Date:         Tue, 30 May 2006 17:49:09 -0500
Reply-To:     Connie Sieh 
Sender:       Security Errata for Scientific Linux
              
From:         Connie Sieh 
Subject:      Re: ERRATA for "kernel"  on SL 40,41,42,43 i386 x86_64 now
              available
Comments: To: scientific 
In-Reply-To:  

Here are the GFS rpms that are dependent on the kernel

i386:
    cman-kernel-2.6.9-43.8.3.i686.rpm
    cman-kernel-hugemem-2.6.9-43.8.3.i686.rpm
    cman-kernel-smp-2.6.9-43.8.3.i686.rpm
    cman-kernheaders-2.6.9-43.8.3.i686.rpm
    dlm-kernel-2.6.9-41.7.1.i686.rpm
    dlm-kernel-hugemem-2.6.9-41.7.1.i686.rpm
    dlm-kernel-smp-2.6.9-41.7.1.i686.rpm
    dlm-kernheaders-2.6.9-41.7.1.i686.rpm
    fence-1.32.25-1.i686.rpm
    GFS-kernel-2.6.9-49.1.1.i686.rpm
    GFS-kernel-hugemem-2.6.9-49.1.1.i686.rpm
    GFS-kernel-smp-2.6.9-49.1.1.i686.rpm
    GFS-kernheaders-2.6.9-49.1.1.i686.rpm
    gnbd-kernel-2.6.9-9.31.1.i686.rpm
    gnbd-kernel-hugemem-2.6.9-9.31.1.i686.rpm
    gnbd-kernel-smp-2.6.9-9.31.1.i686.rpm
    gnbd-kernheaders-2.6.9-9.31.1.i686.rpm

x86_64:
    cman-kernel-2.6.9-43.8.3.x86_64.rpm
    cman-kernel-smp-2.6.9-43.8.3.x86_64.rpm
    cman-kernheaders-2.6.9-43.8.3.x86_64.rpm
    dlm-kernel-2.6.9-41.7.1.x86_64.rpm
    dlm-kernel-smp-2.6.9-41.7.1.x86_64.rpm
    dlm-kernheaders-2.6.9-41.7.1.x86_64.rpm
    fence-1.32.25-1.x86_64.rpm
    GFS-kernel-2.6.9-49.1.1.x86_64.rpm
    GFS-kernel-smp-2.6.9-49.1.1.x86_64.rpm
    GFS-kernheaders-2.6.9-49.1.1.x86_64.rpm
    gnbd-kernel-2.6.9-9.31.1.x86_64.rpm
    gnbd-kernel-smp-2.6.9-9.31.1.x86_64.rpm
    gnbd-kernheaders-2.6.9-9.31.1.x86_64.rpm

-Connie Sieh
-Troy Dawson

On Thu, 25 May 2006, Connie Sieh wrote:

> On Thu, 25 May 2006, Connie Sieh wrote:
> 
> > The ERRATA for SL 40,41,42,43 i386 x86_64 are now available from:
> > > > 
> > Synopsis:  Updated kernel packages that fix several security issues in the 
> >            Scientific Linux 4x kernel are now available
> > 
> > Severity: important
> > 
> > Issued on: 2006-05-24
> > 
> > Problem Description:
> > 
> > 	Issue in the IPv6 implementation that allowed a local user to cause a
> > 	denial of service (infinite loop and crash) (CVE-2005-2973, important)
> > 
> > 	Issue in the bridge implementation that allowed a remote user to
> > 	cause forwarding of spoofed packets via poisoning of the forwarding
> > 	table with already dropped frames (CVE-2005-3272, moderate)
> > 
> > 	Isuue in the atm module that allowed a local user to cause a denial
> > 	of service (panic) via certain socket calls (CVE-2005-3359, important)
> > 
> > 	Issue in the NFS client implementation that allowed a local user to
> > 	cause a denial of service (panic) via O_DIRECT writes (CVE-2006-0555,
> > 	important)
> > 
> > 	A difference in "sysretq" operation of EM64T (as opposed to Opteron)
> > 	processors that allowed a local user to cause a denial of service
> > 	(crash) upon return from certain system calls (CVE-2006-0741 and
> > 	CVE-2006-0744, important)
> > 
> > 	Issue in the keyring implementation that allowed a local user to
> > 	cause a denial of service (OOPS) (CVE-2006-1522, important)
> > 
> > 	Issue in IP routing implementation that allowed a local user to cause
> > 	a denial of service (panic) via a request for a route for a multicast IP
> > 	(CVE-2006-1525, important)
> > 
> > 	Issue in the SCTP-netfilter implementation that allowed a remote user
> > 	to cause a denial of service (infinite loop) (CVE-2006-1527, important)
> > 
> > 	Issue in the sg driver that allowed a local user to cause a denial of
> > 	service (crash) via a dio transfer to memory mapped (mmap) IO space
> > 	(CVE-2006-1528, important)
> > 
> > 	Issue in the threading implementation that allowed a local user to
> > 	cause a denial of service (panic) (CVE-2006-1855, important)
> > 
> > 	Two missing LSM hooks that allowed a local user to bypass the LSM by
> > 	using readv() or writev() (CVE-2006-1856, moderate)
> > 
> > 	Issue in the virtual memory implementation that allowed local user to
> > 	cause a denial of service (panic) by using the lsof command
> > 	(CVE-2006-1862, important)
> > 
> > 	A directory traversal vulnerability in smbfs that allowed a local user
> > 	to escape chroot restrictions for an SMB-mounted filesystem via "..\\"
> > 	sequences (CVE-2006-1864, moderate)
> > 
> >  	Issue in the ECNE chunk handling of SCTP that allowed a remote user
> > 	to cause a denial of service (panic) (CVE-2006-2271, moderate)
> > 
> > 	Issue in the handling of COOKIE_ECHO and HEARTBEAT control chunks of
> > 	SCTP that allowed a remote user to cause a denial of service (panic)
> > 	(CVE-2006-2272, moderate)
> > 
> > 	Issue in the handling of DATA fragments of SCTP that allowed a remote
> > 	user to cause a denial of service (infinite recursion and crash)
> > 	(CVE-2006-2274, moderate)
> > 
> > 
> > CVEs:   CVE-2005-2973 CVE-2005-3272 CVE-2005-3359 CVE-2006-0555 CVE-2006-0741 
> >         CVE-2006-0744 CVE-2006-1522 CVE-2006-1525 CVE-2006-1527 CVE-2006-1528 
> >         CVE-2006-1855 CVE-2006-1856 CVE-2006-1862 CVE-2006-1864 CVE-2006-2271
> >         CVE-2006-2272 CVE-2006-2274
> > 
> > SRPMS
> > 	kernel-2.6.9-34.0.1.EL.src.rpm
> > 
> > Arch: i386
> > 	kernel-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-devel-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-doc-2.6.9-34.0.1.EL.noarch.rpm
> > 	kernel-hugemem-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-hugemem-devel-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-smp-2.6.9-34.0.1.EL.i686.rpm
> > 	kernel-smp-devel-2.6.9-34.0.1.EL.i686.rpm
> > 
> > Dependencies:
> > 
> > 	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.i686.rpm
> > 	kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.i686.rpm
> 
> Arch: x86_64
>         kernel-2.6.9-34.0.1.EL.x86_64.rpm
>         kernel-devel-2.6.9-34.0.1.EL.x86_64.rpm
>         kernel-largesmp-2.6.9-34.0.1.EL.x86_64.rpm
>         kernel-largesmp-devel-2.6.9-34.0.1.EL.x86_64.rpm
>         kernel-smp-2.6.9-34.0.1.EL.x86_64.rpm
>         kernel-smp-devel-2.6.9-34.0.1.EL.x86_64.rpm
> 
> Dependencies:
> 
> 	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.x86_64.rpm
>         kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.x86_64.rpm
> 
> > 
> > -Connie Sieh
> > -Troy Dawson
> > 
> 
> -Connie Sieh
> 
lastline

SciLinux: CVE-2005-2973 "rh-postgresql" SL 301,302,303,304,305

Updated postgresql packages that fix several security

Summary

Date:         Tue, 30 May 2006 17:49:09 -0500Reply-To:     Connie Sieh Sender:       Security Errata for Scientific Linux              From:         Connie Sieh Subject:      Re: ERRATA for "kernel"  on SL 40,41,42,43 i386 x86_64 now              availableComments: To: scientific In-Reply-To:  Here are the GFS rpms that are dependent on the kerneli386:    cman-kernel-2.6.9-43.8.3.i686.rpm    cman-kernel-hugemem-2.6.9-43.8.3.i686.rpm    cman-kernel-smp-2.6.9-43.8.3.i686.rpm    cman-kernheaders-2.6.9-43.8.3.i686.rpm    dlm-kernel-2.6.9-41.7.1.i686.rpm    dlm-kernel-hugemem-2.6.9-41.7.1.i686.rpm    dlm-kernel-smp-2.6.9-41.7.1.i686.rpm    dlm-kernheaders-2.6.9-41.7.1.i686.rpm    fence-1.32.25-1.i686.rpm    GFS-kernel-2.6.9-49.1.1.i686.rpm    GFS-kernel-hugemem-2.6.9-49.1.1.i686.rpm    GFS-kernel-smp-2.6.9-49.1.1.i686.rpm    GFS-kernheaders-2.6.9-49.1.1.i686.rpm    gnbd-kernel-2.6.9-9.31.1.i686.rpm    gnbd-kernel-hugemem-2.6.9-9.31.1.i686.rpm    gnbd-kernel-smp-2.6.9-9.31.1.i686.rpm    gnbd-kernheaders-2.6.9-9.31.1.i686.rpmx86_64:    cman-kernel-2.6.9-43.8.3.x86_64.rpm    cman-kernel-smp-2.6.9-43.8.3.x86_64.rpm    cman-kernheaders-2.6.9-43.8.3.x86_64.rpm    dlm-kernel-2.6.9-41.7.1.x86_64.rpm    dlm-kernel-smp-2.6.9-41.7.1.x86_64.rpm    dlm-kernheaders-2.6.9-41.7.1.x86_64.rpm    fence-1.32.25-1.x86_64.rpm    GFS-kernel-2.6.9-49.1.1.x86_64.rpm    GFS-kernel-smp-2.6.9-49.1.1.x86_64.rpm    GFS-kernheaders-2.6.9-49.1.1.x86_64.rpm    gnbd-kernel-2.6.9-9.31.1.x86_64.rpm    gnbd-kernel-smp-2.6.9-9.31.1.x86_64.rpm    gnbd-kernheaders-2.6.9-9.31.1.x86_64.rpm-Connie Sieh-Troy DawsonOn Thu, 25 May 2006, Connie Sieh wrote:> On Thu, 25 May 2006, Connie Sieh wrote:> > > The ERRATA for SL 40,41,42,43 i386 x86_64 are now available from:> > > > > > Synopsis:  Updated kernel packages that fix several security issues in the > >            Scientific Linux 4x kernel are now available> > > > Severity: important> > > > Issued on: 2006-05-24> > > > Problem Description:> > > > 	Issue in the IPv6 implementation that allowed a local user to cause a> > 	denial of service (infinite loop and crash) (CVE-2005-2973, important)> > > > 	Issue in the bridge implementation that allowed a remote user to> > 	cause forwarding of spoofed packets via poisoning of the forwarding> > 	table with already dropped frames (CVE-2005-3272, moderate)> > > > 	Isuue in the atm module that allowed a local user to cause a denial> > 	of service (panic) via certain socket calls (CVE-2005-3359, important)> > > > 	Issue in the NFS client implementation that allowed a local user to> > 	cause a denial of service (panic) via O_DIRECT writes (CVE-2006-0555,> > 	important)> > > > 	A difference in "sysretq" operation of EM64T (as opposed to Opteron)> > 	processors that allowed a local user to cause a denial of service> > 	(crash) upon return from certain system calls (CVE-2006-0741 and> > 	CVE-2006-0744, important)> > > > 	Issue in the keyring implementation that allowed a local user to> > 	cause a denial of service (OOPS) (CVE-2006-1522, important)> > > > 	Issue in IP routing implementation that allowed a local user to cause> > 	a denial of service (panic) via a request for a route for a multicast IP> > 	(CVE-2006-1525, important)> > > > 	Issue in the SCTP-netfilter implementation that allowed a remote user> > 	to cause a denial of service (infinite loop) (CVE-2006-1527, important)> > > > 	Issue in the sg driver that allowed a local user to cause a denial of> > 	service (crash) via a dio transfer to memory mapped (mmap) IO space> > 	(CVE-2006-1528, important)> > > > 	Issue in the threading implementation that allowed a local user to> > 	cause a denial of service (panic) (CVE-2006-1855, important)> > > > 	Two missing LSM hooks that allowed a local user to bypass the LSM by> > 	using readv() or writev() (CVE-2006-1856, moderate)> > > > 	Issue in the virtual memory implementation that allowed local user to> > 	cause a denial of service (panic) by using the lsof command> > 	(CVE-2006-1862, important)> > > > 	A directory traversal vulnerability in smbfs that allowed a local user> > 	to escape chroot restrictions for an SMB-mounted filesystem via "..\\"> > 	sequences (CVE-2006-1864, moderate)> > > >  	Issue in the ECNE chunk handling of SCTP that allowed a remote user> > 	to cause a denial of service (panic) (CVE-2006-2271, moderate)> > > > 	Issue in the handling of COOKIE_ECHO and HEARTBEAT control chunks of> > 	SCTP that allowed a remote user to cause a denial of service (panic)> > 	(CVE-2006-2272, moderate)> > > > 	Issue in the handling of DATA fragments of SCTP that allowed a remote> > 	user to cause a denial of service (infinite recursion and crash)> > 	(CVE-2006-2274, moderate)> > > > > > CVEs:   CVE-2005-2973 CVE-2005-3272 CVE-2005-3359 CVE-2006-0555 CVE-2006-0741 > >         CVE-2006-0744 CVE-2006-1522 CVE-2006-1525 CVE-2006-1527 CVE-2006-1528 > >         CVE-2006-1855 CVE-2006-1856 CVE-2006-1862 CVE-2006-1864 CVE-2006-2271> >         CVE-2006-2272 CVE-2006-2274> > > > SRPMS> > 	kernel-2.6.9-34.0.1.EL.src.rpm> > > > Arch: i386> > 	kernel-2.6.9-34.0.1.EL.i686.rpm> > 	kernel-devel-2.6.9-34.0.1.EL.i686.rpm> > 	kernel-doc-2.6.9-34.0.1.EL.noarch.rpm> > 	kernel-hugemem-2.6.9-34.0.1.EL.i686.rpm> > 	kernel-hugemem-devel-2.6.9-34.0.1.EL.i686.rpm> > 	kernel-smp-2.6.9-34.0.1.EL.i686.rpm> > 	kernel-smp-devel-2.6.9-34.0.1.EL.i686.rpm> > > > Dependencies:> > > > 	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.i686.rpm> > 	kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.i686.rpm> > Arch: x86_64>         kernel-2.6.9-34.0.1.EL.x86_64.rpm>         kernel-devel-2.6.9-34.0.1.EL.x86_64.rpm>         kernel-largesmp-2.6.9-34.0.1.EL.x86_64.rpm>         kernel-largesmp-devel-2.6.9-34.0.1.EL.x86_64.rpm>         kernel-smp-2.6.9-34.0.1.EL.x86_64.rpm>         kernel-smp-devel-2.6.9-34.0.1.EL.x86_64.rpm> > Dependencies:> > 	kernel-module-openafs-2.6.9-34.0.1.EL-1.4.0-8.SL.x86_64.rpm>         kernel-module-openafs-2.6.9-34.0.1.ELsmp-1.4.0-8.SL.x86_64.rpm> > > > > -Connie Sieh> > -Troy Dawson> > > > -Connie Sieh> lastline



Security Fixes

Severity

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved