[Ksplice-Fedora-28-updates] New Ksplice updates for Fedora 28 (FEDORA-2018-7f83e75434)

Oracle Ksplice ksplice-support_ww at oracle.com
Mon Dec 3 17:19:36 PST 2018 

Synopsis: FEDORA-2018-7f83e75434 can now be patched using Ksplice

Systems running Fedora 28 can now use Ksplice to patch against the
latest Fedora kernel update, FEDORA-2018-7f83e75434.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running Fedora 28
install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* Memory leak in IPv6 stack in exception handling.

In rare cases, such as link failure or when clearing the route cache,
route information might fail to be properly deallocated, potentially
leading to resource starvation and a denial-of-service.


* Potential denial-of-service in Broadcom TG3 ethernet driver.

In extremely high-traffic scenarios, the Broadcom TG3 ethernet driver
might cause a lockup in the associated device's layer-1 chip,
potentially resulting in a denial of network service.


* Memory leak when attempting to recreate existing L2TP tunnel.

When attempting to add an already existing tunnel with the Layer Two
Tunneling Protocol, a reference to the associated socket object is
leaked. This could eventually lead to resource starvation and a
denial-of-service.


* NULL-pointer dereference when writing to Qualcomm RmNet procfs control.

The Qualcomm RmNet virtual ethernet driver provides a procfs control for
its configuration. In certain circumstances, such as during
initialization, writing to this control could result in a NULL-pointer
dereference and denial-of-service.


* Denial-of-service due to race condition in SCTP request handling.

Due to a race condition in the Stream Control Transmission Protocol
driver, a stream request structure could be created with the wrong
buffer length, resulting in a potential out-of-bounds access and
denial-of-service.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the Ksplice-Fedora-28-Updates mailing list