[SECURITY] Fedora 23 Update: kernel-4.2.6-300.fc23

updates at fedoraproject.org updates at fedoraproject.org
Thu Nov 19 10:05:31 UTC 2015


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-115c302856
2015-11-19 08:18:45.207983
--------------------------------------------------------------------------------

Name        : kernel
Product     : Fedora 23
Version     : 4.2.6
Release     : 300.fc23
URL         : http://www.kernel.org/
Summary     : The Linux kernel
Description :
The kernel meta package

--------------------------------------------------------------------------------
Update Information:

The 4.2.6 stable update contains a number of important fixes across the tree.
kernel-4.2.6-300.fc23  - Fix incorrect size calculations in megaraid with 64K
pages (rhbz 1269300) - CVE-2015-8104 kvm: DoS infinite loop in microcode DB
exception (rhbz 1278496 1279691) - CVE-2015-5307 kvm: DoS infinite loop in
microcode AC exception (rhbz 1277172 1279688)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1278496 - CVE-2015-8104 virt: guest to host DoS by triggering an infinite loop in microcode via #DB exception
        https://bugzilla.redhat.com/show_bug.cgi?id=1278496
  [ 2 ] Bug #1277172 - CVE-2015-5307 virt: guest to host DoS by triggering an infinite loop in microcode via #AC exception
        https://bugzilla.redhat.com/show_bug.cgi?id=1277172
  [ 3 ] Bug #1271134 - CVE-2015-7799 kernel: net: slip: crash when using PPP character device driver
        https://bugzilla.redhat.com/show_bug.cgi?id=1271134
  [ 4 ] Bug #1276437 - CVE-2015-7990 kernel: Race condition when sending message on unbound socket causing NULL pointer dereference
        https://bugzilla.redhat.com/show_bug.cgi?id=1276437
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program. Use
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list