Fedora 28: 2019-196ab64d65 Critical Update For Kernel-Headers

Kernel-headers includes the C header files that specify the interface

between the Linux kernel and userspace libraries and programs. The

header files define structures and constants that are needed for

building most standard programs and are also needed for rebuilding the

glibc package.

The 4.20.14 stable kernel update contains a number of important fixes across the

tree. ---- The 4.20.13 stable kernel update contains a number of important

fixes across the tree. ---- The 4.20.12 stable kernel update contains a number

of important fixes across the tree.

[ 1 ] Bug #1679972 - CVE-2019-8980 kernel: memory leak in the kernel_read_file function in fs/exec.c allows to cause a denial of service

https://bugzilla.redhat.com/show_bug.cgi?id=1679972

[ 2 ] Bug #1683191 - CVE-2019-9162 kernel: out-of-bounds read/write in et/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module

https://bugzilla.redhat.com/show_bug.cgi?id=1683191

[ 3 ] Bug #1686136 - CVE-2019-9213 kernel: lack of check for mmap minimum address in expand_downwards in mm/mmap.c leads to NULL pointer dereferences exploit on non-SMAP platforms

https://bugzilla.redhat.com/show_bug.cgi?id=1686136

su -c 'dnf upgrade --advisory FEDORA-2019-196ab64d65' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/