[RHSA-2008:0154-01] Important: kernel security and bug fix update 2008-03-05
security issueは当然のことなので割愛しつつも他引用。

As well, these updated packages fix the following bugs:

* a bug was found in the Linux kernel audit subsystem. When the audit
daemon was setup to log the execve system call with a large number of
arguments, the kernel could run out of memory, causing a kernel panic.

* on IBM System z architectures, using the IBM Hardware Management Console
to toggle IBM FICON channel path ids (CHPID) caused a file ID miscompare,
possibly causing data corruption.

* when running the IA-32 Execution Layer (IA-32EL) or a Java VM on Itanium
architectures, a bug in the address translation in the hypervisor caused
the wrong address to be registered, causing Dom0 to hang.

* on Itanium architectures, frequent Corrected Platform Error errors may
have caused the hypervisor to hang.

* when enabling a CPU without hot plug support, routines for checking the
presence of the CPU were missing. The CPU tried to access its own
resources, causing a kernel panic.

* after updating to kernel-2.6.18-53.el5, a bug in the CCISS driver caused
the HP Array Configuration Utility CLI to become unstable, possibly causing
a system hang, or a kernel panic.

* a bug in NFS directory caching could have caused different hosts to have
different views of NFS directories.

* on Itanium architectures, the Corrected Machine Check Interrupt masked
hot-added CPUs as disabled.

* when running Oracle database software on the Intel 64 and AMD64
architectures, if an SGA larger than 4GB was created, and had hugepages
allocated to it, the hugepages were not freed after database shutdown.

* in a clustered environment, when two or more NFS clients had the same
logical volume mounted, and one of them modified a file on the volume, NULL
characters may have been inserted, possibly causing data corruption.

These updated packages resolve several severe issues in the lpfc driver:

* a system hang after LUN discovery.

* a general fault protection, a NULL pointer dereference, or slab
corruption could occur while running a debug on the kernel.

* the inability to handle kernel paging requests in "lpfc_get_scsi_buf".

* erroneous structure references caused certain FC discovery routines to
reference and change "lpfc_nodelist" structures, even after they were
freed.

* the lpfc driver failed to interpret certain fields correctly, causing
tape backup software to fail. Tape drives reported "Illegal Request".

* the lpfc driver did not clear structures correctly, resulting in SCSI
I/Os being rejected by targets, and causing errors. 

使っているならUpdateするべきですね。
これらの変更が入る前に実用に耐えられているのだろうか心配になったデモンストレーションがあります．．．

[El-errata] ELSA-2008-0154 Important: Enterprise Linux 5 kernel security and bug fix update 2008-03-06

[2.6.18-53.1.14.0.1.el5]
- [NET] Add entropy support to e1000 and bnx2 (John Sobecki) [orabug 
6045759]
- [NET] Fix msi issue with kexec/kdump (Michael Chan) [orabug 6219364]
- [MM] Fix alloc_pages_node() static `nid' race made kernel crash (Joe 
Jin) [orabug 6187457]
- [splice] Fix bad unlock_page() in error case  (Jens Axboe) [orabug 
6263574]
- [dio] fix error-path crashes (Linus Torvalds) [orabug 6242289]

[2.6.18-53.1.14.el5]
- merge from 2.6.18-53.1.13 to 2.6.18-53.1.12
- [nfs] potential file corruption issue when writing (Jeff Layton ) [432078]
- [ppc] chrp: fix possible strncmp NULL pointer usage (Vitaly Mayatskikh 
) [396821]
- [isdn] i4l: fix memory overruns (Vitaly Mayatskikh ) [425171]
- [isdn] fix possible isdn_net buffer overflows (Aristeu Rozanski ) 
[392151] {CVE-2007-6063}
- [mm] hugepages: leak due to pagetable page sharing (Larry Woodman ) 
[431522]
- [net] NULL dereference in iwl driver (Vitaly Mayatskikh ) [401421] 
{CVE-2007-5938}
- [misc] Denial of service with wedged processes (Jerome Marchand ) [221403]
- [xen] ia64: hvm guest memory range checking (Jarod Wilson ) [408701]

Oracle's ELのみの変更はRHEL5.1 Updated kernel package kernel-2.6.18-53.1.13.el5 Oracle's EL kernel-2.6.18-53.1.13.0.1.el5 - tmpfile::memoと比べて増えていません。