[SECURITY] Fedora Core 6 Test Update: kernel-2.6.20-1.2925.fc6

Chuck Ebbert cebbert at redhat.com
Mon Mar 12 19:23:41 UTC 2007 

---------------------------------------------------------------------
Fedora Test Update Notification
FEDORA-2007-335
2007-03-12
---------------------------------------------------------------------

Product     : Fedora Core 6
Name        : kernel
Version     : 2.6.20
Release     : 1.2925.fc6
Summary     : The Linux kernel (the core of the Linux operating system)
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system:  memory allocation, process allocation, device
input and output, etc.

---------------------------------------------------------------------
Update Information:

Rebased to kernel 2.6.20.3-rc1:

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.1
(The CVE fix in 2.6.20.1 is already in
kernel-2.6.19-1.2911.6.5.fc6.)
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.2
Changelog for 2.6.20.3 is not available yet.

This release does not include Xen kernels.

CVE-2007-0005:
A vulnerability has been reported in the Linux Kernel, which
potentially can be exploited by malicious, local users to
cause a DoS (Denial of Service) or gain escalated privileges.

The vulnerability is caused due to boundary errors within
the "read()" and "write()" functions of the Omnikey CardMan
4040 driver. This can be exploited to cause a buffer
overflow and may allow the execution of arbitrary code with
kernel privileges.

---------------------------------------------------------------------
* Sat Mar 10 2007 Chuck Ebbert <cebbert at redhat.com>
- 2.6.20.3-rc1
- removed (now in 2.6.20.3-rc1):
	1787: linux-2.6-net_bcm43xx_1GB_DMA_fix.patch
	1793: linux-2.6-nf_conntrack_fix_cleanup.patch
- backported the latest utrace
* Fri Mar  9 2007 Chuck Ebbert <cebbert at redhat.com>
- 2.6.20.2
- removed (because they are in 2.6.20.2)
	1792: linux-2.6-cardman_buffer_overflow.patch (CVE-2007-0005)
	1794: linux-2.6-x86_64_survive_no_irq_for_vector.patch
- updated
	linux-2.6-gfs2-update.patch (Steve Whitehouse)
- added
	1792: linux-2.6-20_git-serio-keyboard.patch
	1794: linux-2.6-20_ia64_chip_mask.patch (Prarit)
* Wed Mar  7 2007 Chuck Ebbert <cebbert at redhat.com>
- 2.6.20.2-rc1
- Additional fixes:
	1787: linux-2.6-net_bcm43xx_1GB_DMA_fix.patch
	1790: linux-2.6-jfs_fix_deadlock.patch
	1791: linux-2.6-git-serio-1e4865f8d469b1.patch
	1792: linux-2.6-cardman_buffer_overflow.patch (CVE-2007-0005)
	1793: linux-2.6-nf_conntrack_fix_cleanup.patch
	1794: linux-2.6-x86_64_survive_no_irq_for_vector.patch

---------------------------------------------------------------------
This update can be downloaded from:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/testing/6/

e931239d97b190e6941ff771c5cdbde0a2e810fb  SRPMS/kernel-2.6.20-1.2925.fc6.src.rpm
e931239d97b190e6941ff771c5cdbde0a2e810fb  noarch/kernel-2.6.20-1.2925.fc6.src.rpm
c925e4abcea3c1cba0a8a67247e13d94c8c501ad  ppc/kernel-smp-2.6.20-1.2925.fc6.ppc.rpm
d3ce2e3e1630723a53949ef9cb44964fc9e78427  ppc/kernel-devel-2.6.20-1.2925.fc6.ppc.rpm
0dfc5ff19300970d25bd35e77eb19f86c4b06514  ppc/kernel-2.6.20-1.2925.fc6.ppc.rpm
606ae37ed836e6a71c6afe540923c6fa3c8e9080  ppc/kernel-smp-devel-2.6.20-1.2925.fc6.ppc.rpm
5d3b2713087f32cebcfd66e35bfc089f3a7640f1  ppc/kernel-headers-2.6.20-1.2925.fc6.ppc.rpm
35321f4fe3d22d947125a1ffa8053068342473b6  ppc/debug/kernel-debuginfo-common-2.6.20-1.2925.fc6.ppc.rpm
1c3fc0fe663257a4a3f2a4fb990cf1cb1bdb1c37  ppc/debug/kernel-debuginfo-2.6.20-1.2925.fc6.ppc.rpm
768c1c30abb50e6487b51a36119c2ccb68d3e277  ppc/debug/kernel-smp-debuginfo-2.6.20-1.2925.fc6.ppc.rpm
e34b19070b70dec0228e2268b92e0e2a14f9cd73  ppc/kernel-doc-2.6.20-1.2925.fc6.noarch.rpm
2156717630bc82aeeeb7853d903a0fb5e249cda3  x86_64/debug/kernel-debuginfo-2.6.20-1.2925.fc6.x86_64.rpm
14714c821274dac86a25b8634a2ba0d614fc827d  x86_64/debug/kernel-kdump-debuginfo-2.6.20-1.2925.fc6.x86_64.rpm
788c3abc5ac8c6bdf9abb038928aaae8e0f95c9f  x86_64/kernel-headers-2.6.20-1.2925.fc6.x86_64.rpm
a90a8fc50b9c43c7a09fea4fdf907b8e8d03c9a0  x86_64/kernel-debug-devel-2.6.20-1.2925.fc6.x86_64.rpm
69fcea617888b4887923edbd2c431b77d8f9b8c3  x86_64/kernel-debug-2.6.20-1.2925.fc6.x86_64.rpm
b23acb71e1d42b75e664b44051185a461f1331ed  x86_64/debug/kernel-debuginfo-common-2.6.20-1.2925.fc6.x86_64.rpm
6d2bd4bf43559d1cb48c04a156a9804bf8a5d993  x86_64/debug/kernel-debug-debuginfo-2.6.20-1.2925.fc6.x86_64.rpm
5b990c2d04acb564c6d27b7f4a4fe655c3d7c824  x86_64/kernel-kdump-2.6.20-1.2925.fc6.x86_64.rpm
eb6ff5d534ef068274dbee24cab5d4c78ae3e14b  x86_64/kernel-2.6.20-1.2925.fc6.x86_64.rpm
f77cdf221b377de68cb7e887739fe04e308d1a00  x86_64/kernel-kdump-devel-2.6.20-1.2925.fc6.x86_64.rpm
f45313b4b13bac9855659471e01c157bc622b431  x86_64/kernel-devel-2.6.20-1.2925.fc6.x86_64.rpm
e34b19070b70dec0228e2268b92e0e2a14f9cd73  x86_64/kernel-doc-2.6.20-1.2925.fc6.noarch.rpm
8c865bfe7eb865f296cd74724f36a7ebfef5f237  i386/kernel-headers-2.6.20-1.2925.fc6.i386.rpm
0f058db693645b4b8fe33e7a590ddcdff0a58591  i386/kernel-devel-2.6.20-1.2925.fc6.i586.rpm
3309ee17240656eed0d7b43346534f7306a22def  i386/debug/kernel-debuginfo-common-2.6.20-1.2925.fc6.i586.rpm
6652d241247c5963c3cfb91ba3637bfeed3111f6  i386/kernel-2.6.20-1.2925.fc6.i586.rpm
f64fded9c79c14ef6ac54b6662d4acea5282904b  i386/debug/kernel-debuginfo-2.6.20-1.2925.fc6.i586.rpm
1adf2eb3b8a63fb7ca7a6b30fece54bf2eaf2c96  i386/debug/kernel-debug-debuginfo-2.6.20-1.2925.fc6.i686.rpm
1566b49f682582cbd9d5a4842884c55b9d9c0b83  i386/debug/kernel-debuginfo-2.6.20-1.2925.fc6.i686.rpm
4e73645a758000119ba3f07be886a9cec68ae594  i386/kernel-PAE-debug-2.6.20-1.2925.fc6.i686.rpm
4c1d71510991eccbb6937dc49753c7f18be068e5  i386/kernel-devel-2.6.20-1.2925.fc6.i686.rpm
f19c517157fe54d5a24bf44038a24657b9722569  i386/kernel-2.6.20-1.2925.fc6.i686.rpm
708b79210907afb62deaaea606ddc23119da17f4  i386/kernel-kdump-devel-2.6.20-1.2925.fc6.i686.rpm
12134fb3c1b66e2e76f9c7fe0ad8926c15e4857d  i386/kernel-PAE-debug-devel-2.6.20-1.2925.fc6.i686.rpm
d6a27eee685b938b8a99883678099b7f24345d88  i386/kernel-PAE-2.6.20-1.2925.fc6.i686.rpm
3d65930cf7dffec9c3fbd0482abda95c514ea570  i386/kernel-debug-2.6.20-1.2925.fc6.i686.rpm
cd292e2207e68be5b768c20fea0575f61bccf5a5  i386/kernel-PAE-devel-2.6.20-1.2925.fc6.i686.rpm
e3f9dd65d7a83d89d00b73a33229e40f197aff2a  i386/debug/kernel-PAE-debug-debuginfo-2.6.20-1.2925.fc6.i686.rpm
331c70e0e53135d0eebabb9c1f76c62ba66be47d  i386/kernel-kdump-2.6.20-1.2925.fc6.i686.rpm
ca42e9e68a62545c186ca314a77a86ee1a337205  i386/debug/kernel-PAE-debuginfo-2.6.20-1.2925.fc6.i686.rpm
5e74aab4b06f9ec3c9f0dbbd0214da50b4bf40e0  i386/debug/kernel-debuginfo-common-2.6.20-1.2925.fc6.i686.rpm
c5a4970c2ead941d651778aadbf36ead13fc66aa  i386/kernel-debug-devel-2.6.20-1.2925.fc6.i686.rpm
76abbf2caf5a95effcdbfebc0da9e80745200d1b  i386/debug/kernel-kdump-debuginfo-2.6.20-1.2925.fc6.i686.rpm
e34b19070b70dec0228e2268b92e0e2a14f9cd73  i386/kernel-doc-2.6.20-1.2925.fc6.noarch.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

More information about the fedora-test-list mailing list