Oracle Linux Security Advisory ELSA-2012-1445

https://access.redhat.com/errata/RHSA-2012:1445.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
kernel-2.6.18-308.20.1.el5.i686.rpm
kernel-PAE-2.6.18-308.20.1.el5.i686.rpm
kernel-PAE-devel-2.6.18-308.20.1.el5.i686.rpm
kernel-debug-2.6.18-308.20.1.el5.i686.rpm
kernel-debug-devel-2.6.18-308.20.1.el5.i686.rpm
kernel-devel-2.6.18-308.20.1.el5.i686.rpm
kernel-doc-2.6.18-308.20.1.el5.noarch.rpm
kernel-headers-2.6.18-308.20.1.el5.i386.rpm
kernel-xen-2.6.18-308.20.1.el5.i686.rpm
kernel-xen-devel-2.6.18-308.20.1.el5.i686.rpm

x86_64:
kernel-2.6.18-308.20.1.el5.x86_64.rpm
kernel-debug-2.6.18-308.20.1.el5.x86_64.rpm
kernel-debug-devel-2.6.18-308.20.1.el5.x86_64.rpm
kernel-devel-2.6.18-308.20.1.el5.x86_64.rpm
kernel-doc-2.6.18-308.20.1.el5.noarch.rpm
kernel-headers-2.6.18-308.20.1.el5.x86_64.rpm
kernel-xen-2.6.18-308.20.1.el5.x86_64.rpm
kernel-xen-devel-2.6.18-308.20.1.el5.x86_64.rpm

ia64:
kernel-2.6.18-308.20.1.el5.ia64.rpm
kernel-debug-2.6.18-308.20.1.el5.ia64.rpm
kernel-debug-devel-2.6.18-308.20.1.el5.ia64.rpm
kernel-devel-2.6.18-308.20.1.el5.ia64.rpm
kernel-doc-2.6.18-308.20.1.el5.noarch.rpm
kernel-headers-2.6.18-308.20.1.el5.ia64.rpm
kernel-xen-2.6.18-308.20.1.el5.ia64.rpm
kernel-xen-devel-2.6.18-308.20.1.el5.ia64.rpm


SRPMS:
https://oss.oracle.com:443/ol5/SRPMS-updates/kernel-2.6.18-308.20.1.el5.src.rpm

The following packages were rebuilt to be in sync with the updated 
kernel version (no changes other than updating the version number):

i386:
oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-308.20.1.el5PAE-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-308.20.1.el5xen-2.0.5-1.el5.i686.rpm
oracleasm-2.6.18-308.20.1.el5debug-2.0.5-1.el5.i686.rpm
ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-308.20.1.el5PAE-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-308.20.1.el5xen-1.4.10-1.el5.i686.rpm
ocfs2-2.6.18-308.20.1.el5debug-1.4.10-1.el5.i686.rpm

x86_64:
oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.x86_64.rpm
oracleasm-2.6.18-308.20.1.el5xen-2.0.5-1.el5.x86_64.rpm
oracleasm-2.6.18-308.20.1.el5debug-2.0.5-1.el5.x86_64.rpm
ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.x86_64.rpm
ocfs2-2.6.18-308.20.1.el5xen-1.4.10-1.el5.x86_64.rpm
ocfs2-2.6.18-308.20.1.el5debug-1.4.10-1.el5.x86_64.rpm

ia64:
oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.ia64.rpm
oracleasm-2.6.18-308.20.1.el5xen-2.0.5-1.el5.ia64.rpm
oracleasm-2.6.18-308.20.1.el5debug-2.0.5-1.el5.ia64.rpm
ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.ia64.rpm
ocfs2-2.6.18-308.20.1.el5xen-1.4.10-1.el5.ia64.rpm
ocfs2-2.6.18-308.20.1.el5debug-1.4.10-1.el5.ia64.rpm


SRPMS:
https://oss.oracle.com:443/el5/SRPMS-updates/oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.src.rpm
https://oss.oracle.com:443/el5/SRPMS-updates/ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.src.rpm


Description of changes:


[2.6.18-308.20.1.el5]
- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] 
{CVE-2012-1568}

[2.6.18-308.19.1.el5]
- [net] be2net: Remove code that stops further access to BE NIC based on 
UE bits (Alexander Gordeev) [867896 862811]
- [net] netpoll: fix an incorrect check for NULL pointer (Alexander 
Gordeev) [856079 848098]
- [net] mlx4: Add support for EEH error recovery (Alexander Gordeev) 
[847404 798048]
- [fs] ext4: fix undefined bit shift result in ext4_fill_flex_info (Eric 
Sandeen) [809688 809689] {CVE-2012-2100}
- [fs] ext4: fix undefined behavior in ext4_fill_flex_info (Eric 
Sandeen) [809688 809689] {CVE-2012-2100}
- [fs] fix crash if block {device|size} read & changed at sametime 
(Mikulas Patocka) [864823 756506]
- [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] 
{CVE-2012-1568}
- [net] ipv6: Fix fib6_dump_table walker leak (Jiri Benc) [861387 819830]
- [fs] cifs: update cifs_dfs_d_automount caller path (Sachin Prabhu) 
[858774 857448]
- [xen] x86: change the default behaviour of CVE-2012-2934 fix (Petr 
Matousek) [859946 858724]
- [net] ipvs: allow transmit of GRO aggregated skbs (Jesper Brouer) 
[857966 854067]
- [scsi] isci: fixup linkspeed definitions (David Milburn) [854986 833000]
- [fs] nfs: nfs_d_automount update caller path after do_add_mount 
(Carlos Maiolino) [857552 834379]
- [fs] vfs: Fix vfsmount overput on simultaneous automount (Carlos 
Maiolino) [857552 834379]

[2.6.18-308.18.1.el5]
- [fs] autofs4: Merge the remaining dentry ops tables (Ian Kent) [857558 
850977]

[2.6.18-308.17.1.el5]
- [fs] cifs: Invalidate file cache in case of posix open (Sachin Prabhu) 
[857964 852526]

Oracle5: ELSA-2012-1445: kernel Low Security Update

The following updated rpms for Oracle Linux 5 have been uploaded to the Unbreakable Linux Network:

Summary

[2.6.18-308.20.1.el5] - Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568} [2.6.18-308.19.1.el5] - [net] be2net: Remove code that stops further access to BE NIC based on UE bits (Alexander Gordeev) [867896 862811] - [net] netpoll: fix an incorrect check for NULL pointer (Alexander Gordeev) [856079 848098] - [net] mlx4: Add support for EEH error recovery (Alexander Gordeev) [847404 798048] - [fs] ext4: fix undefined bit shift result in ext4_fill_flex_info (Eric Sandeen) [809688 809689] {CVE-2012-2100} - [fs] ext4: fix undefined behavior in ext4_fill_flex_info (Eric Sandeen) [809688 809689] {CVE-2012-2100} - [fs] fix crash if block {device|size} read & changed at sametime (Mikulas Patocka) [864823 756506] - [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568} - [net] ipv6: Fix fib6_dump_table walker leak (Jiri Benc) [861387 819830] - [fs] cifs: update cifs_dfs_d_automount caller path (Sachin Prabhu) [858774 857448] - [xen] x86: change the default behaviour of CVE-2012-2934 fix (Petr Matousek) [859946 858724] - [net] ipvs: allow transmit of GRO aggregated skbs (Jesper Brouer) [857966 854067] - [scsi] isci: fixup linkspeed definitions (David Milburn) [854986 833000] - [fs] nfs: nfs_d_automount update caller path after do_add_mount (Carlos Maiolino) [857552 834379] - [fs] vfs: Fix vfsmount overput on simultaneous automount (Carlos Maiolino) [857552 834379] [2.6.18-308.18.1.el5] - [fs] autofs4: Merge the remaining dentry ops tables (Ian Kent) [857558 850977] [2.6.18-308.17.1.el5] - [fs] cifs: Invalidate file cache in case of posix open (Sachin Prabhu) [857964 852526]

SRPMs

https://oss.oracle.com:443/ol5/SRPMS-updates/kernel-2.6.18-308.20.1.el5.src.rpm The following packages were rebuilt to be in sync with the updated kernel version (no changes other than updating the version number): SRPMS: https://oss.oracle.com:443/el5/SRPMS-updates/oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.src.rpm https://oss.oracle.com:443/el5/SRPMS-updates/ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.src.rpm

x86_64

kernel-2.6.18-308.20.1.el5.x86_64.rpm kernel-debug-2.6.18-308.20.1.el5.x86_64.rpm kernel-debug-devel-2.6.18-308.20.1.el5.x86_64.rpm kernel-devel-2.6.18-308.20.1.el5.x86_64.rpm kernel-doc-2.6.18-308.20.1.el5.noarch.rpm kernel-headers-2.6.18-308.20.1.el5.x86_64.rpm kernel-xen-2.6.18-308.20.1.el5.x86_64.rpm kernel-xen-devel-2.6.18-308.20.1.el5.x86_64.rpm ia64: kernel-2.6.18-308.20.1.el5.ia64.rpm kernel-debug-2.6.18-308.20.1.el5.ia64.rpm kernel-debug-devel-2.6.18-308.20.1.el5.ia64.rpm kernel-devel-2.6.18-308.20.1.el5.ia64.rpm kernel-doc-2.6.18-308.20.1.el5.noarch.rpm kernel-headers-2.6.18-308.20.1.el5.ia64.rpm kernel-xen-2.6.18-308.20.1.el5.ia64.rpm kernel-xen-devel-2.6.18-308.20.1.el5.ia64.rpm x86_64: oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.x86_64.rpm oracleasm-2.6.18-308.20.1.el5xen-2.0.5-1.el5.x86_64.rpm oracleasm-2.6.18-308.20.1.el5debug-2.0.5-1.el5.x86_64.rpm ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.x86_64.rpm ocfs2-2.6.18-308.20.1.el5xen-1.4.10-1.el5.x86_64.rpm ocfs2-2.6.18-308.20.1.el5debug-1.4.10-1.el5.x86_64.rpm ia64: oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.ia64.rpm oracleasm-2.6.18-308.20.1.el5xen-2.0.5-1.el5.ia64.rpm oracleasm-2.6.18-308.20.1.el5debug-2.0.5-1.el5.ia64.rpm ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.ia64.rpm ocfs2-2.6.18-308.20.1.el5xen-1.4.10-1.el5.ia64.rpm ocfs2-2.6.18-308.20.1.el5debug-1.4.10-1.el5.ia64.rpm

aarch64

i386

kernel-2.6.18-308.20.1.el5.i686.rpm kernel-PAE-2.6.18-308.20.1.el5.i686.rpm kernel-PAE-devel-2.6.18-308.20.1.el5.i686.rpm kernel-debug-2.6.18-308.20.1.el5.i686.rpm kernel-debug-devel-2.6.18-308.20.1.el5.i686.rpm kernel-devel-2.6.18-308.20.1.el5.i686.rpm kernel-doc-2.6.18-308.20.1.el5.noarch.rpm kernel-headers-2.6.18-308.20.1.el5.i386.rpm kernel-xen-2.6.18-308.20.1.el5.i686.rpm kernel-xen-devel-2.6.18-308.20.1.el5.i686.rpm i386: oracleasm-2.6.18-308.20.1.el5-2.0.5-1.el5.i686.rpm oracleasm-2.6.18-308.20.1.el5PAE-2.0.5-1.el5.i686.rpm oracleasm-2.6.18-308.20.1.el5xen-2.0.5-1.el5.i686.rpm oracleasm-2.6.18-308.20.1.el5debug-2.0.5-1.el5.i686.rpm ocfs2-2.6.18-308.20.1.el5-1.4.10-1.el5.i686.rpm ocfs2-2.6.18-308.20.1.el5PAE-1.4.10-1.el5.i686.rpm ocfs2-2.6.18-308.20.1.el5xen-1.4.10-1.el5.i686.rpm ocfs2-2.6.18-308.20.1.el5debug-1.4.10-1.el5.i686.rpm

Severity

Related News

Defending Against Remote Code Execution in Google Chrome: A Critical Update
2 - 3 min read
Google Chrome, a widely used web browser, serves millions of internet users by connecting them to the online world. Unfortunately, severe
Navigating the Linux Kernel
2 - 4 min read
The Linux operating system, widely acclaimed for its robustness and security , recently received widespread media attention due to a significant
Staying a Step Ahead of Adversaries: Mitigating Chromium
2 - 4 min read
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium
Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware
2 - 4 min read
Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called
Buffer Overflow Exploits in Linux: Origins, Impact, and Countermeasures
3 - 6 min read
Buffer overflow vulnerabilities have long been one of the biggest headaches in computer security, especially on Linux operating systems that power
8 Expert-Recommended Security Practices to Fortify Your Linux Systems
4 - 8 min read
As a Linux admin or an infosec professional, you understand how the security landscape changes due to evolving threats, newly discovered
Open Source Strategies for Enhancing Security in Digital Business Operations
5 - 9 min read
Digital transformation, powered by the principles of open-source security , is vital for businesses looking to excel in today's technology-driven
Microsoft Update Mayhem: Rescuing Linux Dual-Boot Systems from Secure Boot Woes
2 - 4 min read
Microsoft's recent patch, intended to strengthen Secure Boot defenses, has resulted in an unexpected setback for Linux-Windows dual-boot setups

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved