You are here
Home > Preporuke > Sigurnosni nedostaci jezgre operacijskog sustava

Sigurnosni nedostaci jezgre operacijskog sustava

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2019-c36afa818c
2019-05-17 01:18:20.521166
——————————————————————————–

Name : kernel-headers
Product : Fedora 28
Version : 5.0.16
Release : 100.fc28
URL : http://www.kernel.org/
Summary : Header files for the Linux kernel for use by glibc
Description :
Kernel-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
glibc package.

——————————————————————————–
Update Information:

The 5.0.16 stable updates contain a number of important fixes across the tree.
Most importantly, these updates address the kernel portion of the MDS CVEs.
—- The 5.0.14 update contains a number of important fixes across the tree.
There is no kernel-headers or kernel-tools build this time.
——————————————————————————–
References:

[ 1 ] Bug #1709837 – CVE-2019-11884 kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command
https://bugzilla.redhat.com/show_bug.cgi?id=1709837
[ 2 ] Bug #1705312 – CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM)
https://bugzilla.redhat.com/show_bug.cgi?id=1705312
[ 3 ] Bug #1646784 – CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS)
https://bugzilla.redhat.com/show_bug.cgi?id=1646784
[ 4 ] Bug #1667782 – CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling – Information Leak (MLPDS)
https://bugzilla.redhat.com/show_bug.cgi?id=1667782
[ 5 ] Bug #1646781 – CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS)
https://bugzilla.redhat.com/show_bug.cgi?id=1646781
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-c36afa818c’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

AutorZvonimir Bosnjak
Cert idNCERT-REF-2019-05-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa python3

Otkriveni su sigurnosni nedostaci u programskom paketu python3 za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju umetanje proizvoljnog HTTP...

Close