Fedora Linux 8773 Published by

A kernel security update has been released for Fedora 34.



SECURITY: Fedora 34 Update: kernel-5.12.10-300.fc34


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-bc2a819bc5
2021-06-15 01:04:29.501475
--------------------------------------------------------------------------------

Name : kernel
Product : Fedora 34
Version : 5.12.10
Release : 300.fc34
URL :   https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package

--------------------------------------------------------------------------------
Update Information:

The 5.12.10 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 10 2021 Justin M. Forbes [5.12.10-0]
- Bluetooth: use correct lock to prevent UAF of hdev object (Lin Ma)
- nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (Krzysztof Kozlowski)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1966578 - CVE-2021-3573 kernel: use-after-free in function hci_sock_bound_ioctl()
  https://bugzilla.redhat.com/show_bug.cgi?id=1966578
[ 2 ] Bug #1968057 - CVE-2021-3587 kernel: nfc: Null pointer dereference in llcp_sock_getname
  https://bugzilla.redhat.com/show_bug.cgi?id=1968057
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-bc2a819bc5' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys