[SECURITY] Fedora 9 Update: kernel-2.6.25.9-76.fc9

updates at fedoraproject.org updates at fedoraproject.org
Fri Jul 4 03:40:41 UTC 2008 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-5893
2008-07-04 02:08:45
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 9
Version     : 2.6.25.9
Release     : 76.fc9
URL         : http://www.kernel.org/
Summary     : The Linux kernel (the core of the Linux operating system)
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

--------------------------------------------------------------------------------
Update Information:

Update kernel from version 2.6.25.6 to 2.6.25.9:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.7
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.8
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.25.9    Security
updates:  CVE-2008-2750: The pppol2tp_recvmsg function in drivers/net/pppol2tp.c
in the Linux kernel 2.6 before 2.6.26-rc6 allows remote attackers to cause a
denial of service (kernel heap memory corruption and system crash) and possibly
have unspecified other impact via a crafted PPPOL2TP packet that results in a
large value for a certain length variable.    CVE-2008-2358: The Datagram
Congestion Control Protocol (DCCP) subsystem in the Linux kernel 2.6.18, and
probably other versions, does not properly check feature lengths, which might
allow remote attackers to execute arbitrary code, related to an unspecified
"overflow."    Wireless driver updates:  - Upstream wireless fixes from
2008-06-27    (http://marc.info/?l=linux-wireless&m=121459423021061&w=2)  -
Upstream wireless fixes from 2008-06-25    (http://marc.info/?l=linux-
wireless&m=121440912502527&w=2)  - Upstream wireless updates from 2008-06-14
(http://marc.info/?l=linux-netdev&m=121346686508160&w=2)  - Upstream wireless
fixes from 2008-06-09    (http://marc.info/?l=linux-
kernel&m=121304710726632&w=2)  - Upstream wireless updates from 2008-06-09
(http://marc.info/?l=linux-netdev&m=121304710526613&w=2)    Bugs:  444694 - ALi
Corporation M5253 P1394 OHCI 1.1 Controller driver causing problems in kernels
newer than 2.6.24.3-50  452595 - Problem with SATA/IDE on Abit AN52  449080 -
Rsync cannot copy to a vfat partition on kernel 2.6.25 with -p or -a options
449909 - User Mode Linux (UML) broken on Fedora 9  452111 - CVE-2008-2750
kernel: l2tp: Fix potential memory corruption in pppol2tp-recvmsg() (Heap
corruption DoS) [F9]  449872 - [Patch] Bluetooth keyboard not reconnecting after
powersave
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 27 2008 John W. Linville <linville at redhat.com> 2.6.25.9-76
- Upstream wireless fixes from 2008-06-27
  (http://marc.info/?l=linux-wireless&m=121459423021061&w=2)
* Fri Jun 27 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.9-75
- Fix bluetooth keyboard disconnect (#449872)
* Wed Jun 25 2008 John W. Linville <linville at redhat.com> 2.6.25.9-74
- Upstream wireless fixes from 2008-06-25
  (http://marc.info/?l=linux-wireless&m=121440912502527&w=2)
* Tue Jun 24 2008 John W. Linville <linville at redhat.com> 2.6.25.9-73
- Upstream wireless updates from 2008-06-14
  (http://marc.info/?l=linux-netdev&m=121346686508160&w=2)
* Tue Jun 24 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.9-72
- Linux 2.6.25.9
* Tue Jun 24 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.8-71
- pppolt2p: fix heap overflow (CVE-2008-2750) (#452111)
* Mon Jun 23 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.8-70
- libata: retry enable of AHCI mode before reporting an error (#452595)
* Mon Jun 23 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.8-69
- Linux 2.6.25.8
- Patches reverted from 2.6.25.8, already in Fedora:
    b43-fix-noise-calculation-warn_on.patch
    b43-fix-possible-null-pointer-dereference-in-dma-code.patch
* Sun Jun 22 2008 Dave Airlie <airlied at redhat.com> 2.6.25.7-68
- update drm update to fix a bug.
* Fri Jun 20 2008 Dave Jones <davej at redhat.com> 2.6.25.7-67
- Fix hpwdt driver to not oops on init. (452183)
* Fri Jun 20 2008 Jarod Wilson <jwilson at redhat.com> 2.6.25.7-66
- firewire: add phy config packet send timeout, prevents deadlock
  with flaky ALi controllers (#446763, #444694)
* Thu Jun 19 2008 Dave Airlie <airlied at redhat.com> 2.6.25.7-65
- update radeon patches to newer upstream
* Mon Jun 16 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.7-64
- Linux 2.6.25.7
- Don't apply upstream-reverts patch to -vanilla kernels.
- Dropped patches:
    linux-2.6-alsa-emu10k1-fix-audigy2.patch
    linux-2.6-netlink-fix-parse-of-nested-attributes.patch
    linux-2.6-af_key-fix-selector-family-initialization.patch
    linux-2.6-mmc-wbsd-fix-request_irq.patch
- Reverted wireless patches from 2.6.25.7, already in Fedora:
    b43-fix-controller-restart-crash.patch
    mac80211-send-association-event-on-ibss-create.patch
    ssb-fix-context-assertion-in-ssb_pcicore_dev_irqvecs_enable.patch
* Sun Jun 15 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.6-63
- Make rsync able to write to VFAT partitions again. (#449080)
* Sat Jun 14 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.6-62
- Replace eeepc driver with upstream eeepc_laptop driver.
* Sat Jun 14 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.6-61
- Enable Controller Area Networking (F8#451179)
* Fri Jun 13 2008 John W. Linville <linville at redhat.com> 2.6.25.6-60
- Upstream wireless fixes from 2008-06-13
  (http://marc.info/?l=linux-wireless&m=121339101523260&w=2)
* Tue Jun 10 2008 Roland McGrath <roland at redhat.com> - 2.6.25.6-58
- Fix i386 syscall tracing and PTRACE_SYSEMU, had broken UML. (#449909)
* Tue Jun 10 2008 John W. Linville <linville at redhat.com> 2.6.25.6-57
- Upstream wireless fixes from 2008-06-09
  (http://marc.info/?l=linux-kernel&m=121304710726632&w=2)
- Upstream wireless updates from 2008-06-09
  (http://marc.info/?l=linux-netdev&m=121304710526613&w=2)
* Tue Jun 10 2008 Roland McGrath <roland at redhat.com> - 2.6.25.6-54
- Fix spurious BUG_ON in tracehook_release_task. (#443552)
* Mon Jun  9 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.6-53
- Fix oops in wbsd MMC driver when card is present during boot (#449817)
* Mon Jun  9 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.6-52
- Fix init if af_key sockets (F8#450499)
* Mon Jun  9 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.6-51
- Sync ACPI patches with F-8 kernel.
* Mon Jun  9 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.6-50
- Linux 2.6.25.6
- Dropped patches:
    linux-2.6-x86-fix-asm-constraint-in-do_IRQ.patch
    linux-2.6-x86-pci-revert-remove-default-rom-allocation.patch
    linux-2.6-x86-dont-read-maxlvt-if-apic-unmapped.patch
    linux-2.6-x86-fix-setup-of-cyc2ns-in-tsc_64.patch
    linux-2.6-x86-prevent-pge-flush-from-interruption.patch
    linux-2.6-cifs-fix-unc-path-prefix.patch
    linux-2.6-ext34-xattr-fix.patch
    linux-2.6-xfs-small-buffer-reads.patch
    linux-2.6-net-iptables-add-xt_iprange-aliases.patch
    linux-2.6-caps-remain-source-compatible-with-32-bit.patch
    linux-2.6-libata-force-hardreset-in-sleep-mode.patch
- Updated patches:
    linux-2.6-input-fix_fn_key_on_macbookpro_4_1_and_mb_air.patch
* Fri Jun  6 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.5-49
- Fix the specfile to match the kernel version.
* Fri Jun  6 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.5-48
- Linux 2.6.25.5
* Fri Jun  6 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-47
- Make 64-bit capabilities backwards-compatible with old user programs (#447518)
* Fri Jun  6 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-46
- Fix Audigy2 ZS audio adapter hang (#242208)
* Thu Jun  5 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-45
- Kill spurious applesmc debug messages (#448056)
* Thu Jun  5 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-44
- Make DMA work again on atiixp PATA devices (#450191)
* Thu Jun  5 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-43
- Fix docking when docking station has a bay device (bug reported on IRC.)
* Tue Jun  3 2008 John W. Linville <linville at redhat.com> 2.6.25.4-42
- Upstream wireless fixes from 2008-06-03
  (http://marc.info/?l=linux-wireless&m=121252137324941&w=2)
* Mon Jun  2 2008 Jarod Wilson <jwilson at redhat.com> 2.6.25.4-41
- Fix oops in lirc_i2c module
- Add lirc support for latest MCE receivers
* Thu May 29 2008 John W. Linville <linville at redhat.com> 2.6.25.4-39
- Upstream wireless fixes from 2008-05-28
  (http://marc.info/?l=linux-wireless&m=121201250110162&w=2)
* Wed May 28 2008 Dave Airlie <airlied at redhat.com> 2.6.25.4-38
- drm-radeon-update.patch - Add R500 support along with updated radeon driver
* Wed May 28 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-37
- Fix parsing of netlink messages (#447812)
* Tue May 27 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-36
- Fix two hard-to-reproduce x86 bugs:
  x86: fix sched_clock when calibrated against PIT
  x86: don't allow flush_tlb_all to be interrupted
* Tue May 27 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-35
- input: fix function keys on macbook pro 4,1 and air (#445761)
* Tue May 27 2008 John W. Linville <linville at redhat.com> 2.6.25.4-34
- Upstream wireless updates from 2008-05-22
  (http://marc.info/?l=linux-wireless&m=121146112404515&w=2)
* Tue May 27 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-33
- libata: fix hangs on undock (#439197)
- libata: fix problems with some old/broken CF hardware (F8 #224005)
* Thu May 22 2008 Dave Jones <davej at redhat.com> 2.6.25.4-32
- Disable CONFIG_DMAR. This is terminally broken in the presence of a broken BIOS
* Wed May 21 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-31
- Clean up specfile a bit.
* Wed May 21 2008 John W. Linville <linville at redhat.com> 2.6.25.4-30
- libertas: Fix ethtool statistics
- mac80211: fix NULL pointer dereference in ieee80211_compatible_rates
- mac80211: don't claim iwspy support
- rtl8187: resource leak in error case
- hostap_cs: add ID for Conceptronic CON11CPro
- orinoco_cs: add ID for SpeedStream wireless adapters
* Tue May 20 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-29
- virtio_net: free transmit skbs in a timer (#444765)
* Tue May 20 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-28
- Disable the group scheduler (CONFIG_GROUP_SCHED) (#446192)
- x86: don't read the APIC if it's not mapped (#447183)
* Tue May 20 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-27
- x86: don't map VDSO into userspace when it's disabled (#229304)
- x86: fix ASM constraint in do_IRQ()
- x86: map PCI ROM by default again (F8 #440644)
* Mon May 19 2008 John W. Linville <linville at redhat.com> 2.6.25.4-26
- Re-sync wireless bits w/ current upstream
* Mon May 19 2008 Dave Jones <davej at redhat.com> 2.6.25.4-24
- Disable PATA_ISAPNP (it's busted).
* Fri May 16 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-23
- ALSA: add support for AD1883/1884A/1984A/1984B codecs and Thinkpad X300 (#445954)
* Fri May 16 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-22
- iptables: make firewall scripts using iprange work again (#446827)
- Enable the snd-serial-u16550 audio driver (#446783)
* Fri May 16 2008 Eric Sandeen <esandeen at redhat.com> 2.6.25.4-21
- xfs: Fix memory corruption with small buffer reads (kernel.org #10421)
* Thu May 15 2008 Eric Sandeen <esandeen at redhat.com> 2.6.25.4-20
- ext3/4: fix uninitialized bs in ext3/4_xattr_set_handle()
* Thu May 15 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.4-19
- Linux 2.6.25.4
   Dropped patches:
   - linux-2.6.25-sparc64-semctl.patch
   - linux-2.6-libata-ata_piix-check-sidpr.patch
* Mon May 12 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.3-18
- CIFS: fix UNC path prefix to have the correct slash (#443681)
* Mon May 12 2008 Chuck Ebbert <cebbert at redhat.com> 2.6.25.3-17
- Linux 2.6.25.3
  Drop patches merged in 2.6.25.3:
   linux-2.6.25-sparc64-mmap_check_fix.patch
   linux-2.6-md-fix-oops-in-rdev_attr_store.patch
* Wed May  7 2008 Tom "spot" Callaway <tcallawa at redhat.com> 2.6.25.2-16
- Fix sparc64 kernel crash in mmap_check (Dave Miller)
* Wed May  7 2008 Kyle McMartin <kmcmartin at redhat.com> 2.6.25.2-15
- Linux 2.6.25.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #452595 - Problem with SATA/IDE on Abit AN52
        https://bugzilla.redhat.com/show_bug.cgi?id=452595
  [ 2 ] Bug #444694 - ALi Corporation M5253 P1394 OHCI 1.1 Controller driver causing problems in kernels newer than 2.6.24.3-50
        https://bugzilla.redhat.com/show_bug.cgi?id=444694
  [ 3 ] Bug #449080 - Rsync cannot copy to a vfat partition on kernel 2.6.25 with -p or -a options
        https://bugzilla.redhat.com/show_bug.cgi?id=449080
  [ 4 ] Bug #449872 - [Patch] Bluetooth keyboard not reconnecting after powersave
        https://bugzilla.redhat.com/show_bug.cgi?id=449872
  [ 5 ] Bug #449909 - User Mode Linux (UML) broken on Fedora 9
        https://bugzilla.redhat.com/show_bug.cgi?id=449909
  [ 6 ] Bug #452111 - CVE-2008-2750 kernel: l2tp: Fix potential memory corruption in pppol2tp-recvmsg() (Heap corruption DoS) [F9]
        https://bugzilla.redhat.com/show_bug.cgi?id=452111
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the Fedora-package-announce mailing list