[SECURITY] Fedora 22 Update: kernel-4.4.3-201.fc22
updates at fedoraproject.org
updates at fedoraproject.org
Sat Mar 5 01:20:44 UTC 2016
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2016-9fbe2c258b
2016-03-04 21:06:33.126740
--------------------------------------------------------------------------------
Name : kernel
Product : Fedora 22
Version : 4.4.3
Release : 201.fc22
URL : http://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package
--------------------------------------------------------------------------------
Update Information:
Incremental update from 4.4.3-200 bringing in a few missed ARMv7 fixes ----
The 4.4.3 update contains a number of important fixes across the tree
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1305803 - CVE-2016-0617 kernel: hugetlbfs: fix bugs in hugetlb_vmtruncate_list()
https://bugzilla.redhat.com/show_bug.cgi?id=1305803
[ 2 ] Bug #1308444 - CVE-2016-2384 kernel: double-free in usb-audio triggered by invalid USB descriptor
https://bugzilla.redhat.com/show_bug.cgi?id=1308444
[ 3 ] Bug #1308452 - CVE-2016-2383 kernel: incorrect branch fixups for eBPG allow arbitrary read
https://bugzilla.redhat.com/show_bug.cgi?id=1308452
[ 4 ] Bug #1303532 - CVE-2015-8812 kernel: CXGB3: Logic bug in return code handling prematurely frees key structures causing Use after free or kernel panic.
https://bugzilla.redhat.com/show_bug.cgi?id=1303532
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update kernel' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list