drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme im Kernel
Name: |
Mehrere Probleme im Kernel |
|
ID: |
FEDORA-2013-22669 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 19 |
|
Datum: |
Sa, 7. Dezember 2013, 08:13 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6378
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6380
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6382
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6405 |
|
Applikationen: |
Linux |
|
Originalnachricht |
Name : kernel Product : Fedora 19 Version : 3.11.10 Release : 200.fc19 URL : http://www.kernel.org/ Summary : The Linux kernel Description : The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc.
------------------------------------------------------------------------------- - Update Information:
The 3.11.10 stable update contains a number of important fixes across the tree ------------------------------------------------------------------------------- - ChangeLog:
* Sat Nov 30 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-6405 net: leak of uninited mem to userspace via recv syscalls (rhbz 1035875 1035887) * Fri Nov 29 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.10-200 - Linux v3.11.10 - Fix memory leak in qxl (from Dave Airlie) * Tue Nov 26 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix usbnet URB handling (rhbz 998342) - Fix crash in via-velocity driver (rhbz 1022733) - CVE-2013-6382 xfs: missing check for ZERO_SIZE_PTR (rhbz 1033603 1034670) * Mon Nov 25 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-6380 aacraid: invalid pointer dereference (rhbz 1033593 1034304) - CVE-2013-6378 libertas: potential oops in debugfs (rhbz 1033578 1034183) * Fri Nov 22 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patches from Jeff Layton to fix 15sec NFS mount hang * Wed Nov 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.9-200 - Linux v3.11.9 * Mon Nov 18 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix rhel5.9 KVM guests (rhbz 967652) - Add patch to fix crash from slab when using md-raid mirrors (rhbz 1031086) - Add patches from Pierre Ossman to fix 24Hz/24p radeon audio (rhbz 1010679) - Add patch to fix ALX phy issues after resume (rhbz 1011362) - Fix ipv6 sit panic with packet size > mtu (from Michele Baldessari) (rbhz 1015905) * Thu Nov 14 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4563: net: large udp packet over IPv6 over UFO-enabled device with TBF qdisc panic (rhbz 1030015 1030017) * Wed Nov 13 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.8-200 - Linux v3.11.8 * Sat Nov 9 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch from Daniel Stone to avoid high order allocations in evdev - Add qxl backport fixes from Dave Airlie * Mon Nov 4 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.7-200 - Add patch to fix iwlwifi queue settings backtrace (rhbz 1025769) * Mon Nov 4 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.11.7 * Fri Nov 1 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.6-201 - Revert blocking patches causing systemd to crash on resume (rhbz 1010603) - CVE-2013-4348 net: deadloop path in skb_flow_dissect (rhbz 1007939 1025647) * Thu Oct 31 2013 Josh Boyer <jwboyer@fedoraprorject.org> - Fix display regression on Dell XPS 13 machines (rhbz 995782) * Tue Oct 29 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix plaintext auth regression in cifs (rhbz 1011621) * Fri Oct 25 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4470 net: memory corruption with UDP_CORK and UFO (rhbz 1023477 1023495) - Add touchpad support for Dell XT2 (rhbz 1023413) * Tue Oct 22 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix warning in tcp_fastretrans_alert (rhbz 989251) * Fri Oct 18 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.6-200 - Linux v3.11.6 * Thu Oct 17 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix BusLogic error (rhbz 1015558) - Fix rt2800usb polling timeouts and throughput issues (rhbz 984696) * Wed Oct 16 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix btrfs balance/scrub issue (rhbz 1011714) * Tue Oct 15 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix regression in radeon sound (rhbz 1010679) * Mon Oct 14 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.5-200 - Linux v3.11.5 * Fri Oct 11 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix segfault in cpupower set (rhbz 1000439) * Thu Oct 10 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.4-201 - Tag for build * Thu Oct 10 2013 Josh Boyer <jwboyer@fedoraproject.org> - USB OHCI accept very late isochronous URBs (in 3.11.4) (rhbz 975158) - Fix large order allocation in dm mq policy (rhbz 993744) * Wed Oct 9 2013 Josh Boyer <jwboyer@fedoraproject.org> - Don't trigger a stack trace on crashing iwlwifi firmware (rhbz 896695) - Add patch to fix VFIO IOMMU crash (rhbz 998732) * Tue Oct 8 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix nouveau crash (rhbz 1015920) - Quiet irq remapping stack trace (rhbz 982153) - Use RCU safe kfree for conntrack (rhbz 1015989) * Mon Oct 7 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.11.4 * Thu Oct 3 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4387 ipv6: panic when UFO=On for an interface (rhbz 1011927 1015166) * Wed Oct 2 2013 Justin M. Forbes <jforbes@fedoraproject.org> - drm/radeon: don't set default clocks for SI when DPM is disabled (rhbz 1013814) * Wed Oct 2 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.3-200 - Linux v3.11.3 * Wed Oct 2 2013 Neil Horman <nhorman@redhat.com> - Add promiscuity fix for vlans plus bonding (rhbz 1005567) * Mon Sep 30 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add support for rf3070 devices from Stanislaw Gruszka (rhbz 974072) - Drop VC_MUTE patch (rhbz 859485) * Fri Sep 27 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.2-201 - Bump and tag for build * Fri Sep 27 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix oops from applesmc (rhbz 1011719) - Add patches to fix soft lockup from elevator changes (rhbz 902012) * Fri Sep 27 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.2-200 - Linux v3.11.2 * Wed Sep 25 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Bump baserelease for test build * Wed Sep 25 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add another fix for skge (rhbz 1008323) * Mon Sep 23 2013 Neil Horman <nhorman@redhat.com> - Add alb learning packet config knob (rhbz 971893) * Mon Sep 23 2013 Josh Boyer <jwboyer@fedoraproject.org> - Revert rt2x00 commit that breaks connectivity (rhbz 1010431) * Fri Sep 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix RTC updates from ntp (rhbz 985522) - Fix broken skge driver (rhbz 1008328) - Fix large order rpc allocations (rhbz 997705) - Fix multimedia keys on Genius GX keyboard (rhbz 928561) * Tue Sep 17 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4345 ansi_cprng: off by one error in non-block size request (rhbz 1007690 1009136) * Sat Sep 14 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.1-200 - Linux v3.11.1 * Fri Sep 13 2013 Kyle McMartin <kyle@redhat.com> - Fix crash-driver.patch to properly use page_is_ram. * Fri Sep 13 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4350 net: sctp: ipv6 ipsec encryption bug in sctp_v6_xmit (rhbz 1007872 1007903) - CVE-2013-4343 net: use-after-free TUNSETIFF (rhbz 1007733 1007741) * Thu Sep 12 2013 Josh Boyer <jwboyer@fedoraproject.org> - Update HID CVE fixes to fix crash from lenovo-tpkbd driver (rhbz 1003998) * Wed Sep 11 2013 Neil Horman <nhorman@redhat.com> - Fix pcie/acpi hotplug conflict (rhbz 963991) - Fix race in crypto larval lookup * Wed Sep 11 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.11 rebase * Mon Sep 9 2013 Josh Boyer <jwboyer@fedoraproject.org> 3.10.11-200 - Fix system freeze due to incorrect rt2800 initialization (rhbz 1000679) * Mon Sep 9 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.10.11 * Fri Aug 30 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix HID CVEs. Absurd. - CVE-2013-2888 rhbz 1000451 1002543 CVE-2013-2889 rhbz 999890 1002548 - CVE-2013-2891 rhbz 999960 1002555 CVE-2013-2892 rhbz 1000429 1002570 - CVE-2013-2893 rhbz 1000414 1002575 CVE-2013-2894 rhbz 1000137 1002579 - CVE-2013-2895 rhbz 1000360 1002581 CVE-2013-2896 rhbz 1000494 1002594 - CVE-2013-2897 rhbz 1000536 1002600 CVE-2013-2899 rhbz 1000373 1002604 * Thu Aug 29 2013 Justin M. Forbes <jforbes@fedoraproject.org> 3.10.10-200 - Linux v3.10.10 * Wed Aug 28 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add mei patches that fix various s/r issues (rhbz 994824 989373) * Wed Aug 21 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix brcmsmac oops (rhbz 989269) - CVE-2013-0343 handling of IPv6 temporary addresses (rhbz 914664 999380) * Tue Aug 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - Linux v3.10.9 * Tue Aug 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.10.8-200 - Linux v3.10.8 - CVE-2013-4254 ARM: perf: NULL pointer dereference in validate_event (rhbz 998878 998881) * Fri Aug 16 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch from Nathanael Noblet to fix mic on Gateway LT27 (rhbz 845699) * Thu Aug 15 2013 Josh Boyer <jwboyer@redhat.com> - 3.10.7-200 - Enable memory cgroup swap accounting (rhbz 982808) - Add patch to fix regression on TeVII S471 devices (rhbz 963715) - Linux v3.10.7 * Mon Aug 12 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.6-200 - Linux v3.10.6 * Wed Aug 7 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.5-201 - Bump for rebuild after koji hiccup * Wed Aug 7 2013 Josh Boyer <jwboyer@redhat.com> - Add zero file length check to make sure pesign didn't fail (rhbz 991808) * Tue Aug 6 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.5-200 - update s390x config [Dan Horák] * Mon Aug 5 2013 Justin M. Forbes <jforbes@redhat.com> - Linux v3.10.5 * Thu Aug 1 2013 Josh Boyer <jwboyer@redhat.com> - Fix mac80211 connection issues (rhbz 981445) - Fix firmware issues with iwl4965 and rfkill (rhbz 977053) - Drop hid-logitech-dj patch that was breaking enumeration (rhbz 989138) * Wed Jul 31 2013 Josh Boyer <jwboyer@redhat.com> - update s390x config [Dan Horák] * Tue Jul 30 2013 Josh Boyer <jwboyer@redhat.com> - 3.10.4-300 - Revert some changes to make Logitech devices function properly (rhbz 989138) * Mon Jul 29 2013 Josh Boyer <jwboyer@redhat.com> - Fix i915 suspend/resume regression in 3.10 (rhbz 989093) - Linux v3.10.4 - Add support for elantech v7 devices (rhbz 969473) * Fri Jul 26 2013 Josh Boyer <jwboyer@redhat.com> - Add patch to fix NULL deref in iwlwifi (rhbz 979581) * Thu Jul 25 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.3-300 - Linux v3.10.3 * Wed Jul 24 2013 Justin M. Forbes <jforbes@redhat.com> - Net stable queue from davem (rhbz 987639 987656) * Mon Jul 22 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.2-301 - Update secureboot patch for 3.10 * Mon Jul 22 2013 Josh Boyer <jwboyer@redhat.com> - Fix timer issue in bridge code (rhbz 980254) * Mon Jul 22 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.2-300 - Linux v3.10.2 * Fri Jul 19 2013 Dave Jones <davej@redhat.com> - CVE-2013-4125 ipv6: BUG_ON in fib6_add_rt2node() (rhbz 984664) * Wed Jul 17 2013 Peter Robinson <pbrobinson@fedoraproject.org> - Re-enable ARM - Drop tegra subkernel as it's now multi-platform - Enable i.MX SoC support - Drop old ARM patches * Wed Jul 17 2013 Dave Jones <davej@redhat.com> - Rebase to 3.10.1 dropped: debug-bad-pte-dmi.patch debug-bad-pte-modules.patch arm-omap-ehci-fix.patch arm-omap-fixdrm.patch drm-ttm-exports-for-qxl.patch drm-qxl-driver.patch drm-qxl-3.10-rc7-diff.patch drm-qxl-access-fix.patch VMX-x86-handle-host-TSC-calibration-failure.patch forcedeth-dma-error-check.patch block-do-not-pass-disk-names-as-format-strings.patch cdrom-use-kzalloc-for-failing-hardware.patch vfio-Set-container-device-mode.patch vfio-fix-crash-on-rmmod.patch tulip-dma-debug-error.patch af_key-fix-info-leaks-in-notify-messages.patch ipv6-ip6_sk_dst_check-must-not-assume-ipv6-dst.patch arm-tegra-fixclk.patch cfg80211-mac80211-disconnect-on-suspend.patch mac80211_fixes_for_ieee80211_do_stop_while_suspend_v3.9.patch gssproxy-backport.patch ceph-fix.patch * Fri Jul 12 2013 Dave Jones <davej@redhat.com> - 3.9.9-304 - Disable LATENCYTOP/SCHEDSTATS in non-debug builds. * Fri Jul 12 2013 Josh Boyer <jwboyer@redhat.com> - Fix various overflow issues in ext4 (rhbz 976837) - Add iwlwifi fix for connection issue (rhbz 885407) * Thu Jul 11 2013 Kyle McMartin <kyle@redhat.com> - Enable USB on i.MX based boards, patch from Niels de Vos. * Fri Jul 5 2013 Josh Boyer <jwboyer@redhat.com> - Add report fixup for Genius Gila mouse from Benjamin Tissoires (rhbz 959721) - Add vhost-net use-after-free fix (rhbz 976789 980643) - Add fix for timer issue in bridge code (rhbz 980254) - CVE-2013-2232 ipv6: using ipv4 vs ipv6 structure during routing lookup in sendmsg (rhbz 981552 981564) * Thu Jul 4 2013 Dave Airlie <airlied@redhat.com> - qxl: add suspend/resume and hibernate support * Wed Jul 3 2013 Josh Boyer <jwboyer@redhat.com> 3.9.9-301 - CVE-2013-1059 libceph: Fix NULL pointer dereference in auth client code (rhbz 977356 980341) - CVE-2013-2234 net: information leak in AF_KEY notify (rhbz 980995 981007) * Wed Jul 3 2013 Justin M. Forbes <jforbes@redhat.com> 3.9.9-300 - Linux v3.9.9 * Wed Jul 3 2013 Josh Boyer <jwboyer@redhat.com> - Add patches to fix iwl skb managment (rhbz 977040) * Wed Jul 3 2013 Dave Airlie <airlied@redhat.com> - fixup QXL driver patches to make it easier to rebase - add qxl driver dynamic resize + multiple heads support * Mon Jul 1 2013 Dave Airlie <airlied@redhat.com> - kernel portion of qxl cursor and dynamic resize fixes. * Fri Jun 28 2013 Peter Robinson <pbrobinson@fedoraproject.org> - Only enable ARM A15 errata on the LPAE kernel as it breaks A8 * Fri Jun 28 2013 Dave Airlie <airlied@redhat.com> - add qxl fix for missing access ok macro. * Thu Jun 27 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.8-300 - Linux v3.9.8 * Thu Jun 27 2013 Josh Boyer <jwboyer@redhat.com> - Fix stack memory usage for DMA in ath3k (rhbz 977558) * Wed Jun 26 2013 Josh Boyer <jwboyer@redhat.com> - Add two patches to fix bridge networking issues (rhbz 880035) * Tue Jun 25 2013 Kyle McMartin <kyle@redhat.com> - Cherry pick fix out of rawhide for %{with_*} tests in module signing from Jan Stancek. * Mon Jun 24 2013 Josh Boyer <jwboyer@redhat.com> - Fix battery issue with bluetooth keyboards (rhbz 903741) * Fri Jun 21 2013 Josh Boyer <jwboyer@redhat.com> - Add two patches to fix iwlwifi issues in unmapping - Add patch to fix carl9170 oops (rhbz 967271) * Thu Jun 20 2013 Justin M. Forbes <jforbes@redhat.com> - Linux v3.9.7 * Tue Jun 18 2013 Neil Horman <nhorman@redhat.com> - Fix dma debug error in tulip driver (rhbz 956732) * Tue Jun 18 2013 Dave Jones <davej@redhat.com> - Disable MTRR sanitizer by default. * Mon Jun 17 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.6-301 - Add patch to fix radeon issues on powerpc * Thu Jun 13 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.6-300 - Linux v3.9.6 - Drop a bunch of powerpc patches that were includes in 3.9.6. Yay! * Wed Jun 12 2013 Kyle McMartin <kmcmarti@redhat.com> - Merge 0 and %{with_lpae} so both ARM and i686 use the same flavours. Set %{pae} to the flavour name {lpae, PAE}. Merging the descriptions would be nice, but is somewhat irrelevant... * Wed Jun 12 2013 Josh Boyer <jwboyer@redhat.com> - Update gssproxy patches - Fix KVM divide by zero error (rhbz 969644) - Add fix for rt5390/rt3290 regression (rhbz 950735) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1035875 - CVE-2013-6405 Kernel: net: leakage of uninitialized memory to user-space via recv syscalls https://bugzilla.redhat.com/show_bug.cgi?id=1035875 [ 2 ] Bug #1033603 - CVE-2013-6382 Kernel: fs: xfs: missing check for ZERO_SIZE_PTR https://bugzilla.redhat.com/show_bug.cgi?id=1033603 [ 3 ] Bug #1033593 - CVE-2013-6380 Kernel: aacraid: invalid pointer dereference https://bugzilla.redhat.com/show_bug.cgi?id=1033593 [ 4 ] Bug #1033578 - CVE-2013-6378 Kernel: drivers: libertas: potential oops in debugfs https://bugzilla.redhat.com/show_bug.cgi?id=1033578 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update kernel' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|