kernel security and bug fix update

2014-02-1100:00:00

Oracle

linux.oracle.com

0.001 Low

EPSS

Percentile

46.6%

JSON

[2.6.32-431.5.1]

[net] sctp: fix checksum marking for outgoing packets (Daniel Borkmann) [1046041 1040385]
[kernel] ptrace: Cleanup useless header (Aaron Tomlin) [1046043 1036312]
[kernel] ptrace: kill BKL in ptrace syscall (Aaron Tomlin) [1046043 1036312]
[fs] nfs: Prevent a 3-way deadlock between layoutreturn, open and state recovery (Steve Dickson) [1045094 1034487]
[fs] nfs: Ensure that rmdir() waits for sillyrenames to complete (Steve Dickson) [1051395 1034348]
[fs] nfs: wait on recovery for async session errors (Steve Dickson) [1051393 1030049]
[fs] nfs: Re-use exit code in nfs4_async_handle_error() (Steve Dickson) [1051393 1030049]
[fs] nfs: Update list of irrecoverable errors on DELEGRETURN (Steve Dickson) [1051393 1030049]
[exec] ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039486 1039487] {CVE-2013-2929}
[net] ipv6: router reachability probing (Jiri Benc) [1043779 1029585]
[net] ipv6: remove the unnecessary statement in find_match() (Jiri Benc) [1043779 1029585]
[net] ipv6: fix route selection if kernel is not compiled with CONFIG_IPV6_ROUTER_PREF (Jiri Benc) [1043779 1029585]
[net] ipv6: Fix default route failover when CONFIG_IPV6_ROUTER_PREF=n (Jiri Benc) [1043779 1029585]
[net] ipv6: probe routes asynchronous in rt6_probe (Jiri Benc) [1040826 1030094]
[net] ndisc: Update neigh->updated with write lock (Jiri Benc) [1040826 1030094]
[net] ipv6: prevent fib6_run_gc() contention (Jiri Benc) [1040826 1030094]
[net] netfilter: push reasm skb through instead of original frag skbs (Jiri Pirko) [1049590 1011214]
[net] ip6_output: fragment outgoing reassembled skb properly (Jiri Pirko) [1049590 1011214]
[net] netfilter: nf_conntrack_ipv6: improve fragmentation handling (Jiri Pirko) [1049590 1011214]
[net] ipv4: fix path MTU discovery with connection tracking (Jiri Pirko) [1049590 1011214]
[net] ipv6: Make IP6CB(skb)->nhoff 16-bit (Jiri Pirko) [1049590 1011214]
[edac] Add error decoding support for AMD Fam16h processors (Prarit Bhargava) [1051394 1020290]
[netdrv] bnx2x: correct VF-PF channel locking scheme (Michal Schmidt) [1040498 1029203]
[netdrv] bnx2x: handle known but unsupported VF messages (Michal Schmidt) [1040498 1029203]
[netdrv] bnx2x: Lock DMAE when used by statistic flow (Michal Schmidt) [1040497 1029200]
[net] ipv6: fix leaking uninitialized port number of offender sockaddr (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
[net] inet: fix addr_len/msg->msg_namelen assignment in recv_error functions (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
[net] inet: prevent leakage of uninitialized memory to user in recv syscalls (Florian Westphal) [1035882 1035883] {CVE-2013-6405}
[net] ipvs: Add boundary check on ioctl arguments (Denys Vlasenko) [1030817 1030818] {CVE-2013-4588}
[s390] qeth: avoid buffer overflow in snmp ioctl (Hendrik Brueckner) [1038935 1034266]
[md] fix calculation of stacking limits on level change (Jes Sorensen) [1035347 1026864]
[ata] ahci: fix turning on LEDs in ahci_start_port() (David Milburn) [1035339 1017105]
[ata] libata: implement cross-port EH exclusion (David Milburn) [1035339 1017105]
[ata] libata add ap to ata_wait_register and intro ata_msleep (David Milburn) [1035339 1017105]
[netdrv] igb: Update link modes display in ethtool (Stefan Assmann) [1032389 1019578]
[2.6.32-431.4.1]
[powerpc] signals: Improved mark VSX not saved with small contexts fix (Seth Jennings) [1044566 1044117]
[powerpc] signals: Mark VSX not saved with small contexts (Seth Jennings) [1044566 1044117]