Skip to navigation

Security Advisory Important: kernel security and bug fix update

Advisory: RHSA-2010:0504-1
Type: Security Advisory
Severity: Important
Issued on: 2010-07-01
Last updated on: 2010-07-01
Affected Products: Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
CVEs (cve.mitre.org): CVE-2010-0291
CVE-2010-0622
CVE-2010-1087
CVE-2010-1088
CVE-2010-1173
CVE-2010-1187
CVE-2010-1436
CVE-2010-1437
CVE-2010-1641

Details

Updated kernel packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update fixes the following security issues:

* multiple flaws were found in the mmap and mremap implementations. A local
user could use these flaws to cause a local denial of service or escalate
their privileges. (CVE-2010-0291, Important)

* a NULL pointer dereference flaw was found in the Fast Userspace Mutexes
(futexes) implementation. The unlock code path did not check if the futex
value associated with pi_state->owner had been modified. A local user could
use this flaw to modify the futex value, possibly leading to a denial of
service or privilege escalation when the pi_state->owner pointer is
dereferenced. (CVE-2010-0622, Important)

* a NULL pointer dereference flaw was found in the Linux kernel Network
File System (NFS) implementation. A local user on a system that has an
NFS-mounted file system could use this flaw to cause a denial of service or
escalate their privileges on that system. (CVE-2010-1087, Important)

* a flaw was found in the sctp_process_unk_param() function in the Linux
kernel Stream Control Transmission Protocol (SCTP) implementation. A remote
attacker could send a specially-crafted SCTP packet to an SCTP listening
port on a target system, causing a kernel panic (denial of service).
(CVE-2010-1173, Important)

* a flaw was found in the Linux kernel Transparent Inter-Process
Communication protocol (TIPC) implementation. If a client application, on a
local system where the tipc module is not yet in network mode, attempted to
send a message to a remote TIPC node, it would dereference a NULL pointer
on the local system, causing a kernel panic (denial of service).
(CVE-2010-1187, Important)

* a buffer overflow flaw was found in the Linux kernel Global File System 2
(GFS2) implementation. In certain cases, a quota could be written past the
end of a memory page, causing memory corruption, leaving the quota stored
on disk in an invalid state. A user with write access to a GFS2 file system
could trigger this flaw to cause a kernel crash (denial of service) or
escalate their privileges on the GFS2 server. This issue can only be
triggered if the GFS2 file system is mounted with the "quota=on" or
"quota=account" mount option. (CVE-2010-1436, Important)

* a race condition between finding a keyring by name and destroying a freed
keyring was found in the Linux kernel key management facility. A local user
could use this flaw to cause a kernel panic (denial of service) or escalate
their privileges. (CVE-2010-1437, Important)

* a flaw was found in the link_path_walk() function in the Linux kernel.
Using the file descriptor returned by the open() function with the
O_NOFOLLOW flag on a subordinate NFS-mounted file system, could result in a
NULL pointer dereference, causing a denial of service or privilege
escalation. (CVE-2010-1088, Moderate)

* a missing permission check was found in the gfs2_set_flags() function in
the Linux kernel GFS2 implementation. A local user could use this flaw to
change certain file attributes of files, on a GFS2 file system, that they
do not own. (CVE-2010-1641, Low)

Red Hat would like to thank Jukka Taimisto and Olli Jarva of Codenomicon
Ltd, Nokia Siemens Networks, and Wind River on behalf of their customer,
for responsibly reporting CVE-2010-1173; Mario Mikocevic for responsibly
reporting CVE-2010-1436; and Dan Rosenberg for responsibly reporting
CVE-2010-1641.

This update also fixes several bugs. Documentation for these bug fixes will
be available shortly from
http://www.redhat.com/docs/en-US/errata/RHSA-2010-0504/Kernel_Security_Update/index.html

Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

To install kernel packages manually, use "rpm -ivh [package]". Do not
use "rpm -Uvh" as that will remove the running kernel binaries from
your system. You may use "rpm -e" to remove old kernels after
determining that the new kernel functions properly on your system.

Updated packages

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
kernel-2.6.18-194.8.1.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: f57ceba9822d467435b4fd319123a9e7
SHA-256: e6864e0baf5328d0c3aefc503bfc00558f4f4b16adf761062433d2371101ee4d
 
IA-32:
kernel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5b0c26e99d011bce44ba2796432dc74b
SHA-256: 8cc6d7b95a293420bbe3209235865d09d27f637fe5130d22e57f94dda0672418
kernel-PAE-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3036ef7cbf411db76ed4ae675edc4401
SHA-256: 894d7fa5712440891ff4c7008d218e09f4a179d83f8c8f6bdedd832899f7cadf
kernel-PAE-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: a144b1651e8720041fe7ca445a83213b
SHA-256: b2026c07f756f45e0d01084d8a375cf75bb5c508be04a8bb947e23d3e63941b8
kernel-debug-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 6f946615a15ec2df33d18e49644c0f55
SHA-256: 3cace7dccbb6a037bb870c806ed9fdba325c3c40e18cffe291d15639e6b7eb89
kernel-debug-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 041b2269641cf1f194a3ddc7260df6e0
SHA-256: d07aa78c2fdfb5b48f7d3ec02d1941dad364f31b5098a8455dda9e2c0e1f0be8
kernel-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: bc8ff651a93b02c952641748b89896b7
SHA-256: c7e20c9c4a3f491951759104438157ead519d926741743d89a8f7671c139943c
kernel-doc-2.6.18-194.8.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 69d72e9941f57276688e3c4c023d053b
SHA-256: 6d758e6e0d114e64e1899f4744da1c47edd28826423ceff9998d3c9d7863a3e9
kernel-headers-2.6.18-194.8.1.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 020e6ead2d592b5d6e1afa558b9d9684
SHA-256: b330cef1abed82095d9fc08807c1d12002e05985c68b21c8533163e011620914
kernel-xen-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4352d05b727c195f200be5f990fb31de
SHA-256: 3899942286fe7f8506e1002cf3d31328358b5754c8fd9e47247133dbf595e002
kernel-xen-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 647f8670126c28ca6edea32ca71625d0
SHA-256: 440a28c375d164b01f03f3e48a74aa3fd093b801f559f750f4d7c7f54c5a3b8e
 
IA-64:
kernel-2.6.18-194.8.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 1fbdd47c27b44327149eacd40bc44b2b
SHA-256: 7281f521fc3b50c7a1da49f2df46cfa73a7d2174e448e4c5e49fc49e72357b38
kernel-debug-2.6.18-194.8.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 86d282858b8fa5af36be4d5ad2d24a1c
SHA-256: 7692895dd7ff4167ff2815fac7d1fdbafc87d24b5611ba3fcace3b3b8d8ca1dc
kernel-debug-devel-2.6.18-194.8.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3ec2195e139d041ac8d2f3da0a214225
SHA-256: 6cae319c7bdc947c81fb4cfc0761396460b58144278d67460e699793ed271b78
kernel-devel-2.6.18-194.8.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7a720c814ccbb4a34fb44bcd7909832a
SHA-256: 653271734662f8bff92e64ce528d5f7a8d6bb488a4cb8b7f64a2ba1cc53f6225
kernel-doc-2.6.18-194.8.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 69d72e9941f57276688e3c4c023d053b
SHA-256: 6d758e6e0d114e64e1899f4744da1c47edd28826423ceff9998d3c9d7863a3e9
kernel-headers-2.6.18-194.8.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: cc386ebf0fff2f1f1f8f76956c7f32ec
SHA-256: 08cc0ff9dca104b40bb2fce18da21bc3ab09c324cb83fe2580ddf9e5b6647151
kernel-xen-2.6.18-194.8.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 9c3d04a672deef892fb3fcd1ae79f049
SHA-256: cbd3f47d3dad4e2f92b596ec289fe07bab4d98fbffe00c54d58aa12a232c8fca
kernel-xen-devel-2.6.18-194.8.1.el5.ia64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 342a90b5865a533bce1b3f82aef76376
SHA-256: cfc92d004ab21f56d5d7a4299e7474aba7c2978ec20890d909cda683c2f0b482
 
PPC:
kernel-2.6.18-194.8.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a6719051a965bc1fcb555b3c61bfaca9
SHA-256: d6d0bb2ea235e48910f987738a9a207078d4cf91995cdf9536359fad47db6449
kernel-debug-2.6.18-194.8.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: e79f3148f11441a6aa4f9af12a6de53f
SHA-256: af0623c3433e56cd7583d48c98f2d74942b89eae4a3177271026d4ef4e8f712e
kernel-debug-devel-2.6.18-194.8.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d4869c1c6cb1678d58fb1b4ecf35faaa
SHA-256: 4c08af584c5fadccad62390f45f407bf1a62de13aceb118c6aafb90ca8992b57
kernel-devel-2.6.18-194.8.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7d6d24ceb3b47c7e7b2ead9bb57b2b9d
SHA-256: d3ca90d40b8fb4029cfca7c2a8ce9ef3ffb1c047f26598007965bb4045b83e8a
kernel-doc-2.6.18-194.8.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 69d72e9941f57276688e3c4c023d053b
SHA-256: 6d758e6e0d114e64e1899f4744da1c47edd28826423ceff9998d3c9d7863a3e9
kernel-headers-2.6.18-194.8.1.el5.ppc.rpm
File outdated by:  RHSA-2014:0285
    MD5: da171c899c43cbf89acd23337b223e2d
SHA-256: 1cee5a8b56061e5edd5c4eb6f9af82f90549b24d44cdecfac3f50aba483bdc07
kernel-headers-2.6.18-194.8.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 03eb4e9608be88762d1f0767af67c881
SHA-256: baeb944124d68489801605e9d2d16bf54e557e0ade33b1584d97c0d6c4c3b801
kernel-kdump-2.6.18-194.8.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: c4f02ddab9fd1ef60c8e5cce52fd1511
SHA-256: cdd0ef1bb78bc304a86556df24542fa9ea9e91148ca126de24cb3c98796c3dd4
kernel-kdump-devel-2.6.18-194.8.1.el5.ppc64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 34e8722beb9ce97f62e3452d1afe4f50
SHA-256: 0fb27231661209035d4fbf3ba2d902d1aab997daaf6544379a66fc1416c2c542
 
s390x:
kernel-2.6.18-194.8.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3dff194c536b22c1ff33d1ff329f9db6
SHA-256: d83efac18844fe7edfe146f7285107deafca9fc8ce5f9a18b4c8cab635282964
kernel-debug-2.6.18-194.8.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: cde95fd6e26be0a24cfc1412e6c13f32
SHA-256: 083b075bbe167ce7c93360abca17e6299c3c910e6a877c5eb5ef43b7835e616c
kernel-debug-devel-2.6.18-194.8.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 2a6d092738cd4532c295542db7b6664b
SHA-256: 46a406234492a9a9df827d1f461b82aa6fcb463304a2633c75c8507ef72d9b62
kernel-devel-2.6.18-194.8.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4371f498ad78895581d87f4effc97acd
SHA-256: 176952ac9e5fb109cd67f718d4b9f790e6319caacd10ede3334a6859d2c9fcaa
kernel-doc-2.6.18-194.8.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 69d72e9941f57276688e3c4c023d053b
SHA-256: 6d758e6e0d114e64e1899f4744da1c47edd28826423ceff9998d3c9d7863a3e9
kernel-headers-2.6.18-194.8.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7d159fe9428f28c0ccfdb3c3160f0c31
SHA-256: a6f9b1701ce0788d37a04ec91a893015deffb851e9e32d56aef50ebfe10fe4ba
kernel-kdump-2.6.18-194.8.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 79d44b4b674b10c56a471c2d391e1b60
SHA-256: b2db2fe3911f90089bcd7b51567299227694754d8a0a67fe78451422892746b2
kernel-kdump-devel-2.6.18-194.8.1.el5.s390x.rpm
File outdated by:  RHSA-2014:0285
    MD5: 8f14c03a4e5b91ab7c3e5b538bc3e4c3
SHA-256: 68970843a2c74bc427c8ffa2144c12acef23582a0db2e5924fdc23bdec6d5129
 
x86_64:
kernel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 0cfe85a8b2ac4e061b9ca8ea22b75298
SHA-256: 66ef84a5b916192f544882c4cdee308f8a7b3c8e604db5e6f2bc7ad62c719347
kernel-debug-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d0410766be50d43ee18fa9e17f1c0dad
SHA-256: cdbb0c91198955311b6a3364db5c8c813eddb94669db55d92acdd2b7d800e595
kernel-debug-devel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 304b5839ebe2ad5880a160f400c0fbcf
SHA-256: 482408c86801a90e8f72c1a49e832510f0e6f43e47fee8d26ed7665954d19a8f
kernel-devel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 40561f4a280efa2b34fe63f3ae53b0fa
SHA-256: 1bcec957e0c477ce1eed3c5613f1e49369fe875e5f4f0aad17c231c401c7c805
kernel-doc-2.6.18-194.8.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 69d72e9941f57276688e3c4c023d053b
SHA-256: 6d758e6e0d114e64e1899f4744da1c47edd28826423ceff9998d3c9d7863a3e9
kernel-headers-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a7fd57f7207468fda314f8a7bddc757d
SHA-256: 94c1922a1354f275378a3284454e48acabb4ca8546e2a526a3f6553dde3938e1
kernel-xen-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 8fc384dc2dd79359f79a5ee533d43460
SHA-256: 4de70f10131766afe05498a1b64466a149ed0a8a8df55ed0ee4fe6a376cba5ba
kernel-xen-devel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7104277fae32d4a1c917f2b63c5dc5bb
SHA-256: c1a495d9b97b52815c296df25eda25dffe28be4464f002238ece62fc1ac26215
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
kernel-2.6.18-194.8.1.el5.src.rpm
File outdated by:  RHSA-2014:0285
    MD5: f57ceba9822d467435b4fd319123a9e7
SHA-256: e6864e0baf5328d0c3aefc503bfc00558f4f4b16adf761062433d2371101ee4d
 
IA-32:
kernel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 5b0c26e99d011bce44ba2796432dc74b
SHA-256: 8cc6d7b95a293420bbe3209235865d09d27f637fe5130d22e57f94dda0672418
kernel-PAE-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 3036ef7cbf411db76ed4ae675edc4401
SHA-256: 894d7fa5712440891ff4c7008d218e09f4a179d83f8c8f6bdedd832899f7cadf
kernel-PAE-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: a144b1651e8720041fe7ca445a83213b
SHA-256: b2026c07f756f45e0d01084d8a375cf75bb5c508be04a8bb947e23d3e63941b8
kernel-debug-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 6f946615a15ec2df33d18e49644c0f55
SHA-256: 3cace7dccbb6a037bb870c806ed9fdba325c3c40e18cffe291d15639e6b7eb89
kernel-debug-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 041b2269641cf1f194a3ddc7260df6e0
SHA-256: d07aa78c2fdfb5b48f7d3ec02d1941dad364f31b5098a8455dda9e2c0e1f0be8
kernel-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: bc8ff651a93b02c952641748b89896b7
SHA-256: c7e20c9c4a3f491951759104438157ead519d926741743d89a8f7671c139943c
kernel-doc-2.6.18-194.8.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 69d72e9941f57276688e3c4c023d053b
SHA-256: 6d758e6e0d114e64e1899f4744da1c47edd28826423ceff9998d3c9d7863a3e9
kernel-headers-2.6.18-194.8.1.el5.i386.rpm
File outdated by:  RHSA-2014:0285
    MD5: 020e6ead2d592b5d6e1afa558b9d9684
SHA-256: b330cef1abed82095d9fc08807c1d12002e05985c68b21c8533163e011620914
kernel-xen-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 4352d05b727c195f200be5f990fb31de
SHA-256: 3899942286fe7f8506e1002cf3d31328358b5754c8fd9e47247133dbf595e002
kernel-xen-devel-2.6.18-194.8.1.el5.i686.rpm
File outdated by:  RHSA-2014:0285
    MD5: 647f8670126c28ca6edea32ca71625d0
SHA-256: 440a28c375d164b01f03f3e48a74aa3fd093b801f559f750f4d7c7f54c5a3b8e
 
x86_64:
kernel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 0cfe85a8b2ac4e061b9ca8ea22b75298
SHA-256: 66ef84a5b916192f544882c4cdee308f8a7b3c8e604db5e6f2bc7ad62c719347
kernel-debug-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: d0410766be50d43ee18fa9e17f1c0dad
SHA-256: cdbb0c91198955311b6a3364db5c8c813eddb94669db55d92acdd2b7d800e595
kernel-debug-devel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 304b5839ebe2ad5880a160f400c0fbcf
SHA-256: 482408c86801a90e8f72c1a49e832510f0e6f43e47fee8d26ed7665954d19a8f
kernel-devel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 40561f4a280efa2b34fe63f3ae53b0fa
SHA-256: 1bcec957e0c477ce1eed3c5613f1e49369fe875e5f4f0aad17c231c401c7c805
kernel-doc-2.6.18-194.8.1.el5.noarch.rpm
File outdated by:  RHSA-2014:0285
    MD5: 69d72e9941f57276688e3c4c023d053b
SHA-256: 6d758e6e0d114e64e1899f4744da1c47edd28826423ceff9998d3c9d7863a3e9
kernel-headers-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: a7fd57f7207468fda314f8a7bddc757d
SHA-256: 94c1922a1354f275378a3284454e48acabb4ca8546e2a526a3f6553dde3938e1
kernel-xen-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 8fc384dc2dd79359f79a5ee533d43460
SHA-256: 4de70f10131766afe05498a1b64466a149ed0a8a8df55ed0ee4fe6a376cba5ba
kernel-xen-devel-2.6.18-194.8.1.el5.x86_64.rpm
File outdated by:  RHSA-2014:0285
    MD5: 7104277fae32d4a1c917f2b63c5dc5bb
SHA-256: c1a495d9b97b52815c296df25eda25dffe28be4464f002238ece62fc1ac26215
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

556703 - CVE-2010-0291 kernel: untangle the do_mremap()
563091 - CVE-2010-0622 kernel: futex: Handle user space corruption gracefully
567184 - CVE-2010-1087 kernel: NFS: Fix an Oops when truncating a file
567813 - CVE-2010-1088 kernel: fix LOOKUP_FOLLOW on automount "symlinks"
578057 - CVE-2010-1187 kernel: tipc: Fix oops on send prior to entering networked mode
584645 - CVE-2010-1173 kernel: sctp: crash due to malformed SCTPChunkInit packet
585094 - CVE-2010-1437 kernel: keyrings: find_keyring_by_name() can gain the freed keyring
586006 - CVE-2010-1436 kernel: gfs2 buffer overflow
587957 - Linux VM hangs while hot adding memory in VMware [rhel-5.5.z]
588219 - 25% performance regression of concurrent O_DIRECT writes. [rhel-5.5.z]
591493 - [Intel 5.6 Bug] Fix initialization of wakeup flags for e1000 [rhel-5.5.z]
591611 - virtio balloon should not use pages from kernel's reserve pools for fill requests [rhel-5.5.z]
592844 - RHEL5: tg3: 'SIOCSIFFLAGS: Invalid argument' setting IP [rhel-5.5.z]
592846 - missing power_meter release() function [rhel-5.5.z]
594054 - [5.5] SFQ qdisc crashes with limit of 2 packets [rhel-5.5.z]
594057 - [RHEL5] bonding mode 0 doesn't resend IGMP after a failure [rhel-5.5.z]
594061 - nfs: sys_read sometimes returns -EIO [rhel-5.5.z]
595579 - CVE-2010-1641 kernel: GFS2: The setflags ioctl() doesn't check file ownership
596384 - VFS: Busy inodes after unmount issue. [rhel-5.5.z]
596385 - implement dev_disable_lro for RHEL5 [rhel-5.5.z]
598355 - [5.5] SCTP: Check if the file structure is valid before checking the non-blocking flag [rhel-5.5.z]
599332 - e1000 and e1000e driver behaviour differences [rhel-5.5.z]
599730 - fasync_helper patch causing problems with GPFS [rhel-5.5.z]
599734 - should set ISVM bit (ECX:31) for CPUID leaf 0x00000001 [rhel-5.5.z]
599737 - vm.drop_caches corrupts hugepages and causes Oracle Database ORA-600 crashes [rhel-5.5.z]
599739 - PG_error bit is never cleared, even when a fresh I/O to the page succeeds [rhel-5.5.z]
600215 - [RHEL5] Netfilter modules unloading hangs [rhel-5.5.z]
600498 - netconsole fails with tg3 [rhel-5.5.z]
601080 - Timedrift on VM with pv_clock enabled, causing system hangs and sporadic time behaviour [rhel-5.5.z]
601090 - time drift due to incorrect accounting of lost ticks with VXTIME_PMTMR mode and VXTIME_TSC mode if 'tick_divider' > 1 [rhel-5.5.z]
607087 - bnx2x panic dumps with multiple interfaces enabled [rhel-5.5.z]


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/