc] binfmts: kill bprm->argv_len (Oleg Nesterov) [625694] {CVE-2010-4243}\n- [mm] backport upstream stack guard page /proc reporting (Larry Woodman) [643426]\n- [mm] add guard page for stacks that grow upwards (Johannes Weiner) [630563]\n- [net] tipc: fix information leak to userland (Jiri Pirko) [649892] {CVE-2010-3877}\n- [sound] ALSA: fix sysfs unload and OSS mixer mutex issues (Jaroslav Kysela) [652165]\n- [net] tg3: fix 5719 bugs (John Feeney) [657097]\n- [net] bnx2: update firmware to 6.0.x (John Feeney) [644438]\n- [redhat] configs: add CONFIG_SECURITY_DMESG_RESTRICT (Frantisek Hrbata) [653250]\n- [misc] kernel: restrict unprivileged access to dmesg (Frantisek Hrbata) [653250]\n- [virt] xen: dont allow blkback virtual CDROM device (Andrew Jones) [635638] {CVE-2010-4238}\n- Revert: [xen] cd-rom drive does not recognize new media (Andrew Jones) [635638] {CVE-2010-4238}\n- [net] qlge: fix deadlock when interface is going down (Chad Dupuis) [654420]\n- [net] qlge: reset chip before freeing buffers (Chad Dupuis) [654420]\n- [net] qlge: restore vlan setting during ql_adapter_up (Chad Dupuis) [654420]\n- [scsi] qla4xxx: Update version to V5.02.04.00.05.06-d0 (Chad Dupuis) [656999]\n- [scsi] qla4xxx: Document Driver Versioning Scheme (Chad Dupuis) [656999]\n- [scsi] qla4xxx: Updated the Copyright header to 2010 (Chad Dupuis) [656999]\n- [scsi] qla4xxx: dont process devices untill probe done (Chad Dupuis) [656999]\n- [scsi] qla4xxx: free DDB when application calls for it (Chad Dupuis) [656999]\n- [scsi] qla4xxx: memory wedge with peg_halt test in loop (Chad Dupuis) [656999]\n- [scsi] qla4xxx: clear AF_FW_RECOVERY flag after reset (Chad Dupuis) [656999]\n- [scsi] qla4xxx: fix new IP address caching (Chad Dupuis) [656999]\n- [scsi] qla4xxx: replace hard coded values with macros (Chad Dupuis) [656999]\n- [scsi] qla4xxx: mark dev FAILED on 82XX init failure (Chad Dupuis) [656999]\n- [scsi] qla4xxx: fail init if pci mem write fails (Chad Dupuis) [656999]\n- [scsi] qla4xxx: ensure proper qla4xxx_conn_start state (Chad Dupuis) [656999]\n- [scsi] qla4xxx: do not process interrupts unconditionally (Chad Dupuis) [656999]\n- [scsi] qla4xxx: fix add w/iscsi2_create_conn not done yet (Chad Dupuis) [656999]\n- [scsi] qla4xxx: no fw hung if reset retry is in progress (Chad Dupuis) [656999]\n- [scsi] qla4xxx: correct use of cmd->host_scribble (Chad Dupuis) [656999]\n- [scsi] qla4xxx: msi init request_irq parameter usage fix (Chad Dupuis) [656999]\n- [scsi] qla4xxx: cleanup qla4xxx_wait_for_hba_online (Chad Dupuis) [656999]\n- [scsi] qla4xxx: grab hardware_lock before accessing srb (Chad Dupuis) [656999]\n- [scsi] qla4xxx: remove unwanted check for bad spd (Chad Dupuis) [656999]\n- [scsi] qla4xxx: update AER support for ISP82XX (Chad Dupuis) [656999]\n- [scsi] qla4xxx: clear rom lock if firmware died holding (Chad Dupuis) [656999]\n- [scsi] qla4xxx: CRB Register for Request Queue in-pointer (Chad Dupuis) [656999]\n- [scsi] qla4xxx: dump mailbox registers on System Error (Chad Dupuis) [656999]\n- [scsi] qla4xxx: add support for 8130/8131 AENs (Chad Dupuis) [656999]\n- [scsi] qla4xxx: fix seconds_since_last_heartbeat reset (Chad Dupuis) [656999]\n- [scsi] qla4xxx: no wait for outstanding command complete (Chad Dupuis) [656999]\n- [scsi] qla4xxx: free_irqs on failed initialize_adapter (Chad Dupuis) [656999]\n- [virt] xen: fix netback hotplug regression in xenbus fix (Laszlo Ersek) [635999]\n- [xen] fix 64-bit PV guest user mode segv crashing host (Paolo Bonzini) [658354] {CVE-2010-4255}\n[2.6.18-235.el5]\n- [net] filter: fix backport error in prior filter fix (Jarod Wilson) [651703]\n[2.6.18-234.el5]\n- [s390] vmlogrdr: purge after recording is switched off (Hendrik Brueckner) [653479]\n- [wireless] ieee80211: fix deauthentication (Stanislaw Gruszka) [644367]\n- [wireless] zd1211rw: fix associate after disassociate (Stanislaw Gruszka) [644367]\n- [fs] proc: fix NULL ->i_fop oops (Steve Best) [655083]\n- [scsi] lpfc: Update version to 8.2.0.87.1p (Rob Evers) [655119]\n- [scsi] lpfc: set heartbeat timer off by default (Rob Evers) [655119]\n- [scsi] lpfc: fix NULL deref duing allocation failure (Rob Evers) [655119]\n- [scsi] lpfc: fix remote SLI4 firmware download data bug (Rob Evers) [655119]\n- [scsi] lpfc: fix FDMI_DID login failure after link bounce (Rob Evers) [655119]\n- [scsi] lpfc: handle CVL after nameserver PLOGI timeouts (Rob Evers) [655119]\n- [scsi] lpfc: cleanup mbox cmds in mboxq_cmpl if CVL rcvd (Rob Evers) [655119]\n- [misc] posix-cpu-timers: workaround for mt exec problems (Oleg Nesterov) [656266]\n- [fs] setup_arg_pages: diagnose excessive argument size (Oleg Nesterov) [645227]\n- [net] bnx2x: force interrupt mode for iscsi unset mac (Michal Schmidt) [655885]\n- [scsi] bnx2i: allow to abort connect if request times out (Mike Christie) [653991]\n- [scsi] bnx2i: fix remote TCP RST handling for 570X (1g) (Mike Christie) [653991]\n- [scsi] bnx2i: fix a cid leak issue for 5771X (10g) (Mike Christie) [653991]\n- [scsi] bnx2i: fix endian bug in TMF LUN cmd send (Mike Christie) [653991]\n- [misc] prevent divide by 0 in the kernel during boot (Larry Woodman) [508140]\n- [net] filter: make sure filters dont read uninit memory (Jiri Pirko) [651703] {CVE-2010-4158}\n- [net] inet_diag: make sure we run audited bytecode (Jiri Pirko) [651267]\n- [net] limit sendto/recvfrom/iovec total length to INT_MAX (Jiri Pirko) [645872] {CVE-2010-3859}\n- [bluetooth] hci_ldisc: fix missing NULL check (Jarod Wilson) [655666]\n- [net] be2net: avoid firmware update if interface not open (Ivan Vecera) [651948]\n- [ipc] shm: fix information leak to userland (Danny Feng) [648687] {CVE-2010-4072}\n- [ipc] initialize struct memory to 0 for compat functions (Danny Feng) [648693] {CVE-2010-4073}\n- [net] netxen: dont use reset_devices, it may go away (Chad Dupuis) [643254]\n- [net] netxen: fix kdump (Chad Dupuis) [643254]\n- [net] qlcnic: avoid reset_devices, it may become obsolete (Chad Dupuis) [656008]\n- [net] qlcnic: fix for kdump (Chad Dupuis) [656008]\n- [pci] block on access to temporarily unavailable device (Chad Dupuis) [656008]\n- [serial] serial_core: clean data before filling it (Mauro Carvalho Chehab) [648701] {CVE-2010-4075}\n- [edac] i7core_edac: return -ENODEV if dev already probed (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: properly terminate pci_dev_table (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: fix PCI refcounting on reloads (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: fix refcount error at PCI devices (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: safe to unregister mci when mci NULL (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: fix an oops at i7core probe (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: remove unused member in i7core_pvt (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: remove unused arg in get_dimm_config (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: reduce args of i7core_register_mci (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: use saved pointers (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: check probe counter in i7core_remove (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: call pci_dev_put on alloc failure (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: fix error path of i7core_register_mci (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: fix line order in i7core_register_mci (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: always do get/put for all devices (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: ensure edac pci handler release (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: introduce free_i7core_dev (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: introduce alloc_i7core_dev (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: reduce args of i7core_get_onedevice (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: fix the logic in i7core_remove (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: dont do legacy PCI probe by default (Mauro Carvalho Chehab) [651869]\n- [edac] edac_core: print debug messages at release calls (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: remove PCI devices from devices list (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: MCE NMI handling should stop first (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: improve debug register/remove errors (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: move #if PAGE_SHIFT to edac_core.h (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: terminate the group of udimm counters (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: mark const static vars as such (Mauro Carvalho Chehab) [651869]\n- [edac] i7core_edac: move static vars to the top of file (Mauro Carvalho Chehab) [651869]\n- [virt] xen: add bounds req-process loop in blkback/blktap (Laszlo Ersek) [654546] {CVE-2010-4247}\n- [virt] xen: dont leak dev refs on bad xenbus transitions (Laszlo Ersek) [635999] {CVE-2010-3699}\n- [mm] fix possible integer overflow in mm/fremap.c (Larry Woodman) [637047]\n- [misc] futex: replace LOCK_PREFIX in futex.h (Jiri Pirko) [633176] {CVE-2010-3086}\n[2.6.18-233.el5]\n- [scsi] mpt2sas: use sas device list for enclosure id (Tomas Henzl) [652284]\n- [scsi] ipr: fix mailbox register definition and add delay (Steve Best) [654446]\n- [scsi] ipr: fix lun assignment and comparison (Steve Best) [654446]\n- [powerpc] add AT_BASE_PLATFORM to Aux Vector and power7 (Steve Best) [652279]\n- [infiniband] ehea: use shca_list_lock spinlock (Steve Best) [613797]\n- [powerpc] kdump: CPUs assume context of oopsing CPU (Steve Best) [509792]\n- [scsi] lpfc: Update version for 8.2.0.87 driver release (Rob Evers) [649489]\n- [scsi] lpfc: add handling SLI4 unsolicted ELS RTV (Rob Evers) [649489]\n- [scsi] lpfc: add handling ECHO response support (Rob Evers) [649489]\n- [scsi] lpfc: add handling of SLI4 unsolicted ELS (Rob Evers) [649489]\n- [scsi] lpfc: fix locking for security mailbox commands (Rob Evers) [649489]\n- [scsi] lpfc: abort I/Os and wait on XRI in SLI4 unload (Rob Evers) [649489]\n- [scsi] lpfc: handle devloss timeout in FIP engine (Rob Evers) [649489]\n- [scsi] lpfc: fix crashes on NULL pnode dereference (Rob Evers) [649489]\n- [net] cnic: Add cnic_free_uio (Mike Christie) [651287]\n- [net] cnic: Add cnic_uio_dev struct (Mike Christie) [651287]\n- [net] cnic: Add cnic_free_uio (Mike Christie) [651287]\n- [net] cnic: Fine-tune ring init code (Mike Christie) [651287]\n- [misc] fix dirty_bytes sysctl name (Larry Woodman) [635782]\n- [fs] procfs: acquire inode mutex around llseek operation (Lachlan McIlroy) [644726]\n- [virt] netfront: default to copying instead of flipping (Laszlo Ersek) [653262]\n- [virt] netback: dont balloon up for copying receivers (Laszlo Ersek) [653501]\n- [net] rds: fix rds_iovec page count overflow (Jiri Pirko) [647422]\n- [net] virtio_net: add link status handling (Jason Wang) [649573]\n- [net] be2net: Update be2net to version 2.102.512r (Ivan Vecera) [647259]\n- [char] watchdog: another LPC Controller ID for Patsburg (David Milburn) [570868]\n- [misc] another LPC Controller ID for Intel Patsburg PCH (David Milburn) [570868]\n- [i2c] i2c-i801: Add Intel Patsburg device ID (David Milburn) [570868]\n- [misc] pci: update Intel Patsburg defines (David Milburn) [570868]\n- [misc] x86/PCI irq and pci_ids for Intel Patsburg Devices (David Milburn) [570868]\n- [sound] ALSA HD Audio for Intel Patsburg DeviceIDs (David Milburn) [570868]\n- [char] watchdog: TCO Watchdog for Intel Patsburg Devices (David Milburn) [570868]\n- [ata] ahci: AHCI and RAID mode for Intel Patsburg Devices (David Milburn) [570868]\n- [ata] ata_piix: IDE Mode SATA for Intel Patsburg Devices (David Milburn) [570868]\n- [net] fix deadlock in sock_queue_rcv_skb (Danny Feng) [652537]\n- [scsi] qla2xxx: check null fcport in _queuecommands (Chad Dupuis) [644863]\n- [net] qlcnic: Fix missing error codes (Chad Dupuis) [637194]\n- [usb] wacom: add support for Cintiq 21UX2 (Aristeu Rozanski) [652731]\n- [xen] hvm: add HVMOP_get_time hypercall (Paolo Bonzini) [638082]\n[2.6.18-232.el5]\n- [scsi] mpt2sas: use correct pci_resource_flag for compare (Tomas Henzl) [649885]\n- [sound] rme9652: prevent reading uninitialized stack mem (Stanislaw Gruszka) [648709 648714] {CVE-2010-4080 CVE-2010-4081}\n- [net] packet: fix information leak to userland (Jiri Pirko) [649898]\n- [ipc] sys_semctl: fix kernel stack leakage (Danny Feng) [648722] {CVE-2010-4083}\n- [misc] kernel: remove yield from stop_machine paths (Oleg Nesterov) [634454]\n- [fs] dlm: reduce cond_resched during send (David Teigland) [604139]\n- [fs] dlm: use TCP_NODELAY (David Teigland) [604139]\n- [fs] nfs: fix a referral error Oops (Steve Dickson) [556886]\n- [fs] gfs2: fix race in unlinked inode deallocation (Robert S Peterson) [643165]\n- [scsi] retry on DID_REQUEUE errors (Mike Christie) [627836]\n- [net] sctp: do not reset packet during sctp_packet_config (Jiri Pirko) [637867]\n- [net] bnx2: add AER support (John Feeney) [617024]\n- [net] bonding: no lock on copy/clear VLAN list on slave (Andy Gospodarek) [627974]\n- [scsi] gdth: prevent integer overflow in ioc_general (Frantisek Hrbata) [651176]\n[2.6.18-231.el5]\n- [scsi] scsi_dh_alua: remove IBM Power Virtual SCSI ALUA (Steve Best) [567292]\n- [fs] gfs2: flock (LOCK_EX|LOCK_NB) blocks (Robert S Peterson) [648602]\n- [scsi] lpfc: update version for 8.2.0.86 driver release (Rob Evers) [645881]\n- [scsi] lpfc: fix race sending FDISC to un-init VPI (Rob Evers) [645881]\n- [scsi] lpfc: fix mailbox handling for UNREG_RPI_ALL case (Rob Evers) [645881]\n- [kernel] add stop_machine barrier to fix lock contention (Prarit Bhargava) [634454]\n- [scsi] bnx2i: fix ip address formatting and oops (Mike Christie) [646708]\n- [scsi] be2iscsi: remove premature free of cid (Mike Christie) [640029]\n- [fs] proc: make proc pid limits world readable (Jiri Olsa) [611535]\n- [ide] atiixp: fix locking hang in ide layer ATIIXP driver (James Leddy) [586482]\n- [security] only check mmap_min_addr perms for write (Eric Paris) [623519]\n- [ata] sata_sil24: add DID for another adaptec flavor (David Milburn) [640586]\n- [s390] cio: prevent panic in I/O cancel function (Hendrik Brueckner) [647807]\n- [s390] cio: prevent panic after unexpected I/O interrupt (Hendrik Brueckner) [647502]\n[2.6.18-230.el5]\n- [fs] nfs: fix regression in NFS Direct I/O path (Steve Dickson) [647297]\n- [fs] nfs: allow different protocol mounts to same server (Steve Dickson) [460659]\n- [scsi] lpfc: update version for 8.2.0.85 driver release (Rob Evers) [639028]\n- [scsi] lpfc: fix a BUG_ON in lpfc_abort_handler (Rob Evers) [639028]\n- [scsi] lpfc: use pci reset function on driver unload (Rob Evers) [639028]\n- [scsi] lpfc: replace some spin_lock_irqs w/spin_locks (Rob Evers) [639028]\n- [scsi] lpfc: fail io w/lost frame and target check cond (Rob Evers) [639028]\n- [scsi] lpfc: fix abort WQEs for FIP frames (Rob Evers) [639028]\n- [scsi] lpfc: update version for 8.2.0.84 driver release (Rob Evers) [639028]\n- [scsi] lpfc: unreg all rpi mbox command before unreg vpi (Rob Evers) [639028]\n- [scsi] lpfc: make all error values negative (Rob Evers) [639028]\n- [scsi] lpfc: remove duplicate code from lpfc_els_retry (Rob Evers) [639028]\n- [scsi] lpfc: fix circular spinlock dep w/scsi midlayer (Rob Evers) [639028]\n- [scsi] lpfc: update version for 8.2.0.83 driver release (Rob Evers) [639028]\n- [scsi] lpfc: fix FLOGI issue with McData4700 FC switch (Rob Evers) [639028]\n- [scsi] lpfc: fix possible roundrobin failover failure (Rob Evers) [639028]\n- [scsi] lpfc: fix unregister of unused FCF on timeout (Rob Evers) [639028]\n- [scsi] lpfc: fix heartbeat timeout during pause test (Rob Evers) [639028]\n- [scsi] lpfc: update version for 8.2.0.82 driver release (Rob Evers) [639028]\n- [scsi] lpfc: fix lpfc_els_retry delay/retry for PLOGI (Rob Evers) [639028]\n- [scsi] lpfc: streamline some spin locks (Rob Evers) [639028]\n- [scsi] lpfc: fix lpfc_initial_flogi return on failure (Rob Evers) [639028]\n- [scsi] lpfc: fix stray state update issue with new FCF (Rob Evers) [639028]\n- [scsi] lpfc: treat FCF prop with different index as error (Rob Evers) [639028]\n- [scsi] lpfc: fix misc auth issues on EmulexSecure FC HBA (Rob Evers) [639028]\n- [scsi] lpfc: update version for 8.2.0.81 driver release (Rob Evers) [639028]\n- [scsi] lpfc: move unload flag earlier in vport delete (Rob Evers) [639028]\n- [scsi] lpfc: fix IOCB leak on FDISC completion (Rob Evers) [639028]\n- [scsi] lpfc: fix possible crash on non-SLI4 hba (Rob Evers) [639028]\n- [scsi] mpt2sas: fix panic w/direct attached SEP (Jarod Wilson) [641086]\n- [redhat] spec: clean up rpmbuild kabideps detritus (Jarod Wilson) [644129]\n- [net] bnx2: Increase max rx ring size from 1K to 2K (Andy Gospodarek) [640026]\n- [net] bnx2: fixup broken NAPI accounting (Andy Gospodarek) [640026]\n- [s390] qeth: portno 1 support for OSM-device insufficient (Hendrik Brueckner) [644008]\n[2.6.18-229.el5]\n- [pci] include DL580 G7 in bfsort whitelist (Tony Camuso) [644879]\n- [net] igb: fix TX hang when loading igb with max_vfs > 7 (Stefan Assmann) [645284]\n- [virt] fix timekeeping_use_tsc check in init_tsc_timer (Prarit Bhargava) [643926]\n- [net] bonding: support netconsole over bonded link (Neil Horman) [235343]\n- [virt] xen: increase txqueuelen of netback vif devices (Miroslav Rezanina) [539626]\n- [sound] core: prevent heap corruption in snd_ctl_new (Jerome Marchand) [638484] {CVE-2010-3442}\n- [net] updated drivers need version string updates too (Andy Gospodarek) [635027]\n- [misc] softlockup: increase timeout to 60 seconds (Don Zickus) [643707]\n- [virt] xen: fix vdso failure under xen pv environment (Danny Feng) [644860]\n- [scsi] qla2xxx: fix zero test on array in ql_fc_loopback (Chad Dupuis) [644136]\n- [usb] net/catc: change NICs TX_MAX_BURST, fixes probe (Bob Picco) [637826]\n- [virt] console: dont block guest if host doesnt read (Amit Shah) [644735]\n- [media] video: remove compat code for VIDIOCSMICROCODE (Mauro Carvalho Chehab) [642471] {CVE-2010-2963}\n- [xen] vtd: let IOMMU use another IRQ without conflict (Don Dugger) [575790]\n- [net] bonding: correctly process non-linear skbs (Andy Gospodarek) [619070]\n- [net] rds: fix local privilege escalation (Eugene Teo) [642898] {CVE-2010-3904}\n[2.6.18-228.el5]\n- [char] tpm: pay attention to IRQ info from PNP in tpm_tis (Stefan Assmann) [636760]\n- [misc] cpufreq: add missing cpufreq_cpu_put (Prarit Bhargava) [643080]\n- [md] fix softlockup issue waiting for resync to finish (James Paradis) [573106]\n- [s390] dasd_eckd: remove PSF order/suborder ioctl check (John Feeney) [565973]\n- [fs] xfs: fix speculative allocation beyond eof (Dave Chinner) [638753]\n[2.6.18-227.el5]\n- [net] ixgbe: add option to control interrupt mode (Andy Gospodarek) [571495]\n- [md] raid0: fix data corruption on 32-bit w/large storage (Stanislaw Gruszka) [573185]\n- [scsi] fix write buffer length in scsi_req_map_sg (Steve Best) [637235]\n- [scsi] ipr: back out isr optimization changes (Steve Best) [634213]\n- [scsi] ipr: fix rsrc addr format and add attr for dev ID (Steve Best) [634213]\n- [fs] jbd2: properly align sized slab caches (Eric Sandeen) [638961]\n- [fs] ext4: dont scan/accumulate too many pages (Eric Sandeen) [572930]\n- [fs] gfs2: fix fatal filesystem consistency error (Robert S Peterson) [529914]\n- [scsi] lpfc: update version for 8.2.0.80 driver release (Rob Evers) [619917]\n- [scsi] lpfc: add Security Crypto support to CONFIG_PORT (Rob Evers) [619917]\n- [scsi] lpfc: remove unused variables (Rob Evers) [619917]\n- [scsi] lpfc: log msg 0318 is a warning, not an error (Rob Evers) [619917]\n- [scsi] lpfc: fix bug w/cable swap and non-empty nodelist (Rob Evers) [619917]\n- [scsi] lpfc: fix a failure to roundrobin on all FCFs (Rob Evers) [619917]\n- [scsi] lpfc: fix heartbeat timeout during fabric reconfig (Rob Evers) [619917]\n- [scsi] lpfc: update version for 8.2.0.79 driver release (Rob Evers) [619917]\n- [scsi] lpfc: fix a Clear Virtual Link recovery failure (Rob Evers) [619917]\n- [scsi] lpfc: clear VFI_REGISTERED flag after UNREG_VFI (Rob Evers) [619917]\n- [scsi] lpfc: ignore failure of REG_VPI mbox w/UPD bit set (Rob Evers) [619917]\n- [scsi] lpfc: fix ioctl using inactive ndlp for ct resp (Rob Evers) [619917]\n- [scsi] lpfc: fix bug w/ndlp not activated post-cable swap (Rob Evers) [619917]\n- [scsi] lpfc: add support UPD bit of REG_VPI mailbox cmd (Rob Evers) [619917]\n- [scsi] lpfc: fix driver discovery issue after link bounce (Rob Evers) [619917]\n- [scsi] lpfc: fix VLAN ID 0xFFF set to reg_fcfi mbox cmd (Rob Evers) [619917]\n- [scsi] lpfc: update version for 8.2.0.78 driver release (Rob Evers) [619917]\n- [scsi] lpfc: fix race condition causing >1 FLOGI commands (Rob Evers) [619917]\n- [scsi] lpfc: enhance round-robin FCF failover algorithm (Rob Evers) [619917]\n- [scsi] lpfc: clear Ignore Reg Login when purging mailbox (Rob Evers) [619917]\n- [scsi] lpfc: fix for ELS commands stuck on txq (Rob Evers) [619917]\n- [scsi] lpfc: added target queuedepth module parameter (Rob Evers) [619917]\n- [scsi] lpfc: fix RoundRobin FCF failover issue (Rob Evers) [619917]\n- [scsi] re-enable transistions from OFFLINE to RUNNING (Mike Christie) [641193]\n- [edac] i7300_edac: properly init per-csrow memory size (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: better initialize page counts (Mauro Carvalho Chehab) [487428]\n- [redhat] configs: enable edac debugging debug kernels (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: backport driver to RHEL5.6 codebase (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: add appropriate MAINTAINERS info (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: coding style cleanups (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: improve inline comments/documentation (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: reorganize file contents (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: properly detect channel on CE errors (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: enrich FBD info for corrected errors (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: enrich FBD error info for fatal errors (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: pre-allocate buffer for error messages (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: fix MTR x4/x8 detection logic (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: make debug messages consistent (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: remove stale get_error_info logic (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: add error registers cleanup support (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: add support for reporting FBD errors (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: properly detect error correction type (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: detect if device is in single mode (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: add detection of enhanced scrub mode (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: clear error bit after reading (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: add error detection for global errors (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: better PCI device names (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: Add FIXME about error correction type (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: add global error registers (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: display info if ECC is enabled or not (Mauro Carvalho Chehab) [487428]\n- [edac] i7300_edac: new driver for Intel i7300 chipset (Mauro Carvalho Chehab) [487428]\n- [mm] kswapd: dont get stuck in D state w/fragmented mem (Larry Woodman) [609668]\n- [misc] x86_64: fix hang at Booting processor 1/8 APIC (John Villalovos) [639851]\n- [misc] oprofile: add backtraces for compat mode processes (Jiri Olsa) [622024]\n- [net] tg3: re-enable 5717 B0 support (John Feeney) [634320]\n- [net] tg3: fix 5717/57765/5719 memory leak (John Feeney) [631963]\n- [net] tg3: display FW version, handle FW events correctly (John Feeney) [634325]\n- [net] bnx2: improve tx fast path performance (John Feeney) [632057]\n- [net] enic: update to upstream version 1.4.1.2 (Andy Gospodarek) [568111]\n- [net] ixgbe: fix 82598 link issue and panic w/shared irq (Andy Gospodarek) [637331]\n- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [636198]\n- [usb] net: add support for CDC EEM (Don Zickus) [572519]\n- [scsi] qla2xxx: clear post-uncorrectable non-fatal errors (Chad Dupuis) [572258]\n- [net] qlcnic: fix poll implementation (Chad Dupuis) [625084]\n- [net] qlcnic: TSO feature added for vlan devices (Chad Dupuis) [625084]\n- [net] qlcnic: fix diag resource allocation (Chad Dupuis) [625084]\n- [net] qlcnic: fix loopback test (Chad Dupuis) [625084]\n- [net] qlcnic: fix bandwidth check (Chad Dupuis) [625084]\n- [net] qlcnic: fix gro support (Chad Dupuis) [625084]\n- [s390] kernel: fix fork vs /proc/stat race (Hendrik Brueckner) [627298]\n- [misc] amd_iommu: fix kdump OOM issue seen with iommu=pt (Bhavna Sarathy) [627663]\n- [fs] execve: fix interactivity and response to SIGKILL (Dave Anderson) [629176]\n- [virt] virtio_console: fix userspace NULL buffer submits (Amit Shah) [636046]\n- [virt] virtio_console: fix poll blocking when data ready (Amit Shah) [636020]\n- [virt] virtio_console: send SIGIO as needed for host evts (Amit Shah) [636053]\n- [virt] virtio_console: make hot-unplug safe (Amit Shah) [628828]\n- [net] virtio_net: defer skb allocation in receive path (Anthony Liguori) [565560]\n- [misc] increase logbuf size to 512K (Don Zickus) [563535]\n- [xen] hvm: correct accuracy of pmtimer (Andrew Jones) [633028]\n- [xen] fix guest crash on non-EPT machine may crash host (Paolo Bonzini) [621430] {CVE-2010-2938}\n[2.6.18-226.el5]\n- [net] bonding: fix IGMP report on slave during failover (Flavio Leitner) [637764]\n[2.6.18-225.el5]\n- [usb] serial/pl2303: add id for HP LD220-HP POS display (Don Zickus) [580698]\n[2.6.18-224.el5]\n- [scsi] mpt2sas: recover from injected PCIe bus errors (Tomas Henzl) [568281]\n- [message] fusion: remove unnecessary printk flooding logs (Tomas Henzl) [629081]\n- [scsi] scsi_dh_alua: handle transitioning state correctly (Mike Snitzer) [619361]\n- [scsi] lpfc: fix ioctl crash in lpfc_nlp_put (Rob Evers) [625841]\n- [net] trace: fix sk_buff typo in network tracepoints (Neil Horman) [568614]\n- [net] sched: fix info leak in traffic policing (Neil Horman) [636392]\n- [md] dm: fix deadlock with fsync vs. resize in lvm (Mikulas Patocka) [624068]\n- [misc] amd_iommu: fix slab corruption with iommu enabled (Larry Woodman) [530619]\n- [mm] add dirty_background_bytes and dirty_bytes sysctls (Larry Woodman) [635782]\n- [scsi] add scsi_dispatch_* tracepoints (Jiri Olsa) [568290]\n- [misc] oprofile: support Intel CPU Family 6, Model 22, 29 (Jiri Olsa) [493047]\n- [fs] aio: fix flush_workqueue deadlock (Jeff Moyer) [546700]\n- [net] be2net: use generated MAC addr for VFs, fix BUG_ON (Ivan Vecera) [630680]\n- [fs] sysfs: add labeling support for sysfs (Eric Paris) [582374]\n- [selinux] inode_*secctx hooks to access security ctx info (Eric Paris) [582374]\n- [fs] xattr: refactor vfs_setxattr for SELinux hook use (Eric Paris) [582374]\n- [redhat] configs: compile TCG modules for kernel-xen (Andrew Jones) [636100]\n- [net] netxen: fix poll implementation (Chad Dupuis) [625079]\n- [net] netxen: fix a race in netxen_nic_get_stats() (Chad Dupuis) [625079]\n- [net] netxen: update version 4.0.74 (Chad Dupuis) [625079]\n- [net] netxen: fix feature setting for vlan devices (Chad Dupuis) [625079]\n- [net] netxen: fix tx csum setting (Chad Dupuis) [625079]\n- [scsi] qla2xxx: recover on mmio_enable function for 82XX (Chad Dupuis) [613134]\n- [scsi] qla2xxx: add AER support for 82XX (Chad Dupuis) [613134]\n- [misc] amd_iommu: change default to passthrough mode (Bhavna Sarathy) [628018]\n- [misc] amd_iommu: add passthrough mode support (Bhavna Sarathy) [561127]\n- [misc] amd: dont use mwait_idle on AMD CPUs (Bhavna Sarathy) [610199]\n- [misc] amd: show L3 cache info for all CPU families (Bhavna Sarathy) [610199]\n- [misc] amd: unify L3 cache index disable checking (Bhavna Sarathy) [610199]\n- [misc] amd: avoid dupe sysfs bits for thresholding banks (Bhavna Sarathy) [610199]\n- [misc] amd: remove superfluous CPU family/model check (Bhavna Sarathy) [610199]\n- [misc] fix race in pid generation causing immediate reuse (Dave Anderson) [634850]\n[2.6.18-223.el5]\n- [redhat] kabi: add net symbols for RHEL5.6 (Jon Masters) [547689 555708 558999 568558 569606 613193]\n- [redhat] kabi: add Block and SCSI symbols for RHEL5.6 (Jon Masters) [547689 558999 566767 569606 574557]\n- [redhat] kabi: add PCI kernel symbols for RHEL5.6 (Jon Masters) [547689 555708 566767 568558 569606 597143 613193]\n- [redhat] kabi: add core kernel symbols for RHEL5.6 (Jon Masters) [545218 562242]\n- [net] ipvs: add one-packet scheduler (Thomas Graf) [578836]\n- [pci] fix pci_mmcfg_init making some memory uncacheable (Shyam Iyer) [581933]\n- [virt] xen: fix crashing of x86 hvm guest on x86_64 (Radim Krcmar) [605697]\n- [scsi] fix disk spinup for shorter path restore times (Rob Evers) [608109]\n- [scsi] aacraid: fix file system falsely going read-only (Rob Evers) [523920]\n- [misc] x86: fix cpuid_level on Intel pre-model 13 cpus (Prarit Bhargava) [606851]\n- [net] cxgb3: alt buffer freeing strategy when xen dom0 (Paolo Bonzini) [488882]\n- [net] bonding: enable output slave selection (Neil Horman) [516289]\n- [md] dm-raid1: fix data lost at mirror log failure (Mikulas Patocka) [555197]\n- [md] kcopyd: dm snapshot performance improvement (Mikulas Patocka) [466088]\n- [scsi] increase sync cache timeout (Mike Christie) [592322]\n- [scsi] log msg when getting Unit Attention (Mike Christie) [585431]\n- [virt] xen: add dummy mwait for xen to make it compile (Luming Yu) [573514]\n- [x86_64] use apic as main timer if non-stop-apic timer (Luming Yu) [573514]\n- [acpi] cpu: use MWAIT for C-state (Luming Yu) [573514]\n- [net] ipv4/defrag: check socket type before reference (Jiri Olsa) [632266]\n- [net] ipv4: prevent chained skb destined to UFO device (Jiri Olsa) [633450]\n- [block] cfq: no merges for queues w/no process references (Jeff Moyer) [605265]\n- [fs] aio: check for multiplication overflow in io_submit (Jeff Moyer) [629449] {CVE-2010-3067}\n- [misc] make compat_alloc_user_space incorporate access_ok (Don Howard) [634464] {CVE-2010-3081}\n- [fs] xfs: prevent reading uninitialized stack memory (Dave Chinner) [630807] {CVE-2010-3078}\n- [fs] aio: fix cleanup in io_submit_one (Jeff Moyer) [631721] {CVE-2010-3066}\n[2.6.18-222.el5]\n- [cpufreq] powernow-k8: fix per core frequency control (Bhavna Sarathy) [502397]\n- [misc] uid/gid: fix integer overflow in groups_search (Jerome Marchand) [629626]\n- [virt] xen: remove dead code (Paolo Bonzini) [507846]\n- [virt] xen: dont give up ballooning under mem pressure (Paolo Bonzini) [507846]\n- [net] ipv4: fix oops in writing to forwarding sysctl (Neil Horman) [629638]\n- [net] trace: backport some networking tracepoints (Neil Horman) [568614]\n- [misc] rename topology_*_cpumask back to *_siblings (Michal Schmidt) [633388]\n- [scsi] 3w_sas: add new 3ware SAS driver (Tomas Henzl) [572011]\n- [scsi] 3w-9xxx: update to 2.26.08.007-2.6.18RH (Tomas Henzl) [572004]\n- [scsi] megaraid: fix suspend function (Tomas Henzl) [630927]\n- [net] ipv6: add modes to do RA/RS when in forwarding mode (Thomas Graf) [614064]\n- [fs] nfsv4: fix bug when server returns NFS4ERR_RESOURCE (Steve Dickson) [620502]\n- [fs] nfsv4: ensure lockowners are labelled correctly (Steve Dickson) [620502]\n- [fs] nfsv4: add support for RELEASE_LOCKOWNER operation (Steve Dickson) [620502]\n- [fs] nfsv4: clean up for lockowner XDR encoding (Steve Dickson) [620502]\n- [fs] nfsv4: ensure we track lock state in r/w requests (Steve Dickson) [620502]\n- [scsi] qla4xxx: add PCIe AER support (Chad Dupuis) [624710]\n- [scsi] qla4xxx: update version to 5.02.03.00.05.06-d1 (Chad Dupuis) [623675]\n- [scsi] qla4xxx: resolve name space error with qla2xxx (Chad Dupuis) [623675]\n- [net] qlcnic: add AER support and miscellaneous fixes (Chad Dupuis) [614281]\n- [net] qlcnic: add NIC partitioning and other misc fixes (Chad Dupuis) [614281]\n- [net] qlcnic: misc upstream fixes for RHEL5.6 (Chad Dupuis) [614281]\n- [net] ipv4: fix buffer overflow in icmpmsg_put (Frantisek Hrbata) [601391]\n- [proc] allow access to /proc//fd after setuid (Danny Feng) [617707]\n- [fs] xfs: fix missing untrusted inode lookup tag (Dave Chinner) [607032]\n- [wireless] fixes from 2.6.32.18 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.17 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.16 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.14 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.13 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.12 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.11 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.10 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.9 (Stanislaw Gruszka) [621105]\n- [wireless] fixes from 2.6.32.8 (Stanislaw Gruszka) [621105]\n- [xen] emulate task switching (Paolo Bonzini) [625903]\n- [xen] introduce hvm_set_cr3 (Paolo Bonzini) [625903]\n- [xen] introduce hvm_virtual_to_linear_addr (Paolo Bonzini) [625903]\n- [xen] introduce hvm_set_segment_register (Paolo Bonzini) [625903]\n- [xen] hvm: big cleanups and fixes to event deliver logic (Paolo Bonzini) [625903]\n- [xen] vmx: simplify event-injection logic (Paolo Bonzini) [625903]\n- [xen] xm trigger NMI support for HVM guests (Paolo Bonzini) [625902]\n- [xen] virtual NMI support (Paolo Bonzini) [625902]\n- [xen] emulate injection of guest NMI (Paolo Bonzini) [625902]\n- [xen] introduce get_isa_irq_vector and is_isa_irq_masked (Paolo Bonzini) [625902]\n- [xen] hvm: fix UP suspend/resume/migration w/PV drivers (Miroslav Rezanina) [629773]\n[2.6.18-221.el5]\n- [acpi] check _PPC state on cpufreq start (Matthew Garrett) [581037]\n- [fs] aio: bump i_count instead of using igrab (Jeff Moyer) [626963]\n- [redhat] dont generate kABI deps when building w/o kABI (Jon Masters) [456765]\n- [watchdog] support for iTCO on Ibex Peak and Cougar Point (John Villalovos) [534152]\n- [edac] amd64_edac: whitespace cleanups (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: minor formatting fix (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: fix operator precedence error (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: fix syndrome calculation on K8 (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: simplify ECC override handling (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: do not falsely trigger kerneloops (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: restrict PCI config space access (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: fix forcing module load/unload (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: fix driver instance freeing (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: fix k8 chip select reporting (Bhavna Sarathy) [568576]\n- [edac] amd64_edac: add leaner syndrome decoding algorithm (Bhavna Sarathy) [568576]\n- [scsi] bnx2i: link hba and cnic device before device reg (Mike Christie) [578005]\n- [scsi] bnx2i: make fw use statsn field to build header (Mike Christie) [578005]\n- [net] cnic: select bug fixes from upstream for RHEL5.6 (Mike Christie) [595548 619767]\n- [scsi] bnx2i: update version to bnx2i-2.1.3 (Mike Christie) [568606]\n- [scsi] bnx2i: add chip cleanup for remove module path (Mike Christie) [568606]\n- [scsi] bnx2i: rebind CFC cleanup to cm_abort/close comp (Mike Christie) [568606]\n- [scsi] bnx2i: add support for additional TMFs (Mike Christie) [568606]\n- [scsi] bnx2i: fix protocol violation on nopout responses (Mike Christie) [568606]\n- [scsi] bnx2i: fix response panic on unsolicited NOP-In (Mike Christie) [568606]\n- [scsi] bnx2i: fix bugs in handling of unsolicited NOP-Ins (Mike Christie) [568606]\n- [scsi] bnx2i: add host param ISCSI_HOST_PARAM_IPADDRESS (Mike Christie) [568606]\n- [scsi] bnx2i: fix TCP graceful termination initiation (Mike Christie) [568606]\n- [scsi] bnx2i: fine tune misc destroy timeout values (Mike Christie) [568606]\n- [scsi] bnx2i: optimize bnx2i_stop connection clean up (Mike Christie) [568606]\n- [scsi] bnx2i: create active linklist holding endpoints (Mike Christie) [568606]\n- [scsi] bnx2i: split hardware cleanup from ep_disconnect (Mike Christie) [568606]\n- [fs] dlm: fix try 1cb failure, part 2 (Abhijith Das) [504188]\n- [fs] dlm: no node callback when try 1cb lock req fails (David Teigland) [504188]\n- [misc] crypto: add Intel x86_64 hardware CRC32 support (Prarit Bhargava) [626018]\n- [net] bnx2: update to v2.0.8+ with new 5709 firmware j15 (John Feeney) [568601]\n- [net] tg3: update to 3.108+ and add 5718 B0, 5719 support (John Feeney) [567462]\n- [misc] move dev_name to device.h (John Feeney) [568551]\n- [misc] add WARN_ONCE macro (John Feeney) [568551]\n- [dma_v3] update I/O AT and DCA drivers (John Feeney) [568551]\n- [net] forcedeth: update to latest upstream for RHEL5.6 (Ivan Vecera) [628831]\n- [net] e1000e: update to upstream version 1.2.7-k2 (Andy Gospodarek) [566021]\n- [net] qla2xxx: fix display of link down state (Chad Dupuis) [627612]\n- [scsi] qla2xxx: rom lock recover if fw hangs holding lock (Chad Dupuis) [619814]\n- [scsi] qla2xxx: update AER support, do early abort cmds (Chad Dupuis) [619814]\n- [scsi] qla2xxx: add IS_QLA82XX check in update_fw_options (Chad Dupuis) [619814]\n- [scsi] qla2xxx: cover UNDERRUN case where SCSI status set (Chad Dupuis) [619814]\n- [scsi] qla2xxx: fix set fw hung and complete waiting mbx (Chad Dupuis) [619814]\n- [scsi] qla2xxx: fix seconds_since_last_heartbeat reset (Chad Dupuis) [619814]\n- [scsi] qla2xxx: correct extended sense-data handling (Chad Dupuis) [619814]\n- [scsi] qla2xxx: dont {s,g}et port MBC if invalid port id (Chad Dupuis) [619814]\n- [scsi] qla2xxx: stop firmware before doing init firmware (Chad Dupuis) [619814]\n- [xen] oprofile: force use of architectural perfmon (Don Dugger) [538564]\n- [xen] oprofile: support Intels arch perfmon registers (Don Dugger) [538564]\n- [xen] oprofile: add support for Core i7 and Atom (Don Dugger) [538564]\n[2.6.18-220.el5]\n- [block] cciss: version string to 3.6.22.RH1 (Tomas Henzl) [568830]\n- [block] cciss: bus_unregister_once not once per hba (Tomas Henzl) [568830]\n- [block] cciss: rename cciss_sector_size (Tomas Henzl) [568830]\n- [block] cciss: make log_unit_to_scsi3addr an inline (Tomas Henzl) [568830]\n- [block] cciss: fix enxio weirdness (Tomas Henzl) [568830]\n- [block] cciss: reorder functions (Tomas Henzl) [568830]\n- [block] cciss: fix raid level sysfs permissions (Tomas Henzl) [568830]\n- [block] cciss: make device attributes static (Tomas Henzl) [568830]\n- [block] cciss: make cciss_seq_show handle drv_array holes (Tomas Henzl) [568830]\n- [block] cciss: add via_ioctl param to rebuild_lun_table (Tomas Henzl) [568830]\n- [block] cciss: add support for multi-lun tape devices (Tomas Henzl) [568830]\n- [block] cciss: notify scsi midlayer of device changes (Tomas Henzl) [568830]\n- [block] cciss: fix scatter-gather on scsi side (Tomas Henzl) [568830]\n- [block] cciss: add more commands for tapes (Tomas Henzl) [568830]\n- [block] cciss: factor out scsi dma code (Tomas Henzl) [568830]\n- [block] cciss: eliminate unnecessary pointer use (Tomas Henzl) [568830]\n- [block] cciss: dont use void pointer for hba (Tomas Henzl) [568830]\n- [block] cciss: detect bad alignment (Tomas Henzl) [568830]\n- [block] cciss: factor out sg chain block mapping code (Tomas Henzl) [568830]\n- [block] cciss: fix DMA direction kludge (Tomas Henzl) [568830]\n- [block] cciss: simplify scatter gather code (Tomas Henzl) [568830]\n- [block] cciss: factor out scatter gather alloc and free (Tomas Henzl) [568830]\n- [block] cciss: enhanced scatter-gather support (Tomas Henzl) [568830]\n- [block] cciss: remove the scan thread (Tomas Henzl) [568830]\n- [block] cciss: fix scsi status typo (Tomas Henzl) [568830]\n- [block] cciss: remove sendcmd (Tomas Henzl) [568830]\n- [block] cciss: clean up code in cciss_shutdown (Tomas Henzl) [568830]\n- [block] cciss: retry driver cmds with unit attention cond (Tomas Henzl) [568830]\n- [block] cciss: no pci_release_regions on regions not held (Tomas Henzl) [568830]\n- [block] cciss: fix memory leak in cciss_init_one (Tomas Henzl) [568830]\n- [block] cciss: dynamically allocate drive info struct (Tomas Henzl) [568830]\n- [block] cciss: fix raid label related magic number (Tomas Henzl) [568830]\n- [block] cciss: no check busy initializing in cciss open (Tomas Henzl) [568830]\n- [block] cciss: add usage_count attribute to logical drive (Tomas Henzl) [568830]\n- [block] cciss: add raid_level attribute to logical drives (Tomas Henzl) [568830]\n- [block] cciss: add lunid attribute to log drives in /sys (Tomas Henzl) [568830]\n- [block] cciss: dont call putdisk excessively (Tomas Henzl) [568830]\n- [block] cciss: zero out drive info on removal (Tomas Henzl) [568830]\n- [block] cciss: handle special case for /dev/cciss/c0d0 (Tomas Henzl) [568830]\n- [block] cciss: handle cases when cciss_add_disk fails (Tomas Henzl) [568830]\n- [block] cciss: fix and rearrange logical drive sysfs code (Tomas Henzl) [568830]\n- [block] cciss: dynamic allocate struct device for logical (Tomas Henzl) [568830]\n- [block] cciss: Use helper functions to access drive_data (Tomas Henzl) [568830]\n- [block] cciss: remove withirq parameter where possible (Tomas Henzl) [568830]\n- [block] cciss: remove sysfs entries during driver cleanup (Tomas Henzl) [568830]\n- [block] cciss: add cciss_sysfs_stat_inquiry function (Tomas Henzl) [568830]\n- [block] cciss: add CTLR_LUNID define (Tomas Henzl) [568830]\n- [block] cciss: Remove unused was_only_controller_node (Tomas Henzl) [568830]\n- [block] cciss: fix problem with LUN addressing (Tomas Henzl) [568830]\n- [block] cciss: fix problem with SG_IO completions (Tomas Henzl) [568830]\n- [block] cciss: retry commands from within sendcmd_withirq (Tomas Henzl) [568830]\n- [block] cciss: change SCSI error handling code (Tomas Henzl) [568830]\n- [block] cciss: remove sendcmd reject processing (Tomas Henzl) [568830]\n- [block] cciss: let scsi error handling work w/interrupts (Tomas Henzl) [568830]\n- [block] cciss: factor out error processing code (Tomas Henzl) [568830]\n- [block] cciss: factor out target status code (Tomas Henzl) [568830]\n- [block] cciss: simplify device addressing methods (Tomas Henzl) [568830]\n- [block] cciss: factor out sendcmd_withirq core (Tomas Henzl) [568830]\n- [block] cciss: use uninterruptible timeout when waiting (Tomas Henzl) [568830]\n- [block] cciss: fix lun reset code (Tomas Henzl) [568830]\n- [block] cciss: factor out sendcmd core for sane interface (Tomas Henzl) [568830]\n- [block] cciss: remove double setting of h->busy (Tomas Henzl) [568830]\n- [block] cciss: disable scan thread, it prevents rmmod (Tomas Henzl) [568830]\n- [net] netxen: fix inconsistent lock state (Chad Dupuis) [562937]\n- [net] netxen: protect tx timeout recovery by rtnl lock (Chad Dupuis) [562937]\n- [net] netxen: fix for kdump (Chad Dupuis) [562937]\n- [net] netxen: fix caching window register (Chad Dupuis) [562937]\n- [net] netxen: fix rcv buffer leak (Chad Dupuis) [562937]\n- [net] netxen: fix memory leaks in error path (Chad Dupuis) [562937]\n- [net] netxen: remove unnecessary returns (Chad Dupuis) [562937]\n- [net] netxen: handle queue manager access (Chad Dupuis) [562937]\n- [net] netxen: to fix onchip memory access. (Chad Dupuis) [562937]\n- [net] netxen: remove unnecessary size checks (Chad Dupuis) [562937]\n- [net] netxen: fix register usage (Chad Dupuis) [562937]\n- [net] netxen: fix deadlock in aer (Chad Dupuis) [562937]\n- [net] netxen: fix interrupt for NX2031 (Chad Dupuis) [562937]\n- [net] netxen: fix fw load from file (Chad Dupuis) [562937]\n- [net] netxen: validate unified romimage (Chad Dupuis) [562937]\n- [net] netxen: fix corner cases of firmware recovery (Chad Dupuis) [562937]\n- [net] netxen: update version to 4.0.73 (Chad Dupuis) [562937]\n- [net] netxen: fix tx csum status (Chad Dupuis) [562937]\n- [net] netxen: added sanity check for pci map (Chad Dupuis) [562937]\n- [net] netxen: fix warning in ioaddr for NX3031 chip (Chad Dupuis) [562937]\n- [net] netxen: fix bios version calculation (Chad Dupuis) [562937]\n- [net] netxen: disable on NX_P3_B1 hardware (Chad Dupuis) [562937]\n- [net] netxen: protect resource cleanup by rtnl lock (Chad Dupuis) [562937]\n- [net] netxen: fix tx timeout recovery for NX2031 chip (Chad Dupuis) [562937]\n- [net] netxen: fix sparse warning (Chad Dupuis) [562937]\n- [net] netxen: fix license header (Chad Dupuis) [562937]\n- [net] netxen: fix endianness intr coalesce (Chad Dupuis) [562937]\n- [net] netxen: fix endianness read mac address (Chad Dupuis) [562937]\n- [net] netxen: use DEFINE_PCI_DEVICE_TABLE() (Chad Dupuis) [562937]\n- [net] netxen: update version to 4.0.72 (Chad Dupuis) [562937]\n- [net] netxen: fix set mac addr (Chad Dupuis) [562937]\n- [net] netxen: fix smatch warning (Chad Dupuis) [562937]\n- [net] netxen: fix tx ring memory leak (Chad Dupuis) [562937]\n- [net] netxen: fix ethtool link test (Chad Dupuis) [562937]\n- [net] netxen: move && and || to end of previous line (Chad Dupuis) [562937]\n- [net] netxen: fix ethtool register dump (Chad Dupuis) [562937]\n- [net] netxen: fix unified fw size check (Chad Dupuis) [562937]\n- [net] netxen: support pci error handlers (Chad Dupuis) [562937]\n- [net] netxen: fix tx timeout recovery (Chad Dupuis) [562937]\n- [net] netxen: minor suspend resume fixes (Chad Dupuis) [562937]\n- [net] netxen: use module parameter correctly (Chad Dupuis) [562937]\n- [net] netxen: fix firmware type check (Chad Dupuis) [562937]\n- [net] netxen: fix napi intr enable check (Chad Dupuis) [562937]\n- [net] netxen: protect device reset by rtnl_lock (Chad Dupuis) [562937]\n- [net] netxen: fix failure cases for fw hang recovery (Chad Dupuis) [562937]\n- [net] netxen: fix debug tools access for NX2031 (Chad Dupuis) [562937]\n- [misc] clone: fix race between copy_process and de_thread (Jiri Olsa) [590864]\n- [s390] dasd: let recovery cqr get flags from failed cqr (Hendrik Brueckner) [628838]\n- [net] ipv4: fix leak, rcu and length in route cache gc (Thomas Graf) [541224]\n- [net] tcp: zero out rx_opt in tcp_disconnect (Thomas Graf) [539560]\n- [net] ipv6: Update Neighbor Cache when IPv6 RA received (Thomas Graf) [560870]\n- [net] ipv6: Plug sk_buff leak in ipv6_rcv (Thomas Graf) [574913]\n- [redhat] configs: enable building k10temp sensor driver (Michal Schmidt) [443745]\n- [hwmon] add k10temp sensor driver (Michal Schmidt) [443745]\n- [pci] add AMD 10h, 11h PCI IDs to pci_ids.h (Michal Schmidt) [443745]\n- [net] vxge: fix multicast issues (Michal Schmidt) [608598]\n- [net] vxge: show startup message with KERN_INFO (Michal Schmidt) [608598]\n- [net] vxge: fix memory leak in vxge_alloc_msix error path (Michal Schmidt) [608598]\n- [net] vxge: fix checkstack warning in vxge_probe (Michal Schmidt) [608598]\n- [net] vxge: remove unnecessary returns from void functs (Michal Schmidt) [608598]\n- [net] vxge: version update (Michal Schmidt) [608598]\n- [net] vxge: pass correct number of VFs value to sriov (Michal Schmidt) [608598]\n- [net] vxge: allow load for all enumerated pci functions (Michal Schmidt) [608598]\n- [net] vxge: fix possible memory leak in device init (Michal Schmidt) [608598]\n- [net] vxge: add missing vlan_rx_kill_vid method (Michal Schmidt) [594404 608598]\n- [net] vxge: remove trailing space in messages (Michal Schmidt) [608598]\n- [net] vxge: use pci_dma_mapping_error to test return val (Michal Schmidt) [608598]\n- [net] vxge: use DEFINE_PCI_DEVICE_TABLE (Michal Schmidt) [608598]\n- [net] vxge: use DMA_BIT_MASK instead of plain values (Michal Schmidt) [608598]\n- [net] vxge: move && and || to end of previous line (Michal Schmidt) [608598]\n- [net] bnx2x: fix wrong return from bnx2x_trylock_hw_lock (Michal Schmidt) [572012]\n- [net] bnx2x: small fix in stats handling (Michal Schmidt) [572012]\n- [net] bnx2x: update bnx2x version to 1.52.53-4 (Michal Schmidt) [572012]\n- [net] bnx2x: fix PHY locking problem (Michal Schmidt) [572012]\n- [net] bnx2x: adjust confusing if indentation (Michal Schmidt) [572012]\n- [net] bnx2x: load firmware in open instead of probe (Michal Schmidt) [572012]\n- [net] bnx2x: fix net/ip6_checksum.h include (Michal Schmidt) [572012]\n- [net] bnx2x: update driver version to 1.52.53-3 (Michal Schmidt) [572012]\n- [net] bnx2x: move statistics handling code to own files (Michal Schmidt) [572012]\n- [net] bnx2x: create separate file for ethtool routines (Michal Schmidt) [572012]\n- [net] bnx2x: create bnx2x_cmn.* files (Michal Schmidt) [572012]\n- [net] bnx2x: main netdev does not need ->poll, ->weight (Michal Schmidt) [572012]\n- [net] bnx2x: move global variable load_count to bnx2x.h (Michal Schmidt) [572012]\n- [net] bnx2x: store module parameters in main structure (Michal Schmidt) [572012]\n- [net] bnx2x: create separate folder for bnx2x driver (Michal Schmidt) [572012]\n- [net] bnx2x: set RXHASH for LRO packets (Michal Schmidt) [572012]\n- [net] bnx2x: return -EINVAL for unsupported flags (Michal Schmidt) [572012]\n- [net] bnx2x: fail when trying to setup unsupported features (Michal Schmidt) [572012]\n- [net] bnx2x: fix link problem with some DACs (Michal Schmidt) [572012]\n- [net] bnx2x: protect a SM state change (Michal Schmidt) [572012]\n- [net] bnx2x: avoid TX timeout when stopping device (Michal Schmidt) [572012]\n- [net] bnx2x: fix check to get RX hash (Michal Schmidt) [572012]\n- [net] bnx2x: remove two unneeded prefetch calls (Michal Schmidt) [572012]\n- [net] bnx2x: add support for receive hashing (Michal Schmidt) [572012]\n- [net] bnx2x: update date and version to 1.52.53-1 (Michal Schmidt) [572012]\n- [net] bnx2x: dont report link down if already down (Michal Schmidt) [572012]\n- [net] bnx2x: rework power state handling code (Michal Schmidt) [572012]\n- [net] bnx2x: use register mask to avoid parity error (Michal Schmidt) [572012]\n- [net] bnx2x: fix MSI-X enabling flow (Michal Schmidt) [572012]\n- [net] bnx2x: add new statistics (Michal Schmidt) [572012]\n- [net] bnx2x: white space and formatting fixups (Michal Schmidt) [572012]\n- [net] bnx2x: protect code with NOMCP (Michal Schmidt) [572012]\n- [net] bnx2x: increase DMAE max write size for 57711 (Michal Schmidt) [572012]\n- [net] bnx2x: add skeleton VPD firmware version read code (Michal Schmidt) [572012]\n- [net] bnx2x: parity error handling for 57710 and 57711 (Michal Schmidt) [572012]\n- [net] bnx2x: use DEFINE_PCI_DEVICE_TABLE() (Michal Schmidt) [572012]\n- [net] bnx2x: move && and || to end of previous line (Michal Schmidt) [572012]\n- [net] bnx2x: remove trailing space in messages (Michal Schmidt) [572012]\n- [net] bnx2x: clean up debug prints (Michal Schmidt) [572012]\n- [net] bnx2x: use macro for phy address (Michal Schmidt) [572012]\n- [net] bnx2x: convert more to %pM (Michal Schmidt) [572012]\n- [net] bnx2x: use pci_ioremap_bar (Michal Schmidt) [572012]\n- [net] bnx2x: make NAPI poll routine closer to upstream (Michal Schmidt) [572012]\n- [net] bnx2x: typo fixes (Michal Schmidt) [572012]\nmacro helpers (Michal Schmidt) [572012]\n- [net] bnx2x: use DMA_BIT_MASK(64) over DMA_64BIT_MASK (Michal Schmidt) [572012]\n- [net] sfc: update to upstream version 2.6.36-rc1 code (Michal Schmidt) [556476]\n- [net] sfc: undo now unnecessary RHEL workqueue changes (Michal Schmidt) [556476]\n- [net] netdevice: add netdev_for_each_mc_addr (Michal Schmidt) [556476]\n- [misc] add round_jiffies_up and related routines (Michal Schmidt) [556476]\n- [net] core: bug fix for vlan + gro issue (Michal Schmidt) [556476]\n- [net] vlan/bridge: fix skb_pull_rcsum fatal exception (Michal Schmidt) [556476]\n- [fs] proc: add file position and flags info in /proc (Jerome Marchand) [498081]\n- [net] e100*/igb*/ixgb*: add missing read memory barrier (Andy Gospodarek) [629761]\n- [net] igb/igbvf: turn on TSO for VLAN interfaces (Andy Gospodarek) [629457]\n- [net] vlan: control vlan device TSO status with ethtool (Andy Gospodarek) [629457]\n- [xen] vtd: fix parameter iommu=no-intremap (Paolo Bonzini) [576478]\n[2.6.18-219.el5]\n- [net] udp: fix bogus UFO packet generation (Jarod Wilson) [632266]\n- [virt] xen: fix xennet driver to not corrupt data (Neil Horman) [630129]\n- [virt] fix 64-bit compile issue in VMWare TSC update (Prarit Bhargava) [538022]\n[2.6.18-218.el5]\n- [net] tcp: prevent sending past receiver window with TSO (Thomas Graf) [494400]\n- [misc] netdevice: add printk helpers for net drivers (Michal Schmidt) [629634]\n- [misc] drivers: remove private definitions of pr_* macros (Michal Schmidt) [629634]\n- [misc] kernel: add pr_* family of printk helper macros (Michal Schmidt) [629634]\n- [infiniband] iw_cxgb3: always define states[] (Michal Schmidt) [629634]\n- [net] ifb: fix syntax error in pr_debug usage (Michal Schmidt) [629634]\n- [net] tg3: disable PME bit during resume (John Feeney) [598530]\n- [net] netfilter: fix crashes caused by fragment jumps (Jiri Pirko) [617268]\n- [virt] update VMWare TSC code (Prarit Bhargava) [538022]\n[2.6.18-217.el5]\n- [time] implement fine grained accounting for PM timer (Ulrich Obergfell) [586285]\n- [time] initialize tick_nsec based on kernel parameters (Ulrich Obergfell) [586285]\n- [time] introduce 'pmtimer_fine_grained' kernel parameter (Ulrich Obergfell) [586285]\n- [scsi] ibmvfc: Fix terminate_rport_io (Steve Best) [628615]\n- [fs] ext3: flush disk caches on fsync when needed (Eric Sandeen) [592961]\n- [fs] ext4: move aio completion after unwritten extent con (Eric Sandeen) [617690]\n- [fs] xfs: move aio completion after unwritten extent conv (Eric Sandeen) [617690]\n- [fs] direct-io: move aio_complete into ->end_io (Eric Sandeen) [617690]\n- [fs] ext4: quota updates for RHEL5.6 (Eric Sandeen) [457153]\n- [fs] ext4: quota infrastructure updates for RHEL5.6 (Eric Sandeen) [457153]\n- [fs] ext4: core updates for RHEL5.6 (Eric Sandeen) [457153]\n- [fs] ext4: add new kernel helpers for RHEL5.6 (Eric Sandeen) [457153]\n- [infiniband] sync iser driver with upstream for RHEL5.6 (Mike Christie) [623595]\n- [net] cxgb3: dont flush workqueue if called from wq (Doug Ledford) [630124]\n- [net] cxgb3: get fatal parity error status on interrupt (Doug Ledford) [630124]\n- [net] cxgb3: clear fatal parity error register on init (Doug Ledford) [630124]\n- [net] cxgb3: add define for fatal parity error bit (Doug Ledford) [630124]\n- [net] qlge: update driver version to 1.00.00.25 (Chad Dupuis) [567402]\n- [net] qlge: fix a eeh handler to not add a pending timer (Chad Dupuis) [567402]\n- [net] qlge: update driver version to 1.00.00.24 (Chad Dupuis) [567402]\n- [net] qlge: remove error pkt flags, enable net csum error (Chad Dupuis) [567402]\n- [net] qlge: restore promiscuous setting in ql_adapter_up (Chad Dupuis) [567402]\n- [net] qlge: change cpu_to_be16 to htons for udp checksum (Chad Dupuis) [567402]\n- [net] qlge: remove firmware dependency for MPI coredump (Chad Dupuis) [567402]\n- [net] qlge: adding ndev->last_rx = jiffies (Chad Dupuis) [567402]\n- [net] qlge: fix pktgen issue reported by Cisco (Chad Dupuis) [567402]\n- [virtio] fix balloon without VIRTIO_BALLOON_F_STATS_VQ (Amit Shah) [601692]\n- [virtio] fix sched while atomic in virtio_balloon stats (Amit Shah) [601692]\n- [virtio] add memory stat reporting to balloon driver (Amit Shah) [601692]\n[2.6.18-216.el5]\n- [net] hashlimit: check allocation before freeing memory (Wade Mealing) [615229]\n- [net] clusterip: check allocation before freeing memory (Wade Mealing) [615227]\n- [ia64] mca: save I-resources when INIT is sent (Takao Indoh) [471136]\n- [scsi] mpt2sas: update to 05.101.00.02 (Tomas Henzl) [568281]\n- [scsi] ipr: bump the version number and date (Steve Best) [626566]\n- [scsi] ipr: fix resource type update and add attributes (Steve Best) [626566]\n- [scsi] ipr: fix transition to operational on new adapters (Steve Best) [626566]\n- [scsi] ipr: change endian swap key for hw spec change (Steve Best) [626566]\n- [scsi] ipr: add support for Obsidian-E embedded adapter (Steve Best) [626566]\n- [scsi] ipr: add MMIO write for BIST on 64-bit adapters (Steve Best) [626566]\n- [scsi] ipr: move setting of allow_restart flag (Steve Best) [626566]\n- [scsi] ipr: add writeq definition if needed (Steve Best) [626566]\n- [scsi] ipr: add endian swap enable for 64-bit adapters (Steve Best) [626566]\n- [scsi] ipr: fix resource path display and formatting (Steve Best) [626566]\n- [scsi] ipr: improve interrupt service routine performance (Steve Best) [626566]\n- [scsi] ipr: set data list length in request control block (Steve Best) [626566]\n- [scsi] ipr: fix register read address on 64-bit adapters (Steve Best) [626566]\n- [scsi] ipr: add resource path to IOA status area struct (Steve Best) [626566]\n- [scsi] ipr: implement fixes for 64-bit adapter support (Steve Best) [626566]\n- [scsi] ipr: fix compile warning (Steve Best) [626566]\n- [fs] ext4: allocate ->s_blockgroup_lock separately (Eric Sandeen) [614957]\n- [pci] xen: disable broken msi/msix on ia64 xen (Radim Krcmar) [518463]\n- [misc] fix non-CONFIG_NUMA x86_64 compile (Prarit Bhargava) [583673]\n- [pnp] ignore both UNSET and DISABLED ioresources (Prarit Bhargava) [560540]\n- [pnp] reserve system board iomem and ioport resources (Prarit Bhargava) [560540]\n- [net] ipv4: add IP_NODEFRAG option for IPv4 socket (Jiri Olsa) [562220]\n- [nfs] sunrpc: cancel task_cleanup work in xprt_destroy (Jeff Layton) [611938]\n- [fs] nfs: fix file create failure with HPUX client (Jeff Layton) [605720]\n- [net] ixgbe: update to upstream version 2.0.84-k2 (Andy Gospodarek) [568602]\n- [net] vlan: add VLAN bitfield defines (Andy Gospodarek) [566027]\n- [net] igb: actually support self_test ethtool command (Andy Gospodarek) [593862]\n- [net] ixgbe: actually support self_test ethtool command (Andy Gospodarek) [593862]\n- [net] ixgbevf: update to version 1.0.0-k1 (Andy Gospodarek) [566027]\n- [net] bonding: fix ALB mode to balance traffic on VLANs (Andy Gospodarek) [578531]\n- [net] igb: do register dump just before resetting adapter (Andy Gospodarek) [568602]\n- [kernel] nmi_watchdog: output count during check on boot (Don Zickus) [613667]\n- [misc] nmi: fix bogus nmi watchdog stuck messages (Don Zickus) [455323]\n- [virt] nmi: dont print NMI stuck messages on guests (Don Zickus) [455323]\n- [misc] nmi_watchdog: add /proc/sys/kernel/nmi_watchdog (Don Zickus) [455323]\n- [misc] scripts: use system python instead of env (Don Zickus) [521878]\n- [pci] sr-iov: fix broken resource alignment calculations (Don Dutile) [523341]\n- [pci] clean up resource alignment management (Don Dutile) [523341]\n- [pci] sr-iov: assign pci resources earlier (Don Dutile) [523341]\n- [net] vxge: update version to reflect RHEL5.6 changes (Bob Picco) [580413]\n- [net] vxge: set func_id 0 as privileged for normal func (Bob Picco) [580413]\n- [net] vxge: fix MSIX interrupt configuration (Bob Picco) [580413]\n- [net] vxge: fix ethtool -d output (Bob Picco) [580413]\n- [net] vxge: align tmemory only if misaligned (Bob Picco) [580413]\n- [net] vxge: fix hw buffer starvation from short packets (Bob Picco) [580413]\n- [net] vxge: fix receive stall w/ driver/chip out-of-sync (Bob Picco) [580413]\n- [cpufreq] add APERF/MPERF support for AMD processors (Bhavna Sarathy) [621335]\n- [xen] vmx: fix handling of FS/GS base MSRs (Michal Novotny) [613187]\n- [xen] hv: improve backtrace support on ia64 (Andrew Jones) [499553]\n- [xen] support new AMD family 0x15 CPU and NB hardware (Bhavna Sarathy) [619092]\n- [xen] allow dom0 to control core performance boost (Bhavna Sarathy) [568771]\n- [xen] add support for dom0 to access APERF/MPERF for AMD (Bhavna Sarathy) [568772]\n[2.6.18-215.el5]\n- [sound] ALSA HDA driver update for RHEL5.6 (Jaroslav Kysela) [592199]\n- [net] igbvf: update to latest upstream for RHEL5.6 (Stefan Assmann) [566028]\n- [net] igb: update igb driver to support Portville ACS (Stefan Assmann) [566024]\n- [net] igb: fix error in igb AER code (Stefan Assmann) [612212]\n- [ata] libata: fix suspend/resume for ATA SEMB devices (David Milburn) [622559]\n- [ata] sata_mv: msi masking fix (David Milburn) [554872]\n- [ata] sata_mv: Properly initialize main irq mask (David Milburn) [554872]\n- [ata] sata_mv: remove bogus nsect restriction (David Milburn) [554872]\n- [ata] sata_mv: dont read hc_irq_cause (David Milburn) [554872]\n- [ata] sata_mv: add the Gen IIE flag to the SoC devices (David Milburn) [554872]\n- [ata] sata_mv: dont issue two DMA commands concurrently (David Milburn) [554872]\n- [ata] sata_mv: safer logic for limit warnings (David Milburn) [554872]\n- [ata] sata_mv: warn on PIO with multiple DRQs (David Milburn) [554872]\n- [ata] sata_mv: enable async_notify for 60x1 Rev.C0 and up (David Milburn) [554872]\n- [s390] zfcp: Do not print bit mask as link speed (Hendrik Brueckner) [619857]\n- [s390] dasd: force online does not work (Hendrik Brueckner) [619466]\n- [s390] dasd: allocate fallback cqr for reserve/release (Hendrik Brueckner) [619465]\n- [s390] qeth: wait for finished recovery (Hendrik Brueckner) [619456]\n- [s390] qeth: avoid loop if ipa command response missing (Hendrik Brueckner) [619451]\n- [s390] zfcp: no force close when port is already closed (Hendrik Brueckner) [612263]\n- [s390] zfcp: Do not unblock rport from REOPEN_PORT_FORCED (Hendrik Brueckner) [612266]\n- [s390] zfcp: Fail erp after timeout (Hendrik Brueckner) [612261]\n- [message] fusion: update to 3.4.15 (Tomas Henzl) [568292]\n- [net] ipv6: reroute packets after netfilter mangling (Thomas Graf) [517327]\n- [scsi] lpfc: update driver from 8.2.0.76.1p to 8.2.0.77 (Rob Evers) [603806]\n- [virt] xenbus: avoid deadlock unregistering xenbus watch (Paolo Bonzini) [429102]\n- [ia64] kdump: prevent hang on INIT interrupt during boot (Neil Horman) [506694]\n- [net] qla3xxx: fix oops on too-long netdev priv structure (Neil Horman) [620508]\n- [kprobes] kretprobe: set status to fix fault handling (Josh Stone) [615121]\n- [net] bonding: fix a race in calls to slave MII ioctls (Flavio Leitner) [621280]\n- [virt] xen-kernel: improve backtrace support on ia64 (Andrew Jones) [499553]\n- [acpi] thinkpad-acpi: lock down video output state access (Don Howard) [607037]\n- [fs] xfs: fix untrusted inode number lookup (Dave Chinner) [624862]\n[2.6.18-214.el5]\n- [mm] accept an abutting stack segment (Jiri Pirko) [607858] {CVE-2010-2240}\n- [fs] fix dcache accounting bug (Josef Bacik) [596548]\n- [scsi] mptsas: enable TLR for SSP TAPE drives (Tomas Henzl) [599420]\n- [scsi] sas: add transport layer retry support (Tomas Henzl) [599420]\n- [scsi] fix potential kmalloc failure in scsi_get_vpd_page (Tomas Henzl) [599420]\n- [scsi] fix bugs in scsi_vpd_inquiry (Tomas Henzl) [599420]\n- [scsi] add VPD helper (Tomas Henzl) [599420]\n- [x86_64] implement vDSO randomization (Danny Feng) [459763]\n- [virt] xen: dont adjust time for ntp clock slowing (Bretislav Kabele) [553407]\n- [net] ibmveth: fix lost IRQ that leads to service loss (Steve Best) [626841]\n- [scsi] cxgb3i: sync driver with upstream for RHEL5.6 (Mike Christie) [567444]\n- [net] sched: fix some kernel memory leaks (Jiri Pirko) [624638] {CVE-2010-2942}\n- [tpm] autoload tpm_tis driver (John Feeney) [530123]\n- [usb] fix usbfs information leak (Eugene Teo) [566629] {CVE-2010-1083}\n- [virtio] console: Backport driver for RHEL 5.6 (Amit Shah) [620037]\n- [virtio] add virtqueue_ vq_ops wrappers (Amit Shah) [620037]\n- [virtio] initialize vq->data entries to NULL (Amit Shah) [620037]\n- [virtio] add ability to detach unused buffers from vrings (Amit Shah) [620037]\n- [virtio] make add_buf return capacity remaining (Amit Shah) [620037]\n- [virtio] find_vqs/del_vqs virtio operations (Amit Shah) [620037]\n- [virtio] add names to virtqueue struct (Amit Shah) [620037]\n- [virtio] more neatening of virtio_ring macros (Amit Shah) [620037]\n- [virtio] fix BAD_RING, START_US and END_USE macros (Amit Shah) [620037]\n[2.6.18-213.el5]\n- [mm] pass correct mm when growing stack (Jiri Pirko) [607858] {CVE-2010-2240}\n- [mm] fix up some user-visible effects of stack guard page (Jiri Pirko) [607858] {CVE-2010-2240}\n- [mm] fix page table unmap for stack guard page properly (Jiri Pirko) [607858] {CVE-2010-2240}\n- [mm] fix missing unmap for stack guard page failure case (Jiri Pirko) [607858] {CVE-2010-2240}\n- [mm] keep a guard page below a grow-down stack segment (Jiri Pirko) [607858] {CVE-2010-2240}\n- [net] tcp: fix div by zero in congestion control protos (Neil Horman) [608641]\n- [net] tcp: tcp_vegas ssthresh bug fix (Thomas Graf) [612709]\n- [net] tcp: tcp_vegas cong avoid fix (Thomas Graf) [612709]\n- [net] tcp: fix overflow bug in Vegas (Thomas Graf) [612709]\n- [net] tcp: fix Vegas bug in disabling slow start (Thomas Graf) [612709]\n- [net] tcp: increase Vegas default alpha and beta params (Thomas Graf) [612709]\n- [net] tcp: tcp_hybla zero congestion window growth fix (Thomas Graf) [612709]\n- [net] tcp: htcp last_cong bug fix (Thomas Graf) [612709]\n- [net] tcp: TCP cubic v2.2 (Thomas Graf) [612709]\n- [net] tcp: faster cube root (Thomas Graf) [612709]\n- [net] tcp: backport cubic update for net-2.6.22 (Thomas Graf) [612709]\n- [net] tcp: set Cubic and BIC default thresholds to zero (Thomas Graf) [612709]\n- [net] tcp: congestion control initialization (Thomas Graf) [612709]\n- [net] tcp: uninline tcp_is_cwnd_limited (Thomas Graf) [612709]\n- [net] tcp: move prior_in_flight collect to better spot (Thomas Graf) [612709]\n- [fs] ext4: consolidate in_range definitions (Eric Sandeen) [624332] {CVE-2010-3015}\n- [net] dont double count UDP_INERRORS (Neil Horman) [618818]\n- [scsi] be2iscsi: sync with upstream for RHEL5.6 (Mike Christie) [569643]\n- [mmc] sdhci: fix system cannot enter S4 with SD card (Matthew Garrett) [606899]\n- [cpufreq] powernow-k8: support AMD Core Performance Boost (Matthew Garrett) [568751]\n- [fs] cifs: remove force parm from cifs_unix_info_to_inode (Jeff Layton) [619112]\n- [fs] nfs: fix NFS4ERR_FILE_OPEN handling in Linux/NFS (Jeff Layton) [604044]\n- [usb] fix test of wrong variable in create_by_name (Don Howard) [594635]\n- [s390] cio: fix cause of unexpected recovery actions (Hendrik Brueckner) [621330]\n[2.6.18-212.el5]\n- [ipmi] add parameter to limit CPU usage in kipmid (Takao Indoh) [494680]\n- [net] bnx2x: Added GRO support (Stanislaw Gruszka) [573114]\n- [net] bnx2x: fix memory barriers (Stanislaw Gruszka) [569370]\n- [ppc] partition hibernation support (Steve Best) [565570]\n- [ppc] Add resume handler to powerpc time management code (Steve Best) [565570]\n- [scsi] ibmvscsi: Fix soft lockup on resume (Steve Best) [565570]\n- [scsi] ibmvfc: Fix soft lockup on resume (Steve Best) [565570]\n- [scsi] ibmvfc: Add suspend/resume support (Steve Best) [565570]\n- [scsi] ibmvscsi: Add suspend/resume support (Steve Best) [565570]\n- [net] ibmveth: Add suspend/resume support (Steve Best) [565570]\n- [ppc] vio: add power management support (Steve Best) [565570]\n- [ppc] add hooks to put CPU in appropriate offline state (Steve Best) [565570]\n- [virt] xen: fix passthrough of SR-IOV VF (Paolo Bonzini) [582886]\n- [mm] add option to skip ZERO_PAGE mmap of /dev/zero (Larry Woodman) [619541]\n- [net] bonding: check if clients MAC addr has changed (Flavio Leitner) [610234]\n- [virt] xen: fix pud_present compile warnings (Don Zickus) [590760]\n- [xen] CPU synchronization during MTRR register update (Don Dugger) [594546]\n[2.6.18-211.el5]\n- [pci] fix remove of proc entry for hotplug devices (Wade Mealing) [618114]\n- [ide]: atiixp: no pio autotune on AMD Hudson2 (Prarit Bhargava) [618075]\n- [pci] msi: add option for lockless interrupt mode (Prarit Bhargava) [599295]\n- [virt] xenbus: implement O_NONBLOCK (Paolo Bonzini) [470801]\n- [net] ip4v/tcp: no additional reset on closed sockets (Neil Horman) [605259]\n- [misc] xen: fix migration using xen-vnif in smp hvm guest (Miroslav Rezanina) [555910]\n- [edac] fix i7core_edac in multi-socket systems (Mauro Carvalho Chehab) [468877]\n- [net] arp_tables: fix unaligned accesses (Jiri Pirko) [582268]\n- [fs] ext3: handle journal_start failure properly (Josef Bacik) [588599]\n- [misc] handle dead hung uninterruptible tasks correctly (Jerome Marchand) [582237]\n- [fs] ecryptfs: fix ecryptfs_uid_hash buffer overflow (Jerome Marchand) [611387] {CVE-2010-2492}\n- [infiniband] check local reserved ports (Jerome Marchand) [557884]\n- [infiniband] randomize local port allocation (Jerome Marchand) [557884]\n- [net] reserve ports for apps using fixed port numbers (Jerome Marchand) [557884]\n- [kernel] sysctl: add proc_do_large_bitmap (Jerome Marchand) [557884]\n- [scsi] lpfc: use kernel-provided random32 (Jarod Wilson) [605816]\n- [lib] make tausworthe random32 generator available to all (Jarod Wilson) [605816]\n- [net] be2net: increase POST timeout for EEH recovery (Ivan Vecera) [616512]\n- [hwmon] coretemp: get TjMax value from MSR (Dean Nelson) [580699]\n- [hwmon] coretemp: detect the thermal sensors by CPUID (Dean Nelson) [580699]\n- [fs] xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED (Dave Chinner) [607032]\n- [fs] xfs: validate untrusted inode numbers during lookup (Dave Chinner) [607032]\n- [fs] xfs: always use iget in bulkstat (Dave Chinner) [607032]\n- [s390] qeth: support for OSA CHPID types OSX and OSM (Hendrik Brueckner) [599644]\n- [s390] qeth: dont allow layer switch with open interface (Hendrik Brueckner) [612195]\n- [s390] zfcp: fix reference counting on adisc (Hendrik Brueckner) [610089]\n- [s390] kernel: initrd vs bootmem bitmap (Hendrik Brueckner) [610837]\n- [s390] hypfs: fix high cpu time output (Hendrik Brueckner) [589282]\n- [s390] dasd: fix race between tasklet and dasd_sleep_on (Hendrik Brueckner) [593756]\n- [s390] cmm: fix module unload handling (Hendrik Brueckner) [598549]\n- [fs] gfs: clean up stuffed file data copy handling (Abhijith Das) [580867]\n[2.6.18-210.el5]\n- [scsi] ips driver sleeps while holding spin_lock (Steve Best) [616961]\n- [net] fix lockups and dupe addresses w/bonding and ipv6 (Shyam Iyer) [516985]\n- [scsi] megaraid_sas: update driver to version 4.31 (Tomas Henzl) [564249]\n- [scsi] megaraid_sas: update driver to version 4.27 (Rob Evers) [564249]\n- [net] nat: avoid rerouting packets if only key changed (Jiri Pirko) [566144]\n- [fs] cifs: remove bogus check in NTLM session setup code (Jeff Layton) [479418]\n- [ata] ahci: add em_buffer attribute for AHCI hosts (David Milburn) [568364]\n- [scsi] qla4xxx: add support for ISP82XX (Chad Dupuis) [546592]\n- [scsi] qla4xxx: Fixes from upstream for 5.6 (Chad Dupuis) [546592]\n- [scsi] qla2xxx: more upstream updates for RHEL 5.6 (Chad Dupuis) [567428]\n- [scsi] qla2xxx: add support for ISP82XX (Chad Dupuis) [567428]\n- [scsi] qla2xxx: more updates from upstream for RHEL 5.6 (Chad Dupuis) [567428]\n- [scsi] qla2xxx: update to 8.03.01.05.05.06-k (Chad Dupuis) [567428]\n- [xen] correct bitsize calculation for 32-on-64 (Andrew Jones) [616827]\n[2.6.18-209.el5]\n- [net] r8169: fix for broken register writes (Ivan Vecera) [581654]\n- [serial] remove contact info for ite887x chip support (Dean Nelson) [563271]\n- [serial] fix modpost warning in ite887x driver (Dean Nelson) [563271]\n- [serial] add support for ite887x chips (Dean Nelson) [563271]\n- [parport] increase ite887xs I/O port range (Dean Nelson) [563271]\n- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [578444 598946]\n- [fs] cifs: reject DNS upcall add_key req from userspace (Jeff Layton) [612171] {CVE-2010-2524}\n- [security] keys: new key flag for add_key from userspace (Jeff Layton) [612171] {CVE-2010-2524}\n[2.6.18-208.el5]\n- [fs] gfs2: fix rename causing kernel oops (Robert S Peterson) [602025]\n- [misc] io_apic: skip timer_irq_works check when on VMware (Prarit Bhargava) [575309]\n- [scsi] be2iscsi: fix for 64k data length sge (Mike Christie) [608801]\n- [mm] fix excessive memory reclaim from zones w/lots free (Larry Woodman) [604779]\n- [mm] properly release all hugepages on database shutdown (Larry Woodman) [593131]\n- [net] fix accept_local handling for dev with no xattrs (Jiri Olsa) [601370]\n- [fs] nfs: i_nlinks changes must set NFS_INO_INVALID_ATTR (Jeff Layton) [601800]\n- [fs] nfs: fix resolution in nfs_inode_attrs_need_update (Jeff Layton) [601800]\n- [fs] nfs: fix compiler warnings introduced recently (Jeff Layton) [601800]\n- [fs] nfs: fix attribute updates even more (Jeff Layton) [601800]\n- [fs] nfs: fix the NFS attribute update (Jeff Layton) [601800]\n- [fs] nfs: clean up inode handling functions (Jeff Layton) [601800]\n- [fs] nfs: nfs_refresh_inode should clear cache_validity (Jeff Layton) [601800]\n- [fs] nfs: use nfs_refresh_inode in __nfs_revalidate_inode (Jeff Layton) [601800]\n- [ata] ahci, pata_marvell: fixup competition for PATA port (David Milburn) [237372]\n- [net] qlcnic: Add QLCNIC to Kconfig and Makefile (Chad Dupuis) [562723]\n- [net] qlcnic: enable building driver module (Chad Dupuis) [562723]\n- [net] qlcnic: remove extra space from board names (Chad Dupuis) [562723]\n- [net] qlcnic: fix bios version check (Chad Dupuis) [562723]\n- [net] qlcnic: validate unified fw image (Chad Dupuis) [562723]\n- [net] qlcnic: fix multicast handling (Chad Dupuis) [562723]\n- [net] qlcnic: additional driver statistics. (Chad Dupuis) [562723]\n- [net] qlcnic: fix tx csum status (Chad Dupuis) [562723]\n- [net] qlcnic: add loopback diagnostic test (Chad Dupuis) [562723]\n- [net] qlcnic: add interrupt diagnostic test (Chad Dupuis) [562723]\n- [net] qlcnic: support LED blink for device identification (Chad Dupuis) [562723]\n- [net] qlcnic: protect resoruce cleanup by rtnl lock (Chad Dupuis) [562723]\n- [net] qlcnic: clear device reset state after fw recovery (Chad Dupuis) [562723]\n- [net] qlcnic: add ethernet identifier in board info (Chad Dupuis) [562723]\n- [net] qlcnic: use DEFINE_PCI_DEVICE_TABLE (Chad Dupuis) [562723]\n- [net] qlcnic: add Qlogic ethernet driver for CNA devices (Chad Dupuis) [562723]\n- Revert: [fs] cifs: reject DNS upcall add_key req from userspace (Jeff Layton) [612171] {CVE-2010-2524}\n- Revert: [security] keys: new key flag for add_key from userspace (Jeff Layton) [612171] {CVE-2010-2524}\n[2.6.18-207.el5]\n- [usb] uhci: fix oops in uhci_scan_schedule (Pete Zaitcev) [516851]\n- [wireless] rtl818x: use cancel_work_sync (Stanislaw Gruszka) [582191]\n- [wireless] iwlwifi: use cancel_work_sync (Stanislaw Gruszka) [582191]\n- [wireless] ath9k: use cancel_work_sync (Stanislaw Gruszka) [582191]\n- [wireless] rt2x00: use cancel_work_sync (Stanislaw Gruszka) [582191]\n- Revert: [wireless] rt2x00: fix work cancel race condition (Stanislaw Gruszka) [582191]\n- [wireless] use cancel_work_sync in mac80211 and core (Stanislaw Gruszka) [582191]\n- [misc] workqueue: add cancel_work_sync to include (Stanislaw Gruszka) [582191]\n- [net] igb: drop support for UDP hashing w/ RSS (Stefan Assmann) [613780]\n- [misc] signals: avoid unnecessary credentials check (Oleg Nesterov) [459901]\n- [acpi] tell platformthat we support fixed hw T-states (Matthew Garrett) [569590]\n- [edac] i7core_edac: Backport driver to RHEL5 (Mauro Carvalho Chehab) [468877]\n- [edac] i7core_edac: add driver for new Nehalem (Mauro Carvalho Chehab) [468877]\n- [x86_64] mce: fix misplaced 'continue' in mce.c (Mauro Carvalho Chehab) [468877]\n- [pci] Add a probing code that seeks for an specific bus (Mauro Carvalho Chehab) [468877]\n- [edac] add support for DDR3 at EDAC core (Mauro Carvalho Chehab) [468877]\n- [wireless] Kconfig: select WIRELESS_COMPAT as needed (John Linville) [583767]\n- [i386] oprofile: fix detection of Intel CPU family 6 (John Villalovos) [581919]\n- [misc] intel: support for Intel Cougar Point Chipset (John Villalovos) [566854]\n- [fs] xfs: dont let swapext operate on write-only files (Jiri Pirko) [605161] {CVE-2010-2226}\n- [fs] nfs: fix bug in nfsd4 read_buf (Jiri Olsa) [612035] {CVE-2010-2521}\n- [fs] nfsd: add lockdep annotation to nfsd4 recover code (Jeff Layton) [567092]\n- [fs] nfs: wait for close before silly-renaming (Jeff Layton) [565974]\n- [fs] cifs: enable CONFIG_CIFS_STATS (Jeff Layton) [574795]\n- [net] sunrpc: translate an -ENETUNREACH to -ENOTCONN (Jeff Layton) [481372]\n- [fs] cifs: merge CIFSSMBQueryEA with CIFSSMBQAllEAs (Jeff Layton) [527268]\n- [fs] cifs: verify lengths of QueryAllEAs reply (Jeff Layton) [527268]\n- [fs] cifs: increase maximum buffer size in CIFSSMBQAllEAs (Jeff Layton) [527268]\n- [fs] cifs: rename name_len to list_len in CIFSSMBQAllEAs (Jeff Layton) [527268]\n- [fs] cifs: clean up indentation in CIFSSMBQAllEAs (Jeff Layton) [527268]\n- [fs] cifs: reject DNS upcall add_key req from userspace (Jeff Layton) [612171] {CVE-2010-2524}\n- [fs] cifs: add parens around smb_var in BCC macros (Jeff Layton) [527268]\n- [security] keys: new key flag for add_key from userspace (Jeff Layton) [612171] {CVE-2010-2524}\n- [specfile] skip xen tarball and patching if building w/o xen (Jarod Wilson)\n- [specfile] replace ancient and deprecated rpm syntax (Jarod Wilson)\n- [virt] xen: remove sysdata hack from irq-xen.c (Paolo Bonzini) [561390]\n- [xen] msi fixmap cleanup and vector teardown (Don Dugger) [516236]\n[2.6.18-206.el5]\n- [x86] kprobes: introduce kprobes jump optimization (Masami Hiramatsu) [516313]\n- [x86] add x86_64 alternatives_text_reserved interface (Masami Hiramatsu) [516313]\n- [x86_64] kprobes: upstream update for rhel5.6 (Masami Hiramatsu) [516313]\n- [x86_64] add instruction decoder API (Masami Hiramatsu) [516313]\n- [fusion] mpt: fix deregister calls in exit path (hiro muneda) [581523]\n- [net] cxgb3: wait longer for control packets on init (Steve Best) [587670]\n- [scsi] scsi_dh_alua: add IBM Power Virtual SCSI ALUA dev (Steve Best) [567292]\n- [fs] gfs2: fix stuck in inode wait, no glocks stuck (Robert S Peterson) [595397]\n- [message] mptsas: fix disk add failing due to timeout (Rob Evers) [542892]\n- [scsi] lpfc: update from 8.2.0.73.1p to 8.2.0.76.1p (Rob Evers) [591674]\n- [scsi] lpfc: update from 8.2.0.63.p3 to 8.2.0.73.1p (Rob Evers) [571862]\n- [i2c] fix exports types for recently added i2c symbols (Prarit Bhargava) [611774]\n- [virt] xen: fix 32-bit syscalls on 64-bit kernel (Paolo Bonzini) [561394]\n- [virt] xen: add tracepoint for kernel pagefault event (Paolo Bonzini) [561385]\n- [security] selinux: fix race with re-parenting (Oleg Nesterov) [556675]\n- [net] sctp: fix length checks (Neil Horman) [605305]\n- [acpi] intel: avoid skipping ARB_DISABLE on model 0x0e (Matthew Garrett) [602846]\n- [block] cfq-iosched: fix bad locking in changed_ioprio (Jeff Moyer) [582435]\n- [block] cfq-iosched: kill cfq_exit_lock (Jeff Moyer) [582435]\n- [fs] cifs: fix kernel BUG with remote OS/2 server (Jeff Layton) [608588] {CVE-2010-2248}\n- [fs] cifs: dont try busy-file rename unless in same dir (Jeff Layton) [603706]\n- [fs] nfsd: dont break lease while servicing COMMIT call (Jeff Layton) [575817]\n- [fs] force target reval when following LAST_BIND symlinks (Jeff Layton) [571518]\n- [net] be2net: update to v2.102.348r with SR-IOV support (Ivan Vecera) [568388]\n- [net] virtio_net: add set_multicast_list (Herbert Xu) [552574]\n- [net] gro: fix bogus gso_size on the first fraglist entry (Herbert Xu) [588015]\n- [time] fix softlockups in RHEL5 virt guests (Glauber Costa) [607443]\n- [time] count ticks when loss gt cycle_accounted_limit (Glauber Costa) [584679]\n- [net] e1000e: dont inadvertently re-set INTX_DISABLE (Dean Nelson) [496127]\n- [scsi] fixup size on read capacity failure (David Milburn) [569654]\n- [s390] smsgiucv: add missing check for z/VM (Hendrik Brueckner) [590737]\n- [s390] zcore: fix reipl device detection (Hendrik Brueckner) [587027]\n- [s390] zcrypt: print error message for 8/72 error (Hendrik Brueckner) [563545]\n- [s390] kernel: fix dump indicator (Hendrik Brueckner) [546288]\n- [net] bluetooth: fix possible bad memory access via sysfs (Mauro Carvalho Chehab) [576021] {CVE-2010-1084}\n[2.6.18-205.el5]\n- [scsi] ipr: adds PCI ID definitions for new adapters (Steve Best) [563589]\n- [scsi] ipr: add support for new IOASCs (Steve Best) [563589]\n- [scsi] ipr: add support for multiple stages of init (Steve Best) [563589]\n- [scsi] ipr: implement shutdown changes (Steve Best) [563589]\n- [scsi] ipr: hardware assisted smart dump functionality (Steve Best) [563589]\n- [scsi] ipr: add error handling updates for next gen chip (Steve Best) [563589]\n- [scsi] ipr: update the config table for next gen chip (Steve Best) [563589]\n- [scsi] ipr: define register offsets for next gen chip (Steve Best) [563589]\n- [scsi] ipr: add command structures for next gen chip (Steve Best) [563589]\n- [scsi] ipr: differentiate pci-x and pci-e based adapters (Steve Best) [563589]\n- [scsi] ipr: add test for MSI interrupt support (Steve Best) [563589]\n- [scsi] ipr: add message to error table (Steve Best) [563589]\n- [scsi] ipr: handle logically bad block write errors (Steve Best) [563589]\n- [scsi] ipr: convert to use the data buffer accessors (Steve Best) [563589]\n- [scsi] ipr: add some defines that are missing in RHEL5.5 (Steve Best) [563589]\n- [scsi] ipr: add workaround for MSI interrupts on P7 (Steve Best) [572333]\n- [net] tcp: fix rcv mss estimate for lro (Stanislaw Gruszka) [593801]\n- [virt] xen netback: copy skbuffs if head crosses pages (Paolo Bonzini) [578259]\n- [virt] xen: handle softirqs at end of event processing (Paolo Bonzini) [564523]\n- [virt] fix tsccount clocksource under kvm guests (Glauber Costa) [581396]\n- [net] benet: compat header cleanups, part 2 (Ivan Vecera) [546740]\n- [net] benet: compat header cleanups, part 1 (Prarit Bhargava) [546740]\n- [net] bnx2: compat header cleanups (Prarit Bhargava) [546740]\n- [net] e1000/e1000e: compat header cleanup (Prarit Bhargava) [546740]\n- [net] enic: compat header cleanup (Prarit Bhargava) [546740]\n- [net] forcedeth: compat header cleanup (Prarit Bhargava) [546740]\n- [net] igb: compat header cleanups (Prarit Bhargava) [546740]\n- [net] ixgbe: compat header cleanups (Prarit Bhargava) [546740]\n- [net] myri10ge: compat header cleanups (Prarit Bhargava) [546740]\n- [net] netxen: compat header cleanup (Prarit Bhargava) [546740]\n- [net] niu: compat header cleanup (Prarit Bhargava) [546740]\n- [net] qlge: compat header cleanup (Prarit Bhargava) [546740]\n- [net] r8169: compat header cleanups, part 2 (Ivan Vecera) [546740]\n- [net] r8169: compat header cleanups, part 1 (Prarit Bhargava) [546740]\n- [net] sfc: compat header cleanups (Prarit Bhargava) [546740]\n- [net] sky2: compat header cleanup (Prarit Bhargava) [546740]\n- [net] tg3: compat header cleanup (Prarit Bhargava) [546740]\n- [net] bonding: compat header cleanup (Prarit Bhargava) [546740]\n- [net] move compat header file contents to proper includes (Prarit Bhargava) [546740]\n- [net] ethernet: compat header cleanups (Prarit Bhargava) [546740]\n- [net] chelsio: compat header cleanups (Prarit Bhargava) [546740]\n- [net] s2io: compat header cleanups (Prarit Bhargava) [546740]\n- [net] vxge: compat header cleanup (Prarit Bhargava) [546740]\n- [infiniband] compat header cleanups (Prarit Bhargava) [546740]\n- [scsi] compat header cleanups (Prarit Bhargava) [546740]\n- [misc] readq/writeq compat header cleanup (Prarit Bhargava) [546740]\n- [pci] compat header cleanups (Prarit Bhargava) [546740]\n- [misc] compat.h cleanup: add cancel_delayed_work_sync (Prarit Bhargava) [546740]\n- [i2c] compat header cleanups (Prarit Bhargava) [546740]\n- [fs] nfs: fix memory leak when using -onolock on nfs v2/3 (Jeff Layton) [592908]\n[2.6.18-204.el5]\n- [fs] gfs2: fix ordering of ordered writes (Steven Whitehouse) [581013]\n- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [602402]\n- [x86_64] unify apic mapping code (Prarit Bhargava) [573858]\n- [virt] xen: fix Connected state after netback dev closed (Paolo Bonzini) [591548]\n- [net] ipv4: add sysctl to accept packets w/local source (Jiri Olsa) [601370]\n- [nfs] fix unitialized list head on error exit in recovery (Jeff Layton) [569342]\n- [virt] virtio_blk: add support for cache flushes (Christoph Hellwig) [571735]\n- [xen] ia64: unset be from the task psr (Andrew Jones) [587477] {CVE-2010-2070}\n[2.6.18-203.el5]\n- [misc] permit larger than 2TB USB and FW drives (Pete Zaitcev) [503864]\n- [net] cnic: fix panic when nl msg rcvd when device down (Stanislaw Gruszka) [595862]\n- [infiniband] ehca: require in_wc in process_mad (Steve Best) [571517]\n- [net] igb: Add support for pci-e Advanced Error Reporting (Stefan Assmann) [568221]\n- [fs] ext4: MOVE_EXT cant overwrite append-only files (Eric Sandeen) [601008] {CVE-2010-2066}\n- [net] wireless: convert reg_regdb_search_lock to mutex (John Linville) [597334]\n- [net] tcp: dont send keepalive probes if receiving data (Flavio Leitner) [593040]\n- [hwmon] add support for additional CPU models to coretemp (Dean Nelson) [559228]\n- [fs] gfs2: use -EUSERS when mounting w/o enough journals (Abhijith Das) [600387]\n- [misc] workqueue: make cancel_work_sync EXPORT_SYMBOL_GPL (Oleg Nesterov) [596626]\n[2.6.18-202.el5]\n- [fs] gfs2: fix permissions checking for setflags ioctl (Steven Whitehouse) [595399] {CVE-2010-1641}\n- [mm] clear page errors when issuing a fresh read of page (Rik van Riel) [590763]\n- [misc] keys: do not find already freed keyrings (Vitaly Mayatskikh) [585100] {CVE-2010-1437}\n- [misc] workqueue: silence kabi checker (Stanislaw Gruszka) [596626]\n- [misc] workqueue: implement cancel_work_sync (Oleg Nesterov) [596626]\n- [misc] workqueue: implement try_to_grab_pending (Oleg Nesterov) [596626]\n- [misc] workqueue: prep flush_cpu_workqueue for additions (Oleg Nesterov) [596626]\n- [misc] workqueue: implement wait_on_work (Oleg Nesterov) [596626]\n- [misc] workqueue: add set_wq_data and get_wq_data helpers (Oleg Nesterov) [596626]\n- [misc] workqueue: cwq instead of wq where appropriate (Oleg Nesterov) [596626]\n- [misc] workqueue: initial prep for cancel_work_sync (Oleg Nesterov) [596626]\n- [net] sctp: file must be valid before setting timeout (Jiri Pirko) [578261]\n- [net] tg3: fix panic in tg3_interrupt (John Feeney) [569106]\n- [net] e1000/e1000e: implement simple interrupt moderation (Andy Gospodarek) [586416]\n- [virt] dont compute pvclock adjustments if we trust tsc (Glauber Costa) [570824]\n- [virt] add a global synchronization point for pvclock (Glauber Costa) [570824]\n- [virt] enable pvclock flags in vcpu_time_info structure (Glauber Costa) [570824]\n- [misc] add atomic64_cmpxcgh to x86_64 include files (Glauber Costa) [570824]\n- [x86] grab atomic64 types from upstream (Glauber Costa) [570824]\n- [pci] cleanup error return for pcix get/set mmrbc calls (Dean Nelson) [578492]\n- [pci] fix pcix access of PCI_X_CMD get/set mmrbc calls (Dean Nelson) [578492]\n- [pci] fix return value from pcix_get_max_mmrbc() (Dean Nelson) [578492]\n- [pci] prepare for backport of upstream fixes and cleanup (Dean Nelson) [578492]\n- [net] ipv6: fix more memory leaks when ndisc_init fails (Amerigo Wang) [555338]\n- [xen] bring back VMXE/SVME flags (Andrew Jones) [570091]\n[2.6.18-201.el5]\n- [s390] qdio: continue polling for buffer state ERROR (Hendrik Brueckner) [565531]\n- [pci] acpiphp: fix missing acpiphp_glue_exit (Prarit Bhargava) [515556]\n- [net] cnic: Fix crash during bnx2x MTU change (Stanislaw Gruszka) [582367]\n- [net] bxn2x: add dynamic lro disable support (Stanislaw Gruszka) [582367]\n- [net] implement dev_disable_lro api for RHEL5 (Stanislaw Gruszka) [582367]\n[2.6.18-200.el5]\n- [fs] getrusage: fill ru_maxrss value (Amerigo Wang) [466157]\n- [net] bonding: fix broken multicast with round-robin mode (Andy Gospodarek) [570645]\n- [usb] input: fix keyboard LEDs on all the time (Pete Zaitcev) [513934]\n- [x86_64] fix time drift due to faulty lost tick tracking (Ulrich Obergfell) [579711]\n- [cciss] remove extraneous printk (Tomas Henzl) [582465]\n- [sunrpc] fix AUTH_SYS using sec=sys export option (Sachin Prabhu) [573652]\n- [misc] fix itimers periodic tics precision (Stanislaw Gruszka) [441134]\n- [net] tg3: fix INTx fallback when MSI fails (Steve Best) [587666]\n- [fs] quota: fix possible infinite loop in quota code (Eric Sandeen) [546060]\n- [misc] add {thread,core}_siblings_list to /sys (Prarit Bhargava) [570610]\n- [misc] add /sys/devices/system/node/nodeX/cpulist files (Prarit Bhargava) [572285]\n- [net] tun: orphan an skb on tx (Michael S. Tsirkin) [584412]\n- [edac] fix panic when a corrected error happens on i5000 (Mauro Carvalho Chehab) [533391]\n- [net] iwlwifi: re-enable IWLWIFI_LEDS (John Linville) [582003]\n- [net] calc TCPs connection closethreshold as time value (Jiri Pirko) [582722]\n- [net] sched: fix SFQ qdisc crash w/limit of 2 packets (Jiri Pirko) [579774]\n- [net] missed and reordered checks in {arp,ip,ip6}_tables (Jiri Pirko) [554563]\n- [net] neigh: fix state transitions via Netlink request (Jiri Pirko) [485903]\n- [net] route: fix BUG_ON in rt_secret_rebuild_oneshot (Jiri Olsa) [566104]\n- [net] netfilter: fix vmalloc ENOMEM caused by iptables (Jiri Olsa) [570491]\n- [block] cciss: fix multi-line printk log level (Jerome Marchand) [556921]\n- [nfs] revert retcode check in nfs_revalidate_mapping() (Jeff Layton) [557423]\n- [nfs] dont decode GETATTR if DELEGRETURN returned error (Jeff Layton) [551028]\n- [md] dm-log: fix bad log status after failure (Jonathan E Brassow) [570583]\n- [net] igmp: fix ip_mc_sf_allow race (Flavio Leitner) [552886]\n- [hwmon] add 0x prefix to hex coretemp module output (Dean Nelson) [571864]\n- [net] e1000e: fix WoL init when WoL disabled in EEPROM (Dean Nelson) [568562]\n- [ata] libata: handle semb signature (David Milburn) [533093]\n- [ata] libata-acpi: missing _SDD is not an error (David Milburn) [559815]\n- [scsi] sg: rate limit warning (Doug Ledford) [536937]\n- [net] tun: check supplemental groups in TUN/TAP driver (Danny Feng) [540786]\n- [s390] nss: add missing .previous call to asm function (Hendrik Brueckner) [581522]\n- [misc] lockdep: dump stack when hitting a limit (Amerigo Wang) [546554]\n- [net] ipv6: dont panic when kmem_cache_create fails (Amerigo Wang) [555338]\n- [misc] ipc: HARD_MSGMAX should be higher on 64bit (Amerigo Wang) [548334]\n- [fs] gfs2: make quota file size a multiple of gfs2_quota (Abhijith Das) [546455]\n[2.6.18-199.el5]\n- [mm] fix hugepage corruption using vm.drop_caches (Larry Woodman) [579469]\n- [misc] taskstats: enable CONFIG_TASK_XACCT (Jiri Olsa) [516961]\n- [misc] taskstats: new structure/cmd to avoid KABI break (Jiri Olsa) [516961]\n- [misc] taskstats: common fix for KABI breakage (Jiri Olsa) [516961]\n- [misc] taskstats: upgrade to version 4 (Jiri Olsa) [516961]\n- [misc] futex: handle futex value corruption gracefully (Jerome Marchand) [480396] {CVE-2010-0622}\n- [misc] futex: handle user space corruption gracefully (Jerome Marchand) [480396] {CVE-2010-0622}\n- [misc] futex: fix fault handling in futex_lock_pi (Jerome Marchand) [480396] {CVE-2010-0622}\n- [x86] utrace: block-step fix (Jerome Marchand) [463950]\n- [nfs] dont unhash dentry in nfs_lookup_revalidate (Jeff Layton) [582321]\n- [net] sunrpc: fix panic when reloading rpcsec_gss_krb5 (Harshula Jayasuriya) [570044]\n- [net] bonding: fix updating of speed/duplex changes (Andy Gospodarek) [567604]\n- [net] e1000: fix WoL init when WoL disabled in EEPROM (Dean Nelson) [568561]\n- [ata] ahci: support FIS-based switching (David Milburn) [474294]\n- [audit] make sure filterkey rules are reported (Alexander Viro) [579479]\n- [audit] clean up rule ordering, part 2 (Alexander Viro) [579479]\n- [audit] clean up rule ordering, part 1 (Alexander Viro) [579479]\n- [audit] fix selinux_audit_rule_update w/audit_inode_hash (Alexander Viro) [579479]\n- [virtio] fix GFP flags passed by virtio balloon driver (Amit Shah) [584683]\n- [net] sctp: fix skb_over_panic w/too many unknown params (Neil Horman) [584658] {CVE-2010-1173}\n- [xen] arpl on MMIO area crashes the guest (Paolo Bonzini) [572982] {CVE-2010-0730}\n[2.6.18-198.el5]\n- [acpi] warn on hot-add of memory exceeding 4G boundary (Prarit Bhargava) [571544]\n- [net] tipc: fix various oopses in uninitialized code (Neil Horman) [558693] {CVE-2010-1187}\n- [acpi] fix WARN on unregister in power meter driver (Matthew Garrett) [576246]\n- [block] cfq-iosched: fix IOPRIO_CLASS_IDLE accounting (Jeff Moyer) [574285]\n- [block] cfq-iosched: async queue allocation per priority (Jeff Moyer) [574285]\n- [block] cfq-iosched: fix async queue behaviour (Jeff Moyer) [574285]\n- [block] cfq-iosched: propagate down request sync flag (Jeff Moyer) [574285]\n- [block] introduce the rq_is_sync macro (Jeff Moyer) [574285]\n- [fs] vfs: fix LOOKUP_FOLLOW on automount symlinks (Jeff Layton) [567816] {CVE-2010-1088}\n- [nfs] fix an oops when truncating a file (Jeff Layton) [567195] {CVE-2010-1087}\n- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [511368]\n- [misc] make the keyring quotas controllable via /proc/sys (Amerigo Wang) [441243]\n- [fs] fix kernel oops while copying from ext3 to gfs2 (Abhijith Das) [555754] {CVE-2010-1436}\n[2.6.18-197.el5]\n- [cpu] fix boot crash in 32-bit install on AMD cpus (Bhavna Sarathy) [575799]\n[2.6.18-196.el5]\n- [mm] fix boot on s390x after bootmem overlap patch (Amerigo Wang) [550974]\n- [net] bnx2: avoid restarting cnic in some contexts (Andy Gospodarek) [554706]\n- [misc] add missing CVE labels for entries in 2.6.18-195.el5 (Jarod Wilson)\n[2.6.18-195.el5]\n- [redhat] make sha512hmac sig failure more obvious (Jarod Wilson)\n- [mm] keep get_unmapped_area_prot functional (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] switch do_brk to get_unmapped_area (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] take arch_mmap_check into get_unmapped_area (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] get rid of open-coding in ia64_brk (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] unify sys_mmap* functions (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] kill ancient cruft in s390 compat mmap (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] fix pgoff in have to relocate case of mremap (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] fix the arch checks in MREMAP_FIXED case (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] fix checks for expand-in-place mremap (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] add new vma_expandable helper function (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] move MREMAP_FIXED into its own header (Danny Feng) [556710] {CVE-2010-0291}\n- [mm] move locating vma code and checks on it (Danny Feng) [556710] {CVE-2010-0291}\n- [iscsi] fix slow failover times (Mike Christie) [570681]\n- [misc] kernel: fix elf load DoS on x86_64 (Danny Feng) [560553] {CVE-2010-0307}\n- [netlink] connector: delete buggy notification code (Jiri Olsa) [561685] {CVE-2010-0410}\n- [sound] hda_intel: avoid divide by zero in azx devices (Jaroslav Kysela) [567172] {CVE-2010-1085}\n- [dvb] fix endless loop when decoding ULE at dvb-core (Mauro Carvalho Chehab) [569242] {CVE-2010-1086}\n- [scsi] fnic: fix tx queue handling (Mike Christie) [576709]\n- [fusion] mptsas: fix event_data alignment (Tomas Henzl) [570000]\n- [edac] fix internal error message in amd64_edac driver (Bhavna Sarathy) [569938]\n- [fs] remove unneccessary f_ep_lock from fasync_helper (Lachlan McIlroy) [567479]\n- [x86_64] fix floating point state corruption after signal (Oleg Nesterov) [560891]\n- [mm] dont let reserved memory overlap bootmem_map (Amerigo Wang) [550974]\n- [s390] kernel: correct TLB flush of page table entries (Hendrik Brueckner) [545527]\n- [xen] iommu: clear IO-APIC pins on boot and shutdown (Paolo Bonzini) [548201]\n- [xen] vtd: fix ioapic pin array (Don Dugger) [563546]\n- [xen] set hypervisor present CPUID bit (Paolo Bonzini) [573771]\n[2.6.18-194.el5]\n- [net] mlx4: pass attributes down to vlan interfaces (Doug Ledford) [573098]\n- [block] cfq-iosched: fix sequential read perf regression (Jeff Moyer) [571818]\n[2.6.18-193.el5]\n- [fs] gfs2: locking fix for potential dos (Steven Whitehouse) [572390] {CVE-2010-0727}\n- [acpi] power_meter: avoid oops on driver load (Matthew Garrett) [566575]\n- [net] r8169: fix assignments in backported net_device_ops (Ivan Vecera) [568040]\n- [net] virtio_net: refill rx buffer on out-of-memory (Herbert Xu) [554078]", "cvss3": {}, "published": "2011-01-20T00:00:00", "type": "oraclelinux", "title": "Oracle Linux 5.6 kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2010-0307", "CVE-2010-2942", "CVE-2010-3904", "CVE-2010-3078", "CVE-2010-2066", "CVE-2010-4081", "CVE-2010-1641", "CVE-2010-2248", "CVE-2010-4073", "CVE-2010-2226", "CVE-2010-0410", "CVE-2010-4072", "CVE-2010-0730", "CVE-2010-2492", "CVE-2010-2521", "CVE-2010-4083", "CVE-2010-1437", "CVE-2010-3859", "CVE-2010-3086", "CVE-2010-0727", "CVE-2010-1187", "CVE-2010-4080", "CVE-2010-2963", "CVE-2010-0291", "CVE-2010-4343", "CVE-2010-3877", "CVE-2010-4158", "CVE-2010-2070", "CVE-2010-2524", "CVE-2010-3296", "CVE-2010-1084", "CVE-2010-3015", "CVE-2010-2938", "CVE-2010-4247", "CVE-2010-4263", "CVE-2010-4258", "CVE-2010-3442", "CVE-2010-4243", "CVE-2010-3066", "CVE-2010-2240", "CVE-2010-1083", "CVE-2010-3081", "CVE-2010-0622", "CVE-2010-3067", "CVE-2010-3699", "CVE-2010-4238", "CVE-2010-1085", "CVE-2010-1086", "CVE-2010-1436", "CVE-2010-4255", "CVE-2010-1173", "CVE-2010-1088", "CVE-2010-1087", "CVE-2010-4075"], "modified": "2011-01-20T00:00:00", "id": "ELSA-2011-0017", "href": "http://linux.oracle.com/errata/ELSA-2011-0017.html", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:36:30", "description": "[2.6.18-194.8.1.0.1.el5]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- Add entropy support to igb (John Sobecki) [orabug 7607479]\n- [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]\n- [NET] Add xen pv/bonding netconsole support (Tina Yang) [orabug 6993043]\n [bz 7258]\n- [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [nfsd] fix failure of file creation from hpux client (Wen gang Wang)\n [orabug 7579314]\n- [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702]\n- [net] bonding: fix xen+bonding+netconsole panic issue (Joe Jin) [orabug 9504524]\n- [rds] Patch rds to 1.4.2-14 (Andy Grover) [orabug 9471572, 9344105]\n RDS: Fix BUG_ONs to not fire when in a tasklet\n ipoib: Fix lockup of the tx queue\n RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)\n RDS: Properly unmap when getting a remote access error (Tina Yang)\n RDS: Fix locking in rds_send_drop_to()\n- [mm] Enahance shrink_zone patch allow full swap utilization, and also be\n NUMA-aware (John Sobecki, Chris Mason, Herbert van den Bergh)\n [orabug 9245919]\n[2.6.18-194.8.1.el5]\n- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]\n[2.6.18-194.7.1.el5]\n- [virt] don't compute pvclock adjustments if we trust tsc (Glauber Costa) [601080 570824]\n- [virt] add a global synchronization point for pvclock (Glauber Costa) [601080 570824]\n- [virt] enable pvclock flags in vcpu_time_info structure (Glauber Costa) [601080 570824]\n- [misc] add atomic64_cmpxcgh to x86_64 include files (Glauber Costa) [601080 570824]\n- [x86] grab atomic64 types from upstream (Glauber Costa) [601080 570824]\n[2.6.18-194.6.1.el5]\n- [fs] gfs2: fix permissions checking for setflags ioctl (Steven Whitehouse) [595580 595399] {CVE-2010-1641}\n- [mm] clear page errors when issuing a fresh read of page (Rik van Riel) [599739 590763]\n- [misc] keys: do not find already freed keyrings (Vitaly Mayatskikh) [585099 585100] {CVE-2010-1437}\n- [net] sctp: file must be valid before setting timeout (Jiri Pirko) [598355 578261]\n- [net] tg3: fix panic in tg3_interrupt (John Feeney) [600498 569106]\n- [net] e1000/e1000e: implement simple interrupt moderation (Andy Gospodarek) [599332 586416]\n- [net] cnic: Fix crash during bnx2x MTU change (Stanislaw Gruszka) [596385 582367]\n- [net] bxn2x: add dynamic lro disable support (Stanislaw Gruszka) [596385 582367]\n- [net] implement dev_disable_lro api for RHEL5 (Stanislaw Gruszka) [596385 582367]\n- [x86_64] fix time drift due to faulty lost tick tracking (Ulrich Obergfell) [601090 579711]\n- [net] neigh: fix state transitions via Netlink request (Jiri Pirko) [600215 485903]\n- [mm] fix hugepage corruption using vm.drop_caches (Larry Woodman) [599737 579469]\n- [nfs] don't unhash dentry in nfs_lookup_revalidate (Jeff Layton) [596384 582321]\n- [fs] remove unneccessary f_ep_lock from fasync_helper (Lachlan McIlroy) [599730 567479]\n- [xen] set hypervisor present CPUID bit (Paolo Bonzini) [599734 573771]\n[2.6.18-194.5.1.el5]\n- [net] bonding: fix broken multicast with round-robin mode (Andy Gospodarek) [594057 570645]\n- [net] tg3: fix INTx fallback when MSI fails (Steve Best) [592844 587666]\n- [net] sched: fix SFQ qdisc crash w/limit of 2 packets (Jiri Pirko) [594054 579774]\n- [nfs] revert retcode check in nfs_revalidate_mapping() (Jeff Layton) [594061 557423]\n- [misc] futex: handle futex value corruption gracefully (Jerome Marchand) [563093 480396] {CVE-2010-0622}\n- [misc] futex: handle user space corruption gracefully (Jerome Marchand) [563093 480396] {CVE-2010-0622}\n- [misc] futex: fix fault handling in futex_lock_pi (Jerome Marchand) [563093 480396] {CVE-2010-0622}\n- [net] e1000: fix WoL init when WoL disabled in EEPROM (Dean Nelson) [591493 568561]\n- [virtio] fix GFP flags passed by virtio balloon driver (Amit Shah) [591611 584683]\n- [net] sctp: fix skb_over_panic w/too many unknown params (Neil Horman) [584657 584658] {CVE-2010-1173}\n- [acpi] fix WARN on unregister in power meter driver (Matthew Garrett) [592846 576246]\n- [mm] keep get_unmapped_area_prot functional (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] switch do_brk to get_unmapped_area (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] take arch_mmap_check into get_unmapped_area (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] get rid of open-coding in ia64_brk (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] unify sys_mmap* functions (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] kill ancient cruft in s390 compat mmap (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] fix pgoff in have to relocate case of mremap (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] fix the arch checks in MREMAP_FIXED case (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] fix checks for expand-in-place mremap (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] add new vma_expandable helper function (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] move MREMAP_FIXED into its own header (Danny Feng) [556709 556710] {CVE-2010-0291}\n- [mm] move locating vma code and checks on it (Danny Feng) [556709 556710] {CVE-2010-0291}\n[2.6.18-194.4.1.el5]\n- [acpi] warn on hot-add of memory exceeding 4G boundary (Prarit Bhargava) [587957 571544]\n- [net] tipc: fix various oopses in uninitialized code (Neil Horman) [578058 558693] {CVE-2010-1187}\n- [block] cfq-iosched: fix IOPRIO_CLASS_IDLE accounting (Jeff Moyer) [588219 574285]\n- [block] cfq-iosched: async queue allocation per priority (Jeff Moyer) [588219 574285]\n- [block] cfq-iosched: fix async queue behaviour (Jeff Moyer) [588219 574285]\n- [block] cfq-iosched: propagate down request sync flag (Jeff Moyer) [588219 574285]\n- [block] introduce the rq_is_sync macro (Jeff Moyer) [588219 574285]\n- [fs] vfs: fix LOOKUP_FOLLOW on automount symlinks (Jeff Layton) [567815 567816] {CVE-2010-1088}\n- [nfs] fix an oops when truncating a file (Jeff Layton) [567194 567195] {CVE-2010-1087}\n- [fs] fix kernel oops while copying from ext3 to gfs2 (Abhijith Das) [586008 555754] {CVE-2010-1436}", "cvss3": {}, "published": "2010-07-01T00:00:00", "type": "oraclelinux", "title": "kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2010-1641", "CVE-2010-1437", "CVE-2010-1187", "CVE-2010-0291", "CVE-2010-0622", "CVE-2010-1436", "CVE-2010-1173", "CVE-2010-1088", "CVE-2010-1087"], "modified": "2010-07-01T00:00:00", "id": "ELSA-2010-0504", "href": "http://linux.oracle.com/errata/ELSA-2010-0504.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:36:27", "description": " [2.6.18-194.el5]\n- [net] mlx4: pass attributes down to vlan interfaces (Doug Ledford) [573098]\n- [block] cfq-iosched: fix sequential read perf regression (Jeff Moyer) [571818]\n[2.6.18-193.el5]\n- [fs] gfs2: locking fix for potential dos (Steven Whitehouse) [572390] {CVE-2010-0727}\n- [acpi] power_meter: avoid oops on driver load (Matthew Garrett) [566575]\n- [net] r8169: fix assignments in backported net_device_ops (Ivan Vecera) [568040]\n- [net] virtio_net: refill rx buffer on out-of-memory (Herbert Xu) [554078]\n[2.6.18-192.el5]\n- [cpu] fix amd l3 cache disable functionality (Jarod Wilson) [517586]\n- [misc] backport upstream strict_strto* functions (Jarod Wilson) [517586]\n- [wireless] rt2x00: fix work cancel race conditions (Stanislaw Gruszka) [562972]\n- [net] igb: fix DCA support for 82580 NICs (Stefan Assmann) [513712]\n- Revert: [ia64] kdump: fix a deadlock while redezvousing (Neil Horman) [506694]\n- [block] cfq: kick busy queues w/o waiting for merged req (Jeff Moyer) [570814]\n- [fs] cifs: max username len check in setup does not match (Jeff Layton) [562947]\n- [fs] cifs: CIFS shouldnt make mountpoints shrinkable (Jeff Layton) [562947]\n- [fs] cifs: fix dentry hash for case-insensitive mounts (Jeff Layton) [562947]\n- [fs] cifs: fix len for converted unicode readdir names (Jeff Layton) [562947]\n- [x86_64] xen: fix missing 32-bit syscalls on 64-bit Xen (Christopher Lalancette) [559410]\n- [fs] gfs2: fix kernel BUG when using fiemap (Abhijith Das) [569610]\n- [net] sctp: backport cleanups for ootb handling (Neil Horman) [555667] {CVE-2010-0008}\n- [xen] vtd: ignore unknown DMAR entries (Don Dugger) [563900]\n[2.6.18-191.el5]\n- [wireless] iwlwifi: fix dual band N-only use on 5x00 (Stanislaw Gruszka) [566696]\n- [net] be2net: critical bugfix from upstream (Ivan Vecera) [567718]\n- [net] tg3: fix 5717 and 57765 asic revs panic under load (John Feeney) [565964]\n- [net] bnx2x: use single tx queue (Stanislaw Gruszka) [567979]\n- [net] igb: fix WoL initialization when disabled in eeprom (Stefan Assmann) [564102]\n- [net] igb: fix warning in igb_ethtool.c (Stefan Assmann) [561076]\n- [net] s2io: restore ability to tx/rx vlan traffic (Neil Horman) [562732]\n- [net] ixgbe: stop unmapping DMA buffers too early (Andy Gospodarek) [568153]\n- [net] e1000e: disable NFS filtering capabilites in ICH hw (Andy Gospodarek) [558809]\n- [net] bnx2: update firmware and version to 2.0.8 (Andy Gospodarek) [561578]\n- [net] mlx4: fix broken SRIOV code (Doug Ledford) [567730]\n- [net] mlx4: pass eth attributes down to vlan interfaces (Doug Ledford) [557109]\n- [x86_64] fix missing 32 bit syscalls on 64 bit (Wade Mealing) [559410]\n- [s390] zcrypt: Do not remove coprocessor on error 8/72 (Hendrik Brueckner) [561067]\n- [misc] usb-serial: add support for Qualcomm modems (Pete Zaitcev) [523888]\n- [scsi] mpt2sas: fix missing initialization (Tomas Henzl) [565637]\n- [i386] mce: avoid deadlocks during MCE broadcasts (Prarit Bhargava) [562862]\n- [x86_64] k8: do not mark early_is_k8_nb as __init (Paolo Bonzini) [567275]\n- [ia64] kdump: fix a deadlock while redezvousing (Neil Horman) [506694]\n- [dm] raid45: constructor error path oops fix (Heinz Mauelshagen) [565494]\n- [mm] prevent severe performance degradation hang fix (Dave Anderson) [544448]\n- [net] cxgb3: memory barrier addition fixup (Steve Best) [561957]\n[2.6.18-190.el5]\n- [x86_64] mce: avoid deadlocks during MCE broadcasts (Prarit Bhargava) [562866]\n- [scsi] device_handler: add netapp to alua dev list (Mike Christie) [562080]\n- [misc] wacom: add Intuos4 support (Don Zickus) [502708]\n- [scsi] be2iscsi: fix eh bugs and enable new hw support (Mike Christie) [564145]\n- [net] ixgbe: initial support of ixgbe PF and VF drivers (Andy Gospodarek) [525577]\n- [fs] ext4: avoid divide by 0 when mounting corrupted fs (Eric Sandeen) [547253]\n- [net] bnx2x: update to 1.52.1-6 firmware (Stanislaw Gruszka) [560556]\n- [net] bnx2x: update to 1.52.1-6 (Stanislaw Gruszka) [560556]\n- [misc] hvc_iucv: alloc send/receive buffers in DMA zone (Hendrik Brueckner) [566202]\n- [net] ixgbe: prevent speculatively processing descriptors (Steve Best) [566309]\n- [fs] fix randasys crashes x86_64 systems regression (Peter Bogdanovic) [562857]\n- [scsi] fix bugs in fnic and libfc (Mike Christie) [565594]\n- [net] tg3: fix 57765 LED (John Feeney) [566016]\n- [net] tg3: fix race condition with 57765 devices (John Feeney) [565965]\n- [fs] gfs2: use correct GFP for alloc page on write (Steven Whitehouse) [566221]\n- [scsi] lpfc: update version for 8.2.0.63.3p release (Rob Evers) [564506]\n- [scsi] lpfc: fix driver build issues in rhel5.5 (Rob Evers) [564506]\n- [scsi] lpfc: relax event queue field checking (Rob Evers) [564506]\n- [scsi] lpfc: implement the PORT_CAPABITIES mailbox cmd (Rob Evers) [564506]\n- [scsi] lpfc: fix a merge issue (Rob Evers) [564506]\n- [scsi] lpfc: Add support for new SLI features (Rob Evers) [564506]\n- [scsi] lpfc: Add support for 64-bit PCI BAR region 0 (Rob Evers) [564506]\n- [nfs] fix a deadlock in the sunrpc code (Steve Dickson) [548846]\n- [fs] ecryptfs: fix metadata in xattr feature regression (Eric Sandeen) [553670]\n- [scsi] qla2xxx: return FAILED if abort command fails (Rob Evers) [559972]\n- [virtio] fix module loading for virtio-balloon module (Anthony Liguori) [564361]\n- [mm] xen: make mmap() with PROT_WRITE (Andrew Jones) [562761]\n- [hwmon] w83627hf: fix data to platform_device_add_data (Dean Nelson) [557172]\n- [hwmon] smsc47m1: fix data to platform_device_add_data (Dean Nelson) [560944]\n- [hwmon] it87: fix sio_data to platform_device_add_data (Dean Nelson) [559950]\n- [hwmon] f71805f: fix sio_data to platform_device_add_data (Dean Nelson) [564399]\n- [base] make platform_device_add_data accept const pointer (Dean Nelson) [557172 559950 560944 564399]\n- [net] forcedeth: fix putting system into S4 (Matthew Garrett) [513203]\n- [net] netfilter: allow changing queue length via netlink (Steve Best) [562945]\n- [mm] i386: fix iounmaps use of vm_structs size field (Danny Feng) [549465]\n- [ppc] fix sched while atomic error in alignment handler (Steve Best) [543637]\n- [pci] aer: disable advanced error reporting by default (Prarit Bhargava) [559978]\n- [s390] qeth: set default BLKT settings by OSA hw level (Hendrik Brueckner) [559621]\n- [net] e1000e: fix deadlock unloading module on some ICH8 (Andy Gospodarek) [555818]\n- [misc] rwsem: fix a bug in rwsem_is_locked() (Amerigo Wang) [526092]\n- [s390] clear high-order bits after switch to 64-bit mode (Hendrik Brueckner) [546302]\n[2.6.18-189.el5]\n- [net] wireless fixes from 2.6.32.7 (John Linville) [559711]\n- [net] wireless fixes from 2.6.32.4 (John Linville) [559711]\n- [net] wireless fixes through 2.6.32.3 (John Linville) [559711]\n- [net] wireless fixes from 2.6.32.2 (John Linville) [559711]\n[2.6.18-188.el5]\n- [net] be2net: latest bugfixes from upstream for rhel5.5 (Ivan Vecera) [561322]\n- [infiniband] fix bitmask handling from QP control block (Steve Best) [561953]\n- [infiniband] fix issue w/sleep in interrupt ehca handler (Steve Best) [561952]\n- [char] ipmi: fix ipmi_watchdog deadlock (Tony Camuso) [552675]\n- [net] cnic: additional fixes for rhel5.5 update (Mike Christie) [517378]\n- [net] cxgb3: add memory barriers (Steve Best) [561957]\n- [fs] nfsv4: distinguish expired from stale stateid (Wade Mealing) [514654]\n- [net] igb: fix msix_other interrupt masking (Stefan Assmann) [552348]\n- [net] niu: fix deadlock when using bonding (Andy Gospodarek) [547943]\n- [x86] xen: invalidate dom0 pages before starting guest (Christopher Lalancette) [466681]\n- [cpufreq] powernow-k8: fix crash on AMD family 0x11 procs (Bhavna Sarathy) [555180]\n- [misc] ptrace: PTRACE_KILL hangs in 100% cpu loop (Vitaly Mayatskikh) [544138]\n- [scsi] megaraid: fix 32-bit apps on 64-bit kernel (Tomas Henzl) [518243]\n- [misc] fix APIC and TSC reads for guests (Prarit Bhargava) [562006]\n- [mm] fix sys_move_pages infoleak (Eugene Teo) [562590] {CVE-2010-0415}\n- [fs] aio: fix .5% OLTP perf regression from eventfd (Jeff Moyer) [548565]\n- [net] sky2: fix initial link state errors (Andy Gospodarek) [559329]\n- [x86_64] wire up compat sched_rr_get_interval (Danny Feng) [557092]\n- [net] netfilter: enforce CAP_NET_ADMIN in ebtables (Danny Feng) [555243] {CVE-2010-0007}\n- [misc] fix kernel info leak with print-fatal-signals=1 (Danny Feng) [554584] {CVE-2010-0003}\n- [fs] gfs2: dont withdraw on partial rindex entries (Benjamin Marzinski) [553447]\n- [net] ipv6: fix OOPS in ip6_dst_lookup_tail (Thomas Graf) [552354]\n- [misc] khungtaskd: set PF_NOFREEZE flag to fix suspend (Amerigo Wang) [550014]\n- [block] loop: fix aops check for GFS (Josef Bacik) [549397]\n[2.6.18-187.el5]\n- [misc] EDAC driver fix for non-MMCONFIG systems (Bhavna Sarathy) [550123]\n- [misc] audit: fix breakage and leaks in audit_tree.c (Alexander Viro) [549750]\n- [mm] prevent hangs during memory reclaim on large systems (Larry Woodman) [546428]\n- [usb] support more Huawei modems (Pete Zaitcev) [517454]\n- [x86] fix AMD M-C boot inside xen on pre-5.5 hypervisor (Paolo Bonzini) [560013]\n- [kvm] pvclock on i386 suffers from double registering (Glauber Costa) [557095]\n- [md] fix kernel panic releasing bio after recovery failed (Takahiro Yasui) [555171]\n- [md] fix deadlock at suspending mirror device (Takahiro Yasui) [555120]\n- [pci] VF cant be enabled in dom0 (Don Dutile) [547980]\n- [acpi] fix NULL pointer panic in acpi_run_os (Prarit Bhargava) [547733]\n- [kvm] kvmclock wont restore properly after resume (Glauber Costa) [539521]\n- [x86_64] export additional features in cpuinfo for xen (Prarit Bhargava) [517928]\n- [fs] proc: make smaps readable even after setuid (Dave Anderson) [322881]\n- [net] iptables: fix routing of REJECT target packets (Jiri Olsa) [548079]\n- [net] niu: fix the driver to be functional with vlans (Jiri Pirko) [538649]\n- [mm] prevent performance hit for 32-bit apps on x86_64 (Larry Woodman) [544448]\n- [mm] mmap: dont ENOMEM when mapcount is temp exceeded (Danny Feng) [552648]\n- [fs] proc: make errno values consistent when race occurs (Danny Feng) [556545]\n- [net] igb: update driver to support End Point DCA (Stefan Assmann) [513712]\n- [scsi] qla2xxx: FCP2 update, dpc bug, fast mailbox read (Rob Evers) [550286]\n- [scsi] qla2xxx: fix timeout value for CT passthru cmds (Rob Evers) [552327]\n- [scsi] lpfc: update to version 8.2.0.63.p2 (Rob Evers) [557792]\n- [scsi] lpfc: update driver to version 8.2.0.63.1p FC/FCoE (Rob Evers) [555604]\n- [scsi] be2iscsi: upstream driver refresh for rhel5.5 (Mike Christie) [554545]\n- [pci] add ids for intel b43 graphics controller (John Villalovos) [523637]\n- [misc] support Nehalem-EX processors in Oprofile (John Villalovos) [521992]\n- [scsi] scsi_dh: make rdac hw handlers activate() async (Rob Evers) [537514]\n- [scsi] scsi_dh: change scsidh_activate interface to async (Rob Evers) [537514]\n- [alsa] support Creative X-Fi EMU20K1 and EMU20K2 chips (Jaroslav Kysela) [523786]\n- [net] tg3: update to version 3.106 for 57765 asic support (John Feeney) [545135]\n- [net] bonding: fix alb mode locking regression (Andy Gospodarek) [533496]\n- [scsi] stex: dont try to scan a nonexistent lun (David Milburn) [531488]\n- [scsi] bnx2i: additional fixes for rhel5.5 update (Mike Christie) [517378]\n- [misc] hpilo: fix build warning in ilo_isr (Tony Camuso) [515010]\n- [scsi] qla2xxx: add AER support (Rob Evers) [513927]\n- [x86] relocate initramfs so we can increase vmalloc space (Neil Horman) [499253]\n- [mm] memory mapped files not updating timestamps (Peter Staubach) [452129]\n[2.6.18-186.el5]\n- [net] emergency route cache flushing fixes (Thomas Graf) [545663] {CVE-2009-4272}\n- [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng) [548657] {CVE-2009-4141}\n- [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan) [537318] {CVE-2009-3556}\n- [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang) [548643] {CVE-2007-4567}\n- [net] e1000e: fix broken wol (Andy Gospodarek) [557974]\n- [net] r8169: add missing hunk from frame length filtering fix (Jarod Wilson) [552438]\n[2.6.18-185.el5]\n- [net] e1000e: fix rx length check errors (Amerigo Wang) [551223] {CVE-2009-4538}\n- [net] e1000: fix rx length check errors (Neil Horman) [552138] {CVE-2009-4536}\n- [net] r8169: improved frame length filtering (Neil Horman) [550915] {CVE-2009-4537}\n- kabi: fix dma_async_register symbol move (Jarod Wilson) [526342]\n- [kabi] add {napi,vlan}_gro_receive and intel dca symbols (Jon Masters) [526342]\n- Revert: amd64_edac: fix access to pci conf space type 1 (Jarod Wilson) [479070]\n[2.6.18-184.el5]\n- [scsi] lpfc: Update lpfc to version 8.2.0.63 driver release (Rob Evers) [549763]\n- [scsi] lpfc: Fix single SCSI buffer not handled on SLI4 (Rob Evers) [549763]\n- [scsi] lpfc: Fix Dead FCF not triggering discovery others (Rob Evers) [549763]\n- [scsi] lpfc: Fix vport->fc_flag set outside of lock fail (Rob Evers) [549763]\n- [scsi] lpfc: Fix processing of failed read fcf record (Rob Evers) [549763]\n- [scsi] lpfc: Fix fc header seq_count checks (Rob Evers) [549763]\n- [scsi] lpfc: Update to version 8.2.0.62 driver release (Rob Evers) [549763]\n- [scsi] lpfc: Fix hbq buff only for sli4 (Rob Evers) [549763]\n- [scsi] lpfc: Fix hbq buff adds to receive queue (Rob Evers) [549763]\n- [scsi] lpfc: Fix multi-frame sequence response frames (Rob Evers) [549763]\n- [scsi] lpfc: Fix adapter reset and off/online stress test (Rob Evers) [549763]\n- [scsi] lpfc: Update to version 8.2.0.61 driver release (Rob Evers) [549763]\n- [scsi] lpfc: Fix vport register VPI after devloss timeout (Rob Evers) [549763]\n- [scsi] lpfc: Fix crash during unload and sli4 abort cmd (Rob Evers) [549763]\n- [scsi] lpfc: Blocked all SCSI I/O requests from midlayer (Rob Evers) [549763]\n- [scsi] lpfc: Made TigerShark set up and use single FCP EQ (Rob Evers) [549763]\n- [scsi] lpfc: Update to 8.2.0.60 driver release (Rob Evers) [549763]\n- [scsi] lpfc: Fix vport not logging out when being deleted (Rob Evers) [549763]\n- [net] fixup problems with vlans and bonding (Andy Gospodarek) [526976]\n- [net] ixgbe: upstream update to include 82599-KR support (Andy Gospodarek) [513707]\n- [net] enic: update to upstream version 1.1.0.241a (Andy Gospodarek) [550148]\n- [net] be2net: multiple bug fixes (Ivan Vecera) [549460]\n- [net] virtio_net: fix tx wakeup race condition (Herbert Xu) [524651]\n- [net] add send/receive tracepoints (Neil Horman) [475457]\n- [iscsi] fix install panic w/xen iSCSI boot device (Miroslav Rezanina) [512991]\n- Revert: [mm] SRAT and NUMA fixes for span and/or is disc (Larry Woodman) [474097]\n- [misc] oprofile support for nehalme ep processors (John Villalovos) [498624]\n- [scsi] fix duplicate libiscsi symbol and kabi warnings (Jarod Wilson) [515284]\n- [edac] amd64_edac: fix access to pci conf space type 1 (Bhavna Sarathy) [479070]\n- [misc] do not evaluate WARN_ON condition twice (Hendrik Brueckner) [548653]\n- [xen] fix cpu frequency scaling on Intel procs (Christopher Lalancette) [553324]\n- [xen] passthrough MSI-X mask bit acceleration V3 (Don Dugger) [537734]\n- [xen] change interface of hvm_mmio_access V3 (Don Dugger) [537734]\n- [xen] fix msix table fixmap allocation V3 (Don Dugger) [537734]\n[2.6.18-183.el5]\n- [kabi] add scsi_dma_{,un}map (Jon Masters) [533489]\n- [kabi] add scsi_nl_{send_vendor_msg,{add,remove}_driver} (Jon Masters) [515812]\n- [kabi] add do_settimeofday and __user_walk_fd (Jon Masters) [486205]\n- [kabi] add pci_domain_nr (Jon Masters) [450121]\n- [sound] alsa hda driver update for rhel5.5 (Jaroslav Kysela) [525390]\n- Revert: [pci] avoid disabling acpi to use non-core PCI (Mauro Carvalho Chehab) [504330 547898]\n- [net] wireless: fix build when using O=objdir (John Linville) [546712]\n- [pci] remove msi-x vector allocation limitation (Stefan Assmann) [531266]\n- [net] vxge: avoid netpollNAPI race (Michal Schmidt) [453683]\n- [scsi] update fcoe for rhel5.5 (Mike Christie) [526259]\n- [net] update tg3 driver to version 3.100 (John Feeney) [515312]\n- [block] fix rcu accesses in partition statistics code (Jerome Marchand) [493517]\n- [pci] enable acs p2p upstream forwarding (Chris Wright) [518305]\n- [net] e1000e: support for 82567V-3 and MTU fixes (Andy Gospodarek) [513706]\n- [pci] aer hest disable support (Prarit Bhargava) [547762]\n- [pci] aer hest firmware first support (Prarit Bhargava) [547762]\n- [block] iosched: fix batching fairness (Jeff Moyer) [462472]\n- [block] iosched: reset batch for ordered requests (Jeff Moyer) [462472]\n- [net] bonding: allow arp_ip_targets on separate vlan from bond device (Andy Gospodarek) [526976]\n- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547242] {CVE-2009-4138}\n- [drm] intel: add IRONLAKE support to AGP/DRM drivers (Dave Airlie) [547908]\n- [xen] mask AMDs Node ID MSR (Andrew Jones) [547518]\n- Revert: [xen] fix msi-x table fixmap allocation (Don Dugger) [537734]\n- Revert: [xen] change interface of hvm_mmio_access (Don Dugger) [537734]\n- Revert: [xen] passthrough msi-x mask bit acceleration (Don Dugger) [537734]\n[2.6.18-182.el5]\n- [x86_64] disable vsyscall in kvm guests (Glauber Costa) [542612]\n- [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [525100]\n- [net] bonding: add debug module option (Jiri Pirko) [546624]\n- [fs] respect flag in do_coredump (Danny Feng) [544189] {CVE-2009-4036}\n- [md] fix a race in dm-raid1 (Mikulas Patocka) [502927]\n- [misc] timer: add tracepoints (Jason Baron) [534178]\n- [net] ipv4: fix possible invalid memory access (Prarit Bhargava) [541213]\n- [x86] support AMD L3 cache index disable (Bhavna Sarathy) [517586]\n- [scsi] add emc clariion support to scsi_dh modules (Mike Christie) [437107]\n- [infiniband] fix iser sg aligment handling (Mike Christie) [540686]\n- [scsi] qla2xxx: CT passthrough and link data rate fixes (Marcus Barrow) [543057]\n- [scsi] qla2xxx: update to 8.03.01.04.05.05-k (Marcus Barrow) [542834]\n- [net] s2io: update driver to current upstream version (Michal Schmidt) [513942]\n- [ia64] export cpu_core_map (like i386 and x86_64) (Michal Schmidt) [448856]\n- [net] sfc: additional fixes for rhel5.5 (Michal Schmidt) [448856]\n- [redhat] configs: enable building of the sfc driver (Michal Schmidt) [448856]\n- [net] sfc: add the sfc (Solarflare) driver (Michal Schmidt) [448856]\n- [net] vxge: driver update to 2.0.6 (Michal Schmidt) [453683]\n- [scsi] ibmvscsi: upstream multipath enhancements for 5.5 (Kevin Monroe) [512203]\n[2.6.18-181.el5]\n- [vfs] DIO write returns -EIO on try_to_release_page fail (Jeff Moyer) [461100]\n- [wireless] enable use of internal regulatory database (John Linville) [546712]\n- [wireless] add wireless regulatory rules database (John Linville) [546712]\n- [wireless] use internal regulatory database infrastructure (John Linville) [546712]\n- [wireless] update old static regulatory domain rules (John Linville) [543723]\n- [net] wireless: report reasonable bitrate for 802.11n (John Linville) [546281]\n- [net] mac80211: report correct signal for non-dBm values (John Linville) [545899]\n- [net] wireless: kill some warning spam (John Linville) [545121]\n- [net] mac80211: avoid uninit ptr deref in ieee80211 (John Linville) [545121]\n- [net] wireless: avoid deadlock when enabling rfkill (John Linville) [542593]\n- [wireless] configuration changes for updates (John Linville) [456943 474328 514661 516859]\n- [net] ath9k: backport driver from 2.6.32 (John Linville) [456943]\n- [net] wireless: updates of mac80211 etc from 2.6.32 (John Linville) [474328 514661 516859]\n- [net] wireless support updates from 2.6.32 (John Linville) [456943 474328 514661 516859]\n- [net] bnx2: update to version 2.0.2 (John Feeney) [517377]\n- [usb] support lexar expresscard (Pete Zaitcev) [511374]\n- [net] cnic: update driver for RHEL5.5 (Stanislaw Gruszka) [517378]\n- [net] bnx2x: update to 1.52.1-5 (Stanislaw Gruszka) [515716 522600]\n- [net] bnx2x: add mdio support (Stanislaw Gruszka) [515716 522600]\n- [net] bnx2x: add firmware version 5.2.7.0 (Stanislaw Gruszka) [515716 522600]\n- [net] bnx2x: update to 1.52.1 (Stanislaw Gruszka) [515716 522600]\n- [fs] make NR_OPEN tunable (Eric Sandeen) [507159]\n- [net] mdio: add mdio module from upstream (Michal Schmidt) [448856]\n- [net] ethtool: add more defines for mdio to use (Michal Schmidt) [448856]\n- [pci] add and export pci_clear_master (Michal Schmidt) [448856]\n- [mm] SRAT and NUMA fixes for span and/or is discontig mem (Larry Woodman) [474097]\n- [fs] eventfd: remove fput call from possible IRQ context (Jeff Moyer) [493101]\n- [fs] eventfd: kaio integration fix (Jeff Moyer) [493101]\n- [fs] eventfd: sanitize anon_inode_getfd() (Jeff Moyer) [493101]\n(Jeff Moyer) [493101]\n- [fs] eventfd: clean compile when CONFIG_EVENTFD=n (Jeff Moyer) [493101]\n- [s390] wire up signald, timerfd and eventfd syscalls (Jeff Moyer) [493101]\n- [fs] eventfd: use waitqueue lock (Jeff Moyer) [493101]\n- [ppc] wire up eventfd syscalls (Jeff Moyer) [493101]\n- [ia64] wire up {signal, timer, event}fd syscalls (Jeff Moyer) [493101]\n- [fs] aio: KAIO eventfd support example (Jeff Moyer) [493101]\n- [fs] eventfd: wire up x86 arches (Jeff Moyer) [493101]\n- [fs] add eventfd core (Jeff Moyer) [493101]\n- [net] r8169: update to latest upstream for rhel5.5 (Ivan Vecera) [540582]\n- [net] benet: update driver to latest upstream for rhel5.5 (Ivan Vecera) [515269]\n- [net] e1000e: update and fix WOL issues (Andy Gospodarek) [513706 513930 517593 531086]\n- [net] e1000: update to latest upstream for rhel5.5 (Dean Nelson) [515524]\n- [net] mlx4: update to recent version with SRIOV support (Doug Ledford) [503113 512162 520674 527499 529396 534158]\n- [md] raid: deal with soft lockups during resync (Doug Ledford) [501075]\n- [x86] amd: add node ID MSR support (Bhavna Sarathy) [530181]\n- [net] ipv4: fix an unexpectedly freed skb in tcp (Amerigo Wang) [546402]\n[2.6.18-180.el5]\n- [fs] ext4: fix insufficient checks in EXT4_IOC_MOVE_EXT (Eric Sandeen) [546105] {CVE-2009-4131}\n- [fs] fix possible inode corruption on unlock (Eric Sandeen) [545612]\n- [fs] xfs: fix fallocate error return sign (Eric Sandeen) [544349]\n- [net] bnx2: fix frags index (Flavio Leitner) [546326]\n- [pci] implement public pci_ioremap_bar function (Prarit Bhargava) [546244]\n- [trace] add coredump tracepoint (Masami Hiramatsu) [517115]\n- [trace] add signal tracepoints (Masami Hiramatsu) [517121]\n- [trace] add itimer tracepoints (Jason Baron) [534178]\n- [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [544342]\n- [gfs2] fix rename locking issue (Steven Whitehouse) [538484]\n- [usb] add quirk for iso on amd sb800 (Pete Zaitcev) [537433]\n- [mm] add kernel pagefault tracepoint for x86 & x86_64 (Larry Woodman) [517133]\n- [ia64] dma_get_required_mask altix workaround (George Beshers) [517192]\n- [misc] sysctl: require CAP_SYS_RAWIO to set mmap_min_addr (Amerigo Wang) [534018]\n- [pci] intel-iommu: no pagetable validate in passthru mode (Don Dutile) [518103]\n- [pci] intel-iommu: set dmar_disabled when DMAR at zero (Don Dutile) [516811 518103]\n- [pci] dmar: rhsa entry decode (Don Dutile) [516811 518103]\n- [pci] intel-iommu: add hot (un)plug support (Don Dutile) [516811 518103]\n- [pci] inte-iommu: alloc_coherent obey coherent_dma_mask (Don Dutile) [516811 518103]\n- [pci] dmar: check for DMAR at zero BIOS error earlier (Don Dutile) [516811 518103]\n- [pci] intel-iommu: fix for isoch dmar w/no tlb space (Don Dutile) [516811 518103]\n- [pci] intel-iommu: add 2.6.32-rc4 sw and hw pass-through (Don Dutile) [516811 518103]\n- [pci] intel-iommu: IOTLB flushing mods & ATSR support (Don Dutile) [516811 518103]\n- [aio] implement request batching (Jeff Moyer) [532769]\n- [net] netxen: further p3 updates for rhel5.5 (Marcus Barrow) [542746]\n- [net] netxen: driver updates from 2.6.32 (Marcus Barrow) [516833]\n- [net] netxen: driver updates from 2.6.31 (Marcus Barrow) [516833]\n- [xen] passthrough msi-x mask bit acceleration (Don Dugger) [537734]\n- [xen] change interface of hvm_mmio_access (Don Dugger) [537734]\n- [xen] fix msi-x table fixmap allocation (Don Dugger) [537734]\n- [xen] fix w/sata set to ide combined mode on amd (Bhavna Sarathy) [544021]\n- [xen] domU irq ratelimiting (Don Dugger) [524747]\n[2.6.18-179.el5]\n- [scsi] st: display current settings of option bits (Tom Coughlan) [501030]\n- [pci] AER: prevent errors being reported multiple times (Prarit Bhargava) [544923]\n- [cifs] NULL out pointers when chasing DFS referrals (Jeff Layton) [544417]\n- [fbfront] xenfb: dont recreate thread on every restore (Christopher Lalancette) [541325]\n- [net] igb: update igb driver to support barton hills (Stefan Assmann) [513710]\n- [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540741] {CVE-2009-4020}\n- [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538737] {CVE-2009-4021}\n- [scsi] lpfc: update version from 8.2.0.58 to 8.2.0.59 (Rob Evers) [529244]\n- [scsi] lpfc: update version from 8.2.0.55 to 8.2.0.58 (Rob Evers) [516541 529244]\n- [scsi] lpfc: update version from 8.2.0.52 to 8.2.0.55 (Rob Evers) [529244]\n- [scsi] pmcraid: minor driver update for rhel5.5 (Rob Evers) [529979]\n- [scsi] add pmcraid driver (Rob Evers) [529979]\n- [scsi] bfa: brocade bfa fibre-channel/fcoe driver (Rob Evers) [475695]\n- [md] support origin size < chunk size (Mikulas Patocka) [502965]\n- [md] lock snapshot while reading status (Mikulas Patocka) [543307]\n- [md] fix deadlock in device mapper multipath (Mikulas Patocka) [543270]\n- [md] raid5: mark cancelled readahead bios with -EIO (Eric Sandeen) [512552]\n- [fs] ext2: convert to new aops (Josef Bacik) [513136]\n- [fs] jbd: fix race in slab creation/deletion (Josef Bacik) [496847]\n- [net] enic: update to upstream version 1.1.0.100 (Andy Gospodarek) [519086]\n- [scsi] megaraid: make driver legacy I/O port free (Tomas Henzl) [515863]\n- [scsi] megaraid: upgrade to version 4.17-RH1 (Tomas Henzl) [518243]\n- [net] ipvs: synchronize closing of connections (Danny Feng) [492942]\n- [fs] dlm: fix connection close handling (David Teigland) [521093]\n- [hwmon] add support for syleus chip to fschmd driver (Dean Nelson) [513101]\n- [s390] dasd: fix DIAG access for read-only devices (Hendrik Brueckner) [537859]\n- [acpi] backport support for ACPI 4.0 power metering (Matthew Garrett) [514923]\n- [scsi] mpt2sas: use selected regions (Tomas Henzl) [516702]\n- [scsi] mpt2sas: upgrade to 01.101.06.00 (Tomas Henzl) [516702]\n- [block] blktrace: only tear down our own debug/block (Eric Sandeen) [498489]\n- Revert: [scsi] fix inconsistent usage of max_lun (David Milburn) [531488]\n[2.6.18-178.el5]\n- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [541953]\n- [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [541956]\n- [md] fix data corruption with different chunksizes (Mikulas Patocka) [210490]\n- [md] fix snapshot crash on invalidation (Mikulas Patocka) [461506]\n- [net] cxgb3: fix port index issue (Doug Ledford) [516948]\n- [net] cxgb3: correct hex/decimal error (Doug Ledford) [516948]\n- [net] mlx4_en: add a pci id table (Doug Ledford) [508770]\n- [infiniband] null out skb pointers on error (Doug Ledford) [531784]\n- [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [538067]\n- [nfs] add an nfsiod workqueue (Ian Kent) [489931]\n- [nfs] nfsiod: ensure the asynchronous RPC calls complete (Ian Kent) [489931]\n- [nfs] sunrpc: allow rpc_release() CB run on another workq (Ian Kent) [489931]\n- [nfs] fix a deadlock with lazy umount -2 (Ian Kent) [489931]\n- [nfs] fix a deadlock with lazy umount (Ian Kent) [489931]\n- [fs] ext3/4: free journal buffers (Eric Sandeen) [506217]\n- [net] resolve issues with vlan creation and filtering (Andy Gospodarek) [521345]\n- [scsi] stex: update driver for RHEL-5.5 (David Milburn) [516881]\n- [scsi] be2iscsi: add driver to generic config (Mike Christie) [515284]\n- [scsi] add be2iscsi driver (Mike Christie) [515284]\n- [fs] ext4: update to 2.6.32 codebase (Eric Sandeen) [528054]\n- [scsi] disable state transition from OFFLINE to RUNNING (Takahiro Yasui) [516934]\n- [scsi] fusion: update mpt driver to 3.4.13rh (Tomas Henzl) [516710]\n- [net] gro: fix illegal merging of trailer trash (Herbert Xu) [537876]\n[2.6.18-177.el5]\n- [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539421] {CVE-2009-3080}\n- [net] ixgbe: add and enable CONFIG_IXGBE_DCA (Andy Gospodarek) [514306]\n- [net] ixgbe: update to upstream version 2.0.44-k2 (Andy Gospodarek) [513707 514306 516699]\n- [cifs] duplicate data on appending to some samba servers (Jeff Layton) [500838]\n- [s390] kernel: fix single stepping on svc0 (Hendrik Brueckner) [540527]\n- [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [539240]\n- [vbd] xen: fix crash after ballooning (Christopher Lalancette) [540811]\n- [block] cfq-iosched: get rid of cfqq hash (Jeff Moyer) [427709 448130 456181]\n- [scsi] devinfo update for hitachi entries for RHEL5.5 (Takahiro Yasui) [430631]\n- [net] call cond_resched in rt_run_flush (Amerigo Wang) [517588]\n- [cifs] update cifs version number (Jeff Layton) [500838]\n- [cifs] avoid invalid kfree in cifs_get_tcp_session (Jeff Layton) [500838]\n- [cifs] fix broken mounts when a SSH tunnel is used (Jeff Layton) [500838]\n- [cifs] fix memory leak in ntlmv2 hash calculation (Jeff Layton) [500838]\n- [cifs] fix potential NULL deref in parse_DFS_referrals (Jeff Layton) [500838]\n- [cifs] fix read buffer overflow (Jeff Layton) [500838]\n- [cifs] free nativeFileSystem before allocating new one (Jeff Layton) [500838]\n- [cifs] add addr= mount option alias for ip= (Jeff Layton) [500838]\n- [cifs] copy struct *after* setting port, not before (Jeff Layton) [500838]\n- [cifs] fix artificial limit on reading symlinks (Jeff Layton) [500838]\n- [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537313] {CVE-2009-3889 CVE-2009-3939}\n- [cpufreq] avoid playing with cpus_allowed in powernow-k8 (Alex Chiang) [523505]\n- [cpufreq] change cpu freq arrays to per_cpu variables (Alex Chiang) [523505]\n- [cpufreq] powernow-k8: get drv data for correct cpu (Alex Chiang) [523505]\n- [cpufreq] x86: change NR_CPUS arrays in powernow-k8 (Alex Chiang) [523505]\n- [cifs] fix error handling in mount-time dfs referral code (Jeff Layton) [513410]\n- [cifs] add loop check when mounting dfs tree (Jeff Layton) [513410]\n- [cifs] fix some build warnings (Jeff Layton) [513410]\n- [cifs] fix build when dfs support not enabled (Jeff Layton) [513410]\n- [cifs] remote dfs root support (Jeff Layton) [513410]\n- [cifs] enable dfs submounts to handle remote referrals (Jeff Layton) [513410]\n- [edac] i3200_edac: backport driver to RHEL 5.5 (Mauro Carvalho Chehab) [469976]\n- [edac] add upstream i3200_edac driver (Mauro Carvalho Chehab) [469976]\n- [cifs] no CIFSGetSrvInodeNumber in is_path_accessible (Jeff Layton) [529431]\n- [block] blktrace: correctly record block to and from devs (Jason Baron) [515551]\n- [sched] enable CONFIG_DETECT_HUNG_TASK support (Amerigo Wang) [506059]\n- [xen] fix SRAT check for discontiguous memory (Christopher Lalancette) [519225]\n- [xen] implement fully preemptible page table teardown (Christopher Lalancette) [510037]\n[2.6.18-176.el5]\n- [xen] mask extended topo cpuid feature (Andrew Jones ) [533292]\n- [fs] pipe.c null pointer dereference (Jeff Moyer ) [530939] {CVE-2009-3547}\n- [xen] cd-rom drive does not recognize new media (Miroslav Rezanina ) [221676]\n- [nfs] fix stale nfs_fattr passed to nfs_readdir_lookup (Harshula Jayasuriya ) [531016]\n- [spec] s390: enable kernel module signing (Don Zickus ) [483665]\n- [nfs] bring nfs4acl into line with mainline code (Jeff Layton ) [479870 530575]\n- [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [515753]\n- [nfs] nfsd4: do exact check of attribute specified (Jeff Layton ) [512361]\n- [net] igb: add support for 82576ns serdes adapter (Stefan Assmann ) [517063]\n- [s390] zfcp_scsi: dynamic queue depth adjustment param (Pete Zaitcev ) [508355]\n- [scsi] fix inconsistent usage of max lun (David Milburn ) [531488]\n- [ipmi] fix ipmi_si modprobe hang (Tony Camuso ) [507402]\n- [x86] kvm: dont ask HV for tsc khz if not using kvmclock (Glauber Costa ) [531268]\n- [net] qlge: updates and fixes for RHEL-5.5 (Marcus Barrow ) [519453]\n- [net] igb: fix kexec with igb controller (Stefan Assmann ) [527424]\n- [net] qlge: fix crash with kvm guest device passthru (Marcus Barrow ) [507689]\n- [misc] hpilo: add polling mechanism (Tony Camuso ) [515010]\n- [misc] hpilo: add interrupt handler (Tony Camuso ) [515010]\n- [misc] hpilo: staging for interrupt handling (Tony Camuso ) [515010]\n- [edac] amd64_edac: enable driver in kernel config (Bhavna Sarathy ) [479070]\n- [edac] amd64_edac: remove early hardware probe (Bhavna Sarathy ) [479070]\n- [edac] amd64_edac: detect ddr3 support (Bhavna Sarathy ) [479070]\n- [edac] amd64_edac: add ddr3 support (Bhavna Sarathy ) [479070]\n- [edac] add amd64_edac driver (Bhavna Sarathy ) [479070]\n- [net] igb: set vf rlpml must take vlan tag into account (Don Dugger ) [515602]\n- [misc] hibernate: increase timeout (Matthew Garrett ) [507331]\n- [nfs] make sure dprintk() macro works everywhere (Jeff Layton ) [532701]\n- [acpi] include core wmi support and dell-wmi driver (Matthew Garrett ) [516623]\n- [powerpc] fix to handle SLB resize during migration (Kevin Monroe ) [524112]\n- [mm] oom killer output should display UID (Larry Woodman ) [520419]\n- [net] fix race in data receive/select (Amerigo Wang ) [509866]\n- [net] augment raw_send_hdrinc to validate ihl in user hdr (Neil Horman ) [500924]\n- [i2c] include support for Hudson-2 SMBus controller (Stanislaw Gruszka ) [515125]\n- [net] bonding: introduce primary_reselect option (Jiri Pirko ) [471532]\n- [net] bonding: ab_arp use std active slave select code (Jiri Pirko ) [471532]\n- [net] use netlink notifications to track neighbour states (Danny Feng ) [516589]\n- [net] introduce generic function __neigh_notify (Danny Feng ) [516589]\n- [fs] skip inodes w/o pages to free in drop_pagecache_sb (Larry Woodman ) [528070]\n[2.6.18-175.el5]\n- [net] bnx2x: add support for bcm8727 phy (Stanislaw Gruszka ) [515716]\n- [net] sched: fix panic in bnx2_poll_work (John Feeney ) [526481]\n- [acpi] prevent duplicate dirs in /proc/acpi/processor (Matthew Garrett ) [537395]\n- [mm] conditional flush in flush_all_zero_pkmaps (Eric Sandeen ) [484683]\n- [fs] ecryptfs: copy lower attrs before dentry instantiate (Eric Sandeen ) [489774]\n- [ppc] fix compile warnings in eeh code (Prarit Bhargava ) [538407]\n- [md] multiple device failure renders dm-raid1 unfixable (Jonathan E Brassow ) [498532]\n- [scsi] ibmvscsi: FCoCEE NPIV support (Steve Best ) [512192]\n- [fs] gfs2: fix potential race in glock code (Steven Whitehouse ) [498976]\n- [kvm] balloon driver for guests (Peter Bogdanovic ) [522629]\n- [sctp] assign tsns earlier to avoid reordering (Neil Horman ) [517504]\n- [x86] fix boot crash with < 8-core AMD Magny-cours system (Bhavna Sarathy) [522215]\n- [x86] support amd magny-cours power-aware scheduler fix (Bhavna Sarathy ) [513685]\n- [x86] cpu: upstream cache fixes needed for amd m-c (Bhavna Sarathy ) [526315]\n- [x86_64] set proc id and core id before calling fixup_dcm (Bhavna Sarathy) [526315]\n- [x86] disable NMI watchdog on CPU remove (Prarit Bhargava ) [532514]\n- [nfsd] dont allow setting ctime over v4 (Jeff Layton ) [497909]\n- [acpi] bm_check and bm_control update (Luming Yu ) [509422]\n- [x86_64] amd: iommu system management erratum 63 fix (Bhavna Sarathy ) [531469]\n- [net] bnx2i/cnic: update driver version for RHEL5.5 (Mike Christie ) [516233]\n- [x86] fix L1 cache by adding missing break (Bhavna Sarathy ) [526770]\n- [x86] amd: fix hot plug cpu issue on 32-bit magny-cours (Bhavna Sarathy ) [526770]\n- [acpi] disable ARB_DISABLE on platforms where not needed (Luming Yu ) [509422]\n- [s390] do not annotate cmdline as __initdata (Hendrik Brueckner ) [506898]\n- [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526798]\n- [misc] dont call printk while crashing (Mauro Carvalho Chehab ) [497195]\n- [x86] mce_amd: fix up threshold_bank4 creation (Bhavna Sarathy ) [526315]\n- [pci] fix SR-IOV function dependency link problem (Don Dugger ) [503837]\n- [xen] fix numa on magny-cours systems (Bhavna Sarathy ) [526051]\n- [xen] add two HP ProLiant DMI quirks to the hypervisor (Paolo Bonzini ) [536677]\n- [xen] hook sched rebalance logic to opt_hardvirt (Christopher Lalancette ) [529271]\n- [xen] crank the correct stat in the scheduler (Christopher Lalancette ) [529271]\n- [xen] whitespace fixups in xen scheduler (Christopher Lalancette ) [529271]\n- [xen] fix crash with memory imbalance (Bhavna Sarathy ) [526785]\n[2.6.18-174.el5]\n- [fs] private dentry list to avoid dcache_lock contention (Lachlan McIlroy ) [526612]\n- [gfs2] drop rindex glock on grows (Benjamin Marzinski ) [482756]\n- [acpi] run events on cpu 0 (Matthew Garrett ) [485016]\n- [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [513649]\n- [acpi] support physical cpu hotplug on x86_64 (Stefan Assmann ) [516999]\n- [scsi] qla2xxx: enable msi-x correctly on qlogic 2xxx series (Marcus Barrow ) [531593]\n- [apic] fix server c1e spurious lapic timer events (Bhavna Sarathy ) [519422]\n- [pci] aer: fix ppc64 compile - no msi support (Prarit Bhargava ) [514442 517093]\n- [pci] aer: config changes to enable aer support (Prarit Bhargava ) [514442 517093]\n- [pci] aer: fix NULL pointer in aer injection code (Prarit Bhargava ) [514442 517093]\n- [pci] aer: add domain support to aer_inject (Prarit Bhargava ) [514442 517093]\n- [pci] aer: backport acpi osc functions (Prarit Bhargava ) [517093]\n- [pci] aer: pcie support and compile fixes (Prarit Bhargava ) [517093]\n- [pci] aer: changes required to compile in RHEL5 (Prarit Bhargava ) [514442 517093]\n- [pci] aer: base aer driver support (Prarit Bhargava ) [514442 517093]\n- [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [531025]\n- [cifs] turn oplock breaks into a workqueue job (Jeff Layton ) [531005]\n- [cifs] fix oplock request handling in posix codepath (Jeff Layton ) [531005]\n- [cifs] have cifsFileInfo hold an extra inode reference (Jeff Layton ) [531005]\n- [cifs] take GlobalSMBSes_lock as read-only (Jeff Layton ) [531005]\n- [cifs] remove cifsInodeInfo.oplockPending flag (Jeff Layton ) [531005]\n- [cifs] replace wrtPending with a real reference count (Jeff Layton ) [531005]\n- [cifs] clean up set_cifs_acl interfaces (Jeff Layton ) [531005]\n- [cifs] reorganize get_cifs_acl (Jeff Layton ) [531005]\n- [cifs] protect GlobalOplock_Q with its own spinlock (Jeff Layton ) [531005]\n- [scsi] qla2xxx: updates and fixes for RHEL-5.5 (Marcus Barrow ) [519447]\n- [net] vlan: silence multicast debug messages (Danny Feng ) [461442]\n- [fs] fix inode_table test in ext{2,3}_check_descriptors (Eric Sandeen ) [504797]\n- [net] netlink: fix typo in initialization (Jiri Pirko ) [527906]\n- [mm] prevent tmpfs from going readonly during oom kills (Larry Woodman ) [497257]\n- [x86] set cpu_llc_id on AMD CPUs (Bhavna Sarathy ) [513684]\n- [x86] fix up threshold_bank4 support on AMD Magny-cours (Bhavna Sarathy ) [513684]\n- [x86] fix up L3 cache information for AMD Magny-cours (Bhavna Sarathy ) [513684]\n- [x86] amd: fix CPU llc_shared_map information (Bhavna Sarathy ) [513684]\n- [fs] trim instantiated file blocks on write errors (Eric Sandeen ) [515529]\n- [s390] optimize storage key operations for anon pages (Hans-Joachim Picht ) [519977]\n- [net] cxgb3: bug fixes from latest upstream version (Doug Ledford ) [510818]\n- [misc] saner FASYNC handling on file close (Paolo Bonzini ) [510746]\n- [wireless] mac80211: fix reported wireless extensions version (John Linville ) [513430]\n- [mm] dont oomkill when hugepage alloc fails on node (Larry Woodman ) [498510]\n- [xen] iommu-amd: extend loop ctr for polling completion wait (Bhavna Sarathy ) [518474 526766]\n- [xen] iommu: add passthrough and no-intremap parameters (Bhavna Sarathy ) [518474 526766]\n- [xen] iommu: enable amd iommu debug at run-time (Bhavna Sarathy ) [518474 526766]\n- [xen] support interrupt remapping on M-C (Bhavna Sarathy ) [518474 526766]\n- [xen] iommu: move iommu_setup() to setup ioapic correctly (Bhavna Sarathy ) [518474 526766]\n[2.6.18-173.el5]\n- [acpi] thinkpad_acpi: disable ecnvram brightness on some (Matthew Garrett ) [522745]\n- [block] cfq-iosched: dont delay queue kick for merged req (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq-iosched: fix idling interfering with plugging (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq: separate merged cfqqs if they stop cooperating (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq: change the meaning of the cfqq_coop flag (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq: merge cooperating cfq_queues (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq: calc seek_mean per cfq_queue not per cfq_io_context (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq-iosched: cache prio_tree root in cfqq->p_root (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq-iosched: fix aliased req & cooperation detect (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq-iosched: default seek when not enough samples (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq-iosched: make seek_mean converge more quick (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq-iosched: add close cooperator code (Jeff Moyer ) [456181 448130 427709]\n- [block] cfq-iosched: development update (Jeff Moyer ) [456181 448130 427709]\n- [gfs2] careful unlinking inodes (Steven Whitehouse ) [519049]\n- [scsi] arcmsr: add missing parameter (Tomas Henzl ) [521203]\n- [nfs] v4: fix setting lock on open file with no state (Jeff Layton ) [533115] {CVE-2009-3726}\n- [misc] futex priority based wakeup (Jon Thomas ) [531552]\n- [dlm] use GFP_NOFS on all lockspaces (David Teigland ) [530537]\n- [gfs2] improve statfs and quota usability (Benjamin Marzinski ) [529796]\n- [net] forcedeth: let phy power down when IF is down (Ivan Vecera ) [513692]\n- [drm] r128: check for init on all ioctls that require it (Danny Feng ) [529603] {CVE-2009-3620}\n- [scsi] htpiop: RocketRAID driver update v1.0 -> v1.6 (Rob Evers ) [519076]\n- [ipmi] add HP message handling (Tony Camuso ) [507402]\n- [mm] prevent hangs/long pauses when zone_reclaim_mode=1 (Larry Woodman ) [507360]\n- [s390] ipl: vmhalt, vmpanic, vmpoff, vmreboot dont work (Hans-Joachim Picht ) [518229]\n- [nfs] bring putpubfh handling inline with upstream (Wade Mealing ) [515405]\n[2.6.18-172.el5]\n- [fs] dio: dont zero out pages array inside struct dio (Jeff Moyer ) [488161]\n- [cifs] libfs: sb->s_maxbytes casts to a signed value (Jeff Layton ) [486092]\n- [serial] power7: support the single-port serial device (Kevin Monroe ) [525812]\n- [kABI] add pci_{enable,disable}_msi{,x} (Jon Masters ) [521081]\n- [scsi] mpt: errata 28 fix on LSI53C1030 (Tomas Henzl ) [518689]\n- [scsi] panic at .ipr_sata_reset after device reset (Kevin Monroe ) [528175]\n- [scsi] lpfc: update to 8.2.0.52 FC/FCoE (Rob Evers ) [515272]\n- [x86] add ability to access Nehalem uncore config space (John Villalovos ) [504330]\n- [net] sunrpc: remove flush_workqueue from xs_connect (Jeff Layton ) [495059]\n- [xen] ia64: command-line arg to increase the heap size (Paolo Bonzini ) [521865]\n[2.6.18-171.el5]\n- [security] require root for mmap_min_addr (Eric Paris ) [518143] {CVE-2009-2695}\n- [ata] ahci: add AMD SB900 controller device IDs (David Milburn ) [515114]\n- [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [524129]\n- Revert: [net] lvs: fix sync protocol handling for timeout values (Neil Horman ) [524129]\n- [net] AF_UNIX: deadlock on connecting to shutdown socket (Jiri Pirko ) [529631] {CVE-2009-3621}\n- [fs] inotify: remove debug code (Danny Feng ) [499019]\n- [fs] inotify: fix race (Danny Feng ) [499019]\n[2.6.18-170.el5]\n- [net] lvs: fix sync protocol handling for timeout values (Neil Horman ) [524129]\n- [net] igb: return PCI_ERS_RESULT_DISCONNECT on failure (Dean Nelson ) [514250]\n- [net] e100: return PCI_ERS_RESULT_DISCONNECT on failure (Dean Nelson ) [514250]\n- [nfs] knfsd: query fs for v4 getattr of FATTR4_MAXNAME (Jeff Layton ) [469689]\n- [block] blkfront: respect elevator=xyz cmd line option (Paolo Bonzini ) [498461]\n- [firewire] fw-ohci: fix IOMMU resource exhaustion (Jay Fenlason ) [513827]\n- [scsi] cciss: ignore stale commands after reboot (Tomas Henzl ) [525440]\n- [scsi] cciss: version change (Tomas Henzl ) [525440]\n- [scsi] cciss: switch to using hlist (Tomas Henzl ) [525440]\n- [x86] support always running Local APIC (John Villalovos ) [496306]\n- [x86_64] fix hugepage memory tracking (Jim Paradis ) [518671]\n- [net] bnx2: apply BROKEN_STATS workaround to 5706/5708 (Flavio Leitner ) [527748]\n- [pci] pci_dev->is_enabled must be set (Prarit Bhargava ) [527496]\n- [audit] dereferencing krule as if it were an audit_watch (Alexander Viro ) [526819]\n- [mm] fix spinlock performance issue on large systems (John Villalovos ) [526078]\n- [misc] hotplug: add CPU_DYING notifier (Eduardo Habkost ) [510814]\n- [misc] hotplug: use cpuset hotplug callback to CPU_DYING (Eduardo Habkost ) [510814]\n- [misc] define CPU_DYING and CPU_DYING_FROZEN (Eduardo Habkost ) [510814]\n- [misc] hotplug: adapt thermal throttle to CPU_DYING (Eduardo Habkost ) [510814]\n- [fs] file truncations when both suid and write perms set (Amerigo Wang ) [486975]\n- [x86] finish sysdata conversion (Danny Feng ) [519633]\n- [misc] pipe: fix fd leaks (Amerigo Wang ) [509625]\n- [x86_64] PCI space below 4GB forces mem remap above 1TB (Larry Woodman ) [523522]\n- [pci] pciehp: fix PCIe hotplug slot detection (Michal Schmidt ) [521731]\n- [net] syncookies: support for TCP options via timestamps (jolsa@redhat.com ) [509062]\n- [net] tcp: add IPv6 support to TCP SYN cookies (jolsa@redhat.com ) [509062]\n- [xen] blkfront: check for out-of-bounds array accesses (Paolo Bonzini ) [517238]\n- [xen] fix timeout with PV guest and physical CDROM (Paolo Bonzini ) [506899]\n- [net] e1000e: return PCI_ERS_RESULT_DISCONNECT on fail (Dean Nelson ) [508387]\n- [x86_64] vsmp: fix bit-wise operator and compile issue (Prarit Bhargava ) [515408]\n- [net] e100: add support for 82552 (Dean Nelson ) [475610]\n- [net] netfilter: honour source routing for LVS-NAT (Jiri Pirko ) [491010]\n- [misc] hwmon: update to latest upstream for RHEL-5.5 (Prarit Bhargava ) [467994 250561 446061]\n- [xen] panic in msi_msg_read_remap_rte with acpi=off (Miroslav Rezanina ) [525467]\n- [xen] mask out xsave for hvm guests (Andrew Jones ) [524052]\n- [xen] allow booting with broken serial hardware (Chris Lalancette ) [518338]\n- [xen] mask out more CPUID bits for PV guests (Chris Lalancette ) [502826]\n- [xen] x86: fix wrong asm (Paolo Bonzini ) [510686]\n- [xen] always inline memcmp (Paolo Bonzini) [510686]\n- [xen] i386: handle x87 opcodes in TLS segment fixup (Paolo Bonzini ) [510225]\n[2.6.18-169.el5]\n- [scsi] export symbol scsilun_to_int (Tomas Henzl ) [528153]\n- [fs] eCryptfs: prevent lower dentry from going negative (Eric Sandeen ) [527835] {CVE-2009-2908}\n- [nfs] v4: reclaimer thread stuck in an infinite loop (Sachin S. Prabhu ) [526888]\n- [scsi] scsi_dh_rdac: changes for rdac debug logging (Rob Evers ) [524335]\n- [scsi] scsi_dh_rdac: collect rdac debug info during init (Rob Evers ) [524335]\n- [scsi] scsi_dh_rdac: move init code around (Rob Evers ) [524335]\n- [scsi] scsi_dh_rdac: return correct mode select cmd info (Rob Evers ) [524335]\n- [scsi] scsi_dh_rdac: add support for Dell PV array (Rob Evers ) [524335]\n- [scsi] scsi_dh_rdac: add support for SUN devices (Rob Evers ) [524335]\n- [scsi] scsi_dh_rdac: support ST2500, ST2510 and ST2530 (Rob Evers ) [524335]\n- [s390] cio: boot through XAUTOLOG with conmode 3270 (Hans-Joachim Picht ) [508934]\n- [x86] add smp_call_function_many/single functions (Prarit Bhargava ) [526043]\n- [s390] iucv: fix output register in iucv_query_maxconn (Hans-Joachim Picht ) [524251]\n- [s390] set preferred s390 console based on conmode (Hans-Joachim Picht ) [520461]\n- [s390] dasd: add large volume support (Hans-Joachim Picht ) [511972]\n- [s390] dasd: fail requests when dev state is not ready (Hans-Joachim Picht ) [523219]\n- [s390] cio: failing set online/offline processing (Hans-Joachim Picht ) [523323]\n- [x86] oprofile: support arch perfmon (John Villalovos ) [523479]\n- [x86] oprofile: fix K8/core2 on multiple cpus (John Villalovos ) [523479]\n- [x86] oprofile: utilize perf counter reservation (John Villalovos ) [523479]\n- [gfs2] genesis stuck writing to unlinked file (Abhijith Das ) [505331]\n- [net] r8169: avoid losing MSI interrupts (Ivan Vecera ) [514589]\n- [s390] cio: set correct number of internal I/O retries (Hans-Joachim Picht ) [519814]\n- [net] e1000: return PCI_ERS_RESULT_DISCONNECT on fail (Dean Nelson ) [508389]\n- [net] ixgbe: return PCI_ERS_RESULT_DISCONNECT on fail (Dean Nelson ) [508388]\n- [crypto] s390: enable ansi_cprng config option (Jarod Wilson ) [504667]\n- [s390] dasd: dev attr to disable blocking on lost paths (Hans-Joachim Picht ) [503222]\n- [s390] qeth: handle VSwitch Port Isolation error codes (Hans-Joachim Picht ) [503232]\n- [s390] qeth: improve no_checksumming handling for layer3 (Hans-Joachim Picht ) [503238]\n- [gfs2] smbd proccess hangs with flock call (Abhijith Das ) [502531]\n- [input] psmouse: reenable mouse on shutdown (Prarit Bhargava ) [501025]\n- [xen] x86: make NMI detection work (Miroslav Rezanina ) [494120]\n[2.6.18-168.el5]\n- [gfs2] mount option: -o errors=withdraw|panic (Bob Peterson ) [518106]\n- [net] bonding: set primary param via sysfs (Jiri Pirko ) [499884]\n- [scsi] fusion: re-enable mpt_msi_enable option (Tomas Henzl ) [520820]\n- [x86] xen: add 'ida' flag (Prarit Bhargava ) [522846]\n- [net] ipt_recent: sanity check hit count (Amerigo Wang ) [523982]\n- [acpi] fix syntax in ACPI debug statement (Stefan Assmann ) [524787]\n- [s390] AF_IUCV SOCK_SEQPACKET support (Hans-Joachim Picht ) [512006]\n- [x86] fix nosmp option (Prarit Bhargava ) [509581]\n- [nfs] nfsd4: idmap upcalls should use unsigned uid/gid (Jeff Layton ) [519184]\n- [ia64] fix ppoll and pselect syscalls (Prarit Bhargava ) [520867]\n- [net] ipv4: ip_append_data handle NULL routing table (Jiri Pirko ) [520297]\n- [net] fix drop monitor to not panic on null dev (Neil Horman ) [523279]\n- [gfs2] gfs2_delete_inode failing on RO filesystem (Abhijith Das ) [501359]\n- [nfs] statfs error-handling fix (Jeff Layton ) [519112]\n- [pci] avoid disabling acpi to use non-core PCI devices (Mauro Carvalho Chehab ) [504330]\n- [nfs] fix regression in nfs_open_revalidate (Jeff Layton ) [511278]\n- [nfs] fix cache invalidation problems in nfs_readdir (Jeff Layton ) [511170]\n- [fs] sanitize invalid partition table entries (Stefan Assmann ) [481658]\n- [char] fix corrupted intel_rng kernel messages (Jerome Marchand ) [477778]\n- [net] ipv6: do not fwd pkts with the unspecified saddr (Jiri Pirko ) [517899]\n- [ata] ahci: add device ID for 82801JI sata controller (David Milburn ) [506200]\n- [misc] support Intel multi-APIC-cluster systems (Prarit Bhargava ) [507333]\n- [ext3] fix online resize bug (Josef Bacik ) [515759]\n- [xen] netback: call netdev_features_changed (Herbert Xu ) [493092]\n- [net] igbvf: recognize failure to set mac address (Stefan Assmann ) [512469]\n- [misc] documentation: fix file-nr definition in fs.txt (Danny Feng ) [497200]\n- [misc] cpufreq: dont set policy for offline cpus (Prarit Bhargava ) [511211]\n- [net] sunrpc client: IF for binding to a local address (Jeff Layton ) [500653]\n- [fs] nlm: track local address and bind to it for CBs (Jeff Layton ) [500653]\n- [net] sunrpc: set rq_daddr in svc_rqst on socket recv (Jeff Layton ) [500653]\n- [cpufreq] P-state limit: limit can never be increased (Stanislaw Gruszka ) [489566]\n- [crypto] s390: permit weak keys unless REQ_WEAK_KEY set (Jarod Wilson ) [504667]\n- [fs] procfs: fix fill all subdirs as DT_UNKNOWN (Danny Feng ) [509713]\n- [block] ll_rw_blk: more flexable read_ahead_kb store (Danny Feng ) [510257]\n- [audit] correct the record length of execve (Amerigo Wang ) [509134]\n- [net] tcp: do not use TSO/GSO when there is urgent data (Danny Feng ) [502572]\n- [net] vxge: new driver for Neterion 10Gb Ethernet (Michal Schmidt ) [453683]\n- [net] vxge: Makefile, Kconfig and config additions (Michal Schmidt ) [453683]\n- [pci] add PCI Express link status register definitions (Michal Schmidt ) [453683]\n- [net] 8139too: RTNL and flush_scheduled_work deadlock (Jiri Pirko ) [487346]\n- [x86] suspend-resume: work on large logical CPU systems (John Villalovos ) [499271]\n- [gfs2] '>>' does not update ctime,mtime on the file (Abhijith Das ) [496716]\n- [net] icmp: fix icmp_errors_use_inbound_ifaddr sysctl (Jiri Pirko ) [502822]\n- [nfs] fix stripping SUID/SGID flags when chmod/chgrp dir (Peter Staubach ) [485099]\n- [net] bonding: allow bond in mode balance-alb to work (Jiri Pirko ) [487763]\n- [x86] fix mcp55 apic routing (Neil Horman ) [473404]\n- [net] rtl8139: set mac address on running device (Jiri Pirko ) [502491]\n- [net] tun: allow group ownership of TUN/TAP devices (Jiri Pirko ) [497955]\n- [net] tcp: do not use TSO/GSO when there is urgent data (Jiri Olsa ) [497032]\n- [misc] undefined reference to __udivdi3 (Amerigo Wang ) [499063]\n[2.6.18-167.el5]\n- [scsi] st.c: memory use after free after MTSETBLK ioctl (David Jeffery ) [520192]\n- [nfs] knfsd: fix NFSv4 O_EXCL creates (Jeff Layton ) [524521] {CVE-2009-3286}\n- [net] r8169: balance pci_map/unmap pair, use hw padding (Ivan Vecera ) [515857]\n- [net] tc: fix unitialized kernel memory leak (Jiri Pirko ) [520863]\n- [misc] kthreads: kthread_create vs kthread_stop() race (Oleg Nesterov ) [440273]\n- [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [510067]\n[2.6.18-166.el5]\n- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524076]\n- [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524076]\n- [misc] fix RNG to not use first generated random block (Neil Horman ) [522860]\n- [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [523450]\n- [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [523447]\n- [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [519771]\n- [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [518496]\n- [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523259]\n- [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [483646]\n- Revert: [net] atalk/irda: memory leak to user in getname (Don Zickus ) [519310] {CVE-2009-3001 CVE-2009-3002}\n- Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [467942]\n[2.6.18-165.el5]\n- [net] sky2: revert some phy power refactoring changes (Neil Horman ) [509891]\n- [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519310] {CVE-2009-3001 CVE-2009-3002}\n- [x86_64] fix gettimeoday TSC overflow issue - 1 (Prarit Bhargava ) [467942]\n- [md] prevent crash when accessing suspend_* sysfs attr (Danny Feng ) [518136] {CVE-2009-2849}\n- [nfs] nlm_lookup_host: dont return invalidated nlm_host (Sachin S. Prabhu ) [507549]\n- [net] bonding: tlb/alb: set active slave when enslaving (Jiri Pirko ) [499884]\n- [nfs] r/w I/O perf degraded by FLUSH_STABLE page flush (Peter Staubach ) [498433]\n- [SELinux] allow preemption b/w transition perm checks (Eric Paris ) [516216]\n- [scsi] scsi_transport_fc: fc_user_scan correction (David Milburn ) [515176]\n- [net] tg3: refrain from touching MPS (John Feeney ) [516123]\n- [net] qlge: fix hangs and read performance (Marcus Barrow ) [517893]\n- [scsi] qla2xxx: allow use of MSI when MSI-X disabled (Marcus Barrow ) [517922]\n- [net] mlx4_en fix for vlan traffic (Doug Ledford ) [514141]\n- [net] mlx4_en device multi-function patch (Doug Ledford ) [500346]\n- [net] mlx4_core: fails to load on large systems (Doug Ledford ) [514147]\n- [x86] disable kvmclock by default (Glauber Costa ) [476075]\n- [x86] disable kvmclock when shuting the machine down (Glauber Costa ) [476075]\n- [x86] re-register clock area in prepare_boot_cpu (Glauber Costa ) [476075]\n- [x86] kvmclock smp support (Glauber Costa ) [476075]\n- [x86] use kvm wallclock (Glauber Costa ) [476075]\n- [x86_64] kvm clocksources implementation (Glauber Costa ) [476075]\n- [x86] kvm: import kvmclock.c (Glauber Costa ) [476075]\n- [x86] kvm: import pvclock.c and headers (Glauber Costa ) [476075]\n- [x86] export additional cpu flags in /proc/cpuinfo (Prarit Bhargava ) [517928]\n- [x86] detect APIC clock calibration problems (Prarit Bhargava ) [503957]\n- [fs] cifs: new opts to disable overriding of ownership (Jeff Layton ) [515252]\n- [x86] pnpacpi: fix serial ports on IBM Point-of-Sale HW (Kevin Monroe ) [506799]", "cvss3": {}, "published": "2010-04-05T00:00:00", "type": "oraclelinux", "title": "Oracle Enterprise Linux 5.5 kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2009-3556", "CVE-2009-4537", "CVE-2010-0008", "CVE-2009-3939", "CVE-2010-0007", "CVE-2009-4272", "CVE-2009-3621", "CVE-2009-3726", "CVE-2010-0727", "CVE-2009-4141", "CVE-2009-3001", "CVE-2007-4567", "CVE-2009-4027", "CVE-2010-0415", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-3547", "CVE-2009-4020", "CVE-2009-3620", "CVE-2009-3002", "CVE-2009-4536", "CVE-2010-1188", "CVE-2009-4036", "CVE-2009-4131", "CVE-2009-2908", "CVE-2009-4307", "CVE-2009-3889", "CVE-2009-4021", "CVE-2010-0003", "CVE-2009-3286", "CVE-2009-4138", "CVE-2009-2695", "CVE-2009-2849"], "modified": "2010-04-05T00:00:00", "id": "ELSA-2010-0178", "href": "http://linux.oracle.com/errata/ELSA-2010-0178.html", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:36:12", "description": "[2.6.18-274.17.1.0.1.el5]\n- fix ia64 build error due to add-support-above-32-vcpus.patch(Zhenzhong Duan)\n- [x86] use dynamic vcpu_info remap to support more than 32 vcpus (Zhenzhong Duan)\n- [scsi] add additional scsi medium error handling (John Sobecki) [orabug 12904887]\n- [x86] Fix lvt0 reset when hvm boot up with noapic param\n- [scsi] remove printk's when doing I/O to a dead device (John Sobecki, Chris Mason)\n [orabug 12342275]\n- [char] ipmi: Fix IPMI errors due to timing problems (Joe Jin) [orabug 12561346]\n- [scsi] Fix race when removing SCSI devices (Joe Jin) [orabug 12404566]\n- bonding: reread information about speed and duplex when interface goes up (John Haxby) [orabug 11890822]\n- [fs] nfs: Fix __put_nfs_open_context() NULL pointer panic (Joe Jin) [orabug 12687646]\n- [scsi] fix scsi hotplug and rescan race [orabug 10260172]\n- fix filp_close() race (Joe Jin) [orabug 10335998]\n- make xenkbd.abs_pointer=1 by default [orabug 67188919]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- [net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki)\n [orabug 10315433]\n- [NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]\n- [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572, 9344105]\n RDS: Fix BUG_ONs to not fire when in a tasklet\n ipoib: Fix lockup of the tx queue\n RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)\n RDS: Properly unmap when getting a remote access error (Tina Yang)\n RDS: Fix locking in rds_send_drop_to()\n- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)\n [orabug 9107465]\n- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)\n [orabug 9764220]\n- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]\n- fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro,\n Guru Anbalagane) [orabug 6124033]\n- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]\n- [ib] fix memory corruption (Andy Grover) [orabug 9972346]\n- [aio] patch removes limit on number of retries (Srinivas Eeda) [orabug 10044782]\n- [loop] Do not call loop_unplug for not configured loop device (orabug 10314497)\n[2.6.18-274.17.1.el5]\n- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n- Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n- Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n- Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n[2.6.18-274.16.1.el5]\n- [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n[2.6.18-274.15.1.el5]\n- [net] e1000e: Avoid wrong check on TX hang (Dean Nelson) [766485 746272]\n- [fs] xfs: Fix memory corruption in xfs_readlink (Carlos Maiolino) [749159 749160] {CVE-2011-4077}\n- [pci] intel-iommu: Default to non-coherent for unattached domains (Don Dutile) [766803 753924]\n- [fs] nfs: remove BUG() from encode_share_access() (Jeff Layton) [755442 754901] {CVE-2011-4324}\n- [misc] irq: Check for spurious IRQ only on disabled IRQs (Prarit Bhargava) [759387 756412]\n- [fs] hfs: add sanity check for file name length (Eric Sandeen) [755432 755433] {CVE-2011-4330}\n- [fs] proc: Fix select on /proc files without ->poll (David Howells) [755483 751214]\n- [fs] nfs: Ensure we mark inode as dirty if early exit from commit (Jeff Layton) [755482 714020]\n- [x86] apic: ack all pending irqs when crashed/on kexec (hiro muneda) [750460 742079]\n- [virt] kvm: fix regression w/ 32 bit KVM clock (Rik van Riel) [747875 753789 751742 731599]\n- [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]\n- [fs] jbd/jbd2: validate sb->s_first in journal_get_superblock (Eryu Guan) [753343 706810] {CVE-2011-4132}\n- [net] igb: enable link power down (Stefan Assmann) [752735 742514]\n- [fs] proc: fix oops on invalid /proc/\n/maps access (Johannes Weiner) [747851 747699] {CVE-2011-3637}\n- [block] cciss: bump driver version (Tomas Henzl) [758024 714129]\n- [block] cciss: need to delay after a PCI Power Management reset (Tomas Henzl) [758024 714129]\n- [block] cciss: auto engage scsi susbsystem (Tomas Henzl) [758024 714129]\n- [block] cciss: store pdev in hba struct (Tomas Henzl) [758024 714129]\n- [block] cciss: use consistent variable names (Tomas Henzl) [758024 714129]\n- [block] cciss: add a commandline switch for simple mode (Tomas Henzl) [758024 714129]\n- [fs] proc: close race with exec in mem_read() (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [mm] implement access_remote_vm (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [mm] factor out main logic of access_process_vm (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [mm] use mm_struct to resolve gate vma's in __get_user_pages (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [mm] make in_gate_area take mm_struct instead of a task_struct (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [mm] make get_gate_vma take mm_struct instead of task_struct (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [x86_64] mark assoc mm when running task in 32 bit compat mode (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [misc] sched: add ctx tag to mm running task in ia32 compat mode (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [fs] proc: require the target to be tracable (or yourself) (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [fs] proc: close race in /proc/*/environ (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [fs] proc: report errors in /proc/*/*map* sanely (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [fs] proc: shift down_read(mmap_sem) to the caller (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [fs] detect exec transition phase with new mm but old creds (Johannes Weiner) [692041 692042] {CVE-2011-1020}\n- [net] igb: fix i350 SR-IOV failture (Stefan Assmann) [741877 714313]\n- [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n- [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n- [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127}\n- [fs] nfs: Fix an O_DIRECT Oops (Jeff Layton) [755457 754620] {CVE-2011-4325}\n- [net] sctp: Fix another race during accept/peeloff (Thomas Graf) [757146 714870] {CVE-2011-4348}\n- [scsi] isci: fix 32-bit operation when CONFIG_HIGHMEM64G=n (Phillip Lougher) [750458 713904]\n- [net] tg3: Only allow phy ioctls while netif_running (Phillip Lougher) [746343 683393]\n[2.6.18-274.14.1.el5]\n- [input] evdev: Fix spin lock context in evdev_pass_event() (Don Zickus) [744147 734900]\n- [fs] dcache: Fix dentry loop detection deadlock (David Howells) [754129 717959]\n- [input] evdev: disable interrupts when processing events (Don Zickus) [744147 734900]\n[2.6.18-274.13.1.el5]\n- [fs] dcache: Log ELOOP rather than creating a loop (David Howells) [754129 717959]\n- [fs] dcache: Fix loop checks in d_materialise_unique (David Howells) [754129 717959]", "cvss3": {}, "published": "2012-01-11T00:00:00", "type": "oraclelinux", "title": "kernel security, bug fix, and enhancement update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2011-4348", "CVE-2011-4324", "CVE-2011-4127", "CVE-2011-4132", "CVE-2011-4330", "CVE-2011-1020", "CVE-2011-4077", "CVE-2011-3637", "CVE-2011-4325"], "modified": "2012-01-11T00:00:00", "id": "ELSA-2012-0007", "href": "http://linux.oracle.com/errata/ELSA-2012-0007.html", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:37:20", "description": "[2.6.18-164.9.1.0.1.el5]\n- [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514]\n- Add entropy support to igb ( John Sobecki) [orabug 7607479]\n- [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]\n- [NET] Add xen pv/bonding netconsole support (Tina yang) [orabug 6993043] [bz 7258]\n- [MM] shrink zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [nfsd] fix failure of file creation from hpux client (Wen gang Wang) [orabug 7579314]\n[2.6.18-164.9.1.el5]\n- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]\n[2.6.18-164.8.1.el5]\n- [xen] iommu-amd: extend loop ctr for polling completion wait (Bhavna Sarathy ) [539687 518474 526766]\n- [xen] iommu: add passthrough and no-intremap parameters (Bhavna Sarathy ) [539687 518474 526766]\n- [xen] iommu: enable amd iommu debug at run-time (Bhavna Sarathy ) [539687 518474 526766]\n- [xen] support interrupt remapping on M-C (Bhavna Sarathy ) [539687 518474 526766]\n- [xen] iommu: move iommu_setup() to setup ioapic correctly (Bhavna Sarathy ) [539687 518474 526766]\n- [net] bnx2x: add support for bcm8727 phy (Stanislaw Gruszka ) [540381 515716]\n- [x86] cpu: upstream cache fixes needed for amd m-c (Bhavna Sarathy ) [540469 526315]\n- [x86_64] set proc id and core id before calling fixup_dcm (Bhavna Sarathy) [540469 526315]\n- [x86] mce_amd: fix up threshold_bank4 creation (Bhavna Sarathy ) [540469 526315]\n- Revert: [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n[2.6.18-164.7.1.el5]\n- [xen] fix numa on magny-cours systems (Bhavna Sarathy ) [539684 526051]\n- [xen] fix crash with memory imbalance (Bhavna Sarathy ) [539690 526785]\n- [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481]\n- [acpi] prevent duplicate dirs in /proc/acpi/processor (Matthew Garrett ) [539692 537395]\n- [x86] fix boot crash with < 8-core AMD Magny-cours system (Bhavna Sarathy) [539682 522215]\n- [x86] support amd magny-cours power-aware scheduler fix (Bhavna Sarathy ) [539680 513685]\n- [x86] disable NMI watchdog on CPU remove (Prarit Bhargava ) [539691 532514]\n- [acpi] bm_check and bm_control update (Luming Yu ) [539677 509422]\n- [x86_64] amd: iommu system management erratum 63 fix (Bhavna Sarathy ) [539689 531469]\n- [net] bnx2i/cnic: update driver version for RHEL5.5 (Mike Christie ) [537014 516233]\n- [x86] fix L1 cache by adding missing break (Bhavna Sarathy ) [539688 526770]\n- [x86] amd: fix hot plug cpu issue on 32-bit magny-cours (Bhavna Sarathy ) [539688 526770]\n- [acpi] disable ARB_DISABLE on platforms where not needed (Luming Yu ) [539677 509422]\n- [fs] private dentry list to avoid dcache_lock contention (Lachlan McIlroy ) [537019 526612]\n- [scsi] qla2xxx: enable msi-x correctly on qlogic 2xxx series (Marcus Barrow ) [537020 531593]\n- [apic] fix server c1e spurious lapic timer events (Bhavna Sarathy ) [539681 519422]\n- [net] netlink: fix typo in initialization (Jiri Pirko ) [528872 527906]\n- [x86] set cpu_llc_id on AMD CPUs (Bhavna Sarathy ) [539678 513684]\n- [x86] fix up threshold_bank4 support on AMD Magny-cours (Bhavna Sarathy ) [539678 513684]\n- [x86] fix up L3 cache information for AMD Magny-cours (Bhavna Sarathy ) [539678 513684]\n- [x86] amd: fix CPU llc_shared_map information (Bhavna Sarathy ) [539678 513684]\n- [nfs] v4: fix setting lock on open file with no state (Jeff Layton ) [533114 533115] {CVE-2009-3726}\n- [misc] futex priority based wakeup (Jon Thomas ) [533858 531552]\n- [dlm] use GFP_NOFS on all lockspaces (David Teigland ) [533859 530537]\n- [drm] r128: check for init on all ioctls that require it (Danny Feng ) [529602 529603] {CVE-2009-3620}\n- [scsi] mpt: errata 28 fix on LSI53C1030 (Tomas Henzl ) [529308 518689]\n- [x86] add ability to access Nehalem uncore config space (John Villalovos ) [539675 504330]\n- [net] AF_UNIX: deadlock on connecting to shutdown socket (Jiri Pirko ) [529630 529631] {CVE-2009-3621}\n- [fs] inotify: remove debug code (Danny Feng ) [533822 499019]\n- [fs] inotify: fix race (Danny Feng ) [533822 499019]\n- [audit] dereferencing krule as if it were an audit_watch (Alexander Viro ) [533861 526819]\n- [mm] fix spinlock performance issue on large systems (John Villalovos ) [539685 526078]\n- [x86] finish sysdata conversion (Danny Feng ) [537346 519633]\n- [pci] pciehp: fix PCIe hotplug slot detection (Michal Schmidt ) [530383 521731]\n- [x86] oprofile: support arch perfmon (John Villalovos ) [539683 523479]\n- [x86] oprofile: fix K8/core2 on multiple cpus (John Villalovos ) [539683 523479]\n- [x86] oprofile: utilize perf counter reservation (John Villalovos ) [539683 523479]\n- [pci] avoid disabling acpi to use non-core PCI devices (Mauro Carvalho Chehab ) [539675 504330]\n- [misc] support Intel multi-APIC-cluster systems (Prarit Bhargava ) [539676 507333]\n- [x86] suspend-resume: work on large logical CPU systems (John Villalovos ) [539674 499271]", "cvss3": {}, "published": "2009-12-16T00:00:00", "type": "oraclelinux", "title": "kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2009-3621", "CVE-2009-3726", "CVE-2009-3620", "CVE-2009-3612"], "modified": "2009-12-16T00:00:00", "id": "ELSA-2009-1670", "href": "http://linux.oracle.com/errata/ELSA-2009-1670.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:34:16", "description": "[2.6.18-164.10.1.0.1.el5]\n- [xen] check to see if hypervisor supports memory reservation change \n (Chuck Anderson) [orabug 7556514]\n- Add entropy support to igb ( John Sobecki) [orabug 7607479]\n- [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]\n- [NET] Add xen pv/bonding netconsole support (Tina yang) [orabug 6993043] \n [bz 7258]\n- [MM] shrink zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [nfsd] fix failure of file creation from hpux client (Wen gang Wang) \n [orabug 7579314]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n[2.6.18-164.10.1.el5]\n- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915]\n- [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223]\n- [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}", "cvss3": {}, "published": "2010-01-08T00:00:00", "type": "oraclelinux", "title": "kernel security update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2009-4537", "CVE-2007-4567", "CVE-2009-4538", "CVE-2009-4536"], "modified": "2010-01-08T00:00:00", "id": "ELSA-2010-0019", "href": "http://linux.oracle.com/errata/ELSA-2010-0019.html", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:39:18", "description": "[2.6.18-274.el5]\n- [xen] svm: fix invlpg emulator regression (Paolo Bonzini) [719894]\n[2.6.18-273.el5]\n- Revert: [fs] proc: Fix rmmod/read/write races in /proc entries (Jarod Wilson) [717068]\n- [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [717742]\n- [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [717742]\n- [xen] remove unused argument to __get_instruction_length (Paolo Bonzini) [717742]\n- [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [717742]\n[2.6.18-272.el5]\n- [xen] x86: spinlock support for up to 255 CPUs (Laszlo Ersek) [713123]\n- [xen] remove block scope mtrr identifiers shadowing file scope (Laszlo Ersek) [713123]\n- [xen] Actually hold back MTRR init while booting secondary CPUs (Laszlo Ersek) [713123]\n- [xen] remove unused mtrr_bp_restore (Laszlo Ersek) [713123]\n- [xen] x86: Fix crash on amd iommu systems (Igor Mammedov) [714275]\n[2.6.18-271.el5]\n- [net] igmp: ip_mc_clear_src only when we no users of ip_mc_list (Veaceslav Falico) [707179]\n- [scsi] cxgb3i: fix programing of dma page sizes (Neil Horman) [710498]\n- [xen] hvm: secure vmx cpuid (Andrew Jones) [706325] {CVE-2011-1936}\n- [xen] hvm: secure svm_cr_access (Andrew Jones) [703716] {CVE-2011-1780}\n- [xen] hvm: svm support cleanups (Andrew Jones) [703716] {CVE-2011-1780}\n[2.6.18-270.el5]\n- [fs] proc: fix compile warning in pdeaux addition (Jarod Wilson) [675781]\n- [net] bluetooth: l2cap and rfcomm: fix info leak to userspace (Thomas Graf) [703021]\n- [net] inet_diag: fix inet_diag_bc_audit data validation (Thomas Graf) [714539] {CVE-2011-2213}\n- [misc] signal: fix kill signal spoofing issue (Oleg Nesterov) [690031] {CVE-2011-1182}\n- [fs] proc: fix signedness issue in next_pidmap (Oleg Nesterov) [697827] {CVE-2011-1593}\n- [char] agp: fix OOM and buffer overflow (Jerome Marchand) [699010] {CVE-2011-1746}\n- [char] agp: fix arbitrary kernel memory writes (Jerome Marchand) [699006] {CVE-2011-1745 CVE-2011-2022}\n- [net] be2net: fix queue creation order and pci error recovery (Ivan Vecera) [711653]\n- [infiniband] core: Handle large number of entries in poll CQ (Jay Fenlason) [668371] {CVE-2010-4649 CVE-2011-1044}\n- [infiniband] core: fix panic in ib_cm:cm_work_handler (Jay Fenlason) [679996] {CVE-2011-0695}\n- [fs] validate size of EFI GUID partition entries (Anton Arapov) [703026] {CVE-2011-1776}\n[2.6.18-269.el5]\n- [mm] only throttle page dirtying for specially marked BDIs (Jeff Layton) [711450]\n- Revert: [base] Fix potential deadlock in driver core (Don Zickus) [703084]\n- [fs] proc: Fix rmmod/read/write races in /proc entries (David Howells) [675781]\n- [scsi] qla4xxx: Update driver version to V5.02.04.01.05.07-d0 (Chad Dupuis) [704153]\n- [scsi] qla4xxx: clear SCSI COMPLETION INTR bit during F/W init (Chad Dupuis) [704153]\n- [usb] wacom: add support for DTU-2231 (Aristeu Rozanski) [683549]\n- [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701243] {CVE-2011-1763}\n[2.6.18-268.el5]\n- [net] sctp: fix calc of INIT/INIT-ACK chunk length to set (Thomas Graf) [695385] {CVE-2011-1573}\n- [scsi] ibmvfc: Fix Virtual I/O failover hang (Steve Best) [710477]\n- [kernel] irq: Note and disable spurious interrupts on kexec (Prarit Bhargava) [611407]\n- [net] bnx2x: Update firmware to 6.2.9 (Michal Schmidt) [711079]\n- [net] bnx2x: Update bnx2x_firmware.h to version 6.2.9 (Michal Schmidt) [711079]\n- [net] xt_hashlimit: fix race between htable_destroy and htable_gc (Jiri Pirko) [705905]\n- [fs] cifs: clear write bits if ATTR_READONLY is set (Justin Payne) [700263]\n- [net] bna: clear some statistics before filling them (Ivan Vecera) [711990]\n- [net] ixgbe: Disable RSC by default (Herbert Xu) [703416]\n- [scsi] isci: fix scattergather list handling for smp commands (David Milburn) [710584]\n- [net] netconsole: prevent setup netconsole on a slave device (Amerigo Wang) [698873]\n[2.6.18-267.el5]\n- [fs] xfs: prevent leaking uninit stack memory in FSGEOMETRY_V1 p2 (Phillip Lougher) [677266] {CVE-2011-0711}\n- [fs] xfs: prevent leaking uninit stack memory in FSGEOMETRY_V1 (Phillip Lougher) [677266] {CVE-2011-0711}\n- [net] core: Fix memory leak/corruption on VLAN GRO_DROP (Herbert Xu) [691565] {CVE-2011-1576}\n[2.6.18-266.el5]\n- [scsi] megaraid: update to driver version 5.38-rh1 (Tomas Henzl) [706244]\n- [block] cciss: fix mapping of config table (Tomas Henzl) [695493]\n- [block] cciss: fix dev_info null pointer deref after freeing h (Tomas Henzl) [695493]\n- [block] cciss: do not call request_irq with spinlocks held (Tomas Henzl) [695493]\n- [block] cciss: prototype cciss_sent_reset to fix error (Tomas Henzl) [695493]\n- [block] cciss: mark functions as dev_init to clean up warnings (Tomas Henzl) [695493]\n- [block] cciss: timeout if soft reset fails (Tomas Henzl) [695493]\n- [block] cciss: use cmd_alloc for kdump (Tomas Henzl) [695493]\n- [block] cciss: Use cciss not hpsa in init_driver_version (Tomas Henzl) [695493]\n- [block] cciss: reduce stack usage a reset verifying code (Tomas Henzl) [695493]\n- [block] cciss: do not store pci state on stack (Tomas Henzl) [695493]\n- [block] cciss: no PCI power management reset method if known bad (Tomas Henzl) [695493]\n- [block] cciss: increase timeouts for post-reset no-ops (Tomas Henzl) [695493]\n- [block] cciss: remove superfluous sleeps around reset code (Tomas Henzl) [695493]\n- [block] cciss: do soft reset if hard reset is broken (Tomas Henzl) [695493]\n- [block] cciss: flush writes in interrupt mask setting code (Tomas Henzl) [695493]\n- [block] cciss: clarify messages around reset behavior (Tomas Henzl) [695493]\n- [block] cciss: increase time to wait for board reset to start (Tomas Henzl) [695493]\n- [block] cciss: get rid of message related magic numbers (Tomas Henzl) [695493]\n- [block] cciss: factor out irq request code (Tomas Henzl) [695493]\n- [block] cciss: factor out scatterlist allocation functions (Tomas Henzl) [695493]\n- [block] cciss: factor out command pool allocation functions (Tomas Henzl) [695493]\n- [block] cciss: Define print_cmd even without tape support (Tomas Henzl) [695493]\n- [block] cciss: do not use bit 2 doorbell reset (Tomas Henzl) [695493]\n- [block] cciss: use new doorbell-bit-5 reset method (Tomas Henzl) [695493]\n- [block] cciss: improve controller reset failure detection (Tomas Henzl) [695493]\n- [block] cciss: wait longer after resetting controller (Tomas Henzl) [695493]\n- [infiniband] cxgb4: Use completion objects for event blocking (Steve Best) [708081]\n- [fs] ext4: fix quota deadlock (Eric Sandeen) [702197]\n- [fs] ext3, ext4: update ctime when changing permission by setfacl (Eric Sandeen) [709224]\n- [scsi] bfa: properly reinitialize adapter during kdump (Rob Evers) [710300]\n- [scsi] lpfc: Update for 8.2.0.96.2p release (Rob Evers) [707336]\n- [scsi] lpfc: Fix back to back Flogis sent without logo (Rob Evers) [707336]\n- [scsi] lpfc: Fix not updating wwnn and wwpn after name change (Rob Evers) [707336]\n- [scsi] lpfc: Fix CT command never completing on Big Endian host (Rob Evers) [707336]\n- [scsi] lpfc: Revert fix that introduced a race condition (Rob Evers) [707336]\n- [scsi] lpfc: Fix crash in rpi clean when driver load fails (Rob Evers) [707336]\n- [scsi] lpfc: fix limiting RPI Count to a minimum of 64 (Rob Evers) [707336]\n- [scsi] lpfc: fix overriding CT field for SLI4 IF type 2 (Rob Evers) [707336]\n- [scsi] lpfc: force retry in queuecommand when port transitioning (Rob Evers) [707336]\n- [scsi] lpfc: Update version for 8.2.0.96.1p release (Rob Evers) [698432]\n- [scsi] lpfc: Fix double byte swap on received RRQ (Rob Evers) [698432]\n- [scsi] lpfc: Fix Vports not sending FDISC after lips (Rob Evers) [698432]\n- [scsi] lpfc: Fix system crash during driver unload (Rob Evers) [698432]\n- [scsi] lpfc: Fix FCFI incorrect on received unsolicited frames (Rob Evers) [698432]\n- [scsi] lpfc: Fix driver sending FLOGI to a disconnected FCF (Rob Evers) [698432]\n- [scsi] lpfc: Fix bug with incorrect BLS Response to BLS Abort (Rob Evers) [698432]\n- [scsi] lpfc: Fix adapter on Powerpc unable to login into Fabric (Rob Evers) [698432]\n- [pci] export msi_desc struct and msi_desc array (Prarit Bhargava) [697666]\n- [net] bonding: prevent deadlock on slave store with alb mode (Neil Horman) [706414]\n- [net] mlx4: Fix dropped promiscuity flag (Michael S. Tsirkin) [592370]\n- [edac] amd64_edac: Fix NULL pointer on Interlagos (Mauro Carvalho Chehab) [705040 709529]\n- [scsi] ses: fix ses_set_fault() to set the fault LED function (James Takahashi) [682351]\n- [redhat] configs: config file changes for SES Enablement (James Takahashi) [682351]\n- [misc] enclosure: return ERR_PTR() on error (James Takahashi) [682351]\n- [misc] enclosure: fix oops while iterating enclosure_status array (James Takahashi) [682351]\n- [scsi] ses: fix VPD inquiry overrun (James Takahashi) [682351]\n- [scsi] ses: Fix timeout (James Takahashi) [682351]\n- [scsi] ses: fix data corruption (James Takahashi) [682351]\n- [scsi] ses: fix memory leaks (James Takahashi) [682351]\n- [scsi] ses: add new Enclosure ULD (James Takahashi) [682351]\n- [misc] enclosure: add support for enclosure services (James Takahashi) [682351]\n- [net] tg3: Include support for Broadcom 5719/5720 (John Feeney) [654956 696182 707299]\n- [misc] module: remove over-zealous check in __module_get() (Jon Masters) [616125]\n- [redhat] kabi: Add pci_ioremap_bar and pci_reset_function to kABI (Jon Masters) [677683]\n- [redhat] kabi: Add dm_put to kABI (Jon Masters) [707003]\n- [redhat] kabi: Add compat_alloc_user_space to kABI (Jon Masters) [703167]\n- [redhat] kabi: Add random32 and srandom32 to kABI (Jon Masters) [668815]\n- [redhat] kabi: Add cancel_work_sync to kABI (Jon Masters) [664991]\n- [net] bna: add r suffix to the driver version (Ivan Vecera) [709951]\n- [net] bna: fix for clean fw re-initialization (Ivan Vecera) [709951]\n- [net] bna: fix memory leak during RX path cleanup (Ivan Vecera) [709951]\n- [net] bridge: Disable multicast snooping by default (Herbert Xu) [506630]\n- [net] bonding: fix block_netpoll_tx imbalance (Andy Gospodarek) [704426]\n- [scsi] qla2xxx: Fix virtual port login failure after chip reset (Chad Dupuis) [703879]\n- [scsi] qla2xxx: fix dsd_list_len for dsd_chaining in cmd type 6 (Chad Dupuis) [703879]\n- [net] force new skbs to allocate a minimum of 16 frags (Amerigo Wang) [694308]\n- [pci] intel-iommu: Flush unmaps at domain_exit (Alex Williamson) [705455]\n- [pci] intel-iommu: Only unlink device domains from iommu (Alex Williamson) [705455]\n[2.6.18-265.el5]\n- [scsi] be2iscsi: Fix MSIX interrupt names (Prarit Bhargava) [704735]\n- [misc] signal: fix SIGPROF keeps large task from completing fork (Oleg Nesterov) [645528]\n- [fs] gfs2: fix processes waiting on already-available inode glock (Robert S Peterson) [694669]\n- Revert: [pci] msi: remove infiniband compat code (Prarit Bhargava) [636260]\n- Revert: [pci] msi: use msi_desc save areas in drivers/pci code (Prarit Bhargava) [636260]\n- Revert: [pci] msi: use msi_desc save areas in msi state functions (Prarit Bhargava) [636260]\n- Revert: [pci] msi: remove pci_save_msi|x_state() functions (Prarit Bhargava) [636260]\n- [s390] mm: diagnose 10 does not release memory above 2GB (Hendrik Brueckner) [701275]\n- [input] evdev: implement proper locking (Marc Milgram) [680561]\n- [input] evdev: rename list to client in handlers (Marc Milgram) [680561]\n- [net] netpoll: disable netpoll when enslave a device (Amerigo Wang) [698873]\n- [net] disable lro on phys device when dev is a vlan (Neil Horman) [696374]\n- [scsi] qla2xxx: Update version number to 8.03.07.03.05.07-k (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Free firmware PCB on logout request (Chad Dupuis) [686462]\n- [scsi] qla2xxx: dump registers for more info about ISP82xx errors (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Updated the reset sequence for ISP82xx (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Update copyright banner (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Perform FCoE context reset before adapter reset (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Limit logs in case device state does not change (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Abort pending commands for faster reset recovery (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Check for match before setting FCP-priority info (Chad Dupuis) [686462]\n- [scsi] qla2xxx: Display PortID info during FCP command-status (Chad Dupuis) [686462]\n[2.6.18-264.el5]\n- [misc] Introduce pci_map_biosrom, kernel-xen variant (David Milburn) [651837]\n[2.6.18-263.el5]\n- [misc] vsyscall: remove code changing syscall instructions to nop (Ulrich Obergfell) [689546]\n- [scsi] mpt2sas: move fault event handling into process context (Tomas Henzl) [705398]\n- [scsi] ibmvscsi: Improve CRQ reset reliability (Steve Best) [704963]\n- [infiniband] cxgb4: Reset wait condition atomically (Steve Best) [703925]\n- [infiniband] cxgb4: fix driver hang on EEH error (Steve Best) [703925]\n- [fs] xfs: serialise unaligned direct IOs (Eric Sandeen) [689830]\n- [fs] ext4: serialize unaligned asynchronous DIO (Eric Sandeen) [689830]\n- [misc] Add printk_timed_ratelimit (Eric Sandeen) [689830]\n- [fs] set stats st_blksize to fs blocksize not page size (Eric Sandeen) [695168]\n- [pci] Disable PCI MSI/X on portable hardware (Prarit Bhargava) [703340]\n- [usb] ehci: Disable disconnect/connect wakeups (Matthew Garrett) [703344]\n- [fs] cifs: fix cifsConvertToUCS for the mapchars case (Jeff Layton) [705324]\n- [fs] nfs: set d_op on newly allocated dentries in nfs_rename (Jeff Layton) [702533]\n- [fs] nfs: Fix build break with CONFIG_NFS_V4=n (Harshula Jayasuriya) [702355]\n- [scsi] isci: enable building driver (David Milburn) [651837]\n- [scsi] libsas: flush initial device discovery before completing (David Milburn) [651837]\n- [scsi] libsas: fix up device gone notification in sas_deform_port (David Milburn) [651837]\n- [scsi] libsas: fix runaway error handler problem (David Milburn) [651837]\n- [scsi] isci: validate oem parameters early, and fallback (David Milburn) [651837]\n- [scsi] isci: fix oem parameter header definition (David Milburn) [651837]\n- [scsi] isci: fix fragile/conditional isci_host lookups (David Milburn) [651837]\n- [scsi] isci: cleanup isci_remote_device[_not]_ready interface (David Milburn) [651837]\n- [scsi] isci: Qualify when lock managed for STP/SATA callbacks (David Milburn) [651837]\n- [scsi] isci: Fix use of SATA soft reset state machine (David Milburn) [651837]\n- [scsi] isci: Free lock for abort escalation at submit time (David Milburn) [651837]\n- [scsi] isci: Properly handle requests in aborting state (David Milburn) [651837]\n- [scsi] isci: Remove screaming data types (David Milburn) [651837]\n- [scsi] isci: remove unused remote_device_started (David Milburn) [651837]\n- [scsi] isci: namespacecheck cleanups (David Milburn) [651837]\n- [scsi] isci: kill some long macros (David Milburn) [651837]\n- [scsi] isci: reorder init to cleanup unneeded declarations (David Milburn) [651837]\n- [scsi] isci: Remove event_* calls as they are just wrappers (David Milburn) [651837]\n- [scsi] isci: fix apc mode definition (David Milburn) [651837]\n- [scsi] isci: Revert task gating change handled by libsas (David Milburn) [651837]\n- [scsi] isci: reset hardware at init (David Milburn) [651837]\n- [scsi] isci: Revert unneeded error path fixes (David Milburn) [651837]\n- [scsi] isci: misc fixes (David Milburn) [651837]\n- [scsi] isci: add firmware support (David Milburn) [651837]\n- [scsi] isci: lldd support (David Milburn) [651837]\n- [scsi] isci: add core common definitions and utility functions (David Milburn) [651837]\n- [scsi] isci: add core base state machine and memory descriptors (David Milburn) [651837]\n- [scsi] isci: add core unsolicited frame handling and registers (David Milburn) [651837]\n- [scsi] isci: add core request support (David Milburn) [651837]\n- [scsi] isci: add core stp support (David Milburn) [651837]\n- [scsi] isci: add core remote node context support (David Milburn) [651837]\n- [scsi] isci: add core remote device support (David Milburn) [651837]\n- [scsi] isci: add core port support (David Milburn) [651837]\n- [scsi] isci: add core phy support (David Milburn) [651837]\n- [scsi] isci: add core controller support (David Milburn) [651837]\n- [scsi] isci: BZ 651837 Introduce pci_map_biosrom() (David Milburn) [651837]\n- [scsi] qla4xxx: update version to V5.02.04.00.05.07-d0 (Chad Dupuis) [660388]\n- [scsi] qla4xxx: set status_srb NULL if sense_len is 0 (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Initialize host fw_ddb_index_map list (Chad Dupuis) [660388]\n- [scsi] qla4xxx: reuse qla4xxx_mailbox_premature_completion (Chad Dupuis) [660388]\n- [scsi] qla4xxx: check for all reset flags (Chad Dupuis) [660388]\n- [scsi] qla4xxx: added new function qla4xxx_relogin_all_devices (Chad Dupuis) [660388]\n- [scsi] qla4xxx: add support for ql4xkeepalive module parameter (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Add support for ql4xmaxqdepth module parameter (Chad Dupuis) [660388]\n- [scsi] qla4xxx: skip core clock so firmware can increase clock (Chad Dupuis) [660388]\n- [scsi] qla4xxx: copy ipv4 opts and address state to host struct (Chad Dupuis) [660388]\n- [scsi] qla4xxx: check AF_FW_RECOVERY flag for 8022 adapter only (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Change hard coded values to macros (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Change hard coded value of Sense buffer (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Remove stale references to ISP3031 and NetXen (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Correct file header for iscsi (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Add scsi_{,un}block_request while reading flash (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Remove unused code from qla4xxx_send_tgts (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Add proper locking around cmd->host_scribble (Chad Dupuis) [660388]\n- [scsi] qla4xxx: use return status DID_TRANSPORT_DISRUPTED (Chad Dupuis) [660388]\n- [scsi] qla4xxx: remove unused functions and struct parameters (Chad Dupuis) [660388]\n- [scsi] qla4xxx: change char string to static char (Chad Dupuis) [660388]\n- [scsi] qla4xxx: change spin_lock to spin_lock_irqsave (Chad Dupuis) [660388]\n- [scsi] qla4xxx: change hard coded value to a macro (Chad Dupuis) [660388]\n- [scsi] qla4xxx: move qla4xxx_free_ddb_list and scsi_remove_host (Chad Dupuis) [660388]\n- [scsi] qla4xxx: get status from initialize_adapter (Chad Dupuis) [660388]\n- [scsi] qla4xxx: remove extra pci_disable_device call (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Remove unused argument from function prototype (Chad Dupuis) [660388]\n- [scsi] qla4xxx: call qla4xxx_mark_all_devices_missing (Chad Dupuis) [660388]\n- [scsi] qla4xxx: call scsi_scan_target only if AF_ONLINE set (Chad Dupuis) [660388]\n- [scsi] qla4xxx: call scsi_block_request before clearing AF_ONLINE (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Add timer debug print (Chad Dupuis) [660388]\n- [scsi] qla4xxx: use iscsi class session state check ready (Chad Dupuis) [660388]\n- [scsi] qla4xxx: set device state missing only if non-dead state (Chad Dupuis) [660388]\n- [scsi] libiscsi: fix shutdown (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Change function prototype to static (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Fix panic while loading with corrupted 4032 card (Chad Dupuis) [660388]\n- [scsi] qla4xxx: no other port reinit during remove_adapter (Chad Dupuis) [660388]\n- [scsi] qla4xxx: unblock iscsi session before scsi_scan_target (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Fix for dropping of AENs during init time (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Free allocated memory only once (Chad Dupuis) [660388]\n- [scsi] qla4xxx: ignore existing interrupt during mailbox command (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Check connection active before unblocking session (Chad Dupuis) [660388]\n- [scsi] qla4xxx: Poll for Disable Interrupt Mailbox Completion (Chad Dupuis) [660388]\n- [scsi] qla4xxx: fix request_irq to avoid spurious interrupts (Chad Dupuis) [660388]\n- [net] bridge: make bridge address settings sticky (Amerigo Wang) [705997]\n- [net] bridge: allow changing hardware addr to any valid address (Amerigo Wang) [705997]\n- [xen] hvm: build guest timers on monotonic system time (Paolo Bonzini) [705725]\n- [xen] hvm: explicitly use the TSC as the base for the hpet (Paolo Bonzini) [705725]\n- [xen] x86: allow Dom0 to drive PC speaker (Igor Mammedov) [501314]\n- [xen] vtd: Fix resource leaks on error paths in intremap code (Igor Mammedov) [704497]\n[2.6.18-262.el5]\n- [block] cciss: reading a write only register causes a hang (Tomas Henzl) [696153]\n[2.6.18-261.el5]\n- [message] mptfusion: inline data padding support for TAPE drives (Tomas Henzl) [698073]\n- [powerpc] fix VDSO gettimeofday called with NULL struct timeval (Steve Best) [700203]\n- [fs] gfs2: fix resource group bitmap corruption (Robert S Peterson) [690555]\n- [fs] gfs2: Add dlm callback owed glock flag (Robert S Peterson) [703213]\n- [net] cxgb4: fix some backport bugs (Neil Horman) [700947]\n- [scsi] fnic: fix stats memory leak (Mike Christie) [688459]\n- [block]: fix missing bio back/front segment size setting (Milan Broz) [700546]\n- [net] mlx4: Add CX3 PCI IDs (Jay Fenlason) [660671]\n- [pci] SRIOV: release VF BAR resources when device is hot unplug (Don Dutile) [698879]\n- [virtio] virtio_ring: Decrement avail idx on buffer detach (Amit Shah) [699426]\n- [virtio] virtio_pci: fix double-free of pci regions on unplug (Amit Shah) [701918]\n- Revert: [virtio] console: no device_destroy on port device (Amit Shah) [701918]\n- [xen] hvm: provide param to disable HPET in HVM guests (Paolo Bonzini) [702652]\n- [xen] vtd: Free unused interrupt remapping table entry (Don Dugger) [571410]\n[2.6.18-260.el5]\n- [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694527] {CVE-2011-1494 CVE-2011-1495}\n- [block] cciss: fix export resettable host attribute fix (Tomas Henzl) [690511]\n- [fs] gfs2: Tag all metadata with jid of last node to change it (Steven Whitehouse) [701577]\n- [fs] nfsd: permit unauthenticated stat of export root (Steve Dickson) [491740]\n- [net] myri10ge: add dynamic LRO disabling (Stanislaw Gruszka) [688897]\n- [wireless] ath5k: disable ASPM L0s for all cards (Stanislaw Gruszka) [666866]\n- [net] igb: work-around for 82576 EEPROMs reporting invalid size (Stefan Assmann) [693934]\n- [pci] aerdrv: use correct bits and add delay to aer_root_reset (Stefan Assmann) [700386]\n- [fs] jbd: fix write_metadata_buffer and get_write_access race (Eric Sandeen) [494927 696843]\n- [x86_64] Disable Advanced RAS/MCE on newer Intel processors (Prarit Bhargava) [697508]\n- [x86_64] vdso: fix gettimeofday segfault when tv == NULL (Prarit Bhargava) [700782]\n- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [692921]\n- [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [692921]\n- [scsi] iscsi_tcp: fix iscsis sk_user_data access (Mike Christie) [677703]\n- [edac] i7core_edac: return -ENODEV if no MC is found (Mauro Carvalho Chehab) [658418]\n- [char] vcs: hook sysfs devices to object lifetime (Mauro Carvalho Chehab) [622542]\n- [char] vt_ioctl: fix VT ioctl race (Mauro Carvalho Chehab) [622542]\n- [fs] avoid vmalloc space error opening many files on x86 (Larry Woodman) [681586]\n- [fs] nfs: Tighten up the attribute update code (Jeff Layton) [672981]\n- [net] bna: Avoid kernel panic in case of FW heartbeat failure (Ivan Vecera) [700488]\n- [net] benet: increment work_counter in be_worker (Ivan Vecera) [695197]\n- [net] benet: be_poll_tx_mcc_compat should always return zero (Ivan Vecera) [690755]\n- [net] benet: Fix be_get_stats_count return value (Ivan Vecera) [690755]\n- [net] tcp: Fix tcp_prequeue to get correct rto_min value (Herbert Xu) [696411]\n- [net] bonding: unshare skbs prior to calling pskb_may_pull (Andy Gospodarek) [607114]\n- [misc] x86: Sync CPU feature flag additions from Xen (Frank Arnold) [687994]\n- [misc] mark various drivers/features as tech preview (Don Zickus) [701722]\n- [hwmon] i5k_amb: Fix compile warning (Dean Nelson) [603345]\n- [hwmon] i5k_amb: Load automatically on all 5000/5400 chipsets (Dean Nelson) [603345]\n- [hwmon] i5k_amb: provide labels for temperature sensors (Dean Nelson) [603345]\n- [hwmod] i5k_amb: support Intel 5400 chipset (Dean Nelson) [603345]\n- [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681326] {CVE-2011-1080}\n- [net] bluetooth: fix sco information leak to userspace (Don Howard) [681311] {CVE-2011-1078}\n- [fs] gfs2: make sure fallocate bytes is a multiple of blksize (Benjamin Marzinski) [699741]\n- [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695980] {CVE-2011-1577}\n- [xen] x86: Enable K8 NOPS for future AMD CPU Families (Frank Arnold) [687994]\n- [xen] x86: Blacklist new AMD CPUID bits for PV domains (Frank Arnold) [687994]\n- [xen] x86: Handle new AMD CPUID bits for HVM guests (Frank Arnold) [687994]\n- [xen] x86: Update AMD CPU feature flags (Frank Arnold) [687994]\n- [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688582] {CVE-2011-1166}\n[2.6.18-259.el5]\n- [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [695369]\n- [edac] amd64_edac: Fix potential memleak (Mauro Carvalho Chehab) [610235]\n- [edac] amd64_edac, amd64_mce: Revert printk changes (Mauro Carvalho Chehab) [610235]\n- [x86] amd: Fix init_amd build warnings (Frank Arnold) [610235]\n- [edac] amd64_edac: Enable PCI dev detection on F15h (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix decode_syndrome types (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix DCT argument type (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix ranges signedness (Frank Arnold) [610235]\n- [edac] amd64_edac: Drop local variable (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix PCI config addressing types (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix DRAM base macros (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix node id signedness (Frank Arnold) [610235]\n- [edac] amd64_edac: Enable driver on F15h (Frank Arnold) [610235]\n- [edac] amd64_edac: Adjust ECC symbol size to F15h (Frank Arnold) [610235]\n- [edac] amd64_edac: Improve DRAM address mapping (Frank Arnold) [610235]\n- [edac] amd64_edac: Sanitize ->read_dram_ctl_register (Frank Arnold) [610235]\n- [edac] amd64_edac: fix up chip select conversion routine to F15h (Frank Arnold) [610235]\n- [edac] amd64_edac: Beef up early exit reporting (Frank Arnold) [610235]\n- [edac] amd64_edac: Revamp online spare handling (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix channel interleave removal (Frank Arnold) [610235]\n- [edac] amd64_edac: Correct node interleaving removal (Frank Arnold) [610235]\n- [edac] amd64_edac: Add support for interleaved region swapping (Frank Arnold) [610235]\n- [edac] amd64_edac: Unify get_error_address (Frank Arnold) [610235]\n- [edac] amd64_edac: Simplify decoding path (Frank Arnold) [610235]\n- [edac] amd64_edac: Adjust channel counting to F15h (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup old defines cruft (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup NBSH cruft (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup NBCFG handling (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup NBCTL code (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup DCT Select Low/High code (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup Dram Configuration registers handling (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup DBAM handling (Frank Arnold) [610235]\n- [edac] amd64_edac: Replace huge bitmasks with a macro (Frank Arnold) [610235]\n- [edac] amd64_edac: Sanitize f10_get_base_addr_offset (Frank Arnold) [610235]\n- [edac] amd64_edac: Sanitize channel extraction (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup chipselect handling (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup DHAR handling (Frank Arnold) [610235]\n- [edac] amd64_edac: Remove DRAM base/limit subfields caching (Frank Arnold) [610235]\n- [edac] amd64_edac: Add support for F15h DCT PCI config accesses (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix DIMMs per DCTs output (Frank Arnold) [610235]\n- [edac] amd64_edac: Remove two-stage initialization (Frank Arnold) [610235]\n- [edac] amd64_edac: Check ECC capabilities initially (Frank Arnold) [610235]\n- [edac] amd64_edac: Carve out ECC-related hw settings (Frank Arnold) [610235]\n- [edac] amd64_edac: Allocate driver instances dynamically (Frank Arnold) [610235]\n- [edac] amd64_edac: Rework printk macros (Frank Arnold) [610235]\n- [edac] amd64_edac: Rename CPU PCI devices (Frank Arnold) [610235]\n- [edac] amd64_edac: Concentrate per-family init even more (Frank Arnold) [610235]\n- [edac] amd64_edac: Cleanup the CPU PCI device reservation (Frank Arnold) [610235]\n- [edac] amd64_edac: Add per-family init function (Frank Arnold) [610235]\n- [edac] amd64_edac: Remove F11h support (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix interleaving check (Frank Arnold) [610235]\n- [edac] amd64_edac: Fix DCT base address selector (Frank Arnold) [610235]\n- [edac] amd64_edac: Sanitize syndrome extraction (Frank Arnold) [610235]\n- [edac] amd64_edac: fix forcing module load/unload (Frank Arnold) [610235]\n- [edac] amd64_edac: add memory types strings for debugging (Frank Arnold) [610235]\n- [edac] amd64_edac: remove unneeded extract_error_address wrapper (Frank Arnold) [610235]\n- [edac] amd64_edac: rename StinkyIdentifier (Frank Arnold) [610235]\n- [edac] amd64_edac: remove superfluous dbg printk (Frank Arnold) [610235]\n- [edac] amd64_edac: cleanup f10_early_channel_count (Frank Arnold) [610235]\n- [edac] amd64_edac: dump DIMM sizes on K8 too (Frank Arnold) [610235]\n- [edac] amd64_edac: cleanup rest of amd64_dump_misc_regs (Frank Arnold) [610235]\n- [edac] amd64_edac: cleanup DRAM cfg low debug output (Frank Arnold) [610235]\n- [edac] amd64_edac: wrap-up pci config read error handling (Frank Arnold) [610235]\n- [edac] amd64_edac: make DRAM regions output more human-readable (Frank Arnold) [610235]\n- [edac] amd64_edac: clarify DRAM CTL debug reporting (Frank Arnold) [610235]\n- [edac] mce_amd: Fix NB error formatting (Frank Arnold) [659693]\n- [edac] mce_amd: Use BIT_64() to eliminate warnings on 32-bit (Frank Arnold) [659693]\n- [edac] mce_amd: Enable MCE decoding on F15h (Frank Arnold) [659693]\n- [edac] mce_amd: Shorten error report formatting (Frank Arnold) [659693]\n- [edac] mce_amd: Overhaul error fields extraction macros (Frank Arnold) [659693]\n- [edac] mce_amd: Add F15h FP MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add F15 EX MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add an F15h NB MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: No F15h LS MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add F15h CU MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add F15h IC MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add F15h DC MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Select extended error code mask (Frank Arnold) [659693]\n- [edac] mce_amd: Fix shift warning on 32-bit (Frank Arnold) [659693]\n- [edac] mce_amd: Add a BIT_64() macro (Frank Arnold) [659693]\n- [edac] mce_amd: Enable MCE decoding on F12h (Frank Arnold) [659693]\n- [edac] mce_amd: Add F12h NB MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add F12h IC MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add F12h DC MCE decoder (Frank Arnold) [659693]\n- [edac] mce_amd: Add support for F11h MCEs (Frank Arnold) [659693]\n- [edac] mce_amd: Enable MCE decoding on F14h (Frank Arnold) [659693]\n- [edac] mce_amd: Fix FR MCEs decoding (Frank Arnold) [659693]\n- [edac] mce_amd: Complete NB MCE decoders (Frank Arnold) [659693]\n- [edac] mce_amd: Warn about LS MCEs on F14h (Frank Arnold) [659693]\n- [edac] mce_amd: Adjust IC decoders to F14h (Frank Arnold) [659693]\n- [edac] mce_amd: Adjust DC decoders to F14h (Frank Arnold) [659693]\n- [edac] mce_amd: Rename files (Frank Arnold) [659693]\n- [edac] mce_amd: Pass complete MCE info to decoders (Frank Arnold) [659693]\n- [edac] mce_amd: Sanitize error codes (Frank Arnold) [659693]\n- [edac] mce_amd: Remove unused function parameter (Frank Arnold) [659693]\n- [edac] mce_amd: Do not report error overflow as a separate error (Frank Arnold) [659693]\n- [edac] mce_amd: Limit MCE decoding to current families for now (Frank Arnold) [659693]\n- [edac] mce_amd: Fix wrong mask and macro usage (Frank Arnold) [659693]\n- [edac] mce_amd: Filter out invalid values (Frank Arnold) [659693]\n- [edac] mce_amd: silence GART TLB errors (Frank Arnold) [659693]\n- [edac] mce_amd: correct corenum reporting (Frank Arnold) [659693]\n- [edac] mce_amd: update AMD F10h revD check (Frank Arnold) [659693]\n- [edac] mce_amd: Use an atomic notifier for MCEs decoding (Frank Arnold) [659693]\n- [edac] mce_amd: carve out AMD MCE decoding logic (Frank Arnold) [659693]\n- [edac] mce_amd: Fix MCE decoding callback logic (Frank Arnold) [659693]\n[2.6.18-258.el5]\n- [block] cciss: fix lost command problem (Tomas Henzl) [696153]\n- [block] cciss: export resettable host attribute (Tomas Henzl) [690511]\n- [powerpc] mm/numa: Disable VPNH feature on pseries (Steve Best) [696328]\n- [wireless] iwlagn: re-enable MSI on resume (Prarit Bhargava) [694672]\n- [fs] cifs: clean up various nits in unicode routines (Jeff Layton) [659715]\n- [fs] cifs: fix unaligned accesses in cifsConvertToUCS (Jeff Layton) [659715]\n- [fs] cifs: clean up unaligned accesses in cifs_unicode.c (Jeff Layton) [659715]\n- [fs] cifs: fix unaligned access in check2ndT2 and coalesce_t2 (Jeff Layton) [659715]\n- [fs] cifs: clean up unaligned accesses in validate_t2 (Jeff Layton) [659715]\n- [fs] cifs: use get/put_unaligned functions to access ByteCount (Jeff Layton) [659715]\n- [net] bridge: fix build warning in br_device (Jarod Wilson) [556811]\n- [scsi] arcmsr: fix broken CONFIG_XEN conditional (Jarod Wilson) [635992]\n- [net] cxgb4: clean up dma_mapping_error usage (Jarod Wilson) [567446]\n- [fs] dcache: Close a race-opportunity in d_splice_alias (David Howells) [646359]\n- [md] dm-crypt: support more encryption modes (Milan Broz) [660368]\n- [crypto] add XTS blockcipher mode support (Danny Feng) [553411]\n- [s390] dasd: fix race between open and offline (Hendrik Brueckner) [695357]\n- [net] netxen: limit skb frags for non tso packet (Chad Dupuis) [672368]\n- [net] qlcnic: limit skb frags for non tso packet (Bob Picco) [695490]\n[2.6.18-257.el5]\n- [char] ipmi: dont poll non-existant IPMI Event Message Buffer (Tony Camuso) [578913]\n- [char] ipmi: fix platform return check (Tony Camuso) [578913]\n- [fs] gfs: Never try to deallocate an inode on a read-only mount (Steven Whitehouse) [689943]\n- [infiniband] cxgb4: Initial import of driver to RHEL5 (Steve Best) [567449]\n- [net] cxgb4: Initial import of driver to RHEL5 (Neil Horman) [567446]\n- [net] bond: fix link up after restart (Neil Horman) [659558]\n- [infiniband] cxgb3: Dont free skbs on NET_XMIT_* from LLD (Neil Horman) [516956]\n- [infiniband] cxgb3: Wait 1+ schedule cycle during device removal (Neil Horman) [516956]\n- [infiniband] cxgb3: Mark device with CXIO_ERROR_FATAL on remove (Neil Horman) [516956]\n- [infiniband] cxgb3: Dont allocate the SW queue for user mode CQs (Neil Horman) [516956]\n- [infiniband] cxgb3: Increase the max CQ depth (Neil Horman) [516956]\n- [infiniband] cxgb3: Doorbell overflow avoidance and recovery (Neil Horman) [516956]\n- [infiniband] cxgb3: Remove BUG_ON() on CQ rearm failure (Neil Horman) [516956]\n- [infiniband] cxgb3: Fix error paths in post_send and post_recv (Neil Horman) [516956]\n- [infiniband] cxgb3: Handle NULL inetdev ptr in iwch_query_port (Neil Horman) [516956]\n- [infiniband] cxgb3: Clean up properly on FW mismatch failures (Neil Horman) [516956]\n- [infiniband] cxgb3: Dont ignore insert_handle() failures (Neil Horman) [516956]\n- [infiniband] cxgb3: Wake up any waiters on peer close/abort (Neil Horman) [516956]\n- [infiniband] cxgb3: Dont free endpoints early (Neil Horman) [516956]\n- [net] cxgb3: Handle port events properly (Mike Christie) [516956]\n- [fs] cifs: prevent infinite recursion in cifs_reconnect_tcon (Jeff Layton) [667454]\n- [fs] cifs: consolidate reconnect logic in smb_init routines (Jeff Layton) [667454]\n- [fs] dcache: allow __d_obtain_alias to return unhashed dentries (J. Bruce Fields) [613736]\n[2.6.18-256.el5]\n- [scsi] mpt2sas: fix _scsih_is_raid test in _scsih_qcmd (Tomas Henzl) [683806]\n- [scsi] megaraid_sas: add a reset_devices condition (Tomas Henzl) [692099]\n- [net] add socket API recvmmsg, receive multiple messages (Thomas Graf) [582653]\n- [scsi] device_handler: fix ref counting in error path (Mike Snitzer) [645343]\n- [scsi] device_handler: propagate SCSI device deletion (Mike Snitzer) [645343]\n- [net] 8021q: fix VLAN RX stats counting (Stefan Assmann) [579858]\n- [x86_64] vdso: Fix typo in vclock_gettime code (Prarit Bhargava) [691735]\n- [firmware] dmi_scan: Display system information in dmesg (Prarit Bhargava) [692860]\n- [fs] debugfs: Implement debugfs_remove_recursive (Neil Horman) [692946]\n- [redhat] configs: enable building CXGB4_ISCSI (Mike Christie) [567452]\n- [scsi] cxgbi: get rid of gl_skb in cxgbi_ddp_info (Mike Christie) [567452]\n- [scsi] cxgbi: set ulpmode only if digest is on (Mike Christie) [567452]\n- [scsi] cxgb4i: ignore informational act-open-rpl message (Mike Christie) [567452]\n- [scsi] cxgb4i: connection and ddp setting update (Mike Christie) [567452]\n- [scsi] cxgb3i: fixed connection over vlan (Mike Christie) [567452]\n- [scsi] libcxgbi: pdu read fixes (Mike Christie) [567452]\n- [scsi] cxgbi: rename alloc_cpl to alloc_wr (Mike Christie) [567452]\n- [scsi] cxgb3i: change cxgb3i to use libcxgbi (Mike Christie) [567452]\n- [scsi] cxgbi: add cxgb4i iscsi driver (Mike Christie) [567452]\n- [net] bonding: re-read speed and duplex when interface goes up (Andy Gospodarek) [677902]\n- [net] ipv4/tcp_timer: honor sysctl tcp_syn_retries (Flavio Leitner) [688989]\n- [usb] fix usbfs isochronous data transfer regression (Don Zickus) [688926]\n- [fs] partitions: Fix corrupted OSF partition table parsing (Danny Feng) [688023]\n- [misc] add param to change default coredump_filter setup (Dave Anderson) [488840]\n- Revert: [md] dm-crypt: support more encryption modes (Jarod Wilson) [660368]\n- [xen] allow delivery of timer interrupts to VCPU != 0 (Paolo Bonzini) [418501]\n- [xen] x86/hvm: Enable delivering 8259 interrupts to VCPUs != 0 (Paolo Bonzini) [418501]\n- [xen] get rid of the vcpu state in HPET (Paolo Bonzini) [418501]\n- [xen] add accessors for arch/x86/hvm/hpet.c (Paolo Bonzini) [418501]\n[2.6.18-255.el5]\n- [net] htb: Make HTB scheduler work with TSO (Thomas Graf) [481546]\n- [fs] cifs: map NT_STATUS_ERROR_WRITE_PROTECTED to -EROFS (Jeff Layton) [516102]\n- [pci] Ensure devices are resumed on system resume (Matthew Garrett) [644440]\n- [fs] ext2, ext3: copy i_flags to inode flags on write (Eric Sandeen) [431738]\n- [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [656032]\n- [fs] gfs2: restructure reclaiming of unlinked dinodes (Robert S Peterson) [656032]\n- [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [656032]\n- [pci] Add HP BL620c G7 to pci=bfsort whitelist (Prarit Bhargava) [680946]\n- [pci] msi: simplify the msi irq limit policy (Prarit Bhargava) [652799]\n- [scsi] scsi_dh: allow scsi_dh_detach to detach when attached (Mike Christie) [666304]\n- [net] bonding: fix test for presence of VLANs (Jiri Pirko) [654878]\n- [net] 8021q: VLAN 0 should be treated as no vlan tag (Jiri Pirko) [654878]\n- [kernel] module: add sysctl to block module loading (Jerome Marchand) [645221]\n- [fs] nfs: Make close(2) async when closing O_DIRECT files (Jeff Layton) [626977]\n- [fs] nfs: Optimise NFS close() (Jeff Layton) [626977]\n- [fs] nfs: Fix nfsv4 atomic open for execute... (Jeff Layton) [626977]\n- [misc] pm: add comment explaining is_registered kabi work-around (Don Zickus) [637930]\n- [misc] sunrpc: only call get_seconds once in sunrpc_invalidate (David Howells) [589512]\n[2.6.18-254.el5]\n- [scsi] mpt2sas: Added customer specific display support (Tomas Henzl) [684842]\n- [scsi] mpt2sas: Add support for WarpDrive SSS-6200 (Tomas Henzl) [683806]\n- [scsi] megaraid: update driver to v5.34 (Tomas Henzl) [660728]\n- [scsi] arcmsr: driver update for RHEL5.7 (Tomas Henzl) [635992]\n- [scsi] scsi_dh_alua: add scalable ONTAP lun to dev list (Mike Snitzer) [667660]\n- [pci] Enable pci=bfsort by default on future Dell systems (Shyam Iyer) [689047]\n- [net] enic: update driver to 2.1.1.9 (Stefan Assmann) [661306]\n- [scsi] bfa: rebase for RHEL5.7 to current scsi-misc version (Rob Evers) [660545]\n- [pci] Enable PCI bus rescan for PPC64 only (Prarit Bhargava) [683461]\n- [net] enable VLAN SG on additional drivers (Paolo Bonzini) [668934]\n- [net] add ethtool -k sg off support for vlans (Paolo Bonzini) [668934]\n- [net] explicitly enable VLAN SG when already in use (Paolo Bonzini) [668934]\n- [net] enable SG on vlan devices if supported on the NIC (Paolo Bonzini) [668934]\n- [net] fix NETIF_F_GSO_MASK to exclude VLAN features (Paolo Bonzini) [668934]\n- [ata] ata_piix: honor ide=disable (Paolo Bonzini) [460821]\n- [scsi] be2iscsi: update driver version string (Mike Christie) [691899]\n- [scsi] be2iscsi: fix null ptr when accessing task hdr (Mike Christie) [660392]\n- [scsi] be2iscsi: fix gfp use in alloc_pdu (Mike Christie) [660392]\n- [scsi] be2iscsi: allow more time for FW to respond (Mike Christie) [660392]\n- [net] ixgbe: restore erratum 45 fix and whitespace (Andy Gospodarek) [568312 568557 570366 571254 651467 653236 653359 653469 655022]\n- [usb] ehci: AMD periodic frame list table quirk (Don Zickus) [651333]\n- [scsi] qla2xxx: Upgrade 24xx and 25xx firmware to 5.03.16 (Chad Dupuis) [682305]\n- [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [589512]\n- [net] sunrpc: ensure cache_check caller sees updated entry (J. Bruce Fields) [589512]\n- [net] sunrpc: take lock on turning entry NEGATIVE in cache_check (J. Bruce Fields) [589512]\n- [net] sunrpc: move cache validity check into helper function (J. Bruce Fields) [589512]\n- [net] sunrpc: modifying valid sunrpc cache entries is racy (J. Bruce Fields) [589512]\n- [fs] nfs: extract some common sunrpc_cache code from nfsd (J. Bruce Fields) [589512]\n- [pci] return correct value when writing to reset attribute (Alex Williamson) [689860]\n- [pci] expose function reset capability in sysfs (Alex Williamson) [689860]\n[2.6.18-253.el5]\n- [media] sn9c102: fix world-wirtable sysfs files (Don Howard) [679305]\n- [scsi] scsi_dh_rdac: Add two new IBM devices to rdac_dev_list (Rob Evers) [691460]\n- [misc] support for marking code as tech preview (Don Zickus) [645431]\n- [misc] taint: Add taint padding (Don Zickus) [645431]\n- [scsi] lpfc: Update version for 8.2.0.96 driver release (Rob Evers) [660396]\n- [scsi] lpfc: Update version for 8.2.0.95 driver release (Rob Evers) [660396]\n- [scsi] lpfc: Fix rrq cleanup for vport delete (Rob Evers) [660396]\n- [scsi] lpfc: dont ignore lpfc_suppress_link_up on SLI-4 (Rob Evers) [660396]\n- [scsi] lpfc: LOGO completion must invalidate both RPI and D_ID (Rob Evers) [660396]\n- [scsi] lpfc: adds a comment (Rob Evers) [660396]\n- [scsi] lpfc: Do not take lock when clearing rrq active (Rob Evers) [660396]\n- [scsi] lpfc: Fix non-empty nodelist after sli3 driver remove (Rob Evers) [660396]\n- [scsi] lpfc: Save IRQ level when taking host_lock in findnode_did (Rob Evers) [660396]\n- [scsi] lpfc: Fixed hang in lpfc_get_scsi_buf_s4 (Rob Evers) [660396]\n- [scsi] lpfc: Fix xri lookup for received rrq (Rob Evers) [660396]\n- [scsi] lpfc: Fix setting of RRQ active for target aborted IOs (Rob Evers) [660396]\n- [scsi] lpfc: Modified lpfc_delay_discovery implementation (Rob Evers) [660396]\n- [scsi] lpfc: Fix bug with fc_vport symbolic_name not being generated (Rob Evers) [660396]\n- [scsi] lpfc: Update lpfc for 8.2.0.94 driver release (Rob Evers) [660396]\n- [scsi] lpfc: Fixed fdisc sent with invalid VPI (Rob Evers) [660396]\n- [scsi] lpfc: warn if the link_speed is not supported by this adapter (Rob Evers) [660396]\n- [scsi] lpfc: Fixed UE error on UCNA BE2 hba during reboot (Rob Evers) [660396]\n- [scsi] lpfc: Update version for 8.2.0.93 driver release (Rob Evers) [660396]\n- [scsi] lpfc: Added support for clean address bit (Rob Evers) [660396]\n- [scsi] lpfc: Fixed XRI reuse issue (Rob Evers) [660396]\n- [scsi] lpfc: Update version for 8.2.0.92 driver release (Rob Evers) [660396]\n- [scsi] lpfc: Unreg login when PLOGI received from logged in port (Rob Evers) [660396]\n- [scsi] lpfc: Fixed crashes for NULL vport dereference (Rob Evers) [660396]\n- [scsi] lpfc: Update version for 8.2.0.91 driver release (Rob Evers) [660396]\n- [scsi] lpfc: Fix for kmalloc failures in lpfc_workq_post_event (Rob Evers) [660396]\n- [scsi] lpfc: Adjust lengths for sli4_config mailbox commands (Rob Evers) [660396]\n- [scsi] lpfc: set parity and serr bits on after performing sli4 reset (Rob Evers) [660396]\n- [scsi] lpfc: VPI for ALL ELS commands and alloc RPIs at node creation (Rob Evers) [660396]\n- [scsi] lpfc: Correct bit-definitions in SLI4 data structures (Rob Evers) [660396]\n- [scsi] lpfc: Update version for 8.2.0.90 driver release (Rob Evers) [660396]\n- [scsi] lpfc: new SLI4 initialization procedures based on if_type (Rob Evers) [660396]\n- [scsi] lpfc: Implement FC and SLI async event handlers (Rob Evers) [660396]\n- [scsi] lpfc: Fix management command context setting (Rob Evers) [660396]\n- [scsi] lpfc: Fix panic in __lpfc_sli_get_sglq (Rob Evers) [660396]\n- [scsi] lpfc: Update version for 8.2.0.89 driver release (Rob Evers) [660396]\n- [scsi] lpfc: Fix compiler warning (Rob Evers) [660396]\n- [scsi] lpfc: Added support for ELS RRQ command (Rob Evers) [660396]\n- [scsi] lpfc: Init VFI and VPI for physical port (Rob Evers) [660396]\n- [scsi] lpfc: Update version for 8.2.0.88 driver release (Rob Evers) [660396]\n- [scsi] lpfc: add READ_TOPOLOGY mailbox command and new speed definition (Rob Evers) [660396]\n- [scsi] lpfc: Modified return status of unsupport ELS commands (Rob Evers) [660396]\n- [scsi] lpfc: Implement doorbell register changes for new hardware (Rob Evers) [660396]\n- [scsi] lpfc: Implement new SLI 4 SLI_INTF register definitions (Rob Evers) [660396]\n- [scsi] lpfc: Add PCI ID definitions for new hardware support (Rob Evers) [660396]\n- [scsi] lpfc: Add new SLI4 WQE support (Rob Evers) [660396]\n- [net] myri10ge: update to 1.5.2 (Stanislaw Gruszka) [481629]\n- [pci] make pcie_get_readrq visible in pci.h (Stanislaw Gruszka) [481629]\n- [net] igb: AER fix recover from PCIe Uncorrectable Error (Stefan Assmann) [568211]\n- [net] igb: driver update for RHEL5.7 (Stefan Assmann) [653238]\n- [fs] quota: do not allow setting quota limits too high (Eric Sandeen) [594609]\n- [fs] block: fix submit_bh discarding barrier flag on sync write (Lukas Czerner) [667673]\n- [net] netfilter/ipt_CLUSTERIP: fix buffer overflow (Jiri Pirko) [689340]\n- [net] netfilter: ip6_tables: fix infoleak to userspace (Jiri Pirko) [689349] {CVE-2011-1172}\n- [net] netfilter/ip_tables: fix infoleak to userspace (Jiri Pirko) [689332] {CVE-2011-1171}\n- [net] netfilter/arp_tables: fix infoleak to userspace (Jiri Pirko) [689323] {CVE-2011-1170}\n- [sound] alsa: hda driver update for RHEL5.7 (Jaroslav Kysela) [688539]\n- [sound] alsa: add snd-aloop driver (Jaroslav Kysela) [647094]\n- [mmc] sdhci: Add support for O2Micro Card Reader (John Feeney) [659318]\n- [base] Fix potential deadlock in driver core (Don Zickus) [637930]\n- Revert: [crypto] add XTS blockcipher mode support (Jarod Wilson) [553411]\n[2.6.18-252.el5]\n- [scsi] add new Dell Powervault controllers to RDAC device list (Shyam Iyer) [688981]\n- [ata] ahci: AHCI mode for Intel Patsburg SATA RAID controller (David Milburn) [684361]\n- [md] dm-crypt: support more encryption modes (Milan Broz) [660368]\n- [crypto] add XTS blockcipher mode support (Danny Feng) [553411]\n- [virt] hypervisor: Overflow fix for clocks > 4GHz (Zachary Amsden) [673242]\n- [net] tg3: Restrict phy ioctl access (John Feeney) [660397]\n- [net] tg3: Update version to 3.116 (John Feeney) [660397]\n- [net] tg3: Minor EEE code tweaks (John Feeney) [660397]\n- [net] tg3: Relax EEE thresholds (John Feeney) [660397]\n- [net] tg3: Fix 57765 EEE support (John Feeney) [660397]\n- [net] tg3: Move EEE definitions into mdio.h (John Feeney) [660397]\n- [net] tg3: Enable phy APD for 5717 and later asic revs (John Feeney) [660397]\n- [net] tg3: use dma_alloc_coherent() instead of pci_alloc_consistent() (John Feeney) [660397]\n- [net] tg3: Reenable TSS for 5719 (John Feeney) [660397]\n- [net] tg3: Enable mult rd DMA engine on 5719 (John Feeney) [660397]\n- [net] tg3: Always turn on APE features in mac_mode reg (John Feeney) [660397]\n- [net] tg3: Dont check for vlan group before vlan_tx_tag_present (John Feeney) [660397]\n- [net] tg3: Update version to 3.115 (John Feeney) [660397]\n- [net] tg3: Report invalid link from tg3_get_settings() (John Feeney) [660397]\n- [net] tg3: Dont allocate jumbo ring for 5780 class devs (John Feeney) [660397]\n- [net] tg3: Cleanup tg3_alloc_rx_skb() (John Feeney) [660397]\n- [net] tg3: Add EEE support (John Feeney) [660397]\n- [net] tg3: Add clause 45 register accessor methods (John Feeney) [660397]\n- [net] tg3: Disable unused transmit rings (John Feeney) [660397]\n- [net] tg3: Add support for selfboot format 1 v6 (John Feeney) [660397]\n- [net] tg3: Update version to 3.114 (John Feeney) [660397]\n- [net] tg3: Add extend rx ring sizes for 5717 and 5719 (John Feeney) [660397]\n- [net] tg3: Prepare for larger rx ring sizes (John Feeney) [660397]\n- [net] tg3: Futureproof the loopback test (John Feeney) [660397]\n- [net] tg3: Cleanup missing VPD partno section (John Feeney) [660397]\n- [net] tg3: Remove 5724 device ID (John Feeney) [660397]\n- [net] tg3: return operator cleanup (John Feeney) [660397]\n- [net] tg3: phy tmp variable roundup (John Feeney) [660397]\n- [net] tg3: Dynamically allocate VPD data memory (John Feeney) [660397]\n- [net] tg3: Use skb_is_gso_v6() (John Feeney) [660397]\n- [net] tg3: Move producer ring struct to tg3_napi (John Feeney) [660397]\n- [net] tg3: Clarify semantics of TG3_IRQ_MAX_VECS (John Feeney) [660397]\n- [net] tg3: Disable TSS (John Feeney) [660397]\n- [net] tg3: Update version to 3.113 (John Feeney) [660397]\n- [net] tg3: Migrate tg3_flags to phy_flags (John Feeney) [660397]\n- [net] tg3: Create phy_flags and migrate phy_is_low_power (John Feeney) [660397]\n- [net] tg3: Add phy-related preprocessor constants (John Feeney) [660397]\n- [net] tg3: Add error reporting to tg3_phydsp_write() (John Feeney) [660397]\n- [net] tg3: Improve small packet performance (John Feeney) [660397]\n- [net] tg3: Remove 5720, 5750, and 5750M (John Feeney) [660397]\n- [net] tg3: Restrict ASPM workaround devlist (John Feeney) [660397]\n- [net] tg3: Manage gphy power for CPMU-less devs only (John Feeney) [660397]\n- [net] tg3: Disable TSS also during tg3_close() (John Feeney) [660397]\n- [net] tg3: Add 5784 ASIC rev to earlier PCIe MPS fix (John Feeney) [660397]\n- [net] tg3: Update version to 3.112 (John Feeney) [660397]\n- [net] tg3: Fix some checkpatch errors (John Feeney) [660397]\n- [net] tg3: Revert PCIe tx glitch fix (John Feeney) [660397]\n- [net] tg3: Report driver version to firmware (John Feeney) [660397]\n- [net] tg3: Relax 5717 serdes restriction (John Feeney) [660397]\n- [net] tg3: Fix single MSI-X vector coalescing (John Feeney) [660397]\n- [net] tg3: Update version to 3.111 (John Feeney) [660397]\n- [net] tg3: Allow 5717 serdes link via parallel detect (John Feeney) [660397]\n- [net] tg3: Allow single MSI-X vector allocations (John Feeney) [660397]\n- [net] tg3: Update version to 3.110 (John Feeney) [660397]\n- [net] tg3: Remove function errors flagged by checkpatch (John Feeney) [660397]\n- [net] tg3: Unify max pkt size preprocessor constants (John Feeney) [660397]\n- [net] tg3: Re-inline VLAN tags when appropriate (John Feeney) [660397]\n- [net] tg3: Optimize rx double copy test (John Feeney) [660397]\n- [net] tg3: Update version to 3.109 (John Feeney) [660397]\n- [net] tg3: Remove tg3_dump_state() (John Feeney) [660397]\n- [net] tg3: Cleanup if codestyle (John Feeney) [660397]\n- [net] tg3: The case of switches (John Feeney) [660397]\n- [net] tg3: Whitespace, constant, and comment updates (John Feeney) [660397]\n- [net] tg3: Use VPD fw version when present (John Feeney) [660397]\n- [net] tg3: Prepare FW version code for VPD versioning (John Feeney) [660397]\n- [net] tg3: Fix message 80 char violations (John Feeney) [660397]\n- [net] tg3: netdev_err() => dev_err() (John Feeney) [660397]\n- [net] tg3: Replace pr_err with sensible alternatives (John Feeney) [660397]\n- [net] tg3: change field used with TG3_FLAG_10_100_ONLY constant (John Feeney) [660397]\n- [net] tg3: Remove now useless VPD code (John Feeney) [660397]\n- [net] tg3: use helper to search for VPD keywords (John Feeney) [660397]\n- [net] tg3: use VPD information field helper functions (John Feeney) [660397]\n- [net] tg3: use helper to find VPD resource data type (John Feeney) [660397]\n- [net] tg3: Add large and small resource data type code (John Feeney) [660397]\n- [net] tg3: Add PCI LRDT tag size and section size (John Feeney) [660397]\n- [net] tg3: convert to use netdev_for_each_mc_addr, part6 (John Feeney) [660397]\nmacro helpers (John Feeney) [660397]\n- [net] bna: Include embedded firmware for RHEL5 (Ivan Vecera) [475690]\n- [net] bna: use device model DMA API (Ivan Vecera) [475690]\n- [net] bna: Remove unnecessary memset 0 (Ivan Vecera) [475690]\n- [net] bna: Update the driver version to 2.3.2.3 (Ivan Vecera) [475690]\n- [net] bna: IOC failure auto recovery fix (Ivan Vecera) [475690]\n- [net] bna: Restore VLAN filter table (Ivan Vecera) [475690]\n- [net] bna: Removed unused code (Ivan Vecera) [475690]\n- [net] bna: IOC uninit check and misc cleanup (Ivan Vecera) [475690]\n- [net] bna: Fix for TX queue (Ivan Vecera) [475690]\n- [net] bna: Enable pure priority tagged packet reception and rxf uninit cleanup fix (Ivan Vecera) [475690]\n- [net] bna: Fix ethtool register dump and reordered an API (Ivan Vecera) [475690]\n- [net] bna: Port enable disable sync and txq priority fix (Ivan Vecera) [475690]\n- [net] bna: TxRx and datapath fix (Ivan Vecera) [475690]\n- [net] bna: scope and dead code cleanup (Ivan Vecera) [475690]\n- [net] bna: fix interrupt handling (Ivan Vecera) [475690]\n- [net] bna: off by one (Ivan Vecera) [475690]\n- [net] bna: Check for NULL before deref in bnad_cb_tx_cleanup (Ivan Vecera) [475690]\n- [net] bna: fix lock imbalance (Ivan Vecera) [475690]\n- [net] bna: fix stats handling (Ivan Vecera) [475690]\n- [net] bna: Fixed build break for allyesconfig (Ivan Vecera) [475690]\n- [net] bna: Brocade 10Gb Ethernet device driver (Ivan Vecera) [475690]\n- [s390] tape: deadlock on global work queue (Hendrik Brueckner) [681329]\n- [s390] qeth: remove needless IPA-commands in offline (Hendrik Brueckner) [679120]\n- [s390] qeth: allow channel path changes in recovery (Hendrik Brueckner) [678073]\n- [s390] qeth: wrong MAC-address displayed in error message (Hendrik Brueckner) [675747]\n- [s390] dasd: Improve handling of stolen DASD reservation (Hendrik Brueckner) [651141]\n- [s390] dasd: provide a Sense Path Group ID ioctl (Hendrik Brueckner) [651135]\n- [s390] qeth: tolerate OLM-limitation (Hendrik Brueckner) [651161]\n- [s390] sclp_vt220: console message may cause deadlock (Hendrik Brueckner) [675751]\n- [s390] uaccess: missing sacf in uaccess error handling (Hendrik Brueckner) [670234]\n- [x86_64] nmi_watchdog: modify default to perf counter 1 (Don Zickus) [633196 659816]\n- [net] qlcnic: Remove validation for max tx and max rx queues (Chad Dupuis) [660390]\n- [net] qlcnic: fix checks for auto_fw_reset (Chad Dupuis) [660390]\n- [net] qlcnic: change module parameter permissions (Chad Dupuis) [660390]\n- [net] qlcnic: fix ethtool diagnostics test (Chad Dupuis) [660390]\n- [net] qlcnic: fix flash fw version read (Chad Dupuis) [660390]\n- [net] qlcnic: Use static const (Chad Dupuis) [660390]\n- [net] qlcnic: reset pci function unconditionally during probe (Chad Dupuis) [660390]\n- [net] qlcnic: fix ocm window register offset calculation (Chad Dupuis) [660390]\n- [net] qlcnic: fix LED test when interface is down. (Chad Dupuis) [660390]\n- [net] qlcnic: Updated driver version to 5.0.13 (Chad Dupuis) [660390]\n- [net] qlcnic: LICENSE file for qlcnic (Chad Dupuis) [660390]\n- [net] qlcnic: validate eswitch config values for PF (Chad Dupuis) [660390]\n- [net] qlcnic: Disable loopback support (Chad Dupuis) [660390]\n- [net] qlcnic: Bumped up driver version to 5.0.12 (Chad Dupuis) [660390]\n- [net] qlcnic: lro module parameter (Chad Dupuis) [660390]\n- [net] qlcnic: Fix driver hang while using qcc application (Chad Dupuis) [660390]\n- [net] qlcnic: lro off message log from set rx checsum (Chad Dupuis) [660390]\n- [net] qlcnic: Add description for CN1000Q adapter (Chad Dupuis) [660390]\n- [net] qlcnic: Allow minimum bandwidth of zero (Chad Dupuis) [660390]\n- [net] qlcnic: fix panic on load (Chad Dupuis) [660390]\n- [net] qlcnic: define valid vlan id range (Chad Dupuis) [660390]\n- [net] qlcnic: reduce rx ring size (Chad Dupuis) [660390]\n- [net] qlcnic: fix mac learning (Chad Dupuis) [660390]\n- [net] qlcnic: update ethtool stats (Chad Dupuis) [660390]\n- [net] qlcnic: update driver version 5.0.11 (Chad Dupuis) [660390]\n- [net] qlcnic: change all P3 references to P3P (Chad Dupuis) [660390]\n- [net] qlcnic: fix promiscous mode for VF (Chad Dupuis) [660390]\n- [net] qlcnic: fix board description (Chad Dupuis) [660390]\n- [net] qlcnic: remove private LRO flag (Chad Dupuis) [660390]\n- [net] qlcnic: support quiescent mode (Chad Dupuis) [660390]\n- [net] qlcnic: remove dead code (Chad Dupuis) [660390]\n- [net] qlcnic: set mtu lower limit (Chad Dupuis) [660390]\n- [net] qlcnic: cleanup port mode setting (Chad Dupuis) [660390]\n- [net] qlcnic: sparse warning fixes (Chad Dupuis) [660390]\n- [net] qlcnic: fix vlan TSO on big endian machine (Chad Dupuis) [660390]\n- [net] qlcnic: fix endianess for lro (Chad Dupuis) [660390]\n- [net] qlcnic: fix diag register (Chad Dupuis) [660390]\n- [net] qlcnic: fix eswitch stats (Chad Dupuis) [660390]\n- [net] qlcnic: fix internal loopback test (Chad Dupuis) [660390]\n- [net] qlcnic: return operator cleanup (Chad Dupuis) [660390]\n- [net] qlcnic: dont set skb->truesize (Chad Dupuis) [660390]\n- [net] qlcnic: dont assume NET_IP_ALIGN is 2 (Chad Dupuis) [660390]\n- [net] qlcnic: update version 5.0.10 (Chad Dupuis) [660390]\n- [net] qlcnic: remove fw version check (Chad Dupuis) [660390]\n- [net] qlcnic: vlan lro support (Chad Dupuis) [660390]\n- [net] qlcnic: vlan gro support (Chad Dupuis) [660390]\n- [net] qlcnic: support vlan rx accleration (Chad Dupuis) [660390]\n- [net] qlcnic: add cksum flag (Chad Dupuis) [660390]\n- [net] qlcnic: mac vlan learning support (Chad Dupuis) [660390]\n- [net] qlcnic: support mac learning (Chad Dupuis) [660390]\n- [net] qlcnic: fix mac override capability (Chad Dupuis) [660390]\n- [net] qlcnic: fix panic while using eth_hdr (Chad Dupuis) [660390]\n- [net] qlcnic: fix mac anti spoof policy (Chad Dupuis) [660390]\n- [net] qlcnic: fix for setting default eswitch config (Chad Dupuis) [660390]\n- [net] qlcnic: fix mac addr read (Chad Dupuis) [660390]\n- [net] qlcnic: add api version in reg dump (Chad Dupuis) [660390]\n- [net] qlcnic: backout firmware initialization update (Chad Dupuis) [660390]\n- [net] qlnic: fix a race in qlcnic_get_stats (Chad Dupuis) [660390]\n- [net] qlcnic: PCI ID addition (Chad Dupuis) [660390]\n- [net] qlcnic: Fix driver load issue in FW hang (Chad Dupuis) [660390]\n- [net] qlcnic: change reg name (Chad Dupuis) [660390]\n- [net] qlcnic: fix fw recovery for PF (Chad Dupuis) [660390]\n- [net] qlcnic: support port vlan id (Chad Dupuis) [660390]\n- [net] qlcnic: eswitch config fixes (Chad Dupuis) [660390]\n- [net] qlcnic: update version 5.0.8 (Chad Dupuis) [660390]\n- [net] qlcnic: rom lock recovery (Chad Dupuis) [660390]\n- [net] qlcnic: firmware initialization update (Chad Dupuis) [660390]\n- [net] qlcnic: fix endiness in eswitch statistics (Chad Dupuis) [660390]\n- [net] qlcnic: mark device state as failed (Chad Dupuis) [660390]\n- [net] qlcnic: fix npar state (Chad Dupuis) [660390]\n- [net] qlcnic: support anti mac spoofing (Chad Dupuis) [660390]\n- [net] qlcnic: configure offload setting on eswitch (Chad Dupuis) [660390]\n- [net] qlcnic: configure port on eswitch (Chad Dupuis) [660390]\n- [net] qlcnic: replace magic numbers with defines (Chad Dupuis) [660390]\n- [net] qlcnic: remove unused code (Chad Dupuis) [660390]\n- [net] qlcnic: fix inconsistent lock state (Chad Dupuis) [660390]\n- [net] qlcnic: Use available error codes (Chad Dupuis) [660390]\n- [net] qlcnic: turn off lro when rxcsum is disabled (Chad Dupuis) [660390]\n- [net] qlcnic: fix link diag test (Chad Dupuis) [660390]\n- [net] qlcnic: fix link status message (Chad Dupuis) [660390]\n- [net] qlcnic: add eswitch statistics support (Chad Dupuis) [660390]\n- [net] qlcnic: fix for setting function modes (Chad Dupuis) [660390]\n- [net] qlcnic: device state management fixes for virtual func (Chad Dupuis) [660390]\n- [net] qlcnic: fix aer for virtual func (Chad Dupuis) [660390]\n- [net] qlcnic: using too much stack (Chad Dupuis) [660390]\n- [net] qlcnic: clean up qlcnic_init_pci_info (Chad Dupuis) [660390]\n- [net] qlcnic: fix copyright for pci searching function (Chad Dupuis) [660390]\n- [net] netxen: support for GbE port settings (Chad Dupuis) [660437]\n- [net] netxen: Notify firmware of Flex-10 interface down (Chad Dupuis) [660437]\n- [net] netxen: update driver version 4.0.75 (Chad Dupuis) [660437]\n- [net] netxen: enable LRO based on NETIF_F_LRO (Chad Dupuis) [660437]\n- [net] netxen: update module description (Chad Dupuis) [660437]\n- [net] netxen: Use static const (Chad Dupuis) [660437]\n- [net] netxen: remove unused firmware exports (Chad Dupuis) [660437]\n- [net] netxen: Fix tx queue manipulation bug in netxen_nic_probe (Chad Dupuis) [660437]\n- [net] netxen: make local function static (Chad Dupuis) [660437]\n- [net] netxen: mask correctable error (Chad Dupuis) [660437]\n- [net] netxen: fix race in tx stop queue (Chad Dupuis) [660437]\n- [net] netxen: return operator cleanup (Chad Dupuis) [660437]\n- [net] netxen: dont set skb->truesize (Chad Dupuis) [660437]\n[2.6.18-251.el5]\n- [net] benet: Bump up the version number (Ivan Vecera) [660389]\n- [net] benet: Copyright notice change. Update to Emulex instead of ServerEngines (Ivan Vecera) [660389]\n- [net] benet: Fix UDP packet detected status in RX compl (Ivan Vecera) [660389]\n- [net] benet: changes for BE3 native mode support (Ivan Vecera) [660389]\n- [net] benet: Add multicast filter capability for Lancer (Ivan Vecera) [660389]\n- [net] benet: Disarm CQ and EQ to disable interrupt in Lancer (Ivan Vecera) [660389]\n- [net] benet: Remove TX Queue stop in close (Ivan Vecera) [660389]\n- [net] benet: Change f/w command versions for Lancer (Ivan Vecera) [660389]\n- [net] benet: Add error recovery during load for Lancer (Ivan Vecera) [660389]\n- [net] benet: Checksum field valid only for TCP/UDP (Ivan Vecera) [660389]\n- [net] benet: Remove ERR compl workaround for Lancer (Ivan Vecera) [660389]\n- [net] benet: use GFP_KERNEL allocations when possible (Ivan Vecera) [660389]\n- [net] benet: use hba_port_num instead of port_num (Ivan Vecera) [660389]\n- [net] benet: add code to display temperature of ASIC (Ivan Vecera) [660389]\n- [net] benet: fix to ignore transparent vlan ids wrongly indicated by NIC (Ivan Vecera) [660389]\n- [net] benet: variable name change (Ivan Vecera) [660389]\n- [net] benet: fixes in ethtool selftest (Ivan Vecera) [660389]\n- [net] benet: add new counters to display via ethtool stats (Ivan Vecera) [660389]\n- [net] benet: restrict WOL to PFs only. (Ivan Vecera) [660389]\n- [net] benet: detect a UE even when a interface is down. (Ivan Vecera) [660389]\n- [net] benet: gracefully handle situations when UE is detected (Ivan Vecera) [660389]\n- [net] benet: fix be_suspend/resume/shutdown (Ivan Vecera) [660389]\n- [net] benet: pass proper hdr_size while flashing redboot. (Ivan Vecera) [660389]\n- [net] benet: Fix broken priority setting when vlan tagging is enabled. (Ivan Vecera) [660389]\n- [net] benet: Allow VFs to call be_cmd_reset_function. (Ivan Vecera) [660389]\n- [net] benet: pass domain numbers for pmac_add/del functions (Ivan Vecera) [660389]\n- [net] benet: For the VF MAC, use the OUI from current MAC address (Ivan Vecera) [660389]\n- [net] benet: Cleanup the VF interface handles (Ivan Vecera) [660389]\n- [net] benet: call be_vf_eth_addr_config() after register_netdev (Ivan Vecera) [660389]\n- [net] benet: Initialize and cleanup sriov resources only if pci_enable_sriov has succeeded. (Ivan Vecera) [660389]\n- [net] benet: Use domain id when be_cmd_if_destroy is called. (Ivan Vecera) [660389]\n- [net] benet: Avoid null deref in be_cmd_get_seeprom_data (Ivan Vecera) [660389]\n- [net] benet: use device model DMA API (Ivan Vecera) [660389]\n- [net] benet: remove netif_stop_queue being called before register_netdev. (Ivan Vecera) [660389]\n- [net] benet: fix a crash seen during insmod/rmmod test (Ivan Vecera) [660389]\n- [net] benet: Use static const (Ivan Vecera) [660389]\n- [net] benet: use mutex instead of spin lock for mbox_lock (Ivan Vecera) [660389]\n- [net] benet: Handle out of buffer completions for lancer (Ivan Vecera) [660389]\n- [net] benet: FW init cmd fix for lancer (Ivan Vecera) [660389]\n- [net] benet: Fix be_dev_family_check() return value check (Ivan Vecera) [660389]\n- [net] benet: Fix too optimistic NETIF_F_HW_CSUM features (Ivan Vecera) [660389]\n- [net] benet: adding support for Lancer family of CNAs (Ivan Vecera) [660389]\n- [net] benet: remove dead code (Ivan Vecera) [660389]\n- [net] benet: Changes to use only priority codes allowed by f/w (Ivan Vecera) [660389]\n- [net] benet: add multiple RX queue support (Ivan Vecera) [660389]\n- [net] benet: fix tx completion polling (Ivan Vecera) [660389]\n- [net] benet: use Rx and Tx queues like upstream (Ivan Vecera) [660389]\n- [net] benet: return operator cleanup (Ivan Vecera) [660389]\n- [net] benet: fix a bug in UE detection logic (Ivan Vecera) [660389]\n- [net] benet: fix net-snmp error because of wrong packet stats (Ivan Vecera) [660389]\n- [net] benet: stats for packets received due to internal switching in ASIC. (Ivan Vecera) [660389]\n- [net] benet: fix to avoid sending get_stats request if one is already being processed. (Ivan Vecera) [660389]\n- [net] benet: change to show correct physical link status (Ivan Vecera) [660389]\n- [net] benet: add code to dump registers for debug (Ivan Vecera) [660389]\n- [net] benet: bump the driver version number (Ivan Vecera) [660389]\n- [net] benet: variable name changes (Ivan Vecera) [660389]\n- [net] benet: supress printing error when mac query fails for VF (Ivan Vecera) [660389]\n- [net] benet: Patch to determine if function is VF while running in guest OS. (Ivan Vecera) [660389]\n- [net] benet: enable ipv6 tso support (Ivan Vecera) [660389]\n- [net] benet: fix typos concerning management (Ivan Vecera) [660389]\n- [net] benet: Remove unnecessary returns from void functions (Ivan Vecera) [660389]\n- [net] benet: use skb_headlen() (Ivan Vecera) [660389]\n- [net] benet: clarify promiscuous cmd with a comment (Ivan Vecera) [660389]\n- [net] benet: Fix compile warnnings in drivers/net/benet/be_ethtool.c (Ivan Vecera) [660389]\n- [net] ixgbe: update to upstream version 3.2.9-k2 (Andy Gospodarek) [568312 568557 570366 571254 651467 653236 653359 653469 655022]\n- [misc] vlan: Add function to get EtherType from vlan packets (Andy Gospodarek) [568312 568557 570366 571254 651467 653236 653359 653469 655022]\n- [net] support for NETIF_F_HIGHDMA on vlan interfaces (Andy Gospodarek) [568312 568557 570366 571254 651467 653236 653359 653469 655022]\n- [scsi] bnx2i: Updated to version 2.6.2.3 (Mike Christie) [660406]\n- [scsi] bnx2i: Updated version to 2.6.2.2 (Mike Christie) [660406]\n- [scsi] bnx2i: Added iSCSI text pdu support for iSCSI offload (Mike Christie) [660406]\n- [scsi] bnx2i: Added jumbo MTU support for the no shost case (Mike Christie) [660406]\n- [scsi] bnx2i: Added support for the 57712(E) devices (Mike Christie) [660406]\n- [scsi] bnx2i: Added handling for unsupported iSCSI offload hba (Mike Christie) [660406]\n- [scsi] bnx2i: Fixed the 32-bit swapping of the LUN field for nopouts for 5771X (Mike Christie) [660406]\n- [scsi] bnx2i: Allow ep CONNECT_FAILED condition to go through proper cleanup (Mike Christie) [660406]\n- [scsi] bnx2i: Added reconnect fix connecting against Lefthand targets (Mike Christie) [660406]\n- [scsi] bnx2i: Cleaned up various error conditions in ep_connect/disconnect (Mike Christie) [660406]\n- [scsi] bnx2i: Added return code check for chip kwqe submission request (Mike Christie) [660406]\n- [scsi] bnx2i: Modified the bnx2i stop path to compensate for in progress ops (Mike Christie) [660406]\n- [scsi] bnx2i: Removed the dynamic registration of CNIC (Mike Christie) [660406]\n- [scsi] bnx2i: Added mutex lock protection to conn_get_param (Mike Christie) [660406]\n- [net] cnic: Fix lost interrupt on bnx2x (Mike Christie) [660430]\n- [net] cnic: Prevent status block race conditions with hardware (Mike Christie) [660430]\n- [net] bnx2x, cnic: Consolidate iSCSI/FCoE shared mem logic in bnx2x (Mike Christie) [660430]\n- [net] cnic: Fix the type field in SPQ messages (Mike Christie) [660430]\n- [net] cnic: Do not call bnx2i when bnx2i is calling cnic_unregister_driver() (Mike Christie) [660430]\n- [net] cnic: Do not allow iSCSI and FCoE on bnx2x multi-function mode (Mike Christie) [660430]\n- [net] cnic: fix mem leak on alloc fail in cnic_alloc_uio_rings (Mike Christie) [660430]\n- [net] cnic: Add FCoE support on 57712 (Mike Christie) [660430]\n- [net] cnic: Add kcq2 support on 57712 (Mike Christie) [660430]\n- [net] cnic: Call cm_connect_complete() immediately on error (Mike Christie) [660430]\n- [net] cnic: Check device state before reading the kcq pointer in IRQ (Mike Christie) [660430]\n- [net] cnic: Support NIC Partition mode (Mike Christie) [660430]\n- [net] cnic: Use proper client and connection IDs on iSCSI ring (Mike Christie) [660430]\n- [net] cnic: Improve ->iscsi_nl_msg_send() (Mike Christie) [660430]\n- [net] cnic: Prevent 'scheduling while atomic' when calling ->cnic_init() (Mike Christie) [660430]\n- [net] cnic: Fix iSCSI TCP port endian order. (Mike Christie) [660430]\n- [net] cnic: Remove unnecessary semicolons (Mike Christie) [660430]\n- [net] cnic: Add support for 57712 device (Mike Christie) [660430]\n- [net] cnic: Decouple uio close from cnic shutdown (Mike Christie) [660430]\n- [net] cnic: Add cnic_uio_dev struct (Mike Christie) [660430]\n- [net] cnic: Add cnic_free_uio() (Mike Christie) [660430]\n- [net] cnic: Defer iscsi connection cleanup (Mike Christie) [660430]\n- [net] cnic: Add cnic_bnx2x_destroy_ramrod() (Mike Christie) [660430]\n- [net] cnic: Convert ctx_flags to bit fields (Mike Christie) [660430]\n- [net] cnic: Add common cnic_request_irq() (Mike Christie) [660430]\n- [net] bnx2x, cnic: Fix SPQ return credit (Mike Christie) [660430]\n- [char] Enable and extend Legacy PTY support for 4096 device pairs (Mauro Carvalho Chehab) [582776]\n- [fs] ioctl: make fiemap map at least a blocksize amount (Josef Bacik) [663041]\n- [net] forcedeth/r8169: call netif_carrier_off at end of probe (Ivan Vecera) [664705 664707]\n- [net] ixgbevf: update to upstream version 2.0.0-k2 (Andy Gospodarek) [653237]\n- [net] e1000e: update to upstream version 1.3.10 (Andy Gospodarek) [653242 653548]\n- [x86] amd: Extend support to future families (Frank Arnold) [682835]\n- [x86] smpboot: Use compute unit info to determine thread siblings (Frank Arnold) [682835]\n- [x86] amd: Extract compute unit information for AMD CPUs (Frank Arnold) [682835]\n- [x86] amd: Add support for CPUID topology extension of AMD CPUs (Frank Arnold) [682835]\n- [x86] cpufeature: Update AMD CPUID feature bits (Frank Arnold) [682835]\n- [x86_64] Support NMI watchdog on newer AMD CPU families (Frank Arnold) [682835]\n- [net] ixgbe: fix for 82599 erratum on Header Splitting (Andy Gospodarek) [680531]\n- [net] ixgbe: limit VF access to network traffic (Andy Gospodarek) [680531]\n- [net] igbvf driver update for RHEL5.7 (Stefan Assmann) [653241]\n- [fs] ext3: Always set dx_nodes fake_dirent explicitly (Eric Sandeen) [662838]\n- [virt] xen/netback: signal front-end close event via udev (Paolo Bonzini) [661985]\n- [net] bnx2x: fix swap of rx-ticks and tx-ticks parameters in interrupt coalescing flow (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: fix MaxBW configuration (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: (NPAR) prevent HW access in D3 state (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: fix link notification (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: fix non-pmf device load flow (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: update driver version to 1.62.00-6 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: properly calculate lro_mss (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: perform statistics 'action' before state transition. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: properly configure coefficients for MinBW algorithm (NPAR mode). (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix ethtool -t link test for MF (non-pmf) devices. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix nvram test for single port devices. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: (NPAR mode) Fix FW initialization (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Add a missing bit for PXP parity register of 57712. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Duplication in promisc mode (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: multicasts in NPAR mode (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Update bnx2x version to 1.62.00-5 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix potential link loss in multi-function mode (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix port swap for BCM8073 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix LED blink rate on BCM84823 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Remove setting XAUI low-power for BCM8073 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Update bnx2x version to 1.62.00-4 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix AER setting for BCM57712 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix BCM84823 LED behavior (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Mark full duplex on some external PHYs (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix BCM8073/BCM8727 microcode loading (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: LED fix for BCM8727 over BCM57712 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Common init will be executed only once after POR (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Swap BCM8073 PHY polarity if required (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: fix typos (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix the race on bp->stats_pending. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Move to D0 before clearing MSI/MSI-X configuration. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: registers dump fixes (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Dont prevent RSS configuration in INT#x and MSI interrupt modes. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: adding dcbnl support (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Use static const (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove bogus check (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: update version to 1.62.00-2 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: update firmware to 6.2.5.0 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: bnx2x_request_firmware update for 6.2.5.0 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: replace FW to 6.2.5 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Add DCB/PFC support - link layer (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: add DCB support (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Disable FCoE ring, NETDEV_HW_ADDR_T_SAN for RHEL5.7. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: add FCoE ring (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Update version number and a date. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fixed a compilation warning (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Use dma_alloc_coherent() semantics for ILT memory allocation (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: LSO code was broken on BE platforms (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Add Nic partitioning mode (57712 devices) (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Use helpers instead of direct access to the shinfo(skb) fields (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Do interrupt mode initialization and NAPIs adding before register_netdev() (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Disable local BHes to prevent a dead-lock situation (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: fix error value sign (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Remove unnecessary semicolons (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Update version number (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Reset 8073 phy during common init (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Do not enable CL37 BAM unless it is explicitly enabled (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix resetting BCM8726 PHY during common init (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Clear latch indication on link reset (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix port selection in case of E2 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix waiting for reset complete on BCM848x3 PHYs (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Restore appropriate delay during BMAC reset (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: make local function static and remove dead code (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove BCM_VLAN (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Dont check for vlan group before vlan_tx_tag_present. (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: update version to 1.60.00-3 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: prevent false parity error in MSI-X memory of HC block (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: fix possible deadlock in HC hw block (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: update version to 1.60.00-2 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove unnecessary FUNC_FLG_RSS flag and related (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Use correct FW constant for header padding (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: do not deal with power if no capability (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove redundant commands during error handling (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Optimized the branching in the bnx2x_rx_int() (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fixing a typo: added a missing RSS enablement (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: update version to 1.60.00-1 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: properly initialize FW stats (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: code beautify (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix SPQ return credit (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: move msix table initialization to probe() (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: use L1_CACHE_BYTES instead of magic number (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove unused fields in main driver structure (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove unused parameter in reuse_rx_skb() (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Add 57712 support (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: change type of spq_left to atomic (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Protect statistics ramrod and sequence number (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: rename MF related fields (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: firmware naming from upstream (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: whitespaces like in upstream, remove some #if0 lines (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: use netdev_for_each_mc_addr (Michal Schmidt) [629609 651546 653357 656360]\n- [misc] netdevice.h: add netdev_mc_count (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: use trivial wrappers around get_sset_count (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove a few pointless differences from upstream (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: bnx2x_alloc_napi cleanup, caller more similar to upstream (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: remove bnx2x_init_values.h (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x, cnic, bnx2i: use new FW/HSI (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Moved enabling of MSI to the bnx2x_set_num_queues() (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Use netif_set_real_num_{rx, tx}_queues() (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: return operator cleanup (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Spread rx buffers between allocated queues (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: use ARRAY_SIZE macro in bnx2x_main.c (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Update bnx2x version to 1.52.53-6 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Change LED scheme for dual-media (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Add dual-media changes (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Organize PHY functions (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Apply logic changes for the new scheme (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Move common function into aggregated function (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Adjust flow-control with the new scheme (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Adjust alignment of split PHY functions (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Split PHY functions (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Unify PHY attributes (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: avoid skb->ip_summed initialization (Michal Schmidt) [629609 651546 653357 656360]\n- [net] skbuff: add skb_checksum_none_assert (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Update version to 1.52.53-5 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Add BCM84823 to the supported PHYs (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Change BCM848xx LED configuration (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Remove unneeded setting of XAUI low power to BCM8727 (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Change BCM848xx configuration according to IEEE (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Reset link before any new link settings (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix potential link issue In BCM8727 based boards (Michal Schmidt) [629609 651546 653357 656360]\n- [net] bnx2x: Fix potential link issue of BCM8073/BCM8727 (Michal Schmidt) [629609 651546 653357 656360]\n- Revert: [net] bnx2x: force interrupt mode for iscsi unset mac (Michal Schmidt) [629609 651546 653357 656360]\n- [net] ipv4: make accept_local writeable for loopback (Neil Horman) [672570]\n- [net] bnx2: Update to latest upstream for RHEL5.7 (Neil Horman) [651438 660375]\n- [pci] backport common vpd support functions (Neil Horman) [683978]\n- [net] e1000: fix sparse warning (Dean Nelson) [571889 653248 653546]\n- [net] e1000: add support for Marvell Alaska M88E1118R PHY (Dean Nelson) [571889 653248 653546]\n- [net] e1000: Add support for the CE4100 reference platform (Dean Nelson) [571889 653248 653546]\n- [net] e1000: fix return value not set on error (Dean Nelson) [571889 653248 653546]\n- [net] e1000: fix Tx hangs by disabling 64-bit DMA (Dean Nelson) [571889 653248 653546]\n- [net] e1000: allow option to limit number of descriptors down to 48 per ring (Dean Nelson) [571889 653248 653546]\n- [net] e1000: Use new function for copybreak tests (Dean Nelson) [571889 653248 653546]\n- [net] e1000: do not modify tx_queue_len on link speed change (Dean Nelson) [571889 653248 653546]\n- [net] e1000: Fix DMA mapping error handling on RX (Dean Nelson) [571889 653248 653546]\n- [net] e1000: call pci_save_state after pci_restore_state (Dean Nelson) [571889 653248 653546]\n- [net] e1000: dont use small hardware rx buffers (Dean Nelson) [571889 653248 653546]\n- [fs] gfs2: directly write blocks past i_size (Benjamin Marzinski) [684371]\n- [fs] gfs2: fix block allocation check for fallocate (Benjamin Marzinski) [684024]\n- [redhat] spec: trim srpm size and vastly improve prep time (Jarod Wilson) [687950]\n[2.6.18-250.el5]\n- [block] cciss: use short tags where supported (Tomas Henzl) [656343]\n- [block] cciss: Fix memory leak in cciss_sysfs_stat_inquiry (Tomas Henzl) [656343]\n- [block] cciss: do not reorder commands in internal queue (Tomas Henzl) [656343]\n- [block] cciss: add another controller 0x103C3356 (Tomas Henzl) [656343]\n- [block] cciss: fix panic in cciss_revalidate (Tomas Henzl) [656343]\n- [block] cciss: Do not remove /proc entry if we never created it (Tomas Henzl) [656343]\n- [block] cciss: do not leak stack to userland (Tomas Henzl) [656343]\n- [block] cciss: catch kmalloc failure of h->scatter_list (Tomas Henzl) [656343]\n- [block] cciss: fix missed command status value CMD_UNABORTABLE (Tomas Henzl) [656343]\n- [block] cciss: remove ifdefed out interrupt_not_for_us (Tomas Henzl) [656343]\n- [block] cciss: change printks to dev_warn (Tomas Henzl) [656343]\n- [block] cciss: use consistent variable names (Tomas Henzl) [656343]\n- [block] cciss: mark performant mode function as __devinit (Tomas Henzl) [656343]\n- [block] cciss: cleanup some debug ifdefs (Tomas Henzl) [656343]\n- [block] cciss: fix leak of ioremapped memory in init error path (Tomas Henzl) [656343]\n- [block] cciss: Fix panic in multipath configurations (Tomas Henzl) [656343]\n- [message] mptfusion: version update to 3.04.18rh (Tomas Henzl) [662160]\n- [message] mptfusion: Incorrect return value in mptscsih_dev_reset (Tomas Henzl) [662160]\n- [message] mptfusion: remove bus reset (Tomas Henzl) [662160]\n- [message] mptfusion: 3gbps - 6gbps (Tomas Henzl) [662160]\n- [message] mptfusion: sysfs sas addr handle (Tomas Henzl) [662160]\n- [message] mptfusion: Fix 32 bit platforms with 64 bit resources (Tomas Henzl) [662160]\n- [message] mptfusion: use module_param correctly (Tomas Henzl) [662160]\n- [message] mptfusion: Adjust confusing if indentation (Tomas Henzl) [662160]\n- [message] mptfusion: print Doorbell reg on hard reset and timeout (Tomas Henzl) [662160]\n- [message] mptfusion: Cleanup some duplicate calls in mptbase.c (Tomas Henzl) [662160]\n- [message] mptfusion: Extra DMD error handling debug prints (Tomas Henzl) [662160]\n- [message] mptfusion: block errors if deleting devices or DMD (Tomas Henzl) [662160]\n- [message] mptfusion: add ioc_reset_in_progress reset in SoftReset (Tomas Henzl) [662160]\n- [message] mptfusion: handle SATA hotplug failure (Tomas Henzl) [662160]\n- [message] mptfusion: schedule_target_reset from all Reset context (Tomas Henzl) [662160]\n- [message] mptfusion: sanity check for device before adding to OS (Tomas Henzl) [662160]\n- [message] mptfusion: fix declaration of device_missing_delay (Tomas Henzl) [662160]\n- [message] mptfusion: DID_TRANSPORT_DISRUPTED, not DID_BUS_BUSY (Tomas Henzl) [662160]\n- [message] mptfusion: Set fw_events_off to 1 at driver load time (Tomas Henzl) [662160]\n- [scsi] mpt2sas: version change to 08.101.00.00 (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Call _scsih_ir_shutdown before reporting to OS (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Basic Code Cleanup in mpt2sas_base (Tomas Henzl) [662153]\n- [scsi] mpt2sas: fix access to freed memory from port enable (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Fix race between broadcast asyn event (Tomas Henzl) [662153]\n- [scsi] mpt2sas: support for Customer specific branding messages (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Revision P MPI Header Update (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Correct resizing calculation for max_queue_depth (Tomas Henzl) [662153]\n- [scsi] mpt2sas: device reset event not supported on old firmware (Tomas Henzl) [662153]\n- [scsi] mpt2sas: fix device removal handshake with vacant bit set (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Debug string changes from target to device (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Remove code for TASK_SET_FULL from driver (Tomas Henzl) [662153]\n- [scsi] mpt2sas: MPI2.0 Header updated (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Modify code to support Expander switch (Tomas Henzl) [662153]\n- [scsi] mpt2sas: create pool of chain buffers for IO (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add loadtime params for IOMissingDelay and params (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add sanity check for cb_idx and smid access (Tomas Henzl) [662153]\n- [scsi] mpt2sas: remov compiler warnnings when logging is disabled (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Copy message frame before releasing (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Copy sense buffer to work on it (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Add message to error escalation callback (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Add check for responding volumes after Host Reset (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add ENOMEM return type when allocation fails (Tomas Henzl) [662153]\n- [scsi] mpt2sas: device event handling using pd_handles per HBA (Tomas Henzl) [662153]\n- [scsi] mpt2sas: Tie a log info message to a specific PHY (Tomas Henzl) [662153]\n- [scsi] mpt2sas: print level KERN_DEBUG is replaced by KERN_INFO (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add sysfs support for tracebuffer (Tomas Henzl) [662153]\n- [scsi] mpt2sas: MPI header version N is updated (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add sysfs counter for ioc reset (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add expander phy control support (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add expander phy counter support (Tomas Henzl) [662153]\n- [scsi] mpt2sas: add disable_discovery module parameter (Tomas Henzl) [662153]\n- [scsi] mpt2sas: dont reset when another reset is in progress (Tomas Henzl) [662153]\n- [net] ip_conntrack_ftp: fix tracking of sequence numbers (Thomas Graf) [642388]\n- [fs] gfs2: add missing unlock_page in gfs2_write_begin (Steven Whitehouse) [684795]\n- [powerpc] numa: improved kABI breakage fix in paca struct (Steve Best) [651167]\n- [fs] gfs2: Make delayed workqueues submit immediately if delay 0 (Robert S Peterson) [650494]\n- [fs] gfs2: improve performance with bouncing locks in a cluster (Robert S Peterson) [650494]\n- [net] s2io: rx_ring_sz bounds checking (Michal Schmidt) [491786]\n- [net] s2io: resolve statistics issues (Michal Schmidt) [598650]\n- [scsi] iscsi: use kmap instead of kmap_atomic (Mike Christie) [672115]\n- [block] reduce stack footprint of blk_recount_segments() (Jeff Moyer) [638988]\n- [block] fix nr_phys_segments miscalculation bug (Jeff Moyer) [638988]\n- [block] raid fixups for removal of bi_hw_segments (Jeff Moyer) [638988]\n- [block] drop vmerge accounting (Jeff Moyer) [638988]\n- [block] drop virtual merging accounting (Jeff Moyer) [638988]\n- [block] Introduce rq_for_each_segment replacing rq_for_each_bio (Jeff Moyer) [638988]\n- [block] Merge blk_recount_segments into blk_recalc_rq_segments (Jeff Moyer) [638988]\n- [fs] Fix over-zealous flush_disk changing device size (Jeff Moyer) [678359]\n- [fs] lockd: make lockd_down wait for lockd to come down (Jeff Layton) [653286]\n- [net] sunrpc: Dont disconnect if connection in progress (Jeff Layton) [680329]\n- [fs] fix block based fiemap (Josef Bacik) [675986]\n- [fs] proc: protect mm start_/end_code in /proc/pid/stat (Eugene Teo) [684571] {CVE-2011-0726}\n- [net] dccp: fix oops in dccp_rcv_state_process (Eugene Teo) [682956] {CVE-2011-1093}\n- [scsi] libsas: fix bug for vacant phy (David Milburn) [676423]\n- [scsi] libsas: do not set res = 0 in sas_ex_discover_dev (David Milburn) [676423]\n- [scsi] libsas: fix wide port hotplug issues (David Milburn) [676423]\n- [scsi] libsas: fixup kABI breakage (David Milburn) [676423]\n- [scsi] libsas: no commands to hot-removed devices (David Milburn) [676423]\n- [scsi] libsas: transport-level facility to req SAS addrs (David Milburn) [676423]\n- [scsi] libsas: misc fixes to the eh path (David Milburn) [676423]\n- [scsi] libsas: correctly flush LU queue on error recovery (David Milburn) [676423]\n- [scsi] libsas: fix error handling (David Milburn) [676423]\n- [scsi] libsas: fix sense_buffer overrun (David Milburn) [676423]\n- [scsi] libsas: reuse orig port hotplugging phys wide port (David Milburn) [676423]\n- [scsi] libsas: fix NCQ mixing with non-NCQ (David Milburn) [676423]\n- [scsi] libsas: fix endianness bug in sas_ata (David Milburn) [676423]\n- [scsi] libsas: dont use made up error codes (David Milburn) [676423]\n- [net] bluetooth: fix bnep buffer overflow (Don Howard) [681319] {CVE-2011-1079}\n- [pci] intel-iommu: Fix get_domain_for_dev() error path (Alex Williamson) [688646]\n- [pci] intel-iommu: Unlink domain from iommu (Alex Williamson) [688646]\n- [redhat] spec: assorted cleanup and streamlining\n[2.6.18-249.el5]\n- [md] dm-mpath: avoid storing private suspended state (Mike Snitzer) [678670]\n- [md] dm-mpath: reject messages when device is suspended (Mike Snitzer) [678670]\n- [md] dm: export suspended state to targets (Mike Snitzer) [678670]\n- [md] dm: rename dm_suspended to dm_suspended_md (Mike Snitzer) [678670]\n- [md] dm: swap postsuspend call and setting suspended flag (Mike Snitzer) [678670]\n- [md] dm-ioctl: retrieve status from inactive table (Mike Snitzer) [678670]\n- [md] dm: rename dm_get_table to dm_get_live_table (Mike Snitzer) [678670]\n- [md] dm-stripe: avoid div by 0 with invalid stripe count (Mike Snitzer) [678670]\n- [md] dm-ioctl: forbid messages to devices being deleted (Mike Snitzer) [678670]\n- [md] dm: add dm_deleting_md function (Mike Snitzer) [678670]\n- [md] dm: dec_pending needs locking to save error value (Mike Snitzer) [678670]\n- [md] dm-raid1: keep retrying alloc if mempool_alloc fails (Mike Snitzer) [678670]\n- [md] dm-table: fix upgrade mode race (Mike Snitzer) [678670]\n- [md] dm-io: respect BIO_MAX_PAGES limit (Mike Snitzer) [678670]\n- [md] dm-ioctl: validate name length when renaming (Mike Snitzer) [678670]\n- [md] dm-log: fix dm_io_client leak on error paths (Mike Snitzer) [678670]\n- [md] dm: avoid destroying table in dm_any_congested (Mike Snitzer) [678670]\n- [md] dm-raid1: fix leakage (Mike Snitzer) [678670]\n- [md] dm-mpath: validate hw_handler argument count (Mike Snitzer) [678670]\n- [md] dm-mpath: validate table argument count (Mike Snitzer) [678670]\n- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [673058]\n- [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [673058]\n- [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [673058]\n- [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [673058]\n- [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [673058]\n- [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [673058]\n- [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [673058]\n- [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [673058]\n- [powerpc] numa: Fix kABI breakage in paca struct (Steve Best) [651167]\n- [powerpc] Disable VPHN polling during a suspend operation (Steve Best) [651167]\n- [powerpc] mm: Poll VPA for topo changes, update NUMA maps (Steve Best) [651167]\n- [powerpc] Add VPHN firmware feature (Steve Best) [651167]\nwith external journal (Lukas Czerner) [652321]\n- [fs] nfs: wait for COMMIT RPC complete before task put (Jeff Layton) [441730]\n- [fs] nfs: ->flush and ->fsync should use FLUSH_SYNC (Jeff Layton) [441730]\n- [net] sunrpc: fix race in __rpc_wait_for_completion_task (Jeff Layton) [441730]\n- [fs] nfs: Ensure proper cleanup on rpc_run_task fail (Jeff Layton) [441730]\n- [fs] nfs: clean up the unstable write code (Jeff Layton) [441730]\n- [fs] nfs: Dont use ClearPageUptodate if writeback fails (Jeff Layton) [441730]\n- [fs] nfs: Fix an unstable write data integrity race (Jeff Layton) [441730]\n- [fs] nfs: make sure WRITE and COMMIT are uninterruptible (Jeff Layton) [441730]\n- [fs] nfs: change how FLUSH_STABLE flag is used (Jeff Layton) [441730]\n- [mm] writeback: fix queue handling in blk_congestion_wait (Jeff Layton) [516490]\n- [fs] nfs: clean up nfs congestion control (Jeff Layton) [516490]\n- [block] Add real API for dealing with blk_congestion_wait (Jeff Layton) [516490]\n- [fs] nfs: kswapd must not block in nfs_release_page (Jeff Layton) [516490]\n- [fs] nfs: Prevent another deadlock in nfs_release_page (Jeff Layton) [516490]\n- [fs] nfs: Try commit unstable writes in nfs_release_page (Jeff Layton) [516490]\n- [fs] nfs: Add debugging facility for NFS aops (Jeff Layton) [516490]\n- [fs] nfs: Fix race in nfs_release_page() (Jeff Layton) [516490]\n- [fs] nfs: Fix nfs_release_page (Jeff Layton) [516490]\n- [fs] nfs: reduce number of unnecessary commit calls (Jeff Layton) [516490]\n- [fs] nfs: nfs_writepages() cleanup (Jeff Layton) [516490]\n[2.6.18-248.el5]\n- [virt] xen: make more room for event channel IRQs (Paolo Bonzini) [650838]\n- [message] mptfusion: fix msgContext in mptctl_hp_hostinfo (Tomas Henzl) [646513]\n- [net] ipv6: Add GSO support on forwarding path (Thomas Graf) [648572]\n- [net] tc: Ignore noqueue_qdisc default qdisc when dumping (Thomas Graf) [627850]\n- [serial] 8250_pci: add support for PowerPC PLX 8250 (Steve Best) [651431]\n- [scsi] ibmveth: Free irq on error path (Steve Best) [651872]\n- [scsi] ibmveth: Cleanup error handling in ibmveth_open (Steve Best) [651872]\n- [scsi] ibmveth: Remove some unnecessary include files (Steve Best) [651872]\n- [scsi] ibmveth: Convert driver specific assert to BUG_ON (Steve Best) [651872]\n- [scsi] ibmveth: Return -EINVAL on all ->probe errors (Steve Best) [651872]\n- [scsi] ibmveth: Some formatting fixes (Steve Best) [651872]\n- [scsi] ibmveth: Remove redundant function prototypes (Steve Best) [651872]\n- [scsi] ibmveth: Convert to netdev_alloc_skb (Steve Best) [651872]\n- [scsi] ibmveth: Remove dupe checksum offload setup code (Steve Best) [651872]\n- [scsi] ibmveth: Add optional flush of rx buffer (Steve Best) [651872]\n- [scsi] ibmveth: Add scatter-gather support (Steve Best) [651872]\n- [scsi] ibmveth: Add rx_copybreak (Steve Best) [651872]\n- [scsi] ibmveth: Add tx_copybreak (Steve Best) [651872]\n- [scsi] ibmveth: Remove LLTX (Steve Best) [651872]\n- [scsi] ibmveth: batch rx buffer replacement (Steve Best) [651872]\n- [scsi] ibmveth: Remove integer divide caused by modulus (Steve Best) [651872]\n- [fs] gfs2: creating large files suddenly slow to a crawl (Robert S Peterson) [683155]\n- [virt] xen: performance improvement for 32-bit domains (Paolo Bonzini) [390451]\n- [fs] nfs: fix use of slab allocd pages in skb frag list (Neil Horman) [682643] {CVE-2011-1090}\n- [net] af_packet: allow multicast traffic on bond ORIGDEV (Jiri Pirko) [579000]\n- [net] af_packet: option to return orig_dev to userspace (Jiri Pirko) [579000]\n- [fs] nfs: back out the FS-Cache patches (Jeff Layton) [631950]\n- [x86_64]: fix section mismatches in kernel setup (Frank Arnold) [683078]\n- [char] tty_audit: fix live lock on audit disabled (Danny Feng) [679563]\n- [s390] remove task_show_regs (Danny Feng) [677853] {CVE-2011-0710}\n- [scsi] qla2xxx: Query proper reg bits to determine state (Chad Dupuis) [537277]\n- [scsi] qla2xxx: update version to 8.03.07.00.05.07 (Chad Dupuis) [660386]\n- [scsi] qla2xxx: online ISP82XX for commands completion (Chad Dupuis) [660386]\n- [scsi] qla2xxx: fix tagging modifier while executing IOs (Chad Dupuis) [660386]\n- [scsi] qla2xxx: fix FCP_RSP response-info check after TMF (Chad Dupuis) [660386]\n- [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [660386]\n- [scsi] qla2xxx: return all loopback mbox out regs to API (Chad Dupuis) [660386]\n- [scsi] qla2xxx: fix IO failure during chip reset (Chad Dupuis) [660386]\n- [scsi] qla2xxx: show mbox reg 4 in 8012 AEN on ISP82XX (Chad Dupuis) [660386]\n- [scsi] qla2xxx: show more mailbox regs during AEN handle (Chad Dupuis) [660386]\n- [scsi] qla2xxx: no BIG_HAMMER if 0x20 cmd fails on CNAs (Chad Dupuis) [660386]\n- [scsi] qla2xxx: Remove redundant modparam permission bits (Chad Dupuis) [660386]\n- [scsi] qla2xxx: set right ret val in qla2xxx_eh_abort (Chad Dupuis) [660386]\n- [scsi] qla2xxx: set FCP prio info to firmware before IOs (Chad Dupuis) [660386]\n- [scsi] qla2xxx: Memory wedge with peg_halt test in loop (Chad Dupuis) [660386]\n- [scsi] qla2xxx: populate FCP_PRIO loc for no flt case (Chad Dupuis) [660386]\n- [scsi] qla2xxx: avoid SCSI host_lock dep in queuecommand (Chad Dupuis) [660386]\n- [scsi] qla2xxx: drop srb ref before wait for completion (Chad Dupuis) [660386]\n- [scsi] qla2xxx: log FCP priority data messages (Chad Dupuis) [660386]\n- [scsi] qla2xxx: add sysfs node for board temperature (Chad Dupuis) [660386]\n- [scsi] qla2xxx: fix check for need quiescence state (Chad Dupuis) [660386]\n- [scsi] qla2xxx: clear local rport refs on timeout from FC (Chad Dupuis) [660386]\n- [scsi] qla2xxx: remove unwanted check for bad spd (Chad Dupuis) [660386]\n- [scsi] qla2xxx: no continuous log when dontreset is set (Chad Dupuis) [660386]\n- [scsi] qla2xxx: quiescence mode support for ISP82xx (Chad Dupuis) [660386]\n- [virtio] console: no device_destroy on port device (Amit Shah) [681179]\n- [virtio] console: dont access vqs if device unplugged (Amit Shah) [681179]\n- [virtio] pci: fix config change oops w/no driver loaded (Amit Shah) [681179]\n- [xen] hap: preserve domain context (Radim Krcmar) [678571]\n[2.6.18-247.el5]\n- [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [675793]\n- [misc] vdso: export wall_to_monotonic (Prarit Bhargava) [675727]\n- [mm] add vzalloc and vzalloc_node helpers (Neil Horman) [681303]\n- [fs] add lockd endianness annotations (Jeff Layton) [526829]\n- [misc] add key_revoke() dummy for KEYS=n (Jeff Layton) [640891]\n- [fs] nfs: Fix a use-after-free case in nfs_async_rename() (Jeff Layton) [511901]\n- [fs] nfs: make sillyrename an async operation (Jeff Layton) [511901]\n- [fs] nfs: move nfs_sillyrename to unlink.c (Jeff Layton) [511901]\n- [fs] nfs: standardize the rename response container (Jeff Layton) [511901]\n- [fs] nfs: standardize the rename args container (Jeff Layton) [511901]\n- [scsi] scsi_dh_emc: Set request flags consistently (Dave Wysochanski) [670367]\n- [i2c] i2c-i801: Add PCI idents for Patsburg 'IDF' devices (David Milburn) [651513]\n- [i2c] i2c-i801: Handle multiple instances properly (David Milburn) [651513]\n- [i2c] i2c-i801: Dont use block buffer for block writes (David Milburn) [651513]\n- [i2c] i2c-i801: Fix handling of error conditions (David Milburn) [651513]\n- [i2c] i2c-i801: Rename local variable temp to status (David Milburn) [651513]\n- [i2c] i2c-i801: Properly report bus arbitration loss (David Milburn) [651513]\n- [i2c] i2c-i801: Remove verbose debugging messages (David Milburn) [651513]\n- [i2c] i2c-i801: Implement I2C block read support (David Milburn) [651513]\n- [i2c] i2c-i801: Clear special mode bits as needed (David Milburn) [651513]\n- [i2c] i2c-i801: More explicit names for chip features (David Milburn) [651513]\n- [i2c] i2c-i801: Use the internal 32-byte buffer on ICH4+ (David Milburn) [651513]\n- [i2c] i2c-i801: Various cleanups (David Milburn) [651513]\n- [fs] xfs: disable CONFIG_XFS_DEBUG on kernel-debug (Dave Chinner) [658012]\n- [fs] xfs: remove cmn_err log buffer and lock (Dave Chinner) [658012]\n- [fs] fix select/poll timeout overflow (Bob Picco) [591607]\n- [x86_64] Use u32, not long, to set reset vector back to 0 (Don Zickus) [675258]\n- [net] sctp: fix race allowing access before full init (Neil Horman) [465876]\n- [xen] gdbsx: hypervisor part backport (Radim Krcmar) [678618]\n- [xen] add arch/x86/debug.c, debugger routines (Radim Krcmar) [678618]\n- [xen] x86/vmx: making TRAP_debug and TRAP_int3 useful (Radim Krcmar) [678618]\n[2.6.18-246.el5]\n- [net] bridge: restore ebt ksym versions (Herbert Xu) [626659]\n- [net] bridge: Fix mglist corruption (Herbert Xu) [506630]\n- [net] Fix IGMP3 report parsing (Herbert Xu) [506630]\n- [net] bridge: Fix IGMPv3 report parsing (Herbert Xu) [506630]\n- [net] bridge: Fix skb leak in multicast TX parse fail (Herbert Xu) [506630]\n- [net] bridge: Fix OOM crash in deliver_clone (Herbert Xu) [506630]\n- [net] bridge: Make first arg to deliver_clone const (Herbert Xu) [506630]\n- [net] bridge: Fix build error w/IGMP_SNOOPING not enabled (Herbert Xu) [506630]\n- [net] bridge: Add multicast count/interval sysfs entries (Herbert Xu) [506630]\n- [net] bridge: Add hash elasticity/max sysfs entries (Herbert Xu) [506630]\n- [net] bridge: Add multicast_snooping sysfs toggle (Herbert Xu) [506630]\n- [net] bridge: Add multicast_router sysfs entries (Herbert Xu) [506630]\n- [net] bridge: Add multicast data-path hooks (Herbert Xu) [506630]\n- [net] bridge: Add multicast start/stop hooks (Herbert Xu) [506630]\n- [net] bridge: Add multicast forwarding functions (Herbert Xu) [506630]\n- [net] bridge: Move NULL mdb check into br_mdb_ip_get (Herbert Xu) [506630]\n- [net] bridge: ensure br_multicast_query error path unlock (Herbert Xu) [506630]\n- [net] bridge: Fix RCU race in br_multicast_stop (Herbert Xu) [506630]\n- [net] bridge: Use RCU list primitive in __br_mdb_ip_get (Herbert Xu) [506630]\n- [net] bridge: cleanup: remove unneed check (Herbert Xu) [506630]\n- [net] bridge: depends on INET (Herbert Xu) [506630]\n- [net] bridge: Make IGMP snooping depend upon BRIDGE. (Herbert Xu) [506630]\n- [net] bridge: Add core IGMP snooping support (Herbert Xu) [506630]\n- [net] bridge: Fix br_forward crash in promiscuous mode (Herbert Xu) [506630]\n- [net] bridge: Split may_deliver/deliver_clone out (Herbert Xu) [506630]\n- [net] bridge: Use BR_INPUT_SKB_CB on xmit path (Herbert Xu) [506630]\n- [net] bridge: Avoid unnecessary clone on forward path (Herbert Xu) [506630]\n- [net] bridge: Allow tail-call on br_pass_frame_up (Herbert Xu) [506630]\n- [net] bridge: Do br_pass_frame_up after other ports (Herbert Xu) [506630]\n- [net] bridge: Kill clone argument to br_flood_* (Herbert Xu) [506630]\n- [net] Add netdev_alloc_skb_ip_align() helper (Herbert Xu) [506630]\n- [fs] partitions: Validate map_count in Mac part tables (Danny Feng) [679284] {CVE-2011-1010}\n- [fs] nfs: Only increment seqid for cmds seen by server (Sachin Prabhu) [651409]\n- [scsi] ipr: fix a race on multiple configuration changes (Steve Best) [651429]\n- [misc] vmware: increase apic_calibration_diff to 10000 (Prarit Bhargava) [665197]\n- [net] tun: introduce tun_file (Michael S. Tsirkin) [672619]\n- [virt] xen blktap: bump MAX_TAP_DEV from 100 to 256 (Laszlo Ersek) [452650]\n- [fs] nfs: Too many GETATTR/ACCESS calls after direct I/O (Jeff Layton) [626974]\n- [net] bonding: fix add/remove of slaves when master down (Flavio Leitner) [671238]\n- [net] sctp: make sctp_ctl_sock_init try IPv4 if v6 fails (Jiri Pirko) [674175]\n- [net] Fix netdev_run_todo dead-lock (Jiri Pirko) [679487]\n- [net] niu: Fix races between up/down and get_stats (Jiri Pirko) [679407]\n- [misc] introduce ACCESS_ONCE (Jiri Pirko) [679407]\n- [x86] fix AMD family 0x15 guest boot issue on 64-bit host (Frank Arnold) [667234]\n- [sound] alsa: cache mixer values on usb-audio devices (Don Zickus) [678074]\n- [xen] prevent cross-vendor migration of HVM domains (Paolo Bonzini) [621916]\n- [xen] new domctl to get 1 record from HVM save context (Michal Novotny) [674514]\n[2.6.18-245.el5]\n- [block] cciss: version bump (Tomas Henzl) [635143]\n- [block] cciss: add option to enforce simple mode (Tomas Henzl) [635143]\n- [block] cciss: patch to make kdump work in rhel5 (Tomas Henzl) [635143]\n- [block] cciss: cleanup warnings (Tomas Henzl) [635143]\n- [block] cciss: patch to support kdump on new controllers (Tomas Henzl) [635143]\n- [block] cciss: factor out code to find max commands (Tomas Henzl) [635143]\n- [block] cciss: split out cciss_defs (Tomas Henzl) [635143]\n- [block] cciss: scsi tape updates (Tomas Henzl) [635143]\n- [block] cciss: remove fail_all_cmds (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_passthru (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_getdrivver (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_getfirmver (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_getbustypes (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_getheartbeat (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_setnodename (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_getnodename (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_setintinfo (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_getintinfo (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_getpciinfo (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_reset_devices (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_find_cfg_addrs (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_wait_for_mode_change_ack (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_p600_dma_prefetch_quirk (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_enable_scsi_prefetch (Tomas Henzl) [635143]\n- [block] cciss: factor out CISS_signature_present (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_find_board_params (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_find_cfgtables (Tomas Henzl) [635143]\n- [block] cciss: factor out wait_for_board_ready (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_find_memory_BAR (Tomas Henzl) [635143]\n- [block] cciss: remove board_id from cciss_interrupt_mode (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_board_disabled (Tomas Henzl) [635143]\n- [block] cciss: factor out cciss_lookup_board_id (Tomas Henzl) [635143]\n- [block] cciss: save off pdev struct early (Tomas Henzl) [635143]\n- [block] cciss: add performant mode support (Tomas Henzl) [635143]\n- [block] cciss: new controller support (Tomas Henzl) [635143]\n- [block] cciss: remove generic sa support (Tomas Henzl) [635143]\n- [block] cciss: copyright update (Tomas Henzl) [635143]\n- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [673616]\n- [pci] msi: remove infiniband compat code (Prarit Bhargava) [636260]\n- [pci] msi: remove pci_save_msi|x_state() functions (Prarit Bhargava) [636260]\n- [pci] msi: use msi_desc save areas in msi state functions (Prarit Bhargava) [636260]\n- [pci] msi: use msi_desc save areas in drivers/pci code (Prarit Bhargava) [636260]\n- [misc] kdump: fixup mcp55 quick to skip non HT devices (Neil Horman) [477032]\n- [security] selinux: properly handle empty tty_files list (Lachlan McIlroy) [674226]\n- [fs] xfs: fix double free of log tickets (Lachlan McIlroy) [657166]\n- [fs] ext4: protect inode bitmap clearing w/ spinlock (Lukas Czerner) [663563]\n- [fs] procfs: fix numbering in /proc/locks (Jerome Marchand) [622647]\n- [fs] seq_file: Introduce the seq_open_private() (Jerome Marchand) [622647]\n- [fs] Rework /proc/locks w/seq_files and seq_list helpers (Jerome Marchand) [622647]\n- [fs] common helpers for seq_files working with list_heads (Jerome Marchand) [622647]\n- [fs] nfs: Remove incorrect do_vfs_lock message (Jeff Layton) [632399]\n- [fs] nfs: allow redirtying of a completed unstable write (Jeff Layton) [648657]\n- [fs] nfsd4: fix seqid on lock req incompat w/open mode (Jeff Layton) [517629]\n- [net] sunrpc: a better way to set tcp_slot_table_entries (Harshula Jayasuriya) [654293]\n- [x86] Convert BUG() to use unreachable() (Dean Nelson) [677396]\n- [s390] Convert BUG() to use unreachable() (Dean Nelson) [677396]\n- [powerpc] Convert BUG() to use unreachable() (Dean Nelson) [677396]\n- [misc] add support for __builtin_unreachable (Dean Nelson) [677396]\n- [fs] xfs: more swap extent fixes for dynamic fork offsets (Dave Chinner) [661300]\n- [fs] xfs: handle dynamic fork offsets in xfs_swap_extents (Dave Chinner) [661300]\n- [lib] fix vscnprintf() if @size is == 0 (Anton Arapov) [667327]\n- [net] netpoll: fix use after free (Amerigo Wang) [556811]\n- [net] netpoll: fix a softirq warning (Amerigo Wang) [556811]\n- [net] netconsole: Introduce netconsole netdev notifier (Amerigo Wang) [556811]\n- [net] bridge: support netpoll over bridge (Amerigo Wang) [556811]\n- [net] netconsole: Use netif_running() in write_msg() (Amerigo Wang) [556811]\n- [net] netconsole: Simplify boot/module option setup logic (Amerigo Wang) [556811]\n- [net] netconsole: Remove bogus check (Amerigo Wang) [556811]\n- [net] netconsole: Cleanups, codingstyle, prettyfication (Amerigo Wang) [556811]\n- [net] netpoll: setup error handling (Amerigo Wang) [556811]\n- [char] virtio_console: fix memory leak (Amit Shah) [656836]\n- [media] dvb: fix av7110 negative array offset (Mauro Carvalho Chehab) [672402] {CVE-2011-0521}\n[2.6.18-244.el5]\n- [message] mptfusion: add required mptctl_release call (Tomas Henzl) [660871]\n- [fs] gfs2: no exclusive glocks on mmapped read-only fs (Steven Whitehouse) [672724]\n- [scsi] ibmvfc: Driver version 1.0.9 (Steve Best) [651885]\n- [scsi] ibmvfc: Handle Virtual I/O Server reboot (Steve Best) [651885]\n- [scsi] ibmvfc: Log link up/down events (Steve Best) [651885]\n- [scsi] ibmvfc: Fix rport add/delete race oops (Steve Best) [651885]\n- [scsi] ibmvfc: Remove stale param to ibmvfc_init_host (Steve Best) [651885]\n- [scsi] ibmvfc: Fix locking in ibmvfc_remove (Steve Best) [651885]\n- [scsi] ibmvfc: Fixup TMF response handling (Steve Best) [651885]\n- [fs] nfs: pure nfs client performance using odirect (Jeff Layton) [643441]\n- [mm] fix install_special_mapping skips security_file_mmap (Frantisek Hrbata) [662197] {CVE-2010-4346}\n- [virt] xen: setup memory zones the same way as native (Andrew Jones) [525898]\n- [s390] qeth: wait for recovery finish in open function (Hendrik Brueckner) [668844]\n- [s390] cio: fix unuseable device after offline operation (Hendrik Brueckner) [668842]\n- [s390] qdio: use proper QEBSM operand for SIGA-{R,S} (Hendrik Brueckner) [668464]\n- [s390] qdio: zfcp stall with > 63 active qdio devices (Hendrik Brueckner) [662134]\n- [s390] qeth: enable VIPA add/remove for offline devices (Hendrik Brueckner) [661106]\n- [s390] hvc_iucv: no iucv_unregister if register failed (Hendrik Brueckner) [661021]\n- [s390] qeth: l3 add vlan hdr in passthru frames (Hendrik Brueckner) [659822]\n- [s390] cio: suppress chpid event in case of config error (Hendrik Brueckner) [668838]\n- [xen] x86: fix guest memmove in __pirq_guest_unbind (Yufang Zhang) [659642]\n[2.6.18-243.el5]\n- [scsi] device_handler: fix alua_rtpg port group id check (Mike Snitzer) [669961]\n- [net] cnic: fix big endian bug with device page tables (Steve Best) [669527]\n- [fs] only return EIO once on msync/fsync after IO failure (Rik van Riel) [652369]\n- [net] bonding: convert netpoll tx blocking to a counter (Neil Horman) [659594]\n- [net] conntrack: fix oops specify hashsize module option (Neil Horman) [667810]\n- [misc] mce: reduce thermal throttle message severity (Matthew Garrett) [666972]\n- [acpi] reduce the number of resched IPIs (Matthew Garrett) [653398]\n- [virt] xen: make netfront driver return info to ethtool (Laszlo Ersek) [643292]\n- [virt] xen: synch arch/i386/pci/irq-xen.c (Laszlo Ersek) [623979]\n- [virt] netback: take lock when removing entry from list (Laszlo Ersek) [648854]\n- [virt] xen: make netloop permanent (Laszlo Ersek) [567540]\n- [net] virtio: add get_drvinfo support to virtio_net (Laszlo Ersek) [645646]\n- [virt] xen: implement get_drvinfo for netloop driver (Laszlo Ersek) [643872]\n- [virt] xen: implement get_drvinfo for netback driver (Laszlo Ersek) [643872]\n- [net] virtio_net: update trans_start properly (Jiri Olsa) [653828]\n- [net] gro: reset dev pointer on reuse (Andy Gospodarek) [600350]\n- [net] atl1e: add new Atheros GbE NIC driver (Bob Picco) [465379]\n- [fs] gfs2: support for growing a full filesytem (Benjamin Marzinski) [661904]\n- [fs] gfs2: reserve more blocks for transactions (Benjamin Marzinski) [637970]\n- [fs] gfs2: add fallocate support (Benjamin Marzinski) [626585]\n- [fs] nfs: break nfsd v4 lease on unlink, link, and rename (J. Bruce Fields) [610093]\n- [fs] nfs: break lease on nfsd v4 setattr (J. Bruce Fields) [610093]\n- [net] ipv6: add missing support for local_reserved_ports (Amerigo Wang) [669603]\n- [misc] add ignore_loglevel kernel parameter (Amerigo Wang) [662102]\n- [misc] add bootmem_debug kernel parameter (Amerigo Wang) [662102]\n- [xen] unmask ISVM bit on SVM guests (Paolo Bonzini) [665972]\n- [xen] add MSR_IA32_THERM_CONTROL for dom0 CPU throttling (Laszlo Ersek) [614007]\n[2.6.18-242.el5]\n- [net] be2net: fix missing trans_start update (Ivan Vecera) [671595]\n- [message] mptfusion: release resources in error path (Tomas Henzl) [648413]\n- [fs] gfs2: fix recovery stuck on transaction lock (Robert S Peterson) [553803]\n- [net] fix unix socket local dos (Neil Horman) [656760] {CVE-2010-4249}\n- [net] core: clear allocs for privileged ethtool actions (Jiri Pirko) [672433] {CVE-2010-4655}\n- [net] limit socket backlog add operation to prevent DoS (Jiri Pirko) [657309] {CVE-2010-4251}\n- [block] fix accounting bug on cross partition merges (Jerome Marchand) [646816]\n- [fs] nfs: fix units bug causing hang on nfsv4 recovery (J. Bruce Fields) [659243]\n- [fs] nfs: set source addr when v4 callback is generated (J. Bruce Fields) [659255]\n- [char] virtio: Wake console outvq on host notifications (Amit Shah) [673459]\n- [net] ipv4: fix IGMP behavior on v2/v3 query responses (Jiri Pirko) [634276]\n- [net] ipv6: honor SO_BINDTODEVICE parameter when routing (Jiri Olsa) [568881]\n[2.6.18-241.el5]\n- [net] tcp: fix shrinking windows with window scaling (Jiri Pirko) [627496]\n- [virt] xen: no enable extended PCI cfg space via IOports (Don Dutile) [661478]\n- [fs] gfs2: remove iopen glocks from cache on delete fail (Benjamin Marzinski) [666080]\n- [char] virtio: make console port names a KOBJ_ADD event (Amit Shah) [669909]\n- [net] e1000: Avoid unhandled IRQ (Dean Nelson) [651512]\n- [net] e1000: fix screaming IRQ (Dean Nelson) [651512]\n[2.6.18-240.el5]\n- [acpi] bus: check if list is empty before kfree()ing it (Matthew Garrett) [670373]\n- [net] ipv6: fragment local tunnel IPSec6 pkts if needed (Herbert Xu) [661110]\n- [block] cciss: fix null pointer problem in tur usage (Tomas Henzl) [664592]\n[2.6.18-239.el5]\n- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [665427]\n- [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [660661]\n- [mm] prevent file lock corruption using popen(3) (Larry Woodman) [664931]\n- [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665477] {CVE-2010-4526}", "cvss3": {}, "published": "2011-07-31T00:00:00", "type": "oraclelinux", "title": "Oracle Linux 5.7 kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2011-0521", "CVE-2010-4346", "CVE-2011-1746", "CVE-2011-0695", "CVE-2011-1078", "CVE-2011-1494", "CVE-2010-4649", "CVE-2011-1776", "CVE-2011-1576", "CVE-2011-1573", "CVE-2010-4251", "CVE-2011-1780", "CVE-2010-4526", "CVE-2011-1166", "CVE-2011-0711", "CVE-2011-0710", "CVE-2011-2022", "CVE-2011-1079", "CVE-2011-1044", "CVE-2011-1495", "CVE-2010-4249", "CVE-2011-1093", "CVE-2011-1010", "CVE-2011-1593", "CVE-2011-1170", "CVE-2011-1936", "CVE-2011-1172", "CVE-2011-1171", "CVE-2011-2213", "CVE-2011-2689", "CVE-2011-0726", "CVE-2011-1745", "CVE-2011-1182", "CVE-2011-1090", "CVE-2011-1763", "CVE-2011-2525", "CVE-2011-1080", "CVE-2010-4655", "CVE-2011-1577"], "modified": "2011-07-31T00:00:00", "id": "ELSA-2011-1065", "href": "http://linux.oracle.com/errata/ELSA-2011-1065.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:37:40", "description": "[2.6.32-300.3.1.el6uek]\n- proc: fix oops on invalid /proc/\n/maps access (Linux Torvalds)\n- Revert 'capabilities: do not grant full privs for setuid w/ file caps + no\n effective caps' (Joe Jin)\n- [mm]: Use MMF_COMPAT instead ia32_compat to prevent kabi be broken (Joe Jin)\n- proc: enable writing to /proc/pid/mem (Stephen Wilson)\n- proc: make check_mem_permission() return an mm_struct on success (Stephen Wilson)\n- proc: hold cred_guard_mutex in check_mem_permission() (Joe Jin)\n- proc: disable mem_write after exec (Stephen Wilson)\n- mm: implement access_remote_vm (Stephen Wilson)\n- mm: factor out main logic of access_process_vm (Stephen Wilson)\n- mm: use mm_struct to resolve gate vma's in __get_user_pages (Stephen Wilson)\n- mm: arch: rename in_gate_area_no_task to in_gate_area_no_mm (Stephen Wilson)\n- mm: arch: make in_gate_area take an mm_struct instead of a task_struct\n (Stephen Wilson)\n- mm: arch: make get_gate_vma take an mm_struct instead of a task_struct\n (Stephen Wilson)\n- x86: mark associated mm when running a task in 32 bit compatibility mode\n (Stephen Wilson)\n- x86: add context tag to mark mm when running a task in 32-bit compatibility\n mode (Stephen Wilson)\n- auxv: require the target to be tracable (or yourself) (Al Viro)\n- close race in /proc/*/environ (Al Viro)\n- report errors in /proc/*/*map* sanely (Al Viro)\n- pagemap: close races with suid execve (Al Viro)\n- make sessionid permissions in /proc/*/task/* match those in /proc/* (Al Viro)\n- Revert 'report errors in /proc/*/*map* sanely' (Joe Jin)\n- Revert 'proc: fix oops on invalid /proc/\n/maps access' (Joe Jin)\n[2.6.32-300.2.1.el6uek]\n- [kabi] Add missing kabi (Srinivas Maturi)\n- report errors in /proc/*/*map* sanely (Joe Jin)\n[2.6.32-300.1.1.el6uek]\n- [SCSI] qla4xxx: fix build error for OL6 (Joe Jin)\n- Ecryptfs: Add mount option to check uid of device being mounted = expect uid (Maxim Uvarov)\n- proc: fix oops on invalid /proc/\n/maps access (Linus Torvalds)\n- x86/mm: Fix pgd_lock deadlock (Joe Jin)\n- x86, mm: Hold mm->page_table_lock while doing vmalloc_sync (Joe Jin)\n- proc: restrict access to /proc/PID/io (Vasiliy Kulikov)\n- futex: Fix regression with read only mappings (Shawn Bohrer)\n- x86-32, vdso: On system call restart after SYSENTER, use int db_5.ELSA-2011-2037x80 (H. Peter Anvin)\n- x86, UV: Remove UV delay in starting slave cpus (Jack Steiner)\n- Include several Xen pv hugepage fixes. (Dave McCracken)\n- GRO: fix merging a paged skb after non-paged skbs (Michal Schmidt)\n- md/linear: avoid corrupting structure while waiting for rcu_free to complete. (NeilBrown)\n- xen: x86_32: do not enable iterrupts when returning from exception in interrupt context (Igor Mammedov)\n- xen/smp: Warn user why they keel over - nosmp or noapic and what to use instead. (Konrad Rzeszutek Wilk)\n- hvc_console: Improve tty/console put_chars handling (Hendrik Brueckner)\n- 3w-9xxx: fix iommu_iova leak (James Bottomley)\n- aacraid: reset should disable MSI interrupt (Vasily Averin)\n- libsas: fix failure to revalidate domain for anything but the first expander child. (Mark Salyzyn)\n- splice: direct_splice_actor() should not use pos in sd (Changli Gao)\n- libsas: fix panic when single phy is disabled on a wide port (Mark Salyzyn)\n- epoll: fix spurious lockdep warnings (Nelson Elhage)\n- kobj_uevent: Ignore if some listeners cannot handle message (Milan Broz)\n- kmod: prevent kmod_loop_msg overflow in __request_module() (Jiri Kosina)\n- nfsd4: ignore WANT bits in open downgrade (J. Bruce Fields)\n- nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Bernd Schubert)\n- iommu/amd: Fix wrong shift direction (Joerg Roedel)\n- cfq: Don't allow queue merges for queues that have no process references (Jeff Moyer)\n- cfq-iosched: get rid of the coop_preempt flag (Jens Axboe)\n- cfq: break apart merged cfqqs if they stop cooperating (Jeff Moyer)\n- cfq: change the meaning of the cfqq_coop flag (Jeff Moyer)\n- cfq: merge cooperating cfq_queues (Jeff Moyer)\n- cfq: calculate the seek_mean per cfq_queue not per cfq_io_context (Jeff Moyer)\n- kcore: fix test for end of list (Dan Carpenter)\n- deal with races in /proc/*/{syscall,stack,personality} (Al Viro)\n- NLM: Don't hang forever on NLM unlock requests (Maxim Uvarov)\n- vm: fix vm_pgoff wrap in upward expansion (Hugh Dickins)\n- vm: fix vm_pgoff wrap in stack expansion (Linus Torvalds)\n- net_sched: Fix qdisc_notify() (Eric Dumazet)\n- drivers/net/rionet.c: fix ethernet address macros for LE platforms (Alexandre Bounine)\n- ext2,ext3,ext4: don't inherit APPEND_FL or IMMUTABLE_FL for new inodes (Theodore Ts'o)\n- st: fix race in st_scsi_execute_end (Petr Uzel)\n- Make scsi_free_queue() kill pending SCSI commands (Bart Van Assche)\n- NFS/sunrpc: don't use a credential with extra groups. (NeilBrown)\n- netlink: validate NLA_MSECS length (Johannes Berg)\n- mtd: mtdchar: add missing initializer on raw write (Peter Wippich)\n- PM / Suspend: Off by one in pm_suspend() (Dan Carpenter)\n- hfs: add sanity check for file name length (Dan Carpenter)\n- md/raid5: abort any pending parity operations when array fails. (NeilBrown)\n- mm: avoid null pointer access in vm_struct via /proc/vmallocinfo (Mitsuo Hayasaka)\n- USB: Fix Corruption issue in USB ftdi driver ftdi_sio.c (Andrew Worsley)\n- usb-storage: Accept 8020i-protocol commands longer than 12 bytes (Alan Stern)\n- [SCSI] ql4xxx: upgrade to 5.02.14.00.32.01-c0 (Joe Jin)\n- [netdrv] be2net: Merge fixes for CVE-2011-3347 (Joe Jin)\n- ext4: fix BUG_ON() in ext4_ext_insert_extent() (Zheng Liu)\n- proc: fix a race in do_io_accounting() (Vasiliy Kulikov)\n- capabilities: do not grant full privs for setuid w/ file caps + no effective caps (Zhi Li)\n- KEYS: Fix a NULL pointer deref in the user-defined key type (Maxim Uvarov)\n- igb: Fix for Alt MAC Address feature on 82580 and later devices (Joe Jin)\n- [netdrv] enic: fix accidental GRO off by default (Joe Jin)\n- Fixing use of netif_set_real_num_tx_queues in cxgb4_main.c (Joe Jin)\n- firmware: Update cxgb4 NIC driver firmware (Joe Jin)\n- firmware Add latest cxgb3 firmware (Joe Jin)\n- [netdrv] cxgb3: misc fixes. (Joe Jin)\n- bnx2x: upgrade bnx2x (Joe Jin)\n- dcb: add DCBX mode to event notifier attributes (John Fastabend)\n- dcb: Use ifindex instead of ifname (Mark Rustad)\n- dcbnl: unlock on an error path in dcbnl_cee_fill() (Dan Carpenter)\n- dcbnl: Add CEE notification (Shmulik Ravid)\n- dcbnl: Aggregated CEE GET operation (Shmulik Ravid)\n- dcb: use nlmsg_free() instead of kfree() (Dan Carpenter)\n- dcb: Add missing error check in dcb_ieee_set() (John Fastabend)\n- dcb: fix return type on dcb_setapp() (John Fastabend)\n- dcb: Add dcb_ieee_getapp_mask() for drivers to query APP settings (John Fastabend)\n- dcb: Add ieee_dcb_delapp() and dcb op to delete app entry (John Fastabend)\n- dcb: Add ieee_dcb_setapp() to be used for IEEE 802.1Qaz APP data (John Fastabend)\n- net: dcbnl, add multicast group for DCB (John Fastabend)\n- dcb: Add DCBX capabilities bitmask to the get_ieee response (John Fastabend)\n- dcbnl: add support for retrieving peer configuration - cee (Shmulik Ravid)\n- dcbnl: add support for retrieving peer configuration - ieee (Shmulik Ravid)\n- net: dcbnl: check correct ops in dcbnl_ieee_set() (John Fastabend)\n- Don't potentially dereference NULL in net/dcb/dcbnl.c:dcbnl_getapp() (Jesper Juhl)\n- net: dcb: application priority is per net_device (John Fastabend)\n- dcbnl: make get_app handling symmetric for IEEE and CEE DCBx (John Fastabend)\n- dcb: use after free in dcb_flushapp() (Dan Carpenter)\n- dcb: unlock on error in dcbnl_ieee_get() (Dan Carpenter)\n- dcbnl: more informed return values for new dcbnl routines (Shmulik Ravid)\n- dcbnl: cleanup (Shmulik Ravid)\n- net_dcb: add application notifiers (John Fastabend)\n- [netdrv] firmware: add bnx2x FW 7.0.23 (Joe Jin)\n- [netdrv] Fixing use of netif_set_real_num_tx_queues in bnx2.c (Joe Jin)\n- [netdrv] tg3: drver update. (Joe Jin)\n- tg3: negate USE_PHYLIB flag check (Jiri Pirko)\n- [netdrv] e1000e: fix WoL on 82578DM and 82567V3 (Joe Jin)\n- e1000: don't enable dma receives until after dma address has been setup (Dean Nelson)\n- [SCSI] bnx2i: Fixed the endian on TTT for NOP out transmission (Eddie Wai)\n- [SCSI] bnx2fc: upgrade to 1.0.8 (Joe Jin)\n- [scsi] hpsa: add heartbeat sysfs host attribute (Joe Jin)\n- [SCSI] move PCI_DEVICE_ID_HP_CISSE to include/linux/pci_ids.h (Joe Jin)\n- [SCSI] lpfc: update to 8.3.5.45.4p (Joe Jin)\n- [SCSI] be2iscsi: upgrade to 4.1.239.0 (Joe Jin)\n- fcoe/libfcoe: Move common code for fcoe_get_lesb to fcoe_transport (Joe Jin)\n- libfc: Prevent race that causes panic during FCoE port destroy via sysfs (Joe Jin)\n- [SCSI] isci: dynamic interrupt coalescing (Dan Williams)\n- megaraid_sas: trim the space and tab. (Joe Jin)\n- megaraid_sas: Add driver workaround for PERC5/1068 kdump kernel panic (Joe Jin)\n- scsi_transport_fc: Fix deadlock during fc_remove_host (Joe Jin)\n- [SCSI] libfc: improve flogi retries to avoid lport stuck (Vasu Dev)\n- [SCSI] libfc: avoid exchanges collision during lport reset (Vasu Dev)\n- [SCSI] libfc: fix checking FC_TYPE_BLS (Vasu Dev)\n- [SCSI] libsas: fix warnings when checking sata/stp protocol (Dan Williams)\n- [SCSI] libsas: disable scanning lun > 0 on ata devices (Dan Williams)\n- [SCSI] libsas: Allow expander T-T attachments (Luben Tuikov)\n- [SCSI] isci: atapi support (Dan Williams)\n- isci: export phy events via ->lldd_control_phy() (Dan Williams)\n- [SCSI] isci: The port state should be set to stopping on the last phy. (Jeff Skirvin)\n- [SCSI] isci: fix decode of DONE_CRC_ERR TC completion status (Jeff Skirvin)\n- [SCSI] isci: SATA/STP I/O is only returned in the normal path to libsas (Jeff Skirvin)\n- [SCSI] isci: fix support for large smp requests (Dan Williams)\n- [SCSI] isci: fix missed unlock in apc_agent_timeout() (Jeff Skirvin)\n- [SCSI] isci: fix event-get pointer increment (Dan Williams)\n- [SCSI] isci: add version number (Dan Williams)\n- [SCSI] isci: fix sata response handling (Dan Williams)\n- [SCSI] isci: Leave requests alone if already terminating. (Jeff Skirvin)\n- [SCSI] isci: initial sgpio write support (Dan Williams)\n- [SCSI] isci: fix sgpio register definitions (Dan Williams)\n- [SCSI] libsas: sgpio write support (Dan Williams)\n- [SCSI] scsi scan: don't fail scans when host is in recovery (Mike Christie)\n- net: Remove atmclip.h to prevent break kabi check (Joe Jin)\n- SPEC: ol6 req dracut-kernel-004-242.0.3 (Maxim Uvarov)\n- SPEC: req udev-095-14.27.0.1.el5_7.1 or more (Maxim Uvarov)\n- SPEC: el5 mkinird more then 5.1.19.6-71.0.10 (Maxim Uvarov)\n- ipv6: make fragment identifications less predictable (Joe Jin)\n- vlan: fix panic when handling priority tagged frames (Joe Jin)\n- ipv6: udp: fix the wrong headroom check (Shan Wei)\n- b43: allocate receive buffers big enough for max frame len + offset (Maxim Uvarov)\n- fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message (Miklos Szeredi)\n- cifs: fix possible memory corruption in CIFSFindNext (Jeff Layton)\n- crypto: md5 - Add export support (Maxim Uvarov)\n- fs/partitions/efi.c: corrupted GUID partition tables can cause kernel oops (Timo Warns)\n- block: use struct parsed_partitions *state universally in partition check code (Maxim Uvarov)\n- net: Compute protocol sequence numbers and fragment IDs using MD5 (Maxim Uvarov)\n- perf tools: do not look at ./config for configuration (Jonathan Nieder)\n- Make TASKSTATS require root access (Linus Torvalds)\n- TPM: Zero buffer after copying to userspace (Peter Huewe)\n- TPM: Call tpm_transmit with correct size (Peter Huewe)\n- PCI: Set device power state to PCI_D0 for device without native PM support (Ajaykumar Hotchandani)\n[2.6.32-300.0.12.el6uek]\n- Install include/drm headers (Maxim Uvarov) [orabug 13260234]\n- qla2xxx: Double check for command completion if abort mailbox command fails (Chad Dupuis)\n- Ensure full IOC buffer can be mapped (Martin K. Petersen)\n- Fix incorrect timeout handling (Martin K. Petersen)\n[2.6.32-300.0.11.el6uek]\n- fix pgoff in mbind vma merge (Caspar Zhang) [orabug 13370691]\n[2.6.32-300.0.10.el6uek]\n- compat_ioct: move initialization before use in sg_ioctl_trans() (Dan Carpenter)\n- genirq: Add IRQF_RESUME_EARLY and resume such IRQs earlier (Dan Carpenter)\n- xen/timer: Missing IRQF_NO_SUSPEND in timer code broke suspend [orabug 13359907]\n- pids: fix a race in pid generation that causes pids to be reused immediately (Salman) [orabug 13370594]\n- Revert 'mlx4: Updated the driver version from 1.5.1.6 August 2010 to 1.5.4.1 March 2011 update' (Maxim Uvarov) [orabug 13322248]\n[2.6.32-300.0.9.el6uek]\n- [firmware] bnx2x 7.0.20 (Maxim Uvarov) [orabug 13354737]\n- Revert 'qla2xxx: Double check for command completion if abort mailbox [orabug 13339986]\n- SPEC: fixes for spec file [orabugs 13359985, 13339700, 13348381]\n- kabi: Modify Kabi and enable kabicheck\n[2.6.32-300.0.8.el6uek]\n- ipv6: add a missing unregister_pernet_subsys call (Neil Horman)\n- SPEC: hwcap set to 1 for nosegneg (Guru Anbalagane) [orabug 13321811]\n- put firmware to kernel version specific location (Maxim Uvarov) [orabug 13254457]\n- xen: drop xen_sched_clock in favour of using plain wallclock time (Jeremy Fitzhardinge)\n- Revert '[scsi] add lockless to improve queuecommand performance'\n- fix fnic init panic and san disks are not visible (Xiaowei Hu)\n- SPEC: Add debug to the list of kernels that kernel-uek should replace in\n /etc/sysconfig/kernel (Kevin Lyons) [bug 13260459,13339700]\n- bfa: cleanup Makefile. (Joe Jin)\n- fc class: add fc host default default dev loss setting (Mike Christie)\n- fc class: add fc host dev loss sysfs file (Mike Christie)\n- add dev_loss_tmo support for lpfc, fnic and ibmvfc (Joe Jin)\n- scsi_transport_fc: Protect against overflow in dev_loss_tmo (Hannes Reinecke)\n- [netdrv] bna: cleanup Makefile. (Joe Jin)\n- PCI/e1000e: Add and use pci_disable_link_state_locked() (Yinghai Lu)\n- tracepoint: Move signal sending tracepoint to events/signal.h (Masami Hiramatsu)\n- perf_event, x86, mce: Use TRACE_EVENT() for MCE logging (Hidetoshi Seto)\n- xen: Add support for hugepages on Xen pv domains, including support for hugepages\n in the balloon driver. (Dave Mccracken)\n[2.6.32-300.0.7.el6uek]\n- Add entropy generation to NIC drivers\n- [netdrv] bnx2x: replace pci_find_capability to pci_pcie_cap\n- [pci] dma-mapping: dma-mapping.h: add dma_set_coherent_mask\n- PCI: introduce pci_is_pcie()\n- PCI: introduce pci_pcie_cap()\n- PCI: cache PCIe capability offset\n- [scsi] add lockless to improve queuecommand performance\n[2.6.32-300.0.6.el6uek]\n- [netdrv] ixgbe: correct Makefile.\n[2.6.32-300.0.5.el6uek]\nbnx2: upgrade to 2.1.11\nvlan: allow null VLAN ID to be used\nethtool: Add 20G bit definitions\nethtool: Add Direct Attach support to connector port reporting\nbnx2i: add pci_id for brocadcom\nfcoe: Prevent creation of an NPIV port with duplicate WWPN\nbnx2i: upgrade to 2.7.0.3\nbnx2fc: upgrade to 1.0.6\nlpfc: upgrade to 0:8.3.5.45.3p\nmptsas: upgrade to 3.04.19\nnetdev: ethtool RXHASH flag\nbe2net: upgrade to 4.0.160r\nbe2iscsi: upgrade to 4.0.160r\nvmxnet3: upgrade to 1.1.18.0-k\nadd vmxnet3 support\ne100: merge misc fixes.\nigb: upgrade to 3.0.6-k\nigbvf: upgrade to 2.0.0-k\ne1000: upgrade to 7.3.21-k6-1-NAPI\ne1000e: upgrade to 1.4.4-k\nixgbevf: upgrade to 2.1.0-k\n[netdrv] bnx2x: upgrade to 1.70.00-0]\n[block] cciss: upgrade to 3.6.28]\n[scsi] hpsa: upgrade to 2.0.2-3]\n[scsi] arcmsr: upgrade to 1.20.00.15.el6u2 2010/08/05]\n[scsi] megaraid: minor update megaraid]\nfcoe: correct checking for bonding\n[scsi] ipr: upgrade to 2.5.2]\n[SCSI] sd: Combine DIF/DIX error handling]\n[SCSI] Fix printing of failed 32-byte commands]\n[SCSI] sd: Logical Block Provisioning update]\n[SCSI] sd: retry read_capacity on UNIT_ATTENTION]\n[SCSI] libfc: fix mm leak in handling incoming request for target discovery]\n[SCSI] libfc: release DDP context if frame_send() fails]\n[SCSI] libfc: don't call resp handler after FC_EX_TIMEOUT]\n[SCSI] libfc: fix race in SRR response]\n[SCSI] libfc: do not immediately retry the cmd when seq_send fails in fc_fcp_send_data]\n[SCSI] libfcoe: Remove unnecessary module state checks]\n[SCSI] libfc: Enhancement to RPORT state machine applicable only for VN2VN mode]\n[SCSI] fcoe: Unable to select the exchangeID from offload pool for storage targets]\n[SCSI] fcoe: Round-robin based selection of CPU for post-processing of incoming commands]\n[SCSI] fcoe: Amends previous patch, Round-robin based selection of CPU for post processing of incoming request for FCoE target]\n[SCSI] libfc:Fix for exchange/seq loopup failure when FCoE stack is used as target and connected to windows initaitor]\n[SCSI] libfc: post reset event on lport reset]\n[SCSI] fcoe: cleanup cpu selection for incoming requests]\n[SCSI] scsi_dh_alua: Attach to UNAVAILABLE/OFFLINE AAS devices]\n[SCSI] iscsi: add module alias]\n[SCSI] iscsi: fix iscsi_endpoint leak]\n[SCSI] libiscsi: add helper to convert addr to string]\n[SCSI] iscsi_tcp: use iscsi_conn_get_addr_param libiscsi function]\n[SCSI] iscsi class: add callout to get iscsi_endpoint values]\n[SCSI] libiscsi_tcp: use kmap in xmit path]\n[SCSI] iscsi_tcp: fix locking around iscsi sk user data]\n[SCSI] libiscsi_tcp: fix LLD data allocation]\n[SCSI] libsas: remove spurious sata control register read/write]\n[SCSI] libsas: fix SATA NCQ error]\n[SCSI] libsas: fix loopback topology bug during discovery]\n[SCSI] fcoe: remove unused ptype field in fcoe_rcv_info]\n[SCSI] libfc: use FC_MAX_ERROR_CNT]\n[SCSI] libfc: Remove the reference to FCP packet from scsi_cmnd in case of error]\n[SCSI] libfc: release exchg cache]\n[SCSI] libfc, fcoe: ignore rx frame with wrong xid info]\n[SCSI] libfc: two minor changes in comments]\n[SCSI] libfc: cleanup sending SRR request]\n[SCSI] libfc: fix warn on in lport retry]\n[SCSI] fcoe: add fip retry to avoid missing critical keep alive]\nlibfc: fix fc_eh_host_reset\n[SCSI] libfc: block SCSI eh thread for blocked rports]\n[SCSI] libfc: fix referencing to fc_fcp_pkt from the frame pointer via fr_fsp()]\n[SCSI] scsi_lib: pause between error retries]\nKConfig: add CONFIG_UEK5=n to ol6/config-generic\n[SCSI] Fix race when removing SCSI devices]\nipmi: reduce polling when interrupts are available\nipmi: reduce polling\nipmi: Fix IPMI errors due to timing problems\n[SCSI] scsi_dh: Make alua hardware handler's activate() async]\n[SCSI] scsi_dh_alua: Handle all states correctly]\n[SCSI] scsi_dh_alua: fix submit_stpg return]\n[SCSI] scsi_dh_alua: fix deadlock in stpg_endio]\n[SCSI] scsi_dh_alua: fix stpg_endio group state reporting]\n[SCSI] scsi_dh: cosmetic change to sizeof()]\n[SCSI] scsi_dh_rdac : Add definitions for different RDAC operating modes]\n[SCSI] scsi_dh_rdac : decide whether to send mode select based on operating mode]\n[SCSI] dh_rdac: Use WWID from C8 page instead of Subsystem id from C4 page to identify storage]\n[SCSI] dh_rdac: Associate HBA and storage in rdac_controller to support partitions in storage]\n[SCSI] scsi_dh: Make hp hardware handler's activate() async]\n[SCSI] scsi_dh_hp_sw: fix deadlock in start_stop_endio]\ncnic: upgrade to 2.5.7\nupdate enic to 2.1.1.24\nenic: remove VF\n[SCSI] libiscsi: use bh locking instead of irq with session lock]\n[SCSI] libiscsi: Check TMF state before sending PDU]\niscsi: Use struct scsi_lun in iscsi structs instead of u8[8]\n[SCSI] fix id computation in scsi_eh_target_reset()]\n[SCSI] Reduce error recovery time by reducing use of TURs]\n[scsi] mpt2sas: upgrade 09.101.00.00]\n[SCSI] fcoe: Rearrange fcoe port and NPIV port cleanup]\n[SCSI] fcoe: Fix deadlock between fip's recv_work and rtnl]\n[SCSI] Add missing SPC-4 CDB and MAINTENANCE_[IN,OUT] service action definitions]\n[SCSI] scsi_debug: Thin provisioning support]\n[SCSI] scsi_debug: fix Thin provisioning support]\n[SCSI] scsi_debug: add max_queue + no_uld parameters]\n[SCSI] scsi_debug: Block Limits VPD page fixes]\n[SCSI] scsi_debug: fix map_region and unmap_region oops]\n[SCSI] scsi_debug: Update thin provisioning support]\n[SCSI] scsi_debug: Convert to use root_device_register() and root_device_unregister()]\n[SCSI] scsi_debug: set resid to indicate no data-in when medium error]\n[SCSI] scsi_debug: Fix 32-bit overflow in do_device_access causing memory corruption]\n[SCSI] scsi_debug: Logical Block Provisioning (SBC3r26)]\n[SCSI] scsi_debug: add consecutive medium errors]\ndrivers/firmware/iscsi_ibft.c: use %pM to show MAC address\ndrivers/firmware/iscsi_ibft.c: remove NIPQUAD_FMT, use %pI4\nx86: Make sure wakeup trampoline code is below 1MB\nibft, x86: Change reserve_ibft_region() to find_ibft_region()\nibft: Update iBFT handling for v1.03 of the spec.\n[xen] remove unused functions.]\nbitmap: introduce bitmap_set, bitmap_clear, bitmap_find_next_zero_area\n[netdrv] s2io: upgrade to 2.0.26.28]\n[watchdog] hpwdt: upgrade to 1.3.0]\nqla2xxx: During loopdown perform Diagnostic loopback.\nqla2xxx: Save and restore irq in the response queue interrupt handler.\nqla2xxx: Prevent CPU lockups when 'ql2xdontresethba' module param is set.\nqla2xxx: Fix array out of bound warning.\nqla2xxx: Acquire hardware lock while manipulating dsd list.\nqla2xxx: check for marker IOCB during response queue processing.\nqla2xxx: Fix qla24xx revision check while enabling interrupts.\nqla2xxx: Implemeted beacon on/off for ISP82XX.\nqla2xxx: Double check for command completion if abort mailbox command fails.\nqla2xxx: T10 DIF - Convert HBA specific checks to capability based.\nqla2xxx: Add support for ISP82xx to capture dump (minidump) on failure.\nqla2xxx: Enable write permission to some debug related module parameters to be changed dynamically.\nqla2xxx: Provide method for updating I2C attached VPD.\nqla2xxx: Set the task attributes after memsetting fcp cmnd.\nqla2xxx: Update to the beacon implementation.\nqla2xxx: Correct inadvertent loop state transitions during port-update handling.\nqla2xxx: Return sysfs error codes appropriate to conditions.\nqla2xxx: Issue mailbox command only when firmware hung bit is reset for ISP82xx.\nqla2xxx: Don't call alloc_fw_dump for ISP82XX.\nqla2xxx: Remove qla2x00_wait_for_loop_ready function.\nqla2xxx: Display FCP_CMND priority on update.\nqla2xxx: Check for SCSI status on underruns.\nqla2xxx: Fix for active_mask warning.\nqla2xxx: Updated the driver version to 8.03.07.08.32.1-k.\nixgbe-3.4.24\nkernel.h: add BUILD_BUG_ON_NOT_POWER_OF_2()\nisci update\nisci firmware update\ntg3: Updated the driver version from 3.113 to 3.119\nmlx4: Updated the driver version from 1.5.1.6 August 2010 to 1.5.4.1\n[2.6.32-300.0.4.el6uek]\n- Add 32-bit value for MAX_LOCAL_APIC to fix i386-i686 build error after a9da091\n[2.6.32-300.0.3.el6uek]\n- [NET] Update qlcnic driver to 5.0.24 [orabug 13005421]\n- [NET] Update netxen NIC driver to 4.0.76 [orabug 13005427]\n- [SCSI] Update megaraid_sas driver to v5.40-rc1 [orabug 13005432]\n- [NET] Update Brocade BNA driver to 3.0.2.2 [orabug 13005438]\n- [SCSI] Update Brocade BFA driver to 3.0.2.2 [orabug 13005441]\n- [NET] Update qlge driver to v1.00.00.29.00.00-01 [orabug 13005443]\n- [SCSI] mpt2sas: Add a module parameter that permits overriding protection capabilities (Martin K. Petersen)\n- [SCSI] mpt2sas: Return the correct sense key for DIF errors (Martin K. Petersen)\n- [SCSI] mpt2sas: Do not check DIF for unwritten blocks (Martin K. Petersen)\n- [NET] bnx2x: prevent flooded warning kernel info [orabug 12687487] (Joe Jin)\n- [SCSI] fix lport uninitalized bug in fnic [orabug 12866385] (Xiaowei Hu)\n- acpi: Handle xapic/x2apic entries in MADT at same time (Yinghai Lu yinghai@kernel.org)\n[2.6.32-300.0.2.el6uek]\n- Revert 'netns xfrm: fixup xfrm6_tunnel error propagation'\n- block: export blk_{get,put}_queue()\n- Revert 'block: export blk_{get,put}_queue()'\n[2.6.32-300.0.1.el6uek]\n- [SCSI] mpt2sas: Fix missing reference tag seed with Type 2 devices (Martin K. Petersen)\n- stable tree merge to 2.6.32.45", "cvss3": {}, "published": "2011-12-14T00:00:00", "type": "oraclelinux", "title": "Unbreakable Enterprise kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2011-4110", "CVE-2011-3347", "CVE-2011-2707", "CVE-2011-2495", "CVE-2011-4330", "CVE-2011-1020", "CVE-2011-3638", "CVE-2011-2525", "CVE-2011-1585", "CVE-2011-1577"], "modified": "2011-12-14T00:00:00", "id": "ELSA-2011-2037", "href": "http://linux.oracle.com/errata/ELSA-2011-2037.html", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:39:09", "description": "kernel\n[2.6.18-308.el5]\n- [scsi] lpfc: Update lpfc version for 8.2.0.108.4p driver release (Rob Evers) [784073]\n- [scsi] lpfc: Fix FCP EQ memory check init w/single int vector (Rob Evers) [784073]\n[2.6.18-307.el5]\n- [s390] crypto: Reset sha2 index after processing partial block (David Howells) [677860]\n- Revert: [fs] xfs: implement ->dirty_inode to fix timestamp (Eric Sandeen) [653215]\n[2.6.18-306.el5]\n- [s390] pfault: ignore leftover completion interrupts (Jarod Wilson) [753194]\n- [cpufreq] powernow-k8: Fix indexing issue (Frank Arnold) [782773]\n- [scsi] device_handler: optimize transition retries (Rob Evers) [733635]\n- [net] qlge: fix size of external list for TX address descriptors (Chad Dupuis) [772696]\n- [net] igmp: Avoid zero delay when rx'ing odd mix of IGMP queries (Jiri Pirko) [772869]\n- [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [773114]\n- [net] ipv6: track device renames in snmp6 (Andy Gospodarek) [758923]\n- [fs] jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783284] {CVE-2011-4086}\n- [fs] epoll: workarounds to preserve kernel ABI (Jason Baron) [681692] {CVE-2011-1083}\n- [fs] epoll: limit paths (Jason Baron) [681692] {CVE-2011-1083}\n- [fs] epoll: prevent creating circular epoll structures (Jason Baron) [681692] {CVE-2011-1083}\n- [fs] epoll: add ep_call_nested() (Jason Baron) [681692] {CVE-2011-1083}\n- [fs] gfs2: additional fix for inode allocation error path (Robert S Peterson) [767377]\n- [fs] gfs2: Revert clean up fsync changes (Robert S Peterson) [767377]\n- [fs] ext4: ignore EXT4_INODE_JOURNAL_DATA flag with delalloc (Lukas Czerner) [769386]\n- [mm] filemap: Make write(2) interruptible by a fatal signal (Lukas Czerner) [740898]\n- [mm] Make task in balance_dirty_pages killable (Lukas Czerner) [740898]\n- [fs] ext4: fix the deadlock in mpage_da_map_and_submit (Lukas Czerner) [740898]\n- [fs] ext4: fix deadlock in ext4_ordered_write_end (Lukas Czerner) [740898]\n- [fs] ext4: mark multi-page IO complete on mapping failure (Lukas Czerner) [740898]\n- [fs] ext4: make invalidate pages handle page range properly (Lukas Czerner) [740898]\n- [fs] ext4: call mpage_da_submit_io from mpage_da_map_blocks (Lukas Czerner) [740898]\n- [fs] nfsd: Avoid excess stack usage in svc_tcp_recvfrom (J. Bruce Fields) [765751]\n- [fs] nfsd: Replace two page lists in struct svc_rqst with one (J. Bruce Fields) [765751]\n[2.6.18-305.el5]\n- [edac] i5000: don't crash before showing the edac error (Mauro Carvalho Chehab) [713034]\n- [Documentation] Add pci=noseg to kernel-parameters.txt (Prarit Bhargava) [743168]\n- [net] ipv6: fix tcp_v6_conn_request (Jiri Benc) [714670]\n- [redhat] update RHEL_MINOR to 8 for 5.8 release (Jarod Wilson) [773033]\n- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [750283] {CVE-2012-0028}\n- [fs] nfs: Fix an O_DIRECT Oops (Jeff Layton) [754620] {CVE-2011-4325}\n- [xen] x86: fix a few 32-on-64 compat mode issues (Igor Mammedov) [700752]\n[2.6.18-304.el5]\n- [fs] gfs2: Fix inode allocation error path (Robert S Peterson) [767377]\n- [fs] gfs2: Clean up fsync (Robert S Peterson) [767377]\n- [misc] fix list_head userspace export regression error (Jarod Wilson) [772663]\n- [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [771592]\n- [net] cxgb4: fix firmware corruption (Neil Horman) [756661]\n- [net] be2net: remove incorrect calls to netif_carrier_off (Ivan Vecera) [771391]\n- [scsi] lpfc: Update lpfc version for 8.2.0.108.3p driver release (Rob Evers) [769385]\n- [scsi] lpfc: Fix panic during EEH recovery on SLI4 FC port (Rob Evers) [769385]\n- [scsi] lpfc: Fix a crash while deleting 256 vports (Rob Evers) [769385]\n- [scsi] lpfc: Fixed OCM failing *_OBJECT mailbox pass-through (Rob Evers) [769385]\n- [scsi] lpfc: Fixed firmware download regression (Rob Evers) [769385]\n- [scsi] lpfc: Fix system crash when LPe16000 fails to initialize (Rob Evers) [769385]\n[2.6.18-303.el5]\n- [scsi] qla2xxx: Update FC-transport port_state translation matrix (Chad Dupuis) [765866]\n- [scsi] qla2xxx: Don't call alloc_fw_dump for ISP82XX (Chad Dupuis) [765866]\n- [scsi] qla2xxx: Remove qla2x00_wait_for_loop_ready function (Chad Dupuis) [765866]\n- [scsi] qla2xxx: Display FCP_CMND priority on update (Chad Dupuis) [765866]\n- [scsi] qla2xxx: Check for SCSI status on underruns (Chad Dupuis) [765866]\n- [scsi] qla4xxx: v5.02.04.02.05.08-d0 (Chad Dupuis) [769019]\n- [scsi] qla4xxx: clear the RISC interrupt bit during firmware init (Chad Dupuis) [769019]\n- [scsi] qla4xxx: v5.02.04.01.05.08-d0 (Chad Dupuis) [758762]\n- [scsi] qla4xxx: Fix panic due to incorrect tag_value_stride (Chad Dupuis) [758762]\n- [fs] xfs: implement ->dirty_inode to fix timestamp handling (Carlos Maiolino) [653215]\n- [net] drop_monitor: return -EAGAIN on duplicate state changes (Neil Horman) [688791]\n- [net] ipv6: make disable_ipv6 work (Weiping Pan) [760199]\n- [net] bnx2x: fix failure to bring link up on BCM57810 (Michal Schmidt) [751025]\n- [scsi] isci: link speeds default to gen2 (David Milburn) [768151]\n- [fs] jbd: fix race in buffer processing in commit code (Josef Bacik) [756643]\n- [s390] kernel: cpu hotplug vs missing pfault completion interrupt (Hendrik Brueckner) [753194]\n- [block] loop: Don't call loop_unplug on non-configured device (Veaceslav Falico) [617668]\n- [virt] xen/netback: Clear IFF_TX_SKB_SHARING flags (Neil Horman) [753173]\n- [scsi] sd: fix 32-on-64 block device ioctls (Paolo Bonzini) [752386] {CVE-2011-4127}\n- [md] dm: do not forward ioctls from LVs to the underlying devices (Paolo Bonzini) [752386] {CVE-2011-4127}\n- [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752386] {CVE-2011-4127}\n- [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752386] {CVE-2011-4127}\n[2.6.18-302.el5]\n- [redhat] configs: Include generic ppc64 opts on all ppc64 configs (Alexander Gordeev) [748426]\n- [fs] xfs: don't block on buffer read errors (Boris Ranto) [709223]\n- [fs] nfs: Display lookupcache option in /proc/mounts (Sachin Prabhu) [706305]\n- [net] bonding: Don't allow mode change via sysfs w/slaves present (Veaceslav Falico) [768208]\n- [net] be2net: Fix disabling multicast promiscuous mode (Ivan Vecera) [751998]\n- [net] be2net: Fix endian issue in RX filter command (Ivan Vecera) [751998]\n- [net] be2net: Changing MAC Address of a VF was broken (Ivan Vecera) [751998]\n- [net] be2net: don't create multiple rings in multi channel mode (Ivan Vecera) [751998]\n- [net] be2net: Making die temperature ioctl call async (Ivan Vecera) [751998]\n- [net] be2net: Fix Endian issues in response read log length field (Ivan Vecera) [751998]\n- [net] be2net: Change data type of on die temperature stat (Ivan Vecera) [751998]\n- [net] be2net: Add 60 second delay for dump on recovery from EEH (Ivan Vecera) [751998]\n- [net] be2net: Show newly flashed FW ver in ethtool (Ivan Vecera) [751998]\n- [net] be2net: increase FW update completion timeout (Ivan Vecera) [751998]\n- [net] be2net: Fix race in posting rx buffers (Ivan Vecera) [751998]\n- [net] be2net: Store vid from grp5 event instead of vlan_tag (Ivan Vecera) [751998]\n- [net] be2net: drop pkts that do not belong to the port (Ivan Vecera) [751998]\n- [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747946] {CVE-2011-3638}\n[2.6.18-301.el5]\n- [net] e1000e: Avoid wrong check on TX hang (Dean Nelson) [746272]\n- [net] tg3: Fix TSO loopback test (John Feeney) [755202]\n- [net] ipvs: Fix memory leak when using one packet scheduler (Thomas Graf) [757882]\n- [net] ipv6: Defer device init until valid qdisc specified (Neil Horman) [758736]\n- [block] nbd: prevent sock_xmit from attempting to use NULL socket (Jeff Moyer) [676491]\n- [net] tg3: Scale back code that modifies MRRS (John Feeney) [758882]\n- [fs] xfs: Fix memory corruption in xfs_readlink (Carlos Maiolino) [749160] {CVE-2011-4077}\n- [net] cxgb3: key cxgb3 driver to work based on NETIF_F_GRO (Neil Horman) [754709]\n- [net] cxgb3: fix vfree BUG halt in rcu calback (Neil Horman) [756410]\n- [net] ipv4: fix IN_DEV_ACCEPT_LOCAL() (Weiping Pan) [758993]\n- [misc] cpu: Fix APIC calibration issues on VMware (Prarit Bhargava) [743368]\n- [net] igb: Loopback functionality support for i350 devices (Stefan Assmann) [758059]\n[2.6.18-300.el5]\n- [pci] intel-iommu: Default to non-coherent for unattached domains (Don Dutile) [753924]\n- [scsi] bfa: update driver embedded firmware to 3.0.0.0 (Rob Evers) [752972]\n- [scsi] bnx2i: Fix endian on TTT for NOP out transmission (Mike Christie) [752626]\n- [input] evdev: Fix spin lock context in evdev_pass_event() (Don Zickus) [734900]\n- [net] bnx2x: Add new PHY BCM54616 (Michal Schmidt) [733889]\n- [scsi] ipr: add definitions for additional adapter (Steve Best) [753910]\n- [scsi] ipr: Fix BUG on adapter dump timeout (Steve Best) [753910]\n- [scsi] ipr: Add support to flash FPGA and flash back DRAM images (Steve Best) [753910]\n- [scsi] ipr: Stop reading adapter dump prematurely (Steve Best) [753910]\n- [char] rtc: fix reported IRQ rate for when HPET is enabled (Prarit Bhargava) [740299]\n- [block] cciss: add Smart Array 5i to the kdump blacklist (Tomas Henzl) [752690]\n- [scsi] qla4xxx: Update version number to V5.02.04.00.05.08-d0 (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Do not recover adapter if in FAILED state (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Fix duplicate targets in BIOS do not show up (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Fix rmmod kernel trace with ql4xdontresethba=1 (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Add ql4xmaxcmds Command Line Parameter (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Correct the locking mechanism (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Minidump implementation (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Device quiescent and loopback changes (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Add new FLT firmware region (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Prevent CPU lockups when ql4xdontresethba is set (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Updated the reset sequence for ISP82xx (Chad Dupuis) [714214]\n- [scsi] qla4xxx: set set_ddb_entry with correct dma buffer (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Reset retry_relogin_timer to trigger a relogin (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Update ddb_entry on fw_ddb_index changes (Chad Dupuis) [714214]\n- [scsi] qla4xxx: BFS issue when same target devices added twice (Chad Dupuis) [714214]\n- [scsi] qla4xxx: mark device missing in recover adapter (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Perform context resets on context failures (Chad Dupuis) [714214]\n- [scsi] qla4xxx: show hardware/firmware regs for more debug info (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Pass correct fw_ddb_index to abort_task (Chad Dupuis) [714214]\n- [scsi] qla4xxx: check command already completed when abort issued (Chad Dupuis) [714214]\n- [scsi] qla4xxx: Use os_target_id to identify a session (Chad Dupuis) [714214]\n- [fs] dcache: Fix dentry loop detection deadlock (David Howells) [717959]\n- [net] cxgb4: fix ability to disable tx cksum and change tso (Neil Horman) [754711]\n- [fs] nfs: when attempting dir open, fall back on normal lookup (Jeff Layton) [740162]\n- [fs] nfs: remove BUG() from encode_share_access() (Jeff Layton) [754901]\n- [fs] epoll: use up all the timeout (Jason Baron) [705138]\n- [s390] qdio: avoid race leading to stall if CQ is used (Hendrik Brueckner) [753193]\n- [scsi] libsas: disable scanning lun > 0 on ata devices (David Milburn) [749309]\n- [scsi] isci: atapi support (David Milburn) [749309]\n- [scsi] isci: initial sgpio write support (David Milburn) [743965]\n- [scsi] isci: fix sgpio register definitions (David Milburn) [743965]\n- [scsi] isci: export phy events via ->lldd_control_phy() (David Milburn) [747670]\n- [scsi] isci: port state should be set to stopping on last phy (David Milburn) [747670]\n- [scsi] isci: fix decode of DONE_CRC_ERR TC completion status (David Milburn) [747670]\n- [scsi] isci: SATA/STP I/O only returned in normal path to libsas (David Milburn) [747670]\n- [scsi] isci: fix support for large smp requests (David Milburn) [747670]\n- [scsi] isci: fix missed unlock in apc_agent_timeout() (David Milburn) [747670]\n- [scsi] isci: fix event-get pointer increment (David Milburn) [747670]\n- [scsi] isci: add version number (David Milburn) [747670]\n- [scsi] isci: dynamic interrupt coalescing (David Milburn) [747670]\n- [scsi] isci: fix sata response handling (David Milburn) [747670]\n- [scsi] isci: Leave requests alone if already terminating (David Milburn) [747670]\n- [misc] irq: Check for spurious IRQ only on disabled IRQs (Prarit Bhargava) [756412]\n- [net] sctp: Fix another race during accept/peeloff (Thomas Graf) [714870]\n- [net] bonding: change slave->speed from u16 to u32 (Weiping Pan) [747547]\n- [scsi] bnx2i: set PF_NOFREEZE in IO thread (Mike Christie) [753729]\n- [fs] hfs: add sanity check for file name length (Eric Sandeen) [755433] {CVE-2011-4330}\n- [fs] aio: remove upper bound on retries (Jeff Moyer) [753271]\n[2.6.18-299.el5]\n- [scsi] be2iscsi: Move driver Version to 4.1.239.0 (Mike Christie) [744343]\n- [scsi] be2iscsi: memset wrb for ring create (Mike Christie) [744343]\n- [scsi] be2iscsi: Fix for when task->sc was cleaned up earlier (Mike Christie) [744343]\n- [scsi] be2iscsi: Fix for wrong dmsg setting in wrb (Mike Christie) [744343]\n- [scsi] be2iscsi: Fix for kdump failure (Mike Christie) [744343]\n- [net] ethtool: Support large register dumps (Neil Horman) [753200]\n- [fs] proc: Fix select on /proc files without ->poll (David Howells) [751214]\n- [net] igb: bump version to reflect RHEL5.8 updates (Stefan Assmann) [754359]\n- [fs] dcache: Log ELOOP rather than creating a loop (David Howells) [717959]\n- [fs] dcache: Fix loop checks in d_materialise_unique (David Howells) [717959]\n- [fs] nfs: Ensure we mark inode as dirty if early exit from commit (Jeff Layton) [714020]\n- [scsi] qla2xxx: Update the 4G and 8G firmware to 5.06.03 (Chad Dupuis) [750362]\n- [x86] apic: ack all pending irqs when crashed/on kexec (hiro muneda) [742079]\n- [net] cxgb3: Fix VLAN over Jumbo frames (Neil Horman) [753053]\n- [net] cxgb3: Fix out of bounds index of adapter_info (Neil Horman) [753044]\n[2.6.18-298.el5]\n- [security] keys: Fix NULL deref in user-defined key type (David Howells) [751301] {CVE-2011-4110}\n- [fs] dlm: delayed reply message warning (David Teigland) [677413]\n- [virt] kvm: fix regression w/ 32 bit KVM clock (Rik van Riel) [731599 751742]\n- [net] bonding: update speed/duplex for NETDEV_CHANGE (Weiping Pan) [747547]\n[2.6.18-297.el5]\n- [scsi] megaraid_sas: add workaround for PERC5/1068 kdump panic (Tomas Henzl) [745964]\n- [fs] jbd/jbd2: validate sb->s_first in journal_get_superblock (Eryu Guan) [706810]\n- [net] tg3: Remove 5719 jumbo frames and TSO blocks (John Feeney) [743117]\n- [net] tg3: Break larger frags into 4k chunks for 5719 (John Feeney) [743117]\n- [net] tg3: Add tx BD budgeting code (John Feeney) [743117]\n- [net] tg3: Consolidate code that calls tg3_tx_set_bd() (John Feeney) [743117]\n- [net] tg3: Add partial fragment unmapping code (John Feeney) [743117]\n- [net] tg3: Generalize tg3_skb_error_unmap() (John Feeney) [743117]\n- [net] tg3: Simplify tx bd assignments (John Feeney) [743117]\n- [net] tg3: Reintroduce tg3_tx_ring_info (John Feeney) [743117]\n- [net] tg3: Add TSO loopback test (John Feeney) [743117]\n- [net] tg3: Cleanup transmit error path (John Feeney) [743117]\n- [scsi] lpfc: Update lpfc version for 8.2.0.108.2p driver release (Rob Evers) [747348]\n- [scsi] lpfc: Fix kernel build warnings (Rob Evers) [747348]\n- [scsi] lpfc: Fix crash when cfg_fcp_eq_count is zero (Rob Evers) [747348]\n- [scsi] lpfc: Fix COMMON_GET_CNTL_ATTR mbox cmd failure (Rob Evers) [747348]\n- [scsi] lpfc: Fix SLI4 device detecting physical port name (Rob Evers) [747348]\n- [scsi] lpfc: Fix reporting of firmware versions that contain an X (Rob Evers) [747348]\n- [scsi] lpfc: Fix kernel crash during boot with SLI4 card (Rob Evers) [747348]\n- [scsi] lpfc: Fixed RPI leaks in ELS protocol handling (Rob Evers) [747348]\n- [scsi] lpfc: Properly clean up EQ and CQ child lists (Rob Evers) [747348]\n- [scsi] lpfc: Fixed NPIV FDISC failure on SLI4 if-type 2 ports (Rob Evers) [747348]\n- [scsi] lpfc: Fixed failure to do IP reset on SLI4 error (Rob Evers) [747348]\n- [scsi] lpfc: Fixed fcp underrun reporting (Rob Evers) [747348]\n- [scsi] lpfc: Fix sysfs lists fabric name for disconnected port (Rob Evers) [747348]\n- [scsi] lpfc: change SLI_CONFIG mailbox cmd timeout to 300 seconds (Rob Evers) [747348]\n- [scsi] lpfc: Fix handling IP reset when PCI read return error (Rob Evers) [747348]\n- [scsi] lpfc: Fixed casting problem (Rob Evers) [747348]\n- [scsi] lpfc: Fix error code return for management API (Rob Evers) [747348]\n- [scsi] lpfc: Fix sli4 mailbox status code (Rob Evers) [747348]\n- [scsi] lpfc: Fixed incomplete scsi messages displayed (Rob Evers) [747348]\n- [net] igb: Fix for Alt MAC Address feature on 82580 and later (Stefan Assmann) [748792]\n- [net] igb: enable link power down (Stefan Assmann) [742514]\n- [net] netfilter: Search all chains if drop due to max conntrack (Thomas Graf) [713222]\n- [x86] hwmon: enable i5k_amb driver to get memory resource (Dean Nelson) [736032]\n- [xen] ia64: fix compile warning added by watchdog timers (Laszlo Ersek) [742880]\n[2.6.18-296.el5]\n- [net] bonding: Have bond_check_dev_link examine netif_running (Ivan Vecera) [736172]\n- [net] be2net: enable NETIF_F_LLTX and add own locking of Tx path (Ivan Vecera) [731806]\n- [net] be2net: fix multicast filter programming (Ivan Vecera) [731806]\n- [net] be2net: fix cmd-rx-filter not notifying MCC (Ivan Vecera) [731806]\n- [net] be2net: use RX_FILTER cmd to program multicast addresses (Ivan Vecera) [731806]\n- [fs] cifs: fix wrong buffer length returned by SendReceive (Sachin Prabhu) [720363]\n- [net] ipv6: allow DAD to be disabled (Jiri Benc) [709271]\n- [xen] Watchdog timers for domains (Laszlo Ersek) [742880]\n[2.6.18-295.el5]\n- [net] tg3: put back 5717_PLUS for 5719 and 5720 (John Feeney) [749866]\n- [s390] qdio: EQBS retry after CCQ 96 (Hendrik Brueckner) [749058]\n- [fs] nfs: re-add call to filemap_fdatawrite (David Jeffery) [748999]\n- [x86] Add missing CPU feature flags for AMD Bulldozer (Frank Arnold) [712517]\n- [usb] input/wacom: add support for Bamboo MTE-450A (Aristeu Rozanski) [710066]\n- [fs] gfs2: Add readahead to sequential directory traversal (Robert S Peterson) [681902]\n- [fs] gfs2: Cache dir hash table in a contiguous buffer (Robert S Peterson) [681902]\n[2.6.18-294.el5]\n- [misc] modsign: Clean up canonlist properly during sig verify (Jiri Olsa) [485173]\n- [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [731599]\n- [fs] epoll: fix integer overflow warning (Jason Baron) [705138]\n- [net] bonding: allow all slave speeds (Jiri Pirko) [699661]\n- [net] bonding: fix string comparison errors (Andy Gospodarek) [680332]\n- [fs] vfs: fix automount should ignore LOOKUP_FOLLOW (Ian Kent) [560103]\n- [fs] proc: fix oops on invalid /proc/\n/maps access (Johannes Weiner) [747699] {CVE-2011-3637}\n- [fs] file: do not kfree vmalloc'd file table arrays (Johannes Weiner) [738238]\n- [net] bnx2x: fix bad pointer arithmetic causing memory corruption (Michal Schmidt) [747579]\n- [net] bnx2x: restore bnx2x/cnic/bnx2i update (Jarod Wilson) [715383 715388 715604]\n- [misc] remove div_long_long_rem (Prarit Bhargava) [732614] {CVE-2011-3209}\n- [net] bridge: fix use after free in __br_deliver (Amerigo Wang) [703045] {CVE-2011-2942}\n[2.6.18-293.el5]\n- [redhat] configs: Increase the maximum allowed number of UART's (Mauro Carvalho Chehab) [684874]\n- [net] igb: add entropy support option (Stefan Assmann) [605703]\n- [net] bnx2x: revert bnx2x/cnic/bnx2i update (Jarod Wilson) [715383 715388 715604]\n- [virt] xen/netback: disable features not supported by netfront (Paolo Bonzini) [746225]\n- [fs] jbd: Fix forever sleeping process in do_get_write_access (Harshula Jayasuriya) [745345]\n- [fs] jbd2: Fix forever sleeping process in do_get_write_access (Harshula Jayasuriya) [745345]\n- [s390] crypto: Toleration for ap bus devices with device type 10 (Hendrik Brueckner) [744859]\n- [cpufreq] powernow-k8: add missing unregister_cpu_notifier (Prarit Bhargava) [743961]\n- [misc] cpu: make set_mtrr disable interrupts before sending IPI (Shyam Iyer) [739631]\n- [net] cxgb3: Update to latest upstream for rhel5.8 (Neil Horman) [717807]\n- [infiniband] cxgb3: backport upstream fixes for rhel5.8 (Neil Horman) [717433]\n- [net] mlx4: remove duplicate rounddown_pow_of_two (Jarod Wilson) [714232]\n- [x86] Fix suspend/resume on AMD IOMMUs (Matthew Garrett) [712296]\n- [acpi] Backport pm_qos support to rhel5 (Matthew Garrett) [691954]\n- [ipc] shm: add RSS and swap size information to /proc/sysvipc/shm (Jerome Marchand) [638652]\n- [ipc] shm: fix 32-bit truncation of segment sizes (Jerome Marchand) [638652]\n- [usb] host: slow down ehci ITD reuse (Don Zickus) [571737]\n- [usb] host: Fix EHCI ISO transfer bug (Don Zickus) [571737]\n- [usb] host: fix bug in ehci Iso scheduling (Don Zickus) [571737]\n- [usb] host: ehci completes high speed ISO URBs sooner (Don Zickus) [571737]\n- [xen] x86: introduce cpuid whitelist (Andrew Jones) [526862 711070]\n[2.6.18-292.el5]\n- [scsi] megaraid: fix FastPath and update to v5.40 (Tomas Henzl) [717698]\n- [net] netxen: Add pcie fw load perf drop workaround (Chad Dupuis) [714239]\n- [net] netxen: add vlan LRO support (Chad Dupuis) [714239]\n- [net] netxen: add fw version compatibility check (Chad Dupuis) [714239]\n- [net] netxen: Remove casts of void * (Chad Dupuis) [714239]\n- [net] netxen: fix race in skb->len access (Chad Dupuis) [714239]\n- [net] netxen: Remove unnecessary semicolons (Chad Dupuis) [714239]\n- [net] netxen: suppress false lro warning messages (Chad Dupuis) [714239]\n- [net] netxen: Fix common misspellings (Chad Dupuis) [714239]\n- [net] netxen: Add support for VLAN RX HW acceleration (Chad Dupuis) [714239]\n- [scsi] qla2xxx: Update the 4G and 8G firmware to 5.06.01 (Chad Dupuis) [714236]\n- [scsi] qla2xxx: Updated the driver version to 8.03.07.09.05.08-k. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: properly set the port number. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Check for marker IOCB during response queue processing. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Retrun sysfs error codes appropriate to conditions (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Handle MPI timeout indicated by AE8002 (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Use port number to compute nvram/vpd parameter offsets. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Change from irq to irqsave with host_lock (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Check for golden firmware and show version if available. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Issue mailbox command only when firmware hung bit is reset for ISP82xx. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Correct inadvertent loop state transitions during port-update handling. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Update to the beacon implementation. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Add support for ISP82xx to capture dump (minidump) on failure. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Check for marker IOCB during response queue processing. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Fix qla24xx revision check while enabling interrupts. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Check to see if a request has completed before calling qla2x00_block_error_handler() in the abort handler. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Acquire hardware lock while manipulating dsd list. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Double check for command completion if abort mailbox command fails. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Fix array out of bound warning. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Prevent CPU lockups when module param is set. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Provide method for updating I2C attached VPD. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Enable write permission to some debug related module parameters to be changed dynamically. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Implemented beacon on/off for ISP82XX. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Check alterante 'reason' code during GPSC status handling. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: During loopdown perform Diagnostic loopback. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Refactor call to qla2xxx_read_sfp for thermal temperature. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Unify the read/write sfp mailbox command routines (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Correct read sfp single byte mailbox register. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Clear complete initialization control block. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Allow an override of the registered maximum LUN. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Add host number in reset and quiescent message logs. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Correct buffer start in edc sysfs debug print. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Correction to sysfs edc interface. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Improve logging of exception conditions when creating NPIV ports. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Log if firmware fails to load from flash for ISP82xx. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Add test for valid loop id on fabric relogin. (Chad Dupuis) [714206]\n- [scsi] qla2xxx: Don't wait for active mailbox command completion when firmware is hung. (Chad Dupuis) [714206]\n- [misc] dcache: exclude new automount functions from kabi (Ian Kent) [560103]\n- [fs] autofs4: rename follow_down_one to follow_down for kabi (Ian Kent) [560103]\n- [fs] autofs4: rename d_managed to d_mounted to preserve kabi (Ian Kent) [560103]\n- [fs] vfs: remove LOOKUP_NO_AUTOMOUNT flag (Ian Kent) [560103]\n- [fs] vfs: Fix the remaining automounter semantics regressions (Ian Kent) [560103]\n- [fs] vfs: Add LOOKUP_AUTOMOUNT flag for pathname lookup (Ian Kent) [560103]\n- [fs] vfs: automount should ignore LOOKUP_FOLLOW (Ian Kent) [560103]\n- [fs] vfs: Fix automount for negative autofs dentries (Ian Kent) [560103]\n- [fs] vfs: Remove a further kludge from __do_follow_link (Ian Kent) [560103]\n- [fs] autofs4: bump version (Ian Kent) [560103]\n- [fs] autofs4: reinstate last used update on access (Ian Kent) [560103]\n- [fs] autofs4: add v4 pseudo direct mount support (Ian Kent) [560103]\n- [fs] autofs4: fix wait validation (Ian Kent) [560103]\n- [fs] autofs4: cleanup autofs4_free_ino (Ian Kent) [560103]\n- [fs] autofs4: cleanup dentry operations (Ian Kent) [560103]\n- [fs] autofs4: cleanup inode operations (Ian Kent) [560103]\n- [fs] autofs4: removed unused code (Ian Kent) [560103]\n- [fs] autofs4: add d_manage dentry operation (Ian Kent) [560103]\n- [fs] autofs4: add d_automount dentry operation (Ian Kent) [560103]\n- [fs] vfs: Make follow_down handle d_manage (Ian Kent) [560103]\n- [fs] vfs: Make d_mounted a more general field for special functs (Ian Kent) [560103]\n- [fs] vfs: Add AT_NO_AUTOMOUNT flag to suppress terminal automount (Ian Kent) [560103]\n- [fs] cifs: Use d_automount rather than abusing follow_link (Ian Kent) [560103]\n- [fs] nfs: Use d_automount rather than abusing follow_link (Ian Kent) [560103]\n- [fs] namei: Add dentry op for automount, don't use follow_link (Ian Kent) [560103]\n- [fs] namei: rename struct path to vfs_path (Ian Kent) [560103]\n- [fs] autofs4: rename dentry to expiring in _lookup_expiring (Ian Kent) [560103]\n- [fs] autofs4: rename dentry to active in autofs4_lookup_active() (Ian Kent) [560103]\n- [fs] autofs4: eliminate d_unhashed in path walk checks (Ian Kent) [560103]\n- [fs] autofs4: cleanup active and expire lookup (Ian Kent) [560103]\n- [fs] autofs4: rename unhashed to active in autofs4_lookup() (Ian Kent) [560103]\n- [fs] autofs4: use autofs_info for pending flag (Ian Kent) [560103]\n- [fs] autofs4: use helper for need mount check (Ian Kent) [560103]\n- [fs] autofs4: use helpers for expiring list (Ian Kent) [560103]\n- [fs] autofs4: use helpers for active list handling (Ian Kent) [560103]\n[2.6.18-291.el5]\n- [fs] nfs: don't redirty inodes with no outstanding commits (Jeff Layton) [739665]\n- [edac] i7core_edac: Init memory name with cpu, channel, bank (Mauro Carvalho Chehab) [731824]\n- [message] mptsas: upgrade version string to 3.04.20rh (Tomas Henzl) [717707]\n- [message] mptsas: Fix device offline from aggressive HBA reset (Tomas Henzl) [717707]\n- [message] mptsas: Better handling of DEAD IOC PCI-E Link down err (Tomas Henzl) [717707]\n- [message] mptsas: Set max_sector count from module parameter (Tomas Henzl) [717707]\n- [message] mptsas: check SILI bit in READ_6 CDB for DATA UNDERRUN (Tomas Henzl) [717707]\n- [message] mptsas: Fix annoying warning (Tomas Henzl) [717707]\n- [message] mptsas: Remove debug print from mptscsih_qcmd() (Tomas Henzl) [717707]\n- [message] mptsas: do not check serial_number in the abort handler (Tomas Henzl) [717707]\n- [scsi] lpfc: Update version for 8.2.0.108.1p driver release (Rob Evers) [714290]\n- [scsi] lpfc: Fix stall when fw reset to port without privs (Rob Evers) [714290]\n- [scsi] lpfc: Fix uninit local var portstat_reg compiler warning (Rob Evers) [714290]\n- [scsi] lpfc: Fix request fw support for little endian systems (Rob Evers) [714290]\n- [scsi] lpfc: Fix default adapter name for the OCe15100 (Rob Evers) [714290]\n- [scsi] lpfc: Fix proper error code return value for hba resets (Rob Evers) [714290]\n- [scsi] lpfc: Fix cable pull failure on intf type 2 SLI-4 adapters (Rob Evers) [714290]\n- [scsi] lpfc: Fix omission of fcf priority failover sysfs entry (Rob Evers) [714290]\n- [scsi] lpfc: Fix SLI port recovery error attention with RN set (Rob Evers) [714290]\n- [scsi] lpfc: Fix crashes when unsolicted ELS ECHO_CMD received (Rob Evers) [714290]\n- [scsi] lpfc: Fix direct connect not coming up for SLI4 FC ports (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.108 driver release (Rob Evers) [714290]\n- [scsi] lpfc: Fix fw update to match new firmware image format (Rob Evers) [714290]\n- [scsi] lpfc: Fix SLI4 CT handling for sequences > 4K (Rob Evers) [714290]\n- [scsi] lpfc: Fixed handling of unsolicited frames for vports (Rob Evers) [714290]\n- [scsi] lpfc: Fixed crash when aborting els IOs (Rob Evers) [714290]\n- [scsi] lpfc: Fixed handling of CVL for vports (Rob Evers) [714290]\n- [scsi] lpfc: Fix up CT and oxid/rxid for unsol rcv frames (Rob Evers) [714290]\n- [scsi] lpfc: Fix duplicate log numbers caused by merge (Rob Evers) [714290]\n- [scsi] lpfc: Fixed compiler warning with file_operations struct (Rob Evers) [714290]\n- [scsi] lpfc: Added fcf priority record selection for fcf failover (Rob Evers) [714290]\n- [scsi] lpfc: Fix excess memory on stack compiler warning (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.107 driver release (Rob Evers) [714290]\n- [scsi] lpfc: Fix listhbas stall w/remote initiators in zone (Rob Evers) [714290]\n- [scsi] lpfc: Fix not building in debugfs if CONFIG_DEBUG_FS=y (Rob Evers) [714290]\n- [scsi] lpfc: Fix FC/FCoE Async Receive CQE not scaling (Rob Evers) [714290]\n- [scsi] lpfc: iDiag added SLI4 PCI BAR reigster access methods (Rob Evers) [714290]\n- [scsi] lpfc: iDiag cmd structure indexing by using macro defines (Rob Evers) [714290]\n- [scsi] lpfc: iDiag multi-buffer mbox command capture and dump ext (Rob Evers) [714290]\n- [scsi] lpfc: SLI4 loopback test and link diagnostic support (Rob Evers) [714290]\n- [scsi] lpfc: FLOGI payload has Multiple IDs on enable_npiv clear (Rob Evers) [714290]\n- [scsi] lpfc: log when writeable parameters are changed (Rob Evers) [714290]\n- [scsi] lpfc: Fix ASIC SYSFS failed multi-buffer fw download (Rob Evers) [714290]\n- [scsi] lpfc: Fix mbox cmd release memory leak (Rob Evers) [714290]\n- [scsi] lpfc: merge debugfs ASIC extents info into iDiag framework (Rob Evers) [714290]\n- [scsi] lpfc: wait for port status reg for ready after fw reset (Rob Evers) [714290]\n- [scsi] lpfc: Consolidated duplicating macro definitions (Rob Evers) [714290]\n- [scsi] lpfc: Remove sharp define from codebase (Rob Evers) [714290]\n- [scsi] lpfc: Implement debugfs support for resource extents (Rob Evers) [714290]\n- [scsi] lpfc: iDiag r/w bitset/clear access to new ASIC ctl regs (Rob Evers) [714290]\n- [scsi] lpfc: Fix mbox command failure with multiple large buffers (Rob Evers) [714290]\n- [scsi] lpfc: iDiag endian explicit dumping (Rob Evers) [714290]\n- [scsi] lpfc: iDiag debugfs method for dumping mbox from SLI4 (Rob Evers) [714290]\n- [scsi] lpfc: request PCI reset to support EEH recover on P7 (Rob Evers) [714290]\n- [scsi] lpfc: iDiag debugfs inline mbox cmd capture and dump (Rob Evers) [714290]\n- [scsi] lpfc: Fix enabling of PCIe AER (Rob Evers) [714290]\n- [scsi] lpfc: Fix EEH recovery to save state after SLI4 PCI reset (Rob Evers) [714290]\n- [scsi] lpfc: INIT_LIST_HEAD to lpfc_mgmt_issue_sli_cfg_ext_mbox (Rob Evers) [714290]\n- [scsi] lpfc: new ASIC mgmt pass-through mbox multi-buffer ext (Rob Evers) [714290]\n- [scsi] lpfc: Fix FC Port swap on SLI3 adapters (Rob Evers) [714290]\n- [scsi] lpfc: Fix Virtual link loss during failover test (Rob Evers) [714290]\n- [scsi] lpfc: Fix vpi initialization in lpfc_init_vfi (Rob Evers) [714290]\n- [scsi] lpfc: show 16 Gbit in FC host supported_speeds sysfs entry (Rob Evers) [714290]\n- [scsi] lpfc: support reseting firmware and device from sysfs entry (Rob Evers) [714290]\n- [scsi] lpfc: support firmware dump obj file to flash filesystem (Rob Evers) [714290]\n- [scsi] lpfc: Add firmware upgrade code to driver (Rob Evers) [714290]\n- [scsi] lpfc: add delay following IF_TYPE_2 function reset (Rob Evers) [714290]\n- [scsi] lpfc: Fragment ELS & SCSI SGE lists via Extent regions (Rob Evers) [714290]\n- [scsi] lpfc: Fixed potential missed SLI4 init failure conditions (Rob Evers) [714290]\n- [scsi] lpfc: Add model names for new hardware (Rob Evers) [714290]\n- [scsi] lpfc: Set max SGE size to 0x80000000 where possible (Rob Evers) [714290]\n- [scsi] lpfc: Fix discovery failure in private loop (Rob Evers) [714290]\n- [scsi] lpfc: Fix SLI3 and non-NPIV crashes with new extent code (Rob Evers) [714290]\n- [scsi] lpfc: Refactor lpfc_sli4_alloc_extent some more (Rob Evers) [714290]\n- [scsi] lpfc: Restore mbox can fail as nonerror functionality (Rob Evers) [714290]\n- [scsi] lpfc: Fix build warnings in 8.2.0.102 (Rob Evers) [714290]\n- [scsi] lpfc: Use HDRR bit to determine if RPI headers are needed (Rob Evers) [714290]\n- [scsi] lpfc: Don't post RPI Headers if port supports extents (Rob Evers) [714290]\n- [scsi] lpfc: ASIC mgmt multi-buffer mbox passthrough support (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.102 driver release (Rob Evers) [714290]\n- [scsi] lpfc: Add MAILBOX_MGMT_MAX define (Rob Evers) [714290]\n- [scsi] lpfc: Refactor code in lpfc_sli4_alloc_extent (Rob Evers) [714290]\n- [scsi] lpfc: start new ASIC device management support work (Rob Evers) [714290]\n- [scsi] lpfc: Fix port capabilities and get parameters mbox calls (Rob Evers) [714290]\n- [scsi] lpfc: Fix SLI2 crashes with new extent code (Rob Evers) [714290]\n- [scsi] lpfc: Fix mbox processing to not overwrite status codes (Rob Evers) [714290]\n- [scsi] lpfc: enumerate members starting from none zero value (Rob Evers) [714290]\n- [scsi] lpfc: Remove workaround for extents endian issue (Rob Evers) [714290]\n- [scsi] lpfc: Call correct mbox cleanup routine after extent alloc (Rob Evers) [714290]\n- [scsi] lpfc: extent block list cleanup and free memory resources (Rob Evers) [714290]\n- [scsi] lpfc: Fix memory leak in extent block lists (Rob Evers) [714290]\n- [scsi] lpfc: Modified variables for XRIs to be unsigned variable (Rob Evers) [714290]\n- [scsi] lpfc: support for nonembedded Extent mailbox IOCTLs (Rob Evers) [714290]\n- [scsi] lpfc: Fixed compilation error/warning in sli code (Rob Evers) [714290]\n- [scsi] lpfc: Rework SLI4 Extents code (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.101 driver release (Rob Evers) [714290]\n- [scsi] lpfc: Fixed mask size for the wq_id mask (Rob Evers) [714290]\n- [scsi] lpfc: Fix Port Error detected during POST (Rob Evers) [714290]\n- [scsi] lpfc: Apply dropped patch from initial new ASIC bring up (Rob Evers) [714290]\n- [scsi] lpfc: Rework SLI4 Extents code (Rob Evers) [714290]\n- [scsi] lpfc: Reorganize CQ and EQ usage to comply with SLI4 Specs (Rob Evers) [714290]\n- [scsi] lpfc: Fix KERN levels on log messages 3008, 2903, 0383 (Rob Evers) [714290]\n- [scsi] lpfc: Initial checkin of SLI4 Extents code (Rob Evers) [714290]\n- [scsi] lpfc: Fix ASIC mbox queue id collision with work queue id (Rob Evers) [714290]\n- [scsi] lpfc: work on systems with Page Size Larger than 4k (Rob Evers) [714290]\n- [scsi] lpfc: set constant sysfs passthrough mbox cmd maximum size (Rob Evers) [714290]\n- [scsi] lpfc: Fix FCFI incorrect on received unsolicited frames (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.100 driver release (Rob Evers) [714290]\n- [scsi] lpfc: Add LOG_ELS message to NPIV LOGO (Rob Evers) [714290]\n- [scsi] lpfc: move multi-buffer macros into shared IOCTL header (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.99 driver release (Rob Evers) [714290]\n- [scsi] lpfc: Fix build warning in debugfs code (Rob Evers) [714290]\n- [scsi] lpfc: iDiag debugfs SLI4 doorbell reigster access methods (Rob Evers) [714290]\n- [scsi] lpfc: Fix RQ_CREATE version 1 fails (Rob Evers) [714290]\n- [scsi] lpfc: Add Temporary RPI field to the ELS request WQE (Rob Evers) [714290]\n- [scsi] lpfc: Allow SLI4 with FCOE_MODE not set on new FC adapters (Rob Evers) [714290]\n- [scsi] lpfc: only look at BAR2 or BAR4 only for if_type 0 (Rob Evers) [714290]\n- [scsi] lpfc: iDiag debugfs SLI4 display index info in decimal (Rob Evers) [714290]\n- [scsi] lpfc: iDiag debugfs SLI4 device queue entry access methods (Rob Evers) [714290]\n- [scsi] lpfc: Update copyright date for all changed files (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.98 driver release (Rob Evers) [714290]\n- [scsi] lpfc: Fixed the compiler warning in current code (Rob Evers) [714290]\n- [scsi] lpfc: handle PCI Link drop detection failure (Rob Evers) [714290]\n- [scsi] lpfc: Add selective reset jump table entry (Rob Evers) [714290]\n- [scsi] lpfc: Update version for 8.2.0.97 driver release (Rob Evers) [714290]\n- [scsi] lpfc: lower stack use in lpfc_fc_frame_check (Rob Evers) [714290]\n- [scsi] lpfc: fix comment typo diable -> disable (Rob Evers) [714290]\n- [scsi] lpfc: fix comment/printk typos (Rob Evers) [714290]\n- [scsi] lpfc: Add new Queue create Mailbox versions for new ASIC (Rob Evers) [714290]\n- [scsi] lpfc: Place LPFC driver module parameters in sysfs (Rob Evers) [714290]\n- [scsi] lpfc: Fix compile warning for iDiag (Rob Evers) [714290]\n- [scsi] lpfc: Performance Hints support (Rob Evers) [714290]\n- [scsi] lpfc: Add new driver interfaces for encryption products (Rob Evers) [714290]\n- [scsi] lpfc: iDiag driver support debugfs queue information get (Rob Evers) [714290]\n- [scsi] lpfc: iDiag debugfs PCI cfg reg bits set/clear methods (Rob Evers) [714290]\n- [scsi] lpfc: iDiag debugfs framework and r/w PCI cfg space regs (Rob Evers) [714290]\n- [block] cciss: bump driver version (Tomas Henzl) [714129]\n- [block] cciss: need to delay after a PCI Power Management reset (Tomas Henzl) [714129]\n- [block] cciss: auto engage scsi susbsystem (Tomas Henzl) [714129]\n- [block] cciss: store pdev in hba struct (Tomas Henzl) [714129]\n- [block] cciss: use consistent variable names (Tomas Henzl) [714129]\n- [block] cciss: add a commandline switch for simple mode (Tomas Henzl) [714129]\n- [fs] proc: close race with exec in mem_read() (Johannes Weiner) [692042] {CVE-2011-1020}\n- [mm] implement access_remote_vm (Johannes Weiner) [692042] {CVE-2011-1020}\n- [mm] factor out main logic of access_process_vm (Johannes Weiner) [692042] {CVE-2011-1020}\n- [mm] use mm_struct to resolve gate vma's in __get_user_pages (Johannes Weiner) [692042] {CVE-2011-1020}\n- [mm] make in_gate_area take mm_struct instead of a task_struct (Johannes Weiner) [692042] {CVE-2011-1020}\n- [mm] make get_gate_vma take mm_struct instead of task_struct (Johannes Weiner) [692042] {CVE-2011-1020}\n- [x86_64] mark assoc mm when running task in 32 bit compat mode (Johannes Weiner) [692042] {CVE-2011-1020}\n- [misc] sched: add ctx tag to mm running task in ia32 compat mode (Johannes Weiner) [692042] {CVE-2011-1020}\n- [fs] proc: require the target to be tracable (or yourself) (Johannes Weiner) [692042] {CVE-2011-1020}\n- [fs] proc: close race in /proc/*/environ (Johannes Weiner) [692042] {CVE-2011-1020}\n- [fs] proc: report errors in /proc/*/*map* sanely (Johannes Weiner) [692042] {CVE-2011-1020}\n- [fs] proc: shift down_read(mmap_sem) to the caller (Johannes Weiner) [692042] {CVE-2011-1020}\n- [fs] detect exec transition phase with new mm but old creds (Johannes Weiner) [692042] {CVE-2011-1020}\n- [net] tg3: call netif_carrier_off to initialize operstate value (John Feeney) [635982]\n- [net] tg3: Update to plus (John Feeney) [715409]\n- [net] tg3: Update to 3.119 (John Feeney) [715409]\n- [net] tg3: Update to 3.118 (John Feeney) [683393 699545]\n- [net] tg3: Update to 3.117 (John Feeney) [715409]\n- [xen] make test_assign_device domctl dependent on intremap hw (Laszlo Ersek) [740203]\n- [xen] Propagate target dom within XEN_DOMCTL_test_assign_device (Laszlo Ersek) [740203]\n[2.6.18-290.el5]\n- [net] e1000: don't enable dma rx until after dma address setup (Dean Nelson) [714318]\n- [net] e1000: save skb counts in TX to avoid cache misses (Dean Nelson) [714318 742124]\n- [net] e1000: Fix driver to be used on PA RISC C8000 workstations (Dean Nelson) [714318]\n- [net] e1000: repair missing flush operations (Dean Nelson) [714318]\n- [net] e1000: always do e1000_check_for_link on e1000_ce4100 MACs (Dean Nelson) [714318]\n- [scsi] be2iscsi: Add pci_disable device (Mike Christie) [714292]\n- [scsi] be2iscsi: Adding a shutdown Routine (Mike Christie) [713816 714292]\n- [scsi] be2iscsi: Fix /proc/interrupts problem (Mike Christie) [714292]\n- [scsi] be2iscsi: remove host and session casts (Mike Christie) [714292]\n- [scsi] be2iscsi: Use struct scsi_lun in iscsi structs (Mike Christie) [714292]\n- [scsi] be2iscsi: fix chip cleanup (Mike Christie) [714292]\n- [scsi] be2iscsi: fix boot hang due to interrupts not rearmed (Mike Christie) [714292]\n- [scsi] be2iscsi: Fix for proper setting of FW (Mike Christie) [714292]\n- [scsi] be2iscsi: Set a timeout to FW (Mike Christie) [714292]\n- [scsi] be2iscsi: remove extra semicolons (Mike Christie) [714292]\n- [scsi] be2iscsi: Fix common misspellings (Mike Christie) [714292]\n- [scsi] be2iscsi: tmp revert Fix MSIX interrupt names fix (Mike Christie) [714292]\n- [infiniband] cxgb4: Fail RDMA initialization on unsupported cards (Steve Best) [713943]\n- [infiniband] cxgb4: Couple of abort fixes (Steve Best) [713943]\n- [infiniband] cxgb4: Don't truncate MR lengths (Steve Best) [713943]\n- [infiniband] cxgb4: Don't exceed hw IQ depth limit for user CQs (Steve Best) [713943]\n- [hwmon] lm78: Make ISA interface depend on CONFIG_ISA (Dean Nelson) [713815]\n- [hwmon] lm78: Avoid forward declarations (Dean Nelson) [713815]\n- [hwmon] lm78: Stop abusing struct i2c_client for ISA devices (Dean Nelson) [713815]\n- [hwmon] lm78: Detect alias chips (Dean Nelson) [713815]\n- [hwmon] don't build drivers for ppc that touch ISA addresses (Dean Nelson) [713815]\n- [char] CONFIG_TELCLOCK depends on X86 (Dean Nelson) [713815]\n- [misc] add oprofile support for Sandy Bridge (John Villalovos) [713666]\n- [net] ixgbe: update to upstream version 3.4.8-k (Andy Gospodarek) [713110 714013 714314]\n- [net] e1000e: fix WoL on 82578DM and 82567V3 (Andy Gospodarek) [712773]\n- [fs] gfs2: Call gfs2_meta_wipe for directory hash blocks (Abhijith Das) [706616]\n- [net] bonding: resolve failover problems related to jiffy wrap (Andy Gospodarek) [693258]\n- [fs] nfs: Don't call iput holding nfs_access_cache_shrinker lock (Steve Dickson) [585935]\n- [block] improve detail in I/O error messages (Mike Snitzer) [516170]\n- [md] dm-mpath: propagate target errors immediately (Mike Snitzer) [516170]\n- [scsi] Correctly handle thin provisioning write error (Mike Snitzer) [516170]\n- [md] dm-mpath: sync pushback code with upstream (Mike Snitzer) [516170]\n- [scsi] Add detailed SCSI I/O errors (Mike Snitzer) [516170]\n- [scsi] Fix sense key MEDIUM ERROR processing and retry (Mike Snitzer) [516170]\n- [scsi] fix error propagation (Mike Snitzer) [516170]\n- [scsi] fix recovered error handling (Mike Snitzer) [516170]\n- [scsi] simplify scsi_io_completion() (Mike Snitzer) [516170]\n- [scsi] fix barrier failure and error propagation issues (Mike Snitzer) [516170]\n[2.6.18-289.el5]\n- [scsi] libsas: amend device gone notification in sas_deform_port (David Milburn) [742356]\n- [scsi] libsas: fix up device gone notification in sas_deform_port (David Milburn) [742356]\n- [scsi] libsas: fix loopback topology bug during discovery (David Milburn) [742356]\n- [scsi] libsas: fix SATA NCQ error (David Milburn) [742356]\n- [scsi] libsas: fix ATAPI check condition termination (David Milburn) [742356]\n- [net] fix low throughput when using vlan over bonding (Flavio Leitner) [742318]\n- [net] core/netpoll: clean skb->next before pushing it down (Flavio Leitner) [741374]\n- [net] sfc: Use MCDI RX_BAD_FCS_PKTS count as MAC rx_bad count (Michal Schmidt) [739077]\n- [md] raid5: fix raid6 resync corruption bug (Doug Ledford) [738984]\n- [scsi] scsi_lib: pause between error retries (Rob Evers) [736809]\n- [md] return an error code when we don't fail a drive (Doug Ledford) [736697]\n- [fs] nfs: update nfs4_fattr_bitmap_maxsz (Steve Dickson) [735477]\n- [net] ipv6: fix refcnt problem related to POSTDAD state (Weiping Pan) [723411]\n- [net] bnx2x: update FW to 7.0.23 (Michal Schmidt) [715383 715388 715604]\n- [scsi] bnx2i: driver update for 5.8 (Michal Schmidt) [715383 715388 715604]\n- [net] cnic: driver update for 5.8, part 2 (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x: fix undesired VLAN stripping (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x: driver update for 5.8, part 3 (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x: 57712 parity handling (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x, cnic, bnx2i: New 7.0 Firmware (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x: driver update for 5.8, part 2 (Michal Schmidt) [715383 715388 715604]\n- [net] cnic: driver update for 5.8, part 1 (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x, cnic: Disable iSCSI if DCBX negotiation succeeds (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x: driver update for 5.8, part 1 (Michal Schmidt) [715383 715388 715604]\n- [net] bnx2x: temporarily revert BCM57710 bringup fix (Michal Schmidt) [715383 715388 715604]\n- [misc] ethtool: Add 20G bit definitions (Michal Schmidt) [715383 715388 715604]\ninclude (Dean Nelson) [714318]\n- [net] ixgbevf: update to upstream version 2.1.0-k (Andy Gospodarek) [714317]\n- [net] e1000e: update to upstream version 1.4.4 (Andy Gospodarek) [714315]\n- [net] bna: Multiple Definition and Interface Setup Fix (Ivan Vecera) [714019]\n- [net] bna: Driver Version changed to 3.0.2.2 (Ivan Vecera) [714019]\n- [net] bna: Add Callback to Fix RXQ Stop (Ivan Vecera) [714019]\n- [net] bna: PLL Init Fix and Add Stats Attributes (Ivan Vecera) [714019]\n- [net] bna: Brocade 1860 HW Enablement (Ivan Vecera) [714019]\n- [net] bna: new firmware for new hardware (Ivan Vecera) [714019]\n- [net] bna: Implement FW Download for New HW (Ivan Vecera) [714019]\n- [net] bna: Capability Map and MFG Block Changes for New HW (Ivan Vecera) [714019]\n- [net] bna: Brocade 1860 IOC PLL, Reg Defs and ASIC Mode Changes (Ivan Vecera) [714019]\n- [net] bna: PCI Probe Conf Lock Fix (Ivan Vecera) [714019]\n- [net] bna: Semaphore Lock Fix (Ivan Vecera) [714019]\n- [net] bna: Set Ring Param Fix (Ivan Vecera) [714019]\n- [net] bna: Eliminate Small Race Condition Window in RX Path (Ivan Vecera) [714019]\n- [net] bna: make function tables cont (Ivan Vecera) [714019]\n- [net] bna: Driver Version changed to 3.0.2.1 (Ivan Vecera) [714019]\n- [net] bna: MBOX IRQ Flag Check after Locking (Ivan Vecera) [714019]\n- [net] bna: Initialization and Locking Fix (Ivan Vecera) [714019]\n- [net] bna: Ethtool Enhancements and Fix (Ivan Vecera) [714019]\n- [net] bna: Async Mode Tx Rx Init Fix (Ivan Vecera) [714019]\n- [net] bna: Formatting and Code Cleanup (Ivan Vecera) [714019]\n- [net] bna: TX Path and RX Path Changes (Ivan Vecera) [714019]\n- [net] bna: Interrupt Polling and NAPI Init Changes (Ivan Vecera) [714019]\n- [net] bna: PCI Probe Fix (Ivan Vecera) [714019]\n- [net] bna: Naming Change and Minor Macro Fix (Ivan Vecera) [714019]\n- [net] bna: off by one in bfa_msgq_rspq_pi_update() (Ivan Vecera) [714019]\n- [net] bna: unlock on error path in pnad_pci_probe() (Ivan Vecera) [714019]\n- [net] bna: Driver Version changed to 3.0.2.0 (Ivan Vecera) [714019]\n- [net] bna: Remove Obsolete Files (Ivan Vecera) [714019]\n- [net] bna: Remove Unused Code (Ivan Vecera) [714019]\n- [net] bna: firmware update for new (v3) bna driver (Ivan Vecera) [714019]\n- [net] bna: ENET and Tx Rx Redesign Enablement (Ivan Vecera) [714019]\n- [net] bna: Add New HW Defs (Ivan Vecera) [714019]\n- [net] bna: Tx and Rx Redesign (Ivan Vecera) [714019]\n- [net] bna: Introduce ENET as New Driver and FW Interface (Ivan Vecera) [714019]\n- [net] bna: MSGQ Implementation (Ivan Vecera) [714019]\n- [net] bna: Remove Obsolete File bfi_ctreg.h (Ivan Vecera) [714019]\n- [net] bna: Consolidated HW Registers for Supported HWs (Ivan Vecera) [714019]\n- [net] bna: Remove get_regs Ethtool Support (Ivan Vecera) [714019]\n- [net] bna: HW Interface Init Update (Ivan Vecera) [714019]\n- [net] bna: Remove Unnecessary CNA Check (Ivan Vecera) [714019]\n- [net] bna: Header File Consolidation (Ivan Vecera) [714019]\n- [net] bna: HW Error Counter Fix (Ivan Vecera) [714019]\n- [net] bna: Add HW Semaphore Unlock Logic (Ivan Vecera) [714019]\n- [net] bna: IOC Event Name Change (Ivan Vecera) [714019]\n- [net] bna: Mboxq Flush When IOC Disabled (Ivan Vecera) [714019]\n- [net] bna: Minor IRQ Index and Definition Change (Ivan Vecera) [714019]\n- [net] bna: State Machine Fault Handling Cleanup (Ivan Vecera) [714019]\n- [net] bna: IOC Event Notification Enhancement (Ivan Vecera) [714019]\n- [net] bna: CheckPatch Cleanup (Ivan Vecera) [714019]\n- [net] bna: Print Driver Version (Ivan Vecera) [714019]\n- [net] bna: Separate irq type flags from request_irq variable (Ivan Vecera) [714019]\n- [net] bna: use netdev_alloc_skb_ip_align() (Ivan Vecera) [714019]\n- [net] bna: Fix bad kzalloc call with interrupts disabled (Ivan Vecera) [714019]\n- [net] bna: Remove casts of void * (Ivan Vecera) [714019]\n- [net] bna: fix warning bfa_ioc_smem_pgoff defined but not used (Ivan Vecera) [714019]\n- [net] bna: Fix set-but-unused variables (Ivan Vecera) [714019]\n- [net] bna: convert to hw_features (Ivan Vecera) [714019]\n- [scsi] bfa: update firmware to version 3.0.2.2 (Rob Evers) [714017]\n- [scsi] bfa: Update the driver version to 3.0.2.2 (Rob Evers) [714017]\n- [scsi] bfa: Add support to store driver configuration in flash (Rob Evers) [714017]\n- [scsi] bfa: Added support to configure QOS and collect stats (Rob Evers) [714017]\n- [scsi] bfa: Added support to collect and reset fcport stats (Rob Evers) [714017]\n- [scsi] bfa: Add support for IO profiling (Rob Evers) [714017]\n- [scsi] bfa: Check supported speed based on port mode (Rob Evers) [714017]\n- [scsi] bfa: Update RME interrupt handling (Rob Evers) [714017]\n- [scsi] bfa: Add FC-transport Async Event Notification support (Rob Evers) [714017]\n- [scsi] bfa: Update the driver version to 3.0.2.1 (Rob Evers) [714017]\n- [scsi] bfa: Driver enhancements (Rob Evers) [714017]\n- [scsi] bfa: Added support to query PHY (Rob Evers) [714017]\n- [scsi] bfa: Added HBA diagnostics support (Rob Evers) [714017]\n- [scsi] bfa: Added support for flash configuration (Rob Evers) [714017]\n- [scsi] bfa: Added support to obtain SFP info (Rob Evers) [714017]\n- [scsi] bfa: Added support for CEE info and stats query (Rob Evers) [714017]\n- [scsi] bfa: Add IOCFC enable cbfn and stats changes (Rob Evers) [714017]\n- [scsi] bfa: FCS bug fixes (Rob Evers) [714017]\n- [scsi] bfa: DMA memory allocation enhancement (Rob Evers) [714017]\n- [scsi] bfa: Brocade-1860 Fabric Adapter vHBA support (Rob Evers) [714017]\n- [scsi] bfa: Brocade-1860 Fabric Adapter PLL init fixes (Rob Evers) [714017]\n- [scsi] bfa: Added Fabric Assigned Address(FAA) support (Rob Evers) [714017]\n- [scsi] bfa: IOC bug fixes (Rob Evers) [714017]\n- [scsi] bfa: Enable ASIC block configuration and query (Rob Evers) [714017]\n- [scsi] bfa: Update the driver version to 3.0.2.0 (Rob Evers) [714017]\n- [scsi] bfa: Driver initialization and model description fix (Rob Evers) [714017]\n- [scsi] bfa: Enhancement for fcpim and IO tag handling (Rob Evers) [714017]\n- [scsi] bfa: FC credit recovery and misc bug fixes (Rob Evers) [714017]\n- [scsi] bfa: 1860 Adapter 16Gbs support and flash controller fixes (Rob Evers) [714017]\n- [scsi] bfa: IOC and PLL init changes for Brocade-1860 Adapter (Rob Evers) [714017]\n- [scsi] bfa: support vport disable and enable operations (Rob Evers) [714017]\n- [scsi] bfa: Brocade-1860 Fabric Adapter Hardware Enablement (Rob Evers) [714017]\n- [scsi] bfa: Add pbc port disable check and fix LPS message name (Rob Evers) [714017]\n- [scsi] bfa: Introduce IOC event notification mechanism (Rob Evers) [714017]\n- [scsi] bfa: add generic address len pair for DMA memory chunk (Rob Evers) [714017]\n- [scsi] bfa: Move debugfs initialization before bfa init (Rob Evers) [714017]\n- [net] cxgb4: driver update for RHEL5.8 (Neil Horman) [713905]\n- [net] enic: update driver to version 2.1.1.24 (Stefan Assmann) [713536]\n- [edac] i7300_edac: Fix error cleanup logic (Mauro Carvalho Chehab) [712948]\n- [usb] input/hid: backport hidraw support (Aristeu Rozanski) [705453]\n- [fs] eventpoll: fix epoll_wait overly constraining wait times (Jason Baron) [705138]\n- [md] update superblocks properly when adding a spare (Doug Ledford) [668529]\n- [scsi] Fix out of spec CD-ROM problem with media change (Don Zickus) [664653]\n- [net] sctp: encode PROTOCOL VIOLATION error cause correctly (Thomas Graf) [636828]\n- [xen] vmx: Print advanced features during boot (Paolo Bonzini) [712440]\n[2.6.18-288.el5]\n- [scsi] mpt2sas: Bump version 09.100.00.00 (Tomas Henzl) [717581]\n- [scsi] mpt2sas: add missing mpt2sas_base_detach to scsih_remove (Tomas Henzl) [717581]\n- [scsi] mpt2sas: fix WarpDrive Infinite command retries on bad cmd (Tomas Henzl) [717581]\n- [scsi] mpt2sas: Adding support for customer specific branding (Tomas Henzl) [717581]\n- [scsi] mpt2sas: set DID_NO_CONNECT on remove and avoid shutdown (Tomas Henzl) [717581]\n- [scsi] mpt2sas: fix broadcast AEN and task management issue (Tomas Henzl) [717581]\n- [scsi] mpt2sas: Set max_sector count from module parameter (Tomas Henzl) [717581]\n- [scsi] mpt2sas: MPI next revision header update (Tomas Henzl) [717581]\n- [scsi] mpt2sas: Fixed Big Endian Issues on 32 bit PPC (Tomas Henzl) [717581]\n- [scsi] mpt2sas: do not check serial_number in the abort handler (Tomas Henzl) [717581]\n- [scsi] mpt2sas: remove flush_scheduled_work usages (Tomas Henzl) [717581]\n- [net] ipv6: Do not assign non-valid address on interface (Jiri Benc) [741511]\n- [fs] cifs: always do is_path_accessible check in cifs_mount (Jeff Layton) [738300] {CVE-2011-3363}\n- [fs] cifs: add fallback in is_path_accessible for old servers (Jeff Layton) [738300] {CVE-2011-3363}\n- [md] raid1: don't retry recovery when the last drive fails (Doug Ledford) [736693]\n- [input] evdev: disable interrupts when processing events (Don Zickus) [734900]\n- [char] tpm: Zero buffer after copying to userspace (Jiri Benc) [732631] {CVE-2011-1162}\n- [md] bitmap: fix BUG triggered due to slow devices (Doug Ledford) [725358]\n- [char] sysrq: Fix panic executing 'echo f > /proc/sysrq-trigger' (Larry Woodman) [718645]\n- [scsi] isci: fix 32-bit operation when CONFIG_HIGHMEM64G=n (David Milburn) [713904]\n- [scsi] isci: Remove reserved device IDS from isci_id_table (David Milburn) [718341]\n- [scsi] isci: fix checkpatch errors (David Milburn) [718341]\n- [scsi] isci: Device reset should request sas_phy_reset(phy, true) (David Milburn) [718341]\n- [scsi] isci: pare back error messsages (David Milburn) [718341]\n- [scsi] isci: cleanup silicon revision detection (David Milburn) [718341]\n- [scsi] isci: refactor scu_unsolicited_frame.h (David Milburn) [718341]\n- [scsi] isci: merge sata.[ch] into request.c (David Milburn) [718341]\n- [scsi] isci: kill 'get/set' macros (David Milburn) [718341]\n- [scsi] isci: retire scic_sds_ and scic_ prefixes (David Milburn) [718341]\n- [scsi] isci: unify isci_host and scic_sds_controller (David Milburn) [718341]\n- [scsi] isci: unify isci_remote_device and scic_sds_remote_device (David Milburn) [718341]\n- [scsi] isci: unify isci_port and scic_sds_port (David Milburn) [718341]\n- [scsi] isci: fix scic_sds_remote_device_terminate_requests (David Milburn) [718341]\n- [scsi] isci: unify isci_phy and scic_sds_phy (David Milburn) [718341]\n- [scsi] isci: unify isci_request and scic_sds_request (David Milburn) [718341]\n- [scsi] isci: rename / clean up scic_sds_stp_request (David Milburn) [718341]\n- [scsi] isci: preallocate requests (David Milburn) [718341]\n- [scsi] isci: combine request flags (David Milburn) [718341]\n- [scsi] isci: unify can_queue tracking on the tci_pool (David Milburn) [718341]\n- [scsi] isci: Terminate dev requests on FIS err bit rx in NCQ (David Milburn) [718341]\n- [scsi] isci: fix frame received locking (David Milburn) [718341]\n- [scsi] isci: fix buffer overflow in isci_parse_oem_parameters (David Milburn) [718341]\n- [scsi] isci: fix isci_task_execute_tmf completion (David Milburn) [718341]\n- [scsi] isci: fix support for arbitrarily large smp requests (David Milburn) [718341]\n- [scsi] isci: fix dma_unmap_sg usage (David Milburn) [718341]\n- [scsi] isci: fix smp response frame overrun (David Milburn) [718341]\n- [scsi] isci: kill device_sequence (David Milburn) [718341]\n- [scsi] isci: kill isci_remote_device_change_state() (David Milburn) [718341]\n- [scsi] isci: atomic device lookup and reference counting (David Milburn) [718341]\n- [scsi] isci: fix ssp response iu buffer size in isci_tmf (David Milburn) [718341]\n- [scsi] isci: cleanup request allocation (David Milburn) [718341]\n- [scsi] isci: cleanup/optimize queue increment macros (David Milburn) [718341]\n- [scsi] isci: cleanup tag macros (David Milburn) [718341]\n- [scsi] isci: cleanup/optimize pool implementation (David Milburn) [718341]\n- [scsi] isci: Disable link layer hang detection (David Milburn) [718341]\n- [scsi] isci: Hard reset failure link resets all phys in the port (David Milburn) [718341]\n- [scsi] isci: decode remote node ready and suspended states (David Milburn) [718341]\n- [scsi] isci: fix isci_terminate_pending() list management (David Milburn) [718341]\n- [scsi] isci: Handle timed-out request terminations correctly (David Milburn) [718341]\n- [scsi] isci: Requests that do not start must be set to complete (David Milburn) [718341]\n- [scsi] isci: Add decode for SMP request retry error condition (David Milburn) [718341]\n- [scsi] isci: filter broadcast change notifications on phy resets (David Milburn) [718341]\n- [scsi] isci: Move reset delay after remote node resumption (David Milburn) [718341]\n- [scsi] isci: remove 'min memory' infrastructure (David Milburn) [718341]\n- [scsi] isci: Added support for C0 to SCU Driver (David Milburn) [718341]\n- [scsi] isci: additional state machine cleanup (David Milburn) [718341]\n- [scsi] isci: state machine cleanup (David Milburn) [718341]\n- [scsi] isci: Removing unused variables compiler warnings (David Milburn) [718341]\n- [scsi] isci: removing the kmalloc in smp request construct (David Milburn) [718341]\n- [scsi] isci: remove isci_timer interface (David Milburn) [718341]\n- [scsi] isci: Remove tmf timeout_timer (David Milburn) [718341]\n- [scsi] isci: convert phy_startup_timer to sci_timer (David Milburn) [718341]\n- [scsi] isci: convert scic_timeout_timer to sci_timer (David Milburn) [718341]\n- [scsi] isci: convert power control timer to sci_timer (David Milburn) [718341]\n- [scsi] isci: convert phy sata_timeout_timer to sci_timer (David Milburn) [718341]\n- [scsi] isci: convert port config agent timer to sci_timer (David Milburn) [718341]\n- [scsi] isci: replace isci_timer list with proper embedded timers (David Milburn) [718341]\n- [scsi] isci: add some type safety to the state machine interface (David Milburn) [718341]\n- [scsi] isci: unify rnc start{io|task} handlers (David Milburn) [718341]\n- [scsi] isci: unify rnc destruct handlers (David Milburn) [718341]\n- [scsi] isci: unify rnc destruct handlers (David Milburn) [718341]\n- [scsi] isci: unify rnc event handlers (David Milburn) [718341]\n- [scsi] isci: unify port start_io and complete_io handlers (David Milburn) [718341]\n- [scsi] isci: unify port link_up and link_down handlers (David Milburn) [718341]\n- [scsi] isci: remove port frame and event handlers (David Milburn) [718341]\n- [scsi] isci: unify port reset, add_phy, and remove_phy handlers (David Milburn) [718341]\n- [scsi] isci: remove port destruct handler (David Milburn) [718341]\n- [scsi] isci: unify port stop handlers (David Milburn) [718341]\n- [scsi] isci: remove port start handler (David Milburn) [718341]\n- [scsi] isci: merge port ready substates into main state machine (David Milburn) [718341]\n- [scsi] isci: c99 port state handlers (David Milburn) [718341]\n- [scsi] isci: clarify phy to port lookups (David Milburn) [718341]\n- [scsi] isci: unify phy consume_power handlers (David Milburn) [718341]\n- [scsi] isci: unify phy event handlers (David Milburn) [718341]\n- [scsi] isci: unify phy frame handlers (David Milburn) [718341]\n- [scsi] isci: remove phy destruct handlers (David Milburn) [718341]\n- [scsi] isci: unify phy reset handlers (David Milburn) [718341]\n- [scsi] isci: unify phy stop handlers (David Milburn) [718341]\n- [scsi] isci: unify phy start handlers (David Milburn) [718341]\n- [scsi] isci: merge phy substates (David Milburn) [718341]\n- [scsi] isci: remove the completion and event state handlers (David Milburn) [718341]\n- [scsi] isci: remove request task context completion state handler (David Milburn) [718341]\n- [scsi] isci: unify request frame handlers (David Milburn) [718341]\n- [scsi] isci: unify request start handlers (David Milburn) [718341]\n- [scsi] isci: unify request abort handlers (David Milburn) [718341]\n- [scsi] isci: merge stp req substates into primary state machine (David Milburn) [718341]\n- [scsi] isci: merge smp req substates into primary state machine (David Milburn) [718341]\n- [scsi] isci: merge stp req substates into primary state machine (David Milburn) [718341]\n- [scsi] isci: uplevel port infrastructure (David Milburn) [718341]\n- [scsi] isci: uplevel phy infrastructure (David Milburn) [718341]\n- [scsi] isci: uplevel request infrastructure (David Milburn) [718341]\n- [scsi] isci: uplevel state machine (David Milburn) [718341]\n- [scsi] isci: uplevel reg hw data structs and frame handling (David Milburn) [718341]\n- [scsi] isci: move core/controller to host (David Milburn) [718341]\n- [scsi] isci: unify constants (David Milburn) [718341]\n- [scsi] isci: unify request data structures (David Milburn) [718341]\n- [scsi] isci: make command/response iu explicit req object members (David Milburn) [718341]\n- [scsi] isci: move task context alignment to compile time (David Milburn) [718341]\n- [scsi] isci: make sgl explicit/aligned request object member (David Milburn) [718341]\n- [scsi] isci: move stp request info to scic_sds_request (David Milburn) [718341]\n- [scsi] isci: unify phy data structures (David Milburn) [718341]\n- [scsi] isci: unify phy data structures (David Milburn) [718341]\n- [scsi] isci: rnc state machine table c99 conversion (David Milburn) [718341]\n- [scsi] isci: remove scic_sds_port_increment_request_count (David Milburn) [718341]\n- [scsi] isci: kill scic_controller_get_port_handle function (David Milburn) [718341]\n- [scsi] isci: Removing unnecessary functions in request.c (David Milburn) [718341]\n- [scsi] isci: unify isci_host data structures (David Milburn) [718341]\n- [scsi] isci: implement I_T_nexus_reset (David Milburn) [718341]\n- [scsi] isci: fix ata locking (David Milburn) [718341]\n- [scsi] isci: removing intel_*.h headers (David Milburn) [718341]\n- [scsi] isci: Using Linux SSP frame header (David Milburn) [718341]\n- [scsi] isci: Remove SCIC_SWAP_DWORD() (David Milburn) [718341]\n- [scsi] isci: fixup SAS iaf protocols data structure (David Milburn) [718341]\n- [scsi] isci: remove redundant copies of IAF (David Milburn) [718341]\n- [scsi] isci: Converting smp_response to Linux native smp_resp (David Milburn) [718341]\n- [scsi] isci: Fixup of smp request (David Milburn) [718341]\n- [scsi] isci: Convert of sci_ssp_response_iu to ssp_response_iu (David Milburn) [718341]\n- [scsi] isci: Fixup SSP command IU and task IU (David Milburn) [718341]\n- [scsi] isci: renaming sas_capabilities to scic_phy_cap (David Milburn) [718341]\n- [scsi] isci: Collapsing of phy_type data structure (David Milburn) [718341]\n- [scsi] isci: Convert SAS identify address frame to native format (David Milburn) [718341]\n- [scsi] isci: Convert ATA defines to Linux native defines (David Milburn) [718341]\n- [scsi] isci: Convert SATA fis data structures to Linux native (David Milburn) [718341]\n- [scsi] isci: remove compile-time (Kconfig) silicon configuration (David Milburn) [718341]\n- [scsi] isci: Removing unused define SCIC_SDS_4_ENABLED (David Milburn) [718341]\n- [scsi] isci: kill scic_sds_remote_device.state_handlers (David Milburn) [718341]\n- [scsi] isci: unify remote_device frame_handlers (David Milburn) [718341]\n- [scsi] isci: unify remote_device event_handlers (David Milburn) [718341]\n- [scsi] isci: kill remote_device resume_handler (David Milburn) [718341]\n- [scsi] isci: unify remote_device suspend_handlers (David Milburn) [718341]\n- [scsi] isci: kill remote_device complete_task_handler (David Milburn) [718341]\n- [scsi] isci: unify remote_device start_task_handlers (David Milburn) [718341]\n- [scsi] isci: kill remote_device continue_io_handler (David Milburn) [718341]\n- [scsi] isci: unify remote_device complete_io_handlers (David Milburn) [718341]\n- [scsi] isci: unify remote_device start_io_handlers (David Milburn) [718341]\n- [scsi] isci: unify remote_device reset_complete_handlers (David Milburn) [718341]\n- [scsi] isci: unify remote_device reset_handlers (David Milburn) [718341]\n- [scsi] isci: unify remote_device destruct_handlers (David Milburn) [718341]\n- [scsi] isci: kill remote_device fail_handler (David Milburn) [718341]\n- [scsi] isci: unify remote_device stop_handlers (David Milburn) [718341]\n- [scsi] isci: unify remote_device start_handlers (David Milburn) [718341]\n- [scsi] isci: fix remote_device start_io regressions (David Milburn) [718341]\n- [scsi] isci: kill scic_remote_device_get_connection_rate (David Milburn) [718341]\n- [scsi] isci: merge remote_device substates into one state machine (David Milburn) [718341]\n- [scsi] isci: Removed sci_object.h from project (David Milburn) [718341]\n- [scsi] isci: Removed sci_base_object from scic_sds_request (David Milburn) [718341]\n- [scsi] isci: no sci_base_object in scic_sds_remote_node_context (David Milburn) [718341]\n- [scsi] isci: Removed sci_base_object from scic_sds_remote_device (David Milburn) [718341]\n- [scsi] isci: Removed sci_base_object from scic_sds_port (David Milburn) [718341]\n- [scsi] isci: Removed sci_base_object from scic_sds_phy (David Milburn) [718341]\n- [scsi] isci: Removed sci_base_object from scic_sds_controller (David Milburn) [718341]\n- [scsi] isci: Removed struct sci_base_object from state machine (David Milburn) [718341]\n- [scsi] isci: Implement SCU AFE recipe 10. (David Milburn) [718341]\n- [scsi] isci: Remove excessive log noise with expander hot-unplug (David Milburn) [718341]\n- [scsi] isci: removing non-working ATAPI code (David Milburn) [718341]\n- [scsi] isci: remove scic_sds_remote_device_get_port_index (David Milburn) [718341]\n- [scsi] isci: remove sci_sas_address in scic_sds_remote_device (David Milburn) [718341]\n- [scsi] isci: kill smp_discover_response (David Milburn) [718341]\n- [scsi] isci: kill smp_discover_response_protocols (David Milburn) [718341]\n- [scsi] isci: cleanup remote device construction and comments (David Milburn) [718341]\n- [scsi] isci: move remote_device handling out of the core (David Milburn) [718341]\n- [scsi] isci: unify remote_device data structures (David Milburn) [718341]\n- [scsi] isci: remove rnc->device back pointer (David Milburn) [718341]\n- [scsi] isci: make remote_node_context member of remote_device (David Milburn) [718341]\n- [scsi] isci: rely on irq core for intx muxing, silence screamer (David Milburn) [718341]\n- [scsi] isci: give this_* and the_* vars more meaningful names (David Milburn) [718341]\n- [scsi] isci: audit usage of BUG_ON macro in isci driver (David Milburn) [718341]\n- [scsi] isci: sparse warnings cleanup (David Milburn) [718341]\n- [scsi] isci: replace sci_sas_link_rate with sas_linkrate (David Milburn) [718341]\n- [scsi] isci: remove base_phy abstraction (David Milburn) [718341]\n- [scsi] isci: remove base_port abstraction (David Milburn) [718341]\n- [scsi] isci: remove base_remote_device abstraction (David Milburn) [718341]\n- [scsi] isci: remove scic_controller state handlers (David Milburn) [718341]\n- [scsi] isci: simplify dma coherent allocation (David Milburn) [718341]\n- [scsi] isci: simplify request state handlers (David Milburn) [718341]\n- [scsi] isci: kill dead data structurs in scic_io_request.h (David Milburn) [718341]\n- [scsi] isci: remove base_request abstraction (David Milburn) [718341]\n- [scsi] isci: remove base_controller abstraction (David Milburn) [718341]\n- [misc] kernel: add BUILD_BUG_ON_NOT_POWER_OF_2 (David Milburn) [718341]\n- [misc] jiffies: add time_is_after_jiffies (David Milburn) [718341]\n- [net] igbvf: driver update for RHEL5.8 (Stefan Assmann) [714316]\n- [net] igb: driver update for RHEL5.8 (Stefan Assmann) [714313]\n- [net] qlge: Version change to v1.00.00.29 (Chad Dupuis) [714242]\n- [net] qlge: Adding LICENSE file for qlge (Chad Dupuis) [714242]\n- [net] qlge: Fix printk prio so fatal errors always reported (Chad Dupuis) [714242]\n- [net] qlge: Fix crash caused by mailbox execution on wedged chip (Chad Dupuis) [714242]\n- [net] qlge: make nic_operations struct const (Chad Dupuis) [714242]\n- [net] qlge: Fix incorrect use of modparams and netdev msg level (Chad Dupuis) [714242]\n- [net] qlge: Remove unnecessary casts of netdev_priv (Chad Dupuis) [714242]\n- [net] qlge: Generate the coredump to ethtool user buffer (Chad Dupuis) [714242]\n- [net] qlcnic: Change CDRP function (Chad Dupuis) [714232]\n- [net] qlcnic: Added error logging for firmware abort (Chad Dupuis) [714232]\n- [net] qlcnic: add beacon test support (Chad Dupuis) [714232]\n- [net] qlcnic: fix cdrp race condition (Chad Dupuis) [714232]\n- [net] qlcnic: Change debug messages in loopback path (Chad Dupuis) [714232]\n- [net] qlcnic: Add FLT entry for CO cards FW image region (Chad Dupuis) [714232]\n- [net] qlcnic: detect fan failure (Chad Dupuis) [714232]\n- [net] qlcnic: Add NETIF_F_VLAN_SG flag (Chad Dupuis) [714232]\n- [net] qlcnic: fix ethtool link status (Chad Dupuis) [714232]\n- [net] qlcnic: Added debug info (Chad Dupuis) [714232]\n- [net] qlcnic: Move get template from probe to start fw (Chad Dupuis) [714232]\n- [net] qlcnic: Fix delay in reset path (Chad Dupuis) [714232]\n- [net] qlcnic: FW dump related changes (Chad Dupuis) [714232]\n- [net] qlcnic: Fix env var for udev event during FW dump (Chad Dupuis) [714232]\n- [net] qlcnic: change capture mask for FW dump (Chad Dupuis) [714232]\n- [net] qlcnic: define error code for loopback test (Chad Dupuis) [714232]\n- [net] qlcnic: fix race in skb->len access (Chad Dupuis) [714232]\n- [net] qlcnic: enable mac-learning in promiscous mode (Chad Dupuis) [714232]\n- [net] qlcnic: updated supported cards information (Chad Dupuis) [714232]\n- [net] qlcnic: fix chip reset logic (Chad Dupuis) [714232]\n- [net] qlcnic: add external loopback support through sysfs (Chad Dupuis) [714232]\n- [net] qlcnic: multi protocol internal loopback support added (Chad Dupuis) [714232]\n- [net] qlcnic: Add support to enable/disable FW dump capability (Chad Dupuis) [714232]\n- [net] qlcnic: fix default operating state of interface (Chad Dupuis) [714232]\n- [net] qlcnic: fix initial number of msix entries in adapter (Chad Dupuis) [714232]\n- [net] qlcnic: Add code to tune FW dump (Chad Dupuis) [714232]\n- [net] qlcnic: Remove holding api lock while taking the dump (Chad Dupuis) [714232]\n- [net] qlcnic: Add capability to take FW dump deterministically (Chad Dupuis) [714232]\n- [net] qlcnic: Added sysfs node support (Chad Dupuis) [714232]\n- [net] qlcnic: Remove casts of void * (Chad Dupuis) [714232]\n- [net] qlcnic: Avoid double free of skb in tx path (Chad Dupuis) [714232]\n- [net] qlcnic: Fix bug in FW queue dump (Chad Dupuis) [714232]\n- [net] qlcnic: Bumped up version number to 5.0.18 (Chad Dupuis) [714232]\n- [net] qlcnic: FW dump support (Chad Dupuis) [714232]\n- [net] qlcnic: Support for GBE port settings (Chad Dupuis) [714232]\n- [net] qlcnic: configure number of RSS rings using sysfs (Chad Dupuis) [714232]\n- [net] qlcnic: Update version number to 5.0.16 (Chad Dupuis) [714232]\n- [net] qlcnic: Fix LRO disable (Chad Dupuis) [714232]\n- [net] qlcnic: Use flt method to determine flash fw region (Chad Dupuis) [714232]\n- [net] qlcnic: Remove unused code (Chad Dupuis) [714232]\n- [net] qlcnic: Code optimization patch (Chad Dupuis) [714232]\n- [net] qlcnic: Cleanup patch (Chad Dupuis) [714232]\n- [net] qlcnic: Memory leak fix (Chad Dupuis) [714232]\n- [net] qlcnic: Make PCI info available in all modes (Chad Dupuis) [714232]\n- [misc] Add rounddown_pow_of_two routine to log2.h (Chad Dupuis) [714232]\n- [pci] add latency tolerance reporting enable/disable support (Myron Stowe) [714171]\n- [pci] Assign values to pci_obff_signal_type enumeration (Myron Stowe) [714171]\n- [pci] add OBFF enable/disable support (Myron Stowe) [714171]\n- [pci] add ID-based ordering enable/disable support (Myron Stowe) [714171]\n- [pci] introduce pci_is_pcie (Myron Stowe) [714171]\n- [pci] introduce pci_pcie_cap (Myron Stowe) [714171]\n- [sound] hda: ALSA Panther Point Audio Support (Jaroslav Kysela) [713663]\n- [sound] hda: Enable snoop bit for AMD controllers (Jaroslav Kysela) [713366]\n- [fs] hfs: fix hfs_find_init() sb->ext_tree NULL ptr oops (Phillip Lougher) [712776]\n- [fs] nfs: return error in callback if encode/decode fails (Dave Wysochanski) [709515]\n- [net] tcp: Shrink syncookie_secret by 8 bytes (Thomas Graf) [705484]\n- [scsi] device_handler: Attach to UNAVAILABLE/OFFLINE AAS devices (Mike Christie) [700082]\n- [net] cxgb3: Apply interrupt coalescing settings to all queues (Neil Horman) [694583]\n- [mm] page-writeback: fix calculation of oldest_jif in wb_kupdate (Jarod Wilson) [691087]\n- [block] nbd: add a user-settable timeout for I/O (Jeff Moyer) [676491]\n- [net] ipv6: ignore looped-back NA while dad is running (Thomas Graf) [668027]\n- [net] sctp: Set correct error cause value for missing parameters (Thomas Graf) [629938]\n- [net] Prevent pktgen from sending shared skbs (Neil Horman) [575938]\n- [md] raid10: fix far resync data corruptor (Doug Ledford) [468379]\n- [xen] x86: Clear IRQ_GUEST when setting action to NULL (Igor Mammedov) [713221]\n- [xen] x86: check for NULL desc->action when unbinding guest pirq (Igor Mammedov) [713221]\n- [xen] x86: fix msi_free_irq (Igor Mammedov) [713221]\n- [xen] x86: teardown_msi_irq is not needed (Igor Mammedov) [713221]\n- [xen] x86: irq removal rewrite (Igor Mammedov) [713221]\n- [xen] x86: Move interrupt vector management to irq.c (Igor Mammedov) [713221]\n[2.6.18-287.el5]\n- [parport] Enable StarTech PEX1P Parallel Port (Prarit Bhargava) [739758]\n- [crypto] padlock: Fix spurious ECB page fault (Milan Broz) [739468]\n- [fs] gfs2: speed up large file delete/unlink (Robert S Peterson) [738440]\n- [virt] xen: don't hardcode is_running_on_xen for PV-on-HVM (Laszlo Ersek) [734708]\n- [s390] kernel: remove code to handle topology interrupts (Hendrik Brueckner) [732736]\n- [net] cxgb3: Fix NULL pointer dereference in t3_l2t_get (Neil Horman) [721173]\n- [misc] kernel: plug taskstats io infoleak (Jerome Marchand) [716846] {CVE-2011-2494}\n- [x86_64] io_apic: only scan the root bus in early PCI quirks (Dave Maley) [716552]\n- [net] bnx2: Update to latest upstream version 2.1.11 (Neil Horman) [715392]\n- [usb] Make device reset stop retrying after disconnect (Don Zickus) [709699]\n- [acpi] Call _PDC before retrieving CPU information (Matthew Garrett) [707642]\n- [net] tg3: Fix io failures after chip reset (John Feeney) [702346 731098]\n- [net] ipv6: properly use ICMP6MSGOUT_INC_STATS in ndisc_send_skb (Jiri Pirko) [698728]\n- [net] sctp: Mark tsn as received after all allocations finish (Max Matveev) [696430]\n- [scsi] Reduce error recovery time by reducing use of TURs (Mike Christie) [694625]\n- [scsi] don't fail scans when host is in recovery (Rob Evers) [657345]\n- [video] radeonfb: block use of low refresh 800x600-43 on pseries (Dave Airlie) [638576]\n[2.6.18-286.el5]\n- [net] benet: Add missing comma between constant string array (Ivan Vecera) [714291]\n- [net] be2net: create/destroy rx-queues on interface open/close (Ivan Vecera) [714291]\n- [net] be2net: fix initialization of vlan_prio_bmap (Ivan Vecera) [714291]\n- [net] be2net: Remove casts of void pointers (Ivan Vecera) [714291]\n- [net] be2net: Fix Rx pause counter for lancer (Ivan Vecera) [714291]\n- [net] be2net: use older opcode if MCC_CREATE_EXT not supported (Ivan Vecera) [714291]\n- [net] be2net: fix set but unused var in lancer_fw_download (Ivan Vecera) [714291]\n- [net] be2net: Enable SR-IOV for Lancer hardware (Ivan Vecera) [714291]\n- [net] be2net: FW download for Lancer hardware (Ivan Vecera) [714291]\n- [net] be2net: implement stats for Lancer hardware (Ivan Vecera) [714291]\n- [net] be2net: Support for version 1 of stats for BE3 (Ivan Vecera) [714291]\n- [net] be2net: fix mbox polling for signal reception (Ivan Vecera) [714291]\n- [net] be2net: handle signal reception while waiting for POST (Ivan Vecera) [714291]\n- [net] be2net: Fix to prevent flooding of TX queue (Ivan Vecera) [714291]\n- [net] be2net: In case of UE, do not dump registers for Lancer (Ivan Vecera) [714291]\n- [net] be2net: Disable coalesce water mark mode of CQ for Lancer (Ivan Vecera) [714291]\n- [net] be2net: Handle error completion in Lancer (Ivan Vecera) [714291]\n- [net] be2net: fix bugs related to PVID (Ivan Vecera) [714291]\n- [net] be2net: fix wrb reuse and misc bugs in be_cmd_get_regs (Ivan Vecera) [714291]\n- [net] be2net: pass domain id to be_cmd_link_status_query (Ivan Vecera) [714291]\n- [net] be2net: fix be_mcc_compl_process to id eth_get_stat command (Ivan Vecera) [714291]\n- [net] be2net: display nic speeds other than 1Gbps/10Gbps (Ivan Vecera) [714291]\n- [net] be2net: allow register dump only for PFs (Ivan Vecera) [714291]\n- [net] be2net: Fix unused-but-set variables (Ivan Vecera) [714291]\n- [net] be2net: Use netdev_alloc_skb_ip_align (Ivan Vecera) [714291]\n- [net] be2net: call FLR after setup wol in be_shutdown (Ivan Vecera) [714291]\n- [net] be2net: dynamically allocate adapter->vf_cfg (Ivan Vecera) [714291]\n- [net] be2net: fix to get max VFs supported from adapter (Ivan Vecera) [714291]\n- [net] be2net: use common method to check for sriov function type (Ivan Vecera) [714291]\n- [net] be2net: Fix a potential crash during shutdown (Ivan Vecera) [714291]\n- [net] be2net: remove one useless line (Ivan Vecera) [714291]\n- [net] be2net: cancel be_worker on shutdown even when i/f is down (Ivan Vecera) [714291]\n- [net] be2net: remove redundant code in be_worker (Ivan Vecera) [714291]\n- [net] be2net: parse vid/vtm rx-compl fields only if vlanf bit set (Ivan Vecera) [714291]\n- [net] be2net: refactor code that decides adapter->num_rx_queues (Ivan Vecera) [714291]\n- [net] be2net: add ethtool FAT dump retrieval support (Ivan Vecera) [714291]\n- [mm] s390: fix first time swap use results in heavy swapping (Hendrik Brueckner) [722482]\n- [mm] fix rotate_reclaimable_page deadlock and clean up (Jerome Marchand) [699549]\n[2.6.18-285.el5]\n- [ata] ahci: Add missing Panther Point SATA RAID DeviceID (Prarit Bhargava) [735369]\n- [scsi] megaraid: remove obsolete megaraid_sas.c (Tomas Henzl) [735120]\n- [net] Compute protocol seq numbers and fragment IDs using MD5 (Jiri Pirko) [732663]\n- [crypto] Move md5_transform to lib/md5.c (Jiri Pirko) [732663]\n- [s390] kernel: fix NSS creation with initrd (Hendrik Brueckner) [730779]\n- [virt] xen: fix GFP mask handling in dma_alloc_coherent (Laszlo Ersek) [730247]\n- [fs] nfs: Fix client not honoring nosharecache mount option (David Jeffery) [730097]\n- [pci] check pm support before looking at individual power states (Stefan Assmann) [716834]\n- [mm] avoid wrapping vm_pgoff in mremap and stack expansion (Jerome Marchand) [716544] {CVE-2011-2496}\n- [md] bitmap: protect against bitmap removal while being updated (Stanislaw Gruszka) [711536]\n- [scsi] scsi_dh_rdac: link HBA and storage to support partitions (Mike Snitzer) [710014]\n- [scsi] scsi_dh_rdac: use WWID from C8 page to identify storage (Mike Snitzer) [710014]\n- [x86] nmi: make NMI_NONE default watchdog in x86_64 hvm guests (Laszlo Ersek) [707966]\n- [mm] Fix incorrect off-by-one centisec dirty values (Larry Woodman) [691087]\n- [net] bnx2x: fix bringup of BCM57710 (Michal Schmidt) [680411]\n- [fs] ext{2,3}: fix file date underflow on fs on 64 bit systems (Eric Sandeen) [655174]\n- [xen] fix nodes' memory parsing with future-hotplug memory range (Laszlo Ersek) [543064]\n[2.6.18-284.el5]\n- [net] be2net: request native mode each time the card is reset (Ivan Vecera) [720501]\n- [net] be2net: fix the ethtool op to set Tx CSUM (Ivan Vecera) [718187]\n- [net] be2net: remove bogus unlikely on vlan check (Ivan Vecera) [730239]\n- [net] be2net: non-member vlan pkts not received in promisc mode (Ivan Vecera) [730239]\n- [net] be2net: Use NTWK_RX_FILTER command for promiscous mode (Ivan Vecera) [730239]\n- [net] be2net: fix crash receiving non-member VLAN packets (Ivan Vecera) [730239]\n- [virt] xen/netfront: no disable s/g when renegotiating features (Paolo Bonzini) [733416]\n- [fs] ecryptfs: Add mount option to check uid of mounting device (Eric Sandeen) [731174] {CVE-2011-1833}\n- [s390] kernel: fix system hang if hangcheck timer expires (Hendrik Brueckner) [730313]\n- [s390] qeth: fix wrong number of output queues for HiperSockets (Hendrik Brueckner) [730319]\n- [scsi] qla2xxx: Re-add checks for null fcport references (Chad Dupuis) [728219]\n- [fs] aio: fix aio+dio completion path regression w/3rd-party bits (Jeff Moyer) [727504]\n- [net] ipv6: make fragment identifications less predictable (Jiri Pirko) [723431]\n- [net] ipv6: Remove unused skb argument of ipv6_select_ident (Jiri Pirko) [723431]\n- [s390] dasd: fix bug in dasd initialization cleanup (Hendrik Brueckner) [723491]\n- [virt] xen: attach host CD-ROM to PV guest as vbd (Laszlo Ersek) [717434]\n- [misc] taskstats: don't allow duplicate entries in listener mode (Jerome Marchand) [715450] {CVE-2011-2484}\n- [scsi] ipr: bump the version number (Steve Best) [714258]\n- [scsi] ipr: remove unneeded volatile declarations (Steve Best) [714258]\n- [scsi] ipr: fix synchronous request flags for better performance (Steve Best) [714258]\n- [scsi] ipr: fix buffer overflow (Steve Best) [714258]\n- [s390] qdio: reset error states immediately (Hendrik Brueckner) [709712]\n- [usb] fix interface sysfs file-creation bug (Don Zickus) [637930]\n- [usb] don't touch sysfs stuff when altsetting is unchanged (Don Zickus) [637930]\n- [base] Fix potential deadlock in driver core (Don Zickus) [637930]\n- [virt] xen: more informative messages after resize (Laszlo Ersek) [618317]\n- [virt] xen: support online dynamic resize of guest virtual disks (Laszlo Ersek) [618317]\n- [virt] xen: Move definition of struct backend_info to common spot (Laszlo Ersek) [618317]\n- [net] bonding: fix panic if initialization fails (Andy Gospodarek) [608156]\n- [net] gro: Only reset frag0 when skb can be pulled (Herbert Xu) [679682] {CVE-2011-2723}\n- [net] sctp: fix memory reclaim and panic in sctp_sock_rfree (Thomas Graf) [714870] {CVE-2011-2482}\n- [xen] lower BOOT_TRAMPOLINE, sync early stack & trampoline_gdt (Laszlo Ersek) [716788]\n- [xen] x86_64: bump default NR_CPUS to 256 and trim debug log spam (Laszlo Ersek) [714053]\n- [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716302]\n- [xen] hvm/svm: fix task switch (Paolo Bonzini) [720936]\n- [xen] hvm: exclude VMX_PROCBASED_CTL2 from MSRs guest can access (Paolo Bonzini) [732752]\n- [xen] iommu: disable bus-mastering on hw that causes IOMMU fault (Laszlo Ersek) [730343] {CVE-2011-3131}\n- [xen] x86_emulate: Fix SAHF emulation (Igor Mammedov) [718884] {CVE-2011-2519}\n- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [719850] {CVE-2011-2901}\n[2.6.18-283.el5]\n- [fs] nfsd: don't allow fl_break callback to sleep (Jeff Layton) [721200]\n- [fs] locks: move lease lock alloc earlier in generic_setlease (Jeff Layton) [721200]\n- [fs] locks: when unlocking lease, skip locking-related steps (Jeff Layton) [721200]\n- [fs] locks: fix a lease return-value mixup (Jeff Layton) [721200]\n- [fs] locks: Fix potential OOPS in generic_setlease (Jeff Layton) [721200]\n- [usb] auerswald: fix buffer overflow (Don Zickus) [722396] {CVE-2009-4067}\n- [fs] cifs: fix possible memory corruption in CIFSFindNext (Jeff Layton) [732471]\n- [fs] cifs: revert special handling for matching krb5 sessions (Jeff Layton) [697396]\n- [fs] cifs: check for NULL session password (Jeff Layton) [697396]\n- [fs] cifs: fix NULL pointer dereference in cifs_find_smb_ses (Jeff Layton) [697396]\n- [fs] cifs: clean up cifs_find_smb_ses (Jeff Layton) [697396]\n- [net] be2net: account for skb allocation failures (Ivan Vecera) [730108]\n- [fs] mbcache: Limit the maximum number of cache entries (Eric Sandeen) [729261]\n- [net] bnx2x: downgrade Max BW error message to debug (Michal Schmidt) [727614]\n- [net] sock: do not change prot->obj_size (Jiri Pirko) [725713]\n- [net] be2net: Fix Tx stall issue (Ivan Vecera) [722549]\n- [net] be2net: rx-dropped wraparound fix (Ivan Vecera) [722302]\n- [net] be2net: fix netdev_stats_update (Ivan Vecera) [722302]\n- [net] bonding: make 802.3ad use latest lacp_rate (Jiri Pirko) [718641]\n- [net] bonding: Rename rx_machine_lock to state_machine_lock (Jiri Pirko) [718641]\n- [net] bonding: Fix 802.3ad state machine locking (Jiri Pirko) [718641]\n- [net] bonding: add missing xmit_hash_policy=layer2+3 info (Weiping Pan) [717850]\n- [powerpc] eeh: Display eeh error location for bus and device (Steve Best) [712418]\n- [powerpc] eeh: Handle functional reset on non-PCIe device (Steve Best) [712418]\n- [powerpc] eeh: Propagate needs_freset flag to device at PE (Steve Best) [712418]\n- [powerpc] eeh: Add support for ibm, configure-pe RTAS call (Steve Best) [712418]\n- [fs] cifs: don't allow cifs_reconnect exit w/NULL socket pointer (Jeff Layton) [704921]\n- [fs] cifs: clarify the meaning of tcpStatus == CifsGood (Jeff Layton) [704921]\n- [fs] cifs: split posix open/mkdir from legacy mkdir in stats (Jeff Layton) [706339]\n- [virt] xen: plug leaks in netfront::setup_device (Laszlo Ersek) [703150]\n- [virt] xen: ensure dynamic IRQ allocation success (Laszlo Ersek) [703150]\n- [net] vlan: correct pkt_type if it matches changed mac (Weiping Pan) [698928]\n- [virt] xen: Allow arbitrary mtu size until frontend connected (Paolo Bonzini) [697021]\n- [fs] proc: Fix procfs race vs rmmod or hot-remove (David Howells) [675781]\n- [virt] xen: empty stale MSI-X vector set when resetting device (Laszlo Ersek) [688673]\n- [virt] xen: msi cleanup after destroyed domain (Laszlo Ersek) [688673]\n- [xen] unsigned int corrections (Laszlo Ersek) [648596]\n[2.6.18-282.el5]\n- Fix infrastructure error that led to recent xen patches not applying\n[2.6.18-281.el5]\n- Bump NVR due to buildsystem problems during prior build\n[2.6.18-280.el5]\n- Revert: [virt] xen/netback: Remove auto/premature netif queue (Jarod Wilson) [714283]\n[2.6.18-279.el5]\n- [char] tpm: Fix uninitialized usage of data buffer (Stanislaw Gruszka) [684673] {CVE-2011-1160}\n- [serial] 8250: Fix capabilities when changing the port type (Steve Best) [707051]\n- [serial] 8250_pci: EEH support for IBM/Digi PCIe 2-port Adapter (Steve Best) [707051]\n- [serial] 8250_pci: add support for Digi/IBM PCIe 2-port Adapter (Steve Best) [707051]\n- [misc] hypervisor: fix race in interrupt hook code (Prarit Bhargava) [692966]\n- [sound] alsa: enable snoop for Intel Cougar Point in hda_intel (Prarit Bhargava) [699451]\n- [char] watchdog: TCO Watchdog support for Intel Panther Point PCH (Prarit Bhargava) [699451]\n- [i2c] i2c-i801: SMBus support for Intel Panther Point DeviceIDs (Prarit Bhargava) [699451]\n- [ata] ahci: AHCI mode for Intel Panther Point Device IDs (Prarit Bhargava) [699451]\n- [ata] ata_piix: IDE mode for Intel Panther Point Device IDs (Prarit Bhargava) [699451]\n- [misc] irq and pci_ids for Intel DH89xxCC DeviceIDs (Prarit Bhargava) [699451]\n- [misc] Identify IBM x3850 as multi-chassis (Prarit Bhargava) [700886]\n- [net] cnic, bnx2: Check iSCSI support early in bnx2_init_one (Neil Horman) [710272]\n- [virt] xen/netback: Remove auto/premature netif queue restart (Laszlo Ersek) [714283]\n- [fs] ext4: Fix max size and logical block counting of extent file (Lukas Czerner) [722563] {CVE-2011-2695}\n- [fs] nfs: don't use d_move in nfs_async_rename_done (Jeff Layton) [729446]\n- [fs] nfs: have nfs_flush_list issue FLUSH_SYNC writes in parallel (Jeff Layton) [728508]\n- [s390] crypto: fix prng error in initial seed calculation (Hendrik Brueckner) [709711]\n- [fs] nfsd: fix auto-sizing of nfsd request/reply buffers (J. Bruce Fields) [691927]\n- [fs] nfsd: Allow max size of NFSd payload to be configured (J. Bruce Fields) [691927]\n- [fs] nfsd: Prep knfsd to support rsize/wsize of 1MB, over TCP (J. Bruce Fields) [691927]\n- [misc] svcrpc: prepare svc_rqst for kabi-safe modification (J. Bruce Fields) [691927]\n- [xen] amd-iommu: Fix an interrupt remapping issue (Frank Arnold) [717976]\n- [xen] hvm: Fix possible guest tick losing after save/restore (Paolo Bonzini) [674663]\n- [xen] mm: fix race with ept_entry management (Andrew Jones) [729529]\n[2.6.18-278.el5]\n- [scsi] ipr: increase the dump size for 64 bit adapters (Steve Best) [710324]\n- [scsi] ipr: fix possible false positive detected stuck interrupt (Steve Best) [710324]\n- [scsi] ipr: improve interrupt service routine performance (Steve Best) [710324]\n- [scsi] ipr: add definitions for a new adapter (Steve Best) [710324]\n- [scsi] ipr: fix array error logging (Steve Best) [710324]\n- [net] igb: fix WOL on 2nd port on i350 (Stefan Assmann) [718988]\n- [misc] irq: fix interrupt handling for kdump under high load (Stefan Assmann) [720212]\n- [fs] xfs: fix overflow in xfs_growfs_data_private (Eric Sandeen) [652494]\n- [fs] ext4: Don't error out fs if user tries to make file too big (Eric Sandeen) [715501]\n- [x86_64] vdso: Fix possible sign extension/overflow (Prarit Bhargava) [703505]\n- [x86_64] Revert ACPI APIC mode test (Prarit Bhargava) [721361]\n- [net] ipv6: configure bond slaves to allow NA frames on failover (Neil Horman) [694435]\n- [virt] xen: plug evtchn leak in PV-on-HVM device detach (Laszlo Ersek) [697927]\n- [virt] xen/netback: wait for hotplug complete before Connected (Laszlo Ersek) [720347]\n- [virt] xen: Partially revert the netback side of 14bee682 (Laszlo Ersek) [720347]\n- [fs] ext4: Allow indirect-block file to grow to max file size (Lukas Czerner) [715493]\n- [fs] nfs: Fix nfs_compat_user_ino64 with high bits set in fileid (Jeff Layton) [664829]\n- [fs] nfs: Open O_CREAT fails existing files on non writable dirs (J. Bruce Fields) [683372]\n- [xen] vmx: Accelerate VLAPIC EOI writes (Paolo Bonzini) [720986]\n- [xen] x86/hvm: fix off-by-one errors in vcpuid range checks (Paolo Bonzini) [712441]\n- [xen] x86: extend debug key t to collect useful clock skew info (Paolo Bonzini) [712439]\n- [xen] svm: Reported SS.DPL must equal CPL, as assumed by HVM (Paolo Bonzini) [605617]\n- [xen] hvm: support more opcodes for MMIO (Paolo Bonzini) [723755]\n- [xen] x86: Disable writeback if BSF/BSR are passed zero input (Igor Mammedov) [713702]\n- [xen] x86: BT instruction does not write to its dest operand (Igor Mammedov) [713702]\n- [xen] x86: INS/OUTS need Mov attribute to force writeback (Igor Mammedov) [713702]\n- [xen] x86: Fix IMUL r/m8 emulation (Igor Mammedov) [713702]\n- [xen] x86: Fix MUL emulation (Igor Mammedov) [713702]\n- [xen] x86: fix side-effect macro call (Igor Mammedov) [713702]\n- [xen] x86: Fix CLTS emulation (Igor Mammedov) [713702]\n- [xen] x86: Near JMP (Grp5 /3) shouldn't write back to its operand (Igor Mammedov) [713702]\n- [xen] x86: Certain opcodes are only valid with a memory operand (Igor Mammedov) [713702]\n- [xen] x86: Correct RIP-relative addr offset w/immediate byte op (Igor Mammedov) [713702]\n[2.6.18-277.el5]\n- [net] sctp: reset packet information after packet transmit (Thomas Graf) [725573]\n- [fs] block: initialise bd_super in bdget (Lachlan McIlroy) [707425]\n- [fs] nfs: Remove bogus call to nfs4_drop_state_owner (Jeff Layton) [724923]\n- [net] be2net: hash key for rss-config cmd not set (Ivan Vecera) [714244]\n- [net] be2net: enable SG, CSO and TSO with VLAN offloading (Ivan Vecera) [714272]\n- [net] be2net: clear interrupt bit in be_probe (Ivan Vecera) [713703]\n- [net] be2net: remove certain cmd failure logging (Ivan Vecera) [716821]\n[2.6.18-276.el5]\n- [wireless] nl80211: check for valid SSID size in scan operation (Stanislaw Gruszka) [718155] {CVE-2011-2517}\n- [fs] xfs: handle NULL mount struct in error reports (Eric Sandeen) [720551]\n- [fs] proc: restrict access to /proc/PID/io (Oleg Nesterov) [716828] {CVE-2011-2495}\n- [fs] lockd: don't use file's credentials on RPCSEC_GSS mounts (Max Matveev) [701574]\n- [fs] xfs: add a missing mutex_unlock to a dio error path (Jeff Moyer) [718232]\n- [net] sunrpc: Don't hang forever on NLM unlock requests (Jeff Layton) [709547] {CVE-2011-2491}\n- [fs] gfs2: force a log flush when invalidating the rindex glock (Benjamin Marzinski) [713229]\n- [x86] io_apic: Convert tick to interrupt when checking timer irq (Amos Kong) [698842]\n- [x86] io_apic: Make kernel option 'no_timer_check' always work (Amos Kong) [698842]\n- [x86] io_apic: Compare jiffies with other values by time_after (Amos Kong) [698842]\n- [xen] Fix x86_emulate handling of imul with immediate operands (Igor Mammedov) [700565]\n[2.6.18-275.el5]\n- [fs] Fix wrongly vfree'ing a kmalloc'ed area (Larry Woodman) [719495]\n- [fs] dlm: bump default hash table and maximum allocatable sizes (Bryn M. Reeves) [715603]\n- [net] tipc: Overhaul of socket locking logic (Max Matveev) [704192]", "cvss3": {}, "published": "2012-03-01T00:00:00", "type": "oraclelinux", "title": "Oracle Linux 5.8 kernel security and bug update ", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2011-2942", "CVE-2011-3131", "CVE-2011-2723", "CVE-2011-1160", "CVE-2011-4110", "CVE-2011-1083", "CVE-2011-1162", "CVE-2009-4067", "CVE-2011-2491", "CVE-2011-4127", "CVE-2011-2517", "CVE-2011-2495", "CVE-2011-2484", "CVE-2011-2901", "CVE-2011-3209", "CVE-2011-2494", "CVE-2011-3363", "CVE-2011-1833", "CVE-2011-2519", "CVE-2011-4330", "CVE-2011-4086", "CVE-2011-1020", "CVE-2012-0028", "CVE-2011-2482", "CVE-2011-4077", "CVE-2011-2695", "CVE-2011-3638", "CVE-2011-3637", "CVE-2011-4325", "CVE-2011-2496"], "modified": "2012-03-01T00:00:00", "id": "ELSA-2012-0150", "href": "http://linux.oracle.com/errata/ELSA-2012-0150.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:35:52", "description": "[2.6.18-194.32.1.0.1.el5]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- Add entropy support to igb (John Sobecki) [orabug 7607479]\n- [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]\n- [NET] Add xen pv/bonding netconsole support (Tina Yang) [orabug 6993043]\n [bz 7258]\n- [mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [nfsd] fix failure of file creation from hpux client (Wen gang Wang)\n [orabug 7579314]\n- [qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702]\n- [net] bonding: fix xen+bonding+netconsole panic issue (Joe Jin)\n [orabug 9504524]\n- [rds] Patch rds to 1.4.2-14 (Andy Grover) [orabug 9471572, 9344105]\n RDS: Fix BUG_ONs to not fire when in a tasklet\n ipoib: Fix lockup of the tx queue\n RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)\n RDS: Properly unmap when getting a remote access error (Tina Yang)\n RDS: Fix locking in rds_send_drop_to()\n- [mm] Enhance shrink_zone patch allow full swap utilization, and also be\n NUMA-aware (John Sobecki, Chris Mason, Herbert van den Bergh)\n [orabug 9245919]\n- [xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)\n [orabug 9107465]\n- [xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)\n [orabug 9764220]\n- Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]\n- fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro,\n Guru Anbalagane) [orabug 6124033]\n- [ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]\n- [ib] fix memory corruption (Andy Grover) [orabug 9972346]\n- make xenkbd.abs_pointer=1 by default (John Haxby) [orabug 67188919]\n- fix filp_close() race (Joe Jin) [orabug 10335998]\n[2.6.18-194.32.1.el5]\n- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]\n[2.6.18-194.31.1.el5]\n- [fs] nfs: set lock_context field in nfs_writepage_sync (Jeff Layton) [663381 660580]\n- [fs] nfs: remove problematic calls to nfs_clear_request (Jeff Layton) [663353 656492]\n- [fs] nfs: handle alloc failures in nfs_create_request (Jeff Layton) [663353 656492]\n- [fs] nfs: clean up nfs_create_request (Jeff Layton) [663353 656492]\n- [virt] xen: fix netback hotplug regression in xenbus fix (Laszlo Ersek) [636412 635999] {CVE-2010-3699}\n[2.6.18-194.30.1.el5]\n- [scsi] lpfc: set heartbeat timer off by default (Rob Evers) [658079 655119]\n- [misc] posix-cpu-timers: workaround for mt exec problems (Oleg Nesterov) [656265 656266] {CVE-2010-4248}\n- [fs] setup_arg_pages: diagnose excessive argument size (Oleg Nesterov) [645226 645227] {CVE-2010-3858}\n- [net] inet_diag: make sure we run audited bytecode (Jiri Pirko) [651266 651267] {CVE-2010-3880}\n- [net] limit sendto/recvfrom/iovec total length to INT_MAX (Jiri Pirko) [645871 645872] {CVE-2010-3859}\n- [bluetooth] hci_ldisc: fix missing NULL check (Jarod Wilson) [655664 655666] {CVE-2010-4242}\n- [virt] xen: add bounds req-process loop in blkback/blktap (Laszlo Ersek) [656208 654546] {CVE-2010-4247}\n- [virt] xen: don't leak dev refs on bad xenbus transitions (Laszlo Ersek) [636412 635999] {CVE-2010-3699}\n- [scsi] lpfc: fix crashes on NULL pnode dereference (Rob Evers) [658864 649489]\n- [scsi] qla2xxx: check null fcport in _queuecommands (Chad Dupuis) [657029 644863]\n- [fs] gfs2: fix race in unlinked inode deallocation (Robert S Peterson) [651811 643165]\n- [scsi] lpfc: fix a BUG_ON in lpfc_abort_handler (Rob Evers) [658378 639028]\n- [scsi] re-enable transistions from OFFLINE to RUNNING (Mike Christie) [658934 641193]\n- [scsi] scsi_dh_alua: handle transitioning state correctly (Mike Snitzer) [657028 619361]\n- [misc] add round_jiffies_up and related routines (Michal Schmidt) [658520 556476]\n- [fs] fix dcache accounting bug (Josef Bacik) [658857 596548]\n- [usb] uhci: fix oops in uhci_scan_schedule (Pete Zaitcev) [657319 516851]\n- [scsi] lpfc: fix panic in lpfc_scsi_cmd_iocb_cmpl (Rob Evers) [658379 603806]\n[2.6.18-194.29.1.el5]\n- [net] rds: fix rds_iovec page count overflow (Jiri Pirko) [647421 647422] {CVE-2010-3865}\n- [net] fix deadlock in sock_queue_rcv_skb (Danny Feng) [652536 652537] {CVE-2010-4161}\n- [net] packet: fix information leak to userland (Jiri Pirko) [649897 649898] {CVE-2010-3876}\n- [ipc] sys_semctl: fix kernel stack leakage (Danny Feng) [648721 648722] {CVE-2010-4083}\n- [misc] kernel: remove yield from stop_machine paths (Oleg Nesterov) [651818 634454]\n- [fs] dlm: reduce cond_resched during send (David Teigland) [653335 604139]\n- [fs] dlm: use TCP_NODELAY (David Teigland) [653335 604139]\n- [net] sctp: do not reset packet during sctp_packet_config (Jiri Pirko) [637866 637867] {CVE-2010-3432}\n- [net] bonding: no lock on copy/clear VLAN list on slave (Andy Gospodarek) [652561 627974]\n- [scsi] gdth: prevent integer overflow in ioc_general (Frantisek Hrbata) [651175 651176] {CVE-2010-4157}\n- [kernel] add stop_machine barrier to fix lock contention (Prarit Bhargava) [651818 634454]\n[2.6.18-194.28.1.el5]\n- [net] bnx2: Increase max rx ring size from 1K to 2K (Andy Gospodarek) [649255 640026]\n- [net] bnx2: fixup broken NAPI accounting (Andy Gospodarek) [649255 640026]\n- [pci] include DL580 G7 in bfsort whitelist (Tony Camuso) [646765 644879]\n- [sound] core: prevent heap corruption in snd_ctl_new (Jerome Marchand) [638483 638484] {CVE-2010-3442}\n- [net] ixgbe: add option to control interrupt mode (Andy Gospodarek) [643339 571495]\n- [fs] execve: fix interactivity and response to SIGKILL (Dave Anderson) [643344 629176]\n- [usb] fix test of wrong variable in create_by_name (Don Howard) [643347 594635]\n- [fs] gfs2: fix stuck in inode wait, no glocks stuck (Robert S Peterson) [651805 595397]\n- [net] gro: fix bogus gso_size on the first fraglist entry (Herbert Xu) [648938 588015]\n- [virt] xen: fix Connected state after netback dev closed (Paolo Bonzini) [643345 591548]\n- [net] tun: orphan an skb on tx (Michael S. Tsirkin) [643348 584412]\n[2.6.18-194.27.1.el5]\n- [net] netxen: fix set mac addr (Andy Gospodarek) [647681 562937]", "cvss3": {}, "published": "2011-01-04T00:00:00", "type": "oraclelinux", "title": "kernel security, bug fix, and enhancement update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-3865", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-3876", "CVE-2010-4247", "CVE-2010-3442", "CVE-2010-4248", "CVE-2010-3880", "CVE-2010-4157", "CVE-2010-4161", "CVE-2010-3858", "CVE-2010-3699", "CVE-2010-3432"], "modified": "2011-01-04T00:00:00", "id": "ELSA-2011-0004", "href": "http://linux.oracle.com/errata/ELSA-2011-0004.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:38:43", "description": "[2.6.18-128.4.1.0.1.el5]\n- [NET] Add entropy support to e1000 and bnx2 (John Sobecki,Guru Anbalagane) [orabug 6045759]\n- [MM] shrink zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- [NET] Add xen pv/bonding netconsole support (Tina yang) [orabug 6993043] [bz 7258]\n- [nfs] convert ENETUNREACH to ENOTCONN (Guru Anbalagane) [orabug 7689332]\n- [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514]\n- [MM] balloon code needs to adjust totalhigh_pages (Chuck Anderson) [orabug 8300888]\n- [NET] Add entropy support to igb ( John Sobecki) [orabug 7607479]\n- [XEN] use hypercall to fixmap pte updates (Mukesh Rathor) [orabug 8433329]\n- [XEN] Extend physical mask to 40bit for machine above 64G [orabug 8312526]\n[2.6.18-128.4.1.el5]\n- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406}\n- [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407}\n- [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895}\n- [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]\n[2.6.18-128.3.1.el5]\n- [pci] quirk: disable MSI on VIA VT3364 chipsets (Dean Nelson ) [507529 501374]\n- [char] tty: prevent an O_NDELAY writer from blocking (Mauro Carvalho Chehab ) [510239 506806]\n- [misc] hrtimer: fix a soft lockup (Amerigo Wang ) [418061 418071] {CVE-2007-5966}\n- [misc] hrtimer: check relative timeouts for overflow (AMEET M. PARANJAPE ) [510018 492230]", "cvss3": {}, "published": "2009-08-04T00:00:00", "type": "oraclelinux", "title": "kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2009-1895", "CVE-2009-1385", "CVE-2009-2407", "CVE-2007-5966", "CVE-2009-1388", "CVE-2009-1389", "CVE-2009-2406"], "modified": "2009-08-04T00:00:00", "id": "ELSA-2009-1193", "href": "http://linux.oracle.com/errata/ELSA-2009-1193.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:38:02", "description": "[2.6.9-89.0.26.0.1.EL]\n- [XEN] fix cpu hotplug crash (Joe Jin) [orabug 7521308]\n- [XEN] Bring up vcpus before khelper init (Joe Jin) [orabug 7521308]\n- [XEN] flush the tlb cache immediately (Dave McCracken, Scott Shi) [orabug 9138767]\n- fix skb alignment that was causing sendto() to fail with EFAULT\n (Olaf Kirch) [orabug 6845794]\n- fix enomem due to larger mtu size page alloc (Zach Brown) [orabug 5486128]\n- backout patch sysrq-b that queues upto keventd thread (Guru Anbalagane)\n [orabug 6125546]\n- netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]\n- [XEN] Fix elf_core_dump (Tina Yang) [orabug 6995928]\n- use lfence instead of cpuid instruction to implement memory barriers\n (Herbert van den Bergh) [orabug 7452412]\n- add netpoll support to xen netfront (Tina Yang) [orabz 7261]\n- [xen] execshield: fix endless GPF fault loop (Stephen Tweedie)\n [orabug 7175395]\n- [xen]: port el5u2 patch that allows 64-bit PVHVM guest to boot with 32-bit\n dom0 [orabug 7452107] xenstore\n- [mm] update shrink_zone patch to allow 100% swap utilization (John Sobecki,\n Chris Mason, Chuck Anderson, Dave McCracken) [orabug 7566319,6086839]\n- [kernel] backport report_lost_ticks patch from EL5.2 (John Sobecki)\n [orabug 6110605]\n- [xen] fix for hung JVM thread after #GPF [orabug 7916406] (Chuck Anderson)\n- port EL5U3 patch to adjust totalhigh_pages in the balloon driver\n [orabug 8300888]\n- check to see if hypervisor supports memory reservation change (Chuck Anderson)\n [orabug7556514]\n- [XEN] use hypercall to fixmap pte updates (Mukesh Rathor) [orabug 8433329]\n- fix oops in nlmclnt_mark_reclaim (Trond Myklebust) [orabug 8568878]\n- [x86_64] Allowed machine_reboot running on boot_cpu (Joe Jin) [orabug 8425237]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n- [x86_64]: fix x86_64 largesmp kernel reboot hang (Joe Jin) [orabug bug9126592]\n- [nfs]: fix file attribute caching (Chuck Lever, Herbert van den Bergh)\n [orabug 8449921]\n- [mm] revert patch #2042 (John Sobecki) [orabug 8895251]\n- [x86_64] Add compat32 support for readahead and fadvise64 (John Haxby)\n [orabug 9458826]\n- [XEN] free pte on hugetlb_prefault to avoid the clear_page race\n (Dave McCracken, Joe Jin) [orabug 9493665]\n- [XEN] Flush tlb cache immediately to avoid clear_page race (Dave McCracken,\n Joe Jin) [orabug 9488844]\n[2.6.9-89.0.26]\n-pci: fix reference to dev->bus->pad2 in pcix_set_mmrbc() (Dean Nelson) [596374 499355]\n-pci: cleanup error return for pcix get and set mmrbc functions (Dean Nelson) [596374 499355]\n-pci: fix access of pci_x_cmd by pcix get and set mmrbc functions (Dean Nelson) [596374 499355]\n-pci: fix return value from pcix_get_max_mmrbc (Dean Nelson) [596374 499355]\n-sctp: fix skb_over_panic from processing too many unknown params (Neil Horman) [584655 584656] {CVE2010-1173}\n-kernel: keyrings: find_keyring_by_name() can gain the freed keyring (Vitaly Mayatskikh) [585097 585098] {CVE-2010-1437}\n-virtio: net refill on out of memory (Herbert Xu) [597310 589897]\n-net: pkt_sched: fix sfq qdisc crashes with limit of 2 packets (Jiri Pirko) [597312 587644]\n-nfs: make sure client returns updated d_type info in getdents responses (Jeff Layton) [596372 577378]\n-vfs: force reval of target when following last_bind symlinks (Jeff Layton) [533118 533119] {CVE-2009-3726}\n-nfsv4: fix a problem whereby a buggy server can oops the kernel (Jeff Layton) [533118 533119] {CVE-2009-3726}\n-nfsd4: move special stateid processing to nfs4_preprocess_stateid_op() (Jeff Layton) [597314 517162]\n-nfsd4: move nfserr_openmode checking from nfsd_read/write into nfs4_preprocess_stateid_op() (Jeff Layton) [597314 517162]\n-time drift due to incorrect accounting of lost ticks if tick_divider > 1 (Ulrich Obergfell) [590551 579716]\n-jbd: properly discard freed buffers after commit (Josef Bacik) [589155 571546] ", "cvss3": {}, "published": "2010-06-16T00:00:00", "type": "oraclelinux", "title": "kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2010-1437", "CVE-2009-3726", "CVE-2010-1173"], "modified": "2010-06-16T00:00:00", "id": "ELSA-2010-0474", "href": "http://linux.oracle.com/errata/ELSA-2010-0474.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:38:23", "description": "[2.6.18-164.15.1.0.1.el5]\n- [xen] check to see if hypervisor supports memory reservation change\n (Chuck Anderson) [orabug 7556514]\n- Add entropy support to igb ( John Sobecki) [orabug 7607479]\n- [nfs] convert ENETUNREACH to ENOTCONN [orabug 7689332]\n- [NET] Add xen pv/bonding netconsole support (Tina yang) [orabug 6993043]\n [bz 7258]\n- [MM] shrink zone patch (John Sobecki,Chris Mason) [orabug 6086839]\n- fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]\n- [nfsd] fix failure of file creation from hpux client (Wen gang Wang)\n [orabug 7579314]\n- FP register state is corrupted during the handling a SIGSEGV (Chuck Anderson)\n [orabug 7708133]\n- [x86_64] PCI space below 4GB forces mem remap above 1TB (Larry Woodman) \n [523522]\n- [cpufreq] P-state limit: limit can never be increased (Stanislaw Gruszka) \n [489566]\n- [rds] patch rds to 4.0-ora-1.4.2-10 (Andy Grover, Tina Yang)\n [orabug 9168046] [RHBZ 546374]\n[2.6.18-164.15.1.el5]\n- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008}\n- Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}\n[2.6.18-164.14.1.el5]\n- [fs] ext4: Avoid null pointer dereference when decoding EROFS w/o a journal (Jiri Pirko) [547256 547257] {CVE-2009-4308}\n- [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}\n- [mm] fix sys_move_pages infoleak (Eugene Teo) [562589 562590] {CVE-2010-0415}\n- [x86_64] wire up compat sched_rr_get_interval (Danny Feng) [557684 557092]\n- [net] netfilter: enforce CAP_NET_ADMIN in ebtables (Danny Feng) [555242 555243] {CVE-2010-0007}\n- [misc] fix kernel info leak with print-fatal-signals=1 (Danny Feng) [554583 554584] {CVE-2010-0003}\n- [net] ipv6: fix OOPS in ip6_dst_lookup_tail (Thomas Graf) [559238 552354]\n- [kvm] pvclock on i386 suffers from double registering (Glauber Costa) [561454 557095]\n- [pci] VF can't be enabled in dom0 (Don Dutile) [560665 547980]\n- [kvm] kvmclock won't restore properly after resume (Glauber Costa) [560640 539521]\n- [mm] prevent performance hit for 32-bit apps on x86_64 (Larry Woodman) [562746 544448]\n- [fs] fix possible inode corruption on unlock (Eric Sandeen) [564281 545612]\n- [gfs2] careful unlinking inodes (Steven Whitehouse ) [564288 519049]\n- [gfs2] gfs2_delete_inode failing on RO filesystem (Abhijith Das ) [564290 501359]\n[2.6.18-164.13.1.el5]\n- [net] e1000e: fix broken wol (Andy Gospodarek) [559335 557974]\n- [net] gro: fix illegal merging of trailer trash (Herbert Xu) [561417 537876]\n- [xen] hook sched rebalance logic to opt_hardvirt (Christopher Lalancette ) [562777 529271]\n- [xen] crank the correct stat in the scheduler (Christopher Lalancette ) [562777 529271]\n- [xen] whitespace fixups in xen scheduler (Christopher Lalancette ) [562777 529271]\n- [scsi] cciss: ignore stale commands after reboot (Tomas Henzl ) [562772 525440]\n- [scsi] cciss: version change (Tomas Henzl ) [562772 525440]\n- [scsi] cciss: switch to using hlist (Tomas Henzl ) [562772 525440]\n- [net] bonding: allow bond in mode balance-alb to work (Jiri Pirko ) [560588 487763]\n- [net] e1000e: fix WoL on 82577/82578 (Jiri Pirko ) [543449 517593]\n[2.6.18-164.12.1.el5]\n- [net] e1000: fix rx length check errors (Neil Horman) [552137 552138] {CVE-2009-4536}\n- Revert: [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915]\n- [fs] jbd: fix race in slab creation/deletion (Josef Bacik) [553132 496847]", "cvss3": {}, "published": "2010-03-17T00:00:00", "type": "oraclelinux", "title": "kernel security and bug fix update", "bulletinFamily": "unix", "cvss2": {}, "cvelist": ["CVE-2010-0008", "CVE-2010-0007", "CVE-2010-0415", "CVE-2009-4536", "CVE-2010-0437", "CVE-2009-4308", "CVE-2010-0003"], "modified": "2010-03-17T00:00:00", "id": "ELSA-2010-0147", "href": "http://linux.oracle.com/errata/ELSA-2010-0147.html", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "openvas": [{"lastseen": "2019-05-29T18:38:35", "description": "The remote host is missing an update for the ", "cvss3": {}, "published": "2012-07-30T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2011:0162 centos4 x86_64", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-4258", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-4075"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310881399", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881399", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2011-January/017246.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881399\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:44:54 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\",\n \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\",\n \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"CESA\", value:\"2011:0162\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 x86_64\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS4\");\n script_tag(name:\"affected\", value:\"kernel on CentOS 4\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"insight\", value:\"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n\n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to '/dev/gdth' on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n\n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n\n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n\n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n\n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242, Vegard\n Nossum for reporting CVE-2010-4249, Vasiliy Kulikov for reporting\n CVE-2010-3876, Kees Cook for reporting CVE-2010-4072, and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n\n This update also fixes the following bugs:\n\n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n\n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp\", rpm:\"kernel-largesmp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp-devel\", rpm:\"kernel-largesmp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2018-04-06T11:37:27", "description": "The remote host is missing updates announced in\nadvisory RHSA-2009:1243.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThese updated packages fix the following security issues:\n\n* it was discovered that, when executing a new process, the clear_child_tid\npointer in the Linux kernel is not cleared. If this pointer points to a\nwritable portion of the memory of the new program, the kernel could corrupt\nfour bytes of memory, possibly leading to a local denial of service or\nprivilege escalation. (CVE-2009-2848, Important)\n\n* a flaw was found in the way the do_sigaltstack() function in the Linux\nkernel copies the stack_t structure to user-space. On 64-bit machines, this\nflaw could lead to a four-byte information leak. (CVE-2009-2847, Moderate)\n\n* a flaw was found in the ext4 file system code. A local attacker could use\nthis flaw to cause a denial of service by performing a resize operation on\na specially-crafted ext4 file system. (CVE-2009-0745, Low)\n\n* multiple flaws were found in the ext4 file system code. A local attacker\ncould use these flaws to cause a denial of service by mounting a\nspecially-crafted ext4 file system. (CVE-2009-0746, CVE-2009-0747,\nCVE-2009-0748, Low)\n\nThese updated packages also include several hundred bug fixes for and\nenhancements to the Linux kernel. Space precludes documenting each of these\nchanges in this advisory and users are directed to the Red Hat Enterprise\nLinux 5.4 Release Notes for information on the most significant of these\nchanges:\n\n\nAlso, for details concerning every bug fixed in and every enhancement added\nto the kernel for this release, see the kernel chapter in the Red Hat\nEnterprise Linux 5.4 Technical Notes:\n\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/\nTechnical_Notes/kernel.html\n\nAll Red Hat Enterprise Linux 5 users are advised to install these updated\npackages, which address these vulnerabilities as well as fixing the bugs\nand adding the enhancements noted in the Red Hat Enterprise Linux 5.4\nRelease Notes and Technical Notes. The system must be rebooted for this\nupdate to take effect.", "cvss3": {}, "published": "2009-09-09T00:00:00", "type": "openvas", "title": "RedHat Security Advisory RHSA-2009:1243", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-0747", "CVE-2009-0746", "CVE-2009-0745", "CVE-2009-0748", "CVE-2009-2848", "CVE-2009-2847"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:136141256231064796", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231064796", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: RHSA_2009_1243.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Auto-generated from advisory RHSA-2009:1243 ()\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_solution = \"Please note that this update is available via\nRed Hat Network. To use Red Hat Network, launch the Red\nHat Update Agent with the following command: up2date\n\nhttp://rhn.redhat.com/errata/RHSA-2009-1243.html\nhttp://www.redhat.com/security/updates/classification/#important\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Release_Notes/\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technical_Notes/kernel.html\";\n\ntag_summary = \"The remote host is missing updates announced in\nadvisory RHSA-2009:1243.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThese updated packages fix the following security issues:\n\n* it was discovered that, when executing a new process, the clear_child_tid\npointer in the Linux kernel is not cleared. If this pointer points to a\nwritable portion of the memory of the new program, the kernel could corrupt\nfour bytes of memory, possibly leading to a local denial of service or\nprivilege escalation. (CVE-2009-2848, Important)\n\n* a flaw was found in the way the do_sigaltstack() function in the Linux\nkernel copies the stack_t structure to user-space. On 64-bit machines, this\nflaw could lead to a four-byte information leak. (CVE-2009-2847, Moderate)\n\n* a flaw was found in the ext4 file system code. A local attacker could use\nthis flaw to cause a denial of service by performing a resize operation on\na specially-crafted ext4 file system. (CVE-2009-0745, Low)\n\n* multiple flaws were found in the ext4 file system code. A local attacker\ncould use these flaws to cause a denial of service by mounting a\nspecially-crafted ext4 file system. (CVE-2009-0746, CVE-2009-0747,\nCVE-2009-0748, Low)\n\nThese updated packages also include several hundred bug fixes for and\nenhancements to the Linux kernel. Space precludes documenting each of these\nchanges in this advisory and users are directed to the Red Hat Enterprise\nLinux 5.4 Release Notes for information on the most significant of these\nchanges:\n\n\nAlso, for details concerning every bug fixed in and every enhancement added\nto the kernel for this release, see the kernel chapter in the Red Hat\nEnterprise Linux 5.4 Technical Notes:\n\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/\nTechnical_Notes/kernel.html\n\nAll Red Hat Enterprise Linux 5 users are advised to install these updated\npackages, which address these vulnerabilities as well as fixing the bugs\nand adding the enhancements noted in the Red Hat Enterprise Linux 5.4\nRelease Notes and Technical Notes. The system must be rebooted for this\nupdate to take effect.\";\n\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.64796\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-09-09 02:15:49 +0200 (Wed, 09 Sep 2009)\");\n script_cve_id(\"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\", \"CVE-2009-2847\", \"CVE-2009-2848\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"RedHat Security Advisory RHSA-2009:1243\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name : \"URL\" , value : \"http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE-debuginfo\", rpm:\"kernel-PAE-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debuginfo-common\", rpm:\"kernel-debuginfo-common~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-kdump\", rpm:\"kernel-kdump~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-kdump-debuginfo\", rpm:\"kernel-kdump-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-kdump-devel\", rpm:\"kernel-kdump-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-07-27T10:55:42", "description": "The remote host is missing updates announced in\nadvisory RHSA-2009:1243.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThese updated packages fix the following security issues:\n\n* it was discovered that, when executing a new process, the clear_child_tid\npointer in the Linux kernel is not cleared. If this pointer points to a\nwritable portion of the memory of the new program, the kernel could corrupt\nfour bytes of memory, possibly leading to a local denial of service or\nprivilege escalation. (CVE-2009-2848, Important)\n\n* a flaw was found in the way the do_sigaltstack() function in the Linux\nkernel copies the stack_t structure to user-space. On 64-bit machines, this\nflaw could lead to a four-byte information leak. (CVE-2009-2847, Moderate)\n\n* a flaw was found in the ext4 file system code. A local attacker could use\nthis flaw to cause a denial of service by performing a resize operation on\na specially-crafted ext4 file system. (CVE-2009-0745, Low)\n\n* multiple flaws were found in the ext4 file system code. A local attacker\ncould use these flaws to cause a denial of service by mounting a\nspecially-crafted ext4 file system. (CVE-2009-0746, CVE-2009-0747,\nCVE-2009-0748, Low)\n\nThese updated packages also include several hundred bug fixes for and\nenhancements to the Linux kernel. Space precludes documenting each of these\nchanges in this advisory and users are directed to the Red Hat Enterprise\nLinux 5.4 Release Notes for information on the most significant of these\nchanges:\n\n\nAlso, for details concerning every bug fixed in and every enhancement added\nto the kernel for this release, see the kernel chapter in the Red Hat\nEnterprise Linux 5.4 Technical Notes:\n\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/\nTechnical_Notes/kernel.html\n\nAll Red Hat Enterprise Linux 5 users are advised to install these updated\npackages, which address these vulnerabilities as well as fixing the bugs\nand adding the enhancements noted in the Red Hat Enterprise Linux 5.4\nRelease Notes and Technical Notes. The system must be rebooted for this\nupdate to take effect.", "cvss3": {}, "published": "2009-09-09T00:00:00", "type": "openvas", "title": "RedHat Security Advisory RHSA-2009:1243", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-0747", "CVE-2009-0746", "CVE-2009-0745", "CVE-2009-0748", "CVE-2009-2848", "CVE-2009-2847"], "modified": "2017-07-12T00:00:00", "id": "OPENVAS:64796", "href": "http://plugins.openvas.org/nasl.php?oid=64796", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: RHSA_2009_1243.nasl 6683 2017-07-12 09:41:57Z cfischer $\n# Description: Auto-generated from advisory RHSA-2009:1243 ()\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_solution = \"Please note that this update is available via\nRed Hat Network. To use Red Hat Network, launch the Red\nHat Update Agent with the following command: up2date\n\nhttp://rhn.redhat.com/errata/RHSA-2009-1243.html\nhttp://www.redhat.com/security/updates/classification/#important\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Release_Notes/\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technical_Notes/kernel.html\";\n\ntag_summary = \"The remote host is missing updates announced in\nadvisory RHSA-2009:1243.\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system.\n\nThese updated packages fix the following security issues:\n\n* it was discovered that, when executing a new process, the clear_child_tid\npointer in the Linux kernel is not cleared. If this pointer points to a\nwritable portion of the memory of the new program, the kernel could corrupt\nfour bytes of memory, possibly leading to a local denial of service or\nprivilege escalation. (CVE-2009-2848, Important)\n\n* a flaw was found in the way the do_sigaltstack() function in the Linux\nkernel copies the stack_t structure to user-space. On 64-bit machines, this\nflaw could lead to a four-byte information leak. (CVE-2009-2847, Moderate)\n\n* a flaw was found in the ext4 file system code. A local attacker could use\nthis flaw to cause a denial of service by performing a resize operation on\na specially-crafted ext4 file system. (CVE-2009-0745, Low)\n\n* multiple flaws were found in the ext4 file system code. A local attacker\ncould use these flaws to cause a denial of service by mounting a\nspecially-crafted ext4 file system. (CVE-2009-0746, CVE-2009-0747,\nCVE-2009-0748, Low)\n\nThese updated packages also include several hundred bug fixes for and\nenhancements to the Linux kernel. Space precludes documenting each of these\nchanges in this advisory and users are directed to the Red Hat Enterprise\nLinux 5.4 Release Notes for information on the most significant of these\nchanges:\n\n\nAlso, for details concerning every bug fixed in and every enhancement added\nto the kernel for this release, see the kernel chapter in the Red Hat\nEnterprise Linux 5.4 Technical Notes:\n\nhttp://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/\nTechnical_Notes/kernel.html\n\nAll Red Hat Enterprise Linux 5 users are advised to install these updated\npackages, which address these vulnerabilities as well as fixing the bugs\nand adding the enhancements noted in the Red Hat Enterprise Linux 5.4\nRelease Notes and Technical Notes. The system must be rebooted for this\nupdate to take effect.\";\n\n\n\nif(description)\n{\n script_id(64796);\n script_version(\"$Revision: 6683 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:41:57 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-09-09 02:15:49 +0200 (Wed, 09 Sep 2009)\");\n script_cve_id(\"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\", \"CVE-2009-2847\", \"CVE-2009-2848\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"RedHat Security Advisory RHSA-2009:1243\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name : \"URL\" , value : \"http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE-debuginfo\", rpm:\"kernel-PAE-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debuginfo-common\", rpm:\"kernel-debuginfo-common~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-kdump\", rpm:\"kernel-kdump~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-kdump-debuginfo\", rpm:\"kernel-kdump-debuginfo~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-kdump-devel\", rpm:\"kernel-kdump-devel~2.6.18~164.el5\", rls:\"RHENT_5\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2020-09-01T06:31:40", "description": "The remote host is missing an update for the ", "cvss3": {}, "published": "2011-08-09T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2009:1243 centos5 i386", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-0747", "CVE-2009-0746", "CVE-2009-0745", "CVE-2009-0748", "CVE-2009-2848", "CVE-2009-2847"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310880884", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310880884", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2009:1243 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.880884\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-08-09 08:20:34 +0200 (Tue, 09 Aug 2011)\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"CESA\", value:\"2009:1243\");\n script_cve_id(\"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\",\n \"CVE-2009-2847\", \"CVE-2009-2848\");\n script_name(\"CentOS Update for kernel CESA-2009:1243 centos5 i386\");\n\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2009-September/016137.html\");\n script_xref(name:\"URL\", value:\"http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Release_Notes/\");\n script_xref(name:\"URL\", value:\"http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technical_Notes/kernel.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS5\");\n script_tag(name:\"affected\", value:\"kernel on CentOS 5\");\n script_tag(name:\"insight\", value:\"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n These updated packages fix the following security issues:\n\n * it was discovered that, when executing a new process, the clear_child_tid\n pointer in the Linux kernel is not cleared. If this pointer points to a\n writable portion of the memory of the new program, the kernel could corrupt\n four bytes of memory, possibly leading to a local denial of service or\n privilege escalation. (CVE-2009-2848, Important)\n\n * a flaw was found in the way the do_sigaltstack() function in the Linux\n kernel copies the stack_t structure to user-space. On 64-bit machines, this\n flaw could lead to a four-byte information leak. (CVE-2009-2847, Moderate)\n\n * a flaw was found in the ext4 file system code. A local attacker could use\n this flaw to cause a denial of service by performing a resize operation on\n a specially-crafted ext4 file system. (CVE-2009-0745, Low)\n\n * multiple flaws were found in the ext4 file system code. A local attacker\n could use these flaws to cause a denial of service by mounting a\n specially-crafted ext4 file system. (CVE-2009-0746, CVE-2009-0747,\n CVE-2009-0748, Low)\n\n These updated packages also include several hundred bug fixes for and\n enhancements to the Linux kernel. Space precludes documenting each of these\n changes in this advisory and users are directed to the linked Red Hat Enterprise\n Linux 5.4 Release Notes for information on the most significant of these\n changes.\n\n Also, for details concerning every bug fixed in and every enhancement added\n to the kernel for this release, see the kernel chapter in the linked Red Hat\n Enterprise Linux 5.4 Technical Notes.\n\n All Red Hat Enterprise Linux 5 users are advised to install these updated\n packages, which address these vulnerabilities as well as fixing the bugs\n and adding the enhancements noted in the Red Hat Enterprise Linux 5.4\n Release Notes and Technical Notes. The system must be rebooted for this\n update to take effect.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.9, "vector": "AV:L/AC:M/Au:N/C:P/I:P/A:C"}}, {"lastseen": "2018-01-11T11:07:33", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2012-07-30T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2011:0162 centos4 x86_64", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-4258", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-4075"], "modified": "2018-01-10T00:00:00", "id": "OPENVAS:881399", "href": "http://plugins.openvas.org/nasl.php?oid=881399", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 x86_64\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n \n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n \n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n \n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n \n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n \n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\n Nossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\n CVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n \n This update also fixes the following bugs:\n \n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n \n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on CentOS 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-January/017246.html\");\n script_id(881399);\n script_version(\"$Revision: 8352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-10 08:01:57 +0100 (Wed, 10 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-30 17:44:54 +0530 (Mon, 30 Jul 2012)\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\",\n \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\",\n \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:0162\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 x86_64\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp\", rpm:\"kernel-largesmp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp-devel\", rpm:\"kernel-largesmp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:55:57", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2011-01-31T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2011:0162 centos4 i386", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-4258", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-4075"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:880459", "href": "http://plugins.openvas.org/nasl.php?oid=880459", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n \n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n \n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n \n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n \n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n \n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\n Nossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\n CVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n \n This update also fixes the following bugs:\n \n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n \n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ... \n\n Description truncated, for more information please check the Reference URL\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"kernel on CentOS 4\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2011-January/017245.html\");\n script_id(880459);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-31 15:15:14 +0100 (Mon, 31 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"CESA\", value: \"2011:0162\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 i386\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem\", rpm:\"kernel-hugemem~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem-devel\", rpm:\"kernel-hugemem-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:39:26", "description": "The remote host is missing an update for the ", "cvss3": {}, "published": "2011-01-31T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2011:0162 centos4 i386", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-4258", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-4075"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310880459", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310880459", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2011:0162 centos4 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2011-January/017245.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.880459\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-31 15:15:14 +0100 (Mon, 31 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"CESA\", value:\"2011:0162\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_name(\"CentOS Update for kernel CESA-2011:0162 centos4 i386\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS4\");\n script_tag(name:\"affected\", value:\"kernel on CentOS 4\");\n script_tag(name:\"insight\", value:\"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n\n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to '/dev/gdth' on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n\n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n\n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n\n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n\n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242, Vegard\n Nossum for reporting CVE-2010-4249, Vasiliy Kulikov for reporting\n CVE-2010-3876, Kees Cook for reporting CVE-2010-4072, and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n\n This update also fixes the following bugs:\n\n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n\n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. This caused problems with the filtering code and frames were\n getting dropped before they were received by list ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem\", rpm:\"kernel-hugemem~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem-devel\", rpm:\"kernel-hugemem-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"CentOS4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:39:58", "description": "The remote host is missing an update for the ", "cvss3": {}, "published": "2011-01-21T00:00:00", "type": "openvas", "title": "RedHat Update for kernel RHSA-2011:0162-01", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-4258", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-4075"], "modified": "2019-03-12T00:00:00", "id": "OPENVAS:1361412562310870380", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870380", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for kernel RHSA-2011:0162-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2011-January/msg00015.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870380\");\n script_version(\"$Revision: 14114 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-12 12:48:52 +0100 (Tue, 12 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-21 14:59:01 +0100 (Fri, 21 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name:\"RHSA\", value:\"2011:0162-01\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_name(\"RedHat Update for kernel RHSA-2011:0162-01\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_4\");\n script_tag(name:\"affected\", value:\"kernel on Red Hat Enterprise Linux AS version 4,\n Red Hat Enterprise Linux ES version 4,\n Red Hat Enterprise Linux WS version 4\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n\n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to '/dev/gdth' on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n\n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n\n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n\n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n\n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242, Vegard\n Nossum for reporting CVE-2010-4249, Vasiliy Kulikov for reporting\n CVE-2010-3876, Kees Cook for reporting CVE-2010-4072, and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n\n This update also fixes the following bugs:\n\n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n\n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. T ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem\", rpm:\"kernel-hugemem~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem-devel\", rpm:\"kernel-hugemem-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp\", rpm:\"kernel-largesmp~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp-devel\", rpm:\"kernel-largesmp-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2017-07-25T10:55:43", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2011-08-09T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2009:1243 centos5 i386", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-0747", "CVE-2009-0746", "CVE-2009-0745", "CVE-2009-0748", "CVE-2009-2848", "CVE-2009-2847"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:880884", "href": "http://plugins.openvas.org/nasl.php?oid=880884", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2009:1243 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n These updated packages fix the following security issues:\n \n * it was discovered that, when executing a new process, the clear_child_tid\n pointer in the Linux kernel is not cleared. If this pointer points to a\n writable portion of the memory of the new program, the kernel could corrupt\n four bytes of memory, possibly leading to a local denial of service or\n privilege escalation. (CVE-2009-2848, Important)\n \n * a flaw was found in the way the do_sigaltstack() function in the Linux\n kernel copies the stack_t structure to user-space. On 64-bit machines, this\n flaw could lead to a four-byte information leak. (CVE-2009-2847, Moderate)\n \n * a flaw was found in the ext4 file system code. A local attacker could use\n this flaw to cause a denial of service by performing a resize operation on\n a specially-crafted ext4 file system. (CVE-2009-0745, Low)\n \n * multiple flaws were found in the ext4 file system code. A local attacker\n could use these flaws to cause a denial of service by mounting a\n specially-crafted ext4 file system. (CVE-2009-0746, CVE-2009-0747,\n CVE-2009-0748, Low)\n \n These updated packages also include several hundred bug fixes for and\n enhancements to the Linux kernel. Space precludes documenting each of these\n changes in this advisory and users are directed to the Red Hat Enterprise\n Linux 5.4 Release Notes for information on the most significant of these\n changes:\n \n http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Release_Notes/\n \n Also, for details concerning every bug fixed in and every enhancement added\n to the kernel for this release, see the kernel chapter in the Red Hat\n Enterprise Linux 5.4 Technical Notes:\n \n http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5.4/html/Technical_Notes/kernel.html\n \n All Red Hat Enterprise Linux 5 users are advised to install these updated\n packages, which address these vulnerabilities as well as fixing the bugs\n and adding the enhancements noted in the Red Hat Enterprise Linux 5.4\n Release Notes and Technical Notes. The system must be rebooted for this\n update to take effect.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"kernel on CentOS 5\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.centos.org/pipermail/centos-announce/2009-September/016137.html\");\n script_id(880884);\n script_version(\"$Revision: 6653 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:46:53 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-08-09 08:20:34 +0200 (Tue, 09 Aug 2011)\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"CESA\", value: \"2009:1243\");\n script_cve_id(\"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\",\n \"CVE-2009-2847\", \"CVE-2009-2848\");\n script_name(\"CentOS Update for kernel CESA-2009:1243 centos5 i386\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-04-06T11:39:56", "description": "The remote host is missing updates to kernel announced in\nadvisory CESA-2009:1243.", "cvss3": {}, "published": "2009-09-21T00:00:00", "type": "openvas", "title": "CentOS Security Advisory CESA-2009:1243 (kernel)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-0747", "CVE-2009-0746", "CVE-2009-0745", "CVE-2009-0748", "CVE-2009-2848", "CVE-2009-2847"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:136141256231064929", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231064929", "sourceData": "#CESA-2009:1243 64929 2\n# $Id: ovcesa2009_1243.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Auto-generated from advisory CESA-2009:1243 (kernel)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"For details on the issues addressed in this update,\nplease visit the referenced security advisories.\";\ntag_solution = \"Update the appropriate packages on your system.\n\nhttp://www.securityspace.com/smysecure/catid.html?in=CESA-2009:1243\nhttp://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:1243\";\ntag_summary = \"The remote host is missing updates to kernel announced in\nadvisory CESA-2009:1243.\";\n\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.64929\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-09-21 23:13:00 +0200 (Mon, 21 Sep 2009)\");\n script_cve_id(\"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\", \"CVE-2009-2847\", \"CVE-2009-2848\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"CentOS Security Advisory CESA-2009:1243 (kernel)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:56:58", "description": "The remote host is missing updates to kernel announced in\nadvisory CESA-2009:1243.", "cvss3": {}, "published": "2009-09-21T00:00:00", "type": "openvas", "title": "CentOS Security Advisory CESA-2009:1243 (kernel)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-0747", "CVE-2009-0746", "CVE-2009-0745", "CVE-2009-0748", "CVE-2009-2848", "CVE-2009-2847"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:64929", "href": "http://plugins.openvas.org/nasl.php?oid=64929", "sourceData": "#CESA-2009:1243 64929 2\n# $Id: ovcesa2009_1243.nasl 6650 2017-07-10 11:43:12Z cfischer $\n# Description: Auto-generated from advisory CESA-2009:1243 (kernel)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"For details on the issues addressed in this update,\nplease visit the referenced security advisories.\";\ntag_solution = \"Update the appropriate packages on your system.\n\nhttp://www.securityspace.com/smysecure/catid.html?in=CESA-2009:1243\nhttp://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:1243\";\ntag_summary = \"The remote host is missing updates to kernel announced in\nadvisory CESA-2009:1243.\";\n\n\n\nif(description)\n{\n script_id(64929);\n script_version(\"$Revision: 6650 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 13:43:12 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-09-21 23:13:00 +0200 (Mon, 21 Sep 2009)\");\n script_cve_id(\"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\", \"CVE-2009-2847\", \"CVE-2009-2848\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"CentOS Security Advisory CESA-2009:1243 (kernel)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\nif ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.el5\", rls:\"CentOS5\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.9, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2020-09-01T06:13:13", "description": "Oracle Linux Local Security Checks ELSA-2009-1243", "cvss3": {}, "published": "2015-10-08T00:00:00", "type": "openvas", "title": "Oracle Linux Local Check: ELSA-2009-1243", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-0747", "CVE-2009-0746", "CVE-2009-0745", "CVE-2009-0748", "CVE-2009-2848", "CVE-2009-2847"], "modified": "2018-09-28T00:00:00", "id": "OPENVAS:1361412562310122448", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122448", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2009-1243.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122448\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-08 14:45:33 +0300 (Thu, 08 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2009-1243\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2009-1243\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2009-1243.html\");\n script_cve_id(\"CVE-2009-0745\", \"CVE-2009-0746\", \"CVE-2009-0747\", \"CVE-2009-0748\", \"CVE-2009-2847\", \"CVE-2009-2848\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux5\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~164.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.el5~1.4.2~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.el5PAE~1.4.2~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.el5debug~1.4.2~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~164.el5xen~1.4.2~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.el5~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.el5PAE~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.el5debug~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~164.el5xen~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 5.9, "vector": "AV:L/AC:M/Au:N/C:P/I:P/A:C"}}, {"lastseen": "2017-07-27T10:55:18", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2011-01-21T00:00:00", "type": "openvas", "title": "RedHat Update for kernel RHSA-2011:0162-01", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-4242", "CVE-2010-4073", "CVE-2010-4072", "CVE-2010-4083", "CVE-2010-3859", "CVE-2010-4080", "CVE-2010-4158", "CVE-2010-3876", "CVE-2010-4258", "CVE-2010-4249", "CVE-2010-4157", "CVE-2010-4075"], "modified": "2017-07-12T00:00:00", "id": "OPENVAS:870380", "href": "http://plugins.openvas.org/nasl.php?oid=870380", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for kernel RHSA-2011:0162-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n \n * A heap overflow flaw was found in the Linux kernel's Transparent\n Inter-Process Communication protocol (TIPC) implementation. A local,\n unprivileged user could use this flaw to escalate their privileges.\n (CVE-2010-3859, Important)\n \n * Missing sanity checks were found in gdth_ioctl_alloc() in the gdth driver\n in the Linux kernel. A local user with access to "/dev/gdth" on a 64-bit\n system could use these flaws to cause a denial of service or escalate their\n privileges. (CVE-2010-4157, Moderate)\n \n * A NULL pointer dereference flaw was found in the Bluetooth HCI UART\n driver in the Linux kernel. A local, unprivileged user could use this flaw\n to cause a denial of service. (CVE-2010-4242, Moderate)\n \n * A flaw was found in the Linux kernel's garbage collector for AF_UNIX\n sockets. A local, unprivileged user could use this flaw to trigger a\n denial of service (out-of-memory condition). (CVE-2010-4249, Moderate)\n \n * Missing initialization flaws were found in the Linux kernel. A local,\n unprivileged user could use these flaws to cause information leaks.\n (CVE-2010-3876, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080,\n CVE-2010-4083, CVE-2010-4158, Low)\n \n Red Hat would like to thank Alan Cox for reporting CVE-2010-4242; Vegard\n Nossum for reporting CVE-2010-4249; Vasiliy Kulikov for reporting\n CVE-2010-3876; Kees Cook for reporting CVE-2010-4072; and Dan Rosenberg for\n reporting CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4083, and\n CVE-2010-4158.\n \n This update also fixes the following bugs:\n \n * A flaw was found in the Linux kernel where, if used in conjunction with\n another flaw that can result in a kernel Oops, could possibly lead to\n privilege escalation. It does not affect Red Hat Enterprise Linux 4 as the\n sysctl panic_on_oops variable is turned on by default. However, as a\n preventive measure if the variable is turned off by an administrator, this\n update addresses the issue. Red Hat would like to thank Nelson Elhage for\n reporting this vulnerability. (BZ#659568)\n \n * On Intel I/O Controller Hub 9 (ICH9) hardware, jumbo frame support is\n achieved by using page-based sk_buff buffers without any packet split. The\n entire frame data is copied to the page(s) rather than some to the\n skb->data area and some to the page(s) when performing a typical\n packet-split. T ... \n\n Description truncated, for more information please check the Reference URL\";\n\ntag_affected = \"kernel on Red Hat Enterprise Linux AS version 4,\n Red Hat Enterprise Linux ES version 4,\n Red Hat Enterprise Linux WS version 4\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-January/msg00015.html\");\n script_id(870380);\n script_version(\"$Revision: 6685 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:44:46 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-21 14:59:01 +0100 (Fri, 21 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"RHSA\", value: \"2011:0162-01\");\n script_cve_id(\"CVE-2010-3859\", \"CVE-2010-3876\", \"CVE-2010-4072\", \"CVE-2010-4073\", \"CVE-2010-4075\", \"CVE-2010-4080\", \"CVE-2010-4083\", \"CVE-2010-4157\", \"CVE-2010-4158\", \"CVE-2010-4242\", \"CVE-2010-4249\", \"CVE-2010-4258\");\n script_name(\"RedHat Update for kernel RHSA-2011:0162-01\");\n\n script_summary(\"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_4\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem\", rpm:\"kernel-hugemem~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-hugemem-devel\", rpm:\"kernel-hugemem-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp\", rpm:\"kernel-smp~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-smp-devel\", rpm:\"kernel-smp-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU\", rpm:\"kernel-xenU~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xenU-devel\", rpm:\"kernel-xenU-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp\", rpm:\"kernel-largesmp~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-largesmp-devel\", rpm:\"kernel-largesmp-devel~2.6.9~89.35.1.EL\", rls:\"RHENT_4\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-12-15T11:57:38", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2010-01-20T00:00:00", "type": "openvas", "title": "SuSE Update for kernel SUSE-SA:2010:005", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-4537", "CVE-2009-3939", "CVE-2009-4005", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-4020", "CVE-2009-4536", "CVE-2009-4308", "CVE-2009-4307", "CVE-2009-4138"], "modified": "2017-12-15T00:00:00", "id": "OPENVAS:850121", "href": "http://plugins.openvas.org/nasl.php?oid=850121", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2010:005\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The SUSE Linux Enterprise 11 and openSUSE 11.1 Kernel was updated to\n 2.6.27.42 fixing various bugs and security issues.\n\n Following security issues were fixed:\n CVE-2009-4536: A underflow in the e1000 jumbo Ethernet frame handling\n could be use by link-local remote attackers to crash the machine,\n bypass firewalls or potentially execute code in kernel context.\n This requires the attacker to be able to send Jumbo Frames to the\n target machine.\n\n CVE-2009-4538: A underflow in the e1000e jumbo Ethernet frame handling\n could be use by link-local remote attackers to crash the machine, bypass\n firewalling or potentially execute code in kernel context.\n This requires the attacker to be able to send Jumbo Frames to the\n target machine.\n\n CVE-2009-4138: drivers/firewire/ohci.c in the Linux kernel, when\n packet-per-buffer mode is used, allows local users to cause a denial\n of service (NULL pointer dereference and system crash) or possibly\n have unknown other impact via an unspecified ioctl associated with\n receiving an ISO packet that contains zero in the payload-length field.\n\n CVE-2009-4307: The ext4_fill_flex_info function in fs/ext4/super.c\n in the Linux kernel allows user-assisted remote attackers to cause\n a denial of service (divide-by-zero error and panic) via a malformed\n ext4 filesystem containing a super block with a large FLEX_BG group\n size (aka s_log_groups_per_flex value).\n\n CVE-2009-4308: The ext4_decode_error function in fs/ext4/super.c\n in the ext4 filesystem in the Linux kernel before 2.6.32 allows\n user-assisted remote attackers to cause a denial of service (NULL\n pointer dereference), and possibly have unspecified other impact,\n via a crafted read-only filesystem that lacks a journal.\n\n CVE-2009-3939: The poll_mode_io file for the megaraid_sas driver in\n the Linux kernel has world-writable permissions, which allows local\n users to change the I/O mode of the driver by modifying this file.\n\n CVE-2009-4005: The collect_rx_frame function in\n drivers/isdn/hisax/hfc_usb.c in the Linux kernel allows attackers\n to have an unspecified impact via a crafted HDLC packet that arrives\n over ISDN and triggers a buffer under-read.\n\n CVE-2009-3080: A negative offset in a ioctl in the GDTH RAID driver\n was fixed.\n\n CVE-2009-4020: Stack-based buffer overflow in the hfs subsystem in the\n Linux kernel allows remote attackers to have an unspecified impact\n via a crafted Hierarchical File System (HFS) filesystem, related to\n the hfs_readdir function in fs/hfs/dir.c.\n\n For a complete list of changes, please look at the RPM changelog.\";\n\ntag_impact = \"remote code execution\";\ntag_affected = \"kernel on openSUSE 11.1, SLES 11\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_id(850121);\n script_version(\"$Revision: 8130 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-15 07:31:09 +0100 (Fri, 15 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-01-20 09:25:19 +0100 (Wed, 20 Jan 2010)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2010-005\");\n script_cve_id(\"CVE-2009-3080\", \"CVE-2009-3939\", \"CVE-2009-4005\", \"CVE-2009-4020\", \"CVE-2009-4138\", \"CVE-2009-4307\", \"CVE-2009-4308\", \"CVE-2009-4536\", \"CVE-2009-4538\", \"CVE-2009-4537\");\n script_name(\"SuSE Update for kernel SUSE-SA:2010:005\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE11.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debugsource\", rpm:\"kernel-debug-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debuginfo\", rpm:\"kernel-default-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debugsource\", rpm:\"kernel-default-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debuginfo\", rpm:\"kernel-pae-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debugsource\", rpm:\"kernel-pae-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source-debuginfo\", rpm:\"kernel-source-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debuginfo\", rpm:\"kernel-trace-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debugsource\", rpm:\"kernel-trace-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debuginfo\", rpm:\"kernel-vanilla-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debugsource\", rpm:\"kernel-vanilla-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debugsource\", rpm:\"kernel-xen-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-extra\", rpm:\"kernel-debug-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-extra\", rpm:\"kernel-default-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-extra\", rpm:\"kernel-pae-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-extra\", rpm:\"kernel-trace-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-extra\", rpm:\"kernel-xen-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-06T13:04:42", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2010-01-20T00:00:00", "type": "openvas", "title": "SuSE Update for kernel SUSE-SA:2010:005", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2009-4537", "CVE-2009-3939", "CVE-2009-4005", "CVE-2009-3080", "CVE-2009-4538", "CVE-2009-4020", "CVE-2009-4536", "CVE-2009-4308", "CVE-2009-4307", "CVE-2009-4138"], "modified": "2018-01-04T00:00:00", "id": "OPENVAS:1361412562310850121", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310850121", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# SuSE Update for kernel SUSE-SA:2010:005\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The SUSE Linux Enterprise 11 and openSUSE 11.1 Kernel was updated to\n 2.6.27.42 fixing various bugs and security issues.\n\n Following security issues were fixed:\n CVE-2009-4536: A underflow in the e1000 jumbo Ethernet frame handling\n could be use by link-local remote attackers to crash the machine,\n bypass firewalls or potentially execute code in kernel context.\n This requires the attacker to be able to send Jumbo Frames to the\n target machine.\n\n CVE-2009-4538: A underflow in the e1000e jumbo Ethernet frame handling\n could be use by link-local remote attackers to crash the machine, bypass\n firewalling or potentially execute code in kernel context.\n This requires the attacker to be able to send Jumbo Frames to the\n target machine.\n\n CVE-2009-4138: drivers/firewire/ohci.c in the Linux kernel, when\n packet-per-buffer mode is used, allows local users to cause a denial\n of service (NULL pointer dereference and system crash) or possibly\n have unknown other impact via an unspecified ioctl associated with\n receiving an ISO packet that contains zero in the payload-length field.\n\n CVE-2009-4307: The ext4_fill_flex_info function in fs/ext4/super.c\n in the Linux kernel allows user-assisted remote attackers to cause\n a denial of service (divide-by-zero error and panic) via a malformed\n ext4 filesystem containing a super block with a large FLEX_BG group\n size (aka s_log_groups_per_flex value).\n\n CVE-2009-4308: The ext4_decode_error function in fs/ext4/super.c\n in the ext4 filesystem in the Linux kernel before 2.6.32 allows\n user-assisted remote attackers to cause a denial of service (NULL\n pointer dereference), and possibly have unspecified other impact,\n via a crafted read-only filesystem that lacks a journal.\n\n CVE-2009-3939: The poll_mode_io file for the megaraid_sas driver in\n the Linux kernel has world-writable permissions, which allows local\n users to change the I/O mode of the driver by modifying this file.\n\n CVE-2009-4005: The collect_rx_frame function in\n drivers/isdn/hisax/hfc_usb.c in the Linux kernel allows attackers\n to have an unspecified impact via a crafted HDLC packet that arrives\n over ISDN and triggers a buffer under-read.\n\n CVE-2009-3080: A negative offset in a ioctl in the GDTH RAID driver\n was fixed.\n\n CVE-2009-4020: Stack-based buffer overflow in the hfs subsystem in the\n Linux kernel allows remote attackers to have an unspecified impact\n via a crafted Hierarchical File System (HFS) filesystem, related to\n the hfs_readdir function in fs/hfs/dir.c.\n\n For a complete list of changes, please look at the RPM changelog.\";\n\ntag_impact = \"remote code execution\";\ntag_affected = \"kernel on openSUSE 11.1, SLES 11\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.850121\");\n script_version(\"$Revision: 8287 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-04 08:28:11 +0100 (Thu, 04 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2010-01-20 09:25:19 +0100 (Wed, 20 Jan 2010)\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2010-005\");\n script_cve_id(\"CVE-2009-3080\", \"CVE-2009-3939\", \"CVE-2009-4005\", \"CVE-2009-4020\", \"CVE-2009-4138\", \"CVE-2009-4307\", \"CVE-2009-4308\", \"CVE-2009-4536\", \"CVE-2009-4538\", \"CVE-2009-4537\");\n script_name(\"SuSE Update for kernel SUSE-SA:2010:005\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSE11.1\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debugsource\", rpm:\"kernel-debug-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debuginfo\", rpm:\"kernel-default-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-debugsource\", rpm:\"kernel-default-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debuginfo\", rpm:\"kernel-pae-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-debugsource\", rpm:\"kernel-pae-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source-debuginfo\", rpm:\"kernel-source-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debuginfo\", rpm:\"kernel-trace-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-debugsource\", rpm:\"kernel-trace-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debuginfo\", rpm:\"kernel-vanilla-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla-debugsource\", rpm:\"kernel-vanilla-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debugsource\", rpm:\"kernel-xen-debugsource~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-base\", rpm:\"kernel-debug-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-extra\", rpm:\"kernel-debug-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default\", rpm:\"kernel-default~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-base\", rpm:\"kernel-default-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-default-extra\", rpm:\"kernel-default-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae\", rpm:\"kernel-pae~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-base\", rpm:\"kernel-pae-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-pae-extra\", rpm:\"kernel-pae-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-syms\", rpm:\"kernel-syms~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace\", rpm:\"kernel-trace~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-base\", rpm:\"kernel-trace-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-trace-extra\", rpm:\"kernel-trace-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-vanilla\", rpm:\"kernel-vanilla~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-base\", rpm:\"kernel-xen-base~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-extra\", rpm:\"kernel-xen-extra~2.6.27.42~0.1.1\", rls:\"openSUSE11.1\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:49:20", "description": "The remote host is missing an update to linux-2.6\nannounced via advisory DSA 2003-1.", "cvss3": {}, "published": "2010-02-25T00:00:00", "type": "openvas", "title": "Debian Security Advisory DSA 2003-1 (linux-2.6)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-0410", "CVE-2010-0007", "CVE-2009-3726", "CVE-2010-0415", "CVE-2009-4005", "CVE-2009-3080", "CVE-2009-4020", "CVE-2010-0622", "CVE-2009-4536", "CVE-2009-4021"], "modified": "2017-07-07T00:00:00", "id": "OPENVAS:66954", "href": "http://plugins.openvas.org/nasl.php?oid=66954", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2003_1.nasl 6614 2017-07-07 12:09:12Z cfischer $\n# Description: Auto-generated from advisory DSA 2003-1 (linux-2.6)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"NOTE: This kernel update marks the final planned kernel security\nupdate for the 2.6.18 kernel in the Debian release 'etch'.\nAlthough security support for 'etch' officially ended on\nFeburary 15th, 2010, this update was already in preparation\nbefore that date. A final update that includes fixes for these\nissues in the 2.6.24 kernel is also in preparation and will be\nreleased shortly.\n\nSeveral vulnerabilities have been discovered in the Linux kernel that\nmay lead to a denial of service or privilege escalation. For details,\nplease visit the referenced security advisories.\n\nThis update also fixes a regression introduced by a previous security\nupdate that caused problems booting on certain s390 systems.\n\nFor the oldstable distribution (etch), this problem has been fixed in\nversion 2.6.18.dfsg.1-26etch2.\n\nWe recommend that you upgrade your linux-2.6, fai-kernels, and\";\ntag_summary = \"The remote host is missing an update to linux-2.6\nannounced via advisory DSA 2003-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202003-1\";\n\n\nif(description)\n{\n script_id(66954);\n script_version(\"$Revision: 6614 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:09:12 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-02-25 22:02:04 +0100 (Thu, 25 Feb 2010)\");\n script_cve_id(\"CVE-2009-3080\", \"CVE-2009-3726\", \"CVE-2009-4005\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4536\", \"CVE-2010-0007\", \"CVE-2010-0410\", \"CVE-2010-0415\", \"CVE-2010-0622\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"Debian Security Advisory DSA 2003-1 (linux-2.6)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"linux-doc-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-tree-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-support-2.6.18-6\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-patch-debian-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-source-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-manual-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-alpha\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-alpha-legacy\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-alpha-legacy\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-alpha-generic\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-alpha\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-alpha-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-alpha-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-alpha\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-alpha-generic\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-vserver\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-arm\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s3c2410\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-ixp4xx\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-ixp4xx\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-footbridge\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-footbridge\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-s3c2410\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-iop32x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-rpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-rpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-iop32x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-hppa\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-486\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-i386\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-686-bigmem\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-486\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-686-bigmem\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-itanium\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-ia64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-mckinley\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-mckinley\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-itanium\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-qemu\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r4k-ip22\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sb1-bcm91250a\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r5k-ip32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-mips\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sb1a-bcm91480b\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sb1-bcm91250a\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sb1a-bcm91480b\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r5k-ip32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-qemu\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r4k-ip22\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r5k-cobalt\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r3k-kn02\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r4k-kn04\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-mipsel\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r4k-kn04\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r5k-cobalt\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r3k-kn02\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-prep\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc-miboot\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-prep\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc-miboot\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s390-tape\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s390\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-s390\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-s390\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sparc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sparc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sparc32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-sparc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sparc32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-01-02T10:54:37", "description": "The remote host is missing an update to linux-2.6\nannounced via advisory DSA 2003-1.", "cvss3": {}, "published": "2010-02-25T00:00:00", "type": "openvas", "title": "Debian Security Advisory DSA 2003-1 (linux-2.6)", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-0410", "CVE-2010-0007", "CVE-2009-3726", "CVE-2010-0415", "CVE-2009-4005", "CVE-2009-3080", "CVE-2009-4020", "CVE-2010-0622", "CVE-2009-4536", "CVE-2009-4021"], "modified": "2017-12-27T00:00:00", "id": "OPENVAS:136141256231066954", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231066954", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2003_1.nasl 8250 2017-12-27 07:29:15Z teissa $\n# Description: Auto-generated from advisory DSA 2003-1 (linux-2.6)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"NOTE: This kernel update marks the final planned kernel security\nupdate for the 2.6.18 kernel in the Debian release 'etch'.\nAlthough security support for 'etch' officially ended on\nFeburary 15th, 2010, this update was already in preparation\nbefore that date. A final update that includes fixes for these\nissues in the 2.6.24 kernel is also in preparation and will be\nreleased shortly.\n\nSeveral vulnerabilities have been discovered in the Linux kernel that\nmay lead to a denial of service or privilege escalation. For details,\nplease visit the referenced security advisories.\n\nThis update also fixes a regression introduced by a previous security\nupdate that caused problems booting on certain s390 systems.\n\nFor the oldstable distribution (etch), this problem has been fixed in\nversion 2.6.18.dfsg.1-26etch2.\n\nWe recommend that you upgrade your linux-2.6, fai-kernels, and\";\ntag_summary = \"The remote host is missing an update to linux-2.6\nannounced via advisory DSA 2003-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202003-1\";\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.66954\");\n script_version(\"$Revision: 8250 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-27 08:29:15 +0100 (Wed, 27 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-02-25 22:02:04 +0100 (Thu, 25 Feb 2010)\");\n script_cve_id(\"CVE-2009-3080\", \"CVE-2009-3726\", \"CVE-2009-4005\", \"CVE-2009-4020\", \"CVE-2009-4021\", \"CVE-2009-4536\", \"CVE-2010-0007\", \"CVE-2010-0410\", \"CVE-2010-0415\", \"CVE-2010-0622\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_name(\"Debian Security Advisory DSA 2003-1 (linux-2.6)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"linux-doc-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-tree-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-support-2.6.18-6\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-patch-debian-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-source-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-manual-2.6.18\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-alpha\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-alpha-legacy\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-alpha-legacy\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-alpha-generic\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-alpha\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-alpha-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-alpha-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-alpha\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-alpha-generic\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-vserver\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-vserver-amd64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-arm\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s3c2410\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-ixp4xx\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-ixp4xx\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-footbridge\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-footbridge\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-s3c2410\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-iop32x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-rpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-rpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-iop32x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-parisc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-parisc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-hppa\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-486\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-i386\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-modules-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"xen-linux-system-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-686-bigmem\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-486\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-686-bigmem\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-k7\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-xen-vserver-686\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-itanium\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-ia64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-mckinley\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-mckinley\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-itanium\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-qemu\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r4k-ip22\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sb1-bcm91250a\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r5k-ip32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-mips\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sb1a-bcm91480b\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sb1-bcm91250a\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sb1a-bcm91480b\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r5k-ip32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-qemu\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r4k-ip22\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r5k-cobalt\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r3k-kn02\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-r4k-kn04\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-mipsel\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r4k-kn04\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r5k-cobalt\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-r3k-kn02\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-prep\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc-miboot\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-prep\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc-miboot\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-powerpc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-powerpc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s390-tape\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-s390\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-s390\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-s390\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-s390x\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sparc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sparc64-smp\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sparc32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-all-sparc\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-sparc32\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-image-2.6.18-6-vserver-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-vserver-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"linux-headers-2.6.18-6-sparc64\", ver:\"2.6.18.dfsg.1-26etch2\", rls:\"DEB4.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:36:10", "description": "Oracle Linux Local Security Checks ELSA-2010-0504", "cvss3": {}, "published": "2015-10-06T00:00:00", "type": "openvas", "title": "Oracle Linux Local Check: ELSA-2010-0504", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-1641", "CVE-2010-1437", "CVE-2010-1187", "CVE-2010-0291", "CVE-2010-0622", "CVE-2010-1436", "CVE-2010-1173", "CVE-2010-1088", "CVE-2010-1087"], "modified": "2018-09-28T00:00:00", "id": "OPENVAS:1361412562310122349", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122349", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2010-0504.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122349\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:17:17 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2010-0504\");\n script_tag(name:\"insight\", value:\"ELSA-2010-0504 - kernel security and bug fix update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2010-0504\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2010-0504.html\");\n script_cve_id(\"CVE-2010-0291\", \"CVE-2010-0622\", \"CVE-2010-1087\", \"CVE-2010-1088\", \"CVE-2010-1173\", \"CVE-2010-1187\", \"CVE-2010-1436\", \"CVE-2010-1437\", \"CVE-2010-1641\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux5\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~194.8.1.0.1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~194.8.1.0.1.el5~1.4.7~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~194.8.1.0.1.el5PAE~1.4.7~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~194.8.1.0.1.el5debug~1.4.7~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ocfs2\", rpm:\"ocfs2~2.6.18~194.8.1.0.1.el5xen~1.4.7~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~194.8.1.0.1.el5~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~194.8.1.0.1.el5PAE~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~194.8.1.0.1.el5debug~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"oracleasm\", rpm:\"oracleasm~2.6.18~194.8.1.0.1.el5xen~2.0.5~1.el5\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2018-01-02T10:57:18", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2012-01-13T00:00:00", "type": "openvas", "title": "RedHat Update for kernel RHSA-2012:0007-01", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2011-4348", "CVE-2011-4324", "CVE-2011-4132", "CVE-2011-4330", "CVE-2011-1020", "CVE-2011-2482", "CVE-2011-4077", "CVE-2011-3637", "CVE-2011-4325"], "modified": "2017-12-28T00:00:00", "id": "OPENVAS:870528", "href": "http://plugins.openvas.org/nasl.php?oid=870528", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for kernel RHSA-2012:0007-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * A buffer overflow flaw was found in the way the Linux kernel's XFS file\n system implementation handled links with overly long path names. A local,\n unprivileged user could use this flaw to cause a denial of service or\n escalate their privileges by mounting a specially-crafted disk.\n (CVE-2011-4077, Important)\n\n * The fix for CVE-2011-2482 provided by RHSA-2011:1212 introduced a\n regression: on systems that do not have Security-Enhanced Linux (SELinux)\n in Enforcing mode, a socket lock race could occur between sctp_rcv() and\n sctp_accept(). A remote attacker could use this flaw to cause a denial of\n service. By default, SELinux runs in Enforcing mode on Red Hat Enterprise\n Linux 5. (CVE-2011-4348, Important)\n\n * The proc file system could allow a local, unprivileged user to obtain\n sensitive information or possibly cause integrity issues. (CVE-2011-1020,\n Moderate)\n\n * A missing validation flaw was found in the Linux kernel's m_stop()\n implementation. A local, unprivileged user could use this flaw to trigger a\n denial of service. (CVE-2011-3637, Moderate)\n\n * A flaw was found in the Linux kernel's Journaling Block Device (JBD).\n A local attacker could use this flaw to crash the system by mounting a\n specially-crafted ext3 or ext4 disk. (CVE-2011-4132, Moderate)\n\n * A flaw was found in the Linux kernel's encode_share_access()\n implementation. A local, unprivileged user could use this flaw to trigger a\n denial of service by creating a regular file on an NFSv4 (Network File\n System version 4) file system via mknod(). (CVE-2011-4324, Moderate)\n\n * A flaw was found in the Linux kernel's NFS implementation. A local,\n unprivileged user could use this flaw to cause a denial of service.\n (CVE-2011-4325, Moderate)\n\n * A missing boundary check was found in the Linux kernel's HFS file system\n implementation. A local attacker could use this flaw to cause a denial of\n service or escalate their privileges by mounting a specially-crafted disk.\n (CVE-2011-4330, Moderate)\n\n Red Hat would like to thank Kees Cook for reporting CVE-2011-1020, and\n Clement Lecigne for reporting CVE-2011-4330.\n\n This update also fixes several bugs and adds one enhancement. Documentation\n for these changes will be available shortly from the Technical Notes\n document linked to in the References section.\n\n Users should upgrade to these updated packages, which contain backported\n patches to correct these issues, and fix the bugs and add the enhancement\n noted in the Technical Notes. The system must be rebooted for this update\n to take effect.\";\n\ntag_affected = \"kernel on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2012-January/msg00001.html\");\n script_id(870528);\n script_version(\"$Revision: 8253 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-28 07:29:51 +0100 (Thu, 28 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-01-13 10:45:22 +0530 (Fri, 13 Jan 2012)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name: \"RHSA\", value: \"2012:0007-01\");\n script_cve_id(\"CVE-2011-1020\", \"CVE-2011-3637\", \"CVE-2011-4077\", \"CVE-2011-4132\",\n \"CVE-2011-4324\", \"CVE-2011-4325\", \"CVE-2011-4330\", \"CVE-2011-4348\",\n \"CVE-2011-2482\");\n script_name(\"RedHat Update for kernel RHSA-2012:0007-01\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of kernel\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-debuginfo\", rpm:\"kernel-PAE-debuginfo~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-debuginfo\", rpm:\"kernel-debug-debuginfo~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo\", rpm:\"kernel-debuginfo~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debuginfo-common\", rpm:\"kernel-debuginfo-common~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-debuginfo\", rpm:\"kernel-xen-debuginfo~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~274.17.1.el5\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:39:26", "description": "The remote host is missing an update for the ", "cvss3": {}, "published": "2011-08-09T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2010:0504 centos5 i386", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2010-1641", "CVE-2010-1437", "CVE-2010-1187", "CVE-2010-0291", "CVE-2010-0622", "CVE-2010-1436", "CVE-2010-1173", "CVE-2010-1088", "CVE-2010-1087"], "modified": "2019-03-15T00:00:00", "id": "OPENVAS:1361412562310880617", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310880617", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2010:0504 centos5 i386\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2010-July/016747.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.880617\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-08-09 08:20:34 +0200 (Tue, 09 Aug 2011)\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_xref(name:\"CESA\", value:\"2010:0504\");\n script_cve_id(\"CVE-2010-0291\", \"CVE-2010-0622\", \"CVE-2010-1087\", \"CVE-2010-1088\", \"CVE-2010-1173\", \"CVE-2010-1187\", \"CVE-2010-1436\", \"CVE-2010-1437\", \"CVE-2010-1641\");\n script_name(\"CentOS Update for kernel CESA-2010:0504 centos5 i386\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS5\");\n script_tag(name:\"affected\", value:\"kernel on CentOS 5\");\n script_tag(name:\"insight\", value:\"The kernel packages contain the Linux kernel, the core of any Linux\n operating system.\n\n This update fixes the following security issues:\n\n * multiple flaws were found in the mmap and mremap implementations. A local\n user could use these flaws to cause a local denial of service or escalate\n their privileges. (CVE-2010-0291, Important)\n\n * a NULL pointer dereference flaw was found in the Fast Userspace Mutexes\n (futexes) implementation. The unlock code path did not check if the futex\n value associated with pi_state->owner had been modified. A local user could\n use this flaw to modify the futex value, possibly leading to a denial of\n service or privilege escalation when the pi_state->owner pointer is\n dereferenced. (CVE-2010-0622, Important)\n\n * a NULL pointer dereference flaw was found in the Linux kernel Network\n File System (NFS) implementation. A local user on a system that has an\n NFS-mounted file system could use this flaw to cause a denial of service or\n escalate their privileges on that system. (CVE-2010-1087, Important)\n\n * a flaw was found in the sctp_process_unk_param() function in the Linux\n kernel Stream Control Transmission Protocol (SCTP) implementation. A remote\n attacker could send a specially-crafted SCTP packet to an SCTP listening\n port on a target system, causing a kernel panic (denial of service).\n (CVE-2010-1173, Important)\n\n * a flaw was found in the Linux kernel Transparent Inter-Process\n Communication protocol (TIPC) implementation. If a client application, on a\n local system where the tipc module is not yet in network mode, attempted to\n send a message to a remote TIPC node, it would dereference a NULL pointer\n on the local system, causing a kernel panic (denial of service).\n (CVE-2010-1187, Important)\n\n * a buffer overflow flaw was found in the Linux kernel Global File System 2\n (GFS2) implementation. In certain cases, a quota could be written past the\n end of a memory page, causing memory corruption, leaving the quota stored\n on disk in an invalid state. A user with write access to a GFS2 file system\n could trigger this flaw to cause a kernel crash (denial of service) or\n escalate their privileges on the GFS2 server. This issue can only be\n triggered if the GFS2 file system is mounted with the 'quota=on' or\n 'quota=account' mount option. (CVE-2010-1436, Important)\n\n * a race condition between finding a keyring by name and destroying a freed\n keyring was found in the Linux kernel key management facility. A local user\n could use this flaw to cause a kernel panic (denial of service) or escalate ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug\", rpm:\"kernel-debug~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-debug-devel\", rpm:\"kernel-debug-devel~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-doc\", rpm:\"kernel-doc~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE\", rpm:\"kernel-PAE~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-PAE-devel\", rpm:\"kernel-PAE-devel~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen\", rpm:\"kernel-xen~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"kernel-xen-devel\", rpm:\"kernel-xen-devel~2.6.18~194.8.1.el5\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2018-01-02T10:57:42", "description": "Check for the Version of kernel", "cvss3": {}, "published": "2012-07-30T00:00:00", "type": "openvas", "title": "CentOS Update for kernel CESA-2012:0007 centos5 ", "bulletinFamily": "scanner", "cvss2": {}, "cvelist": ["CVE-2011-4348", "CVE-2011-4324", "CVE-2011-4132", "CVE-2011-4330", "CVE-2011-1020", "CVE-2011-2482", "CVE-2011-4077", "CVE-2011-3637", "CVE-2011-4325"], "modified": "2018-01-01T00:00:00", "id": "OPENVAS:881222", "href": "http://plugins.openvas.org/nasl.php?oid=881222", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for kernel CESA-2012:0007 centos5 \n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, M
OracleVM 2.2 : kernel (OVMSA-2013-0039)
