Nwe kernel update for several security + other fixes... Advisory will follow... SRPMS: kernel-4.9.56-1.mga6.src.rpm kernel-userspace-headers-4.9.56-1.mga6.src.rpm kmod-vboxadditions-5.1.26-6.mga6.src.rpm kmod-virtualbox-5.1.26-6.mga6.src.rpm kmod-xtables-addons-2.12-46.mga6.src.rpm i586: cpupower-4.9.56-1.mga6.i586.rpm cpupower-devel-4.9.56-1.mga6.i586.rpm kernel-desktop-4.9.56-1.mga6-1-1.mga6.i586.rpm kernel-desktop586-4.9.56-1.mga6-1-1.mga6.i586.rpm kernel-desktop586-devel-4.9.56-1.mga6-1-1.mga6.i586.rpm kernel-desktop586-devel-latest-4.9.56-1.mga6.i586.rpm kernel-desktop586-latest-4.9.56-1.mga6.i586.rpm kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.i586.rpm kernel-desktop-devel-latest-4.9.56-1.mga6.i586.rpm kernel-desktop-latest-4.9.56-1.mga6.i586.rpm kernel-doc-4.9.56-1.mga6.noarch.rpm kernel-server-4.9.56-1.mga6-1-1.mga6.i586.rpm kernel-server-devel-4.9.56-1.mga6-1-1.mga6.i586.rpm kernel-server-devel-latest-4.9.56-1.mga6.i586.rpm kernel-server-latest-4.9.56-1.mga6.i586.rpm kernel-source-4.9.56-1.mga6-1-1.mga6.noarch.rpm kernel-source-latest-4.9.56-1.mga6.noarch.rpm kernel-userspace-headers-4.9.56-1.mga6.i586.rpm perf-4.9.56-1.mga6.i586.rpm vboxadditions-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.i586.rpm vboxadditions-kernel-4.9.56-desktop586-1.mga6-5.1.26-6.mga6.i586.rpm vboxadditions-kernel-4.9.56-server-1.mga6-5.1.26-6.mga6.i586.rpm vboxadditions-kernel-desktop586-latest-5.1.26-6.mga6.i586.rpm vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.i586.rpm vboxadditions-kernel-server-latest-5.1.26-6.mga6.i586.rpm virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.i586.rpm virtualbox-kernel-4.9.56-desktop586-1.mga6-5.1.26-6.mga6.i586.rpm virtualbox-kernel-4.9.56-server-1.mga6-5.1.26-6.mga6.i586.rpm virtualbox-kernel-desktop586-latest-5.1.26-6.mga6.i586.rpm virtualbox-kernel-desktop-latest-5.1.26-6.mga6.i586.rpm virtualbox-kernel-server-latest-5.1.26-6.mga6.i586.rpm xtables-addons-kernel-4.9.56-desktop-1.mga6-2.12-46.mga6.i586.rpm xtables-addons-kernel-4.9.56-desktop586-1.mga6-2.12-46.mga6.i586.rpm xtables-addons-kernel-4.9.56-server-1.mga6-2.12-46.mga6.i586.rpm xtables-addons-kernel-desktop586-latest-2.12-46.mga6.i586.rpm xtables-addons-kernel-desktop-latest-2.12-46.mga6.i586.rpm xtables-addons-kernel-server-latest-2.12-46.mga6.i586.rpm x86_64: cpupower-4.9.56-1.mga6.x86_64.rpm cpupower-devel-4.9.56-1.mga6.x86_64.rpm kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64.rpm kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.x86_64.rpm kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64.rpm kernel-desktop-latest-4.9.56-1.mga6.x86_64.rpm kernel-doc-4.9.56-1.mga6.noarch.rpm kernel-server-4.9.56-1.mga6-1-1.mga6.x86_64.rpm kernel-server-devel-4.9.56-1.mga6-1-1.mga6.x86_64.rpm kernel-server-devel-latest-4.9.56-1.mga6.x86_64.rpm kernel-server-latest-4.9.56-1.mga6.x86_64.rpm kernel-source-4.9.56-1.mga6-1-1.mga6.noarch.rpm kernel-source-latest-4.9.56-1.mga6.noarch.rpm kernel-userspace-headers-4.9.56-1.mga6.x86_64.rpm perf-4.9.56-1.mga6.x86_64.rpm vboxadditions-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64.rpm