kernel security and bug fix update

ID ELSA-2008-0508
Type oraclelinux
Reporter Oracle
Modified 2008-06-26T00:00:00


[2.6.9-] - fix skb alignment that was causing sendto() to fail with EFAULT (Olaf Kirch) [orabug 6845794] - fix entropy flag in bnx2 driver to generate entropy pool (John Sobecki) [orabug 5931647] - fix enomem due to larger mtu size page alloc (Zach Brown) [orabug 5486128] - fix per_cpu() api bug_on with rds (Zach Brown) [orabug 5760648] - remove patch sysrq-b that queues upto keventd thread [orabug 6125546] - allow more than 4GB hugepage for single user (Herbert van den Bergh) [orabug 6002738] - netrx/netpoll race avoidance (Tina Yang) [orabug 6143381] - fix pv guest oops on live migration (Chuck Anderson) [orabugz 4118] [2.6.9-67.0.20] -x8664: copy_user doesn't zero tail bytes on page fault (Vitaly Mayatskikh) [451273 451274] [2.6.9-67.0.19] -[revert] Add HP DL580 G5 to bfsort whitelist (Tony Camuso) [437976 429727] [2.6.9-67.0.18] -sys_times: Fix system unresponsiveness during many concurrent invocation of sys_times (Vitaly Mayatskikh) [449101 435280] -Add HP DL580 G5 to bfsort whitelist (Tony Camuso) [437976 429727] -ptrace: fix ptrace_attach and ptrace_detach race (Jerome Marchand) [449361 311931] -[revert] neofb: avoid overwriting fb_info fields (Vitaly Mayatskikh) [430251] -[revert] buffer overflow in moxa driver (Vitaly Mayatskikh) [423131] {CVE-2005-0504} [2.6.9-67.0.17] -x8664: copy_user leaks uninitialized data on page fault (Vitaly Mayatskikh) [433942 433943] {CVE-2008-0598} -fix possible buffer overflow in ASN.1 parsing routine (Anton Arapov ) [444462 444463] {CVE-2008-1673} [2.6.9-67.0.16] -Kernel does not clear direction flag for signal handlers (Vitaly Mayatskikh) [437314 437315] {CVE-2008-1367}