——————————————————————————–
Fedora Update Notification
FEDORA-2020-ad980d282f
2020-10-16 00:30:22.056778
——————————————————————————–
Name : kernel
Product : Fedora 31
Version : 5.8.15
Release : 101.fc31
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package
——————————————————————————–
Update Information:
This update contains patches for the BleedingTooth CVEs. —- The 5.8.15
stable kernel update contains a number of important fixes across the tree. —-
The 5.8.14 stable kernel update contains a number of important fixes across the
tree.
——————————————————————————–
ChangeLog:
* Thu Oct 15 2020 Justin M. Forbes <jforbes@fedoraproject.org> – 5.8.15-101
– Fix BleedingTooth CVE-2020-12351 CVE-2020-12352 (rhbz 1886521 1888439 1886529 1888440)
* Wed Oct 14 2020 Justin M. Forbes <jforbes@fedoraproject.org> – 5.8.15-100
– Linux v5.8.15
– Fix CVE-2020-16119 (rhbz 1886374 1888083)
* Wed Oct 7 2020 Justin M. Forbes <jforbes@fedoraproject.org> – 5.8.14-100
– Linux v5.8.14
——————————————————————————–
References:
[ 1 ] Bug #1886521 – CVE-2020-12351 kernel: net: bluetooth: type confusion while processing AMP packets
https://bugzilla.redhat.com/show_bug.cgi?id=1886521
[ 2 ] Bug #1886529 – CVE-2020-12352 kernel: net: bluetooth: information leak when processing certain AMP packets
https://bugzilla.redhat.com/show_bug.cgi?id=1886529
——————————————————————————–
This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-ad980d282f’ at the command
line. For more information, refer to the dnf documentation available at
https://protect2.fireeye.com/v1/url?k=1ff1bd7d-43e30979-1ff620b1-000babd90757-0845b535d55a140f&q=1&e=926b8068-62cc-4fae-bc25-667de4dade18&u=http%3A%2F%2Fdnf.readthedocs.io%2Fen%2Flatest%2Fcommand_ref.html%23upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
——————————————————————————–
Fedora Update Notification
FEDORA-2020-ce117eff51
2020-10-15 22:35:26.444206
——————————————————————————–
Name : kernel
Product : Fedora 33
Version : 5.8.15
Release : 301.fc33
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package
——————————————————————————–
Update Information:
This update contains patches for the BleedingTooth CVEs. —- The 5.8.15
stable kernel update contains a number of important fixes across the tree.
——————————————————————————–
ChangeLog:
* Thu Oct 15 2020 Justin M. Forbes <jforbes@fedoraproject.org> – 5.8.15-301
– Fix BleedingTooth CVE-2020-12351 CVE-2020-12352 (rhbz 1886521 1888439 1886529 1888440)
* Wed Oct 14 2020 Justin M. Forbes <jforbes@fedoraproject.org> – 5.8.15-300
– Linux v5.8.15
– Fix CVE-2020-16119 (rhbz 1886374 1888083)
——————————————————————————–
References:
[ 1 ] Bug #1886374 – CVE-2020-16119 kernel: DCCP CCID structure use-after-free may lead to DoS or code execution
https://bugzilla.redhat.com/show_bug.cgi?id=1886374
[ 2 ] Bug #1886521 – CVE-2020-12351 kernel: net: bluetooth: type confusion while processing AMP packets
https://bugzilla.redhat.com/show_bug.cgi?id=1886521
[ 3 ] Bug #1886529 – CVE-2020-12352 kernel: net: bluetooth: information leak when processing certain AMP packets
https://bugzilla.redhat.com/show_bug.cgi?id=1886529
——————————————————————————–
This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-ce117eff51’ at the command
line. For more information, refer to the dnf documentation available at
https://protect2.fireeye.com/v1/url?k=d4e2105e-88f0a45a-d4e58d92-000babd90757-9a7805ac6f00d6ba&q=1&e=ee4c2868-a83a-4a77-b474-a94abcdd32bb&u=http%3A%2F%2Fdnf.readthedocs.io%2Fen%2Flatest%2Fcommand_ref.html%23upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
——————————————————————————–
Fedora Update Notification
FEDORA-2020-e288acda9a
2020-10-15 22:33:15.459430
——————————————————————————–
Name : kernel
Product : Fedora 32
Version : 5.8.15
Release : 201.fc32
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package
——————————————————————————–
Update Information:
This update contains patches for the BleedingTooth CVEs. —- The 5.8.15
stable kernel update contains a number of important fixes across the tree.
——————————————————————————–
ChangeLog:
* Thu Oct 15 2020 Justin M. Forbes <jforbes@fedoraproject.org> – 5.8.15-201
– Fix BleedingTooth CVE-2020-12351 CVE-2020-12352 (rhbz 1886521 1888439 1886529 1888440)
* Wed Oct 14 2020 Justin M. Forbes <jforbes@fedoraproject.org> – 5.8.15-200
– Linux v5.8.15
– Fix CVE-2020-16119 (rhbz 1886374 1888083)
——————————————————————————–
References:
[ 1 ] Bug #1886521 – CVE-2020-12351 kernel: net: bluetooth: type confusion while processing AMP packets
https://bugzilla.redhat.com/show_bug.cgi?id=1886521
[ 2 ] Bug #1886529 – CVE-2020-12352 kernel: net: bluetooth: information leak when processing certain AMP packets
https://bugzilla.redhat.com/show_bug.cgi?id=1886529
——————————————————————————–
This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-e288acda9a’ at the command
line. For more information, refer to the dnf documentation available at
https://protect2.fireeye.com/v1/url?k=b0e30e30-ecf1ba34-b0e493fc-000babd90757-2108a8823f232f9d&q=1&e=5d1f03aa-98c8-49bb-bb59-f932e8a05943&u=http%3A%2F%2Fdnf.readthedocs.io%2Fen%2Flatest%2Fcommand_ref.html%23upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org