Mageia alert MGASA-2017-0309 (kernel-linus)

From:
    	     
 
Mageia Updates <buildsystem-daemon@mageia.org> 
To:
    	     
 
updates-announce@ml.mageia.org 
Subject:
    	     
 
[updates-announce] MGASA-2017-0309: Updated kernel-linus packages fixes security and other bugs 
Date:
    	     
 
Fri, 25 Aug 2017 23:53:47 +0200
Message-ID:
    	     
 
<20170825215347.ABE469F875@duvel.mageia.org>
MGASA-2017-0309 - Updated kernel-linus packages fixes security and other bugs

Publication date: 25 Aug 2017
URL: http://advisories.mageia.org/MGASA-2017-0309.html
Type: security
Affected Mageia releases: 5
CVE: CVE-2017-10663,
     CVE-2017-1000112

Description:
This kernel-linus update is based on upstream 4.4.82 and fixes atleast the
following security issues:

The curseg->segno call in f2fs driver can be malformed so that it will have
a value that triggers an out of boundary write that could cause memory
corruption on the affected devices, leading to code execution in the kernel
context. This would allow for more data to be accessed and controlled by
the malware (CVE-2017-10663).

The UDP Fragmentation Offload (UFO) feature is vulnerable to out-of-bounds
writes causing exploitable memory corruption. If unprivileged user
namespaces are available, this bug can be exploited to gain root privileges
(CVE-2017-1000112).

For other upstream fixes in this update, read the referenced changelogs.

References:
- https://bugs.mageia.org/show_bug.cgi?id=21523
- https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4....
- https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4....
- https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4....
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10663
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10...

SRPMS:
- 5/core/kernel-linus-4.4.82-1.mga5