[SECURITY] Fedora 10 Update: kernel-2.6.27.9-159.fc10

updates at fedoraproject.org updates at fedoraproject.org
Wed Dec 24 18:45:37 UTC 2008 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-11593
None
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 10
Version     : 2.6.27.9
Release     : 159.fc10
URL         : http://www.kernel.org/
Summary     : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

--------------------------------------------------------------------------------
Update Information:

Update kernel from version 2.6.27.7 to 2.6.27.9:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.8
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.9    Also includes
three critical fixes scheduled for 2.6.27.10    Update applesmc driver to latest
upstream version.  (Adds module autoloading.)    Update ALSA audio drivers to
version 1.0.18a.  (See www.alsa-project.org for details.)    Security fixes:
CVE-2008-5079   in 2.6.27.9  CVE-2008-5182   in 2.6.27.8  CVE-2008-5300   in
2.6.27.8
--------------------------------------------------------------------------------
ChangeLog:

* Tue Dec 16 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-159
- Disable input beep feature in Intel HDA sound driver.
* Tue Dec 16 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-158
- Fix the CDROM door status patch right this time. (from rawhide)
* Mon Dec 15 2008 John W. Linville <linville at redhat.com> 2.6.27.9-157
- iwlagn: fix RX skb alignment
* Mon Dec 15 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-156
- Revert -stable patch that causes suspend problems (L-K BZ 12149, 12155)
* Sun Dec 14 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-155
- Linux 2.6.27.9
* Sat Dec 13 2008 Tom "spot" Callaway <tcallawa at redhat.com> 2.6.27.9-154.rc2
- pull patch from davem sparc-2.6 git branch to add ebus_dma.h
* Sat Dec 13 2008 Tom "spot" Callaway <tcallawa at redhat.com> 2.6.27.9-153.rc2
- Add "scsi_esp_register" to the search terms for modules.block so we pick up sun_esp.ko
* Fri Dec 12 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-152.rc2
- Enable input beep feature in Intel HDA sound driver.
* Fri Dec 12 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-151.rc2
- Linux 2.6.27.9-rc2
* Fri Dec 12 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-150.rc1
- Fix VMI crash on boot introduced in 2.6.27.7 (#476062)
* Fri Dec 12 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.9-149.rc1
- Linux 2.6.27.9-rc1
  Dropped patches:
    linux-2.6-net-atm-CVE-2008-5079.patch
* Fri Dec 12 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.8-148
- Fix IDR allocator bug introduced in 2.6.27.8
* Fri Dec 12 2008 Dave Airlie <airlied at redhat.com> 2.6.27.8-147
- modeset - fix AGP without kms + fix endian parser/pll programming
* Wed Dec 10 2008 Jarod Wilson <jarod at redhat.com> 2.6.27.8-146
- Plug DMA memory leak in firewire drivers (#475156)
* Wed Dec 10 2008 Hans de Goede <hdegoede at redhat.com> 2.6.27.8-145
- Fix vc0321 based webcams (rh 474990)
* Tue Dec  9 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.8-144
- Revert idr patch from 2.6.27.8 that caused DRM breakage.
* Mon Dec  8 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.8-143
- ATM security fix (CVE-2008-5079)
* Mon Dec  8 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.8-142
- Scheduler fixes from 2.6.28
* Mon Dec  8 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.8-141
- Stop the pciehp driver from filling the log with status messages.
* Mon Dec  8 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.8-140
- Linux 2.6.27.8
  Dropped patches:
    linux-2.6-x86-sb600-skip-acpi-irq0-override-if-not-routed-to-int2.patch
    linux-2.6-x86-more-general-id-for-phoenix-bios.patch
    linux-2.6-xen-dont-reserve-2-pages-of-padding.patch
    linux-2.6-usb-ehci-fix-sb700-subsystem-hang.patch
    linux-2.6-usb-usbmon-fix-read.patch
    linux-2.6-libata-avoid-overflow-with-large-disks.patch
    linux-2.6-pci-fix-pciehp.patch
    linux-2.6-input.git-atkbd-add-quirk-for-inventec.patch
    linux-2.6.27-ext4-2.6.28-backport-fixups.patch
    linux-2.6.27-ext4-2.6.28-rc3-git6.patch
  Added patches:
    linux-2.6.27-ext4-rename-ext4dev-to-ext4.patch
* Mon Dec  8 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-139
- ALSA 1.0.18a
  Dropped patches:
    linux-2.6-alsa-ac97-whitelist.patch
    linux-2.6-alsa-ac97-whitelist-AD1981B.patch
    linux-2.6-alsa-revo51-headphone.patch
    linux-2.6-olpc-speaker-out.patch
* Mon Dec  8 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-138
- Fix PCI config space size on AMD Barcelona.
* Wed Dec  3 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-137
- Update applesmc driver to 2.6.28-rc7-git1
  Adds: module autoloading
* Wed Dec  3 2008 Dave Airlie <airlied at redhat.com> 2.6.27.7-136
- radeon: fix AGP harder than the last time.
* Tue Dec  2 2008 John W. Linville <linville at redhat.com> 2.6.27.7-135
- Backported ath9k DMA fixes from pre-2.6.28
- Drop patch to disable ath9k when swiotlb is in use
* Tue Dec  2 2008 Dave Airlie <airlied at redhat.com> 2.6.27.7-134
- radeon: fix IGP aperture sizing (#473895)
* Mon Dec  1 2008 Dave Airlie <airlied at redhat.com> 2.6.27.7-133
- drm-next.patch: drm/intel: fix VT switch issue harder.
* Sun Nov 30 2008 Dave Airlie <airlied at redhat.com> 2.6.27.7-132
- radeon: another AGP fix for r500 cards falling back to PCIE
* Sun Nov 30 2008 Dave Airlie <airlied at redhat.com> 2.6.27.7-131
- radeon: fix card posting, module unload and radeon AGP issues
* Thu Nov 27 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-130
- Additional fixes for 64K lowmem reservation:
  - More general matching for Phoenix BIOS
  - Fix Xen when low 64K is reserved
* Thu Nov 27 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-129
- Update applesmc driver to 2.6.28-rc6-git1
  Adds: iMac 5/6/8, Macbook 4/5, Macbook Pro 5, generic MacPro
* Thu Nov 27 2008 Dave Airlie <airlied at redhat.com> 2.6.27.7-128
- drm: intel rebase with upstream fixes - radeon add larger GART size
* Tue Nov 25 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-127
- Two USB patches scheduled for the next -stable release.
* Tue Nov 25 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-126
- Fix Zepto notebook multimedia keys (F9#460237)
- Fix Dell XPS 1530 trackpad (F9#448656)
* Tue Nov 25 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.7-125
- Linux 2.6.27.7
  Dropped patches:
    linux-2.6.27-sony-laptop-suspend-fix.patch
    linux-2.6-hostap-skb-cb-hack.patch
    linux-2.6-wireless-iwlagn-avoid-sleep-in-softirq.patch
* Tue Nov 25 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.27.6-124
- Linux 2.6.27.6
  Dropped patches:
    linux-2.6-acpi-dock-avoid-check-sta-method.patch
    linux-2.6-blk-cciss-fix-regression-sysfs-symlink-missing.patch
  Updated patch:
    linux-2.6-netdev-r8169-2.6.28.patch
  New config variable:
    CONFIG_X86_RESERVE_LOW_64K=y
* Mon Nov 24 2008 Dave Airlie <airlied at redhat.com> 2.6.27.5-123
- radeon: hopefully fix rs690 and rs480 GART invalidation
* Wed Nov 19 2008 Dave Jones <davej at redhat.com> 2.6.27.5-122
- selinux: recognize netlink messages for 'ip addrlabel' (#469423)
* Wed Nov 19 2008 Hans de Goede <hdegoede at redhat.com> 2.6.27.5-121
- Update uvcvideo to latest git
- Patch uvcvideo to not make older logitech cams crash (bz 472217)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #473696 - CVE-2008-5079 Linux Kernel 'atm module' Local Denial of Service
        https://bugzilla.redhat.com/show_bug.cgi?id=473696
  [ 2 ] Bug #472325 - CVE-2008-5182 kernel: fix inotify watch removal/umount races
        https://bugzilla.redhat.com/show_bug.cgi?id=472325
  [ 3 ] Bug #473259 - CVE-2008-5300 kernel: fix soft lockups/OOM issues with unix socket garbage collector
        https://bugzilla.redhat.com/show_bug.cgi?id=473259
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the Fedora-package-announce mailing list