kernel update for Evergreen 11.4
kernel update for Evergreen 11.4 (includes CVE-2014-0196, CVE-2014-1737 and CVE-2014-1738)
-
Submitted by
Michal Kubeček (mkubecek)
- Reboot is suggested
Fixed bugs
bnc#708296
[NetApp SLES11 SP2 Bug] Optimize SCSI retries during ALUA transitioning AAS
bnc#736697
VUL-0: btrfs snapshots vs apparmor
bnc#746500
sles11sp2: eroneous "target data integrity failure" messages
bnc#758813
VUL-1: kernel: unfiltered netdev rio_ioctl access by users
bnc#813733
VUL-1: kernel: CVE-2013-1929: tg3: evil hardware based code injection via VPD
bnc#814788
L3: Build consolidated kernel/mdadm PTF for BTMU and Mizuho
bnc#817377
VUL-1: kernel: CVE-2013-2015: ext4 hang during mount
bnc#819351
L3-Question: bad network performance in Xen paravirtualized domU affecting SAP system performance
bnc#823260
VUL-1: kernel: CVE-2013-2147: cpqarray/cciss: info leak via ioctl(2)
bnc#831029
application hang with NFS4
bnc#836347
Sles11 sp3- Observing kernel panic when installing kernel with mpt3sas driver update when DIX0 enabled
bnc#840226
VUL-1 CVE-2013-4345: kernel: ansi_cprng.c error in random number generation
bnc#841402
intel-iommu: Fix leaks in pagetable freeing
bnc#843185
IPv6: Crash in rt6_check_expired
bnc#844513
Broken MSI and MSI-X interrupt remapping on Intel 55XX chipsets
bnc#847672
VUL-1: CVE-2013-4470: kernel: net: memory corruption with UDP_CORK and UFO
bnc#849021
VUL-1: CVE-2013-4511: kernel: mapping of physical memory to user space without proper size check
bnc#849364
MD Array does not start after restart system when rebuilding array.
bnc#850263
VUL-1: CVE-2013-6763: kernel: kernel module uio in the Linux kernel before 3.12 does not validate the size of a memory block
bnc#851426
VUL-1: CVE-2013-4579: kernel: ath9k_htc ath9k_htc improperly updates MAC address
bnc#852488
nfs client mount hanging even after fix from bnc #830901
bnc#852553
VUL-1: CVE-2013-6382: kernel: xfs support is vulnerable to an invalid pointer dereference flaw
bnc#852558
VUL-1: CVE-2013-6383: kernel: Adaptec RAID controller driver could allow bypass operation restrictions
bnc#852967
VUL-1: CVE-2013-6885: kernel-source: AMD CPU erratum may cause core hang
bnc#853455
nfsd stops responding - nfs over infiniband
bnc#854025
Partner-L3: OS hangs reporting udev unexpectedly return with status 0x0100 while going fore reboot
bnc#855347
High CPU usage during cable plug
bnc#855885
BUG: unable to handle kernel NULL pointer dereference at __rb_erase_color+0x6f
bnc#856083
PTF(s) request of kernel and s390-tools for SLES11SP2 s390x
bnc#857499
L3: Kernel crash on free_block+0x7a/0x160
bnc#857643
VUL-0: [CVE-2013-7263 - CVE-2013-7271]: kernel: kernel before 3.12.14 len field update before initialization
bnc#858280
XEN VM guest freeze under high load
bnc#858534
Address space collision when Intel Kylin system boot with SLES11 SP2
bnc#858604
[PCI] Connectivity between 2 pci interfaces across 2 different machines gets terminated abruptly when there is bulk data transfer OR when there are multiple connections opened at the same time.
bnc#858869
VUL-0: CVE-2014-1444: Kernel: farsync: information leak in ioctl
bnc#858870
VUL-0: CVE-2014-1445: Kernel: wanxl: information leak in ioctl
bnc#858872
VUL-0: CVE-2014-1446: Kernel: hamradio/yam: information leak in ioctl
bnc#862023
SLES 11 SP3 freezes after stress test
bnc#862429
softlockup in tcp_write_timer+0x21
bnc#863300
ls hanging on directory on a btrfs subvolume
bnc#863335
VUL-0: CVE-2014-1874: kernel: SELinux: local denial-of-service
bnc#864025
VUL-0: CVE-2014-0069: kernel: cifs: memory corruption resulting in local DoS
bnc#864833
IPv6: Kernel oops when changing IPv6 route attributes
bnc#865307
VUL-0: CVE-2014-2039: kernel-source: s390: crash due to linkage stack instructions
bnc#865310
Protect against bogus update_group_power messages
bnc#865330
BUG: unable to handle kernel NULL pointer dereference at storvsc_device_destroy+0x18
bnc#865342
I/O stalls on booting a multipathed setup
bnc#865783
IPv6: RTNETLINK error when changing options for route
bnc#866102
VUL-0: CVE-2014-0101: kernel: net: sctp: fix sctp_sf_do_5_1D_ce to verify if peer is AUTH capable
bnc#867139
watchdog modules not loaded after starting openais
bnc#867255
module_alias_miscdev is still needed
bnc#867953
System hang in inet_getpeer (IPv6)
bnc#868049
system call getdents64 does not return from kernel when accessing /proc/<pid>/net
bnc#868528
sporadic hard lockup on boot of RAM drive blades
bnc#868653
VUL-0: CVE-2014-2523: kernel: remote issue in nf_conntrack_proto_dccp.c
bnc#869033
[HP HPS Bug] frequent occurrences of Kernel panic - not syncing: Watchdog detected hard LOCKUP
bnc#869563
VUL-1: CVE-2013-7339: kernel: rds: NULL ptr dereference issue in rds_ib_laddr_check
bnc#870801
kernel oopses, hanging processes, regression with maintenance kernel update.
bnc#871252
forked pty with lots of throughput crashes the kernel
bnc#871325
twofish crypto algorithm support missing
bnc#871561
VUL-0: CVE-2014-2678: kernel: net: rds: dereference of a NULL device in rds_iw_laddr_check()
bnc#871861
RT scheduling doesnt balance properly
bnc#873061
softdog timer triggers incorrectly
bnc#874108
Fix erratum #237: Change default PSR.ac from 1 to 0
bnc#875690
VUL-0: CVE-2014-0196: kernel: memory corruption via a race in pty write handling
bnc#875798
VUL-0: CVE-2014-1737, CVE-2014-1738: kernel: floppy: ignore kernel-only members in FDRAWCMD ioctl input
bnc#876102
VUL-0: CVE-2014-3122: Kernel: mm: try_to_unmap_cluster() should lock_page() before mlocking
