+++ This bug was initially created as a clone of Bug #28475 +++ Fedora has issued an advisory on February 12: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/OYMW2FLWDF4E2RZCDQTAWMIPXRIE4AY3/ I believe Thomas already updated this in Cauldron.
Depends on: 28475 => (none)
SRPM: kernel-firmware-nonfree-20210223-1.mga8.nonfree.src.rpm noarch: iwlwifi-firmware-20210223-1.mga8.nonfree.noarch.rpm kernel-firmware-nonfree-20210223-1.mga8.nonfree.noarch.rpm ralink-firmware-20210223-1.mga8.nonfree.noarch.rpm rtlwifi-firmware-20210223-1.mga8.nonfree.noarch.rpm
Assignee: bugsquad => qa-bugs
advisory, added to svn: type: security subject: Updated nonfree firmware packages fix security vulnerability CVE: - CVE-2019-15126 src: 8: nonfree: - kernel-firmware-nonfree-20210223-1.mga8.nonfree description: | Updated nonfree firmwares fixees various issues, adds new / improved hardware support and fixes atleast the following security issue: An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic (CVE-2019-15126). Full list of updates: * kernel-firmware-nonfree: - add firmware for Lontium LT9611UXC DSI to HDMI bridge - brcm: Add NVRAM for Vamrs 96boards Rock960 - brcm: make AP6212 in bananpi m2 plus/zero work - brcm: Link RPi4's WiFi firmware with DMI machine name - brcm: Update Raspberry Pi 3B+/4B NVRAM for downstream changes - brcm: remove old brcm firmwares that have newer cypress variants (CVE-2019-15126) - cypress: Link the new cypress firmware to the old brcm files (CVE-2019-15126) - i915: Add GuC firmware v49.0.1 for all platforms - i915: Add GuC v49.0.1 for DG1 - i915: Add HuC v7.7.1 for DG1 - i915: Add DMC v2.01 for ADL-S - mediatek: update MT8173 VPU firmware to v1.1.6 - mediatek: add firmware for MT7921 - Mellanox: Add new mlxsw_spectrum firmware xx.2008.2304 - qcom: add firmware files for Adreno a650 - qcom: Add SM8250 Audio DSP firmware - qcom: Add SM8250 Compute DSP firmware - qcom: Add venus firmware files for VPU-1.0 * iwlwifi-firmware: - Update firmware for Intel Bluetooth AX200, AX201, AX210 to 22.30.0.4 * rtlwifi-firmware: - rtw89: 8852a: add firmware v0.9.12.2 references: - https://bugs.mageia.org/show_bug.cgi?id=28500
Keywords: (none) => advisory
i5 2500, i915 graphics, wired Internet connection. No installation issues, and after a reboot, no issues noted.
CC: (none) => andrewsfarm
HP Probook 6550b, i3 M350, i915 graphics, Intel wifi. No installation issues. After a reboot, no issues noted. Looks OK here.
AMD A6 - r4 graphics - gnome RTL8723BE PCIe Wireless Network Adapter RTL810xE PCI Express Fast Ethernet controller Realtek Bluetooth radio The following 4 packages are going to be installed: - iwlwifi-firmware-20210223-1.mga8.nonfree.noarch - kernel-firmware-nonfree-20210223-1.mga8.nonfree.noarch - ralink-firmware-20210223-1.mga8.nonfree.noarch - rtlwifi-firmware-20210223-1.mga8.nonfree.noarch Kernel: Linux localhost 5.10.19-desktop-1.mga8 #1 SMP Fri Feb 26 22:25:44 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux REbooted ---- Wifi, Bluetooth is working. sleep works. Seems to be working normally.
CC: (none) => brtians1
Isn't radeon-firmware missing in the list of packages and updates? 01:00.0 VGA compatible controller [0300]: Advanced Micro Devices, Inc. [AMD/ATI] Thames [Radeon HD 7550M/7570M/7650M] [1002:6841] Subsystem: Sony Corporation Device [104d:90ac] Kernel driver in use: radeon Kernel modules: radeon
CC: (none) => bequimao.de
(In reply to Ulrich Beckmann from comment #6) > Isn't radeon-firmware missing in the list of packages and updates? > You're right, Ulrich! It was on the list in the bug this one was cloned from.
(In reply to Thomas Andrews from comment #7) > (In reply to Ulrich Beckmann from comment #6) > > Isn't radeon-firmware missing in the list of packages and updates? > > > You're right, Ulrich! It was on the list in the bug this one was cloned from. Nope. Mga8 release already have latest radeon-firmware. the mga7 update now gets the same radeon-firmware that mga8 already have
Summary: kernel-firmware-nonfree, radeon-firmware updates to newer snapshot => kernel-firmware-nonfree updates to newer snapshot
MGA8-64 Plasma, Intel AX200 WiFi + Bluetooth 5.0 Updates OK. WiFi + Bluetooth OK No errors in system journal. Also on another system with Intel AC 8260 WiFi 5 + Bluetooth 4.1. Functionalities OK MGA8-64-OK already. Validating.
Whiteboard: (none) => MGA8-64-OKKeywords: (none) => validated_updateCC: (none) => ouaurelien, sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0104.html
Status: NEW => RESOLVEDResolution: (none) => FIXED