Fedora 33: FEDORA-2020-ce117eff51 Critical: Kernel BleedingTooth Fix

The kernel meta package

This update contains patches for the BleedingTooth CVEs. ---- The 5.8.15

stable kernel update contains a number of important fixes across the tree.

* Thu Oct 15 2020 Justin M. Forbes - 5.8.15-301

- Fix BleedingTooth CVE-2020-12351 CVE-2020-12352 (rhbz 1886521 1888439 1886529 1888440)

* Wed Oct 14 2020 Justin M. Forbes - 5.8.15-300

- Linux v5.8.15

- Fix CVE-2020-16119 (rhbz 1886374 1888083)

[ 1 ] Bug #1886374 - CVE-2020-16119 kernel: DCCP CCID structure use-after-free may lead to DoS or code execution

https://bugzilla.redhat.com/show_bug.cgi?id=1886374

[ 2 ] Bug #1886521 - CVE-2020-12351 kernel: net: bluetooth: type confusion while processing AMP packets

https://bugzilla.redhat.com/show_bug.cgi?id=1886521

[ 3 ] Bug #1886529 - CVE-2020-12352 kernel: net: bluetooth: information leak when processing certain AMP packets

https://bugzilla.redhat.com/show_bug.cgi?id=1886529

su -c 'dnf upgrade --advisory FEDORA-2020-ce117eff51' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/