[SECURITY] Fedora Core 4 Update: kernel-2.6.16-1.2111_FC4

Dave Jones davej at redhat.com
Sun May 21 22:26:48 UTC 2006 

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2006-573
2006-05-21
---------------------------------------------------------------------

Product     : Fedora Core 4
Name        : kernel
Version     : 2.6.16                      
Release     : 1.2111_FC4                  
Summary     : The Linux kernel (the core of the Linux operating system)
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system:  memory allocation, process allocation, device
input and output, etc.

---------------------------------------------------------------------
Update Information:

This update rebases to the latest upstream -stable release
(2.6.16.17), where a number of security problems have been
fixed, notably: 

SCTP: Validate the parameter length in HB-ACK chunk
(CVE-2006-1857)
SCTP: Respect the real chunk length when walking parameters
(CVE-2006-1858)
fs/locks.c: Fix lease_init (CVE-2006-1860)
SCTP: Fix state table entries for chunks received in CLOSED
state. (CVE-2006-2271)
SCTP: Fix panic's when receiving fragmented SCTP control
chunks. (CVE-2006-2272)
SCTP: Prevent possible infinite recursion with multiple
bundled DATA. (CVE-2006-2274)
SCTP: Allow spillover of receive buffer to avoid deadlock.
(CVE-2006-2275)


Complete changelogs for the -stable releases can be found at

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.17
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.16
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.15

Fedora specific changes are detailed below
---------------------------------------------------------------------
* Sat May 20 2006 Dave Jones <davej at redhat.com> [2.6.16-1.2111_FC4]
- 2.6.16.17
* Wed May 10 2006 Dave Jones <davej at redhat.com> [2.6.16-1.2110_FC4]
- 2.6.16.16
* Tue May  9 2006 Dave Jones <davej at redhat.com> [2.6.16-1.2109_FC4]
- 2.6.16.15
- make 16C950 UARTs work (again). (#126403)
- Fix exec-shield default, which should fix a few programs that
  stopped running.

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

3b4b0e05b842af3c2507d28c3831d5af41e4706e  SRPMS/kernel-2.6.16-1.2111_FC4.src.rpm
84f06db088de18a2b0798ee40edb6464d25092fb  ppc/kernel-2.6.16-1.2111_FC4.ppc.rpm
894ba0303f8dff0a8d69a89fe8d1b3831a245499  ppc/kernel-devel-2.6.16-1.2111_FC4.ppc.rpm
2211e8173c58df4501dc81c18acac4b85cdcdc71  ppc/kernel-smp-2.6.16-1.2111_FC4.ppc.rpm
6b6659faedb26b60561789c93bbde52f67ecf4fb  ppc/kernel-smp-devel-2.6.16-1.2111_FC4.ppc.rpm
a80bd51fc41f28a5fd9b6a93b20b6248c8e563ec  ppc/debug/kernel-debuginfo-2.6.16-1.2111_FC4.ppc.rpm
b2a986df6c4b1018de128f747535a140db4152bc  ppc/kernel-2.6.16-1.2111_FC4.ppc64.rpm
244842133fb8e4f609f5375115aecf4db75fba77  ppc/kernel-devel-2.6.16-1.2111_FC4.ppc64.rpm
8ff1ecbf8138cf413e4061b5b1555c4a72f33eb8  ppc/kernel-doc-2.6.16-1.2111_FC4.noarch.rpm
10bae5f22607665a3472ee78fe45b39f292f8753  x86_64/kernel-2.6.16-1.2111_FC4.x86_64.rpm
8918a687df2777bac0403699b10bde570f1a7159  x86_64/kernel-devel-2.6.16-1.2111_FC4.x86_64.rpm
2f71bb7ca128a264f68b80cf4e115865f2834605  x86_64/kernel-smp-2.6.16-1.2111_FC4.x86_64.rpm
f54d5e81ad9710e3aaffc0e78c62d84635641f64  x86_64/kernel-smp-devel-2.6.16-1.2111_FC4.x86_64.rpm
2eef808f2825cbe675dab7c9628448e3f5ff74f4  x86_64/debug/kernel-debuginfo-2.6.16-1.2111_FC4.x86_64.rpm
8ff1ecbf8138cf413e4061b5b1555c4a72f33eb8  x86_64/kernel-doc-2.6.16-1.2111_FC4.noarch.rpm
59ebba1857ef49b498cb2ad6b59dde5e1561e935  i386/kernel-2.6.16-1.2111_FC4.i586.rpm
40245241a83c77ab597fffe56ca541304b47f864  i386/kernel-devel-2.6.16-1.2111_FC4.i586.rpm
e8c41f5fc2149654a02f92989bad8fe112c527c0  i386/debug/kernel-debuginfo-2.6.16-1.2111_FC4.i586.rpm
891975dc64894670960fc668ca00fd0a1cdb0c83  i386/kernel-2.6.16-1.2111_FC4.i686.rpm
adf336b527bad3b4555cfe4b8f0b08d39e4689e9  i386/kernel-devel-2.6.16-1.2111_FC4.i686.rpm
44750f35ef5ca8d52c6907359e4b6a3a10104850  i386/kernel-smp-2.6.16-1.2111_FC4.i686.rpm
684c4450d9d85b9b74e15108ff53577be78682fe  i386/kernel-smp-devel-2.6.16-1.2111_FC4.i686.rpm
9b0703d258042b05d098b29701deccbae2645b52  i386/debug/kernel-debuginfo-2.6.16-1.2111_FC4.i686.rpm
8ff1ecbf8138cf413e4061b5b1555c4a72f33eb8  i386/kernel-doc-2.6.16-1.2111_FC4.noarch.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

More information about the package-announce mailing list