[SECURITY] Fedora 18 Update: kernel-3.7.8-202.fc18

updates at fedoraproject.org updates at fedoraproject.org
Mon Feb 18 07:02:24 UTC 2013


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2635
2013-02-17 02:46:21
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 18
Version     : 3.7.8
Release     : 202.fc18
URL         : http://www.kernel.org/
Summary     : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

--------------------------------------------------------------------------------
Update Information:

CVE-2013-0290 net: infinite loop in __skb_recv_datagram
--------------------------------------------------------------------------------
ChangeLog:

* Fri Feb 15 2013 Josh Boyer <jwboyer at redhat.com>
- CVE-2013-0290 net: infinite loop in __skb_recv_datagram (rhbz 911479 911473)
* Thu Feb 14 2013 Justin M. Forbes <jforbes at redhat.com> - 3.7.8-201
- Linux v3.7.8
* Thu Feb 14 2013 Adam Jackson <ajax at redhat.com>
- i915: Hush asserts during TV detection, just useless noise
- i915: Fix LVDS downclock to not cripple performance (#901951)
* Thu Feb 14 2013 Josh Boyer <jwboyer at redhat.com>
- Add patch to fix corruption on newer M6116 SATA bridges (rhbz 909591)
- CVE-2013-0228 xen: xen_iret() invalid %ds local DoS (rhbz 910848 906309)
* Tue Feb 12 2013 Dave Jones <davej at redhat.com>
- Add networking queue for next stable release.
* Tue Feb 12 2013 Dave Jones <davej at redhat.com>
- mm: Check if PUD is large when validating a kernel address
* Tue Feb 12 2013 Dave Jones <davej at redhat.com>
- Silence brcmsmac warnings. (Fixed in 3.8, but not backporting to 3.7)
* Tue Feb 12 2013 Justin M. Forbes <jforbes at redhat.com>
- Linux v3.7.7
* Mon Feb 11 2013 Josh Boyer <jwboyer at redhat.com>
- Add patch from Kees Cook to restrict MSR writting in secure boot mode
- Add patch to honor MokSBState (rhbz 907406)
* Thu Feb  7 2013 Peter Robinson <pbrobinson at fedoraproject.org>
- Minor ARM build fixes
* Wed Feb  6 2013 Josh Boyer <jwboyer at redhat.com>
- Add patch to fix ath9k dma stop checks (rhbz 892811)
* Mon Feb  4 2013 Josh Boyer <jwboyer at redhat.com>
- Linux v3.7.6
- Update secure-boot patchset
- Fix rtlwifi scheduling while atomic from Larry Finger (rhbz 903881)
* Tue Jan 29 2013 Josh Boyer <jwboyer at redhat.com>
- Backport driver for Cypress PS/2 trackpad (rhbz 799564)
* Mon Jan 28 2013 Josh Boyer <jwboyer at redhat.com> - 3.7.5-201
- Linux v3.7.5
- Add patch to fix iwlwifi issues (rhbz 863424)
* Sun Jan 27 2013 Peter Robinson <pbrobinson at fedoraproject.org>
- Build and package dtbs on ARM
- Enable FB options for qemu vexpress on unified
* Fri Jan 25 2013 Justin M. Forbes <jforbes at redhat.com>
- Turn off THP for 32bit
* Wed Jan 23 2013 Justin M. Forbes <jforbes at redhat.com> - 3.7.4-204
- brcmsmac fixes from upstream (rhbz 892428)
* Wed Jan 23 2013 Dave Jones <davej at redhat.com>
- Remove warnings about empty IPI masks.
* Tue Jan 22 2013 Justin M. Forbes <jforbes at redhat.com> - 3.7.4-203
- Add i915 bugfix from airlied
* Tue Jan 22 2013 Peter Robinson <pbrobinson at fedoraproject.org>
- Apply ARM errata fix
- disable HVC_DCC and VIRTIO_CONSOLE on ARM
* Tue Jan 22 2013 Josh Boyer <jwboyer at redhat.com>
- Fix libata settings bug (rhbz 902523)
* Mon Jan 21 2013 Josh Boyer <jwboyer at redhat.com> - 3.7.4-201
- Linux v3.7.4
* Fri Jan 18 2013 Justin M. Forbes <jforbes at redhat.com> 3.7.3-201
- Linux v3.7.3
* Thu Jan 17 2013 Peter Robinson <pbrobinson at fedoraproject.org>
- Merge 3.7 ARM kernel including unified kernel
- Drop separate IMX and highbank kernels
- Disable ARM PL310 errata that crash highbank
* Wed Jan 16 2013 Josh Boyer <jwboyer at redhat.com>
- Fix power management sysfs on non-secure boot machines (rhbz 896243)
* Wed Jan 16 2013 Justin M. Forbes <jforbes at redhat.com>  3.7.2-204
- Fix for CVE-2013-0190 xen corruption with 32bit pvops (rhbz 896051 896038)
* Wed Jan 16 2013 Josh Boyer <jwboyer at redhat.com>
- Add patch from Stanislaw Gruszka to fix iwlegacy IBSS cleanup (rhbz 886946)
* Tue Jan 15 2013 Justin M. Forbes <jforbes at redhat.com> 3.7.2-203
- Turn off Intel IOMMU by default
- Stable queue from 3.7.3 with many relevant fixes
* Tue Jan 15 2013 Josh Boyer <jwboyer at redhat.com>
- Enable CONFIG_DVB_USB_V2 (rhbz 895460)
* Mon Jan 14 2013 Josh Boyer <jwboyer at redhat.com>
- Enable Orinoco drivers in kernel-modules-extra (rhbz 894069)
* Fri Jan 11 2013 Justin M. Forbes <jforbes at redhat.com> 3.7.1-1
- Linux v3.7.2
- Enable Intel IOMMU by default
* Thu Jan 10 2013 Dave Jones <davej at redhat.com>
- Add audit-libs-devel to perf build-deps to enable trace command. (rhbz 892893)
* Tue Jan  8 2013 Josh Boyer <jwboyer at redhat.com>
- Add patch to fix shutdown on some machines (rhbz 890547)
* Mon Jan  7 2013 Josh Boyer <jwboyer at redhat.com>
- Patch to fix efivarfs underflow from Lingzhu Xiang (rhbz 888163)
* Sun Jan  6 2013 Josh Boyer <jwboyer at redhat.com>
- Fix version.h include due to UAPI change in 3.7 (rhbz 892373)
* Fri Jan  4 2013 Josh Boyer <jwboyer at redhat.com>
- Fix oops on aoe module removal (rhbz 853064)
* Thu Jan  3 2013 Josh Boyer <jwboyer at redhat.com> - 3.7.1-2
- Fixup secure boot patchset for 3.7 rebase
- Package bash completion script for perf
* Thu Jan  3 2013 Dave Jones <davej at redhat.com>
- Rebase to 3.7.1
* Wed Jan  2 2013 Josh Boyer <jwboyer at redhat.com>
- Fix autofs issue in 3.6 (rhbz 874372)
- BR the hostname package (rhbz 886113)
* Mon Dec 17 2012 Josh Boyer <jwboyer at redhat.com> - 3.6.11-3
- Linux v3.6.11
* Mon Dec 17 2012 Dennis Gilmore <dennis at ausil.us>
- disable gpiolib on vexpress
* Mon Dec 17 2012 Josh Boyer <jwboyer at redhat.com>
- Fix oops in sony-laptop setup (rhbz 873107)
* Wed Dec 12 2012 Josh Boyer <jwboyer at redhat.com> - 3.6.10-5
- Fix infinite loop in efi signature parser
- Don't error out if db doesn't exist
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #911473 - CVE-2013-0290 kernel: net: infinite loop in __skb_recv_datagram()
        https://bugzilla.redhat.com/show_bug.cgi?id=911473
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list