vboxadditions-kernel-4.9.56-server-1.mga6-5.1.26-6.mga6.x86_64.rpm vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.x86_64.rpm vboxadditions-kernel-server-latest-5.1.26-6.mga6.x86_64.rpm virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64.rpm virtualbox-kernel-4.9.56-server-1.mga6-5.1.26-6.mga6.x86_64.rpm virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64.rpm virtualbox-kernel-server-latest-5.1.26-6.mga6.x86_64.rpm xtables-addons-kernel-4.9.56-desktop-1.mga6-2.12-46.mga6.x86_64.rpm xtables-addons-kernel-4.9.56-server-1.mga6-2.12-46.mga6.x86_64.rpm xtables-addons-kernel-desktop-latest-2.12-46.mga6.x86_64.rpm xtables-addons-kernel-server-latest-2.12-46.mga6.x86_64.rpm
mga6::x86_64 Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz NVIDIA Corporation GF114 [GeForce GTX 555] Enabled updates testing and non free updates testing then installed these: - cpupower-4.9.56-1.mga6.x86_64 - kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64 - kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.x86_64 - kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64 - kernel-desktop-latest-4.9.56-1.mga6.x86_64 - kernel-doc-4.9.56-1.mga6.noarch - kernel-userspace-headers-4.9.56-1.mga6.x86_64 - ldetect-lst-0.3.7.2-1.mga6.x86_64 - ldetect-lst-devel-0.3.7.2-1.mga6.x86_64 - virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64 - virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64 Also rans: - perf - kernel-source-4.9.56-1.mga6 - kernel-source-latest - xtables-addons-kernel-4.9.56 - xtables-addons-kernel-desktop nvidia module 384.59-1 built during the installation and virtualbox 5.1.26-1. Rebooted to Mate desktop. $ uname -r 4.9.56-desktop-1.mga6 $ stress -c 4 -t 30 $ stress -m 5 -t 30 $ stress -d 3 -t 30 $ stress -i 4 -t 30 $ glmark2 Common desktop applications running fine. Network shares working. Remote access to other machines on the LAN is OK. vlc, pulseaudio, mplayer, gqview, urpmi, gwenview, LO, firefox, thunderbird, mcc, harddrake2, virtualbox, emacs - all working fine.
CC: (none) => tarazed25
In a Vbox client, M6, Plasma, 64bit Testing: kernel-desktop-latest vboxadditions-kernel-desktop-latest [root@localhost wilcal]# uname -a Linux localhost 4.9.50-desktop-1.mga6 #1 SMP Wed Sep 13 23:14:20 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi kernel-desktop-latest Package kernel-desktop-latest-4.9.50-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest Package vboxadditions-kernel-desktop-latest-5.1.26-4.mga6.x86_64 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work. Installed kernel-desktop-latest vboxadditions-kernel-desktop-latest from updates testing Reboot client [root@localhost wilcal]# uname -a Linux localhost 4.9.56-desktop-1.mga6 #1 SMP Thu Oct 12 22:55:31 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi kernel-desktop-latest Package kernel-desktop-latest-4.9.56-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest Package vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.x86_64 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work.
CC: (none) => wilcal.int
In a Vbox client, M6, Plasma, 32bit Testing: kernel-desktop-latest vboxadditions-kernel-desktop-latest [root@localhost wilcal]# uname -a Linux localhost 4.9.50-desktop-1.mga6 #1 SMP Wed Sep 13 23:15:15 UTC 2017 i686 i686 i686 GNU/Linux [root@localhost wilcal]# urpmi kernel-desktop-latest Package kernel-desktop-latest-4.9.50-1.mga6.i586 is already installed [root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest Package vboxadditions-kernel-desktop-latest-5.1.26-4.mga6.i586 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work. Installed kernel-desktop-latest vboxadditions-kernel-desktop-latest from updates testing Reboot client [root@localhost wilcal]# uname -a Linux localhost 4.9.56-desktop-1.mga6 #1 SMP Thu Oct 12 22:53:48 UTC 2017 i686 i686 i686 GNU/Linux [root@localhost wilcal]# urpmi kernel-desktop-latest Package kernel-desktop-latest-4.9.56-1.mga6.i586 is already installed [root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest Package vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.i586 is already installed Boots to a working desktop. Screen resolution is correct. Common apps work.
Hi. System: MGA6 x86_64 Have installed this kernel on 2 systems, one laptop (kernel-desktop) and one workstation (kernel-server). The laptop (Alienware M17 R2) is my HTPC and is running great. The workstation has 16GB ram, AMD Phenom II x4 965, Radeon GPU. I focus on having vmware running and this kernel proved to work without any issues. The modules compiled without errors and the VM's are running great. Cheers, Stig
CC: (none) => smelror
(In reply to Stig-Ørjan Smelror from comment #4) > Hi. > ... > The workstation has 16GB ram, AMD Phenom II x4 965, Radeon GPU. > I focus on having vmware running and this kernel proved to work without any > issues. The modules compiled without errors and the VM's are running great. > > Cheers, > Stig Same here with KVM/Qemu. Both host and client run kernel-desktop, amd64. Radeon GPU (driver:Radeon) and driver Virtio. Ulrich
CC: (none) => bequimao.de
mga6::x86_64 Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz NVIDIA Corporation GM204 [GeForce GTX 970] NVIDIA Driver Version: 375.66 Mobo: MSI model: Z97-G43 (MS-7816) UEFI: American Megatrends v: V17.8 Ran the updates: - cpupower-4.9.56-1.mga6.x86_64 - cpupower-devel-4.9.56-1.mga6.x86_64 - kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64 - kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.x86_64 - kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64 - kernel-desktop-latest-4.9.56-1.mga6.x86_64 - kernel-doc-4.9.56-1.mga6.noarch - kernel-source-4.9.56-1.mga6-1-1.mga6.noarch - kernel-source-latest-4.9.56-1.mga6.noarch - kernel-userspace-headers-4.9.56-1.mga6.x86_64 - perf-4.9.56-1.mga6.x86_64 - virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64 - virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64 - xtables-addons-kernel-4.9.56-desktop-1.mga6-2.12-46.mga6.x86_64 - xtables-addons-kernel-desktop-latest-2.12-46.mga6.x86_64 $ sudo drakboot --boot Rebooted to Mate desktop. Checked common desktop applications, networking, network shares, local ruby applications and updates including nvidia current. Rebooted again $ uname -r 4.9.56-desktop-1.mga6 nvidia driver 384.59 Installed stellarium and invoked it from the menus. Worked fine, sun centre stage. Ran stress tests and glmark2. glmark2 was very slow - about a quarter of the speed registered on a neighbouring machine with weaker resources (mga5 with 4.4.92 and a pirate copy of glmark2).
kernel-desktop on mga6-64 packages installed cleanly: - cpupower-4.9.56-1.mga6.x86_64 - kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64 - kernel-desktop-latest-4.9.56-1.mga6.x86_64 - kernel-userspace-headers-4.9.56-1.mga6.x86_64 - virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64 - virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64 system re-booted normally: $ uname -r 4.9.56-desktop-1.mga6 no regressions noted virtualbox and client launched normally OK for mga6-64 on this system Dell product: Precision Tower 3620 Mobo: Dell model: 09WH54 Card: Intel HD Graphics 530 CPU: Quad core Intel Core i7-6700 (-HT-MCP-) PC-BIOS (legacy) boot GPT partitions
CC: (none) => jim
kernel-desktop on mga6-32 in a vbox VM packages installed cleanly: - cpupower-4.9.56-1.mga6.i586 - kernel-desktop-4.9.56-1.mga6-1-1.mga6.i586 - kernel-desktop-latest-4.9.56-1.mga6.i586 - kernel-userspace-headers-4.9.56-1.mga6.i586 - vboxadditions-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.i586 - vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.i586 VM re-booted normally [jim@mga6-32-vm ~]$ uname -r 4.9.56-desktop-1.mga6 no regressions noted OK for mga6-32 in a vbox VM
On real hardware, M6, Plasma, 64-bit initial install: kernel-desktop-latest virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo kernel-desktop-devel-latest dkms-nvidia-current [root@localhost wilcal]# uname -a Linux localhost 4.9.50-desktop-1.mga6 #1 SMP Wed Sep 13 23:14:20 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi kernel-desktop-latest Package kernel-desktop-latest-4.9.50-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox Package virtualbox-5.1.26-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest Package vboxadditions-kernel-desktop-latest-5.1.26-4.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-virtualbox Package dkms-virtualbox-5.1.26-1.mga6.noarch is already installed [root@localhost wilcal]# urpmi virtualbox-guest-additions Package virtualbox-guest-additions-5.1.26-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest Package virtualbox-kernel-desktop-latest-5.1.26-4.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.1.26-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi kernel-desktop-devel-latest Package kernel-desktop-devel-latest-4.9.50-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.1.26-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi kernel-desktop-devel-latest Package kernel-desktop-devel-latest-4.9.50-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-nvidia-current [wilcal@localhost ~]$ lspci -k 01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1) Subsystem: Gigabyte Technology Co., Ltd Device 3518 Kernel driver in use: nvidia Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current M5.1 i586 Gnome Live-DVD runs as a Vbox client. Boots to a working desktop. Common apps work. Screen sizes are correct. update: kernel-desktop-latest virtualbox vboxadditions-kernel-desktop-latest dkms-virtualbox virtualbox-guest-additions virtualbox-kernel-desktop-latest x11-driver-video-vboxvideo kernel-desktop-devel-latest dkms-nvidia-current from updates_testing [root@localhost wilcal]# uname -a Linux localhost 4.9.56-desktop-1.mga6 #1 SMP Thu Oct 12 22:55:31 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux [root@localhost wilcal]# urpmi kernel-desktop-latest Package kernel-desktop-latest-4.9.56-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox Package virtualbox-5.1.26-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi vboxadditions-kernel-desktop-latest Package vboxadditions-kernel-desktop-latest-5.1.26-6.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-virtualbox Package dkms-virtualbox-5.1.26-1.mga6.noarch is already installed [root@localhost wilcal]# urpmi virtualbox-guest-additions Package virtualbox-guest-additions-5.1.26-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi virtualbox-kernel-desktop-latest Package virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi x11-driver-video-vboxvideo Package x11-driver-video-vboxvideo-5.1.26-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi kernel-desktop-devel-latest Package kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64 is already installed [root@localhost wilcal]# urpmi dkms-nvidia-current Package dkms-nvidia-current-384.90-2.mga6.nonfree.x86_64 is already installed [wilcal@localhost ~]$ lspci -k 01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1) Subsystem: Gigabyte Technology Co., Ltd Device 3518 Kernel driver in use: nvidia Kernel modules: nvidiafb, nouveau, nvidia_drm, nvidia_current M5.1 i586 Gnome LiveDVD still runs as a Vbox client. M6 x86_64 Plasma Live-DVD Boots as a Vbox client. Common apps work. Screen sizes are correct. M6 x86_64 Plasma CI installs and runs as a Vbox client. Updates then reboots back to a working desktop. Screen sizes are correct. Test platform: Intel Core i7-2600K Sandy Bridge 3.4GHz GIGABYTE GA-Z68X-UD3-B3 LGA 1155 MoBo GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB RTL8111/8168B PCI Express 1Gbit Ethernet DRAM 16GB (4 x 4GB) Looks good
mga6::x86_64 4.9.51-desktop-1.mga6 Intel(R) Core(TM) i7-5700HQ CPU @ 2.70GHz NVIDIA Corporation GM204M [GeForce GTX 965M] nvidia 384.59 Mobo: GIGABYTE model: X5 Updates: - cpupower-4.9.56-1.mga6.x86_64 - cpupower-devel-4.9.56-1.mga6.x86_64 - kernel-desktop-4.9.56-1.mga6-1-1.mga6.x86_64 - kernel-desktop-devel-4.9.56-1.mga6-1-1.mga6.x86_64 - kernel-desktop-devel-latest-4.9.56-1.mga6.x86_64 - kernel-desktop-latest-4.9.56-1.mga6.x86_64 - kernel-doc-4.9.56-1.mga6.noarch - kernel-source-4.9.56-1.mga6-1-1.mga6.noarch - kernel-source-latest-4.9.56-1.mga6.noarch - kernel-userspace-headers-4.9.56-1.mga6.x86_64 - perf-4.9.56-1.mga6.x86_64 - virtualbox-kernel-4.9.56-desktop-1.mga6-5.1.26-6.mga6.x86_64 - virtualbox-kernel-desktop-latest-5.1.26-6.mga6.x86_64 - xtables-addons-kernel-4.9.56-desktop-1.mga6-2.12-46.mga6.x86_64 - xtables-addons-kernel-desktop-latest-2.12-46.mga6.x86_64 $ drakboot --boot Rebooted into Mate. $ uname -r 4.9.56-desktop-1.mga6 Ran stress tests and glmark2. Common desktop applications work. Desktop shares are mounted. Home networking is fine. Installed blueman and enabled bluetooth sound. used mplayer. Installed sox and played wav files.
Whiteboard: (none) => MGA6-64-OK
Whiteboard: MGA6-64-OK => MGA6-64-OK MGA6-32-OK
(In reply to Thomas Backlund from comment #0) > Advisory will follow... OK. In the meantime, I am validating this to get it off the main list. Thanks to the various testers.
Keywords: (none) => validated_updateCC: (none) => lewyssmith, sysadmin-bugs
Advisory (added to svn): This kernel update is based on upstream 4.9.56 and fixes atleast the following security issues: A flaw was found in the way the Linux KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges inside the guest (CVE-2017-7518). A kernel data leak due to an out-of-bound read was found in the Linux kernel in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic information. As a result, up to 100 bytes of the slab data could be leaked to a userspace (CVE-2017-7558). A security flaw was discovered in nl80211_set_rekey_data() function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink request. This request can be issued by a user with CAP_NET_ADMIN privilege and may result in NULL dereference and a system crash (CVE-2017-12153). Linux kernel built with the KVM visualization support (CONFIG_KVM), with nested visualization (nVMX) feature enabled (nested=1), is vulnerable to a crash due to disabled external interrupts. As L2 guest could acce s (r/w) hardware CR8 register of the host(L0). In a nested visualization setup, L2 guest user could use this flaw to potentially crash the host(L0) resulting in DoS (CVE-2017-12154). The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path (CVE-2017-14106). The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading locations associated with padding bytes (CVE-2017-14156). It was found that the iscsi_if_rx() function in scsi_transport_iscsi.c in the Linux kernel since v2.6.24-rc1 through 4.13.2 allows local users to cause a denial of service (a system panic) by making a number of certain syscalls by leveraging incorrect length validation in the kernel code (CVE-2017-14489). The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SG_GET_REQUEST_TABLE ioctl call for /dev/sg0 (CVE-2017-14991). The tpacket_rcv() function in 'net/packet/af_packet.c' file in the Linux kernel before 4.13 mishandles vnet headers, which might allow local users to cause a denial of service (buffer overflow, and disk and memory corruption) or possibly have unspecified other impact via crafted system calls (CVE-2017-14497). A reachable assertion failure flaw was found in the Linux kernel built with KVM virtualisation(CONFIG_KVM) support with Virtual Function I/O feature (CONFIG_VFIO) enabled. This failure could occur if a malicious guest device sent a virtual interrupt (guest IRQ) with a larger (>1024) index value (CVE-2017-1000252).
Keywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2017-0381.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED