kernel security and bug fix update

2011-05-3100:00:00

Oracle

linux.oracle.com

0.027 Low

EPSS

Percentile

89.4%

JSON

[2.6.18-238.12.1.0.1.el5]

[scsi] fix scsi hotplug and rescan race [orabug 10260172]
fix filp_close() race (Joe Jin) [orabug 10335998]
fix missing aio_complete() in end_io (Joel Becker) [orabug 10365195]
make xenkbd.abs_pointer=1 by default [orabug 67188919]
[xen] check to see if hypervisor supports memory reservation change
(Chuck Anderson) [orabug 7556514]
[net] Enable entropy for bnx2,bnx2x,e1000e,igb,ixgb,ixgbe,ixgbevf (John Sobecki)
[orabug 10315433]
[NET] Add xen pv netconsole support (Tina Yang) [orabug 6993043] [bz 7258]
[mm] shrink_zone patch (John Sobecki,Chris Mason) [orabug 6086839]
fix aacraid not to reset during kexec (Joe Jin) [orabug 8516042]
[rds] Patch rds to 1.4.2-20 (Andy Grover) [orabug 9471572, 9344105]
RDS: Fix BUG_ONs to not fire when in a tasklet
ipoib: Fix lockup of the tx queue
RDS: Do not call set_page_dirty() with irqs off (Sherman Pun)
RDS: Properly unmap when getting a remote access error (Tina Yang)
RDS: Fix locking in rds_send_drop_to()
[qla] fix qla not to query hccr (Guru Anbalagane) [Orabug 8746702]
[nfs] too many getattr and access calls after direct I/O [orabug 9348191]
[xen] PVHVM guest with PoD crashes under memory pressure (Chuck Anderson)
[orabug 9107465]
[xen] PV guest with FC HBA hangs during shutdown (Chuck Anderson)
[orabug 9764220]
Support 256GB+ memory for pv guest (Mukesh Rathor) [orabug 9450615]
fix overcommit memory to use percpu_counter for el5 (KOSAKI Motohiro,
Guru Anbalagane) [orabug 6124033]
[ipmi] make configurable timeouts for kcs of ipmi [orabug 9752208]
[ib] fix memory corruption (Andy Grover) [orabug 9972346]
[aio] patch removes limit on number of retries (Srinivas Eeda) [orabug 10044782]
[loop] Do not call loop_unplug for not configured loop device (orabug 10314497)
[2.6.18-238.12.1.el5]
[x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921]
[i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921]
[xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240]
[net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236]
[net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368]
[block] cciss: fix lost command problem (Phillip Lougher) [696503 696153]
[fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032]
[fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032]
[fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032]
[scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494}
[net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080}
[net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078}
[fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577}
[xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166}
[net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369]
[fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512]
[scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386]
[mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]
[2.6.18-238.11.1.el5]
[s390] dasd: fix race between open and offline (Hendrik Brueckner) [699808 695357]
[2.6.18-238.10.1.el5]
[fs] gfs2: creating large files suddenly slow to a crawl (Robert S Peterson) [690239 683155]
[virt] hypervisor: Overflow fix for clocks > 4GHz (Zachary Amsden) [690134 673242]
[usb] fix usbfs isochronous data transfer regression (Don Zickus) [696136 688926]
[fs] partitions: Fix corrupted OSF partition table parsing (Danny Feng) [688022 688023] {CVE-2011-1163}
[misc] pm: add comment explaining is_registered kabi work-around (Don Zickus) [689699 637930]
[media] sn9c102: fix world-wirtable sysfs files (Don Howard) [679304 679305]
[scsi] scsi_dh_rdac: Add two new IBM devices to rdac_dev_list (Rob Evers) [692370 691460]
[fs] block: fix submit_bh discarding barrier flag on sync write (Lukas Czerner) [690795 667673]
[net] netfilter/ipt_CLUSTERIP: fix buffer overflow (Jiri Pirko) [689339 689340]
[net] netfilter: ip6_tables: fix infoleak to userspace (Jiri Pirko) [689348 689349] {CVE-2011-1172}
[net] netfilter/ip_tables: fix infoleak to userspace (Jiri Pirko) [689331 689332] {CVE-2011-1171}
[net] netfilter/arp_tables: fix infoleak to userspace (Jiri Pirko) [689322 689323] {CVE-2011-1170}
[base] Fix potential deadlock in driver core (Don Zickus) [689699 637930]
[net] forcedeth/r8169: call netif_carrier_off at end of probe (Ivan Vecera) [689808 689805 664705 664707]
[net] ixgbe: fix for 82599 erratum on Header Splitting (Andy Gospodarek) [693751 680531]
[net] ixgbe: limit VF access to network traffic (Andy Gospodarek) [693751 680531]
[fs] lockd: make lockd_down wait for lockd to come down (Jeff Layton) [688156 653286]
[fs] proc: protect mm start_/end_code in /proc/pid/stat (Eugene Teo) [684570 684571] {CVE-2011-0726}
[net] dccp: fix oops in dccp_rcv_state_process (Eugene Teo) [682955 682956] {CVE-2011-1093}
[net] bluetooth: fix bnep buffer overflow (Don Howard) [681318 681319] {CVE-2011-1079}
[fs] nfs: break nfsd v4 lease on unlink, link, and rename (J. Bruce Fields) [693755 610093]
[fs] nfs: break lease on nfsd v4 setattr (J. Bruce Fields) [693755 610093]