Comments

37 Comments
karma

On Intel Broadwell.

Btw, Can Fedora seriously updated LLVM already, its a use pain in the butt for both radeonsi and some other use cases.

karma

LGTM

BZ#1403443 Mesa update causes some Steam games to crash

@jforbes don't leave this one hanging in testing too long ! Some of the CVE's were pretty bad.

BZ#1401820 CVE-2016-8655 kernel: Race condition in packet_set_ring leads to use after free [fedora-all]
BZ#1400019 CVE-2016-8655 kernel: Race condition in packet_set_ring leads to use after free
BZ#1402014 CVE-2016-9793 kernel: Signed overflow for SO_{SND|RCV}BUFFORCE [fedora-all]
BZ#1402013 CVE-2016-9793 kernel: Signed overflow for SO_{SND|RCV}BUFFORCE
BZ#1402489 Disable CONFIG_KCM on all fedora kernels
BZ#1403146 CVE-2016-9576 kernel: Use after free in SCSI generic device interface [fedora-all]
BZ#1403145 CVE-2016-9576 kernel: Use after free in SCSI generic device interface
BZ#1400805 CVE-2016-9777 Kernel: kvm: out of bounds memory access via vcpu_id [fedora-all]
BZ#1400804 CVE-2016-9777 Kernel: kvm: out of bounds memory access via vcpu_id
BZ#1400469 CVE-2016-9756 Kernel: kvm: stack memory information leakage [fedora-all]
BZ#1400468 CVE-2016-9756 Kernel: kvm: stack memory information leakage
BZ#1400905 CVE-2016-9755 kernel: netfilter: Out-of-bounds write due to a signedness issue when defragmenting ipv6 packets [fedora-all]
BZ#1400904 CVE-2016-9755 kernel: netfilter: Out-of-bounds write due to a signedness issue when defragmenting ipv6 packets
karma

Tested on both a RX480 (radeonsi+amdgpu) system and a Intel Broadwell. Both work fine.

karma

Verified does indeed fix applications linked with glfw on Wayland.

BZ#1381108 glfw applications crash with Wayland
BZ#1325354 Keyboard and other input devices uncorrectly recognized as joysticks
BZ#1389285 CVE-2016-9083 CVE-2016-9084 kernel: various flaws [fedora-all]
BZ#1389259 CVE-2016-9084 kernel: Integer overflow when using kzalloc in vfio driver
BZ#1389258 CVE-2016-9083 kernel: State machine confusion bug in vfio driver leading to memory corruption
BZ#1391279 Kernel fails to mount file system
BZ#1374212 [Regression] "/usr/bin/cpupower frequency-set -u" no longer has any effect on CPU clock rates
karma

Allows a application to work for me also.

BZ#1372860 wine-1.9.18 is available
karma

@pbrobinson can you also bump f24 as well?

karma

Fixes polaris10 support to work out the box.

BZ#1370061 Kernel 4.7.2-200 panics after boot
BZ#1353558 Starting docker.service produces SELinux error op=security_compute_av perms=siginh
BZ#1367092 kernel: Use after free in tcp_xmit_retransmit_queue [fedora-all]
BZ#1367091 CVE-2016-6828 kernel: Use after free in tcp_xmit_retransmit_queue

@tdlrali - one other thing is that while that message on KASLR is mildly annoying this update is critically required for people with AMD Radeon Polaris hardware to get support. Further it fixes a few important security issues also.

karma

+1 as this is critically needed for the amdgpu any support for Radeon/Polaris ASIC's.

N.B., It would be nice to have KASLR enabled for added security however i can understand that may perturb someone perhaps (new scary kernel feature). So if its held off for one update cycle I can appreciate that.

BZ#1367092 kernel: Use after free in tcp_xmit_retransmit_queue [fedora-all]
BZ#1367091 CVE-2016-6828 kernel: Use after free in tcp_xmit_retransmit_queue

This is required for amdgpu/polaris to be supported on f24 ! +1