kernel security, bug fix, and enhancement update

[2.6.18-308.4.1.el5]

• [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}

[2.6.18-308.3.1.el5]

• [net] be2net: cancel be_worker during EEH recovery (Ivan Vecera) [805462 773735]
• [net] be2net: add vlan/rx-mode/flow-control config to be_setup (Ivan Vecera) [805462 773735]
• [x86] disable TSC synchronization when using kvmclock (Marcelo Tosatti) [805460 799170]
• [fs] vfs: fix LOOKUP_DIRECTORY not propagated to managed_dentry (Ian Kent) [801726 798809]
• [fs] vfs: fix d_instantiate_unique (Ian Kent) [801726 798809]
• [fs] nfs: allow high priority COMMITs to bypass inode commit lock (Jeff Layton) [799941 773777]
• [fs] nfs: don’t skip COMMITs if system under is mem pressure (Jeff Layton) [799941 773777]
• [scsi] qla2xxx: Read the HCCR register to flush any PCIe writes (Chad Dupuis) [798748 772192]
• [scsi] qla2xxx: Complete mbox cmd timeout before next reset cycle (Chad Dupuis) [798748 772192]
• [s390] qdio: wrong buffers-used counter for ERROR buffers (Hendrik Brueckner) [801724 790840]
• [net] bridge: Reset IPCB when entering IP stack (Herbert Xu) [804721 749813]
• [fs] procfs: add hidepid= and gid= mount options (Jerome Marchand) [770649 770650]
• [fs] procfs: parse mount options (Jerome Marchand) [770649 770650]

[2.6.18-308.2.1.el5]

• [fs] nfs: nfs_fhget should wait on I_NEW instead of I_LOCK (Sachin Prabhu) [795664 785062]