[ELSA-2011-1189] kernel security, bug fix, and enhancement update
[2.6.32-131.12.1.el6]
- [netdrv] be2net: clear intr bit in be_probe() (Ivan Vecera) [726308 722596]
[2.6.32-131.11.1.el6]
- [mm] hold the page lock until after set_page_stable_node (Andrea Arcangeli) [726095 683658]
- [netdrv] be2net: remove certain cmd failure logging (Ivan Vecera) [725329 719304]
- [net] nl80211: missing check for valid SSID size in scan operation (Stanislaw Gruszka) [718157 718158] {CVE-2011-2517}
- [net] bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace. (Thomas Graf) [703022 703023] {CVE-2011-2492}
- [net] inet_diag: fix validation of user data in inet_diag_bc_audit() (Thomas Graf) [714540 714541] {CVE-2011-2213}
- [fs] proc: restrict access to /proc/PID/io (Oleg Nesterov) [716829 716830] {CVE-2011-2495}
- [fs] validate size of EFI GUID partition entries (Anton Arapov) [703029 703030] {CVE-2011-1776}
- [fs] ext4: Fix max file size and logical block counting of extent format file (Lukas Czerner) [722568 722569] {CVE-2011-2695}
- [virt] kvm: Disable device assignment without interrupt remapping (Alex Williamson) [716306 711504] {CVE-2011-1898}
- [virt] iommu-api: Extension to check for interrupt remapping (Alex Williamson) [716306 711504] {CVE-2011-1898}
- [netdrv] r8169: fix Rx checksum offloading bugs (Ivan Vecera) [723807 635596]
- [netdrv] be2net: changes for BE3 native mode support (Ivan Vecera) [723820 695231]
[2.6.32-131.10.1.el6]
- [virt] ksm: fix race between ksmd and exiting task (Andrea Arcangeli) [710340 710341] {CVE-2011-2183}
- [kernel] proc: signedness issue in next_pidmap() (Jerome Marchand) [697824 697825] {CVE-2011-1593}
- [net] bluetooth: Prevent buffer overflow in l2cap config request (Jiri Pirko) [716809 716810] {CVE-2011-2497}
- [fs] NLM: Don't hang forever on NLM unlock requests (Jeff Layton) [709548 709549] {CVE-2011-2491}
- [fs] NFS: Fix NFSv3 exclusive open semantics (Jeff Layton) [719925 694210]
- [fs] GFS2: Incorrect inode state during deallocation (Steven Whitehouse) [714982 712139]
- [virt] KVM: Fix register corruption in pvclock_scale_delta (Avi Kivity) [719910 712102]
- [netdrv] ehea: Fix memory hotplug oops (Steve Best) [720914 702036]
- [net] Fix memory leak/corruption on VLAN GRO_DROP (Herbert Xu) [695175 695176] {CVE-2011-1576}
- [md] Fix resync hang after surprise removal (James Paradis) [719928 707268]
- GFS2: make sure fallocate bytes is a multiple of blksize (Benjamin Marzinski) [720863 695763] {CVE-2011-2689}
- [kernel] Prevent rt_sigqueueinfo and rt_tgsigqueueinfo from spoofing the signal code (Oleg Nesterov) [715521 690033] {CVE-2011-1182}
- [redhat] config: enable parallel port printer support (Aristeu Rozanski) [713827 635968]
[2.6.32-131.9.1.el6]
- [scsi] cciss: Annotate cciss_kdump_soft_reset and cciss_sent_reset as __devinit (Tomas Henzl) [715397 698268]
- [scsi] cciss: Don't wait forever for soft reset to complete, give up after awhile (Tomas Henzl) [715397 698268]
- [scsi] cciss: use cmd_alloc not cmd_special_alloc for the kdump soft reset command (Tomas Henzl) [715397 698268]
- [scsi] cciss: do not use bit 2 doorbell reset (Tomas Henzl) [715397 698268]
- [scsi] cciss: do not attempt PCI power management reset method if we know it won't work (Tomas Henzl) [715397 698268]
- [scsi] cciss: increase timeouts for post-reset no-ops (Tomas Henzl) [715397 698268]
- [scsi] cciss: remove superfluous sleeps around reset code (Tomas Henzl) [715397 698268]
- [scsi] cciss: do soft reset if hard reset is broken (Tomas Henzl) [715397 698268]
- [scsi] cciss: clarify messages around reset behavior (Tomas Henzl) [715397 698268]
- [scsi] cciss: increase time to wait for board reset to start (Tomas Henzl) [715397 698268]
- [scsi] cciss: factor out irq_request code (Tomas Henzl) [715397 698268]
- [scsi] cciss: factor out scatterlist allocation functions (Tomas Henzl) [715397 698268]
- [scsi] cciss: factor out command pool allocation functions (Tomas Henzl) [715397 698268]
- [scsi] cciss: use new doorbell-bit-5 reset method (Tomas Henzl) [715397 698268]
- [scsi] cciss: wait longer for no-op to complete after resetting controller (Tomas Henzl) [715397 698268]
- [scsi] cciss: do a better job of detecting controller reset failure (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do not attempt PCI PM reset if we know it will not work (Tomas Henzl) [715397 698268]
