[CentOS] Warning of protential probs with 2.6.9-42.0.3.EL update

Tue Oct 17 13:35:32 UTC 2006
Jim Perrin <jperrin at gmail.com>

> is there a list of changes in 2.6.9-42.0.3.EL?

Yep. Now whether it's 100% accurate is up for debate....

[jperrin at insanity ~]# rpm -q --changelog kernel-2.6.9-42.0.3.EL | less

* Mon Sep 25 2006 Jason Baron <jbaron at redhat.com> [2.6.9-42.0.3]

-fix mprotect to not allow permission subversion (Jason Baron)
[190073] {CVE-2006-2071}
-fix sys_perfmonctl() file descriptor reference count issue (Anil
Keshavamurthy) [204360] {CVE-2006-3741}
-Fix hugepage crash on failing mmap (Larry Woodman) [165345] {CVE-2005-4811}
-sctp: create abort messages properly (Neil Horman) [204460] {CVE-2006-4535}
-fix oops occuring from malformed ULE packet (Neil Horman) [204912]
{CVE-2006-4623}
-ipw2[12]00: restore get_wireless_stats pointer (John Linville) [198820]
-ipw2200: accept broadcast MAC traffic (John Linville) [203421]
-fix netfilter do_add_counters race (Thomas Graf) [191698] {CVE-2006-0039}
-fix ip over atm clip_mkip may dereference freed pointer (Thomas Graf) [206265]
-ppc64: Clear EN_ATTN bit in PPC970 HID0 (David Woodhouse) [201684]
{CVE-2006-4093}

* Thu Aug 17 2006 Jason Baron <jbaron at redhat.com> [2.6.9-42.0.2]

This is from my PNAELV box, so doesn't include any of the local centos
changes if there are any, but those should be mostly cosmetic.


-- 
During times of universal deceit, telling the truth becomes a revolutionary act.
George Orwell