Bug 13393 - Update request: kernel-3.12.20-1.mga4
: Update request: kernel-3.12.20-1.mga4
Status: RESOLVED FIXED
Product: Mageia
Classification: Unclassified
Component: Security
: 4
: All Linux
: Normal Severity: critical
: ---
Assigned To: QA Team
: Sec team
:
: mga4-32-ok mga4-64-ok
: validated_update
:
:
  Show dependency treegraph
 
Reported: 2014-05-17 01:41 CEST by Thomas Backlund
Modified: 2014-05-18 01:44 CEST (History)
6 users (show)

See Also:
Source RPM: kernel-3.12.20-1.mga4.src.rpm
CVE:
Status comment:


Attachments

Description Thomas Backlund 2014-05-17 01:41:54 CEST
SRPM: 
kernel-3.12.20-1.mga4.src.rpm
kernel-userspace-headers-3.12.20-1.mga4.src.rpm
kmod-vboxadditions-4.3.10-5.mga4.src.rpm
kmod-virtualbox-4.3.10-5.mga4.src.rpm
kmod-xtables-addons-2.3-45.mga4.src.rpm

kmod-broadcom-wl-6.30.223.141-30.mga4.nonfree.src.rpm
kmod-fglrx-13.251-15.mga4.nonfree.src.rpm
kmod-nvidia173-173.14.39-15.mga4.nonfree.src.rpm
kmod-nvidia304-304.119-10.mga4.nonfree.src.rpm
kmod-nvidia-current-331.49-5.mga4.nonfree.src.rpm


i586:
cpupower-3.12.20-1.mga4.i586.rpm
cpupower-devel-3.12.20-1.mga4.i586.rpm
kernel-desktop-3.12.20-1.mga4-1-1.mga4.i586.rpm
kernel-desktop586-3.12.20-1.mga4-1-1.mga4.i586.rpm
kernel-desktop586-devel-3.12.20-1.mga4-1-1.mga4.i586.rpm
kernel-desktop586-devel-latest-3.12.20-1.mga4.i586.rpm
kernel-desktop586-latest-3.12.20-1.mga4.i586.rpm
kernel-desktop-devel-3.12.20-1.mga4-1-1.mga4.i586.rpm
kernel-desktop-devel-latest-3.12.20-1.mga4.i586.rpm
kernel-desktop-latest-3.12.20-1.mga4.i586.rpm
kernel-doc-3.12.20-1.mga4.noarch.rpm
kernel-server-3.12.20-1.mga4-1-1.mga4.i586.rpm
kernel-server-devel-3.12.20-1.mga4-1-1.mga4.i586.rpm
kernel-server-devel-latest-3.12.20-1.mga4.i586.rpm
kernel-server-latest-3.12.20-1.mga4.i586.rpm
kernel-source-3.12.20-1.mga4-1-1.mga4.noarch.rpm
kernel-source-latest-3.12.20-1.mga4.noarch.rpm
kernel-userspace-headers-3.12.20-1.mga4.i586.rpm
perf-3.12.20-1.mga4.i586.rpm

vboxadditions-kernel-3.12.20-desktop-1.mga4-4.3.10-5.mga4.i586.rpm
vboxadditions-kernel-3.12.20-desktop586-1.mga4-4.3.10-5.mga4.i586.rpm
vboxadditions-kernel-3.12.20-server-1.mga4-4.3.10-5.mga4.i586.rpm
vboxadditions-kernel-desktop586-latest-4.3.10-5.mga4.i586.rpm
vboxadditions-kernel-desktop-latest-4.3.10-5.mga4.i586.rpm
vboxadditions-kernel-server-latest-4.3.10-5.mga4.i586.rpm
virtualbox-kernel-3.12.20-desktop-1.mga4-4.3.10-5.mga4.i586.rpm
virtualbox-kernel-3.12.20-desktop586-1.mga4-4.3.10-5.mga4.i586.rpm
virtualbox-kernel-3.12.20-server-1.mga4-4.3.10-5.mga4.i586.rpm
virtualbox-kernel-desktop586-latest-4.3.10-5.mga4.i586.rpm
virtualbox-kernel-desktop-latest-4.3.10-5.mga4.i586.rpm
virtualbox-kernel-server-latest-4.3.10-5.mga4.i586.rpm
xtables-addons-kernel-3.12.20-desktop-1.mga4-2.3-45.mga4.i586.rpm
xtables-addons-kernel-3.12.20-desktop586-1.mga4-2.3-45.mga4.i586.rpm
xtables-addons-kernel-3.12.20-server-1.mga4-2.3-45.mga4.i586.rpm
xtables-addons-kernel-desktop586-latest-2.3-45.mga4.i586.rpm
xtables-addons-kernel-desktop-latest-2.3-45.mga4.i586.rpm
xtables-addons-kernel-server-latest-2.3-45.mga4.i586.rpm

