[ELSA-2009-1193] kernel security and bug fix update

Severity Important

Affected Packages 22

CVEs 7

[2.6.18-128.4.1.0.1.el5]
- [NET] Add entropy support to e1000 and bnx2 (John Sobecki,Guru Anbalagane) [orabug 6045759]
- [MM] shrink zone patch (John Sobecki,Chris Mason) [orabug 6086839]
- [NET] Add xen pv/bonding netconsole support (Tina yang) [orabug 6993043] [bz 7258]
- [nfs] convert ENETUNREACH to ENOTCONN (Guru Anbalagane) [orabug 7689332]
- [xen] check to see if hypervisor supports memory reservation change (Chuck Anderson) [orabug 7556514]
- [MM] balloon code needs to adjust totalhigh_pages (Chuck Anderson) [orabug 8300888]
- [NET] Add entropy support to igb ( John Sobecki) [orabug 7607479]
- [XEN] use hypercall to fixmap pte updates (Mukesh Rathor) [orabug 8433329]
- [XEN] Extend physical mask to 40bit for machine above 64G [orabug 8312526]

[2.6.18-128.4.1.el5]
- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406}
- [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407}
- [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895}
- [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]

[2.6.18-128.3.1.el5]
- [pci] quirk: disable MSI on VIA VT3364 chipsets (Dean Nelson ) [507529 501374]
- [char] tty: prevent an O_NDELAY writer from blocking (Mauro Carvalho Chehab ) [510239 506806]
- [misc] hrtimer: fix a soft lockup (Amerigo Wang ) [418061 418071] {CVE-2007-5966}
- [misc] hrtimer: check relative timeouts for overflow (AMEET M. PARANJAPE ) [510018 492230]

Package	Affected Version
pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5xen?distro=oraclelinux-5	< 2.0.5-1.el5
pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5PAE?distro=oraclelinux-5	< 2.0.5-1.el5
pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5debug?distro=oraclelinux-5	< 2.0.5-1.el5
pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5?distro=oraclelinux-5	< 2.0.5-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5xen?distro=oraclelinux-5	< 1.2.9-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5xen?distro=oraclelinux-5	< 1.4.2-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5PAE?distro=oraclelinux-5	< 1.2.9-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5PAE?distro=oraclelinux-5	< 1.4.2-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5debug?distro=oraclelinux-5	< 1.2.9-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5debug?distro=oraclelinux-5	< 1.4.2-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5?distro=oraclelinux-5	< 1.2.9-1.el5
pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5?distro=oraclelinux-5	< 1.4.2-1.el5
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-xen?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-xen-devel?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-PAE?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-PAE-devel?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-5	< 2.6.18-128.4.1.0.1.el5

ID

ELSA-2009-1193

Severity

important

URL

https://linux.oracle.com/errata/ELSA-2009-1193.html

Published

2009-08-04T00:00:00
(15 years ago)

Modified

2009-08-04T00:00:00
(15 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2009-1193	http://linux.oracle.com/errata/ELSA-2009-1193.html
CVE	CVE-2007-5966	http://linux.oracle.com/cve/CVE-2007-5966
CVE	CVE-2009-1385	http://linux.oracle.com/cve/CVE-2009-1385
CVE	CVE-2009-1388	http://linux.oracle.com/cve/CVE-2009-1388
CVE	CVE-2009-1389	http://linux.oracle.com/cve/CVE-2009-1389
CVE	CVE-2009-1895	http://linux.oracle.com/cve/CVE-2009-1895
CVE	CVE-2009-2406	http://linux.oracle.com/cve/CVE-2009-2406
CVE	CVE-2009-2407	http://linux.oracle.com/cve/CVE-2009-2407

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5xen?distro=oraclelinux-5	oraclelinux	oracleasm-2.6.18-128.4.1.0.1.el5xen	< 2.0.5-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5PAE?distro=oraclelinux-5	oraclelinux	oracleasm-2.6.18-128.4.1.0.1.el5PAE	< 2.0.5-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5debug?distro=oraclelinux-5	oraclelinux	oracleasm-2.6.18-128.4.1.0.1.el5debug	< 2.0.5-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/oracleasm-2.6.18-128.4.1.0.1.el5?distro=oraclelinux-5	oraclelinux	oracleasm-2.6.18-128.4.1.0.1.el5	< 2.0.5-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5xen?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5xen	< 1.2.9-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5xen?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5xen	< 1.4.2-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5PAE?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5PAE	< 1.2.9-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5PAE?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5PAE	< 1.4.2-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5debug?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5debug	< 1.2.9-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5debug?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5debug	< 1.4.2-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5	< 1.2.9-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/ocfs2-2.6.18-128.4.1.0.1.el5?distro=oraclelinux-5	oraclelinux	ocfs2-2.6.18-128.4.1.0.1.el5	< 1.4.2-1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel?distro=oraclelinux-5	oraclelinux	kernel	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-xen?distro=oraclelinux-5	oraclelinux	kernel-xen	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-xen-devel?distro=oraclelinux-5	oraclelinux	kernel-xen-devel	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-PAE?distro=oraclelinux-5	oraclelinux	kernel-PAE	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-PAE-devel?distro=oraclelinux-5	oraclelinux	kernel-PAE-devel	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-5	oraclelinux	kernel-headers	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-5	oraclelinux	kernel-doc	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-5	oraclelinux	kernel-devel	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-5	oraclelinux	kernel-debug	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-5	oraclelinux	kernel-debug-devel	< 2.6.18-128.4.1.0.1.el5	oraclelinux-5

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date