FEDORA-2016-06f1572324

security update in Fedora 23 for kernel

Status: stable 3 years ago

The 4.5.5 stable update contains a number of important fixes across the tree.


The 4.5.4 stable update contains a number of important fixes across the tree.


The 4.5.3 stable rebase contains enhanced hardware support, additional features, and a number of important fixes across the tree.

Reboot Required

After installing this update it is required that you reboot your system to ensure the changes supplied by this update are applied properly.

How to install

sudo dnf upgrade --advisory=FEDORA-2016-06f1572324

Comments 36

This update has been submitted for testing by jforbes.

This update has obsoleted kernel-4.5.4-200.fc23, and has inherited its bugs and notes.

Working fine on a MacMini6,2 qcore i7 x86_64 Desktop

karma: +1 critpath: +1

Personal LAMP and mail server running GNOME. All OK.

karma: +1

x86_64 wfm

karma: +1 critpath: +1

works fine on x86_64 / fixes the nVidia proprietary drivers issue

karma: +1 critpath: +1 #1335173: +1

The problem I had with 4.5.4 continues. Details described at https://bugzilla.redhat.com/show_bug.cgi?id=1339855.

karma: +1 critpath: +1

The problem I had with 4.5.4 continues. Details described at https://bugzilla.redhat.com/show_bug.cgi?id=1339855.

karma: -1 critpath: -1

This update has been pushed to testing.

works for me on x86_64 and i686.

karma: +1 critpath: +1

No issues noted on x86_64 Ivy Bridge and i686 Diamondville. Resolves #1335173 / #1335392.

karma: +1 critpath: +1 #1335173: +1

Bluetooth bug #1336297 still there, which is as expected, because release notes for 4.5.5 contained no commits related to BT subsystem.

karma: -1 critpath: -1

works for me

karma: +1

works for me

karma: +1

Works on ancient dell 32-bit machine

karma: +1

Works for me

karma: +1

works for me

karma: +1

Works fine @ThinkPad X230 and T450s

karma: +1

Works fine on Dell XPS 13 l321x

karma: +1 critpath: +1

Works for me.

karma: +1

Work for me (Lenovo G510 - i3-4000M)

karma: +1 critpath: +1

Personal LAMP and mail server running GNOME. All OK.

karma: +1

Look Good to Me, pass default, minimal stress and performance test

karma: +1

REGRESSION: pam-kwallet stops working, i.e. kwallet asks for password after session login. Booting to 4.4.9-301 fixes the issue.

I was surprised that Nvidia blob works with 4.5.x on F23, because it didn't on F24 Beta, i.e. xinit causes a pretty hard system hang.

karma: +1 critpath: -1

Definitely no +1 karma from me

karma: -1 critpath: -1

no regressions noted

karma: +1

Regression detected by kernel-test about sysfs-perms

karma: -1

Things are ok so far.

karma: +1 critpath: +1 #1334645: +1 #1334643: +1

Kernel update works with Nvidia drivers fine now.

karma: +1 #1335173: +1

works for me

karma: +1

No regressions with Ivy Bridge up to Haswell graphics. No regressions with bluetooth input devices. No regressions with the NVIDIA driver.

karma: +1 critpath: +1 #1335173: +1

No regressions on any of abt 5 (older) different laptops, nor abt 5 different desktops. No Nvidia prop. driver problems neither.

karma: +1 critpath: +1

Works on my x64_64 Thinkpad

karma: +1 critpath: +1

This update has been submitted for stable by jforbes.

This update has been pushed to stable.

This release breaks suspend/resume on my Dell XPS15 9550. It worked with 4.4.9. Hibernation has never worked. It appears to sleep, then wakes up after several seconds. The log is confusing, and seems to indicate that certain parts are suspending as other parts are waking up.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+19
stable threshold: 3
unstable threshold: -3
Autopush
Disabled
Dates
submitted 3 years ago
in testing 3 years ago
in stable 3 years ago

Related Bugs 20

00 #1300257 CVE-2016-0758 kernel: tags with indefinite length can corrupt pointers in asn1_find_indefinite_length()
00 #1332139 CVE-2016-3713 kernel: kvm: out-of-bounds access in set_var_mtrr_msr
00 #1333309 CVE-2016-4485 kernel: Information leak in llc module
00 #1333316 CVE-2016-4486 kernel: Information leak in rtnetlink
00 #1333321 CVE-2016-4485 CVE-2016-4486 kernel: various flaws [fedora-all]
00 #1333712 CVE-2016-4581 kernel: Slave being first propagated copy causes oops in propagate_mnt
00 #1333713 kernel: Slave being first propagated copy causes oops in propagate_mnt [fedora-all]
00 #1334303 CVE-2016-4558 kernel: bpf: refcnt overflow
00 #1334307 CVE-2016-4557 kernel: Use after free vulnerability via double fdput
00 #1334311 CVE-2016-4557 CVE-2016-4558 kernel: various flaws [fedora-all]
00 #1334512 Enable CONFIG_XEN_SCSI_[FRONTEND|BACKED] in the build
0+1 #1334643 CVE-2016-4569 kernel: Information leak in Linux sound module in timer.c
0+1 #1334645 CVE-2016-4569 kernel: Information leak in Linux sound module in timer.c [fedora-all]
0+4 #1335173 CONFIG_DEBUG_VM_PGFLAGS causes kernel panic for the X.org server: kernel BUG at /usr/src/kernels/4.5.3-300.fc24.x86_64/include/linux/page-flags.h:272
00 #1335386 CVE-2016-0758 kernel: tags with indefinite length can corrupt pointers in asn1_find_indefinite_length() [fedora-all]
00 #1336410 CVE-2016-3713 kernel: kvm: out-of-bounds access in set_var_mtrr_msr [fedora-all]
00 #1337528 CVE-2016-4913 kernel: Information leak when handling NM entries containing NUL
00 #1337529 CVE-2016-4913 kernel: Information leak when handling NM entries containing NUL [fedora-all]
00 #1337806 CVE-2016-4440 Kernel: kvm: vmx: incorrect state update leading to MSR access
00 #1337807 CVE-2016-4440 Kernel: kvm: vmx: incorrect state update leading to APIC register access [fedora-all]

Automated Test Results

Test Cases

00 Test Case kernel regression