Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Fedora 24: 2016-81fd1b03aa Critical Update for USB Kernel Problems

fedora
Calendar Grey April 2, 2016
Scroller Fedora
Critical kernel patch released for Fedora 24 to resolve several flaws impacting system stability and security.
The 4.5.0-302 update contains a number of arm fixes, turns off DEBUG_WX, and actually seems to boot on i686.

Summary

The kernel meta package

Update Information:

The 4.5.0-302 update contains a number of arm fixes, turns off DEBUG_WX, and actually seems to boot on i686.

Change Log

References


[ 1 ] Bug #1317386 - CVE-2016-3135 kernel: netfilter: size overflow in x_tables https://bugzilla.redhat.com/show_bug.cgi?id=1317386 [ 2 ] Bug #1317383 - CVE-2016-3134 kernel: netfilter: missing bounds check in ipt_entry structure https://bugzilla.redhat.com/show_bug.cgi?id=1317383 [ 3 ] Bug #1318172 - CVE-2016-3156 kernel: ipv4: denial of service when destroying a network interface https://bugzilla.redhat.com/show_bug.cgi?id=1318172 [ 4 ] Bug #1317012 - CVE-2016-2184 kernel: Kernel panic on invalid USB device descriptor (snd_usb_audio driver) https://bugzilla.redhat.com/show_bug.cgi?id=1317012 [ 5 ] Bug #1316996 - CVE-2016-3137 kernel: Crash on invalid USB device descriptors (cypress_m8 driver) https://bugzilla.redhat.com/show_bug.cgi?id=1316996 [ 6 ] Bug #1317015 - CVE-2016-2186 kernel: Kernel panic on invalid USB device descriptor (powermate driver) https://bugzilla.redhat.com/show_bug.cgi?id=1317015 [ 7 ] Bug #1317014 ...

Read the Full Advisory

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update kernel' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: kernel
Product: Fedora 24
Version: 4.5.0
Release: 302.fc24
Summary: The Linux kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.