[SECURITY] Fedora 15 Update: kernel-2.6.38.8-35.fc15

updates at fedoraproject.org updates at fedoraproject.org
Tue Jul 12 05:26:19 UTC 2011 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2011-9130
2011-07-08 17:18:34
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 15
Version     : 2.6.38.8
Release     : 35.fc15
URL         : http://www.kernel.org/
Summary     : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

--------------------------------------------------------------------------------
Update Information:

Fixes some bugs that were caused by upstream stable kernel updates, including a longstanding bug causing oopses when removing USB storage devices and optical media.

Fixes stalls on machines with the latest Intel graphics hardware (Sandybridge.)

Also fixes some important security issues.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul  6 2011 Chuck Ebbert <cebbert at redhat.com>  2.6.38.8-35
- Revert SCSI/block patches from 2.6.38.6 that caused more problems
  than they fixed; drop band-aid patch attempting to fix the fix.
- CVE-2011-2497: kernel: bluetooth: buffer overflow in l2cap config request
- CVE-2011-2517: kernel: nl80211: missing check for valid SSID size in scan operations
* Mon Jun 27 2011 Dave Jones <davej at redhat.com>
- Disable CONFIG_CRYPTO_MANAGER_DISABLE_TESTS, as this also disables FIPS (rhbz 716942)
* Sat Jun 25 2011 Chuck Ebbert <cebbert at redhat.com>
- Intel IOMMU fixes from 2.6.39.2
- drm-i915-apply-hwstam-workaround-for-bsd-ring-on-sandybridge.patch:
  Another fix for Sandybridge stalls
* Fri Jun 24 2011 Chuck Ebbert <cebbert at redhat.com>
- Minor cleanup: use upstream patch to export block_{get,put}_queue
- block-blkdev_get-should-access-bd_disk-only-after.patch:
  fix potential oops introduced in 2.6.38.8
- ahci-add-another-pci-id-for-marvell.patch (rhbz#705960)
- CVE-2011-2183: ksm: race between ksmd and exiting task
- Revert 2.6.38.8 patch that broke magicmouse (rhbz#714381)
- Fix drive detection failure on mvsas (rhbz#705019)
- Fix oopses in the CFQ disk scheduler (rhbz#577968)
- Support Wacom touchscreen 00e6 in Thinkpad x220 (rhbz#708307)
* Thu Jun 23 2011 Dave Airlie <airlied at redhat.com> 2.6.38.8-34
- drm-i915-snb-irq-stalls-fix.patch: fix Sandybridge IRQ stalls
* Thu Jun 23 2011 Dave Airlie <airlied at redhat.com> 
- drm-radeon-update3.patch: more radeon fixes backport
* Tue Jun 21 2011 Dave Jones <davej at redhat.com>
- HID: ntrig don't dereference unclaimed hidinput (rhbz#714827)
* Mon Jun 20 2011 Kyle McMartin <kmcmartin at redhat.com> 2.6.38.8-33
- [sgruszka@] iwlwifi: fix general 11n instability (rhbz#648732)
* Wed Jun 15 2011 Kyle McMartin <kmcmartin at redhat.com>
- crypto: aesni-intel - Merge with fpu.ko (rhbz#589390)
* Thu Jun  9 2011 Kyle McMartin <kmcmartin at redhat.com> 2.6.38.8-32
- ath5k-disable-fast-channel-switching-by-default.patch (rhbz#709122)
  (korgbz#34992) [a99168ee in wireless-next]
* Tue Jun  7 2011 Dave Jones <davej at redhat.com>
- [SCSI] Fix oops caused by queue refcounting failure.
* Sat Jun  4 2011 Chuck Ebbert <cebbert at redhat.com> 2.6.38.8-31
- Linux 2.6.38.8
- Revert radeon patches we already have:
   drm/radeon/kms: add wait idle ioctl for eg->cayman
   drm/radeon/evergreen/btc/fusion: setup hdp to invalidate and flush when asked
- Drop individual patches we have:
   ips-use-interruptible-waits-in-ips-monitor.patch
   drm-vblank-events-fix-hangs.patch
   mm-vmscan-correct-use-of-pgdat_balanced-in-sleeping_prematurely.patch
   mm-vmscan-correctly-check-if-reclaimer-should-schedule-during-shrink_slab.patch
- Drop x86-amd-arat-bug-on-sempron-workaround.patch; the proper fix is in 2.6.38.8
* Sun May 29 2011 Dave Airlie <airlied at redhat.com>
- fix oops on pageflipping sometimes (#680651)
* Fri May 27 2011 Ben Skeggs <bskeggs at redhat.com> 2.6.38.7-30
- nouveau: minor fixes for various issues from upstream
- nv40 modesetting fix (rhbz#708235)
- nv50+ support for LVDS panels using SPWG spec (blank/corrupt screen fixes)
- nva3+ pm clock get/set fixes
* Wed May 25 2011 Dave Airlie <airlied at redhat.com>
- drm-radeon-update2.patch: more radeon updates + cayman accel support
* Tue May 24 2011 Kyle McMartin <kmcmartin at redhat.com>
- hid-multitouch: add support for elo touchsystems panels (requested
  by hadess, backported from hid-next)
- bluetooth: add support for more ath3k devices (Ditto.)
* Mon May 23 2011 Chuck Ebbert <cebbert at redhat.com> 2.6.38.7-29
- Linux 2.6.38.7
- Eliminate hangs when using frequent high-order allocations
* Fri May 20 2011 Chuck Ebbert <cebbert at redhat.com> 2.6.38.7-28.rc1
- Linux 2.6.38.7-rc1
- Fix up context in utrace-ptrace.patch
- Revert radeon patches already in our radeon update:
  drm-radeon-kms-fix-gart-setup-on-fusion-parts-v2-backport.patch
- Drop merged patches:
  iwlwifi-add-_ack_plpc_check-module-parameters.patch
- Fix stalls on AMD Sempron notebooks (#704059)
* Fri May 13 2011 Kyle McMartin <kmcmartin at redhat.com> 2.6.38.6-27
- [fabbione@] Fix a deadlock when using hp_sw with an HP san.
  (7a1e9d82 upstream)
* Wed May 11 2011 Chuck Ebbert <cebbert at redhat.com>
- Fix Intel IPS driver so it doesn't run continuously (#703511)
* Tue May 10 2011 Kyle McMartin <kmcmartin at redhat.com>
- [sgruszka@] iwlwifi: add {ack,plpc}_check module parameters (#666646)
* Tue May 10 2011 Chuck Ebbert <cebbert at redhat.com>
- Linux 2.6.38.6 (no functional changes from 2.6.38.6-26.rc1)
- Drop merged patches:
    can-add-missing-socket-check-in-can_raw_release.patch
    scsi-fix-oops-in-scsi_run_queue.patch
    vm-skip-the-stack-guard-page-lookup-in-get_user_pages-only-for-mlock.patch
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #716805 - CVE-2011-2497 kernel: bluetooth: buffer overflow in l2cap config request
        https://bugzilla.redhat.com/show_bug.cgi?id=716805
  [ 2 ] Bug #718152 - CVE-2011-2517 kernel: nl80211: missing check for valid SSID size in scan operations
        https://bugzilla.redhat.com/show_bug.cgi?id=718152
  [ 3 ] Bug #710338 - kernel: ksm: race between ksmd and exiting task
        https://bugzilla.redhat.com/show_bug.cgi?id=710338
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list