stable

kernel-6.8.8-100.fc38

FEDORA-2024-f35f9525d6 created by jforbes 3 months ago for Fedora 38

The 6.8.8 stable kernel update contains a number of important fixes across the tree.

Reboot Required
After installing this update it is required that you reboot your system to ensure the changes supplied by this update are applied properly.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-f35f9525d6

This update has been submitted for testing by jforbes.

3 months ago

This update's test gating status has been changed to 'waiting'.

3 months ago
User Icon bretth commented & provided feedback 3 months ago
karma

default & performance tests pass (KVM)

This update's test gating status has been changed to 'passed'.

3 months ago
User Icon nixuser commented & provided feedback 3 months ago
karma

Working fine as a VirtualBox guest.

This update has been pushed to testing.

3 months ago

This update can be pushed to stable now if the maintainer wishes

3 months ago

jforbes edited this update.

3 months ago

This update has been submitted for stable by jforbes.

2 months ago

jforbes edited this update.

2 months ago

This update has been pushed to stable.

2 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
3 months ago
in testing
3 months ago
in stable
2 months ago
modified
2 months ago
BZ#2276666 CVE-2024-26922 kernel: drm/amdgpu: validate the parameters of bo mapping operations more clearly [fedora-all]
0
0
BZ#2277155 Fedora 39 - Device Driver for ISM not configured in kernel
0
0
BZ#2277170 CVE-2024-26924 kernel: netfilter: nft_set_pipapo: do not free live element [fedora-all]
0
0
BZ#2278253 CVE-2024-27022 kernel: fork: defer linking file vma until vma is fully initialized [fedora-all]
0
0
BZ#2278255 CVE-2024-27021 kernel: r8169: fix LED-related deadlock on module removal [fedora-all]
0
0
BZ#2278257 CVE-2024-27020 kernel: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() [fedora-all]
0
0
BZ#2278259 CVE-2024-27019 kernel: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() [fedora-all]
0
0
BZ#2278261 CVE-2024-27018 kernel: netfilter: br_netfilter: skip conntrack input hook for promisc packets [fedora-all]
0
0
BZ#2278263 CVE-2024-27017 kernel: netfilter: nft_set_pipapo: walk over current view on netlink dump [fedora-all]
0
0
BZ#2278265 CVE-2024-27016 kernel: netfilter: flowtable: validate pppoe header [fedora-all]
0
0
BZ#2278267 CVE-2024-27015 kernel: netfilter: flowtable: incorrect pppoe tuple [fedora-all]
0
0
BZ#2278269 CVE-2024-27014 kernel: net/mlx5e: Prevent deadlock while disabling aRFS [fedora-all]
0
0
BZ#2278271 CVE-2024-27013 kernel: tun: limit printing rate when illegal packet received by tun dev [fedora-all]
0
0
BZ#2278276 CVE-2024-27012 kernel: netfilter: nf_tables: restore set elements when delete set fails [fedora-all]
0
0
BZ#2278278 CVE-2024-27011 kernel: netfilter: nf_tables: fix memleak in map from abort path [fedora-all]
0
0
BZ#2278280 CVE-2024-27010 kernel: net/sched: Fix mirred deadlock on device recursion [fedora-all]
0
0
BZ#2278282 CVE-2024-27009 kernel: s390/cio: fix race condition during online processing [fedora-all]
0
0
BZ#2278284 CVE-2024-27008 kernel: drm: nv04: Fix out of bounds access [fedora-all]
0
0
BZ#2278286 CVE-2024-27007 kernel: userfaultfd: change src_folio after ensuring it's unpinned in UFFDIO_MOVE [fedora-all]
0
0
BZ#2278288 CVE-2024-27006 kernel: thermal/debugfs: Add missing count increment to thermal_debug_tz_trip_up() [fedora-all]
0
0
BZ#2278290 CVE-2024-27005 kernel: interconnect: Don't access req_list while it's being manipulated [fedora-all]
0
0
BZ#2278292 CVE-2024-27004 kernel: clk: Get runtime PM before walking tree during disable_unused [fedora-all]
0
0
BZ#2278294 CVE-2024-27003 kernel: clk: Get runtime PM before walking tree for clk_summary [fedora-all]
0
0
BZ#2278296 CVE-2024-27002 kernel: clk: mediatek: Do a runtime PM get on controllers during probe [fedora-all]
0
0
BZ#2278298 CVE-2024-27001 kernel: comedi: vmk80xx: fix incomplete endpoint checking [fedora-all]
0
0
BZ#2278300 CVE-2024-27000 kernel: serial: mxs-auart: add spinlock around changing cts state [fedora-all]
0
0
BZ#2278302 CVE-2024-26999 kernel: serial/pmac_zilog: Remove flawed mitigation for rx irq flood [fedora-all]
0
0
BZ#2278304 CVE-2024-26998 kernel: serial: core: Clearing the circular buffer before NULLifying it [fedora-all]
0
0
BZ#2278309 CVE-2024-26996 kernel: usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error [fedora-all]
0
0
BZ#2278311 CVE-2024-26995 kernel: usb: typec: tcpm: Correct the PDO counting in pd_set [fedora-all]
0
0
BZ#2278313 CVE-2024-26994 kernel: speakup: Avoid crash on very long word [fedora-all]
0
0
BZ#2278315 CVE-2024-26993 kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() [fedora-all]
0
0
BZ#2278317 CVE-2024-26992 kernel: KVM: x86/pmu: Disable support for adaptive PEBS [fedora-all]
0
0
BZ#2278319 CVE-2024-26991 kernel: KVM: x86/mmu: x86: Don't overflow lpage_info when checking attributes [fedora-all]
0
0
BZ#2278321 CVE-2024-26990 kernel: KVM: x86/mmu: Write-protect L2 SPTEs in TDP MMU when clearing dirty status [fedora-all]
0
0
BZ#2278323 CVE-2024-26989 kernel: arm64: hibernate: Fix level3 translation fault in swsusp_save() [fedora-all]
0
0
BZ#2278325 CVE-2024-26988 kernel: init/main.c: Fix potential static_command_line memory overflow [fedora-all]
0
0
BZ#2278328 CVE-2024-26987 kernel: mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled [fedora-all]
0
0
BZ#2278330 CVE-2024-26986 kernel: drm/amdkfd: Fix memory leak in create_process failure [fedora-all]
0
0
BZ#2278332 CVE-2024-26985 kernel: drm/xe: Fix bo leak in intel_fb_bo_framebuffer_init [fedora-all]
0
0
BZ#2278334 CVE-2024-26984 kernel: nouveau: fix instmem race condition around ptr stores [fedora-all]
0
0
BZ#2278336 CVE-2024-26983 kernel: bootconfig: use memblock_free_late to free xbc memory to buddy [fedora-all]
0
0
BZ#2278338 CVE-2024-26982 kernel: Squashfs: check the inode number is not the invalid value of zero [fedora-all]
0
0
BZ#2278340 CVE-2024-26981 kernel: nilfs2: fix OOB in nilfs_set_de_type [fedora-all]
0
0
BZ#2278342 CVE-2024-26980 kernel: ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf [fedora-all]
0
0

Automated Test Results

Test Cases

0 2 Test Case kernel regression