ChangeLog for: 2017-06-26 21:36:18
a/kernel-firmware-20170626git-noarch-1.txz: Upgraded.
a/kernel-generic-4.9.34-x86_64-1.txz: Upgraded.
"Stack Clash" fixes -- see below.
(* Security fix *)
a/kernel-huge-4.9.34-x86_64-1.txz: Upgraded.
"Stack Clash" fixes -- see below.
(* Security fix *)
a/kernel-modules-4.9.34-x86_64-1.txz: Upgraded.
a/lrzip-0.631-x86_64-1.txz: Upgraded.
a/lvm2-2.02.171-x86_64-1.txz: Upgraded.
a/time-1.7.2-x86_64-1.txz: Upgraded.
a/util-linux-2.30-x86_64-2.txz: Rebuilt.
Reverted an agetty commit that breaks backspacing over the first character
entered at the login prompt. Thanks to GazL.
ap/mpg123-1.25.0-x86_64-1.txz: Upgraded.
d/kernel-headers-4.9.34-x86-1.txz: Upgraded.
k/kernel-source-4.9.34-noarch-1.txz: Upgraded.
This kernel fixes two "Stack Clash" vulnerabilities reported by Qualys.
The first issue may allow attackers to execute arbitrary code with elevated
privileges. Failed attack attempts will likely result in denial-of-service
conditions. The second issue can be exploited to bypass certain security
restrictions and perform unauthorized actions.
For more information, see:
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000364
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365
(* Security fix *)
l/glib2-2.52.3-x86_64-1.txz: Upgraded.
l/glibmm-2.52.0-x86_64-1.txz: Upgraded.
l/gtkmm3-3.22.1-x86_64-1.txz: Upgraded.
xap/gkrellm-2.3.10-x86_64-2.txz: Rebuilt.
Upgraded to gkrellm-countdown-0.1.1. Thanks to jmccue.
xap/mozilla-thunderbird-52.2.1-x86_64-1.txz: Upgraded.
isolinux/initrd.img: Rebuilt.
kernels/*: Upgraded.
usb-and-pxe-installers/usbboot.img: Rebuilt.