Login
Newsletter
Werbung

Sicherheit: Mehrere Probleme im Kernel
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme im Kernel
ID: FEDORA-2014-14126
Distribution: Fedora
Plattformen: Fedora 21
Datum: Mo, 3. November 2014, 08:28
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3610
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3611
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3646
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3673
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3687
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3688
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3690
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8369
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8481
Applikationen: Linux

Originalnachricht

Name        : kernel
Product : Fedora 21
Version : 3.17.2
Release : 300.fc21
URL : http://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

-------------------------------------------------------------------------------
-
Update Information:

Linux v3.17.2. A wide variety of fixes across the tree.
Even more KVM CVE fixes
CVE fixes for KVM and SCTP.
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1144883 - CVE-2014-3610 kernel: kvm: noncanonical MSR writes
https://bugzilla.redhat.com/show_bug.cgi?id=1144883
[ 2 ] Bug #1156615 - CVE-2014-8480 CVE-2014-8481 kernel: kvm: NULL pointer
dereference during rip relative instruction emulation
https://bugzilla.redhat.com/show_bug.cgi?id=1156615
[ 3 ] Bug #1156518 - CVE-2014-8369 kernel: kvm: excessive pages un-pinning in
kvm_iommu_map error path
https://bugzilla.redhat.com/show_bug.cgi?id=1156518
[ 4 ] Bug #1144825 - CVE-2014-3646 kernel: kvm: vmx: invvpid vm exit not
handled
https://bugzilla.redhat.com/show_bug.cgi?id=1144825
[ 5 ] Bug #1144878 - CVE-2014-3611 kernel: kvm: PIT timer race condition
https://bugzilla.redhat.com/show_bug.cgi?id=1144878
[ 6 ] Bug #1153322 - CVE-2014-3690 kernel: kvm: vmx: invalid host cr4
handling across vm entries
https://bugzilla.redhat.com/show_bug.cgi?id=1153322
[ 7 ] Bug #1155745 - CVE-2014-3688 kernel: net: sctp: remote memory pressure
from excessive queueing
https://bugzilla.redhat.com/show_bug.cgi?id=1155745
[ 8 ] Bug #1155731 - CVE-2014-3687 kernel: net: sctp: fix panic on duplicate
ASCONF chunks
https://bugzilla.redhat.com/show_bug.cgi?id=1155731
[ 9 ] Bug #1147850 - CVE-2014-3673 kernel: sctp: skb_over_panic when
receiving malformed ASCONF chunks
https://bugzilla.redhat.com/show_bug.cgi?id=1147850
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Gewinnspiel
Neue Nachrichten
Werbung