drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme im Kernel
Name: |
Mehrere Probleme im Kernel |
|
ID: |
FEDORA-2014-17244 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 19 |
|
Datum: |
Mo, 5. Januar 2015, 09:28 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5313
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7825
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7826
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7841
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7842
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8134
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9090 |
|
Applikationen: |
Linux |
|
Originalnachricht |
Name : kernel Product : Fedora 19 Version : 3.14.27 Release : 100.fc19 URL : http://www.kernel.org/ Summary : The Linux kernel Description : The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc.
------------------------------------------------------------------------------- - Update Information:
The 3.14.27 stable update contains a number of important fixes across the tree.\nThe 3.14.26 update contains a number of important fixes across the tree\nThe 3.14.25 stable update contains a number of important fixes across the tree.\nThe 3.14.24 stable update contains a number of important fixes across the tree. ------------------------------------------------------------------------------- - ChangeLog:
* Wed Dec 17 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.27-100 - Linux v3.14.27 * Wed Dec 10 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-8134 fix espfix for 32-bit KVM paravirt guests (rhbz 1172765 1172769) * Mon Dec 8 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.26-100 - Linux v3.14.26 * Thu Dec 4 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-9090 local DoS via do_double_fault due to improper SS faults (rhbz 1170691) * Fri Nov 21 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.25-100 - Linux v3.14.25 * Fri Nov 14 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.24-100 - Linux v3.14.24 * Thu Nov 13 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-7842 kvm: reporting emulation failures to userspace (rhbz 1163762 1163767) * Wed Nov 12 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-7841 sctp: NULL ptr deref on malformed packet (rhbz 1163087 1163095) * Fri Nov 7 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-7826 CVE-2014-7825 insufficient syscall number validation in perf and ftrace subsystems (rhbz 1161565 1161572) * Thu Oct 30 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.23-100 - Linux v3.14.23 * Fri Oct 24 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-3610 kvm: noncanonical MSR writes (rhbz 1144883 1156543) - CVE-2014-3611 kvm: PIT timer race condition (rhbz 1144878 1156537) - CVE-2014-3646 kvm: vmx: invvpid vm exit not handled (rhbz 1144825 1156534) - CVE-2014-8369 kvm: excessive pages un-pinning in kvm_iommu_map error path (rhbz 1156518 1156522) * Wed Oct 22 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.14.22-101 - CVE-2014-3688 sctp: remote memory pressure from excessive queuing (rhbz 1155745 1155751) - CVE-2014-3687 sctp: panic on duplicate ASCONF chunks (rhbz 1155731 1155738) - CVE-2014-3673 sctp: panic with malformed ASCONF chunks (rhbz 1147850 1155727) - CVE-2014-3690 kvm: invalid host cr4 handling (rhbz 1153322 1155372) * Wed Oct 15 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.22-100 - Linux v3.14.22 * Mon Oct 13 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-7975 fs: umount DoS (rhbz 1151108 1152025) * Fri Oct 10 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-7970 VFS: DoS with USER_NS (rhbz 1151095 1151484) * Thu Oct 9 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.21-100 - Linux v3.14.21 * Mon Oct 6 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.20-100 - Linux v3.14.20 * Thu Sep 18 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.19-100 - Linux v3.14.19 * Mon Sep 15 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-6410 udf: avoid infinite loop on indirect ICBs (rhbz 1141809 1141810) - CVE-2014-3186 HID: memory corruption via OOB write (rhbz 1141407 1141410) * Fri Sep 12 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-3181 HID: OOB write in magicmouse driver (rhbz 1141173 1141179) * Wed Sep 10 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-3631 Add patch to fix oops on keyring gc (rhbz 1116347) * Tue Sep 9 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.18-100 - Linux v3.14.18 * Thu Aug 28 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix NFSv3 ACL regression (rhbz 1132786) * Wed Aug 27 2014 Justin M. Forbes <jforbes@fedoraproject.org> - CVE-2014-{5471,5472} isofs: Fix unbounded recursion when processing relocated directories (rhbz 1134099 1134101) * Tue Aug 19 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix NFSv3 oops (rhbz 1131551) * Thu Aug 14 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.14.17-100 - Linux v3.14.17 * Wed Aug 13 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.16-101 - Bump for build * Wed Aug 13 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-{5206,5207} ro bind mount bypass with namespaces (rhbz 1129662 1129669) * Mon Aug 11 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.16-100 - Linux v3.14.16 * Thu Jul 31 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.15-100 - Linux v3.14.15 * Mon Jul 28 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.14-100 - Linux v3.14.14 * Mon Jul 28 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-5077 sctp: fix NULL ptr dereference (rhbz 1122982 1123696) * Thu Jul 24 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-4171 shmem: denial of service (rhbz 1111180 1118247) - CVE-2014-5045 vfs: refcount issues during lazy umount on symlink (rhbz 1122471 1122482) - Fix regression in sched_setparam (rhbz 1117942) - CVE-2014-3534 s390: ptrace: insufficient sanitization with psw mask (rhbz 1114089 1122612) * Thu Jul 17 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.14.13-100 - Linux v3.14.13 - CVE-2014-4943 pppol2tp level handling (rhbz 1119458 1120542) * Mon Jul 14 2014 Josh Boyer <jwboyer@fedoraproject.rog> - 3.14.12-100 - Linux v3.14.12 * Mon Jul 7 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.11-100 - Linux v3.14.11 - Fixes CVE-2014-4715 (rhbz 1115767 1116362) - Fixes CVE-2014-4699 (rhbz 1115927 1116477) * Fri Jun 27 2014 Hans de Goede <hdegoede@redhat.com> - Add patch to fix wifi on lenove yoga 2 series (rhbz#1021036) * Thu Jun 26 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.9-100 - Linux v3.14.9 * Wed Jun 25 2014 Josh Boyer <jwboyer@fedoraproject.org> - Revert commit that breaks Wacom Intuos4 from Benjamin Tissoires - CVE-2014-0206 aio: insufficient head sanitization in aio_read_events_ring (rhbz 1094602 1112975) * Mon Jun 23 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-4508 BUG in x86_32 syscall auditing (rhbz 1111590 1112073) * Fri Jun 20 2014 Josh Boyer <jwboyer@fedoraproject.org> - Bring in intel_pstate regression fixes for BayTrail (rhbz 1111920) * Mon Jun 16 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.8-100 - Linux v3.14.8 * Mon Jun 16 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-4014 possible priv escalation in userns (rhbz 1107966 1109836) * Wed Jun 11 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.14.7-100 - Fix elantech right click on Dell vostro 5470 (rhbz 1103528) - Fix fstrim on dm-thin volume data (rhbz 1106856) - Fix NFS NULL pointer deref with ipv6 (rhbz 1099761) - Fix promisc mode on certain e1000e cards (rhbz 1064516) - Fix i915 backlight issue on gen4 (rhbz 1094066) - Linux v3.14.7 * Sat Jun 7 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.6-100 - Linux v3.14.6 * Fri Jun 6 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-3153 futex: pi futexes requeue issue (rhbz 1103626 1105609) - CVE-2014-3940 missing check during hugepage migration (rhbz 1104097 1105042) * Tue Jun 3 2014 Josh Boyer <jwboyer@fedoraproject.org> - Add fix for team MTU settings from Jiri Pirko (rhbz 1099857) - Backport fix for issues with Quagga introduced by CVE fixes (rhbz 1097684) * Mon Jun 2 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.5-100 - Linux v3.14.5 * Thu May 29 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-3917 DoS with syscall auditing (rhbz 1102571 1102715) * Tue May 20 2014 Josh Boyer <jwboyer@fedoraproject.org> - Backport patch to add new elantech touchpad support (rhbz 1051668) * Wed May 14 2014 Hans de Goede <hdegoede@redhat.com> - Add synaptics min/max quirk patch for the ThinkPad W540 (rhbz 1096436) * Tue May 13 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.4-100 - Linux v3.14.4 * Mon May 12 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-3144/CVE-2014-3145 filter: prevent nla from peeking beyond eom (rhbz 1096775, 1096784) * Fri May 9 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-1738 CVE-2014-1737 floppy: priv esclation (rhbz 1094299 1096195) * Thu May 8 2014 Neil Horman <nhorman@redhat.com> - 3.14.3-101 - Fix dma unmap error in jme driver (rhbz 1082266) * Thu May 8 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.14.3-100 - Linux v3.14.3 * Sat May 3 2014 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix HID rmi driver from Benjamin Tissoires (rhbz 1090161) * Wed Apr 30 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-3122: mm: fix locking DoS issue (rhbz 1093084 1093076) - Enable CONFIG_MEMORY_HOTPLUG (rhbz 1092948) * Fri Apr 25 2014 Hans de Goede <hdegoede@redhat.com> - Add synaptics min-max quirk for ThinkPad Edge E431 (rhbz#1089689) * Wed Apr 23 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.11-100 - Linux v3.13.11 * Tue Apr 22 2014 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix Synaptics touchscreens and HID rmi driver (rhbz 1089583) * Mon Apr 21 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix Brainboxes Express Cards (rhbz 1071914) * Thu Apr 17 2014 Hans de Goede <hdegoede@redhat.com> - Update min/max quirk patch to add a quirk for the ThinkPad L540 (rhbz1088588) * Mon Apr 14 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.10-100 - Linux v3.13.10 * Mon Apr 14 2014 Hans de Goede <hdegoede@redhat.com> - Add min/max quirks for various new Thinkpad touchpads (rhbz 1085582 1085697) * Mon Apr 14 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-2851 net ipv4 ping refcount issue in ping_init_sock (rhbz 1086730 1087420) * Thu Apr 10 2014 Josh Boyer <jwboyer@fedoraproject.org> - Backported HID RMI driver for Haswell Dell XPS machines from Benjamin Tissoires (rhbz 1048314) * Wed Apr 9 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-0155 KVM: BUG caused by invalid guest ioapic redirect table (rhbz 1081589 1085016) - Add patch to fix SELinux lables on /proc files (rhbz 1084829) - Add patch to fix S3 in KVM guests (rhbz 1074235) * Thu Apr 3 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.9-100 - Linux v3.13.9 * Tue Apr 1 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-2678 net: rds: deref of NULL dev in rds_iw_laddr_check (rhbz 1083274 1083280) * Mon Mar 31 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.8-100 - Linux v3.13.8 * Mon Mar 31 2014 Hans de Goede <hdegoede@redhat.com> - Fix clicks getting lost with cypress_ps2 touchpads with recent xorg-x11-drv-synaptics versions (bfdo#76341) * Fri Mar 28 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-2580 xen: netback crash trying to disable due to malformed packet (rhbz 1080084 1080086) - CVE-2014-0077 vhost-net: insufficent big packet handling in handle_rx (rhbz 1064440 1081504) - CVE-2014-0055 vhost-net: insufficent error handling in get_rx_bufs (rhbz 1062577 1081503) - CVE-2014-2568 net: potential info leak when ubuf backed skbs are zero copied (rhbz 1079012 1079013) * Mon Mar 24 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.7-100 - Linux v3.13.7 * Thu Mar 20 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-0131: skbuff: use-after-free during segmentation with zerocopy (rhbz 1074589 1079006) - Fix readahead semantics on pipes and sockets (rhbz 1078894) * Mon Mar 17 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-2523 netfilter: nf_conntrack_dccp: incorrect skb_header_pointer API usages (rhbz 1077343 1077350) * Wed Mar 12 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix locking issue in iwldvm (rhbz 1046495) * Tue Mar 11 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-2309 ipv6: crash due to router advertisment flooding (rhbz 1074471 1075064) * Fri Mar 7 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.6-100 - Linux v3.13.6 * Fri Mar 7 2014 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix iwldvm WARN (rhbz 1065663) - Revert two xhci fixes that break USB mass storage (rhbz 1073180) * Thu Mar 6 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix stale EC events on Samsung systems (rhbz 1003602) - Fix depmod error message from hci_vhci module (rhbz 1051748) - Fix bogus WARN in iwlwifi (rhbz 1071998) * Tue Mar 4 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix MAC-before-DAC check for mmap_zero (rhbz 1013466) - Fix hidp crash with apple bluetooth trackpads (rhbz 1027465) * Mon Mar 3 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.13.5-103 - CVE-2014-0100 net: inet frag race condition use-after-free (rhbz 1072026 1070618) - CVE-2014-0101 sctp: null ptr deref when processing auth cookie_echo chunk (rhbz 1070209 1070705) - Fix overly verbose audit logs (rhbz 1066064) * Mon Mar 3 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.13.5-102 - CVE-2014-0049 kvm: mmio_fragments out-of-bounds access (rhbz 1062368 1071837) - Fix atomic sched BUG in tty low_latency (rhbz 1065087) * Fri Feb 28 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-0102 keyctl_link can be used to cause an oops (rhbz 1071396) * Fri Feb 28 2014 Josh Boyer <jwboyer@fedoraproject.org> - Drop alx phy reset patch that is already in 3.13 * Tue Feb 25 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.5-101 * Fix module signing so secure boot works again * Tue Feb 25 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix mounting issues on cifs (rhbz 1068862) * Mon Feb 24 2014 Josh Boyer <jwboyer@fedoraproject.org> 3.13.5-100 - CVE-2014-2039 s390: crash due to linkage stack instructions (rhbz 1067558 1068758) - Fix lockdep issue in EHCI when using threaded IRQs (rhbz 1056170) * Mon Feb 24 2014 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.13.5 * Fri Feb 21 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix WARN from e100 from Michele Baldessari (rhbz 994438) * Thu Feb 20 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.13.4-100 - Linux v3.13.4 * Tue Feb 18 2014 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.13.3 * Tue Feb 18 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix r8169 ethernet after suspend (rhbz 1054408) * Fri Feb 14 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.12.11-201 - CVE-2014-0069 cifs: incorrect handling of bogus user pointers (rhbz 1064253 1062585) * Thu Feb 13 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.12.11-200 - Linux v3.12.11 * Wed Feb 12 2014 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix list corruption from pinctrl (rhbz 1051918) - Fix cgroup destroy oops (rhbz 1045755) - Fix backtrace in amd_e400_idle (rhbz 1031296) - CVE-2014-1874 SELinux: local denial of service (rhbz 1062356 1062507) * Thu Feb 6 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.12.10-200 - Linux v3.12.10 * Wed Feb 5 2014 Justin M. Forbes <jforbes@fedoraproject.org> - fix resume issues on Renesas chips in Samsung laptops (rhbz 950630) * Wed Jan 29 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.12.9-201 - ipv6 addrconf: revert /proc/net/if_inet6 ifa_flag format (rhbz 1056711) * Tue Jan 28 2014 Josh Boyer <jwboyer@fedoraproject.org> - Add patch from Stanislaw Gruszka to fix ath9k BUG (rhbz 990955) * Mon Jan 27 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.12.9-200 - Backport new IPv6 address flag IFA_F_NOPREFIXROUTE and IFA_F_MANAGETEMPADDR (rhbz 1056711) - Linux v3.12.9 - i915: remove pm_qos request on error (rhbz 1057533) * Wed Jan 15 2014 Justin M. Forbes <jforbes@fedoraproject.org> - 3.12.8-200 - Linux v3.12.8 * Wed Jan 15 2014 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2014-1446 hamradio/yam: information leak in ioctl (rhbz 1053620 1053647) - CVE-2014-1438 x86: exceptions are not cleared in AMD FXSAVE workaround (rhbz 1053599 1052914) * Tue Jan 14 2014 Josh Boyer <jwboyer@fedoraproject.org> - Fix k-m-e Provides to be explicit to only the package flavor (rhbz 1046246) * Tue Jan 14 2014 Neil Horman <nhorman@redhat.com> - Backport ipv6 route cache expiration fix (rhbz 1040128) * Fri Jan 10 2014 Justin M. Forbes <jforbes@fedoraproject.org - 3.12.7-200 - Linux v3.12.7 * Wed Jan 8 2014 Josh Boyer <jwboyer@fedoraproject.org> - Backport support for ALPS Dolphin devices (rhbz 953211) - Enable BCMA_DRIVER_GPIO by turning on GPIOLIB everywhere (rhbz 1021098) * Mon Jan 6 2014 Josh Boyer <jwboyer@fedoraproject.org> - Add support for BCM57786 devices to tg3 (rhbz 1044471) - Fix use after free crash in KVM (rhbz 1047892) - Fix oops in KVM with invalid root_hpa (rhbz 924916) - CVE-2013-4579: ath9k_htc improper MAC update (rhbz 1032753 1033072) * Mon Dec 23 2013 Justin M. Forbes <jforbes@fedoraproject.org - 3.12.6-200 - Linux v3.12.6 * Fri Dec 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patches to fix dummy gssd entry (rhbz 1037793) * Wed Dec 18 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix nowatchdog-on-virt.patch to actually work in KVM guests * Tue Dec 17 2013 Justin M. Forbes <jforbes@fedoraproject.org - 3.12.5-200 - Linux v3.12.5 rebase * Mon Dec 16 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix host lockup in bridge code when starting from virt guest (rhbz 1025770) * Thu Dec 12 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4587 kvm: out-of-bounds access (rhbz 1030986 1042071) - CVE-2013-6376 kvm: BUG_ON in apic_cluster_id (rhbz 1033106 1042099) - CVE-2013-6368 kvm: cross page vapic_addr access (rhbz 1032210 1042090) - CVE-2013-6367 kvm: division by 0 in apic_get_tmcct (rhbz 1032207 1042081) * Wed Dec 11 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patches to support ETPS/2 Elantech touchpads (rhbz 1030802) * Tue Dec 10 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-XXXX net: memory leak in recvmsg (rhbz 1039845 1039874) * Tue Dec 3 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patches to fix rfkill switch on Dell machines (rhbz 958826) * Sat Nov 30 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-6405 net: leak of uninited mem to userspace via recv syscalls (rhbz 1035875 1035887) * Fri Nov 29 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.10-200 - Linux v3.11.10 - Fix memory leak in qxl (from Dave Airlie) * Tue Nov 26 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix usbnet URB handling (rhbz 998342) - Fix crash in via-velocity driver (rhbz 1022733) - CVE-2013-6382 xfs: missing check for ZERO_SIZE_PTR (rhbz 1033603 1034670) * Mon Nov 25 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-6380 aacraid: invalid pointer dereference (rhbz 1033593 1034304) - CVE-2013-6378 libertas: potential oops in debugfs (rhbz 1033578 1034183) * Fri Nov 22 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patches from Jeff Layton to fix 15sec NFS mount hang * Wed Nov 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.9-200 - Linux v3.11.9 * Mon Nov 18 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix rhel5.9 KVM guests (rhbz 967652) - Add patch to fix crash from slab when using md-raid mirrors (rhbz 1031086) - Add patches from Pierre Ossman to fix 24Hz/24p radeon audio (rhbz 1010679) - Add patch to fix ALX phy issues after resume (rhbz 1011362) - Fix ipv6 sit panic with packet size > mtu (from Michele Baldessari) (rbhz 1015905) * Thu Nov 14 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4563: net: large udp packet over IPv6 over UFO-enabled device with TBF qdisc panic (rhbz 1030015 1030017) * Wed Nov 13 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.8-200 - Linux v3.11.8 * Sat Nov 9 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch from Daniel Stone to avoid high order allocations in evdev - Add qxl backport fixes from Dave Airlie * Mon Nov 4 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.7-200 - Add patch to fix iwlwifi queue settings backtrace (rhbz 1025769) * Mon Nov 4 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.11.7 * Fri Nov 1 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.6-201 - Revert blocking patches causing systemd to crash on resume (rhbz 1010603) - CVE-2013-4348 net: deadloop path in skb_flow_dissect (rhbz 1007939 1025647) * Thu Oct 31 2013 Josh Boyer <jwboyer@fedoraprorject.org> - Fix display regression on Dell XPS 13 machines (rhbz 995782) * Tue Oct 29 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix plaintext auth regression in cifs (rhbz 1011621) * Fri Oct 25 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4470 net: memory corruption with UDP_CORK and UFO (rhbz 1023477 1023495) - Add touchpad support for Dell XT2 (rhbz 1023413) * Tue Oct 22 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix warning in tcp_fastretrans_alert (rhbz 989251) * Fri Oct 18 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.6-200 - Linux v3.11.6 * Thu Oct 17 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix BusLogic error (rhbz 1015558) - Fix rt2800usb polling timeouts and throughput issues (rhbz 984696) * Wed Oct 16 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix btrfs balance/scrub issue (rhbz 1011714) * Tue Oct 15 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix regression in radeon sound (rhbz 1010679) * Mon Oct 14 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.5-200 - Linux v3.11.5 * Fri Oct 11 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix segfault in cpupower set (rhbz 1000439) * Thu Oct 10 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.4-201 - Tag for build * Thu Oct 10 2013 Josh Boyer <jwboyer@fedoraproject.org> - USB OHCI accept very late isochronous URBs (in 3.11.4) (rhbz 975158) - Fix large order allocation in dm mq policy (rhbz 993744) * Wed Oct 9 2013 Josh Boyer <jwboyer@fedoraproject.org> - Don't trigger a stack trace on crashing iwlwifi firmware (rhbz 896695) - Add patch to fix VFIO IOMMU crash (rhbz 998732) * Tue Oct 8 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix nouveau crash (rhbz 1015920) - Quiet irq remapping stack trace (rhbz 982153) - Use RCU safe kfree for conntrack (rhbz 1015989) * Mon Oct 7 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.11.4 * Thu Oct 3 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4387 ipv6: panic when UFO=On for an interface (rhbz 1011927 1015166) * Wed Oct 2 2013 Justin M. Forbes <jforbes@fedoraproject.org> - drm/radeon: don't set default clocks for SI when DPM is disabled (rhbz 1013814) * Wed Oct 2 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.3-200 - Linux v3.11.3 * Wed Oct 2 2013 Neil Horman <nhorman@redhat.com> - Add promiscuity fix for vlans plus bonding (rhbz 1005567) * Mon Sep 30 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add support for rf3070 devices from Stanislaw Gruszka (rhbz 974072) - Drop VC_MUTE patch (rhbz 859485) * Fri Sep 27 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.2-201 - Bump and tag for build * Fri Sep 27 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix oops from applesmc (rhbz 1011719) - Add patches to fix soft lockup from elevator changes (rhbz 902012) * Fri Sep 27 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.2-200 - Linux v3.11.2 * Wed Sep 25 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Bump baserelease for test build * Wed Sep 25 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add another fix for skge (rhbz 1008323) * Mon Sep 23 2013 Neil Horman <nhorman@redhat.com> - Add alb learning packet config knob (rhbz 971893) * Mon Sep 23 2013 Josh Boyer <jwboyer@fedoraproject.org> - Revert rt2x00 commit that breaks connectivity (rhbz 1010431) * Fri Sep 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix RTC updates from ntp (rhbz 985522) - Fix broken skge driver (rhbz 1008328) - Fix large order rpc allocations (rhbz 997705) - Fix multimedia keys on Genius GX keyboard (rhbz 928561) * Tue Sep 17 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4345 ansi_cprng: off by one error in non-block size request (rhbz 1007690 1009136) * Sat Sep 14 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.1-200 - Linux v3.11.1 * Fri Sep 13 2013 Kyle McMartin <kyle@redhat.com> - Fix crash-driver.patch to properly use page_is_ram. * Fri Sep 13 2013 Josh Boyer <jwboyer@fedoraproject.org> - CVE-2013-4350 net: sctp: ipv6 ipsec encryption bug in sctp_v6_xmit (rhbz 1007872 1007903) - CVE-2013-4343 net: use-after-free TUNSETIFF (rhbz 1007733 1007741) * Thu Sep 12 2013 Josh Boyer <jwboyer@fedoraproject.org> - Update HID CVE fixes to fix crash from lenovo-tpkbd driver (rhbz 1003998) * Wed Sep 11 2013 Neil Horman <nhorman@redhat.com> - Fix pcie/acpi hotplug conflict (rhbz 963991) - Fix race in crypto larval lookup * Wed Sep 11 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.11 rebase * Mon Sep 9 2013 Josh Boyer <jwboyer@fedoraproject.org> 3.10.11-200 - Fix system freeze due to incorrect rt2800 initialization (rhbz 1000679) * Mon Sep 9 2013 Justin M. Forbes <jforbes@fedoraproject.org> - Linux v3.10.11 * Fri Aug 30 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix HID CVEs. Absurd. - CVE-2013-2888 rhbz 1000451 1002543 CVE-2013-2889 rhbz 999890 1002548 - CVE-2013-2891 rhbz 999960 1002555 CVE-2013-2892 rhbz 1000429 1002570 - CVE-2013-2893 rhbz 1000414 1002575 CVE-2013-2894 rhbz 1000137 1002579 - CVE-2013-2895 rhbz 1000360 1002581 CVE-2013-2896 rhbz 1000494 1002594 - CVE-2013-2897 rhbz 1000536 1002600 CVE-2013-2899 rhbz 1000373 1002604 * Thu Aug 29 2013 Justin M. Forbes <jforbes@fedoraproject.org> 3.10.10-200 - Linux v3.10.10 * Wed Aug 28 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add mei patches that fix various s/r issues (rhbz 994824 989373) * Wed Aug 21 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch to fix brcmsmac oops (rhbz 989269) - CVE-2013-0343 handling of IPv6 temporary addresses (rhbz 914664 999380) * Tue Aug 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - Linux v3.10.9 * Tue Aug 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.10.8-200 - Linux v3.10.8 - CVE-2013-4254 ARM: perf: NULL pointer dereference in validate_event (rhbz 998878 998881) * Fri Aug 16 2013 Josh Boyer <jwboyer@fedoraproject.org> - Add patch from Nathanael Noblet to fix mic on Gateway LT27 (rhbz 845699) * Thu Aug 15 2013 Josh Boyer <jwboyer@redhat.com> - 3.10.7-200 - Enable memory cgroup swap accounting (rhbz 982808) - Add patch to fix regression on TeVII S471 devices (rhbz 963715) - Linux v3.10.7 * Mon Aug 12 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.6-200 - Linux v3.10.6 * Wed Aug 7 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.5-201 - Bump for rebuild after koji hiccup * Wed Aug 7 2013 Josh Boyer <jwboyer@redhat.com> - Add zero file length check to make sure pesign didn't fail (rhbz 991808) * Tue Aug 6 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.5-200 - update s390x config [Dan Horák] * Mon Aug 5 2013 Justin M. Forbes <jforbes@redhat.com> - Linux v3.10.5 * Thu Aug 1 2013 Josh Boyer <jwboyer@redhat.com> - Fix mac80211 connection issues (rhbz 981445) - Fix firmware issues with iwl4965 and rfkill (rhbz 977053) - Drop hid-logitech-dj patch that was breaking enumeration (rhbz 989138) * Wed Jul 31 2013 Josh Boyer <jwboyer@redhat.com> - update s390x config [Dan Horák] * Tue Jul 30 2013 Josh Boyer <jwboyer@redhat.com> - 3.10.4-300 - Revert some changes to make Logitech devices function properly (rhbz 989138) * Mon Jul 29 2013 Josh Boyer <jwboyer@redhat.com> - Fix i915 suspend/resume regression in 3.10 (rhbz 989093) - Linux v3.10.4 - Add support for elantech v7 devices (rhbz 969473) * Fri Jul 26 2013 Josh Boyer <jwboyer@redhat.com> - Add patch to fix NULL deref in iwlwifi (rhbz 979581) * Thu Jul 25 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.3-300 - Linux v3.10.3 * Wed Jul 24 2013 Justin M. Forbes <jforbes@redhat.com> - Net stable queue from davem (rhbz 987639 987656) * Mon Jul 22 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.2-301 - Update secureboot patch for 3.10 * Mon Jul 22 2013 Josh Boyer <jwboyer@redhat.com> - Fix timer issue in bridge code (rhbz 980254) * Mon Jul 22 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.2-300 - Linux v3.10.2 * Fri Jul 19 2013 Dave Jones <davej@redhat.com> - CVE-2013-4125 ipv6: BUG_ON in fib6_add_rt2node() (rhbz 984664) * Wed Jul 17 2013 Peter Robinson <pbrobinson@fedoraproject.org> - Re-enable ARM - Drop tegra subkernel as it's now multi-platform - Enable i.MX SoC support - Drop old ARM patches * Wed Jul 17 2013 Dave Jones <davej@redhat.com> - Rebase to 3.10.1 dropped: debug-bad-pte-dmi.patch debug-bad-pte-modules.patch arm-omap-ehci-fix.patch arm-omap-fixdrm.patch drm-ttm-exports-for-qxl.patch drm-qxl-driver.patch drm-qxl-3.10-rc7-diff.patch drm-qxl-access-fix.patch VMX-x86-handle-host-TSC-calibration-failure.patch forcedeth-dma-error-check.patch block-do-not-pass-disk-names-as-format-strings.patch cdrom-use-kzalloc-for-failing-hardware.patch vfio-Set-container-device-mode.patch vfio-fix-crash-on-rmmod.patch tulip-dma-debug-error.patch af_key-fix-info-leaks-in-notify-messages.patch ipv6-ip6_sk_dst_check-must-not-assume-ipv6-dst.patch arm-tegra-fixclk.patch cfg80211-mac80211-disconnect-on-suspend.patch mac80211_fixes_for_ieee80211_do_stop_while_suspend_v3.9.patch gssproxy-backport.patch ceph-fix.patch * Fri Jul 12 2013 Dave Jones <davej@redhat.com> - 3.9.9-304 - Disable LATENCYTOP/SCHEDSTATS in non-debug builds. * Fri Jul 12 2013 Josh Boyer <jwboyer@redhat.com> - Fix various overflow issues in ext4 (rhbz 976837) - Add iwlwifi fix for connection issue (rhbz 885407) * Thu Jul 11 2013 Kyle McMartin <kyle@redhat.com> - Enable USB on i.MX based boards, patch from Niels de Vos. * Fri Jul 5 2013 Josh Boyer <jwboyer@redhat.com> - Add report fixup for Genius Gila mouse from Benjamin Tissoires (rhbz 959721) - Add vhost-net use-after-free fix (rhbz 976789 980643) - Add fix for timer issue in bridge code (rhbz 980254) - CVE-2013-2232 ipv6: using ipv4 vs ipv6 structure during routing lookup in sendmsg (rhbz 981552 981564) * Thu Jul 4 2013 Dave Airlie <airlied@redhat.com> - qxl: add suspend/resume and hibernate support * Wed Jul 3 2013 Josh Boyer <jwboyer@redhat.com> 3.9.9-301 - CVE-2013-1059 libceph: Fix NULL pointer dereference in auth client code (rhbz 977356 980341) - CVE-2013-2234 net: information leak in AF_KEY notify (rhbz 980995 981007) * Wed Jul 3 2013 Justin M. Forbes <jforbes@redhat.com> 3.9.9-300 - Linux v3.9.9 * Wed Jul 3 2013 Josh Boyer <jwboyer@redhat.com> - Add patches to fix iwl skb managment (rhbz 977040) * Wed Jul 3 2013 Dave Airlie <airlied@redhat.com> - fixup QXL driver patches to make it easier to rebase - add qxl driver dynamic resize + multiple heads support * Mon Jul 1 2013 Dave Airlie <airlied@redhat.com> - kernel portion of qxl cursor and dynamic resize fixes. * Fri Jun 28 2013 Peter Robinson <pbrobinson@fedoraproject.org> - Only enable ARM A15 errata on the LPAE kernel as it breaks A8 * Fri Jun 28 2013 Dave Airlie <airlied@redhat.com> - add qxl fix for missing access ok macro. * Thu Jun 27 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.8-300 - Linux v3.9.8 * Thu Jun 27 2013 Josh Boyer <jwboyer@redhat.com> - Fix stack memory usage for DMA in ath3k (rhbz 977558) * Wed Jun 26 2013 Josh Boyer <jwboyer@redhat.com> - Add two patches to fix bridge networking issues (rhbz 880035) * Tue Jun 25 2013 Kyle McMartin <kyle@redhat.com> - Cherry pick fix out of rawhide for %{with_*} tests in module signing from Jan Stancek. * Mon Jun 24 2013 Josh Boyer <jwboyer@redhat.com> - Fix battery issue with bluetooth keyboards (rhbz 903741) * Fri Jun 21 2013 Josh Boyer <jwboyer@redhat.com> - Add two patches to fix iwlwifi issues in unmapping - Add patch to fix carl9170 oops (rhbz 967271) * Thu Jun 20 2013 Justin M. Forbes <jforbes@redhat.com> - Linux v3.9.7 * Tue Jun 18 2013 Neil Horman <nhorman@redhat.com> - Fix dma debug error in tulip driver (rhbz 956732) * Tue Jun 18 2013 Dave Jones <davej@redhat.com> - Disable MTRR sanitizer by default. * Mon Jun 17 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.6-301 - Add patch to fix radeon issues on powerpc * Thu Jun 13 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.6-300 - Linux v3.9.6 - Drop a bunch of powerpc patches that were includes in 3.9.6. Yay! * Wed Jun 12 2013 Kyle McMartin <kmcmarti@redhat.com> - Merge 0 and %{with_lpae} so both ARM and i686 use the same flavours. Set %{pae} to the flavour name {lpae, PAE}. Merging the descriptions would be nice, but is somewhat irrelevant... * Wed Jun 12 2013 Josh Boyer <jwboyer@redhat.com> - Update gssproxy patches - Fix KVM divide by zero error (rhbz 969644) - Add fix for rt5390/rt3290 regression (rhbz 950735) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1172765 - CVE-2014-8134 kernel: x86: espfix not working for 32-bit KVM paravirt guests https://bugzilla.redhat.com/show_bug.cgi?id=1172765 [ 2 ] Bug #1170691 - CVE-2014-9090 kernel: espfix64: local DoS via do_double_fault() due to improper handling of faults associated with SS segment register https://bugzilla.redhat.com/show_bug.cgi?id=1170691 [ 3 ] Bug #1163762 - CVE-2010-5313 CVE-2014-7842 kernel: kvm: reporting emulation failures to userspace https://bugzilla.redhat.com/show_bug.cgi?id=1163762 [ 4 ] Bug #1163087 - CVE-2014-7841 kernel: net: sctp: NULL pointer dereference in af->from_addr_param on malformed packet https://bugzilla.redhat.com/show_bug.cgi?id=1163087 [ 5 ] Bug #1161565 - CVE-2014-7825 CVE-2014-7826 kernel: insufficient syscall number validation in perf and ftrace subsystems https://bugzilla.redhat.com/show_bug.cgi?id=1161565 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update kernel' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|