Comments

660 Comments

LGTM

LGTM

Tested on the RPi3+ on aarch64, and a whole bunch of other ARM devices (32 and 64 bit) overall looks good

LGTM

Tested on Lenovo Carbon X1 Gen3, Mustang, Raspberry Pi 2, RPi3, Wandboard Quad, OrangePi PC and Panda-ES

Tested on the Raspberry Pi 3+

Looks good on Lenovo X1 Gen3 too

For basic boot/network testing works on: aarch64: mustang, pine64, dragonboard410c, RPi3 ARMv7: RPi2/RPi3, wandboard, hummingboard2, JetsonTK1, OrangePi PC, BBone Black, BBone Black Wireless, PandaES

Tested tmon/lsiio/lsgpio on a number of ARMv7/aarch64 devices inc mustang, rpi2/3, wandboard, hummingboard2, cubietruck, Pine64, panda-ES, dragonboard and some others. LGTM!

karma

Tested on RPi3 and Pine64 for aarch64

karma

python3-libs pulls in gdbm-devel which shouldn't happen

Works fine on RPi2/3, mustang, Jetson TK1, OrangePi PC, BBone Black, Panda-ES, CubieTruck and Hummingboard Gate

BZ#1530279 CVE-2017-17852 CVE-2017-17853 CVE-2017-17854 CVE-2017-17855 CVE-2017-17856 CVE-2017-17857 kernel: various flaws [fedora-all]
BZ#1530274 CVE-2017-17857 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of invalid variable stack read operations
BZ#1530273 CVE-2017-17856 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging the lack of stack-pointer alignment enforcement
BZ#1530272 CVE-2017-17855 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging improper use of pointers in place of scalars
BZ#1530271 CVE-2017-17854 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging unrestricted integer values for pointer arithmetic
BZ#1530270 CVE-2017-17853 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging incorrect BPF_RSH signed bounds calculations
BZ#1530269 CVE-2017-17852 kernel: bpf/verifier.c allows local users to cause a denial of service by leveraging mishandling of 32-bit ALU ops
BZ#1529125 CVE-2017-17862 CVE-2017-17863 CVE-2017-17864 kernel: various flaws [fedora-all]
BZ#1529124 CVE-2017-17862 kernel: Improper logic pruning in bpf/verifier.c
BZ#1529123 CVE-2017-17863 kernel: integer overflow in static int check_alu_op function in bpf/verifier.c
BZ#1529120 CVE-2017-17864 kernel: information disclosure via pointer leak in kernel/bpf/verifier.c

Works fine on Mustang (DT mode), RPi2/RPi3 (32 bit), Jetson TK1, BBone Black, OrangePi PC, CubieTruck and Panda-ES along with a Lenovo CarbonX1 Gen3.

Looks good

BZ#1505906 Disable f27 updates testing repo for F27 final

Builds fail due to anongiturl issues

Works for me on a F25 Digital Ocean VM

Seems fine on a few different devices and 2.4 and 5ghz networks

BZ#1502589 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 wpa_supplicant: various flaws [fedora-all]
BZ#1500304 CVE-2017-13088 wpa_supplicant: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1500303 CVE-2017-13087 wpa_supplicant: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame
BZ#1491698 CVE-2017-13082 wpa_supplicant: Accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key while processing it
BZ#1491697 CVE-2017-13081 wpa_supplicant: Reinstallation of the integrity group key in the group key handshake
BZ#1491696 CVE-2017-13080 wpa_supplicant: Reinstallation of the group key in the group key handshake
BZ#1491694 CVE-2017-13079 wpa_supplicant: Reinstallation of the integrity group key in the 4-way handshake
BZ#1491693 CVE-2017-13078 wpa_supplicant: Reinstallation of the group key in the 4-way handshake
BZ#1491692 CVE-2017-13077 wpa_supplicant: Reinstallation of the pairwise key in the 4-way handshake