SRPM: kernel-linus-5.10.8-2.mga7.src.rpm i586: kernel-linus-5.10.8-2.mga7-1-1.mga7.i586.rpm kernel-linus-devel-5.10.8-2.mga7-1-1.mga7.i586.rpm kernel-linus-devel-latest-5.10.8-2.mga7.i586.rpm kernel-linus-doc-5.10.8-2.mga7.noarch.rpm kernel-linus-latest-5.10.8-2.mga7.i586.rpm kernel-linus-source-5.10.8-2.mga7-1-1.mga7.noarch.rpm kernel-linus-source-latest-5.10.8-2.mga7.noarch.rpm x86_64: kernel-linus-5.10.8-2.mga7-1-1.mga7.x86_64.rpm kernel-linus-devel-5.10.8-2.mga7-1-1.mga7.x86_64.rpm kernel-linus-devel-latest-5.10.8-2.mga7.x86_64.rpm kernel-linus-doc-5.10.8-2.mga7.noarch.rpm kernel-linus-latest-5.10.8-2.mga7.x86_64.rpm kernel-linus-source-5.10.8-2.mga7-1-1.mga7.noarch.rpm kernel-linus-source-latest-5.10.8-2.mga7.noarch.rpm
Advisory: This kernel-linus update is based on upstream 5.10.8 and fixes atleast the following security issue: SCSI “EXTENDED COPY” (XCOPY) requests sent to a Linux SCSI target (LIO) allow an attacker to read or write anywhere on any LIO backstore configured on the host, provided the attacker has access to one LUN and knowledge of the victim backstore’s vpd_unit_serial (AKA “wwn”). This is possible regardless of the transport/HBA settings for the victim backstore (CVE-2020-28374). It also adds the following fix: - fix up kernel-devel packages to not cause errors during dkms installs (mga#27080) references: https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.7 https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.8
Kernel: 5.10.8-2.mga7 x86_64 Mobo: MSI model: Z97-G43 (MS-7816) Quad Core: Intel Core i7-4790 type: MT MCP NVIDIA GM204 [GeForce GTX 970] driver: nouveau No problems. Rebooted, building nvidia driver and virtualbox driver on the way. virtualbox driver installed. fileserver and NAS storage online at login. Ran the stress tests. Launched virtualbox and booted one of three clients. Everything looks OK at a quick glance. Leaving it to run for a couple of days.
CC: (none) => tarazed25
so there were some upstream issues in 5.10.8 that is fixed in 5.10.10, so lets update to that before releasing this... SRPMS: kernel-linus-5.10.10-1.mga7.src.rpm i586: kernel-linus-5.10.10-1.mga7-1-1.mga7.i586.rpm kernel-linus-devel-5.10.10-1.mga7-1-1.mga7.i586.rpm kernel-linus-devel-latest-5.10.10-1.mga7.i586.rpm kernel-linus-doc-5.10.10-1.mga7.noarch.rpm kernel-linus-latest-5.10.10-1.mga7.i586.rpm kernel-linus-source-5.10.10-1.mga7-1-1.mga7.noarch.rpm kernel-linus-source-latest-5.10.10-1.mga7.noarch.rpm x86_64: kernel-linus-5.10.10-1.mga7-1-1.mga7.x86_64.rpm kernel-linus-devel-5.10.10-1.mga7-1-1.mga7.x86_64.rpm kernel-linus-devel-latest-5.10.10-1.mga7.x86_64.rpm kernel-linus-doc-5.10.10-1.mga7.noarch.rpm kernel-linus-latest-5.10.10-1.mga7.x86_64.rpm kernel-linus-source-5.10.10-1.mga7-1-1.mga7.noarch.rpm kernel-linus-source-latest-5.10.10-1.mga7.noarch.rpm
Summary: Update request: kernel-linus-5.10.8-2.mga7 => Update request: kernel-linus-5.10.10-1.mga7
Updated advisory: This kernel-linus update is based on upstream 5.10.10 and fixes atleast the following security issue: SCSI “EXTENDED COPY” (XCOPY) requests sent to a Linux SCSI target (LIO) allow an attacker to read or write anywhere on any LIO backstore configured on the host, provided the attacker has access to one LUN and knowledge of the victim backstore’s vpd_unit_serial (AKA “wwn”). This is possible regardless of the transport/HBA settings for the victim backstore (CVE-2020-28374). It also adds the following fix: - fix up kernel-devel packages to not cause errors during dkms installs (mga#27080) references: https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.7 https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.8 https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.9 https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.10
Updated the earlier linus kernel. Kernel: 5.10.10-1.mga7 x86_64 Mobo: MSI model: Z97-G43 (MS-7816) v: 3.0 Quad Core: Intel Core i7-4790 type: MT MCP NVIDIA GM204 [GeForce GTX 970] driver: nouveau Mate desktop survived intact. NFS shares mounted. glmark2 runs with Mesa 20.2.6 stress tests c/m/i/d running concurrently. Scheduled updates OK. Thunderbird and LO work as usual. Other desktop applications run fine.
and one more update, as upstream 5.10.11 has picked up the splicing fix and the fixes for non-booting 32 bit systems and some crash fixes... and atleast one other security fix SRPM: kernel-linus-5.10.11-1.mga7.src.rpm i586: kernel-linus-5.10.11-1.mga7-1-1.mga7.i586.rpm kernel-linus-devel-5.10.11-1.mga7-1-1.mga7.i586.rpm kernel-linus-devel-latest-5.10.11-1.mga7.i586.rpm kernel-linus-doc-5.10.11-1.mga7.noarch.rpm kernel-linus-latest-5.10.11-1.mga7.i586.rpm kernel-linus-source-5.10.11-1.mga7-1-1.mga7.noarch.rpm kernel-linus-source-latest-5.10.11-1.mga7.noarch.rpm x86_64: kernel-linus-5.10.11-1.mga7-1-1.mga7.x86_64.rpm kernel-linus-devel-5.10.11-1.mga7-1-1.mga7.x86_64.rpm kernel-linus-devel-latest-5.10.11-1.mga7.x86_64.rpm kernel-linus-doc-5.10.11-1.mga7.noarch.rpm kernel-linus-latest-5.10.11-1.mga7.x86_64.rpm kernel-linus-source-5.10.11-1.mga7-1-1.mga7.noarch.rpm kernel-linus-source-latest-5.10.11-1.mga7.noarch.rpm
Summary: Update request: kernel-linus-5.10.10-1.mga7 => Update request: kernel-linus-5.10.11-1.mga7
Kernel: 5.10.11-1.mga7 x86_64 Quad Core: Intel Core i7-4790 type: MT MCP NVIDIA GM204 [GeForce GTX 970] driver: nouveau Updated from the previous linus kernel. No changes in the desktop. Leaving this to run for a while.
Kernel: 5.10.11-1.mga7 x86_64 10-Core: Intel Core i9-7900X NVIDIA GP102 [GeForce GTX 1080 Ti] driver: nouveau Updated from desktop kernel. Trouble booting because of change of display driver, twice. Had to run drakX11 in a console to specify nouveau. Deskyop fully populated. Running this for a day.
Thanks for testing, flushing it out
Whiteboard: (none) => MGA7-64-OKCC: (none) => sysadmin-bugsKeywords: (none) => advisory, validated_update
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0058.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED