U radu jezgre operacijskog sustava Fedora 17 uočeno je i ispravljeno više sigurnosnih nedostataka. Lokalni napadač ih je mogao iskoristiti za rušenje ranjivog sustava sustava.
Paket:
Linux kernel 3.x
Operacijski sustavi:
Fedora 17
Kritičnost:
6.1
Problem:
pogreška u programskoj funkciji, pogreška u programskoj komponenti
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-8824
2012-06-03 22:46:01
--------------------------------------------------------------------------------
Name : kernel
Product : Fedora 17
Version : 3.4.0
Release : 1.fc17
URL : http://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.
--------------------------------------------------------------------------------
Update Information:
The 3.4 kernel contains a large number of bug fixes
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jun 2 2012 Justin M. Forbes <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 3.4.0-1
- Linux 3.4
- Stable queue updates
* Wed May 30 2012 Josh Boyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- CVE-2012-2390 huge pages: memory leak on mmap failure (rhbz 824352 824345)
* Fri May 25 2012 Mauro Carvalho Chehab <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Don't manually customise tuners/frontends (rhbz 825203)
* Thu May 24 2012 Josh Boyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- CVE-2012-2372 mm: 32bit PAE pmd walk vs populate SMP race (rhbz 822821 822825)
* Wed May 23 2012 Adam Jackson <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- drm-i915-lvds-dual-channel.patch: Scrape dual-channel-ness for LVDS out
of the VBT, rather than just making things up. (#819343)
* Mon May 21 2012 Justin M. Forbes <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 3.3.7-1
- Linux 3.3.7
- Disable CONFIG_RELOCATABLE for 32bit builds. Turn back on for 3.4
* Fri May 18 2012 Josh Boyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Additional fixes for CVE-2011-4131 (rhbz 822874 822869)
* Thu May 17 2012 Josh Boyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Fix rtlwifi async firmware load race condition (rhbz 822120)
- Enable cpu_idle drivers for ppc64/pseries (requested by Ben Herrenschmidt)
* Wed May 16 2012 Dennis Gilmore <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- set arch for arm kernel to VEXPRESS allows v7 emulation
- enable SMP everywhere but disable on kirkwood as its up only
* Wed May 16 2012 Justin M. Forbes <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 3.3.6-3
- fix rtl8187: ->brightness_set can not sleep (rhbz 795176)
* Wed May 16 2012 Josh Boyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Update the vgaarb patches to pick up a small switcheroo fix from airlied
* Tue May 15 2012 Dennis Gilmore <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- add patch to setup usb correctly on beagleboards
- allows networking to work
* Tue May 15 2012 Josh Boyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Fixup atl1c register programming (rhbz 749276)
* Mon May 14 2012 Justin M. Forbes <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.> 3.3.6-1
- Linux 3.3.6
* Mon May 14 2012 Josh Boyer <Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.>
- Enable DRM_VIA again per Adam Jackson
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #824345 - CVE-2012-2390 kernel: huge pages: memory leak on mmap
failure
https://bugzilla.redhat.com/show_bug.cgi?id=824345
[ 2 ] Bug #822821 - CVE-2012-2373 kernel: mm: read_pmd_atomic: 32bit PAE pmd
walk vs pmd_populate SMP race condition
https://bugzilla.redhat.com/show_bug.cgi?id=822821
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Posljednje sigurnosne preporuke