LWN.net Logo

Advertisement

TrustCommerce

E-Commerce & credit card processing - the Open Source way!

Advertise here

Not logged in

Log in now

Create an account

Subscribe to LWN

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

LWN.net Weekly Edition for November 13, 2008

NLUUG/ELCE: Embedded devices and free software

The sad story of the em28xx driver

LWN.net Weekly Edition for November 6, 2008

GFDL 1.3: Wikipedia's exit permit

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

Fedora alert FEDORA-2007-3751 (kernel)



From:
    	      updates@fedoraproject.org


To:
    	      fedora-package-announce@redhat.com


Subject:
    	      [SECURITY] Fedora 7 Update: kernel-2.6.23.8-34.fc7


Date:
    	      Fri, 07 Dec 2007 11:25:56 -0700


Message-ID:
    	      <200712071826.lB7IQ1GI002725@bastion.fedora.phx.redhat.com>


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-3751
2007-12-06 20:54:05
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 7
Version     : 2.6.23.8
Release     : 34.fc7
URL         : []
Summary     : The Linux kernel (the core of the Linux operating system)
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system:  memory allocation, process allocation, device
input and output, etc.

--------------------------------------------------------------------------------
Update Information:

Update to kernel 2.6.23.9-rc1:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6...
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6...
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6...
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6...
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6...
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6...
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6...

CVE-2007-5501:
The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c
in Linux kernel 2.6.24-rc2 and earlier allows remote
attackers to cause a denial of service (crash) via crafted
ACK responses that trigger a NULL pointer dereference.

CVE-2007-5500:
The wait_task_stopped function in the Linux kernel before
2.6.23.8 checks a TASK_TRACED bit instead of an exit_state
value, which allows local users to cause a denial of service
(machine crash) via unspecified vectors.

Additional fixes:
Major wireless updates.
Fix oops in netfilter NAT module (#259501)
libata: fix resume on some systems
libata: fix pata_serverworks with some drive combinations
Initial FireWire OHCI 1.0 Isochronous Receive support (#344851)
Disable USB autosuspend by default.
Fix oops in CIFS when mounting a filesystem a second time.
Restore platform module autoloading, e.g. pcspkr.
Fix failure to boot on 486DX4 (and possibily other CPUs.)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov 22 2007 Kyle McMartin <kmcmartin@redhat.com>
- Linux 2.6.23.9-rc1
* Wed Nov 21 2007 Kyle McMartin <kmcmartin@redhat.com>
- Update linux-2.6-wireless.patch to match F-8.
- Fix oops in netfilter NAT module (#259501)
- libata: fix resume on some systems
- libata: fix pata_serverworks with some drive combinations
* Tue Nov 20 2007 Kyle McMartin <kmcmartin@redhat.com>
- Linux 2.6.23.8
* Thu Nov 15 2007 Chuck Ebbert <cebbert@redhat.com>
- Build in the Crypto crc32c algorithm for iSCSI.
* Wed Nov 14 2007 Jarod Wilson <jwilson@redhat.com>
- Initial FireWire OHCI 1.0 Isochronous Receive support (#344851)
* Mon Nov 12 2007 Chuck Ebbert <cebbert@redhat.com>
- Disable USB autosuspend by default.
- Fix oops in CIFS when mounting a filesystem a second time.
- Restore platform module autoloading, e.g. pcspkr.
- Fix failure to boot on 486DX4 (and possibily other CPUs.)
* Fri Nov  9 2007 Chuck Ebbert <cebbert@redhat.com>
- Fix the earlier misapplied raid5 patch.
- Fix race in NFS that can cause data corruption.
* Fri Nov  9 2007 Chuck Ebbert <cebbert@redhat.com>
- libata sata_sis:
   fix SCSI transfer lengths and SCR read function.
* Fri Nov  9 2007 Chuck Ebbert <cebbert@redhat.com>
- Fix oopses in the networking code (l2tp, teql).
* Fri Nov  9 2007 Chuck Ebbert <cebbert@redhat.com>
- Update utrace, fixing some powerpc bugs.
- Disable precise scheduler CPU accounting (#340161).
* Tue Nov  6 2007 Dave Airlie <airlied@linux.ie>
- copy drm fixes from Fedora 8 (bug 228414) + i915 allocation
* Wed Oct 31 2007 Chuck Ebbert <cebbert@redhat.com>
- Copy iwl wireless updates from Fedora 8 (#349981).
- Fix read after direct IO write returning stale data.
- Fix hang in ptrace trying to access beyond end of VMA.
- Add Powerbook HID input driver to x86_64 build (#358721).
* Tue Oct 30 2007 Chuck Ebbert <cebbert@redhat.com>
- Use upstream fixes for monotonic stime/utime.
- Another ACPI suspend/resume fix.
- Disable PCI mmconfig by default (like Fedora 8.)
* Tue Oct 30 2007 Chuck Ebbert <cebbert@redhat.com>
- CIFS: fix reconnect when incomplete packet is received
* Mon Oct 29 2007 Chuck Ebbert <cebbert@redhat.com>
- Fix oops for some x86_64 systems with AGP (#249174, #336281)
- Properly synchronize IRQs
- CIFS: fix file corruption when server returns EAGAIN (F8 #357001)
- serial: support new Wacom pads (F8 #352811)
- md/raid5: fix data corruption race
- i386: TSC calibration fixes
- x86_64: fix races in TLB flushing code
* Mon Oct 29 2007 Chuck Ebbert <cebbert@redhat.com>
- Enable hamradio drivers.
* Wed Oct 24 2007 Roland McGrath <roland@redhat.com>
- Install System.map in kernel-devel packages.
* Tue Oct 23 2007 John W. Linville <linville@redhat.com>
- remove problematic hunk from ath5k fixes patch
* Mon Oct 22 2007 Chuck Ebbert <cebbert@redhat.com>
- Don't create /sys/module/nousb/ (bz #242715)
* Fri Oct 19 2007 John W. Linville <linville@redhat.com>
- iwl4965-base.c: fix off-by-one errors
- ipw2100: send WEXT scan events
- rt2x00: Add new rt73usb USB ID
- zd1211rw, fix oops when ejecting install media
- rt2x00: Fix residual check in PLCP calculations.
- rtl8187: Fix more frag bit checking, rts duration calc
- iwlwifi: set correct base rate for A band in rs_dbgfs_set_mcs
- iwlwifi: Fix rate setting in probe request for HW scan
* Thu Oct 18 2007 Chuck Ebbert <cebbert@redhat.com>
- Add missing ACPI patch.
- Switch to upstream libata DMA disable code
  (libata.pata_dma parameter is now libata.dma)
- Remove some new/experimental items from config.
* Thu Oct 18 2007 John W. Linville <linville@redhat.com>
- avoid null ptr dereference in rx path of zd1201 driver
* Wed Oct 17 2007 Chuck Ebbert <cebbert@redhat.com>
- latest ath5k from Fedora 8
- fix another suspend/resume bug
* Wed Oct 17 2007 John W. Linville <linville@redhat.com>
- iee80211: fix an endian bug
- mac80211: change BSSID list key to (BSSID, SSID, frequency) tuple
- mac80211: make honor IW_SCAN_THIS_ESSID
- mac80211: don't fail IE parse if junk at end of frame
* Fri Oct 12 2007 Chuck Ebbert <cebbert@redhat.com>
- Linux 2.6.23.1
- Firewire multi-LUN fixes (#242254)
- Fix lockdep problems in Firewire
- Fix CPU time accounting
* Wed Oct 10 2007 Chuck Ebbert <cebbert@redhat.com>
- Linux 2.6.23
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #344851 - [firewire] juju stack lacks full support for ohci 1.0 controllers
        https://bugzilla.redhat.com/show_bug.cgi?id=344851
  [ 2 ] Bug #259501 - BUG in nf_conntrack_find -- BUG: unable to handle kernel paging request at
virtual address 554161dc
        https://bugzilla.redhat.com/show_bug.cgi?id=259501
--------------------------------------------------------------------------------
Updated packages:

12840aaf9a2fe8278b4436d8a6fab37b5853e453 kernel-doc-2.6.23.8-34.fc7.noarch.rpm
7336eb7e9715ecee237921462f76f7d8828fb7a0 kernel-headers-2.6.23.8-34.fc7.i386.rpm
7b739d0ba81dbfc9b37aee284db78f2ecc8f9852 kernel-PAE-2.6.23.8-34.fc7.i686.rpm
40a89d3918cbb474dfc83ba1e795b99d79bcdece kernel-PAE-debug-debuginfo-2.6.23.8-34.fc7.i686.rpm
b4fd999859f831dfa31f4a6170dac66cf6edad2a kernel-debug-debuginfo-2.6.23.8-34.fc7.i686.rpm
6c2a10734e61bd53470e7b79f695069bad29523c kernel-debuginfo-common-2.6.23.8-34.fc7.i686.rpm
ffe03837fb698cdeb7e8bf3163c4580854d13ef4 kernel-PAE-debuginfo-2.6.23.8-34.fc7.i686.rpm
cad7300f12134c9da30e1d839f8fa7b550521d46 kernel-PAE-devel-2.6.23.8-34.fc7.i686.rpm
bb0fc5dbdab5718443cc9a906da3b8be161de7dd kernel-debug-devel-2.6.23.8-34.fc7.i686.rpm
34009cae1055802b16454c6cde3a1a8eaecf2d78 kernel-PAE-debug-2.6.23.8-34.fc7.i686.rpm
8c221c7bc97f399b3a6d7ef0e43053d9c563f175 kernel-2.6.23.8-34.fc7.i686.rpm
c7d3befcd7a7ea1d9c4d616282a7461f4b993ceb kernel-debuginfo-2.6.23.8-34.fc7.i686.rpm
c7da5a384c91e1ae5507cb16519f66636b6f4632 kernel-devel-2.6.23.8-34.fc7.i686.rpm
e691ed2247f051a1641f5d4eead09db76a45902f kernel-PAE-debug-devel-2.6.23.8-34.fc7.i686.rpm
f501e647e21f769ce0b5ef5206c066a9752a2db7 kernel-debug-2.6.23.8-34.fc7.i686.rpm
9392446e36448e5ddd3cfaed369e9f0b9f664039 kernel-kdump-debuginfo-2.6.23.8-34.fc7.ppc64.rpm
73f8c28b1779a174ec307b95a9c6db146f7ea04d kernel-kdump-devel-2.6.23.8-34.fc7.ppc64.rpm
a5f772cdf614c99969888366efdd7fa8a977cee6 kernel-debuginfo-common-2.6.23.8-34.fc7.ppc64.rpm
0393cf5bc2c22e3703baa2c5675fd33f25eba9ac kernel-debuginfo-2.6.23.8-34.fc7.ppc64.rpm
597fbb68428c79c2d4dd3c02fae246bf96ede3fe kernel-2.6.23.8-34.fc7.ppc64.rpm
547085d96cb04165f4acec104a7ba4a9dc33a34a kernel-headers-2.6.23.8-34.fc7.ppc64.rpm
1d0cf54dfe188109346c1626d0183bc3f0037d61 kernel-devel-2.6.23.8-34.fc7.ppc64.rpm
eada4cd567255d80b8def87367a9ffd6db9f2973 kernel-kdump-2.6.23.8-34.fc7.ppc64.rpm
15e40430fb73d623778e436a80a3d73584e53bdd kernel-devel-2.6.23.8-34.fc7.i586.rpm
394a237edf45adde893e5dc97932eb2f788d5876 kernel-2.6.23.8-34.fc7.i586.rpm
9c18848cb06ff9931aa008a2b956ccbe000f546e kernel-debuginfo-2.6.23.8-34.fc7.i586.rpm
4fcb4d410568f92a90144e124009f2abc055b53e kernel-debuginfo-common-2.6.23.8-34.fc7.i586.rpm
b9f1dbd1d277509f8f5212800c86cc58210570fe kernel-debuginfo-common-2.6.23.8-34.fc7.x86_64.rpm
94f505bddc046efe2ad7f36e21e6d6da9a6a47be kernel-debug-devel-2.6.23.8-34.fc7.x86_64.rpm
81c64b3865136ea36d15353ec945b1462681694e kernel-devel-2.6.23.8-34.fc7.x86_64.rpm
d82a57ae82d0ab6a60b56a04738790ecb1aba758 kernel-2.6.23.8-34.fc7.x86_64.rpm
ba4646ba312da844bcb729307183d909f14a35a3 kernel-debuginfo-2.6.23.8-34.fc7.x86_64.rpm
bded5ffeb285ca147dbe06aefbda6ccdfd5380c5 kernel-headers-2.6.23.8-34.fc7.x86_64.rpm
f1a62e1352462cfd86ac0ae4d5430e75e8cd0782 kernel-debug-debuginfo-2.6.23.8-34.fc7.x86_64.rpm
582a0e4b0caa21686d20620bb1fa85c812c41ba3 kernel-debug-2.6.23.8-34.fc7.x86_64.rpm
35bb0f07651b83b19ae7b8d9ecb746ebe08ccd8e kernel-2.6.23.8-34.fc7.ppc.rpm
f97d7695385c706a4b79a8716c59de283a82083e kernel-smp-devel-2.6.23.8-34.fc7.ppc.rpm
aeb13f63324d9c6fa44d0afa544c8fd47d5e0cfd kernel-smp-2.6.23.8-34.fc7.ppc.rpm
06cc4d07ea56598ec43a940795b30d8a4937755e kernel-smp-debuginfo-2.6.23.8-34.fc7.ppc.rpm
1890520b54f096d3601c7e3f8988b79d3d0aa7df kernel-devel-2.6.23.8-34.fc7.ppc.rpm
e176784ab6424b0cb6ac63ecda472d81a34d51a1 kernel-debuginfo-common-2.6.23.8-34.fc7.ppc.rpm
7417bf3e3f696fd3b8f5a6b5c24499a3f96c142e kernel-headers-2.6.23.8-34.fc7.ppc.rpm
57f599cf605ef21e3f0c40cd226de45fa814e636 kernel-debuginfo-2.6.23.8-34.fc7.ppc.rpm
f84be832f8945cd65220862efa671f50a97a7da7 kernel-2.6.23.8-34.fc7.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kernel' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-ann...
(Log in to post comments)

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds