--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2018-537c8312fc
2018-05-29 11:19:31.979880
--------------------------------------------------------------------------------Name        : kernel
Product     : Fedora 28
Version     : 4.16.12
Release     : 300.fc28
URL         : https://www.kernel.org/
Summary     : The Linux kernel
Description :
The kernel meta package

--------------------------------------------------------------------------------Update Information:

The v4.16.12 update contains important fixes across the tree
--------------------------------------------------------------------------------ChangeLog:

* Fri May 25 2018 Jeremy Cline  - 4.16.12-300
- Linux v4.16.12
- Fix CVE-2018-10840 (rhbz 1582346 1582348)
- Fix for incorrect error message about parsing PCCT (rhbz 1435837)
* Tue May 22 2018 Jeremy Cline  - 4.16.11-300
- Linux v4.16.11
* Mon May 21 2018 Justin M. Forbes  - 4.16.10-301
- Fix CVE-2018-3639 (rhbz 1566890 1580713)
* Mon May 21 2018 Jeremy Cline  - 4.16.10-300
- Linux v4.16.10
* Sun May 20 2018 Hans de Goede 
- Enable GPIO_AMDPT, PINCTRL_AMD and X86_AMD_PLATFORM_DEVICE Kconfig options
  to fix i2c and GPIOs not working on AMD based laptops (rhbz#1510649)
* Thu May 17 2018 Justin M. Forbes 
- Fix CVE-2018-1120 (rhbz 1575472 1579542)
* Thu May 17 2018 Jeremy Cline  - 4.16.9-300
- Linux v4.16.9
- Silence unwanted "swiotlb buffer is full" warnings (rhbz 1556797)
* Wed May  9 2018 Jeremy Cline 
- Workaround for m400 uart irq firmware description (rhbz 1574718)
* Wed May  9 2018 Jeremy Cline  - 4.16.8-300
- Linux v4.16.8
* Mon May  7 2018 Jeremy Cline 
- Fix issue with KVM on older Core 2 processors (rhbz 1566258)
* Sat May  5 2018 Peter Robinson 
- ARM and Raspberry Pi fixes
- Fix USB-2 on Tegra devices
* Fri May  4 2018 Laura Abbott 
- Fix for building out of tree modules on powerpc (rhbz 1574604)
* Fri May  4 2018 Justin M. Forbes 
- Fix CVE-2018-10322 (rhbz 1571623 1571624)
- Fix CVE-2018-10323 (rhbz 1571627 1571630)
* Wed May  2 2018 Jeremy Cline  - 4.16.7-300
- Linux v4.16.7
* Tue May  1 2018 Jeremy Cline  - 4.16.6-302
- Revert the entire random series from 4.16.4 (rhbz 1572944)
* Tue May  1 2018 Jeremy Cline  - 4.16.6-301
- Revert the fix for CVE-2018-1108 (rhbz 1572944)
* Mon Apr 30 2018 Jeremy Cline  - 4.16.6-300
- Linux v4.16.6
* Fri Apr 27 2018 Jeremy Cline  - 4.16.5-300
- Fix an issue with bluetooth autosupsend on some XPS 13 9360 (rhbz 1514836)
- Fix prlimit64 with RLIMIT_CPU ignored (rhbz 1568337)
- Linux v4.16.5
* Fri Apr 27 2018 Peter Robinson 
- Enable QLogic NICs on ARM
* Wed Apr 25 2018 Jeremy Cline 
- Fix a kernel oops when using Thunderbolt 3 docks (rhbz 1565131)
* Tue Apr 24 2018 Jeremy Cline  - 4.16.4-300
- Linux v4.16.4
- Fix a regression in backlight interfaces for some laptops (rhbz 1571036)
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #1435837 - Error parsing PCC subspaces from PCCT
        https://bugzilla.redhat.com/show_bug.cgi?id=1435837
  [ 2 ] Bug #1582348 - CVE-2018-10840 kernel: Heap-based buffer overflow in fs/ext4/xattr.c:ext4_xattr_set_entry() with  crafted ext4 image [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1582348
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-537c8312fc' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/URE7VVHJMM7PDSJTK3THYADBW7TTXPFT/

Fedora 28: kernel Security Update 2018-537c8312fc 2018-537c8312fc

May 29, 2018
The v4.16.12 update contains important fixes across the tree

Summary

The kernel meta package

The v4.16.12 update contains important fixes across the tree

* Fri May 25 2018 Jeremy Cline - 4.16.12-300

- Linux v4.16.12

- Fix CVE-2018-10840 (rhbz 1582346 1582348)

- Fix for incorrect error message about parsing PCCT (rhbz 1435837)

* Tue May 22 2018 Jeremy Cline - 4.16.11-300

- Linux v4.16.11

* Mon May 21 2018 Justin M. Forbes - 4.16.10-301

- Fix CVE-2018-3639 (rhbz 1566890 1580713)

* Mon May 21 2018 Jeremy Cline - 4.16.10-300

- Linux v4.16.10

* Sun May 20 2018 Hans de Goede

- Enable GPIO_AMDPT, PINCTRL_AMD and X86_AMD_PLATFORM_DEVICE Kconfig options

to fix i2c and GPIOs not working on AMD based laptops (rhbz#1510649)

* Thu May 17 2018 Justin M. Forbes

- Fix CVE-2018-1120 (rhbz 1575472 1579542)

* Thu May 17 2018 Jeremy Cline - 4.16.9-300

- Linux v4.16.9

- Silence unwanted "swiotlb buffer is full" warnings (rhbz 1556797)

* Wed May 9 2018 Jeremy Cline

- Workaround for m400 uart irq firmware description (rhbz 1574718)

* Wed May 9 2018 Jeremy Cline - 4.16.8-300

- Linux v4.16.8

* Mon May 7 2018 Jeremy Cline

- Fix issue with KVM on older Core 2 processors (rhbz 1566258)

* Sat May 5 2018 Peter Robinson

- ARM and Raspberry Pi fixes

- Fix USB-2 on Tegra devices

* Fri May 4 2018 Laura Abbott

- Fix for building out of tree modules on powerpc (rhbz 1574604)

* Fri May 4 2018 Justin M. Forbes

- Fix CVE-2018-10322 (rhbz 1571623 1571624)

- Fix CVE-2018-10323 (rhbz 1571627 1571630)

* Wed May 2 2018 Jeremy Cline - 4.16.7-300

- Linux v4.16.7

* Tue May 1 2018 Jeremy Cline - 4.16.6-302

- Revert the entire random series from 4.16.4 (rhbz 1572944)

* Tue May 1 2018 Jeremy Cline - 4.16.6-301

- Revert the fix for CVE-2018-1108 (rhbz 1572944)

* Mon Apr 30 2018 Jeremy Cline - 4.16.6-300

- Linux v4.16.6

* Fri Apr 27 2018 Jeremy Cline - 4.16.5-300

- Fix an issue with bluetooth autosupsend on some XPS 13 9360 (rhbz 1514836)

- Fix prlimit64 with RLIMIT_CPU ignored (rhbz 1568337)

- Linux v4.16.5

* Fri Apr 27 2018 Peter Robinson

- Enable QLogic NICs on ARM

* Wed Apr 25 2018 Jeremy Cline

- Fix a kernel oops when using Thunderbolt 3 docks (rhbz 1565131)

* Tue Apr 24 2018 Jeremy Cline - 4.16.4-300

- Linux v4.16.4

- Fix a regression in backlight interfaces for some laptops (rhbz 1571036)

[ 1 ] Bug #1435837 - Error parsing PCC subspaces from PCCT

https://bugzilla.redhat.com/show_bug.cgi?id=1435837

[ 2 ] Bug #1582348 - CVE-2018-10840 kernel: Heap-based buffer overflow in fs/ext4/xattr.c:ext4_xattr_set_entry() with crafted ext4 image [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1582348

su -c 'dnf upgrade --advisory FEDORA-2018-537c8312fc' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/URE7VVHJMM7PDSJTK3THYADBW7TTXPFT/

FEDORA-2018-537c8312fc 2018-05-29 11:19:31.979880 Product : Fedora 28 Version : 4.16.12 Release : 300.fc28 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package The v4.16.12 update contains important fixes across the tree * Fri May 25 2018 Jeremy Cline - 4.16.12-300 - Linux v4.16.12 - Fix CVE-2018-10840 (rhbz 1582346 1582348) - Fix for incorrect error message about parsing PCCT (rhbz 1435837) * Tue May 22 2018 Jeremy Cline - 4.16.11-300 - Linux v4.16.11 * Mon May 21 2018 Justin M. Forbes - 4.16.10-301 - Fix CVE-2018-3639 (rhbz 1566890 1580713) * Mon May 21 2018 Jeremy Cline - 4.16.10-300 - Linux v4.16.10 * Sun May 20 2018 Hans de Goede - Enable GPIO_AMDPT, PINCTRL_AMD and X86_AMD_PLATFORM_DEVICE Kconfig options to fix i2c and GPIOs not working on AMD based laptops (rhbz#1510649) * Thu May 17 2018 Justin M. Forbes - Fix CVE-2018-1120 (rhbz 1575472 1579542) * Thu May 17 2018 Jeremy Cline - 4.16.9-300 - Linux v4.16.9 - Silence unwanted "swiotlb buffer is full" warnings (rhbz 1556797) * Wed May 9 2018 Jeremy Cline - Workaround for m400 uart irq firmware description (rhbz 1574718) * Wed May 9 2018 Jeremy Cline - 4.16.8-300 - Linux v4.16.8 * Mon May 7 2018 Jeremy Cline - Fix issue with KVM on older Core 2 processors (rhbz 1566258) * Sat May 5 2018 Peter Robinson - ARM and Raspberry Pi fixes - Fix USB-2 on Tegra devices * Fri May 4 2018 Laura Abbott - Fix for building out of tree modules on powerpc (rhbz 1574604) * Fri May 4 2018 Justin M. Forbes - Fix CVE-2018-10322 (rhbz 1571623 1571624) - Fix CVE-2018-10323 (rhbz 1571627 1571630) * Wed May 2 2018 Jeremy Cline - 4.16.7-300 - Linux v4.16.7 * Tue May 1 2018 Jeremy Cline - 4.16.6-302 - Revert the entire random series from 4.16.4 (rhbz 1572944) * Tue May 1 2018 Jeremy Cline - 4.16.6-301 - Revert the fix for CVE-2018-1108 (rhbz 1572944) * Mon Apr 30 2018 Jeremy Cline - 4.16.6-300 - Linux v4.16.6 * Fri Apr 27 2018 Jeremy Cline - 4.16.5-300 - Fix an issue with bluetooth autosupsend on some XPS 13 9360 (rhbz 1514836) - Fix prlimit64 with RLIMIT_CPU ignored (rhbz 1568337) - Linux v4.16.5 * Fri Apr 27 2018 Peter Robinson - Enable QLogic NICs on ARM * Wed Apr 25 2018 Jeremy Cline - Fix a kernel oops when using Thunderbolt 3 docks (rhbz 1565131) * Tue Apr 24 2018 Jeremy Cline - 4.16.4-300 - Linux v4.16.4 - Fix a regression in backlight interfaces for some laptops (rhbz 1571036) [ 1 ] Bug #1435837 - Error parsing PCC subspaces from PCCT https://bugzilla.redhat.com/show_bug.cgi?id=1435837 [ 2 ] Bug #1582348 - CVE-2018-10840 kernel: Heap-based buffer overflow in fs/ext4/xattr.c:ext4_xattr_set_entry() with crafted ext4 image [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1582348 su -c 'dnf upgrade --advisory FEDORA-2018-537c8312fc' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/URE7VVHJMM7PDSJTK3THYADBW7TTXPFT/

Change Log

References

Update Instructions

Severity
Product : Fedora 28
Version : 4.16.12
Release : 300.fc28
URL : https://www.kernel.org/
Summary : The Linux kernel

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved