Comments

568 Comments
karma

Tested on RPi3 and Pine64 for aarch64

karma

python3-libs pulls in gdbm-devel which shouldn't happen

Works fine on RPi2/3, mustang, Jetson TK1, OrangePi PC, BBone Black, Panda-ES, CubieTruck and Hummingboard Gate

BZ#1530279 CVE-2017-17852 CVE-2017-17853 CVE-2017-17854 CVE-2017-17855 CVE-2017-17856 CVE-2017-17857 kernel: various flaws [fedora-all]
BZ#1530274 CVE-2017-17857 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of invalid variable stack read operations
BZ#1530273 CVE-2017-17856 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging the lack of stack-pointer alignment enforcement
BZ#1530272 CVE-2017-17855 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging improper use of pointers in place of scalars
BZ#1530271 CVE-2017-17854 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging unrestricted integer values for pointer arithmetic
BZ#1530270 CVE-2017-17853 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging incorrect BPF_RSH signed bounds calculations
BZ#1530269 CVE-2017-17852 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of 32-bit ALU ops
BZ#1529125 CVE-2017-17862 CVE-2017-17863 CVE-2017-17864 kernel: various flaws [fedora-all]
BZ#1529124 CVE-2017-17862 kernel: Improper logic pruning in bpf/verifier.c
BZ#1529123 CVE-2017-17863 kernel: integer overflow in static int check_alu_op function in bpf/verifier.c
BZ#1529120 CVE-2017-17864 kernel: information disclosure via pointer leak in kernel/bpf/verifier.c

Works fine on Mustang (DT mode), RPi2/RPi3 (32 bit), Jetson TK1, BBone Black, OrangePi PC, CubieTruck and Panda-ES along with a Lenovo CarbonX1 Gen3.

Looks good

BZ#1505906 Disable f27 updates testing repo for F27 final

Builds fail due to anongiturl issues

Works for me on a F25 Digital Ocean VM

Seems fine on a few different devices and 2.4 and 5ghz networks

BZ#1502589 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 wpa_supplicant: various flaws [fedora-all]
BZ#1500304 CVE-2017-13088 wpa_supplicant: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1500303 CVE-2017-13087 wpa_supplicant: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1491698 CVE-2017-13082 wpa_supplicant: Accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key while processing it
BZ#1491697 CVE-2017-13081 wpa_supplicant: Reinstallation of the integrity group key in the group key handshake
BZ#1491696 CVE-2017-13080 wpa_supplicant: Reinstallation of the group key in the group key handshake
BZ#1491694 CVE-2017-13079 wpa_supplicant: Reinstallation of the integrity group key in the 4-way handshake
BZ#1491693 CVE-2017-13078 wpa_supplicant: Reinstallation of the group key in the 4-way handshake
BZ#1491692 CVE-2017-13077 wpa_supplicant: Reinstallation of the pairwise key in the 4-way handshake
karma

seems fine

karma

Seems fine on ARMv7, aarch64 and x86_64

Tested on RPi2, RPi3 running in both 32 and 64 bit modes

Looks good on a whole lot of different ARM devices

BZ#1498117 mustang kernel panic with acpi=force on 4.13.3-300.fc27
BZ#1498017 CVE-2017-15299 kernel: Incorrect updates of uninstantiated keys crash the kernel [fedora-all]
BZ#1498016 CVE-2017-15299 kernel: Incorrect updates of uninstantiated keys crash the kernel
BZ#1500335 CVE-2017-1000255 kernel: Arbitrary stack overwrite causing oops via crafted signal frame [fedora-all]
BZ#1498067 CVE-2017-1000255 kernel: Arbitrary stack overwrite causing oops via crafted signal frame

LGTM on a few ARM devices

Tested on: * Hummingboard * BBone * BBone Wireless * Pine64 * Orange Pi * RPi3 64 bit * Cubietruck * panda board

BZ#1498144 Wandboard (imx6) only prints SPL messages then resets

Works fine on a RPi 2/3, x86_64 Carbon X1 Gen3, and a number of other ARM devices

BZ#1497861 Kernel module peaq_wmi nul bombing the console
karma

Looks fine on a number of devices

BZ#1474553 mesa-17.2.2 is available
karma

Looks fine on a number of devices

BZ#1474553 mesa-17.2.2 is available

LGTM for a few devices

karma

Tested on mustang, works

BZ#1497854 upgrade F26 - F27 fails on reboot due to missing shim.efi
karma

LGTM