Important: kernel security update

[2.6.9-55.0.2.0.1]

• fix entropy flag in bnx2 driver to generate entropy pool (John
  Sobecki) [orabug 5931647]
• fix for nfs open call taking longer issue (Chuck Lever) orabug 5580407
  bz [219412]
• fix enomem due to larger mtu size page alloc (Zach Brown) orabug 5486128
• fix per_cpu() api bug_on with rds (Zach Brown) orabug 5760648
• limit nr_requests in cfq io scheduler ( Jens Axboe) bz 234278 orabug
  5899829

[2.6.9-55.0.2]
-cciss: fix size calculation in diskdump (Bryn Reeves) [243902]

[2.6.9-55.0.1]
-fix kernel spinlock panic in nfs/inode.c (Peter Staubach) [240855]
-fix core-dumping unreadable binaries via PT_INTERP (Eric Sandeen)
[243256] {CVE-2007-0958}
-nlm: when reclaiming locks, skip non-posix locks (Jeff Layton) [243251]
{CVE-2006-5158}
-add missing fput() in a 32-bit ioctl on 64-bit x86 systems (Jeff Burke)
[243252] {CVE-2007-0773}
-prevent oops in compat_sys_mount with NULL data pointer (Jeff Layton)
[243263] {CVE-2006-7203}
-fix 32bit-compat rt_sigtimedwait (Guy Streeter) [240458]
-nfs: fix repeated NFS mount failures lead to kernel panic (Peter
Staubach) [240851]
-safely store sysfs inode nrs in the sysfs dirent (Eric Sandeen) [242558]
-protect sysfs ->s_dentry w/ locking (Eric Sandeen) [242558]
-fix nr_unused accounting (Eric Sandeen) [241784]
-fix bluetooth setsockopt() information leaks (Don Howard) [243259]
{CVE-2007-1353}
-fix DoS in PPPOE (Neil Horman) [243262] {CVE-2007-2525}
-fix out of bounds fib_probs access vulnerability (Neil Horman) [243261]
{CVE-2007-2172}
-ip_conntrack_sctp: fix remotely triggerable NULL ptr dereference (Don
Howard) [243746] {CVE-2007-2876