You are here
Home > Preporuke > Sigurnosni nedostaci jezgre operacijskog sustava

Sigurnosni nedostaci jezgre operacijskog sustava

——————————————————————————–
Fedora Update Notification
FEDORA-2019-83858fc57b
2019-06-13 01:37:52.283276
——————————————————————————–

Name : kernel-headers
Product : Fedora 29
Version : 5.1.8
Release : 200.fc29
URL : http://www.kernel.org/
Summary : Header files for the Linux kernel for use by glibc
Description :
Kernel-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
glibc package.

——————————————————————————–
Update Information:

Update to v5.1.8 —- Update to v5.1.7
——————————————————————————–
ChangeLog:

* Sun Jun 9 2019 Jeremy Cline <jcline@redhat.com> – 5.1.8-200
– Linux v5.1.8
* Tue Jun 4 2019 Jeremy Cline <jcline@redhat.com> – 5.1.7-200
– Linux v5.1.7
* Mon Jun 3 2019 Jeremy Cline <jcline@redhat.com> – 5.1.6-200
– Linux v5.1.6
* Tue May 28 2019 Laura Abbott <labbott@redhat.com> – 5.0.19-200
– Linux v5.0.19
* Thu May 23 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 5.0.18-200
– Linux v5.0.18
* Wed May 15 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 5.0.16-200
– Linux v5.0.16
* Mon Apr 22 2019 Laura Abbott <labbott@redhat.com> – 5.0.9-200
– Linux v5.0.9
* Mon Apr 8 2019 Laura Abbott <labbott@redhat.com> – 5.0.7-200
– Linux v5.0.7
* Wed Apr 3 2019 Laura Abbott <labbott@redhat.com> – 5.0.6-200
– Linux v5.0.6
* Wed Mar 27 2019 Laura Abbott <labbott@redhat.com> – 5.0.5-200
– Linux v5.0.5
* Mon Mar 25 2019 Laura Abbott <labbott@redhat.com> – 5.0.4-200
– Linux v5.0.4
* Tue Mar 19 2019 Laura Abbott <labbott@redhat.com> – 5.0.3-200
– Linux v5.0.3
* Thu Mar 14 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.16-200
– Linux v4.20.16
* Mon Mar 11 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.15-200
– Linux v4.20.15
* Tue Mar 5 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.14-200
– Linux v4.20.14
* Wed Feb 27 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.13-200
– Linux v4.20.13
* Mon Feb 25 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.12-200
– Linux v4.20.12
* Wed Feb 20 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.11-200
– Linux v4.20.11
* Fri Feb 15 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.10-200
– Linux v4.20.10
* Tue Feb 12 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.8-200
– Linux v4.20.8
* Wed Feb 6 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.7-200
– Linux v4.20.7
* Thu Jan 31 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.6-200
– Linux v4.20.6
* Mon Jan 28 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.5-200
– Linux v4.20.5
* Wed Jan 23 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.4-200
– Linux v4.20.4
* Thu Jan 17 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.3-200
– Linux v4.20.3
* Mon Jan 14 2019 Jeremy Cline <jcline@redhat.com> – 4.19.15-300
– Linux v4.19.15
* Wed Jan 9 2019 Jeremy Cline <jcline@redhat.com> – 4.19.14-300
– Linux v4.19.14
* Sat Dec 29 2018 Jeremy Cline <jcline@redhat.com> – 4.19.13-300
– Linux v4.19.13
* Fri Dec 28 2018 Jeremy Cline <jcline@redhat.com> – 4.19.12-301
– Linux v4.19.12
* Thu Dec 20 2018 Jeremy Cline <jcline@redhat.com> – 4.19.11-300
– Linux v4.19.11
* Mon Dec 17 2018 Jeremy Cline <jcline@redhat.com> – 4.19.10-300
– Linux v4.19.10
* Thu Dec 13 2018 Jeremy Cline <jcline@redhat.com> – 4.19.9-300
– Linux v4.19.9
* Mon Dec 10 2018 Jeremy Cline <jcline@redhat.com> – 4.19.8-300
– Linux v4.19.8
* Wed Dec 5 2018 Jeremy Cline <jcline@redhat.com> – 4.19.7-300
– Linux v4.19.7
* Sun Dec 2 2018 Jeremy Cline <jcline@redhat.com> – 4.19.6-300
– Linux v4.19.6
* Tue Nov 27 2018 Jeremy Cline <jcline@redhat.com> – 4.19.5-300
– Linux v4.19.5
* Wed Nov 21 2018 Jeremy Cline <jcline@redhat.com> – 4.19.5-300
– Linux v4.19.3
* Wed Nov 14 2018 Jeremy Cline <jcline@redhat.com> – 4.19.2-300
– Linux v4.19.2
* Mon Nov 12 2018 Laura Abbott <labbott@redhat.com> – 4.18.18-300
– Linux v4.18.18
* Mon Nov 5 2018 Laura Abbott <labbott@redhat.com> – 4.18.17-300
– Linux v4.18.17
——————————————————————————–
References:

