Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: <updates <at> fedoraproject.org>
Subject: [SECURITY] Fedora 18 Update: kernel-3.7.9-205.fc18
Newsgroups: gmane.linux.redhat.fedora.package.announce
Date: Wednesday 27th February 2013 02:30:12 UTC (over 3 years ago)
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-3086
2013-02-27 01:49:14
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 18
Version     : 3.7.9
Release     : 205.fc18
URL         : http://www.kernel.org/
Summary     : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

--------------------------------------------------------------------------------
Update Information:

This update contains a fix for the netlink out-of-bounds access issue which
could allow a local user to gain privileged access.  All users are
encouraged to update.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Feb 24 2013 Josh Boyer <[email protected]> - 3.7.9-205
- CVE-2013-1763 sock_diag: out-of-bounds access to sock_diag_handlers (rhbz
915052,915057)
* Fri Feb 22 2013 Josh Boyer <[email protected]>
- Add support for bluetooth in Acer Aspire S7 (rhbz 879408)
* Thu Feb 21 2013 Neil Horman 
- Fix crash from race in ipv6 dst entries (rhbz 892060)
* Wed Feb 20 2013 Josh Boyer <[email protected]>
- Fix perf report field separator issue (rhbz 906055)
- Fix oops from acpi_rsdp setup in secure-boot patchset (rhbz 906225)
* Tue Feb 19 2013 Josh Boyer <[email protected]>
- Add support for Atheros 04ca:3004 bluetooth devices (rhbz 844750)
- Backport support for newer ALPS touchpads (rhbz 812111)
* Tue Feb 19 2013 Peter Robinson 
- Fix OMAP thermal driver by building it in (seems it doesn't auto load
when a module)
* Mon Feb 18 2013 Justin M. Forbes <[email protected]> - 3.7.9-201
- Linux v3.7.9
* Mon Feb 18 2013 Adam Jackson 
- CVE-2013-0290 net: infinite loop in __skb_recv_datagram (rhbz 911479
911473)
* Thu Feb 14 2013 Justin M. Forbes <[email protected]> - 3.7.8-201
- Linux v3.7.8
* Thu Feb 14 2013 Adam Jackson 
- i915: Hush asserts during TV detection, just useless noise
- i915: Fix LVDS downclock to not cripple performance (#901951)
* Thu Feb 14 2013 Josh Boyer <[email protected]>
- Add patch to fix corruption on newer M6116 SATA bridges (rhbz 909591)
- CVE-2013-0228 xen: xen_iret() invalid %ds local DoS (rhbz 910848 906309)
* Tue Feb 12 2013 Dave Jones 
- Add networking queue for next stable release.
* Tue Feb 12 2013 Dave Jones 
- mm: Check if PUD is large when validating a kernel address
* Tue Feb 12 2013 Dave Jones 
- Silence brcmsmac warnings. (Fixed in 3.8, but not backporting to 3.7)
* Tue Feb 12 2013 Justin M. Forbes <[email protected]>
- Linux v3.7.7
* Mon Feb 11 2013 Josh Boyer <[email protected]>
- Add patch from Kees Cook to restrict MSR writting in secure boot mode
- Add patch to honor MokSBState (rhbz 907406)
* Thu Feb  7 2013 Peter Robinson 
- Minor ARM build fixes
* Wed Feb  6 2013 Josh Boyer <[email protected]>
- Add patch to fix ath9k dma stop checks (rhbz 892811)
* Mon Feb  4 2013 Josh Boyer <[email protected]>
- Linux v3.7.6
- Update secure-boot patchset
- Fix rtlwifi scheduling while atomic from Larry Finger (rhbz 903881)
* Tue Jan 29 2013 Josh Boyer <[email protected]>
- Backport driver for Cypress PS/2 trackpad (rhbz 799564)
* Mon Jan 28 2013 Josh Boyer <[email protected]> - 3.7.5-201
- Linux v3.7.5
- Add patch to fix iwlwifi issues (rhbz 863424)
* Sun Jan 27 2013 Peter Robinson 
- Build and package dtbs on ARM
- Enable FB options for qemu vexpress on unified
* Fri Jan 25 2013 Justin M. Forbes <[email protected]>
- Turn off THP for 32bit
* Wed Jan 23 2013 Justin M. Forbes <[email protected]> - 3.7.4-204
- brcmsmac fixes from upstream (rhbz 892428)
* Wed Jan 23 2013 Dave Jones 
- Remove warnings about empty IPI masks.
* Tue Jan 22 2013 Justin M. Forbes <[email protected]> - 3.7.4-203
- Add i915 bugfix from airlied
* Tue Jan 22 2013 Peter Robinson 
- Apply ARM errata fix
- disable HVC_DCC and VIRTIO_CONSOLE on ARM
* Tue Jan 22 2013 Josh Boyer <[email protected]>
- Fix libata settings bug (rhbz 902523)
* Mon Jan 21 2013 Josh Boyer <[email protected]> - 3.7.4-201
- Linux v3.7.4
* Fri Jan 18 2013 Justin M. Forbes <[email protected]> 3.7.3-201
- Linux v3.7.3
* Thu Jan 17 2013 Peter Robinson 
- Merge 3.7 ARM kernel including unified kernel
- Drop separate IMX and highbank kernels
- Disable ARM PL310 errata that crash highbank
* Wed Jan 16 2013 Josh Boyer <[email protected]>
- Fix power management sysfs on non-secure boot machines (rhbz 896243)
* Wed Jan 16 2013 Justin M. Forbes <[email protected]>  3.7.2-204
- Fix for CVE-2013-0190 xen corruption with 32bit pvops (rhbz 896051
896038)
* Wed Jan 16 2013 Josh Boyer <[email protected]>
- Add patch from Stanislaw Gruszka to fix iwlegacy IBSS cleanup (rhbz
886946)
* Tue Jan 15 2013 Justin M. Forbes <[email protected]> 3.7.2-203
- Turn off Intel IOMMU by default
- Stable queue from 3.7.3 with many relevant fixes
* Tue Jan 15 2013 Josh Boyer <[email protected]>
- Enable CONFIG_DVB_USB_V2 (rhbz 895460)
* Mon Jan 14 2013 Josh Boyer <[email protected]>
- Enable Orinoco drivers in kernel-modules-extra (rhbz 894069)
* Fri Jan 11 2013 Justin M. Forbes <[email protected]> 3.7.1-1
- Linux v3.7.2
- Enable Intel IOMMU by default
* Thu Jan 10 2013 Dave Jones 
- Add audit-libs-devel to perf build-deps to enable trace command. (rhbz
892893)
* Tue Jan  8 2013 Josh Boyer <[email protected]>
- Add patch to fix shutdown on some machines (rhbz 890547)
* Mon Jan  7 2013 Josh Boyer <[email protected]>
- Patch to fix efivarfs underflow from Lingzhu Xiang (rhbz 888163)
* Sun Jan  6 2013 Josh Boyer <[email protected]>
- Fix version.h include due to UAPI change in 3.7 (rhbz 892373)
* Fri Jan  4 2013 Josh Boyer <[email protected]>
- Fix oops on aoe module removal (rhbz 853064)
* Thu Jan  3 2013 Josh Boyer <[email protected]> - 3.7.1-2
- Fixup secure boot patchset for 3.7 rebase
- Package bash completion script for perf
* Thu Jan  3 2013 Dave Jones 
- Rebase to 3.7.1
* Wed Jan  2 2013 Josh Boyer <[email protected]>
- Fix autofs issue in 3.6 (rhbz 874372)
- BR the hostname package (rhbz 886113)
* Mon Dec 17 2012 Josh Boyer <[email protected]> - 3.6.11-3
- Linux v3.6.11
* Mon Dec 17 2012 Dennis Gilmore 
- disable gpiolib on vexpress
* Mon Dec 17 2012 Josh Boyer <[email protected]>
- Fix oops in sony-laptop setup (rhbz 873107)
* Wed Dec 12 2012 Josh Boyer <[email protected]> - 3.6.10-5
- Fix infinite loop in efi signature parser
- Don't error out if db doesn't exist
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #915052 - CVE-2013-1763 kernel: sock_diag: out-of-bounds access
to sock_diag_handlers[]
        https://bugzilla.redhat.com/show_bug.cgi?id=915052
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on
the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/package-announce
 
CD: 25ms