[SECURITY] Fedora 20 Update: kernel-3.11.1-300.fc20
updates at fedoraproject.org
updates at fedoraproject.org
Mon Sep 23 00:36:45 UTC 2013
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-16794
2013-09-15 17:23:05
--------------------------------------------------------------------------------
Name : kernel
Product : Fedora 20
Version : 3.11.1
Release : 300.fc20
URL : http://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system. The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream stable release, Linux v3.11.1. Includes fixes for CVE-2013-4343 and CVE-2013-4350
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1007872 - CVE-2013-4350 kernel: net: sctp: ipv6 ipsec encryption bug in sctp_v6_xmit
https://bugzilla.redhat.com/show_bug.cgi?id=1007872
[ 2 ] Bug #1007733 - CVE-2013-4343 Kernel: net: use-after-free TUNSETIFF
https://bugzilla.redhat.com/show_bug.cgi?id=1007733
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list