kernel security and bug fix update

[2.6.9-78.0.17.0.1.EL]

• fix entropy flag in bnx2 driver to generate entropy pool (John Sobecki)
  [orabug 5931647]
• fix skb alignment that was causing sendto() to fail with EFAULT (Olaf Kirch)
  [orabug 6845794]
• fix enomem due to larger mtu size page alloc (Zach Brown) [orabug 5486128]
• fix per_cpu() api bug_on with rds (Zach Brown) [orabug 5760648]
• backout patch sysrq-b that queues upto keventd thread (Guru Anbalagane)
  [orabug 6125546]
• netrx/netpoll race avoidance (Tina Yang) [orabug 6143381]
• fix guest spinning in xen (Herbert van den Bergh) [orabug 7004010]
• fix serial port lock recursion (Herbert van den Bergh) [orabug 6761872]
• [XEN] Fix elf_core_dump (Tina Yang) [orabug 6995928]
• fix in nfs_attribute_timeout() (Trond Myklebust) [orabug 7378108]
• use lfence instead of cpuid instruction to implement memory barriers
  (Herbert van den Bergh) [orabug 7452412]
• add netpoll support to xen netfront (Tina Yang) [orabz 7261]
• [xen] execshield: fix endless GPF fault loop (Stephen Tweedie) [orabug 7175395]
• port Red Hat bug 472572: HVM crash in net/core/dev.c during boot [orabug 7653948]
  The following Red Hat patches were ported from the source RPM at:
  http://people.redhat.com/vgoyal/rhel4/SRPMS.kernel/kernel-2.6.9-78.22.EL.src.rpm
  linux-2.6.9-xen-fix-netfront-mem-leak.patch
  linux-2.6.9-xen-xen-vnif-stops-working-on-reception-of-duplicat.patch
  linux-2.6.9-xen-guest-will-crash-if-rtl8139-nic-is-only-one-spe.patch
• fix kernel null dereference in ap_suspend() during migration [orabug 7635625]
  Ported from the el5u2 xenpv-0.1-9.0.1.el5 patch
  ovs-bugz7262-fix-migration-hang-due-to-write-lock-starvation.patch.
  In el5u2, the fix is to the xenpv driver. For el4u7, the xenpv driver
  was moved into the kernel.
• port el4u6 xenpv patch (orabug 7442030) for live migration hang
  [orabug 7458244]
• [xen]: port el5u2 patch that allows 64-bit PVHVM guest to boot with 32-bit
  dom0 [orabug 7452107]
• [mm] update shrink_zone patch to allow 100% swap utilization (John Sobecki,
  Chris Mason, Chuck Anderson, Dave McCracken) [orabug 7566319,6086839]
• [nfs] update fix for attribute caching when using actimeo=0 (Chuck Lever,
  John Sobecki) [ORABUG 7131141,7156607,7388056] [RHBZ 446083,476726]
• [kernel] backport report_lost_ticks patch from EL5.2 (John Sobecki)
  [orabug 6110605]
  [2.6.9-78.0.17]
  -respin: added missing patches from build 78.0.15
  [2.6.9-78.0.16]
  -revert: nmi watchdog: move check_nmi_watchdog to later in boot time (Aristeu Rozanski) [479184 458859]
  [2.6.9-78.0.15]
  -fix a buffer overflow vulnerability with del_rbu driver (Don Howard) [482939 482940] {CVE-2009-0322}
  -security: introduce missing kfree (Jiri Pirko) [480595 480596] {CVE-2009-0031}
  -xen: add spurious fault handling to rhel4 xen (Chris Lalancette) [483748 465914]
  [2.6.9-78.0.14]
  -net: fix race between poll_napi and net_rx_action (Andy Gospodarek) [475970 463815]
  -netpoll: fix race condition between net_rx_action and poll_napi that can result in garbage device (Neil Horman) [480741 474479]
  -net: fix double list_del in net_rx_action (Neil Horman) [479681 477202]
  -fs: fix ‘it already cleared for block’ errors (Josef Bacik) [476533 460179]
  -iptables: fix oops on module unload (Neil Horman) [477147 456664]
  -pidhashing: fix alloc_pidmap (Jiri Pirko) [479182 461246]
  -nmi watchdog: move check_nmi_watchdog to later in boot time (Aristeu Rozanski) [479184 458859]
  -sctp: memory overflow when fwd tsn chunk is received with bad stream id (Eugene Teo) [478959 478960] {CVE-2009-0065}
  -kernel: enforce a minimum sg_io timeout (Eugene Teo) [475403 475404]