Comments

535 Comments

Tested on the Raspberry Pi 3+

Looks good on Lenovo X1 Gen3 too

For basic boot/network testing works on: aarch64: mustang, pine64, dragonboard410c, RPi3 ARMv7: RPi2/RPi3, wandboard, hummingboard2, JetsonTK1, OrangePi PC, BBone Black, BBone Black Wireless, PandaES

Tested tmon/lsiio/lsgpio on a number of ARMv7/aarch64 devices inc mustang, rpi2/3, wandboard, hummingboard2, cubietruck, Pine64, panda-ES, dragonboard and some others. LGTM!

karma

Tested on RPi3 and Pine64 for aarch64

karma

python3-libs pulls in gdbm-devel which shouldn't happen

Works fine on RPi2/3, mustang, Jetson TK1, OrangePi PC, BBone Black, Panda-ES, CubieTruck and Hummingboard Gate

BZ#1530279 CVE-2017-17852 CVE-2017-17853 CVE-2017-17854 CVE-2017-17855 CVE-2017-17856 CVE-2017-17857 kernel: various flaws [fedora-all]
BZ#1530274 CVE-2017-17857 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of invalid variable stack read operations
BZ#1530273 CVE-2017-17856 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging the lack of stack-pointer alignment enforcement
BZ#1530272 CVE-2017-17855 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging improper use of pointers in place of scalars
BZ#1530271 CVE-2017-17854 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging unrestricted integer values for pointer arithmetic
BZ#1530270 CVE-2017-17853 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging incorrect BPF_RSH signed bounds calculations
BZ#1530269 CVE-2017-17852 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of 32-bit ALU ops
BZ#1529125 CVE-2017-17862 CVE-2017-17863 CVE-2017-17864 kernel: various flaws [fedora-all]
BZ#1529124 CVE-2017-17862 kernel: Improper logic pruning in bpf/verifier.c
BZ#1529123 CVE-2017-17863 kernel: integer overflow in static int check_alu_op function in bpf/verifier.c
BZ#1529120 CVE-2017-17864 kernel: information disclosure via pointer leak in kernel/bpf/verifier.c

Works fine on Mustang (DT mode), RPi2/RPi3 (32 bit), Jetson TK1, BBone Black, OrangePi PC, CubieTruck and Panda-ES along with a Lenovo CarbonX1 Gen3.

Looks good

BZ#1505906 Disable f27 updates testing repo for F27 final

Builds fail due to anongiturl issues

Works for me on a F25 Digital Ocean VM

Seems fine on a few different devices and 2.4 and 5ghz networks

BZ#1502589 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 wpa_supplicant: various flaws [fedora-all]
BZ#1500304 CVE-2017-13088 wpa_supplicant: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1500303 CVE-2017-13087 wpa_supplicant: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1491698 CVE-2017-13082 wpa_supplicant: Accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key while processing it
BZ#1491697 CVE-2017-13081 wpa_supplicant: Reinstallation of the integrity group key in the group key handshake
BZ#1491696 CVE-2017-13080 wpa_supplicant: Reinstallation of the group key in the group key handshake
BZ#1491694 CVE-2017-13079 wpa_supplicant: Reinstallation of the integrity group key in the 4-way handshake
BZ#1491693 CVE-2017-13078 wpa_supplicant: Reinstallation of the group key in the 4-way handshake
BZ#1491692 CVE-2017-13077 wpa_supplicant: Reinstallation of the pairwise key in the 4-way handshake
karma

seems fine

karma

Seems fine on ARMv7, aarch64 and x86_64

Tested on RPi2, RPi3 running in both 32 and 64 bit modes

Looks good on a whole lot of different ARM devices

BZ#1498117 mustang kernel panic with acpi=force on 4.13.3-300.fc27
BZ#1498017 CVE-2017-15299 kernel: Incorrect updates of uninstantiated keys crash the kernel [fedora-all]
BZ#1498016 CVE-2017-15299 kernel: Incorrect updates of uninstantiated keys crash the kernel
BZ#1500335 CVE-2017-1000255 kernel: Arbitrary stack overwrite causing oops via crafted signal frame [fedora-all]
BZ#1498067 CVE-2017-1000255 kernel: Arbitrary stack overwrite causing oops via crafted signal frame

LGTM on a few ARM devices