http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/latest-feed.xmlLatest packages for Scientific Linux 51 i386 Security ErrataTue, 14 Mar 2017 09:01:27 -0500Repoview-0.6.6-1.el6http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/thunderbird.html+0:45.8.0-1.el5_11.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/thunderbird.htmlTue, 14 Mar 2017 12:03:12 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> thunderbird<br /> <strong>Summary:</strong> Mozilla Thunderbird mail/newsgroup client </p> <p> <strong>Description:</strong><br /> Mozilla Thunderbird is a standalone mail and newsgroup client. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.8.0-1.el5_11.i386.rpm">thunderbird-45.8.0-1.el5_11.i386</a> [<span style="white-space: nowrap">67.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2017-03-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.7.0-1.el5_11.i386.rpm">thunderbird-45.7.0-1.el5_11.i386</a> [<span style="white-space: nowrap">67.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2017-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.6.0-1.el5_11.i386.rpm">thunderbird-45.6.0-1.el5_11.i386</a> [<span style="white-space: nowrap">67.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2016-12-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to the latest upstream (45.6.0)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.5.1-1.el5_11.i386.rpm">thunderbird-45.5.1-1.el5_11.i386</a> [<span style="white-space: nowrap">67.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-12-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.1</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.5.0-1.el5_11.i386.rpm">thunderbird-45.5.0-1.el5_11.i386</a> [<span style="white-space: nowrap">67.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.4.0-1.el5_11.i386.rpm">thunderbird-45.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">67.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-09-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.3.0-1.el5_11.i386.rpm">thunderbird-45.3.0-1.el5_11.i386</a> [<span style="white-space: nowrap">67.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.3.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-45.2-1.el5_11.i386.rpm">thunderbird-45.2-1.el5_11.i386</a> [<span style="white-space: nowrap">67.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-06-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.2</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-38.8.0-1.el5_11.i386.rpm">thunderbird-38.8.0-1.el5_11.i386</a> [<span style="white-space: nowrap">63.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-05-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-38.7.0-1.el5_11.i386.rpm">thunderbird-38.7.0-1.el5_11.i386</a> [<span style="white-space: nowrap">62.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-03-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-38.6.0-1.el5_11.i386.rpm">thunderbird-38.6.0-1.el5_11.i386</a> [<span style="white-space: nowrap">62.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-02-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-38.5.0-1.el5_11.i386.rpm">thunderbird-38.5.0-1.el5_11.i386</a> [<span style="white-space: nowrap">62.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-12-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-38.4.0-1.el5_11.i386.rpm">thunderbird-38.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">62.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-11-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-38.3.0-1.el5_11.i386.rpm">thunderbird-38.3.0-1.el5_11.i386</a> [<span style="white-space: nowrap">62.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-09-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.3.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-38.2.0-4.el5_11.i386.rpm">thunderbird-38.2.0-4.el5_11.i386</a> [<span style="white-space: nowrap">62.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-31.8.0-1.el5_11.i386.rpm">thunderbird-31.8.0-1.el5_11.i386</a> [<span style="white-space: nowrap">53.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-07-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-31.7.0-1.el5_11.i386.rpm">thunderbird-31.7.0-1.el5_11.i386</a> [<span style="white-space: nowrap">53.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-05-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-31.6.0-1.el5_11.i386.rpm">thunderbird-31.6.0-1.el5_11.i386</a> [<span style="white-space: nowrap">53.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-03-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.6.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-31.5.0-1.el5_11.i386.rpm">thunderbird-31.5.0-1.el5_11.i386</a> [<span style="white-space: nowrap">53.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-02-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-31.4.0-1.el5_11.i386.rpm">thunderbird-31.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">53.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-31.3.0-1.el5_11.i386.rpm">thunderbird-31.3.0-1.el5_11.i386</a> [<span style="white-space: nowrap">49.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.3.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-31.2.0-2.el5_11.i386.rpm">thunderbird-31.2.0-2.el5_11.i386</a> [<span style="white-space: nowrap">49.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.2.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-24.8.0-1.el5_10.i386.rpm">thunderbird-24.8.0-1.el5_10.i386</a> [<span style="white-space: nowrap">45.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-08-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-24.7.0-1.el5_10.i386.rpm">thunderbird-24.7.0-1.el5_10.i386</a> [<span style="white-space: nowrap">45.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-07-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-24.6.0-1.el5_10.i386.rpm">thunderbird-24.6.0-1.el5_10.i386</a> [<span style="white-space: nowrap">44.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-06-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.6.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-24.5.0-1.el5_10.i386.rpm">thunderbird-24.5.0-1.el5_10.i386</a> [<span style="white-space: nowrap">45.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-04-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-24.4.0-1.el5_10.i386.rpm">thunderbird-24.4.0-1.el5_10.i386</a> [<span style="white-space: nowrap">45.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-03-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-24.3.0-2.el5_10.i386.rpm">thunderbird-24.3.0-2.el5_10.i386</a> [<span style="white-space: nowrap">45.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-02-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.3.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-24.2.0-2.el5_10.i386.rpm">thunderbird-24.2.0-2.el5_10.i386</a> [<span style="white-space: nowrap">45.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-12-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.10-1.el5_10.i386.rpm">thunderbird-17.0.10-1.el5_10.i386</a> [<span style="white-space: nowrap">40.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-10-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.9-1.el5_9.i386.rpm">thunderbird-17.0.9-1.el5_9.i386</a> [<span style="white-space: nowrap">40.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-09-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.9 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.8-5.el5_9.i386.rpm">thunderbird-17.0.8-5.el5_9.i386</a> [<span style="white-space: nowrap">40.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-08-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.8 ESR - Added strict aliasing patch (mozbz#821502)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.7-1.el5_9.i386.rpm">thunderbird-17.0.7-1.el5_9.i386</a> [<span style="white-space: nowrap">40.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-06-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.6-1.el5_9.i386.rpm">thunderbird-17.0.6-1.el5_9.i386</a> [<span style="white-space: nowrap">40.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-05-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.5-1.el5_9.i386.rpm">thunderbird-17.0.5-1.el5_9.i386</a> [<span style="white-space: nowrap">40.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-03-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.3-2.el5_9.i386.rpm">thunderbird-17.0.3-2.el5_9.i386</a> [<span style="white-space: nowrap">40.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-03-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fix for #848644</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-17.0.3-1.el5_9.i386.rpm">thunderbird-17.0.3-1.el5_9.i386</a> [<span style="white-space: nowrap">40.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-02-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.12-3.el5_9.i386.rpm">thunderbird-10.0.12-3.el5_9.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.12 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.11-1.el5_8.i386.rpm">thunderbird-10.0.11-1.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.11 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.10-1.el5_8.i386.rpm">thunderbird-10.0.10-1.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.8-2.el5_8.i386.rpm">thunderbird-10.0.8-2.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added patches from 10.0.9 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.8-1.el5_8.i386.rpm">thunderbird-10.0.8-1.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.7-1.el5_8.i386.rpm">thunderbird-10.0.7-1.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-08-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.6-1.el5_8.i386.rpm">thunderbird-10.0.6-1.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.5-2.el5_8.i386.rpm">thunderbird-10.0.5-2.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.4-1.el5_8.i386.rpm">thunderbird-10.0.4-1.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.4 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-10.0.3-1.el5_8.i386.rpm">thunderbird-10.0.3-1.el5_8.i386</a> [<span style="white-space: nowrap">37.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-03-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-28.el5_7.i386.rpm">thunderbird-2.0.0.24-28.el5_7.i386</a> [<span style="white-space: nowrap">20.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-01-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.2.26</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-27.el5_7.i386.rpm">thunderbird-2.0.0.24-27.el5_7.i386</a> [<span style="white-space: nowrap">20.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.2.24</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-26.el5_7.i386.rpm">thunderbird-2.0.0.24-26.el5_7.i386</a> [<span style="white-space: nowrap">20.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Matthew Barnes (2011-09-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.2.23</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-25.el5.i386.rpm">thunderbird-2.0.0.24-25.el5.i386</a> [<span style="white-space: nowrap">20.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-09-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fix for mozbz#683449 - Remove the exemptions for the Staat der Nederlanden root</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-24.el5.i386.rpm">thunderbird-2.0.0.24-24.el5.i386</a> [<span style="white-space: nowrap">20.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-08-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Udated fix for mozbz#682927</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-21.el5.i386.rpm">thunderbird-2.0.0.24-21.el5.i386</a> [<span style="white-space: nowrap">20.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-08-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Disabled SVG support</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-18.el5_6.i386.rpm">thunderbird-2.0.0.24-18.el5_6.i386</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.2.18</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-17.el5_6.i386.rpm">thunderbird-2.0.0.24-17.el5_6.i386</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-04-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes for mozbz#645565 and mozbz#646460</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-15.el5_6.i386.rpm">thunderbird-2.0.0.24-15.el5_6.i386</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes for mozbz#642395 - ignore bogus Comodo certificates</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-14.el5_6.i386.rpm">thunderbird-2.0.0.24-14.el5_6.i386</a> [<span style="white-space: nowrap">24.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.1.17</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-13.el5_5.i386.rpm">thunderbird-2.0.0.24-13.el5_5.i386</a> [<span style="white-space: nowrap">24.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2010-12-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.1.16</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-10.el5_5.i386.rpm">thunderbird-2.0.0.24-10.el5_5.i386</a> [<span style="white-space: nowrap">24.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2010-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.1.15</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-9.el5.i386.rpm">thunderbird-2.0.0.24-9.el5.i386</a> [<span style="white-space: nowrap">24.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2010-10-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.1.14</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-8.el5.i386.rpm">thunderbird-2.0.0.24-8.el5.i386</a> [<span style="white-space: nowrap">24.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2010-09-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes for mozbz#576447, #583225</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-6.el5.i386.rpm">thunderbird-2.0.0.24-6.el5.i386</a> [<span style="white-space: nowrap">24.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2010-07-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fixes from 1.9.1.11</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.24-2.el5_4.i386.rpm">thunderbird-2.0.0.24-2.el5_4.i386</a> [<span style="white-space: nowrap">24.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2010-03-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added upstream patches</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.22-2.el5_3.i386.rpm">thunderbird-2.0.0.22-2.el5_3.i386</a> [<span style="white-space: nowrap">24.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2009-06-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 2.0.0.22</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.21-1.el5.i386.rpm">thunderbird-2.0.0.21-1.el5.i386</a> [<span style="white-space: nowrap">24.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-03-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 2.0.0.21</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.19-1.el5_2.i386.rpm">thunderbird-2.0.0.19-1.el5_2.i386</a> [<span style="white-space: nowrap">24.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-12-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 2.0.0.19</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.18-1.el5.i386.rpm">thunderbird-2.0.0.18-1.el5.i386</a> [<span style="white-space: nowrap">24.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2008-11-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 2.0.0.18</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.17-1.el5.i386.rpm">thunderbird-2.0.0.17-1.el5.i386</a> [<span style="white-space: nowrap">24.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-09-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 2.0.0.17</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-2.0.0.16-1.el5.i386.rpm">thunderbird-2.0.0.16-1.el5.i386</a> [<span style="white-space: nowrap">24.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-07-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 2.0.0.16</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-1.5.0.12-12.el5.i386.rpm">thunderbird-1.5.0.12-12.el5.i386</a> [<span style="white-space: nowrap">22.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2008-04-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update patchset to fix regression as per 1.8.1.14</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-1.5.0.12-11.el5.i386.rpm">thunderbird-1.5.0.12-11.el5.i386</a> [<span style="white-space: nowrap">22.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2008-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Regression fixes</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-1.5.0.12-9.el5_1.i386.rpm">thunderbird-1.5.0.12-9.el5_1.i386</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2008-02-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Crash fixes</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/thunderbird-1.5.0.12-8.el5.i386.rpm">thunderbird-1.5.0.12-8.el5.i386</a> [<span style="white-space: nowrap">22.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-01-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/tzdata.html+0:2017a-1.el5.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/tzdata.htmlWed, 08 Mar 2017 23:40:15 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> tzdata<br /> <strong>Summary:</strong> Timezone data </p> <p> <strong>Description:</strong><br /> This package contains data files with rules for various time zones around the world. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2017a-1.el5.i386.rpm">tzdata-2017a-1.el5.i386</a> [<span style="white-space: nowrap">755 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2017-03-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2017a - Mongolia no longer observes DST (BZ #1425223) - Add upstream patch to fix over-runing of POSIX limit on zone abbreviations. - Add zone1970.tab to the install files. (BZ #1427696)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016j-1.el5.i386.rpm">tzdata-2016j-1.el5.i386</a> [<span style="white-space: nowrap">765 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016ij - Saratov region of Russia is moving from +03 offset to +04 offset on 2016-12-04.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016i-1.el5.i386.rpm">tzdata-2016i-1.el5.i386</a> [<span style="white-space: nowrap">764 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016i: - Cyprus is now split into two time zones as of 2016-10-30 - Tonga will reintroduce DST on 2016-11-06</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016h-1.el5.i386.rpm">tzdata-2016h-1.el5.i386</a> [<span style="white-space: nowrap">761 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016h: - Palestine will end DST on 2016-10-29 not 2016-10-21.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016g-2.el5.i386.rpm">tzdata-2016g-2.el5.i386</a> [<span style="white-space: nowrap">774 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016g. - Turkey changed from EET/EEST (+02/+03) to permanent +03, on 2016-09-07. - A new leap second will be added on 2016-12-31 23:59:60 UTC.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016f-1.el5.i386.rpm">tzdata-2016f-1.el5.i386</a> [<span style="white-space: nowrap">774 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-07-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016f - Egypt cancelled DST. - Asia/Novosibirsk transitions from +06 to +07 on 2016-07-24 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016e-1.el5.i386.rpm">tzdata-2016e-1.el5.i386</a> [<span style="white-space: nowrap">788 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016e - Egypt reinstates DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016d-1.el5.i386.rpm">tzdata-2016d-1.el5.i386</a> [<span style="white-space: nowrap">773 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-04-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016d - America/Caracas switches from -0430 to -04 on 2016-05-01 at 02:30. - Asia/Magadan switches from +10 to +11 on 2016-04-24 at 02:00. - New zone Asia/Tomsk, split off from Asia/Novosibirsk. It covers Tomsk Oblast, Russia, which switches from +06 to +07 on 2016-05-29 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016c-1.el5.i386.rpm">tzdata-2016c-1.el5.i386</a> [<span style="white-space: nowrap">773 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016c - Azerbaijan no longer observes DST. - Chile reverts from permanent to seasonal DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016b-1.el5.i386.rpm">tzdata-2016b-1.el5.i386</a> [<span style="white-space: nowrap">734 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016b - New zones Europe/Astrakhan and Europe/Ulyanovsk for Astrakhan and Ulyanovsk Oblasts, Russia, both of which will switch from +03 to +04 on 2016-03-27 at 02:00 local time. They need distinct zones since their post-1970 histories disagree. New zone Asia/Barnaul for Altai Krai and Altai Republic, Russia, which will switch from +06 to +07 on the same date and local time. The Astrakhan change is already official; the others have passed the first reading in the State Duma and are extremely likely. Also, Asia/Sakhalin moves from +10 to +11 on 2016-03-27 at 02:00. - As a trial of a new system that needs less information to be made up, the new zones use numeric time zone abbreviations like "+04" instead of invented abbreviations like "ASTT". - Haiti will not observe DST in 2016. - Palestine's spring-forward transition on 2016-03-26 is at 01:00, not 00:00. Guess future transitions will be March's last Saturday at 01:00, not March's last Friday at 24:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2016a-1.el5.i386.rpm">tzdata-2016a-1.el5.i386</a> [<span style="white-space: nowrap">730 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016a - America/Cayman will not observe daylight saving this year after all. Revert our guess that it would. - Asia/Chita switches from +0800 to +0900 on 2016-03-27 at 02:00. - Asia/Tehran now has DST predictions for the year 2038 and later, to be March 21 00:00 to September 21 00:00. This is likely better than predicting no DST, albeit off by a day every now and then.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2015g-1.el5.i386.rpm">tzdata-2015g-1.el5.i386</a> [<span style="white-space: nowrap">734 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-10-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015g - Turkey's 2015 fall-back transition is scheduled for Nov. 8, not Oct. 25. - Norfolk moves from +1130 to +1100 on 2015-10-04 at 02:00 local time. - Fiji's 2016 fall-back transition is scheduled for January 17, not 24. - Fort Nelson, British Columbia will not fall back on 2015-11-01. It has effectively been on MST (-0700) since it advanced its clocks on 2015-03-08. New zone America/Fort_Nelson.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2015e-1.el5.i386.rpm">tzdata-2015e-1.el5.i386</a> [<span style="white-space: nowrap">742 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015e: - Morocco will suspend DST from 2015-06-14 03:00 through 2015-07-19 02:00, not 06-13 and 07-18 as we had guessed. (Thanks to Milamber.) - Assume Cayman Islands will observe DST starting next year, using US rules. Although it isn't guaranteed, it is the most likely.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2015d-1.el5.i386.rpm">tzdata-2015d-1.el5.i386</a> [<span style="white-space: nowrap">741 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-04-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015d: - The Egyptian Cabinet announced that DST will be cancelled for 2015. - The abbreviations for Hawaii-Aleutian standard and daylight times have been changed from HAST/HADT to HST/HDT, as per US Government Printing Office style. This affects only America/Adak since 1983, as America/Honolulu was already using the new style.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2015b-1.el5.i386.rpm">tzdata-2015b-1.el5.i386</a> [<span style="white-space: nowrap">754 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015b - Mongolia will start observing DST again this year, from the last Saturday in March at 02:00 to the last Saturday in September at 00:00. - Palestine will start DST on March 28, not March 27. Also, correct the fall 2014 transition from September 26 to October 24. Adjust future predictions accordingly.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2015a-1.el5.i386.rpm">tzdata-2015a-1.el5.i386</a> [<span style="white-space: nowrap">748 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-01-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015a - New leap second 2015-06-30 23:59:60 UTC as per IERS Bulletin C 49. - The Mexican state of Quintana Roo, represented by America/Cancun, will shift from Central Time with DST to Eastern Time without DST on 2015-02-01 at 02:00. - Chile will not change clocks in April or thereafter; its new standard time will be its old daylight saving time. This affects America/Santiago, Pacific/Easter, and Antarctica/Palmer.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2014i-1.el5.i386.rpm">tzdata-2014i-1.el5.i386</a> [<span style="white-space: nowrap">788 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014i - Pacific/Fiji will observe DST from 2014-11-02 02:00 to 2015-01-18 03:00. - A new Zone Pacific/Bougainville, for the part of Papua New Guinea that plans to switch from UTC+10 to UTC+11 on 2014-12-28 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2014e-1.el5.i386.rpm">tzdata-2014e-1.el5.i386</a> [<span style="white-space: nowrap">787 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014e - Morrocco suspends DTS for Ramadan June 28 at 03:00 and August 2 at 02:00 - Egypt suspends DTS for Ramadan June 26 and July 31 at 24:00</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2014b-1.el5.i386.rpm">tzdata-2014b-1.el5.i386</a> [<span style="white-space: nowrap">774 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014b - Crimea switches to Moscow time on 2014-03-30 at 02:00 local time. - New entry for Troll station, Antarctica.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2014a-1.el5.i386.rpm">tzdata-2014a-1.el5.i386</a> [<span style="white-space: nowrap">772 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-03-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Turkey begins DST on 2014-03-31, not 03-30.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2013i-2.el5.i386.rpm">tzdata-2013i-2.el5.i386</a> [<span style="white-space: nowrap">771 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fiji ends DST on 2014-01-19 at 02:00, not the previously-scheduled 03:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2013i-1.el5.i386.rpm">tzdata-2013i-1.el5.i386</a> [<span style="white-space: nowrap">770 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2013-12-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase with early release of 2013i from Paul Eggert github. - Jordan switches back to standard time at 00:00 on December 20,2013. - The 2006-2011 transition schedule is planned to resume in 2014. - The compile-time flag NOSOLAR has been removed. - The files solar87, solar88, and solar89 are no longer distributed. - tz-link.htm now mentions Noda Time.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2013c-2.el5.i386.rpm">tzdata-2013c-2.el5.i386</a> [<span style="white-space: nowrap">808 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-07-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update descriptions in iso3166.tab; make Jerusalem coordinates in zone.tab more precise (0001-Adjust-commentary-to-try-to-defuse-recent-issues-som.patch) - Update local mean time for Jerusalem to match more-precise longitude (0002-asia-Asia-Jerusalem-Fix-LMT-to-match-more-precise-lo.patch) - Move Morocco's midsummer 2013 transitions (0003-Move-Morocco-s-midsummer-2013-transitions.patch) Fixes 980805 980807 981019 981020 - Israel now falls back on the last Sunday of October (0004-Israel-now-falls-back-on-the-last-Sunday-of-October.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2013c-1.el5.i386.rpm">tzdata-2013c-1.el5.i386</a> [<span style="white-space: nowrap">808 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-05-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013c - Sync past stamps for Palestine and West Bank with timeanddate.com - Assume that the recent change to Paraguay's DST rules is permanent - Macquarie was uninhabited between 1919 and 1948. It's also part of Australia (update in zone.tab).</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2013b-1.el5.i386.rpm">tzdata-2013b-1.el5.i386</a> [<span style="white-space: nowrap">796 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-03-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013b - Paraguay will end DST on March 24 this year - Haiti uses US daylight-saving rules this year - Morocco does not observe DST during Ramadan - Upstream 2013a - Retire Chile patch, 2013a has the data - New Zones Asia/Khandyga, Asia/Ust-Nera, Europe/Busingen - Many changes in historical timestamps</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2012j-2.el5.i386.rpm">tzdata-2012j-2.el5.i386</a> [<span style="white-space: nowrap">792 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- DTS in Chile will end on 2013-04-28 (0016-Chile-is-changing-its-DST-rules.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2012j-1.el5.i386.rpm">tzdata-2012j-1.el5.i386</a> [<span style="white-space: nowrap">792 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012j - Libya moved to CET</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2012i-2.el5.i386.rpm">tzdata-2012i-2.el5.i386</a> [<span style="white-space: nowrap">792 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Preserve hardlinks that zic leaves behind, install with cp -d</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2012f-1.el5.i386.rpm">tzdata-2012f-1.el5.i386</a> [<span style="white-space: nowrap">778 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012f - Fiji will start daylight savings at 2 am on Sunday 21st October 2012 and end at 3 am on Sunday 20th January 2013. Guess it will be like that in following years as well. - Upstream 2012e - Tokelau is in time zone UTC+13, not UTC+14 (and always was) - Upstream 2012d - Morocco will not observe DST during the month of Ramadan. DST cessation end date was corrected. - Drop tzdata-2012c-morocco.patch</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2012c-3.el5.i386.rpm">tzdata-2012c-3.el5.i386</a> [<span style="white-space: nowrap">766 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco will not observe DST during the month of Ramadan (tzdata-2012c-morocco.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2012c-1.el5.i386.rpm">tzdata-2012c-1.el5.i386</a> [<span style="white-space: nowrap">766 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-05-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012c - Haiti observes DST from 2012 on - Gaza Strip and Hebron observe DST in 2012 - Change start of DST in Syria to last Friday in March - Resolves: #820689</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2012b-3.el5.i386.rpm">tzdata-2012b-3.el5.i386</a> [<span style="white-space: nowrap">766 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-03-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco moved DST entry to last Sunday of April - Resolves: #802541</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011n-2.el5.i386.rpm">tzdata-2011n-2.el5.i386</a> [<span style="white-space: nowrap">766 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-02-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- The Chilean Government has decided to postpone the entrance into winter time (to leave DST) from March 11 2012 to April 28th 2012 - Resolves: #796747</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011l-4.el5.i386.rpm">tzdata-2011l-4.el5.i386</a> [<span style="white-space: nowrap">765 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-10-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Ukraine will enter Winter Time after all - Resolves: #739916</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011h-2.el5.i386.rpm">tzdata-2011h-2.el5.i386</a> [<span style="white-space: nowrap">781 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-08-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Patch for upcoming change in Newfoundland. The transition time changes from 12:01 AM to 2:00 AM. - Resolves: #729697</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011h-1.el5.i386.rpm">tzdata-2011h-1.el5.i386</a> [<span style="white-space: nowrap">782 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-06-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011h: - Russia abandons DST in 2011. - *.tab: change AN (Netherlands Antilles) to CW (Curacao) - Resolves: #701268</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011g-1.el5.i386.rpm">tzdata-2011g-1.el5.i386</a> [<span style="white-space: nowrap">793 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011e: - Morocco introduced DST for 2011 from April 2 to July 31. - Delay end of DST in Chile in 2011 until May 7. - Resolves: #698608 - Upstream 2011f: - The Falkland Islands will not turn back clocks this winter, but stay on daylight saving time. - Upstream 2011g: - Egypt abandons DST in 2011 (and forward) - Resolves: #698397 - Dropped tzdata-2011d-chile.patch - Dropped tzdata-2011d-morocco.patch</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011d-3.el5.i386.rpm">tzdata-2011d-3.el5.i386</a> [<span style="white-space: nowrap">805 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-03-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco introduced DST for 2011 from April 2 to July 31. (tzdata-2011d-morocco.patch) - Resolves: #692160</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011d-1.el5.i386.rpm">tzdata-2011d-1.el5.i386</a> [<span style="white-space: nowrap">804 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-03-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011d: - Change end of DST in Samoa in 2011. - Change start of DST in Cuba in 2011. - Move start of DST in Turkey by one day in 2011. - Dropped tzdata-2011b-c.patch - Resolves: #684212</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2011b-1.el5.i386.rpm">tzdata-2011b-1.el5.i386</a> [<span style="white-space: nowrap">804 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011a: - Updates of historical stamps for Hawaii - Upstream 2011b: - America/North_Dakota/Beulah: Mercer County, North Dakota, changed from the mountain time zone to the central time zone - Kemerovo oblast should use OMST/OMSST abbreviation (tzdata-2011b-kemerovo.patch) - tzdata-2011b-c.patch - Update of historical stamps for Juneau, Sitka, and histcurrent stamps for Metlakatla. Sitka and Metlakatla are new zones. - Delay end of DST in Chile in 2011 until first Sunday in April. - Resolves: #681594</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2010o-1.el5.i386.rpm">tzdata-2010o-1.el5.i386</a> [<span style="white-space: nowrap">796 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-12-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010m: - Hong Kong didn't observe DST in 1977 - In zone.tab, remove obsolete association of Vostok Station with South Magnetic Pole; add association with Lake Vostok - Upstream 2010n: - Change end of DST in Samoa in 2011 from 2011-04-03 0:00 to 2011-04-03 1:00 - Upstream 2010o: - Fiji will end DST on March 6, 2011, not March 27, 2011 - Resolves: #662777</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2010l-1.el5.i386.rpm">tzdata-2010l-1.el5.i386</a> [<span style="white-space: nowrap">795 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-08-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010l: - Change Cairo's 2010 reversion to DST from the midnight between September 8 and 9 to the midnight between September 9 and 10. - Change Gaza's 2010 return to standard time to the midnight between August 10 and 11. - Bahia de Banderas (Mexican state of Nayarit) changed time zone UTC-7 to new time zone UTC-6 on April 4, 2010 - Resolves: #628637</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2010k-1.el5.i386.rpm">tzdata-2010k-1.el5.i386</a> [<span style="white-space: nowrap">795 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andreas Schwab (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upadate to 2010k (#618593) - No DST in Egypt during Ramadan in 2010 - Bahía de Banderas moved to UTC-6 on April 4, 2010, new time zone America/Bahia_Banderas - Rename Pacific/Truk to Pacific/Chuuk and Pacific/Ponape to Pacific/Pohnpei - Update historical data of Europe/Helsinki - Update tz-links page</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2010i-1.el5.i386.rpm">tzdata-2010i-1.el5.i386</a> [<span style="white-space: nowrap">793 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010g: - No Bangladesh DST in 2010 and forward. - Gaza DST starts last Saturday in March at 12:01 a.m. in 2010 and forward - Kamchatka and Anadyr change to Moscow+8 on 2010-03-28 - Samara changes to Moscow+0 on 2010-03-28 - Related zone.tab updates - Upstream 2010h: - No DST in Tunisia in 2010 and forward - No DST in Pakistan in 2010 and forward - Upstream 2010i: - Morocco will have DST from 2010-05-02 to 2010-08-08 - San Luis, Argentina will keep permanent DST after April 11, 2010 - Updates of historical stamps for Taiwan - Dropped tzdata-2010g-tunis.patch - Dropped tzdata-2010f-g.patch - Dropped tzdata-2010g-karachi.patch - Resolves: #584847</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2010f-10.el5.i386.rpm">tzdata-2010f-10.el5.i386</a> [<span style="white-space: nowrap">794 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-03-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Remove leftover dependency on tzdata-c - Related: #576611</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2010e-1.el5.noarch.rpm">tzdata-2010e-1.el5.noarch</a> [<span style="white-space: nowrap">794 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-03-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010d - The DST change in Bangladesh takes place a minute earlier - Fiji to end DST on 2010-03-28 at 03:00, about a month earlier - Samoa to observe DST this year; they didn't observe DST last year - DST in Chile extended to 3 April - Resolves: #571538 - Upstream 2010e: - Fix a typo in Bangladesh DST rule</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2010c-1.el5.noarch.rpm">tzdata-2010c-1.el5.noarch</a> [<span style="white-space: nowrap">803 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-03-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010a - Source code cleanups - Upstream 2010b - Northern Mexico's border cities share the DST schedule with the United States - Upstream 2010c - Paraguay DST now in effect from 2nd Sunday of April to 1st Sunday of October - Resolves: #568667</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2009u-1.el5.noarch.rpm">tzdata-2009u-1.el5.noarch</a> [<span style="white-space: nowrap">786 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2009p - Argentina does not enter DST on October 18 - San Luis switched from UTC-4 to UTC-3 on October 11th - Upstream 2009q - Change DST end in Syria from November 1 to last Friday in October - Changes to past Hong Kong transitions - Kemerovo oblast' in Russia will change current time zone on March 28, 2010. Asia/Novokuznetsk is the new time zone name - Upstream 2009r - Changes to local times of three Australian research stations in Antarctica - Upstream 2009s - Fiji plans to re-introduce DST from November 29th 2009 to April 25th 2010 - Upstream 2009u - Bangladesh changed their clock back to Standard Time on December 31, 2009 - Resolves: #550570 - Dropped tzdata-2009o-argentinas.patch</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2009o-2.el5.noarch.rpm">tzdata-2009o-2.el5.noarch</a> [<span style="white-space: nowrap">782 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2009-10-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- San Luis (Argentina) entered DST on October 11 (tzdata-2009o-argentinas.patch) - Resolves: #529427</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2009m-1.el5.noarch.rpm">tzdata-2009m-1.el5.noarch</a> [<span style="white-space: nowrap">783 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2009-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2009m - Palestine will will revert back to winter time on Friday, 2009-09-04 - Samoa passed the DST Bill that fixes DST dates for 2009 and 2010 - Drop Egypt patch - Add markers for autoupdate of spec file - Pakistan leaves the period of DST on October 1 - Resolves: #524198</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2009k-1.el5.noarch.rpm">tzdata-2009k-1.el5.noarch</a> [<span style="white-space: nowrap">783 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2009-08-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2009j - DST switch for Bangladesh will occur an hour earlier than was thought (we can drop Bangladesh patch). - Upstream 2009k - Mauritius will not continue to observe DST the coming summer - Arbitrarily end DST at the end of 2009 so that a POSIX-style time zone string can appear in the Dhaka binary file - Egypt starts winter time on August 21. - Resolves: #517009</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2009i-2.el5.noarch.rpm">tzdata-2009i-2.el5.noarch</a> [<span style="white-space: nowrap">783 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2009-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Official announcement is for the Bangladesh change to occur at 23:00 of local time, not 24:00. Add upstream patch implementing the same. - Resolves: #503832</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2009f-1.el5.noarch.rpm">tzdata-2009f-1.el5.noarch</a> [<span style="white-space: nowrap">771 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2009-04-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2009a - Fix Asia/Kathmandu spelling - Historical timestamps for Switzerland and Cuba - DST update for America/Resolute - Upstream 2009d - Morocco will observe DST from 2009-06-01 00:00 to 2009-08-21 00:00 - Tunisia will not observe DST this year. - Syria will start DST on 2009-03-27 00:00 this year - Cuba will start DST on midnight between 2009-03-07 and 2009-03-08 - Province of San Luis, Argentina, went to UTC-04:00 on 2009-03-15 - Upstream 2009e - Historical changes for Jordan - Palestine will start DST on 2009-03-26 and end 2009-09-27 - Upstream 2009f - Pakistan will observe DST between 2009-04-15 and (probably) 2009-11-01 - Resolves: #495470 - Egypt ends DST on 2009-09-24 - Resolves: #492263</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2008i-1.el5.noarch.rpm">tzdata-2008i-1.el5.noarch</a> [<span style="white-space: nowrap">756 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2008-10-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2008g - Fixed future DST transitions for Brazil - Upstream 2008h - Fix exact DST transition hour for Mauritius - Syria will leave the period of DST on Nov 1 - Fix coordinates of Pacific/Niue - Upstream 2008i - Updates for Argentina: Drop DST in zones America/Argentina/Jujuy, La_Rioja, San_Juan, Catamarca, Mendoza, Rio_Gallegos, Ushuaia; new zone America/Argentina/Salta (for provinces SA, LP, NQ, RN). - Resolves: #467188</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2008f-3.el5.noarch.rpm">tzdata-2008f-3.el5.noarch</a> [<span style="white-space: nowrap">755 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2008-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebuild - Resolves: #462707</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2008e-1.el5.noarch.rpm">tzdata-2008e-1.el5.noarch</a> [<span style="white-space: nowrap">754 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2008-08-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2008c - Mongolia changes zone - Pakistan DST is scheduled until Sep/1, instead of Aug/31 - Upstream 2008d - Changes for Brazil and Mauritius - Upstream 2008e - Changes for Mauritius - Leap second coverage for 31/Dec 2008 - Corrections of historical dates - Drop Morocco and Pakistan patches that are superseded by upstream - Pakistan DST is scheduled until Oct/31 - Morocco DST is scheduled until Aug/31 - Resolves: #460059 #460365 #452679</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2008b-3.el5.noarch.rpm">tzdata-2008b-3.el5.noarch</a> [<span style="white-space: nowrap">753 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2008-05-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco introduces DST - Resolves: #448375</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-2007k-2.el5.noarch.rpm">tzdata-2007k-2.el5.noarch</a> [<span style="white-space: nowrap">752 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2008-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Chile moves DST to 29/Mar - Resolves: #436012</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/tzdata-java.html+0:2017a-1.el5.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/tzdata-java.htmlWed, 08 Mar 2017 23:40:15 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> tzdata-java<br /> <strong>Summary:</strong> Timezone data for Java </p> <p> <strong>Description:</strong><br /> This package contains timezone information for use by Java runtimes. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2017a-1.el5.i386.rpm">tzdata-java-2017a-1.el5.i386</a> [<span style="white-space: nowrap">176 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2017-03-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2017a - Mongolia no longer observes DST (BZ #1425223) - Add upstream patch to fix over-runing of POSIX limit on zone abbreviations. - Add zone1970.tab to the install files. (BZ #1427696)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016j-1.el5.i386.rpm">tzdata-java-2016j-1.el5.i386</a> [<span style="white-space: nowrap">175 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016ij - Saratov region of Russia is moving from +03 offset to +04 offset on 2016-12-04.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016i-1.el5.i386.rpm">tzdata-java-2016i-1.el5.i386</a> [<span style="white-space: nowrap">175 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016i: - Cyprus is now split into two time zones as of 2016-10-30 - Tonga will reintroduce DST on 2016-11-06</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016h-1.el5.i386.rpm">tzdata-java-2016h-1.el5.i386</a> [<span style="white-space: nowrap">174 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016h: - Palestine will end DST on 2016-10-29 not 2016-10-21.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016g-2.el5.i386.rpm">tzdata-java-2016g-2.el5.i386</a> [<span style="white-space: nowrap">174 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016g. - Turkey changed from EET/EEST (+02/+03) to permanent +03, on 2016-09-07. - A new leap second will be added on 2016-12-31 23:59:60 UTC.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016f-1.el5.i386.rpm">tzdata-java-2016f-1.el5.i386</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-07-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016f - Egypt cancelled DST. - Asia/Novosibirsk transitions from +06 to +07 on 2016-07-24 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016e-1.el5.i386.rpm">tzdata-java-2016e-1.el5.i386</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016e - Egypt reinstates DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016d-1.el5.i386.rpm">tzdata-java-2016d-1.el5.i386</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-04-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016d - America/Caracas switches from -0430 to -04 on 2016-05-01 at 02:30. - Asia/Magadan switches from +10 to +11 on 2016-04-24 at 02:00. - New zone Asia/Tomsk, split off from Asia/Novosibirsk. It covers Tomsk Oblast, Russia, which switches from +06 to +07 on 2016-05-29 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016c-1.el5.i386.rpm">tzdata-java-2016c-1.el5.i386</a> [<span style="white-space: nowrap">172 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016c - Azerbaijan no longer observes DST. - Chile reverts from permanent to seasonal DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016b-1.el5.i386.rpm">tzdata-java-2016b-1.el5.i386</a> [<span style="white-space: nowrap">172 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016b - New zones Europe/Astrakhan and Europe/Ulyanovsk for Astrakhan and Ulyanovsk Oblasts, Russia, both of which will switch from +03 to +04 on 2016-03-27 at 02:00 local time. They need distinct zones since their post-1970 histories disagree. New zone Asia/Barnaul for Altai Krai and Altai Republic, Russia, which will switch from +06 to +07 on the same date and local time. The Astrakhan change is already official; the others have passed the first reading in the State Duma and are extremely likely. Also, Asia/Sakhalin moves from +10 to +11 on 2016-03-27 at 02:00. - As a trial of a new system that needs less information to be made up, the new zones use numeric time zone abbreviations like "+04" instead of invented abbreviations like "ASTT". - Haiti will not observe DST in 2016. - Palestine's spring-forward transition on 2016-03-26 is at 01:00, not 00:00. Guess future transitions will be March's last Saturday at 01:00, not March's last Friday at 24:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2016a-1.el5.i386.rpm">tzdata-java-2016a-1.el5.i386</a> [<span style="white-space: nowrap">170 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016a - America/Cayman will not observe daylight saving this year after all. Revert our guess that it would. - Asia/Chita switches from +0800 to +0900 on 2016-03-27 at 02:00. - Asia/Tehran now has DST predictions for the year 2038 and later, to be March 21 00:00 to September 21 00:00. This is likely better than predicting no DST, albeit off by a day every now and then.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2015g-1.el5.i386.rpm">tzdata-java-2015g-1.el5.i386</a> [<span style="white-space: nowrap">171 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-10-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015g - Turkey's 2015 fall-back transition is scheduled for Nov. 8, not Oct. 25. - Norfolk moves from +1130 to +1100 on 2015-10-04 at 02:00 local time. - Fiji's 2016 fall-back transition is scheduled for January 17, not 24. - Fort Nelson, British Columbia will not fall back on 2015-11-01. It has effectively been on MST (-0700) since it advanced its clocks on 2015-03-08. New zone America/Fort_Nelson.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2015e-1.el5.i386.rpm">tzdata-java-2015e-1.el5.i386</a> [<span style="white-space: nowrap">169 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015e: - Morocco will suspend DST from 2015-06-14 03:00 through 2015-07-19 02:00, not 06-13 and 07-18 as we had guessed. (Thanks to Milamber.) - Assume Cayman Islands will observe DST starting next year, using US rules. Although it isn't guaranteed, it is the most likely.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2015d-1.el5.i386.rpm">tzdata-java-2015d-1.el5.i386</a> [<span style="white-space: nowrap">169 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-04-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015d: - The Egyptian Cabinet announced that DST will be cancelled for 2015. - The abbreviations for Hawaii-Aleutian standard and daylight times have been changed from HAST/HADT to HST/HDT, as per US Government Printing Office style. This affects only America/Adak since 1983, as America/Honolulu was already using the new style.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2015b-1.el5.i386.rpm">tzdata-java-2015b-1.el5.i386</a> [<span style="white-space: nowrap">169 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015b - Mongolia will start observing DST again this year, from the last Saturday in March at 02:00 to the last Saturday in September at 00:00. - Palestine will start DST on March 28, not March 27. Also, correct the fall 2014 transition from September 26 to October 24. Adjust future predictions accordingly.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2015a-1.el5.i386.rpm">tzdata-java-2015a-1.el5.i386</a> [<span style="white-space: nowrap">168 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-01-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015a - New leap second 2015-06-30 23:59:60 UTC as per IERS Bulletin C 49. - The Mexican state of Quintana Roo, represented by America/Cancun, will shift from Central Time with DST to Eastern Time without DST on 2015-02-01 at 02:00. - Chile will not change clocks in April or thereafter; its new standard time will be its old daylight saving time. This affects America/Santiago, Pacific/Easter, and Antarctica/Palmer.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2014i-1.el5.i386.rpm">tzdata-java-2014i-1.el5.i386</a> [<span style="white-space: nowrap">170 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014i - Pacific/Fiji will observe DST from 2014-11-02 02:00 to 2015-01-18 03:00. - A new Zone Pacific/Bougainville, for the part of Papua New Guinea that plans to switch from UTC+10 to UTC+11 on 2014-12-28 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2014e-1.el5.i386.rpm">tzdata-java-2014e-1.el5.i386</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014e - Morrocco suspends DTS for Ramadan June 28 at 03:00 and August 2 at 02:00 - Egypt suspends DTS for Ramadan June 26 and July 31 at 24:00</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2014b-1.el5.i386.rpm">tzdata-java-2014b-1.el5.i386</a> [<span style="white-space: nowrap">172 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014b - Crimea switches to Moscow time on 2014-03-30 at 02:00 local time. - New entry for Troll station, Antarctica.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2014a-1.el5.i386.rpm">tzdata-java-2014a-1.el5.i386</a> [<span style="white-space: nowrap">171 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-03-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Turkey begins DST on 2014-03-31, not 03-30.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2013i-2.el5.i386.rpm">tzdata-java-2013i-2.el5.i386</a> [<span style="white-space: nowrap">171 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fiji ends DST on 2014-01-19 at 02:00, not the previously-scheduled 03:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2013i-1.el5.i386.rpm">tzdata-java-2013i-1.el5.i386</a> [<span style="white-space: nowrap">171 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2013-12-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase with early release of 2013i from Paul Eggert github. - Jordan switches back to standard time at 00:00 on December 20,2013. - The 2006-2011 transition schedule is planned to resume in 2014. - The compile-time flag NOSOLAR has been removed. - The files solar87, solar88, and solar89 are no longer distributed. - tz-link.htm now mentions Noda Time.</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2013c-2.el5.i386.rpm">tzdata-java-2013c-2.el5.i386</a> [<span style="white-space: nowrap">185 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-07-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update descriptions in iso3166.tab; make Jerusalem coordinates in zone.tab more precise (0001-Adjust-commentary-to-try-to-defuse-recent-issues-som.patch) - Update local mean time for Jerusalem to match more-precise longitude (0002-asia-Asia-Jerusalem-Fix-LMT-to-match-more-precise-lo.patch) - Move Morocco's midsummer 2013 transitions (0003-Move-Morocco-s-midsummer-2013-transitions.patch) Fixes 980805 980807 981019 981020 - Israel now falls back on the last Sunday of October (0004-Israel-now-falls-back-on-the-last-Sunday-of-October.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2013c-1.el5.i386.rpm">tzdata-java-2013c-1.el5.i386</a> [<span style="white-space: nowrap">184 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-05-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013c - Sync past stamps for Palestine and West Bank with timeanddate.com - Assume that the recent change to Paraguay's DST rules is permanent - Macquarie was uninhabited between 1919 and 1948. It's also part of Australia (update in zone.tab).</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2013b-1.el5.i386.rpm">tzdata-java-2013b-1.el5.i386</a> [<span style="white-space: nowrap">184 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-03-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013b - Paraguay will end DST on March 24 this year - Haiti uses US daylight-saving rules this year - Morocco does not observe DST during Ramadan - Upstream 2013a - Retire Chile patch, 2013a has the data - New Zones Asia/Khandyga, Asia/Ust-Nera, Europe/Busingen - Many changes in historical timestamps</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2012j-2.el5.i386.rpm">tzdata-java-2012j-2.el5.i386</a> [<span style="white-space: nowrap">183 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- DTS in Chile will end on 2013-04-28 (0016-Chile-is-changing-its-DST-rules.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2012j-1.el5.i386.rpm">tzdata-java-2012j-1.el5.i386</a> [<span style="white-space: nowrap">183 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012j - Libya moved to CET</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2012i-2.el5.i386.rpm">tzdata-java-2012i-2.el5.i386</a> [<span style="white-space: nowrap">182 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Preserve hardlinks that zic leaves behind, install with cp -d</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2012f-1.el5.i386.rpm">tzdata-java-2012f-1.el5.i386</a> [<span style="white-space: nowrap">181 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012f - Fiji will start daylight savings at 2 am on Sunday 21st October 2012 and end at 3 am on Sunday 20th January 2013. Guess it will be like that in following years as well. - Upstream 2012e - Tokelau is in time zone UTC+13, not UTC+14 (and always was) - Upstream 2012d - Morocco will not observe DST during the month of Ramadan. DST cessation end date was corrected. - Drop tzdata-2012c-morocco.patch</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2012c-3.el5.i386.rpm">tzdata-java-2012c-3.el5.i386</a> [<span style="white-space: nowrap">181 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco will not observe DST during the month of Ramadan (tzdata-2012c-morocco.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2012c-1.el5.i386.rpm">tzdata-java-2012c-1.el5.i386</a> [<span style="white-space: nowrap">181 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-05-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012c - Haiti observes DST from 2012 on - Gaza Strip and Hebron observe DST in 2012 - Change start of DST in Syria to last Friday in March - Resolves: #820689</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2012b-3.el5.i386.rpm">tzdata-java-2012b-3.el5.i386</a> [<span style="white-space: nowrap">180 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-03-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco moved DST entry to last Sunday of April - Resolves: #802541</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011n-2.el5.i386.rpm">tzdata-java-2011n-2.el5.i386</a> [<span style="white-space: nowrap">180 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-02-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- The Chilean Government has decided to postpone the entrance into winter time (to leave DST) from March 11 2012 to April 28th 2012 - Resolves: #796747</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011l-4.el5.i386.rpm">tzdata-java-2011l-4.el5.i386</a> [<span style="white-space: nowrap">179 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-10-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Ukraine will enter Winter Time after all - Resolves: #739916</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011h-2.el5.i386.rpm">tzdata-java-2011h-2.el5.i386</a> [<span style="white-space: nowrap">178 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-08-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Patch for upcoming change in Newfoundland. The transition time changes from 12:01 AM to 2:00 AM. - Resolves: #729697</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011h-1.el5.i386.rpm">tzdata-java-2011h-1.el5.i386</a> [<span style="white-space: nowrap">178 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-06-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011h: - Russia abandons DST in 2011. - *.tab: change AN (Netherlands Antilles) to CW (Curacao) - Resolves: #701268</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011g-1.el5.i386.rpm">tzdata-java-2011g-1.el5.i386</a> [<span style="white-space: nowrap">180 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011e: - Morocco introduced DST for 2011 from April 2 to July 31. - Delay end of DST in Chile in 2011 until May 7. - Resolves: #698608 - Upstream 2011f: - The Falkland Islands will not turn back clocks this winter, but stay on daylight saving time. - Upstream 2011g: - Egypt abandons DST in 2011 (and forward) - Resolves: #698397 - Dropped tzdata-2011d-chile.patch - Dropped tzdata-2011d-morocco.patch</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011d-3.el5.i386.rpm">tzdata-java-2011d-3.el5.i386</a> [<span style="white-space: nowrap">180 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-03-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco introduced DST for 2011 from April 2 to July 31. (tzdata-2011d-morocco.patch) - Resolves: #692160</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011d-1.el5.i386.rpm">tzdata-java-2011d-1.el5.i386</a> [<span style="white-space: nowrap">179 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-03-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011d: - Change end of DST in Samoa in 2011. - Change start of DST in Cuba in 2011. - Move start of DST in Turkey by one day in 2011. - Dropped tzdata-2011b-c.patch - Resolves: #684212</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2011b-1.el5.i386.rpm">tzdata-java-2011b-1.el5.i386</a> [<span style="white-space: nowrap">179 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2011-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2011a: - Updates of historical stamps for Hawaii - Upstream 2011b: - America/North_Dakota/Beulah: Mercer County, North Dakota, changed from the mountain time zone to the central time zone - Kemerovo oblast should use OMST/OMSST abbreviation (tzdata-2011b-kemerovo.patch) - tzdata-2011b-c.patch - Update of historical stamps for Juneau, Sitka, and histcurrent stamps for Metlakatla. Sitka and Metlakatla are new zones. - Delay end of DST in Chile in 2011 until first Sunday in April. - Resolves: #681594</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2010o-1.el5.i386.rpm">tzdata-java-2010o-1.el5.i386</a> [<span style="white-space: nowrap">177 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-12-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010m: - Hong Kong didn't observe DST in 1977 - In zone.tab, remove obsolete association of Vostok Station with South Magnetic Pole; add association with Lake Vostok - Upstream 2010n: - Change end of DST in Samoa in 2011 from 2011-04-03 0:00 to 2011-04-03 1:00 - Upstream 2010o: - Fiji will end DST on March 6, 2011, not March 27, 2011 - Resolves: #662777</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2010l-1.el5.i386.rpm">tzdata-java-2010l-1.el5.i386</a> [<span style="white-space: nowrap">177 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-08-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010l: - Change Cairo's 2010 reversion to DST from the midnight between September 8 and 9 to the midnight between September 9 and 10. - Change Gaza's 2010 return to standard time to the midnight between August 10 and 11. - Bahia de Banderas (Mexican state of Nayarit) changed time zone UTC-7 to new time zone UTC-6 on April 4, 2010 - Resolves: #628637</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2010k-1.el5.i386.rpm">tzdata-java-2010k-1.el5.i386</a> [<span style="white-space: nowrap">176 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andreas Schwab (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upadate to 2010k (#618593) - No DST in Egypt during Ramadan in 2010 - Bahía de Banderas moved to UTC-6 on April 4, 2010, new time zone America/Bahia_Banderas - Rename Pacific/Truk to Pacific/Chuuk and Pacific/Ponape to Pacific/Pohnpei - Update historical data of Europe/Helsinki - Update tz-links page</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2010i-1.el5.i386.rpm">tzdata-java-2010i-1.el5.i386</a> [<span style="white-space: nowrap">176 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2010g: - No Bangladesh DST in 2010 and forward. - Gaza DST starts last Saturday in March at 12:01 a.m. in 2010 and forward - Kamchatka and Anadyr change to Moscow+8 on 2010-03-28 - Samara changes to Moscow+0 on 2010-03-28 - Related zone.tab updates - Upstream 2010h: - No DST in Tunisia in 2010 and forward - No DST in Pakistan in 2010 and forward - Upstream 2010i: - Morocco will have DST from 2010-05-02 to 2010-08-08 - San Luis, Argentina will keep permanent DST after April 11, 2010 - Updates of historical stamps for Taiwan - Dropped tzdata-2010g-tunis.patch - Dropped tzdata-2010f-g.patch - Dropped tzdata-2010g-karachi.patch - Resolves: #584847</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/tzdata-java-2010f-10.el5.i386.rpm">tzdata-java-2010f-10.el5.i386</a> [<span style="white-space: nowrap">175 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2010-03-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Remove leftover dependency on tzdata-c - Related: #576611</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/firefox.html+0:45.8.0-2.el5_11.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/firefox.htmlWed, 08 Mar 2017 18:11:51 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> firefox<br /> <strong>Summary:</strong> Mozilla Firefox Web browser </p> <p> <strong>Description:</strong><br /> Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.8.0-2.el5_11.i386.rpm">firefox-45.8.0-2.el5_11.i386</a> [<span style="white-space: nowrap">83.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2017-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.8.0 ESR (B2)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.7.0-2.el5_11.i386.rpm">firefox-45.7.0-2.el5_11.i386</a> [<span style="white-space: nowrap">83.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2017-02-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enabled ppc/s390 arches (rhbz#1418765)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.7.0-1.el5_11.i386.rpm">firefox-45.7.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2017-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 45.7.0 (B1)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.6.0-1.el5_11.i386.rpm">firefox-45.6.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.5.1-1.el5_11.i386.rpm">firefox-45.5.1-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.5.0-1.el5_11.i386.rpm">firefox-45.5.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.4.0-1.el5_11.i386.rpm">firefox-45.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-09-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.3.0-1.el5_11.i386.rpm">firefox-45.3.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.3.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.2.0-1.el5_11.i386.rpm">firefox-45.2.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-45.1.0-1.el5_11.i386.rpm">firefox-45.1.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-04-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.1.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.7.0-1.el5_11.i386.rpm">firefox-38.7.0-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-03-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.7.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.6.1-1.el5_11.i386.rpm">firefox-38.6.1-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2016-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.6.0-1.el5_11.i386.rpm">firefox-38.6.0-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-01-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.5.0-2.el5_11.i386.rpm">firefox-38.5.0-2.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.4.0-1.el5_11.i386.rpm">firefox-38.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.3.0-2.el5_11.i386.rpm">firefox-38.3.0-2.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-09-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.3.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.2.1-1.el5_11.i386.rpm">firefox-38.2.1-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.2.0-4.el5_11.i386.rpm">firefox-38.2.0-4.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.1.1-1.el5_11.i386.rpm">firefox-38.1.1-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.1.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.1.0-1.el5_11.i386.rpm">firefox-38.1.0-1.el5_11.i386</a> [<span style="white-space: nowrap">78.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-06-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.1.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-38.0-4.el5_11.i386.rpm">firefox-38.0-4.el5_11.i386</a> [<span style="white-space: nowrap">78.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-05-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Obsolete Firefox 31</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-31.6.0-2.el5_11.i386.rpm">firefox-31.6.0-2.el5_11.i386</a> [<span style="white-space: nowrap">65.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-03-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.6.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-31.5.3-1.el5_11.i386.rpm">firefox-31.5.3-1.el5_11.i386</a> [<span style="white-space: nowrap">65.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-03-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-31.5.0-1.el5_11.i386.rpm">firefox-31.5.0-1.el5_11.i386</a> [<span style="white-space: nowrap">65.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-31.4.0-1.el5_11.i386.rpm">firefox-31.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">65.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-31.3.0-4.el5_11.i386.rpm">firefox-31.3.0-4.el5_11.i386</a> [<span style="white-space: nowrap">65.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-11-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.3.0 ESR Build 2 - Fix for geolocation API (rhbz#1063739)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-31.2.0-3.el5_11.i386.rpm">firefox-31.2.0-3.el5_11.i386</a> [<span style="white-space: nowrap">68.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.2.0 ESR - Fix for mozbz#1042889</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-31.1.0-6.el5.i386.rpm">firefox-31.1.0-6.el5.i386</a> [<span style="white-space: nowrap">67.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-09-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enable all NPAPI plugins by default to keep compatibility with the FF24 line</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-24.8.0-2.el5_10.i386.rpm">firefox-24.8.0-2.el5_10.i386</a> [<span style="white-space: nowrap">49.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.8.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-24.7.0-1.el5_10.i386.rpm">firefox-24.7.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-07-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.7.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-24.6.0-1.el5_10.i386.rpm">firefox-24.6.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-06-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-24.5.0-1.el5_10.i386.rpm">firefox-24.5.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-24.4.0-1.el5_10.i386.rpm">firefox-24.4.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-03-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-24.3.0-2.el5_10.i386.rpm">firefox-24.3.0-2.el5_10.i386</a> [<span style="white-space: nowrap">49.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-02-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.3.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-24.2.0-1.el5_10.i386.rpm">firefox-24.2.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-12-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-17.0.10-1.el5_10.i386.rpm">firefox-17.0.10-1.el5_10.i386</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-10-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-17.0.9-1.el5_9.i386.rpm">firefox-17.0.9-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-09-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.9 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-17.0.8-1.el5_9.i386.rpm">firefox-17.0.8-1.el5_9.i386</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-07-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-17.0.7-1.el5_9.i386.rpm">firefox-17.0.7-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-06-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-17.0.6-1.el5_9.i386.rpm">firefox-17.0.6-1.el5_9.i386</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-05-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-17.0.5-1.el5_9.i386.rpm">firefox-17.0.5-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-03-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-17.0.3-1.el5_9.i386.rpm">firefox-17.0.3-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-02-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.12-1.el5_9.i386.rpm">firefox-10.0.12-1.el5_9.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.12 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.11-1.el5_8.i386.rpm">firefox-10.0.11-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.11 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.10-1.el5_8.i386.rpm">firefox-10.0.10-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-10-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.8-1.el5_8.i386.rpm">firefox-10.0.8-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.7-1.el5_8.i386.rpm">firefox-10.0.7-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.6-1.el5_8.i386.rpm">firefox-10.0.6-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-07-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.5-1.el5_8.i386.rpm">firefox-10.0.5-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.4-1.el5_8.i386.rpm">firefox-10.0.4-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.4 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-10.0.3-1.el5_8.i386.rpm">firefox-10.0.3-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.26-1.el5_7.i386.rpm">firefox-3.6.26-1.el5_7.i386</a> [<span style="white-space: nowrap">14.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-01-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.26</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.24-3.el5_7.i386.rpm">firefox-3.6.24-3.el5_7.i386</a> [<span style="white-space: nowrap">14.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2011-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.24</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.23-2.el5_7.i386.rpm">firefox-3.6.23-2.el5_7.i386</a> [<span style="white-space: nowrap">14.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Build fix</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.22-1.el5_7.i386.rpm">firefox-3.6.22-1.el5_7.i386</a> [<span style="white-space: nowrap">14.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2011-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.22</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.20-2.el5.i386.rpm">firefox-3.6.20-2.el5.i386</a> [<span style="white-space: nowrap">14.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2011-08-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.20</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.18-1.el5_6.i386.rpm">firefox-3.6.18-1.el5_6.i386</a> [<span style="white-space: nowrap">14.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2011-06-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.18</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.17-1.el5_6.i386.rpm">firefox-3.6.17-1.el5_6.i386</a> [<span style="white-space: nowrap">14.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2011-04-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.17</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.15-1.el5_6.i386.rpm">firefox-3.6.15-1.el5_6.i386</a> [<span style="white-space: nowrap">14.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2011-03-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.15</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.14-4.el5_6.i386.rpm">firefox-3.6.14-4.el5_6.i386</a> [<span style="white-space: nowrap">14.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to build3</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.13-2.el5.i386.rpm">firefox-3.6.13-2.el5.i386</a> [<span style="white-space: nowrap">14.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2010-12-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.13 build 3</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.11-2.el5.i386.rpm">firefox-3.6.11-2.el5.i386</a> [<span style="white-space: nowrap">14.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2010-10-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.11 Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.9-2.el5.i386.rpm">firefox-3.6.9-2.el5.i386</a> [<span style="white-space: nowrap">14.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2010-08-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fixed xulrunner version</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.7-3.el5.i386.rpm">firefox-3.6.7-3.el5.i386</a> [<span style="white-space: nowrap">14.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2010-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebuild</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.7-2.el5.i386.rpm">firefox-3.6.7-2.el5.i386</a> [<span style="white-space: nowrap">14.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2010-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.6.7 beta2</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.6.4-8.el5.i386.rpm">firefox-3.6.4-8.el5.i386</a> [<span style="white-space: nowrap">14.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2010-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fixing NVR</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.19-1.el5_5.i386.rpm">firefox-3.0.19-1.el5_5.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2010-03-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.0.19</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.18-1.el5_4.i386.rpm">firefox-3.0.18-1.el5_4.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2010-02-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.0.18</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.16-1.el5_4.i386.rpm">firefox-3.0.16-1.el5_4.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-12-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.0.16</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.15-3.el5_4.i386.rpm">firefox-3.0.15-3.el5_4.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-10-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebuild due to Mozilla's respin</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.14-1.el5_4.i386.rpm">firefox-3.0.14-1.el5_4.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-08-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.0.14</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.12-1.el5_3.i386.rpm">firefox-3.0.12-1.el5_3.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-07-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.0.12</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.11-2.el5_3.i386.rpm">firefox-3.0.11-2.el5_3.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update due to respin</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.10-1.el5.i386.rpm">firefox-3.0.10-1.el5.i386</a> [<span style="white-space: nowrap">11.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2009-04-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 3.0.10</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.9-1.el5.i386.rpm">firefox-3.0.9-1.el5.i386</a> [<span style="white-space: nowrap">11.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to Firefox 3.0.9 - Gnome crash dialog disabled (#493455)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.7-1.el5.i386.rpm">firefox-3.0.7-1.el5.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to Firefox 3.0.7</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.6-1.el5.i386.rpm">firefox-3.0.6-1.el5.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2009-01-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to Firefox 3.0.6 - Fixed #447390 (wrong size of icons)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.5-1.el5_2.i386.rpm">firefox-3.0.5-1.el5_2.i386</a> [<span style="white-space: nowrap">12.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to Firefox 3.0.5</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.4-1.el5.i386.rpm">firefox-3.0.4-1.el5.i386</a> [<span style="white-space: nowrap">11.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to Firefox 3.0.4 - Removed firefox-2.0-getstartpage.patch (#454283)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.2-3.el5.i386.rpm">firefox-3.0.2-3.el5.i386</a> [<span style="white-space: nowrap">10.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to Firefox 3.0.2 build 6</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-3.0.1-1.el5.i386.rpm">firefox-3.0.1-1.el5.i386</a> [<span style="white-space: nowrap">9.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-07-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to Firefox 3.0.1</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-1.5.0.12-15.el5_1.i386.rpm">firefox-1.5.0.12-15.el5_1.i386</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2008-04-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update patchset to fix regressions as per 1.8.1.14</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-1.5.0.12-14.el5_1.i386.rpm">firefox-1.5.0.12-14.el5_1.i386</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2008-03-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix assertions from script</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-1.5.0.12-11.el5_1.i386.rpm">firefox-1.5.0.12-11.el5_1.i386</a> [<span style="white-space: nowrap">20.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Christopher Aillon (2008-02-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Crash fixes</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/firefox-1.5.0.12-9.el5.i386.rpm">firefox-1.5.0.12-9.el5.i386</a> [<span style="white-space: nowrap">20.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2008-01-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5xen.html+0:1.4.15-90.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5xen.htmlFri, 24 Feb 2017 19:06:12 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-openafs-2.6.18-419.el5xen<br /> <strong>Summary:</strong> OpenAFS Kernel Module for Kernel 2.6.18-419.el5xen </p> <p> <strong>Description:</strong><br /> The AFS distributed filesystem. AFS is a distributed filesystem allowing cross-platform sharing of files among multiple computers. Facilities are provided for access control, authentication, backup and administrative management. This package provides an openafs kernel module for kernel 2.6.18-419.el5xen and architecture i686. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-openafs-2.6.18-419.el5xen-1.4.15-90.sl5.i686.rpm">kernel-module-openafs-2.6.18-419.el5xen-1.4.15-90.sl5.i686</a> [<span style="white-space: nowrap">250 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2016-12-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- patches 1096..1099 to fix OPEANFS-SA-2016-003 (from release 1.6.20)</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-xfs-2.6.18-419.el5xen.html+0:0.4-2.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-xfs-2.6.18-419.el5xen.htmlFri, 24 Feb 2017 19:04:02 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-xfs-2.6.18-419.el5xen<br /> <strong>Summary:</strong> Kernel modules for xfs-filesystem. </p> <p> <strong>Description:</strong><br /> Kernel modules for xfs-filesystem. The XFS(tm) Filesystem from Silicon Graphics, Inc. XFS is a highly scalable, high-performance journaling filesystem that provides rapid recovery from system crashes. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-xfs-2.6.18-419.el5xen-0.4-2.sl5.i686.rpm">kernel-module-xfs-2.6.18-419.el5xen-0.4-2.sl5.i686</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2009-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix build for kernels >= 2.6.18-122.el5 (SL5.3+)</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5xen.html+0:1.2.0-2.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5xen.htmlFri, 24 Feb 2017 19:03:16 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-ipw3945-2.6.18-419.el5xen<br /> <strong>Summary:</strong> Kernel module for the Intel® PRO/Wireless 3945. </p> <p> <strong>Description:</strong><br /> This package contains kernel drivers for the Intel® PRO/Wireless 3945. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-ipw3945-2.6.18-419.el5xen-1.2.0-2.sl5.i686.rpm">kernel-module-ipw3945-2.6.18-419.el5xen-1.2.0-2.sl5.i686</a> [<span style="white-space: nowrap">326 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2007-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix kernel_moduledir - mode 755 for ipw3945.ko</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5xen.html+0:0.20090202.cvs-6.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5xen.htmlFri, 24 Feb 2017 19:03:05 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-aufs-2.6.18-419.el5xen<br /> <strong>Summary:</strong> kernel modules for aufs. </p> <p> <strong>Description:</strong><br /> Kernel modules for aufs. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-aufs-2.6.18-419.el5xen-0.20090202.cvs-6.sl5.i686.rpm">kernel-module-aufs-2.6.18-419.el5xen-0.20090202.cvs-6.sl5.i686</a> [<span style="white-space: nowrap">121 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2009-02-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- update to latest CVS version 2009-02-02 - add aufs-struct_path.patch</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5PAE.html+0:1.4.15-90.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5PAE.htmlFri, 24 Feb 2017 19:02:33 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-openafs-2.6.18-419.el5PAE<br /> <strong>Summary:</strong> OpenAFS Kernel Module for Kernel 2.6.18-419.el5PAE </p> <p> <strong>Description:</strong><br /> The AFS distributed filesystem. AFS is a distributed filesystem allowing cross-platform sharing of files among multiple computers. Facilities are provided for access control, authentication, backup and administrative management. This package provides an openafs kernel module for kernel 2.6.18-419.el5PAE and architecture i686. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-openafs-2.6.18-419.el5PAE-1.4.15-90.sl5.i686.rpm">kernel-module-openafs-2.6.18-419.el5PAE-1.4.15-90.sl5.i686</a> [<span style="white-space: nowrap">249 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2016-12-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- patches 1096..1099 to fix OPEANFS-SA-2016-003 (from release 1.6.20)</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-xfs-2.6.18-419.el5PAE.html+0:0.4-2.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-xfs-2.6.18-419.el5PAE.htmlFri, 24 Feb 2017 19:00:26 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-xfs-2.6.18-419.el5PAE<br /> <strong>Summary:</strong> Kernel modules for xfs-filesystem. </p> <p> <strong>Description:</strong><br /> Kernel modules for xfs-filesystem. The XFS(tm) Filesystem from Silicon Graphics, Inc. XFS is a highly scalable, high-performance journaling filesystem that provides rapid recovery from system crashes. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-xfs-2.6.18-419.el5PAE-0.4-2.sl5.i686.rpm">kernel-module-xfs-2.6.18-419.el5PAE-0.4-2.sl5.i686</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2009-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix build for kernels >= 2.6.18-122.el5 (SL5.3+)</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5PAE.html+0:1.2.0-2.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5PAE.htmlFri, 24 Feb 2017 18:59:41 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-ipw3945-2.6.18-419.el5PAE<br /> <strong>Summary:</strong> Kernel module for the Intel® PRO/Wireless 3945. </p> <p> <strong>Description:</strong><br /> This package contains kernel drivers for the Intel® PRO/Wireless 3945. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-ipw3945-2.6.18-419.el5PAE-1.2.0-2.sl5.i686.rpm">kernel-module-ipw3945-2.6.18-419.el5PAE-1.2.0-2.sl5.i686</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2007-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix kernel_moduledir - mode 755 for ipw3945.ko</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5PAE.html+0:0.20090202.cvs-6.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5PAE.htmlFri, 24 Feb 2017 18:59:31 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-aufs-2.6.18-419.el5PAE<br /> <strong>Summary:</strong> kernel modules for aufs. </p> <p> <strong>Description:</strong><br /> Kernel modules for aufs. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-aufs-2.6.18-419.el5PAE-0.20090202.cvs-6.sl5.i686.rpm">kernel-module-aufs-2.6.18-419.el5PAE-0.20090202.cvs-6.sl5.i686</a> [<span style="white-space: nowrap">121 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2009-02-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- update to latest CVS version 2009-02-02 - add aufs-struct_path.patch</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5.html+0:1.4.15-90.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5.htmlFri, 24 Feb 2017 18:58:59 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-openafs-2.6.18-419.el5<br /> <strong>Summary:</strong> OpenAFS Kernel Module for Kernel 2.6.18-419.el5 </p> <p> <strong>Description:</strong><br /> The AFS distributed filesystem. AFS is a distributed filesystem allowing cross-platform sharing of files among multiple computers. Facilities are provided for access control, authentication, backup and administrative management. This package provides an openafs kernel module for kernel 2.6.18-419.el5 and architecture i686. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-openafs-2.6.18-419.el5-1.4.15-90.sl5.i686.rpm">kernel-module-openafs-2.6.18-419.el5-1.4.15-90.sl5.i686</a> [<span style="white-space: nowrap">249 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2016-12-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- patches 1096..1099 to fix OPEANFS-SA-2016-003 (from release 1.6.20)</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-xfs-2.6.18-419.el5.html+0:0.4-2.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-xfs-2.6.18-419.el5.htmlFri, 24 Feb 2017 18:56:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-xfs-2.6.18-419.el5<br /> <strong>Summary:</strong> Kernel modules for xfs-filesystem. </p> <p> <strong>Description:</strong><br /> Kernel modules for xfs-filesystem. The XFS(tm) Filesystem from Silicon Graphics, Inc. XFS is a highly scalable, high-performance journaling filesystem that provides rapid recovery from system crashes. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-xfs-2.6.18-419.el5-0.4-2.sl5.i686.rpm">kernel-module-xfs-2.6.18-419.el5-0.4-2.sl5.i686</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2009-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix build for kernels >= 2.6.18-122.el5 (SL5.3+)</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5.html+0:1.2.0-2.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5.htmlFri, 24 Feb 2017 18:56:02 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-ipw3945-2.6.18-419.el5<br /> <strong>Summary:</strong> Kernel module for the Intel® PRO/Wireless 3945. </p> <p> <strong>Description:</strong><br /> This package contains kernel drivers for the Intel® PRO/Wireless 3945. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-ipw3945-2.6.18-419.el5-1.2.0-2.sl5.i686.rpm">kernel-module-ipw3945-2.6.18-419.el5-1.2.0-2.sl5.i686</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2007-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix kernel_moduledir - mode 755 for ipw3945.ko</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5.html+0:0.20090202.cvs-6.sl5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5.htmlFri, 24 Feb 2017 18:55:51 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-aufs-2.6.18-419.el5<br /> <strong>Summary:</strong> kernel modules for aufs. </p> <p> <strong>Description:</strong><br /> Kernel modules for aufs. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-module-aufs-2.6.18-419.el5-0.20090202.cvs-6.sl5.i686.rpm">kernel-module-aufs-2.6.18-419.el5-0.20090202.cvs-6.sl5.i686</a> [<span style="white-space: nowrap">121 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2009-02-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- update to latest CVS version 2009-02-02 - add aufs-struct_path.patch</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel<br /> <strong>Summary:</strong> The Linux kernel (the core of the Linux operating system) </p> <p> <strong>Description:</strong><br /> The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-419.el5.i686.rpm">kernel-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-417.el5.i686.rpm">kernel-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-416.el5.i686.rpm">kernel-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-409.el5.i686.rpm">kernel-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-408.el5.i686.rpm">kernel-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-406.el5.i686.rpm">kernel-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-404.el5.i686.rpm">kernel-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-402.el5.i686.rpm">kernel-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-400.1.1.el5.i686.rpm">kernel-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-400.el5.i686.rpm">kernel-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.12.1.el5.i686.rpm">kernel-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.11.1.el5.i686.rpm">kernel-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.9.1.el5.i686.rpm">kernel-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.8.1.el5.i686.rpm">kernel-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.6.1.el5.i686.rpm">kernel-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.4.1.el5.i686.rpm">kernel-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.3.1.el5.i686.rpm">kernel-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.1.2.el5.i686.rpm">kernel-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-371.el5.i686.rpm">kernel-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.18.1.el5.i686.rpm">kernel-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.16.1.el5.i686.rpm">kernel-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.12.1.el5.i686.rpm">kernel-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.6.1.el5.i686.rpm">kernel-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.4.1.el5.i686.rpm">kernel-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.3.1.el5.i686.rpm">kernel-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.2.1.el5.i686.rpm">kernel-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-348.1.1.el5.i686.rpm">kernel-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.24.1.el5.i686.rpm">kernel-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.20.1.el5.i686.rpm">kernel-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.16.1.el5.i686.rpm">kernel-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.13.1.el5.i686.rpm">kernel-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.11.1.el5.i686.rpm">kernel-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.8.2.el5.i686.rpm">kernel-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.8.1.el5.i686.rpm">kernel-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-308.4.1.el5.i686.rpm">kernel-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-274.18.1.el5.i686.rpm">kernel-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">18.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-274.17.1.el5.i686.rpm">kernel-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">18.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-274.12.1.el5.i686.rpm">kernel-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-274.7.1.el5.i686.rpm">kernel-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-274.3.1.el5.i686.rpm">kernel-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-238.19.1.el5.i686.rpm">kernel-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-238.12.1.el5.i686.rpm">kernel-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-238.9.1.el5.i686.rpm">kernel-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-238.5.1.el5.i686.rpm">kernel-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-238.1.1.el5.i686.rpm">kernel-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.32.1.el5.i686.rpm">kernel-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.26.1.el5.i686.rpm">kernel-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.17.4.el5.i686.rpm">kernel-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.17.1.el5.i686.rpm">kernel-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.11.4.el5.i686.rpm">kernel-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.11.3.el5.i686.rpm">kernel-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.11.1.el5.i686.rpm">kernel-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.8.1.el5.i686.rpm">kernel-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-194.3.1.el5.i686.rpm">kernel-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-164.15.1.el5.i686.rpm">kernel-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-164.11.1.el5.i686.rpm">kernel-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-164.10.1.el5.i686.rpm">kernel-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-164.9.1.el5.i686.rpm">kernel-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-164.6.1.el5.i686.rpm">kernel-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-164.2.1.el5.i686.rpm">kernel-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-128.7.1.el5.i686.rpm">kernel-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-128.4.1.el5.i686.rpm">kernel-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-128.1.14.el5.i686.rpm">kernel-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-128.1.10.el5.i686.rpm">kernel-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-128.1.6.el5.i686.rpm">kernel-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-128.1.1.el5.i686.rpm">kernel-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-92.1.22.el5.i686.rpm">kernel-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-92.1.18.el5.i686.rpm">kernel-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-92.1.17.el5.i686.rpm">kernel-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-92.1.13.el5.i686.rpm">kernel-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-92.1.10.el5.i686.rpm">kernel-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-92.1.6.el5.i686.rpm">kernel-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-53.1.21.el5.i686.rpm">kernel-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-53.1.19.el5.i686.rpm">kernel-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-53.1.14.el5.i686.rpm">kernel-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-53.1.13.el5.i686.rpm">kernel-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-2.6.18-53.1.6.el5.i686.rpm">kernel-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-PAE.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-PAE.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-PAE<br /> <strong>Summary:</strong> The Linux kernel compiled for PAE capable machines. </p> <p> <strong>Description:</strong><br /> This package includes a version of the Linux kernel with support for up to 16GB of high memory. It requires a CPU with Physical Address Extensions (PAE). The non-PAE kernel can only address up to 4GB of memory. Install the kernel-PAE package if your machine has more than 4GB of memory. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-419.el5.i686.rpm">kernel-PAE-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-417.el5.i686.rpm">kernel-PAE-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-416.el5.i686.rpm">kernel-PAE-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-409.el5.i686.rpm">kernel-PAE-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-408.el5.i686.rpm">kernel-PAE-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-406.el5.i686.rpm">kernel-PAE-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-404.el5.i686.rpm">kernel-PAE-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-402.el5.i686.rpm">kernel-PAE-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-400.1.1.el5.i686.rpm">kernel-PAE-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-400.el5.i686.rpm">kernel-PAE-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">19.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.12.1.el5.i686.rpm">kernel-PAE-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.11.1.el5.i686.rpm">kernel-PAE-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.9.1.el5.i686.rpm">kernel-PAE-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.8.1.el5.i686.rpm">kernel-PAE-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.6.1.el5.i686.rpm">kernel-PAE-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.4.1.el5.i686.rpm">kernel-PAE-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.3.1.el5.i686.rpm">kernel-PAE-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.1.2.el5.i686.rpm">kernel-PAE-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-371.el5.i686.rpm">kernel-PAE-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.18.1.el5.i686.rpm">kernel-PAE-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.16.1.el5.i686.rpm">kernel-PAE-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.12.1.el5.i686.rpm">kernel-PAE-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.6.1.el5.i686.rpm">kernel-PAE-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.4.1.el5.i686.rpm">kernel-PAE-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.3.1.el5.i686.rpm">kernel-PAE-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.2.1.el5.i686.rpm">kernel-PAE-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-348.1.1.el5.i686.rpm">kernel-PAE-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">19.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.24.1.el5.i686.rpm">kernel-PAE-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.20.1.el5.i686.rpm">kernel-PAE-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.16.1.el5.i686.rpm">kernel-PAE-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.13.1.el5.i686.rpm">kernel-PAE-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.11.1.el5.i686.rpm">kernel-PAE-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.8.2.el5.i686.rpm">kernel-PAE-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.8.1.el5.i686.rpm">kernel-PAE-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-308.4.1.el5.i686.rpm">kernel-PAE-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">19.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-274.18.1.el5.i686.rpm">kernel-PAE-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">18.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-274.17.1.el5.i686.rpm">kernel-PAE-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">18.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-274.12.1.el5.i686.rpm">kernel-PAE-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">18.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-274.7.1.el5.i686.rpm">kernel-PAE-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">18.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-274.3.1.el5.i686.rpm">kernel-PAE-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">18.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-238.19.1.el5.i686.rpm">kernel-PAE-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">17.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-238.12.1.el5.i686.rpm">kernel-PAE-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">17.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-238.9.1.el5.i686.rpm">kernel-PAE-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">17.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-238.5.1.el5.i686.rpm">kernel-PAE-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">17.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-238.1.1.el5.i686.rpm">kernel-PAE-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">17.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.32.1.el5.i686.rpm">kernel-PAE-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">17.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.26.1.el5.i686.rpm">kernel-PAE-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.17.4.el5.i686.rpm">kernel-PAE-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.17.1.el5.i686.rpm">kernel-PAE-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.11.4.el5.i686.rpm">kernel-PAE-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.11.3.el5.i686.rpm">kernel-PAE-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.11.1.el5.i686.rpm">kernel-PAE-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.8.1.el5.i686.rpm">kernel-PAE-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-194.3.1.el5.i686.rpm">kernel-PAE-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">16.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-164.15.1.el5.i686.rpm">kernel-PAE-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-164.11.1.el5.i686.rpm">kernel-PAE-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-164.10.1.el5.i686.rpm">kernel-PAE-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-164.9.1.el5.i686.rpm">kernel-PAE-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-164.6.1.el5.i686.rpm">kernel-PAE-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-164.2.1.el5.i686.rpm">kernel-PAE-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">15.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-128.7.1.el5.i686.rpm">kernel-PAE-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-128.4.1.el5.i686.rpm">kernel-PAE-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-128.1.14.el5.i686.rpm">kernel-PAE-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-128.1.10.el5.i686.rpm">kernel-PAE-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-128.1.6.el5.i686.rpm">kernel-PAE-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-128.1.1.el5.i686.rpm">kernel-PAE-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-92.1.22.el5.i686.rpm">kernel-PAE-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-92.1.18.el5.i686.rpm">kernel-PAE-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-92.1.17.el5.i686.rpm">kernel-PAE-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-92.1.13.el5.i686.rpm">kernel-PAE-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-92.1.10.el5.i686.rpm">kernel-PAE-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-92.1.6.el5.i686.rpm">kernel-PAE-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">13.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-53.1.21.el5.i686.rpm">kernel-PAE-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">13.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-53.1.19.el5.i686.rpm">kernel-PAE-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-53.1.14.el5.i686.rpm">kernel-PAE-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-53.1.13.el5.i686.rpm">kernel-PAE-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-2.6.18-53.1.6.el5.i686.rpm">kernel-PAE-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">13.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-PAE-devel.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-PAE-devel.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-PAE-devel<br /> <strong>Summary:</strong> Development package for building kernel modules to match the PAE kernel. </p> <p> <strong>Description:</strong><br /> This package provides kernel headers and makefiles sufficient to build modules against the PAE kernel package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-419.el5.i686.rpm">kernel-PAE-devel-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-417.el5.i686.rpm">kernel-PAE-devel-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-416.el5.i686.rpm">kernel-PAE-devel-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-409.el5.i686.rpm">kernel-PAE-devel-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-408.el5.i686.rpm">kernel-PAE-devel-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-406.el5.i686.rpm">kernel-PAE-devel-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-404.el5.i686.rpm">kernel-PAE-devel-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-402.el5.i686.rpm">kernel-PAE-devel-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-400.1.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-400.el5.i686.rpm">kernel-PAE-devel-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.12.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.11.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.9.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.8.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.6.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.4.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.3.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.1.2.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-371.el5.i686.rpm">kernel-PAE-devel-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.18.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.16.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.12.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.6.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.4.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.3.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.2.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-348.1.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.24.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.20.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.16.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.13.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.11.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.8.2.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.8.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-308.4.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-274.18.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-274.17.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-274.12.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-274.7.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-274.3.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-238.19.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-238.12.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-238.9.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-238.5.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-238.1.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.32.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.26.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.17.4.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.17.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.11.4.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.11.3.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.11.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.8.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-194.3.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-164.15.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-164.11.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-164.10.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-164.9.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-164.6.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-164.2.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-128.7.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-128.4.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-128.1.14.el5.i686.rpm">kernel-PAE-devel-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-128.1.10.el5.i686.rpm">kernel-PAE-devel-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-128.1.6.el5.i686.rpm">kernel-PAE-devel-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-128.1.1.el5.i686.rpm">kernel-PAE-devel-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-92.1.22.el5.i686.rpm">kernel-PAE-devel-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-92.1.18.el5.i686.rpm">kernel-PAE-devel-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-92.1.17.el5.i686.rpm">kernel-PAE-devel-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-92.1.13.el5.i686.rpm">kernel-PAE-devel-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-92.1.10.el5.i686.rpm">kernel-PAE-devel-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-92.1.6.el5.i686.rpm">kernel-PAE-devel-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-53.1.21.el5.i686.rpm">kernel-PAE-devel-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-53.1.19.el5.i686.rpm">kernel-PAE-devel-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-53.1.14.el5.i686.rpm">kernel-PAE-devel-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-53.1.13.el5.i686.rpm">kernel-PAE-devel-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-PAE-devel-2.6.18-53.1.6.el5.i686.rpm">kernel-PAE-devel-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-debug.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-debug.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-debug<br /> <strong>Summary:</strong> The Linux kernel compiled with extra debugging enabled. </p> <p> <strong>Description:</strong><br /> The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. This variant of the kernel has numerous debugging options enabled. It should only be installed when trying to gather additional information on kernel bugs, as some of these options impact performance noticably. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-419.el5.i686.rpm">kernel-debug-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-417.el5.i686.rpm">kernel-debug-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-416.el5.i686.rpm">kernel-debug-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-409.el5.i686.rpm">kernel-debug-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-408.el5.i686.rpm">kernel-debug-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-406.el5.i686.rpm">kernel-debug-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-404.el5.i686.rpm">kernel-debug-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-402.el5.i686.rpm">kernel-debug-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-400.1.1.el5.i686.rpm">kernel-debug-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-400.el5.i686.rpm">kernel-debug-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.12.1.el5.i686.rpm">kernel-debug-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.11.1.el5.i686.rpm">kernel-debug-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.9.1.el5.i686.rpm">kernel-debug-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.8.1.el5.i686.rpm">kernel-debug-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.6.1.el5.i686.rpm">kernel-debug-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.4.1.el5.i686.rpm">kernel-debug-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">20.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.3.1.el5.i686.rpm">kernel-debug-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.1.2.el5.i686.rpm">kernel-debug-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-371.el5.i686.rpm">kernel-debug-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.18.1.el5.i686.rpm">kernel-debug-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.16.1.el5.i686.rpm">kernel-debug-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.12.1.el5.i686.rpm">kernel-debug-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.6.1.el5.i686.rpm">kernel-debug-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.4.1.el5.i686.rpm">kernel-debug-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.3.1.el5.i686.rpm">kernel-debug-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.2.1.el5.i686.rpm">kernel-debug-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-348.1.1.el5.i686.rpm">kernel-debug-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">20.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.24.1.el5.i686.rpm">kernel-debug-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.20.1.el5.i686.rpm">kernel-debug-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.16.1.el5.i686.rpm">kernel-debug-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.13.1.el5.i686.rpm">kernel-debug-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.11.1.el5.i686.rpm">kernel-debug-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.8.2.el5.i686.rpm">kernel-debug-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.8.1.el5.i686.rpm">kernel-debug-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-308.4.1.el5.i686.rpm">kernel-debug-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">19.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-274.18.1.el5.i686.rpm">kernel-debug-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">18.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-274.17.1.el5.i686.rpm">kernel-debug-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">18.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-274.12.1.el5.i686.rpm">kernel-debug-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">18.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-274.7.1.el5.i686.rpm">kernel-debug-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">18.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-274.3.1.el5.i686.rpm">kernel-debug-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">18.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-238.19.1.el5.i686.rpm">kernel-debug-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">17.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-238.12.1.el5.i686.rpm">kernel-debug-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">17.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-238.9.1.el5.i686.rpm">kernel-debug-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">17.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-238.5.1.el5.i686.rpm">kernel-debug-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">17.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-238.1.1.el5.i686.rpm">kernel-debug-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">17.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.32.1.el5.i686.rpm">kernel-debug-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.26.1.el5.i686.rpm">kernel-debug-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.17.4.el5.i686.rpm">kernel-debug-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.17.1.el5.i686.rpm">kernel-debug-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.11.4.el5.i686.rpm">kernel-debug-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.11.3.el5.i686.rpm">kernel-debug-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.11.1.el5.i686.rpm">kernel-debug-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.8.1.el5.i686.rpm">kernel-debug-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-194.3.1.el5.i686.rpm">kernel-debug-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">17.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-164.15.1.el5.i686.rpm">kernel-debug-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">16.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-164.11.1.el5.i686.rpm">kernel-debug-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">16.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-164.10.1.el5.i686.rpm">kernel-debug-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">16.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-164.9.1.el5.i686.rpm">kernel-debug-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">16.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-164.6.1.el5.i686.rpm">kernel-debug-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">16.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-164.2.1.el5.i686.rpm">kernel-debug-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">16.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-128.7.1.el5.i686.rpm">kernel-debug-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">15.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-128.4.1.el5.i686.rpm">kernel-debug-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">15.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-128.1.14.el5.i686.rpm">kernel-debug-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">15.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-128.1.10.el5.i686.rpm">kernel-debug-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">15.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-128.1.6.el5.i686.rpm">kernel-debug-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">15.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-128.1.1.el5.i686.rpm">kernel-debug-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">15.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-92.1.22.el5.i686.rpm">kernel-debug-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">14.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-92.1.18.el5.i686.rpm">kernel-debug-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">14.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-92.1.17.el5.i686.rpm">kernel-debug-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">14.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-92.1.13.el5.i686.rpm">kernel-debug-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">14.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-92.1.10.el5.i686.rpm">kernel-debug-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">14.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-92.1.6.el5.i686.rpm">kernel-debug-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">14.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-53.1.21.el5.i686.rpm">kernel-debug-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">13.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-53.1.19.el5.i686.rpm">kernel-debug-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">13.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-53.1.14.el5.i686.rpm">kernel-debug-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">13.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-53.1.13.el5.i686.rpm">kernel-debug-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">13.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-2.6.18-53.1.6.el5.i686.rpm">kernel-debug-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">13.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-debug-devel.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-debug-devel.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-debug-devel<br /> <strong>Summary:</strong> Development package for building kernel modules to match the kernel. </p> <p> <strong>Description:</strong><br /> This package provides kernel headers and makefiles sufficient to build modules against the kernel package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-419.el5.i686.rpm">kernel-debug-devel-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-417.el5.i686.rpm">kernel-debug-devel-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-416.el5.i686.rpm">kernel-debug-devel-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-409.el5.i686.rpm">kernel-debug-devel-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-408.el5.i686.rpm">kernel-debug-devel-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-406.el5.i686.rpm">kernel-debug-devel-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-404.el5.i686.rpm">kernel-debug-devel-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-402.el5.i686.rpm">kernel-debug-devel-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-400.1.1.el5.i686.rpm">kernel-debug-devel-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-400.el5.i686.rpm">kernel-debug-devel-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.12.1.el5.i686.rpm">kernel-debug-devel-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.11.1.el5.i686.rpm">kernel-debug-devel-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.9.1.el5.i686.rpm">kernel-debug-devel-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.8.1.el5.i686.rpm">kernel-debug-devel-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.6.1.el5.i686.rpm">kernel-debug-devel-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.4.1.el5.i686.rpm">kernel-debug-devel-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.3.1.el5.i686.rpm">kernel-debug-devel-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.1.2.el5.i686.rpm">kernel-debug-devel-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-371.el5.i686.rpm">kernel-debug-devel-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.18.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.16.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.12.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.6.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.4.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.3.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.2.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-348.1.1.el5.i686.rpm">kernel-debug-devel-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.24.1.el5.i686.rpm">kernel-debug-devel-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.20.1.el5.i686.rpm">kernel-debug-devel-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.16.1.el5.i686.rpm">kernel-debug-devel-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.13.1.el5.i686.rpm">kernel-debug-devel-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.11.1.el5.i686.rpm">kernel-debug-devel-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.8.2.el5.i686.rpm">kernel-debug-devel-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.8.1.el5.i686.rpm">kernel-debug-devel-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-308.4.1.el5.i686.rpm">kernel-debug-devel-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-274.18.1.el5.i686.rpm">kernel-debug-devel-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-274.17.1.el5.i686.rpm">kernel-debug-devel-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-274.12.1.el5.i686.rpm">kernel-debug-devel-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-274.7.1.el5.i686.rpm">kernel-debug-devel-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-274.3.1.el5.i686.rpm">kernel-debug-devel-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-238.19.1.el5.i686.rpm">kernel-debug-devel-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-238.12.1.el5.i686.rpm">kernel-debug-devel-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-238.9.1.el5.i686.rpm">kernel-debug-devel-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-238.5.1.el5.i686.rpm">kernel-debug-devel-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-238.1.1.el5.i686.rpm">kernel-debug-devel-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.32.1.el5.i686.rpm">kernel-debug-devel-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.26.1.el5.i686.rpm">kernel-debug-devel-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.17.4.el5.i686.rpm">kernel-debug-devel-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.17.1.el5.i686.rpm">kernel-debug-devel-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.11.4.el5.i686.rpm">kernel-debug-devel-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.11.3.el5.i686.rpm">kernel-debug-devel-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.11.1.el5.i686.rpm">kernel-debug-devel-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.8.1.el5.i686.rpm">kernel-debug-devel-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-194.3.1.el5.i686.rpm">kernel-debug-devel-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-164.15.1.el5.i686.rpm">kernel-debug-devel-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-164.11.1.el5.i686.rpm">kernel-debug-devel-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-164.10.1.el5.i686.rpm">kernel-debug-devel-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-164.9.1.el5.i686.rpm">kernel-debug-devel-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-164.6.1.el5.i686.rpm">kernel-debug-devel-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-164.2.1.el5.i686.rpm">kernel-debug-devel-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-128.7.1.el5.i686.rpm">kernel-debug-devel-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-128.4.1.el5.i686.rpm">kernel-debug-devel-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-128.1.14.el5.i686.rpm">kernel-debug-devel-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-128.1.10.el5.i686.rpm">kernel-debug-devel-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-128.1.6.el5.i686.rpm">kernel-debug-devel-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-128.1.1.el5.i686.rpm">kernel-debug-devel-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-92.1.22.el5.i686.rpm">kernel-debug-devel-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-92.1.18.el5.i686.rpm">kernel-debug-devel-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-92.1.17.el5.i686.rpm">kernel-debug-devel-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-92.1.13.el5.i686.rpm">kernel-debug-devel-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-92.1.10.el5.i686.rpm">kernel-debug-devel-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-92.1.6.el5.i686.rpm">kernel-debug-devel-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-53.1.21.el5.i686.rpm">kernel-debug-devel-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-53.1.19.el5.i686.rpm">kernel-debug-devel-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-53.1.14.el5.i686.rpm">kernel-debug-devel-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-53.1.13.el5.i686.rpm">kernel-debug-devel-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-debug-devel-2.6.18-53.1.6.el5.i686.rpm">kernel-debug-devel-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-devel.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-devel.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-devel<br /> <strong>Summary:</strong> Development package for building kernel modules to match the kernel. </p> <p> <strong>Description:</strong><br /> This package provides kernel headers and makefiles sufficient to build modules against the kernel package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-419.el5.i686.rpm">kernel-devel-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-417.el5.i686.rpm">kernel-devel-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-416.el5.i686.rpm">kernel-devel-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-409.el5.i686.rpm">kernel-devel-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-408.el5.i686.rpm">kernel-devel-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-406.el5.i686.rpm">kernel-devel-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-404.el5.i686.rpm">kernel-devel-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-402.el5.i686.rpm">kernel-devel-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-400.1.1.el5.i686.rpm">kernel-devel-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-400.el5.i686.rpm">kernel-devel-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.12.1.el5.i686.rpm">kernel-devel-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.11.1.el5.i686.rpm">kernel-devel-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.9.1.el5.i686.rpm">kernel-devel-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.8.1.el5.i686.rpm">kernel-devel-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.6.1.el5.i686.rpm">kernel-devel-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.4.1.el5.i686.rpm">kernel-devel-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.3.1.el5.i686.rpm">kernel-devel-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.1.2.el5.i686.rpm">kernel-devel-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-371.el5.i686.rpm">kernel-devel-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.18.1.el5.i686.rpm">kernel-devel-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.16.1.el5.i686.rpm">kernel-devel-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.12.1.el5.i686.rpm">kernel-devel-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.6.1.el5.i686.rpm">kernel-devel-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.4.1.el5.i686.rpm">kernel-devel-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.3.1.el5.i686.rpm">kernel-devel-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.2.1.el5.i686.rpm">kernel-devel-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-348.1.1.el5.i686.rpm">kernel-devel-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.24.1.el5.i686.rpm">kernel-devel-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.20.1.el5.i686.rpm">kernel-devel-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.16.1.el5.i686.rpm">kernel-devel-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.13.1.el5.i686.rpm">kernel-devel-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.11.1.el5.i686.rpm">kernel-devel-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.8.2.el5.i686.rpm">kernel-devel-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.8.1.el5.i686.rpm">kernel-devel-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-308.4.1.el5.i686.rpm">kernel-devel-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-274.18.1.el5.i686.rpm">kernel-devel-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-274.17.1.el5.i686.rpm">kernel-devel-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-274.12.1.el5.i686.rpm">kernel-devel-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-274.7.1.el5.i686.rpm">kernel-devel-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-274.3.1.el5.i686.rpm">kernel-devel-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-238.19.1.el5.i686.rpm">kernel-devel-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-238.12.1.el5.i686.rpm">kernel-devel-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-238.9.1.el5.i686.rpm">kernel-devel-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-238.5.1.el5.i686.rpm">kernel-devel-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-238.1.1.el5.i686.rpm">kernel-devel-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.32.1.el5.i686.rpm">kernel-devel-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.26.1.el5.i686.rpm">kernel-devel-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.17.4.el5.i686.rpm">kernel-devel-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.17.1.el5.i686.rpm">kernel-devel-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.11.4.el5.i686.rpm">kernel-devel-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.11.3.el5.i686.rpm">kernel-devel-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.11.1.el5.i686.rpm">kernel-devel-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.8.1.el5.i686.rpm">kernel-devel-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-194.3.1.el5.i686.rpm">kernel-devel-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-164.15.1.el5.i686.rpm">kernel-devel-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-164.11.1.el5.i686.rpm">kernel-devel-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-164.10.1.el5.i686.rpm">kernel-devel-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">5.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-164.9.1.el5.i686.rpm">kernel-devel-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">5.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-164.6.1.el5.i686.rpm">kernel-devel-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">5.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-164.2.1.el5.i686.rpm">kernel-devel-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">5.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-128.7.1.el5.i686.rpm">kernel-devel-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-128.4.1.el5.i686.rpm">kernel-devel-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-128.1.14.el5.i686.rpm">kernel-devel-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-128.1.10.el5.i686.rpm">kernel-devel-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-128.1.6.el5.i686.rpm">kernel-devel-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-128.1.1.el5.i686.rpm">kernel-devel-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-92.1.22.el5.i686.rpm">kernel-devel-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-92.1.18.el5.i686.rpm">kernel-devel-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-92.1.17.el5.i686.rpm">kernel-devel-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-92.1.13.el5.i686.rpm">kernel-devel-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-92.1.10.el5.i686.rpm">kernel-devel-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-92.1.6.el5.i686.rpm">kernel-devel-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-53.1.21.el5.i686.rpm">kernel-devel-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-53.1.19.el5.i686.rpm">kernel-devel-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-53.1.14.el5.i686.rpm">kernel-devel-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-53.1.13.el5.i686.rpm">kernel-devel-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-devel-2.6.18-53.1.6.el5.i686.rpm">kernel-devel-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-doc.html+0:2.6.18-419.el5.noarchhttp://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-doc.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-doc<br /> <strong>Summary:</strong> Various documentation bits found in the kernel source. </p> <p> <strong>Description:</strong><br /> This package contains documentation files from the kernel source. Various bits of information about the Linux kernel and the device drivers shipped with it are documented in these files. You'll want to install this package if you need a reference to the options that can be passed to Linux kernel modules at load time. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-419.el5.noarch.rpm">kernel-doc-2.6.18-419.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-417.el5.noarch.rpm">kernel-doc-2.6.18-417.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-416.el5.noarch.rpm">kernel-doc-2.6.18-416.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-409.el5.noarch.rpm">kernel-doc-2.6.18-409.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-408.el5.noarch.rpm">kernel-doc-2.6.18-408.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-406.el5.noarch.rpm">kernel-doc-2.6.18-406.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-404.el5.noarch.rpm">kernel-doc-2.6.18-404.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-402.el5.noarch.rpm">kernel-doc-2.6.18-402.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-400.1.1.el5.noarch.rpm">kernel-doc-2.6.18-400.1.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-400.el5.noarch.rpm">kernel-doc-2.6.18-400.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.12.1.el5.noarch.rpm">kernel-doc-2.6.18-371.12.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.11.1.el5.noarch.rpm">kernel-doc-2.6.18-371.11.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.9.1.el5.noarch.rpm">kernel-doc-2.6.18-371.9.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.8.1.el5.noarch.rpm">kernel-doc-2.6.18-371.8.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.6.1.el5.noarch.rpm">kernel-doc-2.6.18-371.6.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.4.1.el5.noarch.rpm">kernel-doc-2.6.18-371.4.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.3.1.el5.noarch.rpm">kernel-doc-2.6.18-371.3.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.1.2.el5.noarch.rpm">kernel-doc-2.6.18-371.1.2.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-371.el5.noarch.rpm">kernel-doc-2.6.18-371.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.18.1.el5.noarch.rpm">kernel-doc-2.6.18-348.18.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.16.1.el5.noarch.rpm">kernel-doc-2.6.18-348.16.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.12.1.el5.noarch.rpm">kernel-doc-2.6.18-348.12.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.6.1.el5.noarch.rpm">kernel-doc-2.6.18-348.6.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.4.1.el5.noarch.rpm">kernel-doc-2.6.18-348.4.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.3.1.el5.noarch.rpm">kernel-doc-2.6.18-348.3.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.2.1.el5.noarch.rpm">kernel-doc-2.6.18-348.2.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-348.1.1.el5.noarch.rpm">kernel-doc-2.6.18-348.1.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.24.1.el5.noarch.rpm">kernel-doc-2.6.18-308.24.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.20.1.el5.noarch.rpm">kernel-doc-2.6.18-308.20.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.16.1.el5.noarch.rpm">kernel-doc-2.6.18-308.16.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.13.1.el5.noarch.rpm">kernel-doc-2.6.18-308.13.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.11.1.el5.noarch.rpm">kernel-doc-2.6.18-308.11.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.8.2.el5.noarch.rpm">kernel-doc-2.6.18-308.8.2.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.8.1.el5.noarch.rpm">kernel-doc-2.6.18-308.8.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-308.4.1.el5.noarch.rpm">kernel-doc-2.6.18-308.4.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-274.18.1.el5.noarch.rpm">kernel-doc-2.6.18-274.18.1.el5.noarch</a> [<span style="white-space: nowrap">3.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-274.17.1.el5.noarch.rpm">kernel-doc-2.6.18-274.17.1.el5.noarch</a> [<span style="white-space: nowrap">3.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-274.12.1.el5.noarch.rpm">kernel-doc-2.6.18-274.12.1.el5.noarch</a> [<span style="white-space: nowrap">3.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-274.7.1.el5.noarch.rpm">kernel-doc-2.6.18-274.7.1.el5.noarch</a> [<span style="white-space: nowrap">3.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-274.3.1.el5.noarch.rpm">kernel-doc-2.6.18-274.3.1.el5.noarch</a> [<span style="white-space: nowrap">3.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-238.19.1.el5.noarch.rpm">kernel-doc-2.6.18-238.19.1.el5.noarch</a> [<span style="white-space: nowrap">3.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-238.12.1.el5.noarch.rpm">kernel-doc-2.6.18-238.12.1.el5.noarch</a> [<span style="white-space: nowrap">3.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-238.9.1.el5.noarch.rpm">kernel-doc-2.6.18-238.9.1.el5.noarch</a> [<span style="white-space: nowrap">3.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-238.5.1.el5.noarch.rpm">kernel-doc-2.6.18-238.5.1.el5.noarch</a> [<span style="white-space: nowrap">3.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-238.1.1.el5.noarch.rpm">kernel-doc-2.6.18-238.1.1.el5.noarch</a> [<span style="white-space: nowrap">3.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.32.1.el5.noarch.rpm">kernel-doc-2.6.18-194.32.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.26.1.el5.noarch.rpm">kernel-doc-2.6.18-194.26.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.17.4.el5.noarch.rpm">kernel-doc-2.6.18-194.17.4.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.17.1.el5.noarch.rpm">kernel-doc-2.6.18-194.17.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.11.4.el5.noarch.rpm">kernel-doc-2.6.18-194.11.4.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.11.3.el5.noarch.rpm">kernel-doc-2.6.18-194.11.3.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.11.1.el5.noarch.rpm">kernel-doc-2.6.18-194.11.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.8.1.el5.noarch.rpm">kernel-doc-2.6.18-194.8.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-194.3.1.el5.noarch.rpm">kernel-doc-2.6.18-194.3.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-164.15.1.el5.noarch.rpm">kernel-doc-2.6.18-164.15.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-164.11.1.el5.noarch.rpm">kernel-doc-2.6.18-164.11.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-164.10.1.el5.noarch.rpm">kernel-doc-2.6.18-164.10.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-164.9.1.el5.noarch.rpm">kernel-doc-2.6.18-164.9.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-164.6.1.el5.noarch.rpm">kernel-doc-2.6.18-164.6.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-164.2.1.el5.noarch.rpm">kernel-doc-2.6.18-164.2.1.el5.noarch</a> [<span style="white-space: nowrap">3.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-128.7.1.el5.noarch.rpm">kernel-doc-2.6.18-128.7.1.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-128.4.1.el5.noarch.rpm">kernel-doc-2.6.18-128.4.1.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-128.1.14.el5.noarch.rpm">kernel-doc-2.6.18-128.1.14.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-128.1.10.el5.noarch.rpm">kernel-doc-2.6.18-128.1.10.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-128.1.6.el5.noarch.rpm">kernel-doc-2.6.18-128.1.6.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-128.1.1.el5.noarch.rpm">kernel-doc-2.6.18-128.1.1.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-92.1.22.el5.noarch.rpm">kernel-doc-2.6.18-92.1.22.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-92.1.18.el5.noarch.rpm">kernel-doc-2.6.18-92.1.18.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-92.1.17.el5.noarch.rpm">kernel-doc-2.6.18-92.1.17.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-92.1.13.el5.noarch.rpm">kernel-doc-2.6.18-92.1.13.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-92.1.10.el5.noarch.rpm">kernel-doc-2.6.18-92.1.10.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-92.1.6.el5.noarch.rpm">kernel-doc-2.6.18-92.1.6.el5.noarch</a> [<span style="white-space: nowrap">2.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-53.1.21.el5.noarch.rpm">kernel-doc-2.6.18-53.1.21.el5.noarch</a> [<span style="white-space: nowrap">2.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-53.1.19.el5.noarch.rpm">kernel-doc-2.6.18-53.1.19.el5.noarch</a> [<span style="white-space: nowrap">2.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-53.1.14.el5.noarch.rpm">kernel-doc-2.6.18-53.1.14.el5.noarch</a> [<span style="white-space: nowrap">2.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-53.1.13.el5.noarch.rpm">kernel-doc-2.6.18-53.1.13.el5.noarch</a> [<span style="white-space: nowrap">2.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-doc-2.6.18-53.1.6.el5.noarch.rpm">kernel-doc-2.6.18-53.1.6.el5.noarch</a> [<span style="white-space: nowrap">2.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-headers.html+0:2.6.18-419.el5.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-headers.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-headers<br /> <strong>Summary:</strong> Header files for the Linux kernel for use by glibc </p> <p> <strong>Description:</strong><br /> Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-419.el5.i386.rpm">kernel-headers-2.6.18-419.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-417.el5.i386.rpm">kernel-headers-2.6.18-417.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-416.el5.i386.rpm">kernel-headers-2.6.18-416.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-409.el5.i386.rpm">kernel-headers-2.6.18-409.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-408.el5.i386.rpm">kernel-headers-2.6.18-408.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-406.el5.i386.rpm">kernel-headers-2.6.18-406.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-404.el5.i386.rpm">kernel-headers-2.6.18-404.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-402.el5.i386.rpm">kernel-headers-2.6.18-402.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-400.1.1.el5.i386.rpm">kernel-headers-2.6.18-400.1.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-400.el5.i386.rpm">kernel-headers-2.6.18-400.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.12.1.el5.i386.rpm">kernel-headers-2.6.18-371.12.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.11.1.el5.i386.rpm">kernel-headers-2.6.18-371.11.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.9.1.el5.i386.rpm">kernel-headers-2.6.18-371.9.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.8.1.el5.i386.rpm">kernel-headers-2.6.18-371.8.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.6.1.el5.i386.rpm">kernel-headers-2.6.18-371.6.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.4.1.el5.i386.rpm">kernel-headers-2.6.18-371.4.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.3.1.el5.i386.rpm">kernel-headers-2.6.18-371.3.1.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.1.2.el5.i386.rpm">kernel-headers-2.6.18-371.1.2.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-371.el5.i386.rpm">kernel-headers-2.6.18-371.el5.i386</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.18.1.el5.i386.rpm">kernel-headers-2.6.18-348.18.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.16.1.el5.i386.rpm">kernel-headers-2.6.18-348.16.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.12.1.el5.i386.rpm">kernel-headers-2.6.18-348.12.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.6.1.el5.i386.rpm">kernel-headers-2.6.18-348.6.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.4.1.el5.i386.rpm">kernel-headers-2.6.18-348.4.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.3.1.el5.i386.rpm">kernel-headers-2.6.18-348.3.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.2.1.el5.i386.rpm">kernel-headers-2.6.18-348.2.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-348.1.1.el5.i386.rpm">kernel-headers-2.6.18-348.1.1.el5.i386</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.24.1.el5.i386.rpm">kernel-headers-2.6.18-308.24.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.20.1.el5.i386.rpm">kernel-headers-2.6.18-308.20.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.16.1.el5.i386.rpm">kernel-headers-2.6.18-308.16.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.13.1.el5.i386.rpm">kernel-headers-2.6.18-308.13.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.11.1.el5.i386.rpm">kernel-headers-2.6.18-308.11.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.8.2.el5.i386.rpm">kernel-headers-2.6.18-308.8.2.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.8.1.el5.i386.rpm">kernel-headers-2.6.18-308.8.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-308.4.1.el5.i386.rpm">kernel-headers-2.6.18-308.4.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-274.18.1.el5.i386.rpm">kernel-headers-2.6.18-274.18.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-274.17.1.el5.i386.rpm">kernel-headers-2.6.18-274.17.1.el5.i386</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-274.12.1.el5.i386.rpm">kernel-headers-2.6.18-274.12.1.el5.i386</a> [<span style="white-space: nowrap">1.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-274.7.1.el5.i386.rpm">kernel-headers-2.6.18-274.7.1.el5.i386</a> [<span style="white-space: nowrap">1.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-274.3.1.el5.i386.rpm">kernel-headers-2.6.18-274.3.1.el5.i386</a> [<span style="white-space: nowrap">1.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-238.19.1.el5.i386.rpm">kernel-headers-2.6.18-238.19.1.el5.i386</a> [<span style="white-space: nowrap">1.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-238.12.1.el5.i386.rpm">kernel-headers-2.6.18-238.12.1.el5.i386</a> [<span style="white-space: nowrap">1.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-238.9.1.el5.i386.rpm">kernel-headers-2.6.18-238.9.1.el5.i386</a> [<span style="white-space: nowrap">1.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-238.5.1.el5.i386.rpm">kernel-headers-2.6.18-238.5.1.el5.i386</a> [<span style="white-space: nowrap">1.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-238.1.1.el5.i386.rpm">kernel-headers-2.6.18-238.1.1.el5.i386</a> [<span style="white-space: nowrap">1.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-238.el5.i386.rpm">kernel-headers-2.6.18-238.el5.i386</a> [<span style="white-space: nowrap">1.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jarod Wilson (2010-12-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: remove extra call to pci_map_page (John Feeney) [663509] - [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.32.1.el5.i386.rpm">kernel-headers-2.6.18-194.32.1.el5.i386</a> [<span style="white-space: nowrap">1.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.26.1.el5.i386.rpm">kernel-headers-2.6.18-194.26.1.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.17.4.el5.i386.rpm">kernel-headers-2.6.18-194.17.4.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.17.1.el5.i386.rpm">kernel-headers-2.6.18-194.17.1.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.11.4.el5.i386.rpm">kernel-headers-2.6.18-194.11.4.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.11.3.el5.i386.rpm">kernel-headers-2.6.18-194.11.3.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.11.1.el5.i386.rpm">kernel-headers-2.6.18-194.11.1.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.8.1.el5.i386.rpm">kernel-headers-2.6.18-194.8.1.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-194.3.1.el5.i386.rpm">kernel-headers-2.6.18-194.3.1.el5.i386</a> [<span style="white-space: nowrap">1.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-164.15.1.el5.i386.rpm">kernel-headers-2.6.18-164.15.1.el5.i386</a> [<span style="white-space: nowrap">1007 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-164.11.1.el5.i386.rpm">kernel-headers-2.6.18-164.11.1.el5.i386</a> [<span style="white-space: nowrap">1004 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-164.10.1.el5.i386.rpm">kernel-headers-2.6.18-164.10.1.el5.i386</a> [<span style="white-space: nowrap">1002 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-164.9.1.el5.i386.rpm">kernel-headers-2.6.18-164.9.1.el5.i386</a> [<span style="white-space: nowrap">1001 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-164.6.1.el5.i386.rpm">kernel-headers-2.6.18-164.6.1.el5.i386</a> [<span style="white-space: nowrap">997 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-164.2.1.el5.i386.rpm">kernel-headers-2.6.18-164.2.1.el5.i386</a> [<span style="white-space: nowrap">995 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-128.7.1.el5.i386.rpm">kernel-headers-2.6.18-128.7.1.el5.i386</a> [<span style="white-space: nowrap">922 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-128.4.1.el5.i386.rpm">kernel-headers-2.6.18-128.4.1.el5.i386</a> [<span style="white-space: nowrap">922 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-128.1.14.el5.i386.rpm">kernel-headers-2.6.18-128.1.14.el5.i386</a> [<span style="white-space: nowrap">919 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-128.1.10.el5.i386.rpm">kernel-headers-2.6.18-128.1.10.el5.i386</a> [<span style="white-space: nowrap">917 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-128.1.6.el5.i386.rpm">kernel-headers-2.6.18-128.1.6.el5.i386</a> [<span style="white-space: nowrap">915 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-128.1.1.el5.i386.rpm">kernel-headers-2.6.18-128.1.1.el5.i386</a> [<span style="white-space: nowrap">927 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-92.1.22.el5.i386.rpm">kernel-headers-2.6.18-92.1.22.el5.i386</a> [<span style="white-space: nowrap">852 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-92.1.18.el5.i386.rpm">kernel-headers-2.6.18-92.1.18.el5.i386</a> [<span style="white-space: nowrap">850 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-92.1.17.el5.i386.rpm">kernel-headers-2.6.18-92.1.17.el5.i386</a> [<span style="white-space: nowrap">849 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-92.1.13.el5.i386.rpm">kernel-headers-2.6.18-92.1.13.el5.i386</a> [<span style="white-space: nowrap">847 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-92.1.10.el5.i386.rpm">kernel-headers-2.6.18-92.1.10.el5.i386</a> [<span style="white-space: nowrap">846 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-92.1.6.el5.i386.rpm">kernel-headers-2.6.18-92.1.6.el5.i386</a> [<span style="white-space: nowrap">844 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-53.1.21.el5.i386.rpm">kernel-headers-2.6.18-53.1.21.el5.i386</a> [<span style="white-space: nowrap">787 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-53.1.19.el5.i386.rpm">kernel-headers-2.6.18-53.1.19.el5.i386</a> [<span style="white-space: nowrap">787 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-53.1.14.el5.i386.rpm">kernel-headers-2.6.18-53.1.14.el5.i386</a> [<span style="white-space: nowrap">784 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-53.1.13.el5.i386.rpm">kernel-headers-2.6.18-53.1.13.el5.i386</a> [<span style="white-space: nowrap">784 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-headers-2.6.18-53.1.6.el5.i386.rpm">kernel-headers-2.6.18-53.1.6.el5.i386</a> [<span style="white-space: nowrap">782 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-xen.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-xen.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-xen<br /> <strong>Summary:</strong> The Linux kernel compiled for Xen VM operations </p> <p> <strong>Description:</strong><br /> This package includes a Xen hypervisor and a version of the Linux kernel which can run Xen VMs for privileged hosts and unprivileged paravirtualized hosts. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-419.el5.i686.rpm">kernel-xen-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-417.el5.i686.rpm">kernel-xen-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-416.el5.i686.rpm">kernel-xen-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-409.el5.i686.rpm">kernel-xen-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-408.el5.i686.rpm">kernel-xen-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-406.el5.i686.rpm">kernel-xen-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-404.el5.i686.rpm">kernel-xen-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-402.el5.i686.rpm">kernel-xen-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-400.1.1.el5.i686.rpm">kernel-xen-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-400.el5.i686.rpm">kernel-xen-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">21.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.12.1.el5.i686.rpm">kernel-xen-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.11.1.el5.i686.rpm">kernel-xen-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.9.1.el5.i686.rpm">kernel-xen-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.8.1.el5.i686.rpm">kernel-xen-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.6.1.el5.i686.rpm">kernel-xen-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.4.1.el5.i686.rpm">kernel-xen-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.3.1.el5.i686.rpm">kernel-xen-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.1.2.el5.i686.rpm">kernel-xen-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-371.el5.i686.rpm">kernel-xen-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.18.1.el5.i686.rpm">kernel-xen-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.16.1.el5.i686.rpm">kernel-xen-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.12.1.el5.i686.rpm">kernel-xen-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.6.1.el5.i686.rpm">kernel-xen-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.4.1.el5.i686.rpm">kernel-xen-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.3.1.el5.i686.rpm">kernel-xen-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.2.1.el5.i686.rpm">kernel-xen-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-348.1.1.el5.i686.rpm">kernel-xen-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">20.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.24.1.el5.i686.rpm">kernel-xen-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">20.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.20.1.el5.i686.rpm">kernel-xen-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">20.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.16.1.el5.i686.rpm">kernel-xen-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">20.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.13.1.el5.i686.rpm">kernel-xen-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">20.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.11.1.el5.i686.rpm">kernel-xen-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">20.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.8.2.el5.i686.rpm">kernel-xen-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">20.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.8.1.el5.i686.rpm">kernel-xen-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">20.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-308.4.1.el5.i686.rpm">kernel-xen-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">20.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-274.18.1.el5.i686.rpm">kernel-xen-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">19.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-274.17.1.el5.i686.rpm">kernel-xen-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">19.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-274.12.1.el5.i686.rpm">kernel-xen-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">19.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-274.7.1.el5.i686.rpm">kernel-xen-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">19.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-274.3.1.el5.i686.rpm">kernel-xen-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">19.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-238.19.1.el5.i686.rpm">kernel-xen-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-238.12.1.el5.i686.rpm">kernel-xen-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-238.9.1.el5.i686.rpm">kernel-xen-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-238.5.1.el5.i686.rpm">kernel-xen-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-238.1.1.el5.i686.rpm">kernel-xen-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">18.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.32.1.el5.i686.rpm">kernel-xen-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">18.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.26.1.el5.i686.rpm">kernel-xen-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.17.4.el5.i686.rpm">kernel-xen-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.17.1.el5.i686.rpm">kernel-xen-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.11.4.el5.i686.rpm">kernel-xen-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.11.3.el5.i686.rpm">kernel-xen-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.11.1.el5.i686.rpm">kernel-xen-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.8.1.el5.i686.rpm">kernel-xen-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-194.3.1.el5.i686.rpm">kernel-xen-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">18.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-164.15.1.el5.i686.rpm">kernel-xen-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">16.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-164.11.1.el5.i686.rpm">kernel-xen-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">16.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-164.10.1.el5.i686.rpm">kernel-xen-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">16.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-164.9.1.el5.i686.rpm">kernel-xen-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">16.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-164.6.1.el5.i686.rpm">kernel-xen-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">16.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-164.2.1.el5.i686.rpm">kernel-xen-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">16.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-128.7.1.el5.i686.rpm">kernel-xen-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">15.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-128.4.1.el5.i686.rpm">kernel-xen-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">15.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-128.1.14.el5.i686.rpm">kernel-xen-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">15.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-128.1.10.el5.i686.rpm">kernel-xen-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">15.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-128.1.6.el5.i686.rpm">kernel-xen-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">15.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-128.1.1.el5.i686.rpm">kernel-xen-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">16.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-92.1.22.el5.i686.rpm">kernel-xen-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-92.1.18.el5.i686.rpm">kernel-xen-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-92.1.17.el5.i686.rpm">kernel-xen-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">15.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-92.1.13.el5.i686.rpm">kernel-xen-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-92.1.10.el5.i686.rpm">kernel-xen-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-92.1.6.el5.i686.rpm">kernel-xen-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">14.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-53.1.21.el5.i686.rpm">kernel-xen-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">14.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-53.1.19.el5.i686.rpm">kernel-xen-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">14.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-53.1.14.el5.i686.rpm">kernel-xen-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">14.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-53.1.13.el5.i686.rpm">kernel-xen-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">14.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-2.6.18-53.1.6.el5.i686.rpm">kernel-xen-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">14.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-xen-devel.html+0:2.6.18-419.el5.i686http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/kernel-xen-devel.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-xen-devel<br /> <strong>Summary:</strong> Development package for building kernel modules to match the kernel. </p> <p> <strong>Description:</strong><br /> This package provides kernel headers and makefiles sufficient to build modules against the kernel package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-419.el5.i686.rpm">kernel-xen-devel-2.6.18-419.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-417.el5.i686.rpm">kernel-xen-devel-2.6.18-417.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-416.el5.i686.rpm">kernel-xen-devel-2.6.18-416.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-409.el5.i686.rpm">kernel-xen-devel-2.6.18-409.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-408.el5.i686.rpm">kernel-xen-devel-2.6.18-408.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-406.el5.i686.rpm">kernel-xen-devel-2.6.18-406.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-404.el5.i686.rpm">kernel-xen-devel-2.6.18-404.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-402.el5.i686.rpm">kernel-xen-devel-2.6.18-402.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-400.1.1.el5.i686.rpm">kernel-xen-devel-2.6.18-400.1.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-400.el5.i686.rpm">kernel-xen-devel-2.6.18-400.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.12.1.el5.i686.rpm">kernel-xen-devel-2.6.18-371.12.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.11.1.el5.i686.rpm">kernel-xen-devel-2.6.18-371.11.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.9.1.el5.i686.rpm">kernel-xen-devel-2.6.18-371.9.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.8.1.el5.i686.rpm">kernel-xen-devel-2.6.18-371.8.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.6.1.el5.i686.rpm">kernel-xen-devel-2.6.18-371.6.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.4.1.el5.i686.rpm">kernel-xen-devel-2.6.18-371.4.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.3.1.el5.i686.rpm">kernel-xen-devel-2.6.18-371.3.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.1.2.el5.i686.rpm">kernel-xen-devel-2.6.18-371.1.2.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-371.el5.i686.rpm">kernel-xen-devel-2.6.18-371.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.18.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.18.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.16.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.16.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.12.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.12.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.6.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.6.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.4.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.4.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.3.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.3.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.2.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.2.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-348.1.1.el5.i686.rpm">kernel-xen-devel-2.6.18-348.1.1.el5.i686</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.24.1.el5.i686.rpm">kernel-xen-devel-2.6.18-308.24.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.20.1.el5.i686.rpm">kernel-xen-devel-2.6.18-308.20.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.16.1.el5.i686.rpm">kernel-xen-devel-2.6.18-308.16.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.13.1.el5.i686.rpm">kernel-xen-devel-2.6.18-308.13.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.11.1.el5.i686.rpm">kernel-xen-devel-2.6.18-308.11.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.8.2.el5.i686.rpm">kernel-xen-devel-2.6.18-308.8.2.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.8.1.el5.i686.rpm">kernel-xen-devel-2.6.18-308.8.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-308.4.1.el5.i686.rpm">kernel-xen-devel-2.6.18-308.4.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ipv6: fix skb double free in xfrm6_tunnel (Jiri Benc) [752305 743375] {CVE-2012-1583}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-274.18.1.el5.i686.rpm">kernel-xen-devel-2.6.18-274.18.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] Move exit_robust_list to mm_release, null lists on cleanup (Laszlo Ersek) [771774 750283] {CVE-2012-0028} - [block] disable SG_IO ioctls on virtio-blk devices (Paolo Bonzini) [773322 771592] - [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - [fs] ext4: fix BUG_ON() in ext4_ext_insert_extent() (Lukas Czerner) [747943 747946] {CVE-2011-3638} - [scsi] don't fail scans when host is in recovery (Rob Evers) [772162 657345] - [fs] jbd2: clear BH_Delay &amp; BH_Unwritten in journal_unmap_buffer (Eric Sandeen) [783477 783284] {CVE-2011-4086} - [net] igmp: Avoid zero delay when receiving odd mixture of IGMP queries (Jiri Pirko) [772868 772869] {CVE-2012-0207}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-274.17.1.el5.i686.rpm">kernel-xen-devel-2.6.18-274.17.1.el5.i686</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2012-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [block] add and use scsi_blk_cmd_ioctl (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [block] fail SCSI passthrough ioctls on partition devices (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [dm] do not forward ioctls from logical volumes to the underlying device (Paolo Bonzini) [752385 752386] {CVE-2011-4127} - Revert: [scsi] fix 32-on-64 block device ioctls (Paolo Bonzini) [752385 752386] {CVE-2011-4127}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-274.12.1.el5.i686.rpm">kernel-xen-devel-2.6.18-274.12.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [virt] kvm: fix lost tick accounting for 32 bit kvm-clock (Rik van Riel) [747875 731599]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-274.7.1.el5.i686.rpm">kernel-xen-devel-2.6.18-274.7.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] passthrough: block VT-d MSI trap injection (Paolo Bonzini) [716301 716302] {CVE-2011-1898}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-274.3.1.el5.i686.rpm">kernel-xen-devel-2.6.18-274.3.1.el5.i686</a> [<span style="white-space: nowrap">5.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2011-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] fix off-by-one shift in x86_64 __addr_ok (Laszlo Ersek) [728043 719850] {CVE-2011-2901}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-238.19.1.el5.i686.rpm">kernel-xen-devel-2.6.18-238.19.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-07-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [xen] hvm: svm support cleanups (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] hvm: secure svm_cr_access (Andrew Jones) [703715 702657] {CVE-2011-1780} - Revert: [xen] let __get_instruction_length always read into own buffer (Paolo Bonzini) [719066 717742] - Revert: [xen] remove unused argument to __get_instruction_length (Phillip Lougher) [719066 717742] - Revert: [xen] prep __get_instruction_length_from_list for partial buffers (Paolo Bonzini) [719066 717742] - Revert: [xen] disregard trailing bytes in an invalid page (Paolo Bonzini) [719066 717742]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-238.12.1.el5.i686.rpm">kernel-xen-devel-2.6.18-238.12.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2011-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [i386] Ignore spurious IPIs left over from crash kernel (Myron Stowe) [699610 692921] - [xen] fix MAX_EVTCHNS definition (Laszlo Ersek) [701242 701240] - [net] ixgbe: fix for link failure on SFP+ DA cables (Don Howard) [696181 653236] - [net] netxen: limit skb frags for non tso packet (Phillip Lougher) [699609 672368] - [block] cciss: fix lost command problem (Phillip Lougher) [696503 696153] - [fs] gfs2: fix filesystem hang caused by incorrect lock order (Robert S Peterson) [688855 656032] - [fs] gfs2: restructure reclaim of unlinked dinodes (Phillip Lougher) [688855 656032] - [fs] gfs2: unlock on gfs2_trans_begin error (Robert S Peterson) [688855 656032] - [scsi] mpt2sas: prevent heap overflows and unchecked access (Tomas Henzl) [694526 694527] {CVE-2011-1495 CVE-2011-1494} - [net] bridge/netfilter: fix ebtables information leak (Don Howard) [681325 681326] {CVE-2011-1080} - [net] bluetooth: fix sco information leak to userspace (Don Howard) [681310 681311] {CVE-2011-1078} - [fs] fix corrupted GUID partition table kernel oops (Jerome Marchand) [695979 695980] {CVE-2011-1577} - [xen] x86/domain: fix error checks in arch_set_info_guest (Laszlo Ersek) [688581 688582] {CVE-2011-1166} - [net] bridge: fix initial packet flood if !STP (Jiri Pirko) [701222 695369] - [fs] nfsd: fix auth_domain reference leak on nlm operations (J. Bruce Fields) [697448 589512] - [scsi] qla2xxx: no reset/fw-dump on CT/ELS pt req timeout (Chad Dupuis) [689700 660386] - [mm] set barrier and send tlb flush to all affected cpus (Prarit Bhargava) [696908 675793]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-238.9.1.el5.i686.rpm">kernel-xen-devel-2.6.18-238.9.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-03-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] dm-mpath: fix NULL deref when path parameter missing (Mike Snitzer) [683443 673058] - [md] dm-mpath: wait for pg_init completion on suspend (Mike Snitzer) [683443 673058] - [md] dm-mpath: hold io until all pg_inits completed (Mike Snitzer) [683443 673058] - [md] dm-mpath: skip activate_path for failed paths (Mike Snitzer) [683443 673058] - [md] dm-mpath: pass struct pgpath to pg init done (Mike Snitzer) [683443 673058] - [md] dm-mpath: prevent io from work queue while suspended (Mike Snitzer) [683443 673058] - [md] dm-mpath: add mutex to sync adding and flushing work (Mike Snitzer) [683443 673058] - [md] dm-mpath: flush workqueues before suspend completes (Mike Snitzer) [683443 673058]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-238.5.1.el5.i686.rpm">kernel-xen-devel-2.6.18-238.5.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-02-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] vdso: fix gtod via export of sysctl_vsyscall (Prarit Bhargava) [678613 673616]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-238.1.1.el5.i686.rpm">kernel-xen-devel-2.6.18-238.1.1.el5.i686</a> [<span style="white-space: nowrap">5.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2011-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] megaraid: give FW more time to recover from reset (Tomas Henzl) [667141 665427] - [fs] gfs2: fix statfs error after gfs2_grow (Robert S Peterson) [666792 660661] - [mm] prevent file lock corruption using popen(3) (Larry Woodman) [667050 664931] - [net] sctp: fix panic from bad socket lock on icmp error (Neil Horman) [665476 665477] {CVE-2010-4526}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.32.1.el5.i686.rpm">kernel-xen-devel-2.6.18-194.32.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-12-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] nfs: set lock_context field in nfs_readpage_sync (Jeff Layton) [664416 663853]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.26.1.el5.i686.rpm">kernel-xen-devel-2.6.18-194.26.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] mlx4: bump max log_mtts_per_seg memory reservation (Jay Fenlason) [643806 636198]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.17.4.el5.i686.rpm">kernel-xen-devel-2.6.18-194.17.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] rds: fix local privilege escalation (Eugene Teo) [642897 642898] {CVE-2010-3904}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.17.1.el5.i686.rpm">kernel-xen-devel-2.6.18-194.17.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-09-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Syncing following patch from branched build: - [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.11.4.el5.i686.rpm">kernel-xen-devel-2.6.18-194.11.4.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2010-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] make compat_alloc_user_space() incorporate the access_ok() (Don Howard) [634463 634464] {CVE-2010-3081}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.11.3.el5.i686.rpm">kernel-xen-devel-2.6.18-194.11.3.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-08-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] accept an abutting stack segment (Jiri Pirko) [607857 607858] {CVE-2010-2240}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.11.1.el5.i686.rpm">kernel-xen-devel-2.6.18-194.11.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [scsi] qla2xxx: update firmware to version 5.03.02 (Chad Dupuis) [613688 598946]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.8.1.el5.i686.rpm">kernel-xen-devel-2.6.18-194.8.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-06-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] cnic: fix bnx2x panic w/multiple interfaces enabled (Stanislaw Gruszka) [607087 602402]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-194.3.1.el5.i686.rpm">kernel-xen-devel-2.6.18-194.3.1.el5.i686</a> [<span style="white-space: nowrap">5.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-05-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bnx2: fix lost MSI-X problem on 5709 NICs (John Feeney) [587799 511368]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-164.15.1.el5.i686.rpm">kernel-xen-devel-2.6.18-164.15.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-03-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sctp: backport cleanups for ootb handling V2 (Neil Horman) [555666 555667] {CVE-2010-0008} - Reverting: [net] sctp: backport cleanups for ootb handling (Neil Horman) [555666 555667] {CVE-2010-0008}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-164.11.1.el5.i686.rpm">kernel-xen-devel-2.6.18-164.11.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2010-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [firewire] ohci: handle receive packets with zero data (Jay Fenlason) [547241 547242] {CVE-2009-4138} - [x86] sanity check for AMD northbridges (Andrew Jones) [549905 547518] - [x86_64] disable vsyscall in kvm guests (Glauber Costa) [550968 542612] - [fs] ext3: replace lock_super with explicit resize lock (Eric Sandeen) [549908 525100] - [fs] respect flag in do_coredump (Danny Feng) [544188 544189] {CVE-2009-4036} - [gfs2] make O_APPEND behave as expected (Steven Whitehouse) [547521 544342] - [fs] hfs: fix a potential buffer overflow (Amerigo Wang) [540740 540741] {CVE-2009-4020} - [fuse] prevent fuse_put_request on invalid pointer (Danny Feng) [538736 538737] {CVE-2009-4021} - [mm] call vfs_check_frozen after unlocking the spinlock (Amerigo Wang) [548370 541956] - [infiniband] init neigh->dgid.raw on bonding events (Doug Ledford) [543448 538067] - [scsi] gdth: prevent negative offsets in ioctl (Amerigo Wang) [539420 539421] {CVE-2009-3080} - [fs] gfs2: fix glock ref count issues (Steven Whitehouse) [544978 539240] - [net] call cond_resched in rt_run_flush (Amerigo Wang) [547530 517588] - [scsi] megaraid: fix sas permissions in sysfs (Casey Dahlin) [537312 537313] {CVE-2009-3889 CVE-2009-3939} - [ia64] kdump: restore registers in the stack on init (Takao Indoh ) [542582 515753] - [x86] kvm: don't ask HV for tsc khz if not using kvmclock (Glauber Costa ) [537027 531268] - [net] sched: fix panic in bnx2_poll_work (John Feeney ) [539686 526481] - [x86_64] fix 32-bit process register leak (Amerigo Wang ) [526797 526798] - [cpufreq] add option to avoid smi while calibrating (Matthew Garrett ) [537343 513649] - [kvm] use upstream kvm_get_tsc_khz (Glauber Costa ) [540896 531025] - [net] fix unbalance rtnl locking in rt_secret_reschedule (Neil Horman ) [549907 510067] - [net] r8169: imporved rx length check errors (Neil Horman ) [552913 552438] - [scsi] lpfc: fix FC ports offlined during target controller faults (Rob Evers ) [549906 516541] - [net] emergency route cache flushing fixes (Thomas Graf ) [545662 545663] {CVE-2009-4272} - [fs] fasync: split 'fasync_helper()' into separate add/remove functions (Danny Feng ) [548656 548657] {CVE-2009-4141} - [scsi] qla2xxx: NPIV vport management pseudofiles are world writable (Tom Coughlan ) [537317 537318] {CVE-2009-3556}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-164.10.1.el5.i686.rpm">kernel-xen-devel-2.6.18-164.10.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000, r9169: fix rx length check errors (Cong Wang ) [550914 550915] - [net] e1000e: fix rx length check errors (Amerigo Wang ) [551222 551223] - [net] ipv6: fix ipv6_hop_jumbo remote system crash (Amerigo Wang ) [548642 548643] {CVE-2007-4567}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-164.9.1.el5.i686.rpm">kernel-xen-devel-2.6.18-164.9.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] fix stale data in shared_cpu_map cpumasks (Prarit Bhargava) [545583 541953]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-164.6.1.el5.i686.rpm">kernel-xen-devel-2.6.18-164.6.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-10-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix pipe null pointer dereference (Jeff Moyer) [530938 530939] {CVE-2009-3547} - [security] require root for mmap_min_addr (Eric Paris ) [518142 518143] {CVE-2009-2695} - [net] lvs: adjust sync protocol handling for ipvsadm -2 (Neil Horman ) [528645 524129] - [xen] allow booting with broken serial hardware (Chris Lalancette ) [524153 518338]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-164.2.1.el5.i686.rpm">kernel-xen-devel-2.6.18-164.2.1.el5.i686</a> [<span style="white-space: nowrap">5.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-09-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] kvm: bound last_kvm to prevent backwards time (Glauber Costa ) [524527 524076] - [x86] kvm: fix vsyscall going backwards (Glauber Costa ) [524527 524076] - [misc] fix RNG to not use first generated random block (Neil Horman ) [523289 522860] - [x86] kvm: mark kvmclock_init as cpuinit (Glauber Costa ) [524151 523450] - [x86_64] kvm: allow kvmclock to be overwritten (Glauber Costa ) [524150 523447] - [x86] kvmclock: fix bogus wallclock value (Glauber Costa ) [524152 519771] - [scsi] scsi_dh_rdace: add more sun hardware (mchristi@redhat.com ) [523237 518496] - [misc] cprng: fix cont test to be fips compliant (Neil Horman ) [523290 523259] - [net] bridge: fix LRO crash with tun (Andy Gospodarek ) [522636 483646] - Revert: [x86_64] fix gettimeoday TSC overflow issue - 1 (Don Zickus ) [489847 467942] - Revert: [net] atalk/irda: memory leak to user in getname (Danny Feng ) [519309 519310] {CVE-2009-3001 CVE-2009-3002}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-128.7.1.el5.i686.rpm">kernel-xen-devel-2.6.18-128.7.1.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-08-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] prevent null pointer dereference in udp_sendmsg (Vitaly Mayatskikh) [518047 518043] {CVE-2009-2698}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-128.4.1.el5.i686.rpm">kernel-xen-devel-2.6.18-128.4.1.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2009-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ecryptfs: check tag 11 packet literal data buffer size (Eric Sandeen ) [512862 512863] {CVE-2009-2406} - [fs] ecryptfs: check tag 3 packet encrypted key size (Eric Sandeen ) [512886 512887] {CVE-2009-2407} - [misc] personality handling: fix PER_CLEAR_ON_SETID (Vitaly Mayatskikh ) [511173 508842] {CVE-2009-1895} - [xen] HV: remove high latency spin_lock (Chris Lalancette ) [512311 459410]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-128.1.14.el5.i686.rpm">kernel-xen-devel-2.6.18-128.1.14.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] v4: client handling of MAY_EXEC in nfs_permission (Peter Staubach ) [500301 500302] {CVE-2009-1630} - [fs] proc: avoid info leaks to non-privileged processes (Amerigo Wang ) [499546 499541] - [net] tg3: Fix firmware event timeouts (Jiri Pirko ) [502837 481715] - [scsi] libiscsi: fix nop response/reply and session cleanup race (Jiri Pirko ) [502916 497411] - [fs] cifs: fix pointer and checks in cifs_follow_symlink (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: fix error handling in parse_DFS_referrals (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: buffer overruns when converting strings (Jeff Layton ) [496576 496577] {CVE-2009-1633} - [fs] cifs: unicode alignment and buffer sizing problems (Jeff Layton ) [494279 494280] {CVE-2009-1439} - [x86] xen: fix local denial of service (Chris Lalancette ) [500950 500951] {CVE-2009-1758} - [misc] compile: add -fwrapv to gcc CFLAGS (Don Zickus ) [501751 491266] - [misc] random: make get_random_int more random (Amerigo Wang ) [499783 499776] - [gfs2] fix uninterruptible quotad sleeping (Steven Whitehouse ) [501742 492943] - [mm] cow vs gup race fix (Andrea Arcangeli ) [486921 471613] - [mm] fork vs gup race fix (Andrea Arcangeli ) [486921 471613] - [nfs] fix hangs during heavy write workloads (Peter Staubach ) [486926 469848]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-128.1.10.el5.i686.rpm">kernel-xen-devel-2.6.18-128.1.10.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-04-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] fix softlockup in posix_locks_deadlock (Josef Bacik ) [496842 476659]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-128.1.6.el5.i686.rpm">kernel-xen-devel-2.6.18-128.1.6.el5.i686</a> [<span style="white-space: nowrap">4.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] add nonstop_tsc flag in /proc/cpuinfo (Luming Yu ) [489310 474091]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-128.1.1.el5.i686.rpm">kernel-xen-devel-2.6.18-128.1.1.el5.i686</a> [<span style="white-space: nowrap">5.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2009-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [security] introduce missing kfree (Jiri Pirko ) [480597 480598] {CVE-2009-0031} - [sched] fix clock_gettime monotonicity (Peter Zijlstra ) [481122 477763] - [nfs] create rpc clients with proper auth flavor (Jeff Layton ) [481119 465456] - [net] sctp: overflow with bad stream ID in FWD-TSN chunk (Eugene Teo ) [478804 478805] {CVE-2009-0065} - [md] fix oops with device-mapper mirror target (Heinz Mauelshagen ) [481120 472558] - [openib] restore traffic in connected mode on HCA (AMEET M. PARANJAPE ) [479812 477000] - [net] add preemption point in qdisc_run (Jiri Pirko ) [477746 471398] {CVE-2008-5713} - [x86_64] copy_user_c assembler can leave garbage in rsi (Larry Woodman ) [481117 456682] - [misc] setpgid returns ESRCH in some situations (Oleg Nesterov ) [480576 472433] - [s390] zfcp: fix hexdump data in s390dbf traces (Hans-Joachim Picht ) [480996 470618] - [fs] hfsplus: fix buffer overflow with a corrupted image (Anton Arapov ) [469637 469638] {CVE-2008-4933} - [fs] hfsplus: check read_mapping_page return value (Anton Arapov ) [469644 469645] {CVE-2008-4934} - [fs] hfs: fix namelength memory corruption (Anton Arapov ) [470772 470773] {CVE-2008-5025}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-92.1.22.el5.i686.rpm">kernel-xen-devel-2.6.18-92.1.22.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-12-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] hugepages: ia64 stack overflow and corrupt memory (Larry Woodman ) [474347 472802] - [misc] allow hugepage allocation to use most of memory (Larry Woodman ) [474760 438889]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-92.1.18.el5.i686.rpm">kernel-xen-devel-2.6.18-92.1.18.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: allow the kernel to boot on pre-64 bit hw (Chris Lalancette ) [470040 468083]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-92.1.17.el5.i686.rpm">kernel-xen-devel-2.6.18-92.1.17.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [nfs] pages of a memory mapped file get corrupted (Peter Staubach ) [450335 435291]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-92.1.13.el5.i686.rpm">kernel-xen-devel-2.6.18-92.1.13.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-09-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [md] fix crashes in iterate_rdev (Doug Ledford ) [460128 455471] - [sound] snd_seq_oss_synth_make_info info leak (Eugene Teo ) [458000 458001] {CVE-2008-3272} - [ipmi] control BMC device ordering (peterm@redhat.com ) [459071 430157] - [ia64] fix to check module_free parameter (Masami Hiramatsu ) [460639 457961] - [misc] NULL pointer dereference in kobject_get_path (Jiri Pirko ) [459776 455460] - [xen] ia64: SMP-unsafe with XENMEM_add_to_physmap on HVM (Tetsu Yamamoto ) [459780 457137] - [net] bridge: eliminate delay on carrier up (Herbert Xu ) [458783 453526] - [fs] dio: lock refcount operations (Jeff Moyer ) [459082 455750] - [misc] serial: fix break handling for i82571 over LAN (Aristeu Rozanski ) [460509 440018] - [fs] dio: use kzalloc to zero out struct dio (Jeff Moyer ) [461091 439918] - [fs] lockd: nlmsvc_lookup_host called with f_sema held (Jeff Layton ) [459083 453094] - [net] bnx2x: chip reset and port type fixes (Andy Gospodarek ) [441259 442026]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-92.1.10.el5.i686.rpm">kernel-xen-devel-2.6.18-92.1.10.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Pirko (2008-07-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [ia64] softlock: prevent endless warnings in kdump (Neil Horman ) [456117 453200]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-92.1.6.el5.i686.rpm">kernel-xen-devel-2.6.18-92.1.6.el5.i686</a> [<span style="white-space: nowrap">4.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-06-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] sanity checking for read_tsc on i386 (Brian Maly ) [447686 443435]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-53.1.21.el5.i686.rpm">kernel-xen-devel-2.6.18-53.1.21.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-05-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] infinite loop in highres timers (Michal Schmidt ) [440001] - [video] PWC driver DoS (Pete Zaitcev ) [308521] - [x86_64] fix unprivileged crash on %cs corruption (Jarod Wilson ) [439787] - [net] ESP: ensure IV is in linear part of the skb (Thomas Graf ) [427247] - [cpufreq] booting with maxcpus=1 panics (Doug Chapman ) [429516] - [net] sunrpc: lockd recovery is broken (Steve Dickson ) [445360] - [cpufreq] don't take sem in cpufreq_quick_get (Doug Chapman ) [400821] - [cpufreq] remove hotplug cpu cruft (Doug Chapman ) [400821] - [cpufreq] governor: use new rwsem locking in work cb (Doug Chapman ) [400821] - [cpufreq] ondemand governor restructure the work cb (Doug Chapman ) [400821] - [cpufreq] rewrite lock to eliminate hotplug issues (Doug Chapman ) [400821]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-53.1.19.el5.i686.rpm">kernel-xen-devel-2.6.18-53.1.19.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] check num of segments in block backend driver (Bill Burns ) [378281] - [x86_64] update IO-APIC dest field to 8-bit for xAPIC (Dave Anderson ) [442922] - Update: [fs] fix race condition in dnotify (Alexander Viro ) [439758] {CVE-2008-1375} - Update: [xen] ia64: ftp stress test fixes between HVM/Dom0 (Tetsu Yamamoto ) [427400] {CVE-2008-1619}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-53.1.14.el5.i686.rpm">kernel-xen-devel-2.6.18-53.1.14.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-02-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12 - [nfs] potential file corruption issue when writing (Jeff Layton ) [432078] - [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh ) [396821] - [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171] - [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) [392151] {CVE-2007-6063} - [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) [431522] - [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] {CVE-2007-5938} - [misc] Denial of service with wedged processes (Jerome Marchand ) [221403] - [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-53.1.13.el5.i686.rpm">kernel-xen-devel-2.6.18-53.1.13.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Don Howard (2008-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- revert to 2.6.18-53.1.6.el5 - [x86_64] kernel vmsplice_to_pipe flaw (Alexander Viro ) [432252] {CVE-2008-0600}</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/kernel-xen-devel-2.6.18-53.1.6.el5.i686.rpm">kernel-xen-devel-2.6.18-53.1.6.el5.i686</a> [<span style="white-space: nowrap">4.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Anton Arapov (2008-01-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] corruption by unprivileged user in directories (Vitaly Mayatskikh ) [428796] {CVE-2008-0001}</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk.html+1:1.7.0.131-2.6.9.0.el5_11.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk.htmlMon, 13 Feb 2017 12:09:04 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk<br /> <strong>Summary:</strong> OpenJDK Runtime Environment </p> <p> <strong>Description:</strong><br /> The OpenJDK runtime environment. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.i386</a> [<span style="white-space: nowrap">40.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.121-2.6.8.1.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.121-2.6.8.1.el5_11.i386</a> [<span style="white-space: nowrap">40.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.111-2.6.7.1.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.111-2.6.7.1.el5_11.i386</a> [<span style="white-space: nowrap">40.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.101-2.6.6.1.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.101-2.6.6.1.el5_11.i386</a> [<span style="white-space: nowrap">40.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.99-2.6.5.0.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.99-2.6.5.0.el5_11.i386</a> [<span style="white-space: nowrap">40.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.95-2.6.4.1.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.95-2.6.4.1.el5_11.i386</a> [<span style="white-space: nowrap">40.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.91-2.6.2.1.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.91-2.6.2.1.el5_11.i386</a> [<span style="white-space: nowrap">40.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.85-2.6.1.3.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.85-2.6.1.3.el5_11.i386</a> [<span style="white-space: nowrap">40.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.79-2.5.5.2.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.79-2.5.5.2.el5_11.i386</a> [<span style="white-space: nowrap">40.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.75-2.5.4.0.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.75-2.5.4.0.el5_11.i386</a> [<span style="white-space: nowrap">40.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.71-2.5.3.1.el5_11.i386.rpm">java-1.7.0-openjdk-1.7.0.71-2.5.3.1.el5_11.i386</a> [<span style="white-space: nowrap">40.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el5_10.i386.rpm">java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el5_10.i386</a> [<span style="white-space: nowrap">40.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.55-2.4.7.1.el5_10.i386.rpm">java-1.7.0-openjdk-1.7.0.55-2.4.7.1.el5_10.i386</a> [<span style="white-space: nowrap">40.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.51-2.4.4.1.el5_10.i386.rpm">java-1.7.0-openjdk-1.7.0.51-2.4.4.1.el5_10.i386</a> [<span style="white-space: nowrap">40.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.45-2.4.3.1.el5_10.i386.rpm">java-1.7.0-openjdk-1.7.0.45-2.4.3.1.el5_10.i386</a> [<span style="white-space: nowrap">40.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.25-2.3.10.4.el5_9.i386.rpm">java-1.7.0-openjdk-1.7.0.25-2.3.10.4.el5_9.i386</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.i386.rpm">java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.i386</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.8.0.el5_9.i386.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.8.0.el5_9.i386</a> [<span style="white-space: nowrap">39.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.i386.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.i386</a> [<span style="white-space: nowrap">39.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.5.3.el5_9.i386.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.5.3.el5_9.i386</a> [<span style="white-space: nowrap">39.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.4.el5_9.1.i386.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.4.el5_9.1.i386</a> [<span style="white-space: nowrap">39.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk-demo.html+1:1.7.0.131-2.6.9.0.el5_11.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk-demo.htmlMon, 13 Feb 2017 12:09:04 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk-demo<br /> <strong>Summary:</strong> OpenJDK Demos </p> <p> <strong>Description:</strong><br /> The OpenJDK demos. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.121-2.6.8.1.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.121-2.6.8.1.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.111-2.6.7.1.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.111-2.6.7.1.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.101-2.6.6.1.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.101-2.6.6.1.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.99-2.6.5.0.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.99-2.6.5.0.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.95-2.6.4.1.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.95-2.6.4.1.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.91-2.6.2.1.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.91-2.6.2.1.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.85-2.6.1.3.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.85-2.6.1.3.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.79-2.5.5.2.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.79-2.5.5.2.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.75-2.5.4.0.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.75-2.5.4.0.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.71-2.5.3.1.el5_11.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.71-2.5.3.1.el5_11.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el5_10.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el5_10.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.55-2.4.7.1.el5_10.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.55-2.4.7.1.el5_10.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.51-2.4.4.1.el5_10.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.51-2.4.4.1.el5_10.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.45-2.4.3.1.el5_10.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.45-2.4.3.1.el5_10.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.25-2.3.10.4.el5_9.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.25-2.3.10.4.el5_9.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.8.0.el5_9.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.8.0.el5_9.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.5.3.el5_9.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.5.3.el5_9.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.4.el5_9.1.i386.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.4.el5_9.1.i386</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk-devel.html+1:1.7.0.131-2.6.9.0.el5_11.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk-devel.htmlMon, 13 Feb 2017 12:09:04 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk-devel<br /> <strong>Summary:</strong> OpenJDK Development Environment </p> <p> <strong>Description:</strong><br /> The OpenJDK development tools. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.121-2.6.8.1.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.121-2.6.8.1.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.111-2.6.7.1.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.111-2.6.7.1.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.101-2.6.6.1.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.101-2.6.6.1.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.99-2.6.5.0.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.99-2.6.5.0.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.95-2.6.4.1.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.95-2.6.4.1.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.91-2.6.2.1.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.91-2.6.2.1.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.85-2.6.1.3.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.85-2.6.1.3.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.79-2.5.5.2.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.79-2.5.5.2.el5_11.i386</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.75-2.5.4.0.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.75-2.5.4.0.el5_11.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.71-2.5.3.1.el5_11.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.71-2.5.3.1.el5_11.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el5_10.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el5_10.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.55-2.4.7.1.el5_10.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.55-2.4.7.1.el5_10.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.51-2.4.4.1.el5_10.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.51-2.4.4.1.el5_10.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.45-2.4.3.1.el5_10.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.45-2.4.3.1.el5_10.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.25-2.3.10.4.el5_9.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.25-2.3.10.4.el5_9.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.8.0.el5_9.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.8.0.el5_9.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.5.3.el5_9.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.5.3.el5_9.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.4.el5_9.1.i386.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.4.el5_9.1.i386</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk-javadoc.html+1:1.7.0.131-2.6.9.0.el5_11.i386http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/repoview/java-1.7.0-openjdk-javadoc.htmlMon, 13 Feb 2017 12:09:04 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk-javadoc<br /> <strong>Summary:</strong> OpenJDK API Documentation </p> <p> <strong>Description:</strong><br /> The OpenJDK API documentation. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.121-2.6.8.1.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.121-2.6.8.1.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.111-2.6.7.1.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.111-2.6.7.1.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.101-2.6.6.1.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.101-2.6.6.1.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.99-2.6.5.0.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.99-2.6.5.0.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.95-2.6.4.1.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.95-2.6.4.1.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.91-2.6.2.1.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.91-2.6.2.1.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.85-2.6.1.3.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.85-2.6.1.3.el5_11.i386</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.79-2.5.5.2.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.79-2.5.5.2.el5_11.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.75-2.5.4.0.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.75-2.5.4.0.el5_11.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.71-2.5.3.1.el5_11.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.71-2.5.3.1.el5_11.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el5_10.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el5_10.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.55-2.4.7.1.el5_10.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.55-2.4.7.1.el5_10.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.51-2.4.4.1.el5_10.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.51-2.4.4.1.el5_10.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.45-2.4.3.1.el5_10.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.45-2.4.3.1.el5_10.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.25-2.3.10.4.el5_9.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.25-2.3.10.4.el5_9.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.8.0.el5_9.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.8.0.el5_9.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.5.3.el5_9.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.5.3.el5_9.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://ftp.scientificlinux.org/linux/scientific/51/i386/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.4.el5_9.1.i386.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.4.el5_9.1.i386</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>