[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RHN Errata Alert: Moderate: kernel security and bug fix update
- Subject: RHN Errata Alert: Moderate: kernel security and bug fix update
- From: Red Hat Network Alert <dev-null@rhn.redhat.com>
- Date: Fri, 23 Oct 2009 20:01:22 -0400
Red Hat Network has determined that the following advisory is applicable to
one or more of the systems you have registered:
Complete information about this errata can be found at the following location:
https://rhn.redhat.com/rhn/errata/details/Details.do?eid=9276
Security Advisory - RHSA-2009:1522-1
------------------------------------------------------------------------------
Summary:
Moderate: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and several bugs
are now available for Red Hat Enterprise Linux 4.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Description:
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issues:
* multiple, missing initialization flaws were found in the Linux kernel.
Padding data in several core network structures was not initialized
properly before being sent to user-space. These flaws could lead to
information leaks. (CVE-2005-4881, CVE-2009-3228, Moderate)
This update also fixes the following bugs:
* a packet duplication issue was fixed via the RHSA-2008:0665 update;
however, the fix introduced a problem for systems using network bonding:
Backup slaves were unable to receive ARP packets. When using network
bonding in the "active-backup" mode and with the "arp_validate=3" option,
the bonding driver considered such backup slaves as being down (since they
were not receiving ARP packets), preventing successful failover to these
devices. (BZ#519384)
* due to insufficient memory barriers in the network code, a process
sleeping in select() may have missed notifications about new data. In rare
cases, this bug may have caused a process to sleep forever. (BZ#519386)
* the driver version number in the ata_piix driver was not changed between
Red Hat Enterprise Linux 4.7 and Red Hat Enterprise Linux 4.8, even though
changes had been made between these releases. This could have prevented the
driver from loading on systems that check driver versions, as this driver
appeared older than it was. (BZ#519389)
* a bug in nlm_lookup_host() could have led to un-reclaimed locks on file
systems, resulting in the umount command failing. This bug could have also
prevented NFS services from being relocated correctly in clustered
environments. (BZ#519656)
* the data buffer ethtool_get_strings() allocated, for the igb driver, was
smaller than the amount of data that was copied in igb_get_strings(),
because of a miscalculation in IGB_QUEUE_STATS_LEN, resulting in memory
corruption. This bug could have led to a kernel panic. (BZ#522738)
* in some situations, write operations to a TTY device were blocked even
when the O_NONBLOCK flag was used. A reported case of this issue occurred
when a single TTY device was opened by two users (one using blocking mode,
and the other using non-blocking mode). (BZ#523930)
* a deadlock was found in the cciss driver. In rare cases, this caused an
NMI lockup during boot. Messages such as "cciss: controller cciss[x]
failed, stopping." and "cciss[x]: controller not responding." may have
been displayed on the console. (BZ#525725)
* on 64-bit PowerPC systems, a rollover bug in the ibmveth driver could
have caused a kernel panic. In a reported case, this panic occurred on a
system with a large uptime and under heavy network load. (BZ#527225)
Users should upgrade to these updated packages, which contain backported
patches to correct these issues. The system must be rebooted for this
update to take effect.
References:
http://www.redhat.com/security/updates/classification/#moderate
------------------------------------------------------------------------------
-------------
Taking Action
-------------
You may address the issues outlined in this advisory in two ways:
- select your server name by clicking on its name from the list
available at the following location, and then schedule an
errata update for it:
https://rhn.redhat.com/rhn/systems/SystemList.do
- run the Update Agent on each affected server.
---------------------------------
Changing Notification Preferences
---------------------------------
To enable/disable your Errata Alert preferences globally please log in to RHN
and navigate from "Your RHN" / "Your Account" to the "Preferences" tab.
URL: https://rhn.redhat.com/rhn/account/UserPreferences.do
You can also enable/disable notification on a per system basis by selecting an
individual system from the "Systems List". From the individual system view
click the "Details" tab.
---------------------
Affected Systems List
---------------------
This Errata Advisory may apply to the systems listed below. If you know that
this errata does not apply to a system listed, it might be possible that the
package profile for that server is out of date. In that case you should refresh
the system's package profile by running *one* of the following commands as root
on that system:
* 'up2date -p' (on Enterprise Linux systems prior to RHEL5)
* 'rhn-profile-sync' (on Enterprise Linux 5 or later)
There are 464 affected systems registered in 'Your RHN' (only systems for
which you have explicitly enabled Errata Alerts are shown).
Release Arch Profile Name
-------- -------- ------------
4AS i686 node1.mpifc
4AS i686 node2.mpifc
4AS i686 node3.mpifc
4AS i686 node4.mpifc
4AS athlon air2-4
4WS athlon air2-1
4WS athlon air2-3
4WS i686 mathbio1-7
4WS i686 mathbio1-1
4AS i686 mathbio1-2
4WS i686 mathbio1-5
4WS athlon air2-2
4WS i686 mathbio1-6
4WS i686 mathbio1-3
4WS i686 bme14
4WS i686 mathbio1-10
4WS athlon mathbio-10
4AS x86_64 twsecy3
4AS x86_64 bcfd-n21
4AS x86_64 mathbio3-1
4AS x86_64 tw-gibbs-n12
4AS x86_64 tw-gibbs-n23
4AS x86_64 bcfd-n18
4AS x86_64 bcfd-n24
4AS x86_64 broadamd-3
4AS x86_64 tw-gibbs-n13
4AS x86_64 tw-gibbs-n20
4AS x86_64 tw-gibbs-n17
4AS x86_64 bcfd-n23
4AS x86_64 tw-gibbs-n14
4AS x86_64 bcfd-n14
4AS x86_64 bcfd-n2
4AS x86_64 tw-gibbs-n6
4AS x86_64 tw-gibbs-n33
4AS x86_64 bcfd-n9
4AS x86_64 bcfd-n20
4AS x86_64 bcfd-n17
4AS x86_64 tw-gibbs-n32
4AS x86_64 tw-gibbs-n22
4AS x86_64 tw-gibbs-n18
4AS x86_64 tw-gibbs-n34
4AS x86_64 tw-gibbs-n5
4AS x86_64 tr-n6
4AS x86_64 tr-n1
4AS x86_64 tr-n2
4AS x86_64 tr-n4
4AS x86_64 tr-n5
4AS x86_64 tr-n9
4AS x86_64 tr-n10
4AS x86_64 tr-n12
4AS x86_64 tr-n13
4AS x86_64 tr-n14
4AS x86_64 tr-n16
4AS x86_64 tr-n7
4AS x86_64 bcfd-n4
4AS x86_64 bcfd-n5
4AS x86_64 bcfd-n7
4AS x86_64 bcfd-n8
4AS x86_64 bcfd-n10
4AS x86_64 bcfd-n11
4AS x86_64 bcfd-n12
4AS x86_64 bcfd-n13
4AS x86_64 bcfd-n15
4AS x86_64 bcfd-n16
4AS x86_64 bcfd-n19
4AS x86_64 bcfd-n22
4AS x86_64 bair-n1
4AS x86_64 tw-gibbs-n7
4AS x86_64 bair-n3
4AS x86_64 tw-gibbs-n9
4WS x86_64 tw64node6
4AS x86_64 tr-n11
4AS x86_64 tr-n8
4AS x86_64 tw-gibbs-n31
4AS x86_64 tw-gibbs-n30
4AS x86_64 tw-gibbs-n35
4AS x86_64 bair-n4
4AS x86_64 bair-n5
4AS x86_64 bair-n6
4AS x86_64 bair-n8
4AS x86_64 tw-gibbs-n43
4AS i686 mathbio1-9
4AS EM64T mathbio5-3
4AS x86_64 mathbio3-2
4AS EM64T mathbio4-8
4AS EM64T mathbio4-6
4WS i686 bme10
4WS i686 bme6
4AS EM64T mathbio4-5
4AS EM64T mathbio4-7
4WS i686 bme19
4WS i686 bme16
4WS i686 bme3
4WS i686 bme5
4WS i686 bme18
4WS i686 bme13
4WS i686 bme7
4WS i686 bme8
4WS i686 bme9
4WS i686 bme20
4WS i686 bme12
4WS i686 bme17
4WS i686 bme11
4WS i686 bme4
4AS x86_64 tw-gibbs-n37
4WS x86_64 tw64node9
4WS x86_64 tw64node10
4WS x86_64 tw64node16
4WS x86_64 tw64node22
4WS x86_64 tw64node23
4WS x86_64 tw64node24
4AS x86_64 tw64node26
4AS x86_64 jm64node2
4AS x86_64 jm64node11
4AS x86_64 jm64node9
4AS x86_64 jm64node6
4WS athlon mathbio-7
4AS x86_64 twsecy4
4WS athlon mathbio-11
4AS x86_64 twsecy8
4WS x86_64 jm64node12
4WS x86_64 jm64node4
4WS athlon mathbio-2
4WS athlon qn1
4WS x86_64 jm64node10
4WS x86_64 jm64node1
4WS x86_64 jm64node7
4AS x86_64 twsecy2
4AS x86_64 twsecy9
4AS x86_64 twdc5
4AS EM64T mathbio5-2
4AS x86_64 tw-gibbs-n44
4WS athlon opteron12
4WS athlon opteron11
4AS x86_64 broadamd-7
4WS x86_64 tw64node19
4AS x86_64 tw-gibbs-n11
4AS x86_64 tw-gibbs-n25
4AS x86_64 twsecy5
4AS x86_64 twsecy11
4AS x86_64 twsecy6
4AS x86_64 tw64node28
4AS x86_64 tw-gibbs-n28
4AS x86_64 twsecy12
4AS x86_64 tw-gibbs-n24
4AS x86_64 broadamd-4
4AS x86_64 tw-gibbs-n39
4AS x86_64 broadamd-1
4AS x86_64 broadamd-8
4AS x86_64 broadamd-5
4AS i686 broadint-1
4AS i686 broadint-11
4WS x86_64 tw64node8
4WS x86_64 tw64node7
4WS x86_64 tw64node17
4WS x86_64 tw64node4
4WS athlon opteron15
4AS i686 broadint-10
4AS i686 broadint-12
4AS x86_64 broadamd-6
4AS x86_64 tw-gibbs-n36
4AS x86_64 tw-gibbs-n42
4AS x86_64 tw-gibbs-n47
4WS x86_64 tw64node27
4WS x86_64 tw64node21
4AS x86_64 broadamd-2
4AS x86_64 tw-gibbs-n1
4AS x86_64 tw-gibbs-n3
4AS x86_64 tw-gibbs-n8
4AS x86_64 broadamd-9
4AS x86_64 tw-gibbs-n10
4AS x86_64 broadamd-10
4AS x86_64 broadamd-11
4AS x86_64 tw-gibbs-n26
4AS x86_64 broadamd-12
4AS x86_64 tw-gibbs-n27
4AS x86_64 tw-gibbs-n29
4AS i686 broadint-2
4AS i686 broadint-3
4AS x86_64 tw-gibbs-n38
4AS i686 broadint-4
4AS x86_64 tw-gibbs-n40
4AS i686 broadint-5
4AS i686 broadint-6
4AS x86_64 tw-gibbs-n45
4AS i686 broadint-7
4AS x86_64 tw-gibbs-n46
4AS i686 broadint-8
4AS i686 broadint-9
4AS x86_64 tw-gibbs-n16
4AS EM64T mathbio4-3
4WS i686 gen7
4WS i686 gen4
4WS i686 gen8
4AS EM64T mathbio4-1
4WS i686 gen9
4AS EM64T mathbio4-4
4AS EM64T mathbio4-2
4WS i686 gen6
4AS x86_64 twdc4
4WS i686 gen1
4WS i686 gen3
4WS athlon opteron8
4AS EM64T mathbio5-1
4WS x86_64 tw64node25
4WS i686 bme1
4WS athlon mathbio-5
4WS x86_64 tw64node13
4WS x86_64 tw64node11
4WS x86_64 tw64node14
4WS x86_64 tw64node12
4WS i686 bme2
4WS athlon mathbio-6
4WS athlon mathbio-4
4WS athlon opteron9
4WS x86_64 tw64node2
4WS x86_64 tw64node3
4AS x86_64 tr-n3
4AS x86_64 bair-n10
4AS athlon unknown
4AS i686 bme15
4AS x86_64 tw-gibbs-n41
4AS x86_64 tw-gibbs-n19
4AS x86_64 jm64node3
4WS x86_64 tw64node18
4AS x86_64 apep-n2
4AS x86_64 apep-n1
4AS x86_64 apep-n3
4AS x86_64 apep-n4
4AS x86_64 space1-n4
4AS x86_64 space1-n3
4AS x86_64 space1-n5
4AS x86_64 space1-n6
4AS x86_64 space1-n1
4AS x86_64 space1-n2
4AS x86_64 bjm64-n3
4AS x86_64 bjm64-n4
4AS x86_64 bjm64-n8
4AS i686 gen2
4AS x86_64 bjm64-n5
4WS i686 bme0
4AS x86_64 tw-gibbs-n21
4AS x86_64 tw-gibbs-n15
4AS EM64T mathbio5-4
4AS x86_64 tr-n15
4AS x86_64 twsecy1
4AS x86_64 twsecy7
4AS x86_64 twsecy10
4AS x86_64 twsecy13
4AS x86_64 twsecy14
4AS x86_64 twsecy16
4AS x86_64 bcfd-n6
4AS x86_64 bair-n7
4AS x86_64 bair-n9
4AS x86_64 bjm64-n10
4AS x86_64 bjm64-n11
4AS x86_64 bjm64-n6
4AS x86_64 bjm64-n7
4AS x86_64 bjm64-n9
4WS athlon opteron7
4AS x86_64 tw-gibbs-n2
4AS x86_64 bcfd-n1
4AS x86_64 tw-gibbs-n4
4AS x86_64 bcfd-n3
4AS x86_64 bair-n2
4AS x86_64 bjm64-n1
4AS x86_64 bjm64-n2
The Red Hat Network Team
This message is being sent by Red Hat Network Alert to:
RHN user login: ucidcs
If you lost your RHN password, you can use the information above to
retrieve it by email from the following address:
htts://www.redhat.com/wapps/sso/rhn/lostPassword.html
To cancel these notices, go to:
https://rhn.redhat.com/rhn/account/UserPreferences.do