Fedora Core 6 Update: kernel-2.6.20-1.2962.fc6
Posted by Benjamin D. Thomas   
Fedora Integer underflow in the cpuset_tasks_read function in the Linux kernel before 2.6.20.13, and 2.6.21.x before 2.6.21.4, when the cpuset filesystem is mounted, allows local users to obtain kernel memory contents by using a large offset when reading the /dev/cpuset/tasks file.
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-600
2007-06-25
---------------------------------------------------------------------

Product     : Fedora Core 6
Name        : kernel
Version     : 2.6.20
Release     : 1.2962.fc6
Summary     : The Linux kernel (the core of the Linux operating system)
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system:  memory allocation, process allocation, device
input and output, etc.

---------------------------------------------------------------------
Update Information:

Merged stable kernel 2.6.20.12, 2.6.20.13, 2.6.20.14:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.12
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.13
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.14

Added the latest GFS2 updates from the maintainers.

Utrace update.

CVE-2007-2451:
Unspecified vulnerability in drivers/crypto/geode-aes.c
in GEODE-AES in the Linux kernel before 2.6.21.3 allows
attackers to obtain sensitive information via unspecified
vectors.

CVE-2007-2875:
Integer underflow in the cpuset_tasks_read function in the
Linux kernel before 2.6.20.13, and 2.6.21.x before 2.6.21.4,
when the cpuset filesystem is mounted, allows local users to
obtain kernel memory contents by using a large offset when
reading the /dev/cpuset/tasks file.

CVE-2007-2876:
Linux Kernel is prone to multiple weaknesses and
vulnerabilities that can allow remote attackers to carry out
various attacks, including denial-of-service attacks.

CVE-2007-2453:
The random number feature in Linux kernel 2.6 before 2.6.20.13,
and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools
when there is no entropy, or (2) uses an incorrect cast when
extracting entropy, which might cause the random number
generator to provide the same values after reboots on systems
without an entropy source.

---------------------------------------------------------------------
* Tue Jun 19 2007 Chuck Ebbert 		1.2962
- utrace update
* Tue Jun 19 2007 Chuck Ebbert 
- enable sound system debugging in -debug kernels
* Wed Jun 13 2007 Chuck Ebbert 		1.2960
- sysfs: fix check in dentry drop code
- kcryptd: 3 patches from 2.6.22 (BZ #243809)
- UDF: 2 fixes from 2.6.22 for Fedora backport of that code
* Tue Jun 12 2007 Chuck Ebbert 		1.2959
- 2.6.20.14
- GFS2 update
- utrace update
* Fri Jun  8 2007 Chuck Ebbert 		1.2958
- 2.6.20.12
- 2.6.20.13
- 2.6.20.14-rc2
* Tue Jun  5 2007 Eduardo Habkost 		1.2957
- Fix bug #235542: sbp2: set direction of s/g tables to DMA_TO_DEVICE
* Tue Jun  5 2007 Dave Jones 
- Allow kdump to read /proc/kcore. (#241362)
* Fri Jun  1 2007 Dave Jones 			1.2955
- Turn on vmcore proc file in all kernels for FC6 (Neil Horman). #241924
* Fri May 25 2007 Eduardo Habkost 		1.2954
- Included checksum patches to fix bug #223258

---------------------------------------------------------------------
This update can be downloaded from:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

0b727e9ed8ccd69d8e5ab2c5c3aecc0d89551f8d  SRPMS/kernel-2.6.20-1.2962.fc6.src.rpm
0b727e9ed8ccd69d8e5ab2c5c3aecc0d89551f8d  noarch/kernel-2.6.20-1.2962.fc6.src.rpm
130584a7488ef11ff71c54d9e4493f2b09a1d756  ppc/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.ppc.rpm
4f7eab0951a9c28c68b48a376d34fa9cacbde9d0  ppc/debug/kernel-smp-debuginfo-2.6.20-1.2962.fc6.ppc.rpm
c7b5b26c3bac2b1906fbb51d3a9c069ecc708d0d  ppc/debug/kernel-debuginfo-2.6.20-1.2962.fc6.ppc.rpm
b0c0349a33566440a01b980e33012717ecb220b7  ppc/kernel-smp-2.6.20-1.2962.fc6.ppc.rpm
764d9c14085cc0aa1f9e98e3319b69f9a0cff0b1  ppc/kernel-2.6.20-1.2962.fc6.ppc.rpm
64ebfbafc51f8498a5fbe7504d7658388d6a5135  ppc/kernel-headers-2.6.20-1.2962.fc6.ppc.rpm
492cb25659e49bdd64d8225a86e0a2a5fdaf8a97  ppc/kernel-devel-2.6.20-1.2962.fc6.ppc.rpm
e5f10715d27158d6b4fe3520d9bade72089c0f7a  ppc/kernel-smp-devel-2.6.20-1.2962.fc6.ppc.rpm
00ec8ffa1427afddb10d953db63422778bfbffc7  ppc/kernel-doc-2.6.20-1.2962.fc6.noarch.rpm
779668a511adeb7144eb5a5de36198d737419336  x86_64/debug/kernel-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
2e4fa2bb6dbb14a86abf2853a84337849b9e9cf7  x86_64/kernel-debug-2.6.20-1.2962.fc6.x86_64.rpm
9d14d567a433ab3ea248cc6f37db0d9d7fc13437  x86_64/debug/kernel-debug-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
287450e147c7104c7e92bb715a7e51c6bef66de0  x86_64/kernel-2.6.20-1.2962.fc6.x86_64.rpm
413c6e8b21ec395701ed5b795a797a0256b2fb0c  x86_64/debug/kernel-kdump-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
ca525ac789934d758d630a02771aa09196f257a3  x86_64/kernel-kdump-devel-2.6.20-1.2962.fc6.x86_64.rpm
3b99bc1c02864304056a6a31697fe46e76e3ad5c  x86_64/kernel-kdump-2.6.20-1.2962.fc6.x86_64.rpm
f4226c4978bb54ece0f3c69cf170707fdee8e919  x86_64/kernel-xen-devel-2.6.20-1.2962.fc6.x86_64.rpm
c10ef5367abd97ce864106565ee194c02e5dfa3f  x86_64/kernel-xen-2.6.20-1.2962.fc6.x86_64.rpm
f3042801fbbd7a5628c01df1158fed64ca08168d  x86_64/kernel-debug-devel-2.6.20-1.2962.fc6.x86_64.rpm
0dd0522fe68d629fb99f0b2d763db87a33c9fff6  x86_64/kernel-headers-2.6.20-1.2962.fc6.x86_64.rpm
7d115ffafa1c3b8e16fdc7319fc44a5b719df46c  x86_64/debug/kernel-xen-debuginfo-2.6.20-1.2962.fc6.x86_64.rpm
163a1c2c3542f748aecc08a6c9bd15ad875219f5  x86_64/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.x86_64.rpm
1f6ef82970fc2e6856904dc3af7395f94888e8e3  x86_64/kernel-devel-2.6.20-1.2962.fc6.x86_64.rpm
00ec8ffa1427afddb10d953db63422778bfbffc7  x86_64/kernel-doc-2.6.20-1.2962.fc6.noarch.rpm
ccbb912114f6b0673119235c50d7933a16c9b89d  i386/kernel-headers-2.6.20-1.2962.fc6.i386.rpm
f65fdf32a026fda85ece663d79e761171a9c488c  i386/debug/kernel-debuginfo-2.6.20-1.2962.fc6.i586.rpm
667d49c585a063b77a202f727e728366f2d843c2  i386/kernel-devel-2.6.20-1.2962.fc6.i586.rpm
9f45b7313520f3f2e68fba48e8076e46e1dcaa0e  i386/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.i586.rpm
1fe5e720d13515e2ef35593495e5fddb24af03d9  i386/kernel-2.6.20-1.2962.fc6.i586.rpm
6d495364cbb48af389a1b39228bf3d4b973c8f2a  i386/kernel-kdump-devel-2.6.20-1.2962.fc6.i686.rpm
f6b39ca47e7cd582b2f02caeb677cb15351a546e  i386/kernel-PAE-2.6.20-1.2962.fc6.i686.rpm
9762267cfc4f79c758d4aea2268ebb6072f25b0c  i386/debug/kernel-debug-debuginfo-2.6.20-1.2962.fc6.i686.rpm
7dddabdc5dbc2d942e47b4c5cf1dd85c4112fdba  i386/kernel-debug-2.6.20-1.2962.fc6.i686.rpm
29eb246a30265fd0525f81c75130d4d8428f333b  i386/kernel-devel-2.6.20-1.2962.fc6.i686.rpm
6d094d2de13ca86edc2aba458c085c6b8f2f6aa1  i386/debug/kernel-PAE-debuginfo-2.6.20-1.2962.fc6.i686.rpm
39e57a62ebc361698039065b4eff2aa305402d1b  i386/kernel-PAE-devel-2.6.20-1.2962.fc6.i686.rpm
b77e1abcd635b47ff327541ff63bf768dfeda6d6  i386/kernel-debug-devel-2.6.20-1.2962.fc6.i686.rpm
0556016acd1d04372e2210f66aad281ccaa948e0  i386/kernel-kdump-2.6.20-1.2962.fc6.i686.rpm
c8ef7e551b4adcae94bbbc250f535492a31937b9  i386/kernel-2.6.20-1.2962.fc6.i686.rpm
6788eceae3b081033be2afc9d882f64288675113  i386/debug/kernel-debuginfo-2.6.20-1.2962.fc6.i686.rpm
1c0fbf3fc5bee908aafc85117c206f7eab2c17e4  i386/debug/kernel-PAE-debug-debuginfo-2.6.20-1.2962.fc6.i686.rpm
db34da6353ff42d1fac6aa6ff21f74b224e9b556  i386/kernel-xen-devel-2.6.20-1.2962.fc6.i686.rpm
826ff2837b4bb78fee92b4bb09584fb3aa94376a  i386/kernel-PAE-debug-2.6.20-1.2962.fc6.i686.rpm
bff59dad1479d1c24d440831ad4785d171e5a612  i386/kernel-PAE-debug-devel-2.6.20-1.2962.fc6.i686.rpm
d4e6b38bcfe54c686f4cb799e524101a74b93dae  i386/debug/kernel-debuginfo-common-2.6.20-1.2962.fc6.i686.rpm
ae376eb8521926b0a77f95ea6647e90c54996478  i386/debug/kernel-kdump-debuginfo-2.6.20-1.2962.fc6.i686.rpm
5ef7e26da10beed8bdf31326429aadd284f1bf65  i386/debug/kernel-xen-debuginfo-2.6.20-1.2962.fc6.i686.rpm
816a494d677a4f0550a9805b1747067e30eece1d  i386/kernel-xen-2.6.20-1.2962.fc6.i686.rpm
00ec8ffa1427afddb10d953db63422778bfbffc7  i386/kernel-doc-2.6.20-1.2962.fc6.noarch.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce