This update fixes CVEs CVE-2014-3675, CVE-2014-3676, and CVE-2014-3677, as well as moving to the 0.8 release, which adds support for Aarch64 and fixes several bugs.

How to install

sudo dnf upgrade --advisory=FEDORA-2014-13581

This update has been submitted for testing by pjones.

5 years ago

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/5498/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test ABORTED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/5505/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

5 years ago

This update has been pushed to testing

5 years ago
User Icon lupinix commented & provided feedback 5 years ago
karma

Release tag contains wrong dist version fc22 :(

Yeah, that's actually intentional in this case - since the software inside doesn't actually have runtime dependencies within the rest of Fedora, and each build represents not only the normal additional hurdle in terms of work, but also a significant multiple to the additional risk in terms of the response to having to do updates, we're attempting to use the same build for updates as for the next future release.

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

5 years ago
User Icon lupinix commented & provided feedback 5 years ago
karma

OK, additionally I tested the package on my Thinkpad T530 with enabled SecureBoot, seems to be fine :) So +1

User Icon chr77 commented & provided feedback 5 years ago
karma

Sorry, but .fc22 is no-go. You can do builds the other way around and use the .fc21 builds for rawhide, but not like this.

This update has been submitted for stable by pjones.

5 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/6993/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 stable updates repository.

5 years ago

This update is currently being pushed to the Fedora 21 stable updates repository.

5 years ago

This update has been pushed to stable

5 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
5 years ago
in testing
5 years ago
in stable
5 years ago
BZ#1148230 CVE-2014-3675 shim: out-of-bounds memory read flaw in DHCPv6 packet processing
0
0
BZ#1148231 CVE-2014-3676 shim: heap-based buffer overflow flaw in IPv6 address parsing
0
0
BZ#1148232 CVE-2014-3677 shim: memory corruption flaw when processing Machine Owner Keys (MOKs)
0
0

Automated Test Results