broadcom-wl-kernel-3.12.20-desktop-1.mga4-6.30.223.141-30.mga4.nonfree.i586.rpm
broadcom-wl-kernel-3.12.20-desktop586-1.mga4-6.30.223.141-30.mga4.nonfree.i586.rpm
broadcom-wl-kernel-3.12.20-server-1.mga4-6.30.223.141-30.mga4.nonfree.i586.rpm
broadcom-wl-kernel-desktop586-latest-6.30.223.141-30.mga4.nonfree.i586.rpm
broadcom-wl-kernel-desktop-latest-6.30.223.141-30.mga4.nonfree.i586.rpm
broadcom-wl-kernel-server-latest-6.30.223.141-30.mga4.nonfree.i586.rpm
fglrx-kernel-3.12.20-desktop-1.mga4-13.251-15.mga4.nonfree.i586.rpm
fglrx-kernel-3.12.20-desktop586-1.mga4-13.251-15.mga4.nonfree.i586.rpm
fglrx-kernel-3.12.20-server-1.mga4-13.251-15.mga4.nonfree.i586.rpm
fglrx-kernel-desktop586-latest-13.251-15.mga4.nonfree.i586.rpm
fglrx-kernel-desktop-latest-13.251-15.mga4.nonfree.i586.rpm
fglrx-kernel-server-latest-13.251-15.mga4.nonfree.i586.rpm
nvidia173-kernel-3.12.20-desktop-1.mga4-173.14.39-15.mga4.nonfree.i586.rpm
nvidia173-kernel-3.12.20-desktop586-1.mga4-173.14.39-15.mga4.nonfree.i586.rpm
nvidia173-kernel-3.12.20-server-1.mga4-173.14.39-15.mga4.nonfree.i586.rpm
nvidia173-kernel-desktop586-latest-173.14.39-15.mga4.nonfree.i586.rpm
nvidia173-kernel-desktop-latest-173.14.39-15.mga4.nonfree.i586.rpm
nvidia173-kernel-server-latest-173.14.39-15.mga4.nonfree.i586.rpm
nvidia304-kernel-3.12.20-desktop-1.mga4-304.119-10.mga4.nonfree.i586.rpm
nvidia304-kernel-3.12.20-desktop586-1.mga4-304.119-10.mga4.nonfree.i586.rpm
nvidia304-kernel-3.12.20-server-1.mga4-304.119-10.mga4.nonfree.i586.rpm
nvidia304-kernel-desktop586-latest-304.119-10.mga4.nonfree.i586.rpm
nvidia304-kernel-desktop-latest-304.119-10.mga4.nonfree.i586.rpm
nvidia304-kernel-server-latest-304.119-10.mga4.nonfree.i586.rpm
nvidia-current-kernel-3.12.20-desktop-1.mga4-331.49-5.mga4.nonfree.i586.rpm
nvidia-current-kernel-3.12.20-desktop586-1.mga4-331.49-5.mga4.nonfree.i586.rpm
nvidia-current-kernel-3.12.20-server-1.mga4-331.49-5.mga4.nonfree.i586.rpm
nvidia-current-kernel-desktop586-latest-331.49-5.mga4.nonfree.i586.rpm
nvidia-current-kernel-desktop-latest-331.49-5.mga4.nonfree.i586.rpm
nvidia-current-kernel-server-latest-331.49-5.mga4.nonfree.i586.rpm


x86_64:
cpupower-3.12.20-1.mga4.x86_64.rpm
cpupower-devel-3.12.20-1.mga4.x86_64.rpm
kernel-desktop-3.12.20-1.mga4-1-1.mga4.x86_64.rpm
kernel-desktop-devel-3.12.20-1.mga4-1-1.mga4.x86_64.rpm
kernel-desktop-devel-latest-3.12.20-1.mga4.x86_64.rpm
kernel-desktop-latest-3.12.20-1.mga4.x86_64.rpm
kernel-doc-3.12.20-1.mga4.noarch.rpm
kernel-server-3.12.20-1.mga4-1-1.mga4.x86_64.rpm
kernel-server-devel-3.12.20-1.mga4-1-1.mga4.x86_64.rpm
kernel-server-devel-latest-3.12.20-1.mga4.x86_64.rpm
kernel-server-latest-3.12.20-1.mga4.x86_64.rpm
kernel-source-3.12.20-1.mga4-1-1.mga4.noarch.rpm
kernel-source-latest-3.12.20-1.mga4.noarch.rpm
kernel-userspace-headers-3.12.20-1.mga4.x86_64.rpm
perf-3.12.20-1.mga4.x86_64.rpm

boxadditions-kernel-3.12.20-desktop-1.mga4-4.3.10-5.mga4.x86_64.rpm
vboxadditions-kernel-3.12.20-server-1.mga4-4.3.10-5.mga4.x86_64.rpm
vboxadditions-kernel-desktop-latest-4.3.10-5.mga4.x86_64.rpm
vboxadditions-kernel-server-latest-4.3.10-5.mga4.x86_64.rpm
virtualbox-kernel-3.12.20-desktop-1.mga4-4.3.10-5.mga4.x86_64.rpm
virtualbox-kernel-3.12.20-server-1.mga4-4.3.10-5.mga4.x86_64.rpm
virtualbox-kernel-desktop-latest-4.3.10-5.mga4.x86_64.rpm
virtualbox-kernel-server-latest-4.3.10-5.mga4.x86_64.rpm
xtables-addons-kernel-3.12.20-desktop-1.mga4-2.3-45.mga4.x86_64.rpm
xtables-addons-kernel-3.12.20-server-1.mga4-2.3-45.mga4.x86_64.rpm
xtables-addons-kernel-desktop-latest-2.3-45.mga4.x86_64.rpm
xtables-addons-kernel-server-latest-2.3-45.mga4.x86_64.rpm

broadcom-wl-kernel-3.12.20-desktop-1.mga4-6.30.223.141-30.mga4.nonfree.x86_64.rpm
broadcom-wl-kernel-3.12.20-server-1.mga4-6.30.223.141-30.mga4.nonfree.x86_64.rpm
broadcom-wl-kernel-desktop-latest-6.30.223.141-30.mga4.nonfree.x86_64.rpm
broadcom-wl-kernel-server-latest-6.30.223.141-30.mga4.nonfree.x86_64.rpm
fglrx-kernel-3.12.20-desktop-1.mga4-13.251-15.mga4.nonfree.x86_64.rpm
fglrx-kernel-3.12.20-server-1.mga4-13.251-15.mga4.nonfree.x86_64.rpm
fglrx-kernel-desktop-latest-13.251-15.mga4.nonfree.x86_64.rpm
fglrx-kernel-server-latest-13.251-15.mga4.nonfree.x86_64.rpm
nvidia173-kernel-3.12.20-desktop-1.mga4-173.14.39-15.mga4.nonfree.x86_64.rpm
nvidia173-kernel-3.12.20-server-1.mga4-173.14.39-15.mga4.nonfree.x86_64.rpm
nvidia173-kernel-desktop-latest-173.14.39-15.mga4.nonfree.x86_64.rpm
nvidia173-kernel-server-latest-173.14.39-15.mga4.nonfree.x86_64.rpm
nvidia304-kernel-3.12.20-desktop-1.mga4-304.119-10.mga4.nonfree.x86_64.rpm
nvidia304-kernel-3.12.20-server-1.mga4-304.119-10.mga4.nonfree.x86_64.rpm
nvidia304-kernel-desktop-latest-304.119-10.mga4.nonfree.x86_64.rpm
nvidia304-kernel-server-latest-304.119-10.mga4.nonfree.x86_64.rpm
nvidia-current-kernel-3.12.20-desktop-1.mga4-331.49-5.mga4.nonfree.x86_64.rpm
nvidia-current-kernel-3.12.20-server-1.mga4-331.49-5.mga4.nonfree.x86_64.rpm
nvidia-current-kernel-desktop-latest-331.49-5.mga4.nonfree.x86_64.rpm
nvidia-current-kernel-server-latest-331.49-5.mga4.nonfree.x86_64.rpm


Advisory:
Updated kernel provides upstream 3.12.20 kernel and fixes the following
security issues:

The ioapic_deliver function in virt/kvm/ioapic.c in the Linux kernel
through 3.14.1 does not properly validate the kvm_irq_delivery_to_apic
return value, which allows guest OS users to cause a denial of service
(host OS crash) via a crafted entry in the redirection table of an I/O
APIC. NOTE: the affected code was moved to the ioapic_service function
before the vulnerability was announced. (CVE-2014-0155)

The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel
through 3.14.3 does not properly manage tty driver access in the
"LECHO & !OPOST" case, which allows local users to cause a denial of
service (memory corruption and system crash) or gain privileges by
triggering a race condition involving read and write operations with
long strings. (CVE-2014-0196)

The raw_cmd_copyin function in drivers/block/floppy.c in the Linux
kernel through 3.14.3 does not properly handle error conditions during
processing of an FDRAWCMD ioctl call, which allows local users to trigger
kfree operations and gain privileges by leveraging write access to a
/dev/fd device.  (CVE-2014-1737)

The raw_cmd_copyout function in drivers/block/floppy.c in the Linux
kernel through 3.14.3 does not properly restrict access to certain
pointers during processing of an FDRAWCMD ioctl call, which allows
local users to obtain sensitive information from kernel heap memory
by leveraging write access to a /dev/fd device. (CVE-2014-1738)

For other fixes, see the referenced changelogs.

References:
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.20
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.19



Reproducible: 

Steps to Reproduce:
Comment 1 William Kenney 2014-05-17 04:24:42 CEST
On real hardware, M4, KDE, 32-bit

Package(s) under test:
kernel-desktop

default install of kernel-desktop

[root@localhost wilcal]# uname -a
Linux localhost 3.12.18-desktop586-1.mga4 #1 SMP Thu Apr 24 12:53:50 UTC 2014 i686 i686 i686 GNU/Linux

kernel-desktop boots to a working desktop and applications work fine

install kernel-desktop from updates_testing

[wilcal@localhost ~]$ uname -a
Linux localhost 3.12.20-desktop-1.mga4 #1 SMP Fri May 16 16:23:54 UTC 2014 i686 i686 i686 GNU/Linux

kernel-desktop 3.12.20 boots to a working desktop and applications work fine
but I have to manually select 3.12.20 in the GRUB2 boot menu otherwise
it boots back to 3.12.18.

Test platform:
Intel, P4 530J 3.0 GHz, 800MHz FSB, 1MB L2, LGA 775
GigaByte  GA-81915G Pro F4  i915G  LGA 775  MoBo
 Marvel Yukon 88E8001 Gigabit LAN
 Intel High Def Audio, Azalia (C-Media 9880) (snd-hda-intel)
 Intel Graphics Media Accelerator 900 (Intel 82915G)
Kingston 4GB (2 x 2GB) DDR400 PC-3200
250GB Seagate
Kingwin KF-91-BK SATA Mobile Rack
Kingwin KF-91-T-BK SATA Mobile Rack Tray
Sony CD/DVD-RW DWQ120AB2
Comment 2 William Kenney 2014-05-17 05:36:33 CEST
On real hardware, M4, KDE, 64-bit

Package(s) under test:
kernel-desktop

default install of kernel-desktop

[wilcal@localhost ~]$ uname -a
Linux localhost 3.12.18-desktop-1.mga4 #1 SMP Thu Apr 24 13:10:59 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux

kernel-desktop boots to a working desktop and applications work fine

install kernel-desktop from updates_testing

[wilcal@localhost ~]$ uname -a
Linux localhost 3.12.20-desktop-1.mga4 #1 SMP Fri May 16 15:47:33 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi nvidia
Package x11-driver-video-nvidia-current-331.49-1.mga4.nonfree.x86_64 is already installed

kernel-desktop 3.12.20 boots to a working desktop and applications work fine
GRUB2 automatically selects 3.12.20

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
virtualbox-4.3.10-1.1.mga4.x86_64
virtualbox-guest-additions-4.3.10-1.1.mga4.x86_64
Comment 3 Rémi Verschelde 2014-05-17 10:37:25 CEST
Testing kernel-server on real hardware, Mageia 4 i586.

I upgraded from 3.12.18-server-1.mga4 to 3.12.20-server-1.mga4. Both my dkms-* packages were properly rebuilt during the install (dkms-bbswith from core/backports_testing and dkms-nvidia-current). I also installed cpupower and nvidia-current-kernel-server-*.

The reboot went fine and loaded the new kernel. My applications still work fine (audio, video, games, etc.).
Comment 4 Colin Guthrie 2014-05-17 11:48:12 CEST
Testing kernel-desktop on real hardware, Mageia 4 x86_64

Everything seems fine. install+reboot went smoothly and system running without issues.

System is a ASUSTeK Computer INC. P5QPL-AM with Intel Core 2 Duo.
Comment 5 Shlomi Fish 2014-05-17 12:52:33 CEST
Testing kernel-desktop on a VBox VM. Mageia 4 x86-64.

Everything seems fine. Install+reboot went smoothly and the system ran fine (IceWM/etc.).
Comment 6 Shlomi Fish 2014-05-17 13:20:55 CEST
Testing kernel-desktop on this hardware:


<<<<
I also have an Acer Aspire 5738DZG laptop with the following specs:

    Intel Pentium(R) Dual-Core CPU T4300 @ 2.10GHz. (x86-64).
    ATI Mobility Radeon™ HD 4570 (r700)
    15.63"D HD LCD Screen.
    3 GB Memory
    320 GB Hard Disk Drive.
    “DVD Super Multi DL drive”
    Acer Nplify™ 802.11b/g/n.
>>>>

Everything seems fine - KDE 4, Samba, VLC, HexChat (to Freenode), Extreme Tux Racer.

Regards,

-- Shlomi Fish
Comment 7 Shlomi Fish 2014-05-17 13:21:34 CEST
(In reply to Shlomi Fish from comment #6)
> Testing kernel-desktop on this hardware:
> 

Oh, and it's x86-64.
Comment 8 claire robinson 2014-05-17 15:23:23 CEST
PoC: https://bugzilla.novell.com/show_bug.cgi?id=875690#c14
Comment 9 Bill Wilkinson 2014-05-17 17:39:56 CEST
Tested mga4-64 under general usage and PoC provided by Claire.

Kernel-desktop-3.12.18 with the PoC led to the system completely locking up.  Running it under kernel-desktop and kernel-server from updates testing led to "No crash? Maybe you're not vulnerable"

Kernels boot and dkms modules build as expected.
Comment 10 claire robinson 2014-05-17 17:50:30 CEST
Well done everybody. Validating this one.

Advisory uploaded.

Could sysadmin please push to 4 updates

Thanks
Comment 11 William Kenney 2014-05-17 17:58:54 CEST
Retest

On real hardware, M4, KDE, 32-bit

Package(s) under test:
kernel-desktop-latest

default install of kernel-desktop-latest

[wilcal@localhost ~]$ uname -a
Linux localhost 3.12.18-desktop586-1.mga4 #1 SMP Thu Apr 24 12:53:50 UTC 2014 i686 i686 i686 GNU/Linux

kernel-desktop-latest boots to a working desktop and applications work fine

install kernel-desktop from updates_testing

[wilcal@localhost ~]$ uname -a
Linux localhost 3.12.20-desktop586-1.mga4 #1 SMP Fri May 16 16:00:06 UTC 2014 i686 i686 i686 GNU/Linux

kernel-desktop 3.12.20 boots to a working desktop and applications work fine
Using kernel-desktop-latest works better :-))

Test platform:
Intel, P4 530J 3.0 GHz, 800MHz FSB, 1MB L2, LGA 775
GigaByte  GA-81915G Pro F4  i915G  LGA 775  MoBo
 Marvel Yukon 88E8001 Gigabit LAN
 Intel High Def Audio, Azalia (C-Media 9880) (snd-hda-intel)
 Intel Graphics Media Accelerator 900 (Intel 82915G)
Kingston 4GB (2 x 2GB) DDR400 PC-3200
250GB Seagate
Kingwin KF-91-BK SATA Mobile Rack
Kingwin KF-91-T-BK SATA Mobile Rack Tray
Sony CD/DVD-RW DWQ120AB2
Comment 12 Thomas Backlund 2014-05-18 01:44:16 CEST
Update pushed:
http://advisories.mageia.org/MGASA-2014-0225.html

Note You need to log in before you can comment on or make changes to this bug.