Login
Newsletter
Werbung

Sicherheit: Mehrere Probleme im Kernel
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme im Kernel
ID: FEDORA-2014-6354
Distribution: Fedora
Plattformen: Fedora 19
Datum: Do, 22. Mai 2014, 08:54
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0181
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0196
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1737
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1738
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3122
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3144
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3145
Applikationen: Linux

Originalnachricht

Name        : kernel
Product : Fedora 19
Version : 3.14.4
Release : 100.fc19
URL : http://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

-------------------------------------------------------------------------------
-
Update Information:

The 3.14.4 stable update contains a number of important fixes across the tree.
The 3.14.3 stable rebase contains support for new hardware, some new features,
and a number of important fixes across the tree.
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue May 13 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.14.4-100
- Linux v3.14.4
* Mon May 12 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-3144/CVE-2014-3145 filter: prevent nla from peeking beyond eom (rhbz
1096775, 1096784)
* Fri May 9 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-1738 CVE-2014-1737 floppy: priv esclation (rhbz 1094299 1096195)
* Thu May 8 2014 Neil Horman <nhorman@redhat.com> - 3.14.3-101
- Fix dma unmap error in jme driver (rhbz 1082266)
* Thu May 8 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.14.3-100
- Linux v3.14.3
* Sat May 3 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix HID rmi driver from Benjamin Tissoires (rhbz 1090161)
* Wed Apr 30 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-3122: mm: fix locking DoS issue (rhbz 1093084 1093076)
- Enable CONFIG_MEMORY_HOTPLUG (rhbz 1092948)
* Fri Apr 25 2014 Hans de Goede <hdegoede@redhat.com>
- Add synaptics min-max quirk for ThinkPad Edge E431 (rhbz#1089689)
* Wed Apr 23 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.11-100
- Linux v3.13.11
* Tue Apr 22 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix Synaptics touchscreens and HID rmi driver (rhbz 1089583)
* Mon Apr 21 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix Brainboxes Express Cards (rhbz 1071914)
* Thu Apr 17 2014 Hans de Goede <hdegoede@redhat.com>
- Update min/max quirk patch to add a quirk for the ThinkPad L540 (rhbz1088588)
* Mon Apr 14 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.10-100
- Linux v3.13.10
* Mon Apr 14 2014 Hans de Goede <hdegoede@redhat.com>
- Add min/max quirks for various new Thinkpad touchpads (rhbz 1085582 1085697)
* Mon Apr 14 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-2851 net ipv4 ping refcount issue in ping_init_sock (rhbz 1086730
1087420)
* Thu Apr 10 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Backported HID RMI driver for Haswell Dell XPS machines from Benjamin
Tissoires (rhbz 1048314)
* Wed Apr 9 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-0155 KVM: BUG caused by invalid guest ioapic redirect table (rhbz
1081589 1085016)
- Add patch to fix SELinux lables on /proc files (rhbz 1084829)
- Add patch to fix S3 in KVM guests (rhbz 1074235)
* Thu Apr 3 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.9-100
- Linux v3.13.9
* Tue Apr 1 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-2678 net: rds: deref of NULL dev in rds_iw_laddr_check (rhbz 1083274
1083280)
* Mon Mar 31 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.8-100
- Linux v3.13.8
* Mon Mar 31 2014 Hans de Goede <hdegoede@redhat.com>
- Fix clicks getting lost with cypress_ps2 touchpads with recent
xorg-x11-drv-synaptics versions (bfdo#76341)
* Fri Mar 28 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-2580 xen: netback crash trying to disable due to malformed packet
(rhbz 1080084 1080086)
- CVE-2014-0077 vhost-net: insufficent big packet handling in handle_rx (rhbz
1064440 1081504)
- CVE-2014-0055 vhost-net: insufficent error handling in get_rx_bufs (rhbz
1062577 1081503)
- CVE-2014-2568 net: potential info leak when ubuf backed skbs are zero copied
(rhbz 1079012 1079013)
* Mon Mar 24 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.7-100
- Linux v3.13.7
* Thu Mar 20 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-0131: skbuff: use-after-free during segmentation with zerocopy (rhbz
1074589 1079006)
- Fix readahead semantics on pipes and sockets (rhbz 1078894)
* Mon Mar 17 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-2523 netfilter: nf_conntrack_dccp: incorrect skb_header_pointer API
usages (rhbz 1077343 1077350)
* Wed Mar 12 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix locking issue in iwldvm (rhbz 1046495)
* Tue Mar 11 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-2309 ipv6: crash due to router advertisment flooding (rhbz 1074471
1075064)
* Fri Mar 7 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.6-100
- Linux v3.13.6
* Fri Mar 7 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix iwldvm WARN (rhbz 1065663)
- Revert two xhci fixes that break USB mass storage (rhbz 1073180)
* Thu Mar 6 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix stale EC events on Samsung systems (rhbz 1003602)
- Fix depmod error message from hci_vhci module (rhbz 1051748)
- Fix bogus WARN in iwlwifi (rhbz 1071998)
* Tue Mar 4 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix MAC-before-DAC check for mmap_zero (rhbz 1013466)
- Fix hidp crash with apple bluetooth trackpads (rhbz 1027465)
* Mon Mar 3 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.13.5-103
- CVE-2014-0100 net: inet frag race condition use-after-free (rhbz 1072026
1070618)
- CVE-2014-0101 sctp: null ptr deref when processing auth cookie_echo chunk
(rhbz 1070209 1070705)
- Fix overly verbose audit logs (rhbz 1066064)
* Mon Mar 3 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.13.5-102
- CVE-2014-0049 kvm: mmio_fragments out-of-bounds access (rhbz 1062368 1071837)
- Fix atomic sched BUG in tty low_latency (rhbz 1065087)
* Fri Feb 28 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-0102 keyctl_link can be used to cause an oops (rhbz 1071396)
* Fri Feb 28 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Drop alx phy reset patch that is already in 3.13
* Tue Feb 25 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.5-101
* Fix module signing so secure boot works again
* Tue Feb 25 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix mounting issues on cifs (rhbz 1068862)
* Mon Feb 24 2014 Josh Boyer <jwboyer@fedoraproject.org> 3.13.5-100
- CVE-2014-2039 s390: crash due to linkage stack instructions (rhbz 1067558
1068758)
- Fix lockdep issue in EHCI when using threaded IRQs (rhbz 1056170)
* Mon Feb 24 2014 Justin M. Forbes <jforbes@fedoraproject.org>
- Linux v3.13.5
* Fri Feb 21 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix WARN from e100 from Michele Baldessari (rhbz 994438)
* Thu Feb 20 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.13.4-100
- Linux v3.13.4
* Tue Feb 18 2014 Justin M. Forbes <jforbes@fedoraproject.org>
- Linux v3.13.3
* Tue Feb 18 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix r8169 ethernet after suspend (rhbz 1054408)
* Fri Feb 14 2014 Josh Boyer <jwboyer@fedoraproject.org> - 3.12.11-201
- CVE-2014-0069 cifs: incorrect handling of bogus user pointers (rhbz 1064253
1062585)
* Thu Feb 13 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.12.11-200
- Linux v3.12.11
* Wed Feb 12 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix list corruption from pinctrl (rhbz 1051918)
- Fix cgroup destroy oops (rhbz 1045755)
- Fix backtrace in amd_e400_idle (rhbz 1031296)
- CVE-2014-1874 SELinux: local denial of service (rhbz 1062356 1062507)
* Thu Feb 6 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.12.10-200
- Linux v3.12.10
* Wed Feb 5 2014 Justin M. Forbes <jforbes@fedoraproject.org>
- fix resume issues on Renesas chips in Samsung laptops (rhbz 950630)
* Wed Jan 29 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.12.9-201
- ipv6 addrconf: revert /proc/net/if_inet6 ifa_flag format (rhbz 1056711)
* Tue Jan 28 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch from Stanislaw Gruszka to fix ath9k BUG (rhbz 990955)
* Mon Jan 27 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.12.9-200
- Backport new IPv6 address flag IFA_F_NOPREFIXROUTE and IFA_F_MANAGETEMPADDR
(rhbz 1056711)
- Linux v3.12.9
- i915: remove pm_qos request on error (rhbz 1057533)
* Wed Jan 15 2014 Justin M. Forbes <jforbes@fedoraproject.org> -
3.12.8-200
- Linux v3.12.8
* Wed Jan 15 2014 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2014-1446 hamradio/yam: information leak in ioctl (rhbz 1053620 1053647)
- CVE-2014-1438 x86: exceptions are not cleared in AMD FXSAVE workaround (rhbz
1053599 1052914)
* Tue Jan 14 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Fix k-m-e Provides to be explicit to only the package flavor (rhbz 1046246)
* Tue Jan 14 2014 Neil Horman <nhorman@redhat.com>
- Backport ipv6 route cache expiration fix (rhbz 1040128)
* Fri Jan 10 2014 Justin M. Forbes <jforbes@fedoraproject.org - 3.12.7-200
- Linux v3.12.7
* Wed Jan 8 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Backport support for ALPS Dolphin devices (rhbz 953211)
- Enable BCMA_DRIVER_GPIO by turning on GPIOLIB everywhere (rhbz 1021098)
* Mon Jan 6 2014 Josh Boyer <jwboyer@fedoraproject.org>
- Add support for BCM57786 devices to tg3 (rhbz 1044471)
- Fix use after free crash in KVM (rhbz 1047892)
- Fix oops in KVM with invalid root_hpa (rhbz 924916)
- CVE-2013-4579: ath9k_htc improper MAC update (rhbz 1032753 1033072)
* Mon Dec 23 2013 Justin M. Forbes <jforbes@fedoraproject.org - 3.12.6-200
- Linux v3.12.6
* Fri Dec 20 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patches to fix dummy gssd entry (rhbz 1037793)
* Wed Dec 18 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix nowatchdog-on-virt.patch to actually work in KVM guests
* Tue Dec 17 2013 Justin M. Forbes <jforbes@fedoraproject.org - 3.12.5-200
- Linux v3.12.5 rebase
* Mon Dec 16 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix host lockup in bridge code when starting from virt guest (rhbz 1025770)
* Thu Dec 12 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-4587 kvm: out-of-bounds access (rhbz 1030986 1042071)
- CVE-2013-6376 kvm: BUG_ON in apic_cluster_id (rhbz 1033106 1042099)
- CVE-2013-6368 kvm: cross page vapic_addr access (rhbz 1032210 1042090)
- CVE-2013-6367 kvm: division by 0 in apic_get_tmcct (rhbz 1032207 1042081)
* Wed Dec 11 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patches to support ETPS/2 Elantech touchpads (rhbz 1030802)
* Tue Dec 10 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-XXXX net: memory leak in recvmsg (rhbz 1039845 1039874)
* Tue Dec 3 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patches to fix rfkill switch on Dell machines (rhbz 958826)
* Sat Nov 30 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-6405 net: leak of uninited mem to userspace via recv syscalls (rhbz
1035875 1035887)
* Fri Nov 29 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.10-200
- Linux v3.11.10
- Fix memory leak in qxl (from Dave Airlie)
* Tue Nov 26 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix usbnet URB handling (rhbz 998342)
- Fix crash in via-velocity driver (rhbz 1022733)
- CVE-2013-6382 xfs: missing check for ZERO_SIZE_PTR (rhbz 1033603 1034670)
* Mon Nov 25 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-6380 aacraid: invalid pointer dereference (rhbz 1033593 1034304)
- CVE-2013-6378 libertas: potential oops in debugfs (rhbz 1033578 1034183)
* Fri Nov 22 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patches from Jeff Layton to fix 15sec NFS mount hang
* Wed Nov 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.9-200
- Linux v3.11.9
* Mon Nov 18 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix rhel5.9 KVM guests (rhbz 967652)
- Add patch to fix crash from slab when using md-raid mirrors (rhbz 1031086)
- Add patches from Pierre Ossman to fix 24Hz/24p radeon audio (rhbz 1010679)
- Add patch to fix ALX phy issues after resume (rhbz 1011362)
- Fix ipv6 sit panic with packet size > mtu (from Michele Baldessari) (rbhz
1015905)
* Thu Nov 14 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-4563: net: large udp packet over IPv6 over UFO-enabled device with
TBF qdisc panic (rhbz 1030015 1030017)
* Wed Nov 13 2013 Justin M. Forbes <jforbes@fedoraproject.org> -
3.11.8-200
- Linux v3.11.8
* Sat Nov 9 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch from Daniel Stone to avoid high order allocations in evdev
- Add qxl backport fixes from Dave Airlie
* Mon Nov 4 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.7-200
- Add patch to fix iwlwifi queue settings backtrace (rhbz 1025769)
* Mon Nov 4 2013 Justin M. Forbes <jforbes@fedoraproject.org>
- Linux v3.11.7
* Fri Nov 1 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.6-201
- Revert blocking patches causing systemd to crash on resume (rhbz 1010603)
- CVE-2013-4348 net: deadloop path in skb_flow_dissect (rhbz 1007939 1025647)
* Thu Oct 31 2013 Josh Boyer <jwboyer@fedoraprorject.org>
- Fix display regression on Dell XPS 13 machines (rhbz 995782)
* Tue Oct 29 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix plaintext auth regression in cifs (rhbz 1011621)
* Fri Oct 25 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-4470 net: memory corruption with UDP_CORK and UFO (rhbz 1023477
1023495)
- Add touchpad support for Dell XT2 (rhbz 1023413)
* Tue Oct 22 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix warning in tcp_fastretrans_alert (rhbz 989251)
* Fri Oct 18 2013 Justin M. Forbes <jforbes@fedoraproject.org> -
3.11.6-200
- Linux v3.11.6
* Thu Oct 17 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix BusLogic error (rhbz 1015558)
- Fix rt2800usb polling timeouts and throughput issues (rhbz 984696)
* Wed Oct 16 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix btrfs balance/scrub issue (rhbz 1011714)
* Tue Oct 15 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix regression in radeon sound (rhbz 1010679)
* Mon Oct 14 2013 Justin M. Forbes <jforbes@fedoraproject.org> -
3.11.5-200
- Linux v3.11.5
* Fri Oct 11 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix segfault in cpupower set (rhbz 1000439)
* Thu Oct 10 2013 Justin M. Forbes <jforbes@fedoraproject.org> -
3.11.4-201
- Tag for build
* Thu Oct 10 2013 Josh Boyer <jwboyer@fedoraproject.org>
- USB OHCI accept very late isochronous URBs (in 3.11.4) (rhbz 975158)
- Fix large order allocation in dm mq policy (rhbz 993744)
* Wed Oct 9 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Don't trigger a stack trace on crashing iwlwifi firmware (rhbz 896695)
- Add patch to fix VFIO IOMMU crash (rhbz 998732)
* Tue Oct 8 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix nouveau crash (rhbz 1015920)
- Quiet irq remapping stack trace (rhbz 982153)
- Use RCU safe kfree for conntrack (rhbz 1015989)
* Mon Oct 7 2013 Justin M. Forbes <jforbes@fedoraproject.org>
- Linux v3.11.4
* Thu Oct 3 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-4387 ipv6: panic when UFO=On for an interface (rhbz 1011927 1015166)
* Wed Oct 2 2013 Justin M. Forbes <jforbes@fedoraproject.org>
- drm/radeon: don't set default clocks for SI when DPM is disabled (rhbz
1013814)
* Wed Oct 2 2013 Justin M. Forbes <jforbes@fedoraproject.org> -
3.11.3-200
- Linux v3.11.3
* Wed Oct 2 2013 Neil Horman <nhorman@redhat.com>
- Add promiscuity fix for vlans plus bonding (rhbz 1005567)
* Mon Sep 30 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add support for rf3070 devices from Stanislaw Gruszka (rhbz 974072)
- Drop VC_MUTE patch (rhbz 859485)
* Fri Sep 27 2013 Justin M. Forbes <jforbes@fedoraproject.org> -
3.11.2-201
- Bump and tag for build
* Fri Sep 27 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix oops from applesmc (rhbz 1011719)
- Add patches to fix soft lockup from elevator changes (rhbz 902012)
* Fri Sep 27 2013 Justin M. Forbes <jforbes@fedoraproject.org> -
3.11.2-200
- Linux v3.11.2
* Wed Sep 25 2013 Justin M. Forbes <jforbes@fedoraproject.org>
- Bump baserelease for test build
* Wed Sep 25 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add another fix for skge (rhbz 1008323)
* Mon Sep 23 2013 Neil Horman <nhorman@redhat.com>
- Add alb learning packet config knob (rhbz 971893)
* Mon Sep 23 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Revert rt2x00 commit that breaks connectivity (rhbz 1010431)
* Fri Sep 20 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix RTC updates from ntp (rhbz 985522)
- Fix broken skge driver (rhbz 1008328)
- Fix large order rpc allocations (rhbz 997705)
- Fix multimedia keys on Genius GX keyboard (rhbz 928561)
* Tue Sep 17 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-4345 ansi_cprng: off by one error in non-block size request (rhbz
1007690 1009136)
* Sat Sep 14 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.11.1-200
- Linux v3.11.1
* Fri Sep 13 2013 Kyle McMartin <kyle@redhat.com>
- Fix crash-driver.patch to properly use page_is_ram.
* Fri Sep 13 2013 Josh Boyer <jwboyer@fedoraproject.org>
- CVE-2013-4350 net: sctp: ipv6 ipsec encryption bug in sctp_v6_xmit (rhbz
1007872 1007903)
- CVE-2013-4343 net: use-after-free TUNSETIFF (rhbz 1007733 1007741)
* Thu Sep 12 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Update HID CVE fixes to fix crash from lenovo-tpkbd driver (rhbz 1003998)
* Wed Sep 11 2013 Neil Horman <nhorman@redhat.com>
- Fix pcie/acpi hotplug conflict (rhbz 963991)
- Fix race in crypto larval lookup
* Wed Sep 11 2013 Justin M. Forbes <jforbes@fedoraproject.org>
- Linux v3.11 rebase
* Mon Sep 9 2013 Josh Boyer <jwboyer@fedoraproject.org> 3.10.11-200
- Fix system freeze due to incorrect rt2800 initialization (rhbz 1000679)
* Mon Sep 9 2013 Justin M. Forbes <jforbes@fedoraproject.org>
- Linux v3.10.11
* Fri Aug 30 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Fix HID CVEs. Absurd.
- CVE-2013-2888 rhbz 1000451 1002543 CVE-2013-2889 rhbz 999890 1002548
- CVE-2013-2891 rhbz 999960 1002555 CVE-2013-2892 rhbz 1000429 1002570
- CVE-2013-2893 rhbz 1000414 1002575 CVE-2013-2894 rhbz 1000137 1002579
- CVE-2013-2895 rhbz 1000360 1002581 CVE-2013-2896 rhbz 1000494 1002594
- CVE-2013-2897 rhbz 1000536 1002600 CVE-2013-2899 rhbz 1000373 1002604
* Thu Aug 29 2013 Justin M. Forbes <jforbes@fedoraproject.org>
3.10.10-200
- Linux v3.10.10
* Wed Aug 28 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add mei patches that fix various s/r issues (rhbz 994824 989373)
* Wed Aug 21 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch to fix brcmsmac oops (rhbz 989269)
- CVE-2013-0343 handling of IPv6 temporary addresses (rhbz 914664 999380)
* Tue Aug 20 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Linux v3.10.9
* Tue Aug 20 2013 Josh Boyer <jwboyer@fedoraproject.org> - 3.10.8-200
- Linux v3.10.8
- CVE-2013-4254 ARM: perf: NULL pointer dereference in validate_event (rhbz
998878 998881)
* Fri Aug 16 2013 Josh Boyer <jwboyer@fedoraproject.org>
- Add patch from Nathanael Noblet to fix mic on Gateway LT27 (rhbz 845699)
* Thu Aug 15 2013 Josh Boyer <jwboyer@redhat.com> - 3.10.7-200
- Enable memory cgroup swap accounting (rhbz 982808)
- Add patch to fix regression on TeVII S471 devices (rhbz 963715)
- Linux v3.10.7
* Mon Aug 12 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.6-200
- Linux v3.10.6
* Wed Aug 7 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.5-201
- Bump for rebuild after koji hiccup
* Wed Aug 7 2013 Josh Boyer <jwboyer@redhat.com>
- Add zero file length check to make sure pesign didn't fail (rhbz 991808)
* Tue Aug 6 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.5-200
- update s390x config [Dan Horák]
* Mon Aug 5 2013 Justin M. Forbes <jforbes@redhat.com>
- Linux v3.10.5
* Thu Aug 1 2013 Josh Boyer <jwboyer@redhat.com>
- Fix mac80211 connection issues (rhbz 981445)
- Fix firmware issues with iwl4965 and rfkill (rhbz 977053)
- Drop hid-logitech-dj patch that was breaking enumeration (rhbz 989138)
* Wed Jul 31 2013 Josh Boyer <jwboyer@redhat.com>
- update s390x config [Dan Horák]
* Tue Jul 30 2013 Josh Boyer <jwboyer@redhat.com> - 3.10.4-300
- Revert some changes to make Logitech devices function properly (rhbz 989138)
* Mon Jul 29 2013 Josh Boyer <jwboyer@redhat.com>
- Fix i915 suspend/resume regression in 3.10 (rhbz 989093)
- Linux v3.10.4
- Add support for elantech v7 devices (rhbz 969473)
* Fri Jul 26 2013 Josh Boyer <jwboyer@redhat.com>
- Add patch to fix NULL deref in iwlwifi (rhbz 979581)
* Thu Jul 25 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.3-300
- Linux v3.10.3
* Wed Jul 24 2013 Justin M. Forbes <jforbes@redhat.com>
- Net stable queue from davem (rhbz 987639 987656)
* Mon Jul 22 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.2-301
- Update secureboot patch for 3.10
* Mon Jul 22 2013 Josh Boyer <jwboyer@redhat.com>
- Fix timer issue in bridge code (rhbz 980254)
* Mon Jul 22 2013 Justin M. Forbes <jforbes@redhat.com> 3.10.2-300
- Linux v3.10.2
* Fri Jul 19 2013 Dave Jones <davej@redhat.com>
- CVE-2013-4125 ipv6: BUG_ON in fib6_add_rt2node() (rhbz 984664)
* Wed Jul 17 2013 Peter Robinson <pbrobinson@fedoraproject.org>
- Re-enable ARM
- Drop tegra subkernel as it's now multi-platform
- Enable i.MX SoC support
- Drop old ARM patches
* Wed Jul 17 2013 Dave Jones <davej@redhat.com>
- Rebase to 3.10.1
dropped:
debug-bad-pte-dmi.patch
debug-bad-pte-modules.patch
arm-omap-ehci-fix.patch
arm-omap-fixdrm.patch
drm-ttm-exports-for-qxl.patch
drm-qxl-driver.patch
drm-qxl-3.10-rc7-diff.patch
drm-qxl-access-fix.patch
VMX-x86-handle-host-TSC-calibration-failure.patch
forcedeth-dma-error-check.patch
block-do-not-pass-disk-names-as-format-strings.patch
cdrom-use-kzalloc-for-failing-hardware.patch
vfio-Set-container-device-mode.patch
vfio-fix-crash-on-rmmod.patch
tulip-dma-debug-error.patch
af_key-fix-info-leaks-in-notify-messages.patch
ipv6-ip6_sk_dst_check-must-not-assume-ipv6-dst.patch
arm-tegra-fixclk.patch
cfg80211-mac80211-disconnect-on-suspend.patch
mac80211_fixes_for_ieee80211_do_stop_while_suspend_v3.9.patch
gssproxy-backport.patch
ceph-fix.patch
* Fri Jul 12 2013 Dave Jones <davej@redhat.com> - 3.9.9-304
- Disable LATENCYTOP/SCHEDSTATS in non-debug builds.
* Fri Jul 12 2013 Josh Boyer <jwboyer@redhat.com>
- Fix various overflow issues in ext4 (rhbz 976837)
- Add iwlwifi fix for connection issue (rhbz 885407)
* Thu Jul 11 2013 Kyle McMartin <kyle@redhat.com>
- Enable USB on i.MX based boards, patch from Niels de Vos.
* Fri Jul 5 2013 Josh Boyer <jwboyer@redhat.com>
- Add report fixup for Genius Gila mouse from Benjamin Tissoires (rhbz 959721)
- Add vhost-net use-after-free fix (rhbz 976789 980643)
- Add fix for timer issue in bridge code (rhbz 980254)
- CVE-2013-2232 ipv6: using ipv4 vs ipv6 structure during routing lookup in
sendmsg (rhbz 981552 981564)
* Thu Jul 4 2013 Dave Airlie <airlied@redhat.com>
- qxl: add suspend/resume and hibernate support
* Wed Jul 3 2013 Josh Boyer <jwboyer@redhat.com> 3.9.9-301
- CVE-2013-1059 libceph: Fix NULL pointer dereference in auth client code (rhbz
977356 980341)
- CVE-2013-2234 net: information leak in AF_KEY notify (rhbz 980995 981007)
* Wed Jul 3 2013 Justin M. Forbes <jforbes@redhat.com> 3.9.9-300
- Linux v3.9.9
* Wed Jul 3 2013 Josh Boyer <jwboyer@redhat.com>
- Add patches to fix iwl skb managment (rhbz 977040)
* Wed Jul 3 2013 Dave Airlie <airlied@redhat.com>
- fixup QXL driver patches to make it easier to rebase
- add qxl driver dynamic resize + multiple heads support
* Mon Jul 1 2013 Dave Airlie <airlied@redhat.com>
- kernel portion of qxl cursor and dynamic resize fixes.
* Fri Jun 28 2013 Peter Robinson <pbrobinson@fedoraproject.org>
- Only enable ARM A15 errata on the LPAE kernel as it breaks A8
* Fri Jun 28 2013 Dave Airlie <airlied@redhat.com>
- add qxl fix for missing access ok macro.
* Thu Jun 27 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.8-300
- Linux v3.9.8
* Thu Jun 27 2013 Josh Boyer <jwboyer@redhat.com>
- Fix stack memory usage for DMA in ath3k (rhbz 977558)
* Wed Jun 26 2013 Josh Boyer <jwboyer@redhat.com>
- Add two patches to fix bridge networking issues (rhbz 880035)
* Tue Jun 25 2013 Kyle McMartin <kyle@redhat.com>
- Cherry pick fix out of rawhide for %{with_*} tests in module
signing from Jan Stancek.
* Mon Jun 24 2013 Josh Boyer <jwboyer@redhat.com>
- Fix battery issue with bluetooth keyboards (rhbz 903741)
* Fri Jun 21 2013 Josh Boyer <jwboyer@redhat.com>
- Add two patches to fix iwlwifi issues in unmapping
- Add patch to fix carl9170 oops (rhbz 967271)
* Thu Jun 20 2013 Justin M. Forbes <jforbes@redhat.com>
- Linux v3.9.7
* Tue Jun 18 2013 Neil Horman <nhorman@redhat.com>
- Fix dma debug error in tulip driver (rhbz 956732)
* Tue Jun 18 2013 Dave Jones <davej@redhat.com>
- Disable MTRR sanitizer by default.
* Mon Jun 17 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.6-301
- Add patch to fix radeon issues on powerpc
* Thu Jun 13 2013 Josh Boyer <jwboyer@redhat.com> - 3.9.6-300
- Linux v3.9.6
- Drop a bunch of powerpc patches that were includes in 3.9.6. Yay!
* Wed Jun 12 2013 Kyle McMartin <kmcmarti@redhat.com>
- Merge 0 and %{with_lpae} so both ARM and i686 use the same
flavours. Set %{pae} to the flavour name {lpae, PAE}. Merging
the descriptions would be nice, but is somewhat irrelevant...
* Wed Jun 12 2013 Josh Boyer <jwboyer@redhat.com>
- Update gssproxy patches
- Fix KVM divide by zero error (rhbz 969644)
- Add fix for rt5390/rt3290 regression (rhbz 950735)
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1096775 - CVE-2014-3144 CVE-2014-3145 Kernel: filter: prevent nla
extensions to peek beyond the end of the message
https://bugzilla.redhat.com/show_bug.cgi?id=1096775
[ 2 ] Bug #1094299 - CVE-2014-1737 CVE-2014-1738 kernel: block: floppy:
privilege escalation via FDRAWCMD floppy ioctl command
https://bugzilla.redhat.com/show_bug.cgi?id=1094299
[ 3 ] Bug #1094232 - CVE-2014-0196 kernel: pty layer race condition leading
to memory corruption
https://bugzilla.redhat.com/show_bug.cgi?id=1094232
[ 4 ] Bug #1094265 - CVE-2014-0181 kernel: net: insufficient permision checks
of netlink messages
https://bugzilla.redhat.com/show_bug.cgi?id=1094265
[ 5 ] Bug #1093076 - CVE-2014-3122 Kernel: mm: try_to_unmap_cluster() should
lock_page() before mlocking
https://bugzilla.redhat.com/show_bug.cgi?id=1093076
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung