SECURITY: Fedora 35 Update: kernel-5.15.4-201.fc35
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-c09b851eb0
2021-11-27 01:09:08.747910
--------------------------------------------------------------------------------
Name : kernel
Product : Fedora 35
Version : 5.15.4
Release : 201.fc35
URL : https://www.kernel.org/
Summary : The Linux kernel
Description :
The kernel meta package
--------------------------------------------------------------------------------
Update Information:
The 5.15.4 stable kernel rebase contains improved hardware support, new
features, and a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 23 2021 Justin M. Forbes [5.15-201]
- Revert "fuse: fix page stealing" (Justin M. Forbes)
* Mon Nov 22 2021 Justin M. Forbes [5.15-0]
- mwifiex_usb: Fix skb_over_panic in mwifiex_usb_recv (Zekun Shen)
- atlantic: Fix OOB read and write in hw_atl_utils_fw_rpc_wait (Zekun Shen)
- Add cifs to module filters (Justin M. Forbes)
* Thu Nov 18 2021 Justin M. Forbes [5.15-0]
- Enable CIFS_SMB_DIRECT for Fedora (Justin M. Forbes)
- Fedora: rockchip: move the GPIO module back to builtin (Peter Robinson)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2024989 - CVE-2021-43975 kernel: out-of-bounds write in hw_atl_utils_fw_rpc_wait() in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c
https://bugzilla.redhat.com/show_bug.cgi?id=2024989
[ 2 ] Bug #2025003 - CVE-2021-43976 kernel: mwifiex_usb_recv() in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker to cause DoS via crafted USB device
https://bugzilla.redhat.com/show_bug.cgi?id=2025003
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-c09b851eb0' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
A kernel security update has been released for Fedora 35.