The 5.11.11 stable kernel update contains a number of important fixes across the tree.

Reboot Required
After installing this update it is required that you reboot your system to ensure the changes supplied by this update are applied properly.

How to install

sudo dnf upgrade --advisory=FEDORA-2021-2306e89112

This update has been submitted for testing by jforbes.

2 months ago

This update's test gating status has been changed to 'ignored'.

2 months ago

This update's test gating status has been changed to 'waiting'.

2 months ago

This update's test gating status has been changed to 'ignored'.

2 months ago
User Icon bretth commented & provided feedback 2 months ago
karma

Default & performance tests pass (KVM)

This update has been pushed to testing.

a month ago
User Icon amandacavalcante commented & provided feedback a month ago
karma

All tests passed Fedora 33 Mate on Acer NITRO 5 AN515-54 V1.30 Intel i5-9300H (8) @4.100GHz GPU: Intel UHD Graphics 630 GPU: NVIDIA GeForce GTX 1650 Mobile / Max-Q

This update can be pushed to stable now if the maintainer wishes

a month ago
User Icon ibims commented & provided feedback a month ago
karma

Looks ok for me. Works on baremetal (non UEFI mode) AMD Ryzen5 3600, Mainboard MSI B450M Mortar Max with prop. nvidia driver from rpmfusion.org (GTX980 card), something isn't able to build with VirtualBox 6.1.18 from Oracle. Have to wait for a new release of VB, but it works with the Virtualbox Testbuild. Works with Gnome-Desktop (Xorg). Regression test passed (paxtest, selinux-dac-controls and libhugetlbfs skipped).

User Icon clop commented & provided feedback a month ago
karma

I tested this on lenovo t490s with UHD Graphics 620 and Thunderbolt 3. Solving the USB-C dock issue.

BZ#1879442 External display on Lenovo USB-C dock no longer initialized
User Icon markec commented & provided feedback a month ago
karma

t490s also fine.

User Icon bojan provided feedback a month ago
karma
User Icon geraldosimiao commented & provided feedback a month ago
karma

Works fine, all tests passed.

User Icon g6avk commented & provided feedback a month ago
karma

Works for me, it's been running for a few hours now with no issues noticed.
The enabled Default and Performance tests pass OK. AMD 965, x86_64 work station, SSD's > RAID1. Plasma DE from Zawertun's COPR, X-server, nVidia GTX 650 (GK107) nVidia RPM's from Negativo17 (460.67)

User Icon sergong commented & provided feedback a month ago
karma

This kernel no longer boots on aarch64 (tested on Mac Mini M1 in Parallels VM). Note that this was true for 5.11.10-200.fc33. 5.10 kernels were working fine.

User Icon ersen provided feedback a month ago
karma
User Icon amessina provided feedback a month ago
karma

This update has been submitted for stable by jforbes.

a month ago

jforbes edited this update.

a month ago

This update has been pushed to stable.

a month ago
User Icon mharpau provided feedback a month ago
karma

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
10
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
2 months ago
in testing
a month ago
in stable
a month ago
modified
a month ago
BZ#1945345 CVE-2021-29646 kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c
0
0
BZ#1945346 CVE-2021-29646 kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c [fedora-all]
0
0
BZ#1945361 CVE-2021-29647 kernel: information disclosure due to uninitialized data structure in qrtr_recvmsg function in net/qrtr/qrtr.c
0
0
BZ#1945362 CVE-2021-29647 kernel: information disclosure due to uninitialized data structure in qrtr_recvmsg function in net/qrtr/qrtr.c [fedora-all]
0
0
BZ#1945373 CVE-2021-29648 kernel: DoS due to BPF subsystem does not properly consider that resolved_ids and resolved_sizes are intentionally uninitialized in the vmlinux BPF
0
0
BZ#1945374 CVE-2021-29648 kernel: DoS due to BPF subsystem does not properly consider that resolved_ids and resolved_sizes are intentionally uninitialized in the vmlinux BPF [fedora-all]
0
0
BZ#1945379 CVE-2021-29649 kernel: memory leak in user mode driver due to lack of cleanup steps in kernel/usermode_driver.c and kernel/bpf/preload/bpf_preload_kern.c
0
0
BZ#1945384 CVE-2021-29649 kernel: memory leak in user mode driver due to lack of cleanup steps in kernel/usermode_driver.c and kernel/bpf/preload/bpf_preload_kern.c [fedora-all]
0
0
BZ#1945388 CVE-2021-29650 kernel: lack a full memory barrier upon the assignment of a new table value in net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h may lead to DoS
0
0
BZ#1945389 CVE-2021-29650 kernel: lack a full memory barrier upon the assignment of a new table value in net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h may lead to DoS [fedora-all]
0
0

Automated Test Results

Test Cases

0 7 Test Case kernel regression