You are here
Home > Preporuke > Sigurnosni nedostaci programske jezgre

Sigurnosni nedostaci programske jezgre

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2018-ac3b4c7605
2018-05-14 17:51:27.106198
——————————————————————————–

Name : kernel
Product : Fedora 28
Version : 4.16.8
Release : 300.fc28
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

——————————————————————————–
Update Information:

The v4.16.8 update contains important fixes across the tree
——————————————————————————–
ChangeLog:

* Wed May 9 2018 Jeremy Cline <jeremy@jcline.org> – 4.16.8-300
– Linux v4.16.8
* Mon May 7 2018 Jeremy Cline <jeremy@jcline.org>
– Fix issue with KVM on older Core 2 processors (rhbz 1566258)
* Sat May 5 2018 Peter Robinson <pbrobinson@fedoraproject.org>
– ARM and Raspberry Pi fixes
– Fix USB-2 on Tegra devices
* Fri May 4 2018 Laura Abbott <labbott@redhat.com>
– Fix for building out of tree modules on powerpc (rhbz 1574604)
* Fri May 4 2018 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2018-10322 (rhbz 1571623 1571624)
– Fix CVE-2018-10323 (rhbz 1571627 1571630)
* Wed May 2 2018 Jeremy Cline <jeremy@jcline.org> – 4.16.7-300
– Linux v4.16.7
* Tue May 1 2018 Jeremy Cline <jeremy@jcline.org> – 4.16.6-302
– Revert the entire random series from 4.16.4 (rhbz 1572944)
* Tue May 1 2018 Jeremy Cline <jeremy@jcline.org> – 4.16.6-301
– Revert the fix for CVE-2018-1108 (rhbz 1572944)
* Mon Apr 30 2018 Jeremy Cline <jeremy@jcline.org> – 4.16.6-300
– Linux v4.16.6
* Fri Apr 27 2018 Jeremy Cline <jeremy@jcline.org> – 4.16.5-300
– Fix an issue with bluetooth autosupsend on some XPS 13 9360 (rhbz 1514836)
– Fix prlimit64 with RLIMIT_CPU ignored (rhbz 1568337)
– Linux v4.16.5
* Fri Apr 27 2018 Peter Robinson <pbrobinson@fedoraproject.org>
– Enable QLogic NICs on ARM
* Wed Apr 25 2018 Jeremy Cline <jeremy@jcline.org>
– Fix a kernel oops when using Thunderbolt 3 docks (rhbz 1565131)
* Tue Apr 24 2018 Jeremy Cline <jeremy@jcline.org> – 4.16.4-300
– Linux v4.16.4
– Fix a regression in backlight interfaces for some laptops (rhbz 1571036)
——————————————————————————–
References:

[ 1 ] Bug #1571630 – CVE-2018-10323 kernel: Invalid pointer dereference in xfs_bmapi_write() when mounting and operating on crafted xfs image allows denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1571630
[ 2 ] Bug #1571624 – CVE-2018-10322 kernel: Invalid pointer dereference in xfs_ilock_attr_map_shared() when mounting crafted xfs image allowing denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1571624
[ 3 ] Bug #1574604 – Out-of-tree kernel modules fail to build on ppc64 with 4.16 kernel
https://bugzilla.redhat.com/show_bug.cgi?id=1574604
[ 4 ] Bug #1566258 – Running a VM causes thousands of vmwrite error: reg 401e value 2021 (err 12)
https://bugzilla.redhat.com/show_bug.cgi?id=1566258
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-ac3b4c7605’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

AutorPetar Bertok
Cert idNCERT-REF-2018-05-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top