[ 1 ] Bug #1718176 – CVE-2019-12614 kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1718176
[ 2 ] Bug #1717182 – CVE-2019-12456 kernel: double fetch in the MPT3COMMAND case in _ctl_ioctl_main in drivers/scsi/mpt3sas/mpt3sas_ctl.c
https://bugzilla.redhat.com/show_bug.cgi?id=1717182
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-83858fc57b’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2019-83858fc57b
2019-06-13 01:37:52.283276
——————————————————————————–

Name : kernel
Product : Fedora 29
Version : 5.1.8
Release : 200.fc29
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

——————————————————————————–
Update Information:

Update to v5.1.8 —- Update to v5.1.7
——————————————————————————–
ChangeLog:

* Sun Jun 9 2019 Jeremy Cline <jcline@redhat.com> – 5.1.8-200
– Linux v5.1.8
* Fri Jun 7 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-12614 (rhbz 1718176 1718185)
* Thu Jun 6 2019 Jeremy Cline <jcline@redhat.com>
– Fix incorrect permission denied with lock down off (rhbz 1658675)
– Fix an issue with the IPv6 neighbor table (rhbz 1708717)
* Wed Jun 5 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-12456 (rhbz 1717182 1717183)
* Tue Jun 4 2019 Jeremy Cline <jcline@redhat.com> – 5.1.7-200
– Linux v5.1.7
– Fix CVE-2019-12455 (rhbz 1716990 1717003)
– Fix CVE-2019-12454 (rhbz 1716996 1717003)
* Mon Jun 3 2019 Jeremy Cline <jcline@redhat.com> – 5.1.6-200
– Linux v5.1.6
– Fix CVE-2019-12378 (rhbz 1715459 1715460)
– Fix CVE-2019-3846 (rhbz 1713059 1715475)
– Fix CVE-2019-12380 (rhbz 1715494 1715495)
– Fix CVE-2019-12381 (rhbz 1715501 1715502)
– Fix CVE-2019-12382 (rhbz 1715554 1715556)
– Fix CVE-2019-12379 (rhbz 1715491 1715706)
– Fix an issue with Bluetooth 2.0 and earlier devices (rhbz 1711468)
* Fri May 31 2019 Laura Abbott <labbott@redhat.com> – 5.0.20-200
– Linux v5.0.20
* Tue May 28 2019 Laura Abbott <labbott@redhat.com> – 5.0.19-200
– Linux v5.0.19
* Thu May 23 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 5.0.18-200
– Bring back ad8cfb9c42ef83ecf4079bc7d77e6557648e952b to fix s390 build
* Wed May 22 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Linux v5.0.18
– Fixes CVE-2019-11833 (rhbz 1712072 1712073)
* Mon May 20 2019 Laura Abbott <labbott@redhat.com> – 5.0.17-200
– Linux v5.0.17
* Tue May 14 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 5.0.16-200
– Linux v5.0.16
– Fixes CVE-2018-12126 (rhbz 1646781 1709976)
– Fixes CVE-2018-12127 (rhbz 1667782 1709978)
– Fixes CVE-2018-12130 (rhbz 1646784 1709989 1709996)
– Fixes CVE-2019-11091 (rhbz 1705312 1709983)
* Mon May 13 2019 Laura Abbott <labbott@redhat.com> – 5.0.15-200
– Linux v5.0.15
– Fixes CVE-2019-11884 (rhbz 1709837 1709838)
* Thu May 9 2019 Laura Abbott <labbott@redhat.com> – 5.0.14-200
– Linux v5.0.14
* Mon May 6 2019 Laura Abbott <labbott@redhat.com> – 5.0.13-200
– Linux v5.0.13
* Sat May 4 2019 Laura Abbott <labbott@redhat.com> – 5.0.12-200
– Linux v5.0.12
* Thu May 2 2019 Laura Abbott <labbott@redhat.com> – 5.0.11-200
– Linux v5.0.11
* Tue Apr 30 2019 Hans de Goede <hdegoede@redhat.com>
– Fix wifi on various ideapad models not working (rhbz#1703338)
* Mon Apr 29 2019 Laura Abbott <labbott@redhat.com> – 5.0.10-200
– Linux v5.0.10
* Thu Apr 25 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-3900 (rhbz 1698757 1702940)
* Tue Apr 23 2019 Jeremy Cline <jcline@redhat.com>
– Allow modules signed by keys in the platform keyring (rbhz 1701096)
* Tue Apr 23 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-9503 rhbz 1701842 1701843
* Mon Apr 22 2019 Laura Abbott <labbott@redhat.com> – 5.0.9-200
– Linux v5.0.9
– Fix NFS server crash (rhbz 1701077)
* Thu Apr 18 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-9500 (rhbz 1701224 1701225)
* Wed Apr 17 2019 Laura Abbott <labbott@redhat.com> – 5.0.8-200
– Linux v5.0.8
* Mon Apr 8 2019 Laura Abbott <labbott@redhat.com> – 5.0.7-200
– Linux v5.0.7
* Mon Apr 8 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019 (rhbz 1695044 1697187)
* Wed Apr 3 2019 Laura Abbott <labbott@redhat.com> – 5.0.6-200
– Linux v5.0.6
* Wed Apr 3 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-3882 (rhbz 1689426 1695571)
* Mon Apr 1 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-9857 (rhbz 1694758 1694759)
* Mon Apr 1 2019 Laura Abbott <labbott@redhat.com>
– Ensure ioschedulers are built in (rhbz 1690604)
* Wed Mar 27 2019 Laura Abbott <labbott@redhat.com> – 5.0.5-200
– Linux v5.0.5
* Mon Mar 25 2019 Laura Abbott <labbott@redhat.com> – 5.0.4-200
– Linux v5.0.4
* Fri Mar 22 2019 Laura Abbott <labbott@redhat.com>
– TPM fix (rhbz 1688283)
* Wed Mar 20 2019 Hans de Goede <hdegoede@redhat.com>
– Make the mainline vboxguest drv feature set match VirtualBox 6.0.x (#1689750)
* Tue Mar 19 2019 Laura Abbott <labbott@redhat.com> – 5.0.3-200
– Linux v5.0.3
* Thu Mar 14 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.16-200
– Linux v4.20.16
* Mon Mar 11 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.15-200
– Linux v4.20.15
* Tue Mar 5 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.14-200
– Linux v4.20.14
* Wed Feb 27 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.13-200
– Linux v4.20.13
– Fix for NFS issue (rhbz 1683382)
* Mon Feb 25 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.12-200
– Linux v4.20.12
* Fri Feb 22 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-8980 (rhbz 1679972 1679974)
* Wed Feb 20 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.11-200
– Linux v4.20.11
* Tue Feb 19 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-8912 (rhbz 1678685 1678686)
* Fri Feb 15 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.10-200
– Linux v4.20.10
* Tue Feb 12 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.8-200
– Linux v4.20.8
– Fixes CVE-2019-7221 (rhbz 1671904 1673676)
– Fixes CVE-2019-6974 (rhbz 1671913 1673681)
– Fixes CVE-2019-7222 (rhbz 1671930 1673686)
* Mon Feb 11 2019 Peter Robinson <pbrobinson@fedoraproject.org>
– Minor Arm fixes and enhancements
* Wed Feb 6 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.7-200
– Linux v4.20.7
* Thu Jan 31 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.6-200
– Linux v4.20.6
* Mon Jan 28 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.5-200
– Linux v4.20.5
– Fix CVE-2018-16880 (rhbz 1656472 1669545)
* Wed Jan 23 2019 Hans de Goede <hdegoede@redhat.com>
– Add upstream patch fixing backlight control not working on some laptops
with a Nvidia GPU (rhbz#1663613, rhbz#1665505)
* Wed Jan 23 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.4-200
– Linux v4.20.4
* Thu Jan 17 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 4.20.3-200
– Linux v4.20.3 rebase
* Mon Jan 14 2019 Jeremy Cline <jcline@redhat.com> – 4.19.15-300
– Linux v4.19.15
– Fix CVE-2019-3459 and CVE-2019-3460 (rbhz 1663176 1663179 1665925)
* Wed Jan 9 2019 Jeremy Cline <jcline@redhat.com> – 4.19.14-300
– Linux v4.19.14
* Wed Jan 9 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-3701 (rhbz 1663729 1663730)
* Mon Jan 7 2019 Hans de Goede <hdegoede@redhat.com>
– Add patch to fix bluetooth on RPI 3B+ registering twice (rhbz#1661961)
* Sat Dec 29 2018 Jeremy Cline <jcline@redhat.com> – 4.19.13-300
– Linux v4.19.13
* Thu Dec 27 2018 Hans de Goede <hdegoede@redhat.com>
– Set CONFIG_REALTEK_PHY=y to workaround realtek ethernet issues (rhbz 1650984)
* Mon Dec 24 2018 Peter Robinson <pbrobinson@fedoraproject.org> 4.19.12-301
– Another fix for issue affecting Raspberry Pi 3-series WiFi (rhbz 1652093)
* Sat Dec 22 2018 Peter Robinson <pbrobinson@fedoraproject.org> 4.19.12-300
– Linux v4.19.12
* Thu Dec 20 2018 Jeremy Cline <jcline@redhat.com> – 4.19.11-300
– Linux v4.19.11
* Mon Dec 17 2018 Jeremy Cline <jcline@redhat.com> – 4.19.10-300
– Linux v4.19.10
* Fri Dec 14 2018 Peter Robinson <pbrobinson@fedoraproject.org> 4.19.9-301
– Fix Raspberry Pi issues affecting WiFi (rhbz 1652093)
* Thu Dec 13 2018 Jeremy Cline <jcline@redhat.com> – 4.19.9-300
– Linux v4.19.9
* Tue Dec 11 2018 Hans de Goede <hdegoede@redhat.com>
– Really fix non functional hotkeys on Asus FX503VD (#1645070)
* Mon Dec 10 2018 Jeremy Cline <jcline@redhat.com> – 4.19.8-300
– Linux v4.19.8
* Thu Dec 6 2018 Peter Robinson <pbrobinson@fedoraproject.org>
– Fix for ethernet LEDs on Raspberry Pi 3B+
* Wed Dec 5 2018 Jeremy Cline <jcline@redhat.com> – 4.19.7-300
– Linux v4.19.7
* Wed Dec 5 2018 Jeremy Cline <jeremy@jcline.org>
– Fix corruption bug in direct dispatch for blk-mq
* Tue Dec 4 2018 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2018-19824 (rhbz 1655816 1655817)
* Mon Dec 3 2018 Jeremy Cline <jeremy@jcline.org>
– Fix very quiet speakers on the Thinkpad T570 (rhbz 1554304)
* Mon Dec 3 2018 Hans de Goede <hdegoede@redhat.com>
– Fix non functional hotkeys on Asus FX503VD (#1645070)
* Sun Dec 2 2018 Jeremy Cline <jcline@redhat.com> – 4.19.6-300
– Linux v4.19.6
* Thu Nov 29 2018 Jeremy Cline <jeremy@jcline.org>
– Fix a problem with some rtl8168 chips (rhbz 1650984)
– Fix slowdowns and crashes for AMD GPUs in pre-PCIe-v3 slots
* Tue Nov 27 2018 Jeremy Cline <jcline@redhat.com> – 4.19.5-300
– Linux v4.19.5
– Fix CVE-2018-16862 (rhbz 1649017 1653122)
– Fix CVE-2018-19407 (rhbz 1652656 1652658)
* Mon Nov 26 2018 Jeremy Cline <jeremy@jcline.org>
– Fixes a null pointer dereference with Nvidia and vmwgfx drivers (rhbz 1650224)
* Fri Nov 23 2018 Peter Robinson <pbrobinson@fedoraproject.org> – 4.19.4-300
– Linux v4.19.4
* Thu Nov 22 2018 Peter Robinson <pbrobinson@fedoraproject.org>
– Fixes for Rockchips 3399 devices
* Wed Nov 21 2018 Jeremy Cline <jcline@redhat.com> – 4.19.3-300
– Linux v4.19.3
* Tue Nov 20 2018 Hans de Goede <hdegoede@redhat.com>
– Turn on CONFIG_PINCTRL_GEMINILAKE on x86_64 (rhbz#1639155)
– Add a patch fixing touchscreens on HP AMD based laptops (rhbz#1644013)
– Add a patch fixing KIOX010A accelerometers (rhbz#1526312)
* Sat Nov 17 2018 Peter Robinson <pbrobinson@fedoraproject.org> 4.19.2-301
– Fix WiFi on Raspberry Pi 3 on aarch64 (rhbz 1649344)
– Fixes for Raspberry Pi hwmon driver and firmware interface
——————————————————————————–
References:

[ 1 ] Bug #1718176 – CVE-2019-12614 kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1718176
[ 2 ] Bug #1717182 – CVE-2019-12456 kernel: double fetch in the MPT3COMMAND case in _ctl_ioctl_main in drivers/scsi/mpt3sas/mpt3sas_ctl.c
https://bugzilla.redhat.com/show_bug.cgi?id=1717182
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-83858fc57b’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2019-c03eda3cc6
2019-06-12 14:47:01.833439
——————————————————————————–

Name : kernel-headers
Product : Fedora 30
Version : 5.1.8
Release : 300.fc30
URL : http://www.kernel.org/
Summary : Header files for the Linux kernel for use by glibc
Description :
Kernel-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
glibc package.

——————————————————————————–
Update Information:

Update to v5.1.8
——————————————————————————–
ChangeLog:

* Sun Jun 9 2019 Jeremy Cline <jcline@redhat.com> – 5.1.8-300
– Linux v5.1.8
* Tue Jun 4 2019 Jeremy Cline <jcline@redhat.com> – 5.1.7-300
– Linux v5.1.7
* Sat May 25 2019 Jeremy Cline <jcline@redhat.com> – 5.1.5-300
– Linux v5.1.5
* Wed May 22 2019 Jeremy Cline <jcline@redhat.com> – 5.1.4-300
– Linux v5.1.4
* Wed May 15 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 5.0.16-300
– Linux v5.0.16
——————————————————————————–
References:

[ 1 ] Bug #1718176 – CVE-2019-12614 kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1718176
[ 2 ] Bug #1717182 – CVE-2019-12456 kernel: double fetch in the MPT3COMMAND case in _ctl_ioctl_main in drivers/scsi/mpt3sas/mpt3sas_ctl.c
https://bugzilla.redhat.com/show_bug.cgi?id=1717182
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-c03eda3cc6’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2019-c03eda3cc6
2019-06-12 14:47:01.833439
——————————————————————————–

Name : kernel
Product : Fedora 30
Version : 5.1.8
Release : 300.fc30
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

——————————————————————————–
Update Information:

Update to v5.1.8
——————————————————————————–
ChangeLog:

* Sun Jun 9 2019 Jeremy Cline <jcline@redhat.com> – 5.1.8-300
– Linux v5.1.8
* Fri Jun 7 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-12614 (rhbz 1718176 1718185)
* Thu Jun 6 2019 Jeremy Cline <jcline@redhat.com>
– Fix incorrect permission denied with lock down off (rhbz 1658675)
– Fix an issue with the IPv6 neighbor table (rhbz 1708717)
* Wed Jun 5 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-12456 (rhbz 1717182 1717183)
* Tue Jun 4 2019 Jeremy Cline <jcline@redhat.com> – 5.1.7-300
– Linux v5.1.7
– Fix CVE-2019-12455 (rhbz 1716990 1717003)
– Fix CVE-2019-12454 (rhbz 1716996 1717003)
* Mon Jun 3 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-12378 (rhbz 1715459 1715460)
– Fix CVE-2019-3846 (rhbz 1713059 1715475)
– Fix CVE-2019-12380 (rhbz 1715494 1715495)
– Fix CVE-2019-12381 (rhbz 1715501 1715502)
– Fix CVE-2019-12382 (rhbz 1715554 1715556)
– Fix CVE-2019-12379 (rhbz 1715491 1715706)
* Fri May 31 2019 Laura Abbott <labbott@redhat.com> – 5.1.6-300
– Linux v5.1.6
* Sat May 25 2019 Jeremy Cline <jcline@redhat.com> – 5.1.5-300
– Linux v5.1.5
* Fri May 24 2019 Jeremy Cline <jcline@redhat.com> – 5.1.4-301
– Fix fstrim discarding too many blocks
* Wed May 22 2019 Jeremy Cline <jcline@redhat.com> – 5.1.4-300
– Linux v5.1.4
– Fix an issue with Bluetooth 2.0 and earlier devices (rhbz 1711468)
* Mon May 20 2019 Laura Abbott <labbott@redhat.com> – 5.0.17-300
– Linux v5.0.17
* Tue May 14 2019 Justin M. Forbes <jforbes@fedoraproject.org> – 5.0.16-300
– Linux v5.0.16
– Fixes CVE-2018-12126 (rhbz 1646781 1709976)
– Fixes CVE-2018-12127 (rhbz 1667782 1709978)
– Fixes CVE-2018-12130 (rhbz 1646784 1709989 1709996)
– Fixes CVE-2019-11091 (rhbz 1705312 1709983)
* Mon May 13 2019 Laura Abbott <labbott@redhat.com> – 5.0.15-300
– Linux v5.0.15
– Fixes CVE-2019-11884 (rhbz 1709837 1709838)
* Thu May 9 2019 Laura Abbott <labbott@redhat.com> – 5.0.14-300
– Linux v5.0.14
* Mon May 6 2019 Laura Abbott <labbott@redhat.com> – 5.0.13-300
– Linux v5.0.13
* Sat May 4 2019 Laura Abbott <labbott@redhat.com> – 5.0.12-300
– Linux v5.0.12
* Thu May 2 2019 Laura Abbott <labbott@redhat.com> – 5.0.11-300
– Linux v5.0.11
* Tue Apr 30 2019 Laura Abbott <labbott@redhat.com> – 5.0.10-300
– Linux v5.0.10
* Tue Apr 30 2019 Hans de Goede <hdegoede@redhat.com>
– Fix wifi on various ideapad models not working (rhbz#1703338)
* Thu Apr 25 2019 Justin M. Forbes <jforbes@fedoraproject.org>
– Fix CVE-2019-3900 (rhbz 1698757 1702940)
——————————————————————————–
References:

[ 1 ] Bug #1718176 – CVE-2019-12614 kernel: null pointer dereference in dlpar_parse_cc_property in arch/powerrc/platforms/pseries/dlpar.c causing denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1718176
[ 2 ] Bug #1717182 – CVE-2019-12456 kernel: double fetch in the MPT3COMMAND case in _ctl_ioctl_main in drivers/scsi/mpt3sas/mpt3sas_ctl.c
https://bugzilla.redhat.com/show_bug.cgi?id=1717182
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-c03eda3cc6’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

Top
More in Preporuke
Nadogradnja za Microsoft Edge

Microsoft je izdao nadogradnju za otklanjanje ranjivosti u web pregledniku Microsoft Edge. Ovisno o tipu ranjivosti, potencijalni udaljeni napadači mogli...

Close