FEDORA-2018-8ed5eff2c0

security update in Fedora 26 for kernel

Status: stable 3 months ago

The 4.14.11 stable kernel update contains a number of important fixes across the tree. This also includes the KPTI patches to mitigate the Meltdown vulnerability for x86 architectures

Reboot Required

After installing this update it is required that you reboot your system to ensure the changes supplied by this update are applied properly.

Comments 9

This update has been submitted for testing by jforbes.

karma: +1 critpath: +1

Works fine on my F26 test box (a Sony Vaio VPC-Z1).

karma: +1 critpath: +1

Works fine on a RHEL7 vhost

karma: +1 critpath: +1

jforbes edited this update.

kernel-4.14.11-200.fc26 ejected from the push because u"Cannot find relevant tag for kernel-4.14.11-200.fc26. None of ['f26-updates-testing', 'f26-updates-pending', 'f26-infra'] are in [u'f22-updates-candidate', u'dist-6E-epel-testing-candidate', u'f21-updates-candidate', u'f25-updates-candidate', u'f24-updates-candidate', u'epel7-testing-candidate', u'dist-5E-epel-testing-candidate', u'f23-updates-candidate', u'f26-updates-candidate', u'f27-modular-updates-candidate', u'f27-updates-candidate']."

Works fine here. Intel i5 (3rd gen) on x86_64.

karma: +1 critpath: +1

This update has been pushed to stable.

Works fine for me on x64_86 hardware (2)

karma: +1 critpath: +1 kernel regression: +1

Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown.

-1 0 +1 Feedback Guidelines
#1530279 CVE-2017-17852 CVE-2017-17853 CVE-2017-17854 CVE-2017-17855 CVE-2017-17856 CVE-2017-17857 kernel: various flaws [fedora-all]
#1530274 CVE-2017-17857 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of invalid variable stack read operations
#1530273 CVE-2017-17856 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging the lack of stack-pointer alignment enforcement
#1530272 CVE-2017-17855 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging improper use of pointers in place of scalars
#1530271 CVE-2017-17854 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging unrestricted integer values for pointer arithmetic
#1530270 CVE-2017-17853 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging incorrect BPF_RSH signed bounds calculations
#1530269 CVE-2017-17852 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of 32-bit ALU ops
#1529125 CVE-2017-17862 CVE-2017-17863 CVE-2017-17864 kernel: various flaws [fedora-all]
#1529124 CVE-2017-17862 kernel: Improper logic pruning in bpf/verifier.c
#1529123 CVE-2017-17863 kernel: integer overflow in static int check_alu_op function in bpf/verifier.c
#1529120 CVE-2017-17864 kernel: information disclosure via pointer leak in kernel/bpf/verifier.c
Test Case kernel regression
Does the system's basic functionality continue to work after this update?
Is the update generally functional?
Content Type
RPM
Status
stable
Test Gating Status
Tests not running
Submitted by
Update Type
security
Karma
+4
stable threshold: 3
unstable threshold: -3
Autopush
Disabled
Dates
submitted 3 months ago
in stable 3 months ago
modified 3 months ago

Related Bugs 11

00 #1530279 CVE-2017-17852 CVE-2017-17853 CVE-2017-17854 CVE-2017-17855 CVE-2017-17856 CVE-2017-17857 kernel: various flaws [fedora-all]
00 #1530274 CVE-2017-17857 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of invalid variable stack read operations
00 #1530273 CVE-2017-17856 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging the lack of stack-pointer alignment enforcement
00 #1530272 CVE-2017-17855 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging improper use of pointers in place of scalars
00 #1530271 CVE-2017-17854 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging unrestricted integer values for pointer arithmetic
00 #1530270 CVE-2017-17853 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging incorrect BPF_RSH signed bounds calculations
00 #1530269 CVE-2017-17852 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of 32-bit ALU ops
00 #1529125 CVE-2017-17862 CVE-2017-17863 CVE-2017-17864 kernel: various flaws [fedora-all]
00 #1529124 CVE-2017-17862 kernel: Improper logic pruning in bpf/verifier.c
00 #1529123 CVE-2017-17863 kernel: integer overflow in static int check_alu_op function in bpf/verifier.c
00 #1529120 CVE-2017-17864 kernel: information disclosure via pointer leak in kernel/bpf/verifier.c

Automated Test Results

Test Cases

0+1 Test Case kernel regression