Bug 15221

Summary: Update request: kernel-3.14.32-1.mga4
Product: Mageia Reporter: Thomas Backlund <tmb>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: lewyssmith, olchal, sysadmin-bugs, wilcal.int
Version: 4Keywords: validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: advisory MGA4-32-OK MGA4-64-OK
Source RPM: kernel-3.14.32-1.mga4.src.rpm CVE:
Status comment:

Description Thomas Backlund 2015-02-07 14:24:34 CET 
New round for testing, advisory will follow...

SRPMS:
kernel-3.14.32-1.mga4.src.rpm
kernel-userspace-headers-3.14.32-1.mga4.src.rpm
kmod-vboxadditions-4.3.20-5.mga4.src.rpm
kmod-virtualbox-4.3.20-5.mga4.src.rpm
kmod-xtables-addons-2.5-11.mga4.src.rpm

kmod-broadcom-wl-6.30.223.141-47.mga4.nonfree.src.rpm
kmod-fglrx-14.010.1006-17.mga4.nonfree.src.rpm
kmod-nvidia173-173.14.39-31.mga4.nonfree.src.rpm
kmod-nvidia304-304.125-3.mga4.nonfree.src.rpm
kmod-nvidia-current-331.113-3.mga4.nonfree.src.rpm



i586:
cpupower-3.14.32-1.mga4.i586.rpm
cpupower-devel-3.14.32-1.mga4.i586.rpm
kernel-desktop-3.14.32-1.mga4-1-1.mga4.i586.rpm
kernel-desktop586-3.14.32-1.mga4-1-1.mga4.i586.rpm
kernel-desktop586-devel-3.14.32-1.mga4-1-1.mga4.i586.rpm
kernel-desktop586-devel-latest-3.14.32-1.mga4.i586.rpm
kernel-desktop586-latest-3.14.32-1.mga4.i586.rpm
kernel-desktop-devel-3.14.32-1.mga4-1-1.mga4.i586.rpm
kernel-desktop-devel-latest-3.14.32-1.mga4.i586.rpm
kernel-desktop-latest-3.14.32-1.mga4.i586.rpm
kernel-doc-3.14.32-1.mga4.noarch.rpm
kernel-server-3.14.32-1.mga4-1-1.mga4.i586.rpm
kernel-server-devel-3.14.32-1.mga4-1-1.mga4.i586.rpm
kernel-server-devel-latest-3.14.32-1.mga4.i586.rpm
kernel-server-latest-3.14.32-1.mga4.i586.rpm
kernel-source-3.14.32-1.mga4-1-1.mga4.noarch.rpm
kernel-source-latest-3.14.32-1.mga4.noarch.rpm
kernel-userspace-headers-3.14.32-1.mga4.i586.rpm
perf-3.14.32-1.mga4.i586.rpm

vboxadditions-kernel-3.14.32-desktop-1.mga4-4.3.20-5.mga4.i586.rpm
vboxadditions-kernel-3.14.32-desktop586-1.mga4-4.3.20-5.mga4.i586.rpm
vboxadditions-kernel-3.14.32-server-1.mga4-4.3.20-5.mga4.i586.rpm
vboxadditions-kernel-desktop586-latest-4.3.20-5.mga4.i586.rpm
vboxadditions-kernel-desktop-latest-4.3.20-5.mga4.i586.rpm
vboxadditions-kernel-server-latest-4.3.20-5.mga4.i586.rpm

virtualbox-kernel-3.14.32-desktop-1.mga4-4.3.20-5.mga4.i586.rpm
virtualbox-kernel-3.14.32-desktop586-1.mga4-4.3.20-5.mga4.i586.rpm
virtualbox-kernel-3.14.32-server-1.mga4-4.3.20-5.mga4.i586.rpm
virtualbox-kernel-desktop586-latest-4.3.20-5.mga4.i586.rpm
virtualbox-kernel-desktop-latest-4.3.20-5.mga4.i586.rpm
virtualbox-kernel-server-latest-4.3.20-5.mga4.i586.rpm

xtables-addons-kernel-3.14.32-desktop-1.mga4-2.5-11.mga4.i586.rpm
xtables-addons-kernel-3.14.32-desktop586-1.mga4-2.5-11.mga4.i586.rpm
xtables-addons-kernel-3.14.32-server-1.mga4-2.5-11.mga4.i586.rpm
xtables-addons-kernel-desktop586-latest-2.5-11.mga4.i586.rpm
xtables-addons-kernel-desktop-latest-2.5-11.mga4.i586.rpm
xtables-addons-kernel-server-latest-2.5-11.mga4.i586.rpm

broadcom-wl-kernel-3.14.32-desktop-1.mga4-6.30.223.141-47.mga4.nonfree.i586.rpm
broadcom-wl-kernel-3.14.32-desktop586-1.mga4-6.30.223.141-47.mga4.nonfree.i586.rpm
broadcom-wl-kernel-3.14.32-server-1.mga4-6.30.223.141-47.mga4.nonfree.i586.rpm
broadcom-wl-kernel-desktop586-latest-6.30.223.141-47.mga4.nonfree.i586.rpm
broadcom-wl-kernel-desktop-latest-6.30.223.141-47.mga4.nonfree.i586.rpm
broadcom-wl-kernel-server-latest-6.30.223.141-47.mga4.nonfree.i586.rpm

fglrx-kernel-3.14.32-desktop-1.mga4-14.010.1006-17.mga4.nonfree.i586.rpm
fglrx-kernel-3.14.32-desktop586-1.mga4-14.010.1006-17.mga4.nonfree.i586.rpm
fglrx-kernel-3.14.32-server-1.mga4-14.010.1006-17.mga4.nonfree.i586.rpm
fglrx-kernel-desktop586-latest-14.010.1006-17.mga4.nonfree.i586.rpm
fglrx-kernel-desktop-latest-14.010.1006-17.mga4.nonfree.i586.rpm
fglrx-kernel-server-latest-14.010.1006-17.mga4.nonfree.i586.rpm

nvidia173-kernel-3.14.32-desktop-1.mga4-173.14.39-31.mga4.nonfree.i586.rpm
nvidia173-kernel-3.14.32-desktop586-1.mga4-173.14.39-31.mga4.nonfree.i586.rpm
nvidia173-kernel-3.14.32-server-1.mga4-173.14.39-31.mga4.nonfree.i586.rpm
nvidia173-kernel-desktop586-latest-173.14.39-31.mga4.nonfree.i586.rpm
nvidia173-kernel-desktop-latest-173.14.39-31.mga4.nonfree.i586.rpm
nvidia173-kernel-server-latest-173.14.39-31.mga4.nonfree.i586.rpm

nvidia304-kernel-3.14.32-desktop-1.mga4-304.125-3.mga4.nonfree.i586.rpm
nvidia304-kernel-3.14.32-desktop586-1.mga4-304.125-3.mga4.nonfree.i586.rpm
nvidia304-kernel-3.14.32-server-1.mga4-304.125-3.mga4.nonfree.i586.rpm
nvidia304-kernel-desktop586-latest-304.125-3.mga4.nonfree.i586.rpm
nvidia304-kernel-desktop-latest-304.125-3.mga4.nonfree.i586.rpm
nvidia304-kernel-server-latest-304.125-3.mga4.nonfree.i586.rpm

nvidia-current-kernel-3.14.32-desktop-1.mga4-331.113-3.mga4.nonfree.i586.rpm
nvidia-current-kernel-3.14.32-desktop586-1.mga4-331.113-3.mga4.nonfree.i586.rpm
nvidia-current-kernel-3.14.32-server-1.mga4-331.113-3.mga4.nonfree.i586.rpm
nvidia-current-kernel-desktop586-latest-331.113-3.mga4.nonfree.i586.rpm
nvidia-current-kernel-desktop-latest-331.113-3.mga4.nonfree.i586.rpm
nvidia-current-kernel-server-latest-331.113-3.mga4.nonfree.i586.rpm



x86_64:
cpupower-3.14.32-1.mga4.x86_64.rpm
cpupower-devel-3.14.32-1.mga4.x86_64.rpm
kernel-desktop-3.14.32-1.mga4-1-1.mga4.x86_64.rpm
kernel-desktop-devel-3.14.32-1.mga4-1-1.mga4.x86_64.rpm
kernel-desktop-devel-latest-3.14.32-1.mga4.x86_64.rpm
kernel-desktop-latest-3.14.32-1.mga4.x86_64.rpm
kernel-doc-3.14.32-1.mga4.noarch.rpm
kernel-server-3.14.32-1.mga4-1-1.mga4.x86_64.rpm
kernel-server-devel-3.14.32-1.mga4-1-1.mga4.x86_64.rpm
kernel-server-devel-latest-3.14.32-1.mga4.x86_64.rpm
kernel-server-latest-3.14.32-1.mga4.x86_64.rpm
kernel-source-3.14.32-1.mga4-1-1.mga4.noarch.rpm
kernel-source-latest-3.14.32-1.mga4.noarch.rpm
kernel-userspace-headers-3.14.32-1.mga4.x86_64.rpm
perf-3.14.32-1.mga4.x86_64.rpm

vboxadditions-kernel-3.14.32-desktop-1.mga4-4.3.20-5.mga4.x86_64.rpm
vboxadditions-kernel-3.14.32-server-1.mga4-4.3.20-5.mga4.x86_64.rpm
vboxadditions-kernel-desktop-latest-4.3.20-5.mga4.x86_64.rpm
vboxadditions-kernel-server-latest-4.3.20-5.mga4.x86_64.rpm

virtualbox-kernel-3.14.32-desktop-1.mga4-4.3.20-5.mga4.x86_64.rpm
virtualbox-kernel-3.14.32-server-1.mga4-4.3.20-5.mga4.x86_64.rpm
virtualbox-kernel-desktop-latest-4.3.20-5.mga4.x86_64.rpm
virtualbox-kernel-server-latest-4.3.20-5.mga4.x86_64.rpm

xtables-addons-kernel-3.14.32-desktop-1.mga4-2.5-11.mga4.x86_64.rpm
xtables-addons-kernel-3.14.32-server-1.mga4-2.5-11.mga4.x86_64.rpm
xtables-addons-kernel-desktop-latest-2.5-11.mga4.x86_64.rpm
xtables-addons-kernel-server-latest-2.5-11.mga4.x86_64.rpm

broadcom-wl-kernel-3.14.32-desktop-1.mga4-6.30.223.141-47.mga4.nonfree.x86_64.rpm
broadcom-wl-kernel-3.14.32-server-1.mga4-6.30.223.141-47.mga4.nonfree.x86_64.rpm
broadcom-wl-kernel-desktop-latest-6.30.223.141-47.mga4.nonfree.x86_64.rpm
broadcom-wl-kernel-server-latest-6.30.223.141-47.mga4.nonfree.x86_64.rpm

fglrx-kernel-3.14.32-desktop-1.mga4-14.010.1006-17.mga4.nonfree.x86_64.rpm
fglrx-kernel-3.14.32-server-1.mga4-14.010.1006-17.mga4.nonfree.x86_64.rpm
fglrx-kernel-desktop-latest-14.010.1006-17.mga4.nonfree.x86_64.rpm
fglrx-kernel-server-latest-14.010.1006-17.mga4.nonfree.x86_64.rpm

nvidia173-kernel-3.14.32-desktop-1.mga4-173.14.39-31.mga4.nonfree.x86_64.rpm
nvidia173-kernel-3.14.32-server-1.mga4-173.14.39-31.mga4.nonfree.x86_64.rpm
nvidia173-kernel-desktop-latest-173.14.39-31.mga4.nonfree.x86_64.rpm
nvidia173-kernel-server-latest-173.14.39-31.mga4.nonfree.x86_64.rpm

nvidia304-kernel-3.14.32-desktop-1.mga4-304.125-3.mga4.nonfree.x86_64.rpm
nvidia304-kernel-3.14.32-server-1.mga4-304.125-3.mga4.nonfree.x86_64.rpm
nvidia304-kernel-desktop-latest-304.125-3.mga4.nonfree.x86_64.rpm
nvidia304-kernel-server-latest-304.125-3.mga4.nonfree.x86_64.rpm

nvidia-current-kernel-3.14.32-desktop-1.mga4-331.113-3.mga4.nonfree.x86_64.rpm
nvidia-current-kernel-3.14.32-server-1.mga4-331.113-3.mga4.nonfree.x86_64.rpm
nvidia-current-kernel-desktop-latest-331.113-3.mga4.nonfree.x86_64.rpm
nvidia-current-kernel-server-latest-331.113-3.mga4.nonfree.x86_64.rpm


Reproducible: 

Steps to Reproduce:
Comment 1 olivier charles 2015-02-07 17:11:36 CET 
Testing on Mageia4x64 real hardware (intel core i3 - nvidia 750GTX - RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller - 8 Series/C220 Series Chipset High Definition Audio Controller)

Updated testing packages :
------------------------
- cpupower-3.14.32-1.mga4.x86_64
- kernel-desktop-3.14.32-1.mga4-1-1.mga4.x86_64
- kernel-desktop-devel-3.14.31-2.mga4-1-1.mga4.x86_64
- kernel-desktop-devel-3.14.32-1.mga4-1-1.mga4.x86_64
- kernel-desktop-devel-latest-3.14.32-1.mga4.x86_64
- kernel-desktop-latest-3.14.32-1.mga4.x86_64
- kernel-userspace-headers-3.14.32-1.mga4.x86_64
- nvidia-current-kernel-3.14.32-desktop-1.mga4-331.113-3.mga4.nonfree.x86_64
- nvidia-current-kernel-desktop-latest-331.113-3.mga4.nonfree.x86_64
- vboxadditions-kernel-3.14.32-desktop-1.mga4-4.3.20-5.mga4.x86_64
- vboxadditions-kernel-desktop-latest-4.3.20-5.mga4.x86_64
- virtualbox-kernel-3.14.32-desktop-1.mga4-4.3.20-5.mga4.x86_64
- virtualbox-kernel-desktop-latest-4.3.20-5.mga4.x86_64

$ uname -a
Linux localhost 3.14.32-desktop-1.mga4 #1 SMP Sat Feb 7 00:41:35 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux

Boot OK (nothing special in dmesg)
Network ethernet + wifi OK
Web browser OK
Email client OK
Download with wget and ftp OK
SSH (login and rsync over ssh) OK
Play audio and video OK
USB OK
VirtualBox and additions OK

All OK for now

CC: (none) => olchal

Comment 2 David Walser 2015-02-10 00:35:40 CET 
Working fine on two workstations and two laptops at home and a workstation and server at work.  No noticeable regressions or issues noted in systemctl or journalctl.  Marking OK for Mageia 4 i586.

I hope the glibc update will be assigned to QA soon so that we can push them at the same time.

Whiteboard: (none) => MGA4-32-OK

Comment 3 William Kenney 2015-02-11 19:25:11 CET 
In VirtualBox, M4, KDE, 32-bit

Package(s) under test:
kernel-desktop-latest vboxadditions-kernel-desktop-latest

default install of kernel-desktop-latest vboxadditions-kernel-desktop-latest

[root@localhost wilcal]# uname -a
Linux localhost 3.14.27-desktop-1.mga4 #1 SMP Sun Dec 21 22:37:00 UTC 2014 i686 i686 i686 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.27-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-4.3.20-3.mga4.i586 is already installed

System boots to a working desktop. Common apps work. Screen dimensions are correct.

install kernel-desktop-latest & vboxadditions-kernel-desktop-latest from updates_testing

[root@localhost wilcal]# uname -a
Linux localhost 3.14.32-desktop-1.mga4 #1 SMP Sat Feb 7 00:45:59 UTC 2015 i686 i686 i686 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.32-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-4.3.20-5.mga4.i586 is already installed

System boots to a working desktop. Common apps work. Screen dimensions are correct.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.10-1.1.mga4.x86_64
virtualbox-guest-additions-4.3.10-1.1.mga4.x86_64

CC: (none) => wilcal.int

Comment 4 William Kenney 2015-02-11 19:38:45 CET 
In VirtualBox, M4, KDE, 64-bit

Package(s) under test:
kernel-desktop-latest vboxadditions-kernel-desktop-latest

default install of kernel-desktop-latest vboxadditions-kernel-desktop-latest

[root@localhost wilcal]# uname -a
Linux localhost 3.14.27-desktop-1.mga4 #1 SMP Sun Dec 21 22:32:50 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.27-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-4.3.20-3.mga4.x86_64 is already installed

System boots to a working desktop. Common apps work. Screen dimensions are correct.

install kernel-desktop-latest & vboxadditions-kernel-desktop-latest from updates_testing

[root@localhost wilcal]# uname -a
Linux localhost 3.14.32-desktop-1.mga4 #1 SMP Sat Feb 7 00:41:35 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.32-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-4.3.20-5.mga4.x86_64 is already installed

System boots to a working desktop. Common apps work. Screen dimensions are correct.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.10-1.1.mga4.x86_64
virtualbox-guest-additions-4.3.10-1.1.mga4.x86_64
Comment 5 David Walser 2015-02-11 19:58:03 CET 
This is sufficiently tested for validation.

Hopefully we can get glibc and dbus validated soon too to go with it.

This will of course need an advisory as well.

Keywords: (none) => validated_update
Whiteboard: MGA4-32-OK => MGA4-32-OK MGA4-64-OK
CC: (none) => sysadmin-bugs

Comment 6 William Kenney 2015-02-11 22:11:31 CET 
I'm running into some problems David. Gimme a day or two.
Comment 7 David Walser 2015-02-11 22:51:04 CET 
(In reply to William Kenney from comment #6)
> I'm running into some problems David. Gimme a day or two.

Be specific.

CC: (none) => luigiwalser

David Walser 2015-02-11 22:51:14 CET

CC: luigiwalser => (none)

Comment 8 William Kenney 2015-02-11 23:38:44 CET 
I start with a completely blank drive then install, then update 4.1,
make sure that works ( didn't work the first time ), then install VirtualBox,
make sure that works. Reboot recheck everything, then update the kernel, reboot,
make sure that works and then make sure VirtualBox still works. Test platform
also has an Nvidia board which adds to the excitement.
Be done in a min with 64-bit.
Comment 9 William Kenney 2015-02-11 23:45:32 CET 
On real hardware, M4, KDE, 64-bit

Package(s) under test:
kernel-desktop-latest
virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox
virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo
nvidia-current-kernel-desktop-latest

default install of:
kernel-desktop-latest
virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox
virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo
nvidia-current-kernel-desktop-latest

[root@localhost wilcal]# uname -a
Linux localhost 3.14.27-desktop-1.mga4 #1 SMP Sun Dec 21 22:32:50 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.27-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox
Package virtualbox-4.3.20-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-4.3.20-3.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi dkms-virtualbox
Package dkms-virtualbox-4.3.20-1.mga4.noarch is already installed
[root@localhost wilcal]# urpmi virtualbox-guest-additions
Package virtualbox-guest-additions-4.3.20-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest
Package virtualbox-kernel-desktop-latest-4.3.20-3.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-vboxvideo
Package x11-driver-video-vboxvideo-4.3.20-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi nvidia-current-kernel-desktop-latest
Package nvidia-current-kernel-desktop-latest-331.113-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# lspci -k
01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1)
        Subsystem: Gigabyte Technology Co., Ltd Device 3518
        Kernel driver in use: nvidia
        Kernel modules: nvidiafb, nouveau, nvidia_current

System boots to a working desktop. Common apps work. M5 KDE Live-CD runs as a Vbox client.
Screen sizes are correct.

install:
kernel-desktop-latest
virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox
virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo
nvidia-current-kernel-desktop-latest
from updates_testing

[root@localhost wilcal]# uname -a
Linux localhost 3.14.32-desktop-1.mga4 #1 SMP Sat Feb 7 00:41:35 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.32-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox
Package virtualbox-4.3.20-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest
Package vboxadditions-kernel-desktop-latest-4.3.20-5.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi dkms-virtualbox
Package dkms-virtualbox-4.3.20-1.mga4.noarch is already installed
[root@localhost wilcal]# urpmi virtualbox-guest-additions
Package virtualbox-guest-additions-4.3.20-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest
Package virtualbox-kernel-desktop-latest-4.3.20-5.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-vboxvideo
Package x11-driver-video-vboxvideo-4.3.20-1.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi nvidia-current-kernel-desktop-latest
Package nvidia-current-kernel-desktop-latest-331.113-3.mga4.nonfree.x86_64 is already installed
[wilcal@localhost ~]$ lspci -k
01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1)
        Subsystem: Gigabyte Technology Co., Ltd Device 3518
        Kernel driver in use: nvidia
        Kernel modules: nvidiafb, nouveau, nvidia_current

System boots to a working desktop. Common apps work. M5 KDE Live-CD runs as a Vbox client.
Screen sizes are correct.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.10-1.1.mga4.x86_64
virtualbox-guest-additions-4.3.10-1.1.mga4.x86_64
Comment 10 claire robinson 2015-02-11 23:46:39 CET 
Before this is pushed I'd like to ensure nvidia drivers especially, but others too, are installed correctly when this is installed with dbus and glibc at the same time.

Removing validation for now until it's more thoroughly tested.
claire robinson 2015-02-11 23:46:47 CET

Keywords: validated_update => (none)

Comment 11 William Kenney 2015-02-11 23:59:09 CET 
I'll run i586 on real hardware tomorrow and the other kernels in
Vbox in the next days. Goal is to get through all of them by Sat/Sun.
Others need to test too. Yup, the Nvidia thing can get ya. In my
test in Comment #9 dbus and glibc were being updated too:

[root@localhost wilcal]# urpmi dbus
Package dbus-1.6.18-1.10.mga4.x86_64 is already installed
[root@localhost wilcal]# urpmi glibc
Package glibc-2.18-9.9.mga4.x86_64 is already installed

It takes hours to do just this one kernel ( Comment #9 ).
Comment 12 David Walser 2015-02-12 00:37:53 CET 
I've tested it on 6 physical machines with three different classes of hardware (2 non-OEM workstations, a Dell desktop, a Dell server-class machine, and two laptops) as well as in Virtualbox, tested desktop and server variants, and two other distinct people have reported tests from the other architecture.  It has been thoroughly tested.  That being said, it's fair to double-check the nvidia thing since there were problems last time it was updated.  I wouldn't expect the kernel/glibc/dbus update would be pushed before this weekend anyway.  I'll validate it then if it hasn't been before then.
Comment 13 Thomas Backlund 2015-02-12 19:44:46 CET 
Advisory:
This kernel update is based on upstream -longterm 3.14.32 and fixes the 
following security issues:

The Linux kernel through 3.17.4 does not properly restrict dropping of
supplemental group memberships in certain namespace scenarios, which allows
local users to bypass intended file permissions by leveraging a POSIX ACL
containing an entry for the group category that is more restrictive than
the entry for the other category, aka a "negative groups" issue, related to
kernel/groups.c, kernel/uid16.c, and kernel/user_namespace.c (CVE-2014-8989).

The batadv_frag_merge_packets function in net/batman-adv/fragmentation.c in
the B.A.T.M.A.N. implementation in the Linux kernel through 3.18.1 uses an
incorrect length field during a calculation of an amount of memory, which
allows remote attackers to cause a denial of service (mesh-node system crash)
via fragmented packets (CVE-2014-9428).

Race condition in the key_gc_unused_keys function in security/keys/gc.c
in the Linux kernel through 3.18.2 allows local users to cause a denial
of service (memory corruption or panic) or possibly have unspecified other
impact via keyctl commands that trigger access to a key structure member
during garbage collection of a key (CVE-2014-9529).

The parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux
kernel before 3.18.2 does not validate a length value in the Extensions
Reference (ER) System Use Field, which allows local users to obtain sensitive
information from kernel memory via a crafted iso9660 image (CVE-2014-9584).

The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through
3.18.2 does not properly choose memory locations for the vDSO area, which
makes it easier for local users to bypass the ASLR protection mechanism by
guessing a location at the end of a PMD (CVE-2014-9585).

Linux Kernel 2.6.38 through 3.18 are affected by a flaw in the Crypto API
that allows any local user to load any installed kernel module on systems
where CONFIG_CRYPTO_USER_API=y by abusing the request_module() call
(CVE-2013-7421, CVE-2014-9644).

When hitting an sctp INIT collision case during the 4WHS with AUTH enabled,
it can create a local denial of service by triggerinf a panic on server side
(CVE-2015-1421).

It was found that routing packets to too many different dsts/too fast can
lead to a excessive resource consumption. A remote attacker can use this
flaw to crash the system (CVE-2015-1465).

For other fixes in this update, see the referenced changelogs.


References:
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.28
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.29
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.30
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.31
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.32
Comment 14 olivier charles 2015-02-12 19:48:46 CET 
With testing dbus-1.6.18-1.10.mga4 and glibc-2.18-9.9.mga4 on same installation (Mageia4x64), present testing kernel still functions well for me (nvidia gtx750 with intel icore 3).
Comment 15 William Kenney 2015-02-12 19:59:58 CET 
On real hardware, M4, KDE, 32-bit

Package(s) under test:
kernel-desktop-latest dbus dbus-x11 glibc

default install of kernel-desktop-latest dbus dbus-x11 glibc

[root@localhost wilcal]# uname -a
Linux localhost 3.14.27-desktop-1.mga4 #1 SMP Sun Dec 21 22:37:00 UTC 2014 i686 i686 i686 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.27-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi dbus
Package dbus-1.6.18-1.8.mga4.i586 is already installed
[root@localhost wilcal]# urpmi dbus-x11
Package dbus-x11-1.6.18-1.8.mga4.i586 is already installed
[root@localhost wilcal]# urpmi glibc
Package glibc-2.18-9.8.mga4.i586 is already installed
[wilcal@localhost ~]$ lspci -k
00:02.0 VGA compatible controller: Intel Corporation 82915G/GV/910GL Integrated Graphics Controller (rev 04)
        Subsystem: Gigabyte Technology Co., Ltd GA-8I915ME-G Mainboard
        Kernel driver in use: i915
        Kernel modules: i915, intelfb

System boots to a working desktop. Common apps work. Screen dimensions are correct.

install kernel-desktop-latest dbus dbus-x11 glibc from updates_testing

[root@localhost wilcal]# uname -a
Linux localhost 3.14.32-desktop-1.mga4 #1 SMP Sat Feb 7 00:45:59 UTC 2015 i686 i686 i686 GNU/Linux
[root@localhost wilcal]# urpmi kernel-desktop-latest
Package kernel-desktop-latest-3.14.32-1.mga4.i586 is already installed
[root@localhost wilcal]# urpmi dbus
Package dbus-1.6.18-1.10.mga4.i586 is already installed
[root@localhost wilcal]# urpmi dbus-x11
Package dbus-x11-1.6.18-1.10.mga4.i586 is already installed
[root@localhost wilcal]# urpmi glibc
Package glibc-2.18-9.9.mga4.i586 is already installed
wilcal@localhost ~]$ lspci -k
00:02.0 VGA compatible controller: Intel Corporation 82915G/GV/910GL Integrated Graphics Controller (rev 04)
        Subsystem: Gigabyte Technology Co., Ltd GA-8I915ME-G Mainboard
        Kernel driver in use: i915
        Kernel modules: i915, intelfb

System boots to a working desktop. Common apps work. Screen dimensions are correct.

Test platform:
Intel, P4 530J 3.0 GHz, 800MHz FSB, 1MB L2, LGA 775
GigaByte  GA-81915G Pro F4  i915G  LGA 775  MoBo
 Marvel Yukon 88E8001 Gigabit LAN
 Intel High Def Audio, Azalia (C-Media 9880) (snd-hda-intel)
 Intel Graphics Media Accelerator 900 (Intel 82915G)
Kingston 4GB (2 x 2GB) DDR400 PC-3200
250GB Seagate
Kingwin KF-91-BK SATA Mobile Rack
Kingwin KF-91-T-BK SATA Mobile Rack Tray
Sony CD/DVD-RW DWQ120AB2
Comment 16 claire robinson 2015-02-13 13:07:27 CET 
Performed two installations one x86_64 and one i586 with kernel, 3 x nvidia, fglrx, broadcom-wl, vbox, xtables-addons and also glibc, dbus, x11 and cups at the same time. 

All Ok
Comment 17 claire robinson 2015-02-13 19:02:51 CET 
Advisory uploaded.

Whiteboard: MGA4-32-OK MGA4-64-OK => advisory MGA4-32-OK MGA4-64-OK

Comment 18 Lewis Smith 2015-02-14 10:03:59 CET 
Late but... installed the kernel along with glibc, dbus, X11 server. Having AMD/ATI/Radeon graphics, booting now complains about fglrx wanting kernel-devel, so cannot install that module. But it goes on to work anyway.

CC: (none) => lewyssmith

Comment 19 claire robinson 2015-02-14 10:14:20 CET 
dkms-* packages build themselves so need the kernel-*-devel-latest package to be installed that matches your kernel.
Comment 20 olivier charles 2015-02-14 12:08:21 CET 
Testing on Mageia4x32 real hardware (intel core i3, 8 Series/C220 Series Chipset, nvidia GTX750)

Updated to testing kernel-desktop (kernel-desktop-3.14.32-1.mga4-1-1.mga4.i586), dbus, glibc and x11-server

Everything OK in dmesg, systemctl -a, journalctl -a
Nvidia 331.113 OK, display, screen, sound OK
Network, web browser OK
USB OK
Virtualbox and additions OK
Comment 21 olivier charles 2015-02-14 12:26:07 CET 
Testing on Mageia4x32 real hardware (intel core i3, 8 Series/C220 Series Chipset, nvidia GTX750)

Changed from updated testing kernel-desktop-3.14.32-1 to updated testing kernel-server.
$ uname -a
Linux localhost 3.14.32-server-1.mga4 #1 SMP Sat Feb 7 01:03:42 UTC 2015 i686 i686 i686 GNU/Linux

Everything still fine as in comment 20.
Comment 22 claire robinson 2015-02-17 18:09:02 CET 
Validating.

Please push to 4 updates

Thanks

Keywords: (none) => validated_update

Comment 23 Mageia Robot 2015-02-17 19:38:55 CET 
An update for this issue has been pushed to Mageia Updates repository.

http://advisories.mageia.org/MGASA-2015-0070.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED