[Ksplice][Fedora-15-updates] New updates available via Ksplice (FEDORA-2012-2753)
Samson Yeung
samson.yeung at oracle.com
Thu Mar 8 14:38:24 PST 2012
Synopsis: FEDORA-2012-2753 can now be patched using Ksplice
CVEs: CVE-2012-1090
Systems running Fedora 15 can now use Ksplice to patch against the
latest Fedora security update, FEDORA-2012-2753.
INSTALLING THE UPDATES
We recommend that all users of Ksplice Uptrack on Fedora 15 install
these updates. You can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any additional action.
DESCRIPTION
* CVE-2012-1090: Denial of service in the CIFS filesystem reference
counting.
Under certain circumstances, the CIFS filesystem would open files on
lookup. If the file was determined later to be a FIFO or any other
special file the file handle would be leaked, leading to reference
counting mismatch and a kernel OOPS on unmount.
An unprivileged local user could use this flaw to crash the system.
* Fix oops caused by more USB3 than USB2 ports.
If you had more USB 2.0 ports and USB 3.0 ports, xhci could cause a
kernel oops.
* Use-after-free in epoll.
Insufficient cleanup in the epoll driver could use previously released
memory which an attacker could use to corrupt kernel memory.
SUPPORT
Ksplice support is available at ksplice-support_ww at oracle.com.
More information about the Ksplice-Fedora-15-Updates
mailing list