- [scsi] hpsa: remove superfluous sleeps around reset code (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do soft reset if hard reset is broken (Tomas Henzl) [715397 698268]
- [scsi] hpsa: clarify messages around reset behavior (Tomas Henzl) [715397 698268]
- [scsi] hpsa: factor out irq request code (Tomas Henzl) [715397 698268]
- [scsi] hpsa: factor out cmd_pool allocation functions (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do not use bit 2 doorbell reset, it causes NMIs (Tomas Henzl) [715397 698268]
- [scsi] hpsa: wait longer for no-op to complete after resetting controller (Tomas Henzl) [715397 698268]
- [scsi] hpsa: use new doorbell-bit-5 reset method (Tomas Henzl) [715397 698268]
- [scsi] hpsa: adjust timing of post-reset sleeps (Tomas Henzl) [715397 698268]
- [scsi] hpsa: do a better job of detecting controller reset failure (Tomas Henzl) [715397 698268]
[2.6.32-131.8.1.el6]
- [fs] GFS2: force a log flush when invalidating the rindex glock (Benjamin Marzinski) [717018 702263]
[2.6.32-131.7.1.el6]
- [virt] xen: bump memory limit for x86_64 domU PV guest to 128Gb (Igor Mammedov) [716539 669739]
| Package | Affected Version |
|---|---|
 pkg:rpm/oraclelinux/perf?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
|
pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
|
pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
|
pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
|
pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
|
pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
|
pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
|
pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6
|
< 2.6.32-131.12.1.el6 |
- ID
- ELSA-2011-1189
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2011-1189.html
- Published
-
2011-08-23T00:00:00
(13 years ago) - Modified
-
2011-08-23T00:00:00
(13 years ago) - Rights
- Copyright 2011 Oracle, Inc.
- Other Advisories
-
-
ELSA-2011-0927
-
ELSA-2011-1065
-
ELSA-2011-1212
-
ELSA-2011-1386
-
ELSA-2011-1479
-
ELSA-2011-2024
-
ELSA-2011-2025
-
ELSA-2011-2037
-
ELSA-2011-2038
-
FEDORA-2011-10942
-
FEDORA-2011-11103
-
FEDORA-2011-12874
-
FEDORA-2011-14747
-
FEDORA-2011-15241
-
FEDORA-2011-16346
-
FEDORA-2011-6447
-
FEDORA-2011-8403
-
FEDORA-2011-8421
-
FEDORA-2011-9130
-
FEDORA-2012-1539
-
FEDORA-2012-9430
-
RHSA-2011:0883
-
RHSA-2011:1106
-
RHSA-2011:1189
-
SUSE-SU-2015:0652-1
-
USN-1141-1
-
USN-1146-1
-
USN-1159-1
-
USN-1160-1
-
USN-1161-1
-
USN-1162-1
-
USN-1164-1
-
USN-1167-1
-
USN-1168-1
-
USN-1187-1
-
USN-1189-1
-
USN-1201-1
-
USN-1202-1
-
USN-1203-1
-
USN-1204-1
-
USN-1205-1
-
USN-1208-1
-
USN-1211-1
-
USN-1212-1
-
USN-1216-1
-
USN-1218-1
-
USN-1219-1
-
USN-1220-1
-
USN-1225-1
-
USN-1227-1
-
USN-1228-1
-
USN-1236-1
-
USN-1239-1
-
USN-1240-1
-
USN-1241-1
-
USN-1242-1
-
USN-1243-1
-
USN-1244-1
-
USN-1245-1
-
USN-1246-1
-
USN-1253-1
-
USN-1256-1
-
USN-1268-1
-
USN-1269-1
-
USN-1271-1
-
USN-1272-1
-
USN-1274-1
-
USN-1278-1
-
USN-1279-1
-
USN-1281-1
-
USN-1285-1
-
USN-1286-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2011-1189 |
|
|
| CVE | CVE-2011-1182 |
|
|
| CVE | CVE-2011-1576 |
|
|
| CVE | CVE-2011-1593 |
|
|
| CVE | CVE-2011-1776 |
|
|
| CVE | CVE-2011-1898 |
|
|
| CVE | CVE-2011-2183 |
|
|
| CVE | CVE-2011-2213 |
|
|
| CVE | CVE-2011-2491 |
|
|
| CVE | CVE-2011-2492 |
|
|
| CVE | CVE-2011-2495 |
|
|
| CVE | CVE-2011-2497 |
|
|
| CVE | CVE-2011-2517 |
|
|
| CVE | CVE-2011-2689 |
|
|
| CVE | CVE-2011-2695 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-6 | oraclelinux |
perf
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-6 | oraclelinux |
kernel
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-6 | oraclelinux |
kernel-headers
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-firmware?distro=oraclelinux-6 | oraclelinux |
kernel-firmware
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-6 | oraclelinux |
kernel-doc
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-6 | oraclelinux |
kernel-devel
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-6 | oraclelinux |
kernel-debug
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-6 | oraclelinux |
kernel-debug-devel
|
< 2.6.32-131.12.1.el6 | oraclelinux-6 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |