[Ksplice-Fedora-29-updates] New Ksplice updates for Fedora 29 (FEDORA-2019-5a3d7dff67)

Oracle Ksplice ksplice-support_ww at oracle.com
Tue Mar 5 12:27:16 PST 2019 

Synopsis: FEDORA-2019-5a3d7dff67 can now be patched using Ksplice

Systems running Fedora 29 can now use Ksplice to patch against the
latest Fedora kernel update, FEDORA-2019-5a3d7dff67.

INSTALLING THE UPDATES

We recommend that all users of Ksplice Uptrack running Fedora 29
install these updates.

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to
take any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y


DESCRIPTION

* Data-loss when writing to NAND flash drive.

Incorrect cached write operation in the SPI NAND flash driver leads to
overwriting error handling and correction data. This could allow
hardware failure to silently corrupt data.


* Denial-of-service when handling signal in user process.

Incorrect signal handling allows an unprivileged local user to create
processes that are immune to termination attempt. An attacker can
exploit this flaw to exhaust resources that could eventually lead to a
denial-of-service.


* Denial-of-service when encrypting Wi-Fi packets for transmission.

An out-of-bound write when transmitting encrypted management packet in
the mac80211 subsystem could lead to a denial-of-service on certain
systems where the driver relies on software encryption.


* Data-loss when performing fsync on an ext4 filesystem.

When performing an fsync on an ext4 filesystem, the operation may fail
to sync memory-mapped buffers under certain configuration. This may lead
to inadvertent data-loss.


* Denial-of-service in the batman-adv subsystem.

An out-of-bound access in kernel memory is possible when
transmitting packets through raw socket in the batman-adv
routing protocol. An unprivileged local user with CAP_NET_RAW
capability could possibly  exploit this flaw to cause a
denial-of-service.

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com.

More information about the Ksplice-Fedora-29-Updates mailing list