[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

[SECURITY] Fedora 9 Update: kernel-2.6.25.9-76.fc9



--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-5893
2008-07-04 02:08:45
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 9
Version     : 2.6.25.9
Release     : 76.fc9
URL         : http://www.kernel.org/
Summary     : The Linux kernel (the core of the Linux operating system)
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

--------------------------------------------------------------------------------
Update Information:

Update kernel from version 2.6.25.6 to 2.6.25.9:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.7
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.8
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.9    Security
updates:  CVE-2008-2750: The pppol2tp_recvmsg function in drivers/net/pppol2tp.c
in the Linux kernel 2.6 before 2.6.26-rc6 allows remote attackers to cause a
denial of service (kernel heap memory corruption and system crash) and possibly
have unspecified other impact via a crafted PPPOL2TP packet that results in a
large value for a certain length variable.    CVE-2008-2358: The Datagram
Congestion Control Protocol (DCCP) subsystem in the Linux kernel 2.6.18, and
probably other versions, does not properly check feature lengths, which might
allow remote attackers to execute arbitrary code, related to an unspecified
"overflow."    Wireless driver updates:  - Upstream wireless fixes from
2008-06-27    (http://marc.info/?l=linux-wireless&m=121459423021061&w=2)  -
Upstream wireless fixes from 2008-06-25    (http://marc.info/?l=linux-
wireless&m=121440912502527&w=2)  - Upstream wireless updates from 2008-06-14
(http://marc.info/?l=linux-netdev&m=121346686508160&w=2)  - Upstream wireless
fixes from 2008-06-09    (http://marc.info/?l=linux-
kernel&m=121304710726632&w=2)  - Upstream wireless updates from 2008-06-09
(http://marc.info/?l=linux-netdev&m=121304710526613&w=2)    Bugs:  444694 - ALi
Corporation M5253 P1394 OHCI 1.1 Controller driver causing problems in kernels
newer than 2.6.24.3-50  452595 - Problem with SATA/IDE on Abit AN52  449080 -
Rsync cannot copy to a vfat partition on kernel 2.6.25 with -p or -a options
449909 - User Mode Linux (UML) broken on Fedora 9  452111 - CVE-2008-2750
kernel: l2tp: Fix potential memory corruption in pppol2tp-recvmsg() (Heap
corruption DoS) [F9]  449872 - [Patch] Bluetooth keyboard not reconnecting after
powersave
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 27 2008 John W. Linville <linville redhat com> 2.6.25.9-76
- Upstream wireless fixes from 2008-06-27
  (http://marc.info/?l=linux-wireless&m=121459423021061&w=2)
* Fri Jun 27 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.9-75
- Fix bluetooth keyboard disconnect (#449872)
* Wed Jun 25 2008 John W. Linville <linville redhat com> 2.6.25.9-74
- Upstream wireless fixes from 2008-06-25
  (http://marc.info/?l=linux-wireless&m=121440912502527&w=2)
* Tue Jun 24 2008 John W. Linville <linville redhat com> 2.6.25.9-73
- Upstream wireless updates from 2008-06-14
  (http://marc.info/?l=linux-netdev&m=121346686508160&w=2)
* Tue Jun 24 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.9-72
- Linux 2.6.25.9
* Tue Jun 24 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.8-71
- pppolt2p: fix heap overflow (CVE-2008-2750) (#452111)
* Mon Jun 23 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.8-70
- libata: retry enable of AHCI mode before reporting an error (#452595)
* Mon Jun 23 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.8-69
- Linux 2.6.25.8
- Patches reverted from 2.6.25.8, already in Fedora:
    b43-fix-noise-calculation-warn_on.patch
    b43-fix-possible-null-pointer-dereference-in-dma-code.patch
* Sun Jun 22 2008 Dave Airlie <airlied redhat com> 2.6.25.7-68
- update drm update to fix a bug.
* Fri Jun 20 2008 Dave Jones <davej redhat com> 2.6.25.7-67
- Fix hpwdt driver to not oops on init. (452183)
* Fri Jun 20 2008 Jarod Wilson <jwilson redhat com> 2.6.25.7-66
- firewire: add phy config packet send timeout, prevents deadlock
  with flaky ALi controllers (#446763, #444694)
* Thu Jun 19 2008 Dave Airlie <airlied redhat com> 2.6.25.7-65
- update radeon patches to newer upstream
* Mon Jun 16 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.7-64
- Linux 2.6.25.7
- Don't apply upstream-reverts patch to -vanilla kernels.
- Dropped patches:
    linux-2.6-alsa-emu10k1-fix-audigy2.patch
    linux-2.6-netlink-fix-parse-of-nested-attributes.patch
    linux-2.6-af_key-fix-selector-family-initialization.patch
    linux-2.6-mmc-wbsd-fix-request_irq.patch
- Reverted wireless patches from 2.6.25.7, already in Fedora:
    b43-fix-controller-restart-crash.patch
    mac80211-send-association-event-on-ibss-create.patch
    ssb-fix-context-assertion-in-ssb_pcicore_dev_irqvecs_enable.patch
* Sun Jun 15 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.6-63
- Make rsync able to write to VFAT partitions again. (#449080)
* Sat Jun 14 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.6-62
- Replace eeepc driver with upstream eeepc_laptop driver.
* Sat Jun 14 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.6-61
- Enable Controller Area Networking (F8#451179)
* Fri Jun 13 2008 John W. Linville <linville redhat com> 2.6.25.6-60
- Upstream wireless fixes from 2008-06-13
  (http://marc.info/?l=linux-wireless&m=121339101523260&w=2)
* Tue Jun 10 2008 Roland McGrath <roland redhat com> - 2.6.25.6-58
- Fix i386 syscall tracing and PTRACE_SYSEMU, had broken UML. (#449909)
* Tue Jun 10 2008 John W. Linville <linville redhat com> 2.6.25.6-57
- Upstream wireless fixes from 2008-06-09
  (http://marc.info/?l=linux-kernel&m=121304710726632&w=2)
- Upstream wireless updates from 2008-06-09
  (http://marc.info/?l=linux-netdev&m=121304710526613&w=2)
* Tue Jun 10 2008 Roland McGrath <roland redhat com> - 2.6.25.6-54
- Fix spurious BUG_ON in tracehook_release_task. (#443552)
* Mon Jun  9 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.6-53
- Fix oops in wbsd MMC driver when card is present during boot (#449817)
* Mon Jun  9 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.6-52
- Fix init if af_key sockets (F8#450499)
* Mon Jun  9 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.6-51
- Sync ACPI patches with F-8 kernel.
* Mon Jun  9 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.6-50
- Linux 2.6.25.6
- Dropped patches:
    linux-2.6-x86-fix-asm-constraint-in-do_IRQ.patch
    linux-2.6-x86-pci-revert-remove-default-rom-allocation.patch
    linux-2.6-x86-dont-read-maxlvt-if-apic-unmapped.patch
    linux-2.6-x86-fix-setup-of-cyc2ns-in-tsc_64.patch
    linux-2.6-x86-prevent-pge-flush-from-interruption.patch
    linux-2.6-cifs-fix-unc-path-prefix.patch
    linux-2.6-ext34-xattr-fix.patch
    linux-2.6-xfs-small-buffer-reads.patch
    linux-2.6-net-iptables-add-xt_iprange-aliases.patch
    linux-2.6-caps-remain-source-compatible-with-32-bit.patch
    linux-2.6-libata-force-hardreset-in-sleep-mode.patch
- Updated patches:
    linux-2.6-input-fix_fn_key_on_macbookpro_4_1_and_mb_air.patch
* Fri Jun  6 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.5-49
- Fix the specfile to match the kernel version.
* Fri Jun  6 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.5-48
- Linux 2.6.25.5
* Fri Jun  6 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-47
- Make 64-bit capabilities backwards-compatible with old user programs (#447518)
* Fri Jun  6 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-46
- Fix Audigy2 ZS audio adapter hang (#242208)
* Thu Jun  5 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-45
- Kill spurious applesmc debug messages (#448056)
* Thu Jun  5 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-44
- Make DMA work again on atiixp PATA devices (#450191)
* Thu Jun  5 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-43
- Fix docking when docking station has a bay device (bug reported on IRC.)
* Tue Jun  3 2008 John W. Linville <linville redhat com> 2.6.25.4-42
- Upstream wireless fixes from 2008-06-03
  (http://marc.info/?l=linux-wireless&m=121252137324941&w=2)
* Mon Jun  2 2008 Jarod Wilson <jwilson redhat com> 2.6.25.4-41
- Fix oops in lirc_i2c module
- Add lirc support for latest MCE receivers
* Thu May 29 2008 John W. Linville <linville redhat com> 2.6.25.4-39
- Upstream wireless fixes from 2008-05-28
  (http://marc.info/?l=linux-wireless&m=121201250110162&w=2)
* Wed May 28 2008 Dave Airlie <airlied redhat com> 2.6.25.4-38
- drm-radeon-update.patch - Add R500 support along with updated radeon driver
* Wed May 28 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-37
- Fix parsing of netlink messages (#447812)
* Tue May 27 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-36
- Fix two hard-to-reproduce x86 bugs:
  x86: fix sched_clock when calibrated against PIT
  x86: don't allow flush_tlb_all to be interrupted
* Tue May 27 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-35
- input: fix function keys on macbook pro 4,1 and air (#445761)
* Tue May 27 2008 John W. Linville <linville redhat com> 2.6.25.4-34
- Upstream wireless updates from 2008-05-22
  (http://marc.info/?l=linux-wireless&m=121146112404515&w=2)
* Tue May 27 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-33
- libata: fix hangs on undock (#439197)
- libata: fix problems with some old/broken CF hardware (F8 #224005)
* Thu May 22 2008 Dave Jones <davej redhat com> 2.6.25.4-32
- Disable CONFIG_DMAR. This is terminally broken in the presence of a broken BIOS
* Wed May 21 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-31
- Clean up specfile a bit.
* Wed May 21 2008 John W. Linville <linville redhat com> 2.6.25.4-30
- libertas: Fix ethtool statistics
- mac80211: fix NULL pointer dereference in ieee80211_compatible_rates
- mac80211: don't claim iwspy support
- rtl8187: resource leak in error case
- hostap_cs: add ID for Conceptronic CON11CPro
- orinoco_cs: add ID for SpeedStream wireless adapters
* Tue May 20 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-29
- virtio_net: free transmit skbs in a timer (#444765)
* Tue May 20 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-28
- Disable the group scheduler (CONFIG_GROUP_SCHED) (#446192)
- x86: don't read the APIC if it's not mapped (#447183)
* Tue May 20 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-27
- x86: don't map VDSO into userspace when it's disabled (#229304)
- x86: fix ASM constraint in do_IRQ()
- x86: map PCI ROM by default again (F8 #440644)
* Mon May 19 2008 John W. Linville <linville redhat com> 2.6.25.4-26
- Re-sync wireless bits w/ current upstream
* Mon May 19 2008 Dave Jones <davej redhat com> 2.6.25.4-24
- Disable PATA_ISAPNP (it's busted).
* Fri May 16 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-23
- ALSA: add support for AD1883/1884A/1984A/1984B codecs and Thinkpad X300 (#445954)
* Fri May 16 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-22
- iptables: make firewall scripts using iprange work again (#446827)
- Enable the snd-serial-u16550 audio driver (#446783)
* Fri May 16 2008 Eric Sandeen <esandeen redhat com> 2.6.25.4-21
- xfs: Fix memory corruption with small buffer reads (kernel.org #10421)
* Thu May 15 2008 Eric Sandeen <esandeen redhat com> 2.6.25.4-20
- ext3/4: fix uninitialized bs in ext3/4_xattr_set_handle()
* Thu May 15 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.4-19
- Linux 2.6.25.4
   Dropped patches:
   - linux-2.6.25-sparc64-semctl.patch
   - linux-2.6-libata-ata_piix-check-sidpr.patch
* Mon May 12 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.3-18
- CIFS: fix UNC path prefix to have the correct slash (#443681)
* Mon May 12 2008 Chuck Ebbert <cebbert redhat com> 2.6.25.3-17
- Linux 2.6.25.3
  Drop patches merged in 2.6.25.3:
   linux-2.6.25-sparc64-mmap_check_fix.patch
   linux-2.6-md-fix-oops-in-rdev_attr_store.patch
* Wed May  7 2008 Tom "spot" Callaway <tcallawa redhat com> 2.6.25.2-16
- Fix sparc64 kernel crash in mmap_check (Dave Miller)
* Wed May  7 2008 Kyle McMartin <kmcmartin redhat com> 2.6.25.2-15
- Linux 2.6.25.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #452595 - Problem with SATA/IDE on Abit AN52
        https://bugzilla.redhat.com/show_bug.cgi?id=452595
  [ 2 ] Bug #444694 - ALi Corporation M5253 P1394 OHCI 1.1 Controller driver causing problems in kernels newer than 2.6.24.3-50
        https://bugzilla.redhat.com/show_bug.cgi?id=444694
  [ 3 ] Bug #449080 - Rsync cannot copy to a vfat partition on kernel 2.6.25 with -p or -a options
        https://bugzilla.redhat.com/show_bug.cgi?id=449080
  [ 4 ] Bug #449872 - [Patch] Bluetooth keyboard not reconnecting after powersave
        https://bugzilla.redhat.com/show_bug.cgi?id=449872
  [ 5 ] Bug #449909 - User Mode Linux (UML) broken on Fedora 9
        https://bugzilla.redhat.com/show_bug.cgi?id=449909
  [ 6 ] Bug #452111 - CVE-2008-2750 kernel: l2tp: Fix potential memory corruption in pppol2tp-recvmsg() (Heap corruption DoS) [F9]
        https://bugzilla.redhat.com/show_bug.cgi?id=452111
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]