Maintainer Alexey Gladkov in the sisyphus branch: Information
Maintainer name: Alexey Gladkov (legion)
Built source packages in this branch: 76
Last changes
Mar 7, 2024, 04:07 PM
#342266 sent by Alexey Gladkov
Creates an initramfs image
March 7, 2024 Alexey Gladkov:
- Avoid unmets on e2k.
Mar 6, 2024, 08:25 PM
#342179 sent by Alexey Gladkov
The Mozilla Firefox project is a redesign of Mozilla's browser
Empty firefox dependency holder on platforms that don't have one
March 6, 2024 Alexey Gladkov:
- New release (123.0.1).
Mar 3, 2024, 04:13 AM
#341862 sent by Alexey Gladkov
An open source web browser developed by Google
Feb. 28, 2024 Alexey Gladkov:
- New version (122.0.6261.94). - Security fixes: - CVE-2024-1669: Out of bounds memory access in Blink. - CVE-2024-1670: Use after free in Mojo. - CVE-2024-1671: Inappropriate implementation in Site Isolation. - CVE-2024-1672: Inappropriate implementation in Content Security Policy. - CVE-2024-1673: Use after free in Accessibility. - CVE-2024-1674: Inappropriate implementation in Navigation. - CVE-2024-1675: Insufficient policy enforcement in Download. - CVE-2024-1676: Inappropriate implementation in Navigation. - CVE-2024-1938: Type Confusion in V8. - CVE-2024-1939: Type Confusion in V8.
Feb 26, 2024, 04:28 PM
#341439 sent by Alexey Gladkov
Creates an initramfs image
Feb. 26, 2024 Alexey Gladkov:
Feb 24, 2024, 10:38 PM
#341362 sent by Alexey Gladkov
Common CA Certificates
Empty firefox dependency holder on platforms that don't have one
Netscape Network Security Services(NSS)
Feb. 24, 2024 Alexey Gladkov:
- New version (3.98). - Certificate Authority Changes: + Add CN=D-Trust SBR Root CA 1 2022 + Add CN=D-Trust SBR Root CA 2 2022 + Add CN=Telekom Security SMIME ECC Root 2021 + Add CN=Telekom Security SMIME RSA Root 2023 + Add CN=Telekom Security TLS ECC Root 2020 + Add CN=Telekom Security TLS RSA Root 2023
The Mozilla Firefox project is a redesign of Mozilla's browser
Feb. 24, 2024 Alexey Gladkov:
- New release (123.0). - Security fixes: + CVE-2024-1546: Out-of-bounds memory read in networking channels + CVE-2024-1547: Alert dialog could have been spoofed on another site + CVE-2024-1554: fetch could be used to effect cache poisoning + CVE-2024-1548: Fullscreen Notification could have been hidden by select element + CVE-2024-1549: Custom cursor could obscure the permission dialog + CVE-2024-1550: Mouse cursor re-positioned unexpectedly could have led to unintended permission grants + CVE-2024-1551: Multipart HTTP Responses would accept the Set-Cookie header in response parts + CVE-2024-1555: SameSite cookies were not properly respected when opening a website from an external browser + CVE-2024-1556: Invalid memory access in the built-in profiler + CVE-2024-1552: Incorrect code generation on 32-bit ARM devices + CVE-2024-1553: Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8 + CVE-2024-1557: Memory safety bugs fixed in Firefox 123
Feb 24, 2024, 09:23 PM
#341373 sent by Alexey Gladkov
Lightweight file permission checker
Feb. 24, 2024 Alexey Gladkov:
- New version (1.3.2). - Fix infinite loop (ALT#49446).
Feb 22, 2024, 01:57 PM
#341249 sent by Alexey Gladkov
unused
deleted kernel-image-centos
deleted kernel-modules-bcmwl-centos
deleted kernel-modules-evdi-centos
deleted kernel-modules-lkrg-centos
Feb. 22, 2024 Alexey Gladkov:
- package removed
Feb 14, 2024, 08:22 PM
#340721 sent by Alexey Gladkov
Simple image creator
Feb. 14, 2024 Alexey Gladkov:
- Add HSH_INSTALL_PROC support in mki-install.
Feb 13, 2024, 06:16 PM
#340601 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Feb. 13, 2024 Alexey Gladkov:
- Updated to kernel-5.14.0-420.el9 (fixes: CVE-2022-38096, CVE-2023-45863, CVE-2023-51779, CVE-2023-51780, CVE-2023-6610, CVE-2023-6817, CVE-2024-0646)
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Feb 13, 2024, 05:15 PM
#340603 sent by Alexey Gladkov
Creates an initramfs image
Feb. 13, 2024 Alexey Gladkov:
- Feature plymouth: + Fix unbound variable PLYMOUTH_LIBDIR.
Feb 12, 2024, 09:24 PM
#340528 sent by Alexey Gladkov
Contains the various common licenses used in the ALT Sisyphus
Feb. 12, 2024 Alexey Gladkov:
- New release (3.23).
Feb 11, 2024, 08:50 PM
#340378 sent by Alexey Gladkov
Feb 11, 2024, 02:03 AM
#339647 sent by Alexey Gladkov
The Rust Programming Language
An open source web browser developed by Google
Feb. 8, 2024 Alexey Gladkov:
- New version (121.0.6167.160). - Security fixes: - CVE-2024-1283: Heap buffer overflow in Skia. - CVE-2024-1284: Use after free in Mojo.
Feb 8, 2024, 08:36 PM
#340108 sent by Alexey Gladkov
Feb 8, 2024, 08:27 PM
#340103 sent by Alexey Gladkov
Empty firefox dependency holder on platforms that don't have one
The Mozilla Firefox project is a redesign of Mozilla's browser
Feb. 8, 2024 Alexey Gladkov:
- New release (122.0.1).
Feb 7, 2024, 09:18 PM
#340052 sent by Alexey Gladkov
Creates an initramfs image
Feb. 7, 2024 Alexey Gladkov:
- New version (2.43.0). - Feature overlayfs: + New feature to take lowerdirs into account. - Feature guestfs: + Add gost checksum utilities. - Feature pipeline: + Add dependency on additional utilities. + Register ping= cmdline parameter. - Feature lkrg: + Fix LSM header for service (ALT#49219). - Feature multipath: + Add plugins directory. + Logically separate the multipath and sg3_utils files. - Feature plymouth: + Use the library list to find the plymouth directory.
Feb 7, 2024, 05:38 PM
#340025 sent by Alexey Gladkov
A library of shell functions
Feb. 7, 2023 Alexey Gladkov:
- Migrate cgrep manpage from help2man to scdoc (ALT#49315). - Add functions for operating with file locks (shell-locks).
Feb 6, 2024, 04:11 AM
#339845 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Feb. 5, 2024 Alexey Gladkov:
- Updated to kernel-5.14.0-417.el9 (fixes: CVE-2023-6040, CVE-2023-6931)
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Jan 29, 2024, 07:57 PM
#339305 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Jan. 29, 2024 Alexey Gladkov:
- Updated to kernel-5.14.0-413.el9 (fixes: CVE-2022-0480, CVE-2023-6356, CVE-2023-6531, CVE-2023-6535, CVE-2023-6536)
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Jan 24, 2024, 09:27 PM
#338897 sent by Alexey Gladkov
Empty firefox dependency holder on platforms that don't have one
The Mozilla Firefox project is a redesign of Mozilla's browser
Jan. 23, 2024 Alexey Gladkov:
- New release (122.0). - Security fixes: + CVE-2024-0741: Out of bounds write in ANGLE + CVE-2024-0742: Failure to update user input timestamp + CVE-2024-0743: Crash in NSS TLS method + CVE-2024-0744: Wild pointer dereference in JavaScript + CVE-2024-0745: Stack buffer overflow in WebAudio + CVE-2024-0746: Crash when listing printers on Linux + CVE-2024-0747: Bypass of Content Security Policy when directive unsafe-inline was set + CVE-2024-0748: Compromised content process could modify document URI + CVE-2024-0749: Phishing site popup could show local origin in address bar + CVE-2024-0750: Potential permissions request bypass via clickjacking + CVE-2024-0751: Privilege escalation through devtools + CVE-2024-0752: Use-after-free could occur when applying update on macOS + CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper domain + CVE-2024-0754: Crash when using some WASM files in devtools + CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7
Jan 22, 2024, 11:25 PM
#338668 sent by Alexey Gladkov
Creates an initramfs image
Jan. 22, 2024 Alexey Gladkov:
- New version (2.42.0) (ALT#49122). - Feature network: + Do not add this feature by default (ALT#49123). - Feature system-glibc: + Do not add this feature by default (ALT#49123). - Feature lkrg: + Fix service permissions. - Remove features: + raid, ide-to-scsi, scsi-to-ide, debug-procacct, kbd (ALT#49123). - Remove spawn-shell.
Jan 22, 2024, 08:26 PM
#338662 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Jan. 22, 2024 Alexey Gladkov:
- Updated to kernel-5.14.0-410.el9 (fixes: CVE-2020-26555, CVE-2023-6606)
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Jan 19, 2024, 11:21 PM
#338418 sent by Alexey Gladkov
Creates an initramfs image
Jan. 18, 2024 Alexey Gladkov:
- New version (2.41.0). - Feature pipeline: + Restrict permissions to directories that can be accessed in the booted system. Only root should have access to these directories. - Feature plymouth: + Detect libdir on gentoo. + Pack all plymouth modules by default.
Jan 15, 2024, 05:26 PM
#338219 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Jan 10, 2024, 03:14 AM
#337929 sent by Alexey Gladkov
The Mozilla Firefox project is a redesign of Mozilla's browser
Empty firefox dependency holder on platforms that don't have one
Jan. 10, 2024 Alexey Gladkov:
- New release (121.0.1).
Jan 10, 2024, 01:55 AM
#337921 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Jan 5, 2024, 01:48 AM
#337690 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Jan. 4, 2024 Alexey Gladkov:
- Updated to kernel-5.14.0-403.el9 (fixes: CVE-2023-46862, CVE-2023-6121, CVE-2023-6679) - Removed bcache.
Modules for Broadcom IEEE 802.11a/b/g/n adapters
Linux Kernel Runtime Guard module
v4l2-loopback device
DisplayLink kernel module
Jan. 4, 2024 Konstantin Lepikhov:
- Build for kernel-image-centos-5.14.0.403-alt1.el9.
Jan 4, 2024, 04:38 PM
#337689 sent by Alexey Gladkov
Sway Input Configurator
Jan. 4, 2024 Alexey Gladkov:
- New version (1.3.2.2).
Dec 30, 2023, 10:52 PM
#337520 sent by Alexey Gladkov
Dec 30, 2023, 05:47 PM
#337516 sent by Alexey Gladkov
Creates an initramfs image
Dec. 30, 2023 Alexey Gladkov:
- New version (2.40.0). - Runtime: + Do not overwrite logfiles. + Add function to pick a console to common library. - Feature pipeline: + getimage: check whether the loop module is loaded before mounting the image. + overlayfs: fix delim in overlayfs options. + overlayfs: allow to specify mounting parameters. + overlayfs: add support the "data-only" lower layers. + mountfs: optionally load loop module if needed. + ping: Add helper to ping remote host. + Add cmdline parameter to limit steps failure.
Dec 29, 2023, 09:51 PM
#337486 sent by Alexey Gladkov
new-build
The Linux kernel (the core of the Linux operating system)
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Dec 28, 2023, 04:42 PM
#337410 sent by Alexey Gladkov
Collect hardware infomation for developers
Dec. 28, 2023 Alexey Gladkov:
- Obtain: + OpenGL/Vulkan information. + OpenCL information. + Video acceleration capabilities. - Fix licence tag.
Dec 23, 2023, 06:59 PM
#337109 sent by Alexey Gladkov
An "archives first" approach to mailing lists
Dec. 23, 2023 Alexey Gladkov:
- New git snapshot (v1.9.0-1113-g84874a85).
Dec 21, 2023, 04:59 AM
#336902 sent by Alexey Gladkov
Empty firefox dependency holder on platforms that don't have one
Netscape Network Security Services(NSS)
Dec. 20, 2023 Alexey Gladkov:
- New version (3.96.1). - Certificate Authority Changes: + Add CN=CommScope Public Trust ECC Root-01 + Add CN=CommScope Public Trust ECC Root-02 + Add CN=CommScope Public Trust RSA Root-01 + Add CN=CommScope Public Trust RSA Root-02 + Add CN=TrustAsia Global Root CA G3 + Add CN=TrustAsia Global Root CA G4 + Remove CN=Autoridad de Certificacion Firmaprofesional CIF A62634068,C=ES + Remove CN=Chambers of Commerce Root - 2008 + Remove CN=Global Chambersign Root - 2008 + Remove CN=Symantec Class 1 Public Primary Certification Authority - G6,OU=Symantec Trust Network + Remove CN=Symantec Class 2 Public Primary Certification Authority - G6,OU=Symantec Trust Network + Remove CN=TrustCor ECA-1,OU=TrustCor Certificate Authority + Remove CN=TrustCor RootCert CA-1,OU=TrustCor Certificate Authority + Remove CN=TrustCor RootCert CA-2,OU=TrustCor Certificate Authority + Remove CN=VeriSign Class 1 Public Primary Certification Authority - G3,OU="(c) 1999 VeriSign, Inc. - For authorized use only",OU=VeriSign Trust Network + Remove CN=VeriSign Class 2 Public Primary Certification Authority - G3,OU="(c) 1999 VeriSign, Inc. - For authorized use only",OU=VeriSign Trust Network
Common CA Certificates
The Mozilla Firefox project is a redesign of Mozilla's browser
Dec. 20, 2023 Alexey Gladkov:
- New release (121.0). - Security fixes: + CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver + CVE-2023-6135: NSS susceptible to "Minerva" attack + CVE-2023-6865: Potential exposure of uninitialized data in EncryptingOutputStream + CVE-2023-6857: Symlinks may resolve to smaller than expected buffers + CVE-2023-6858: Heap buffer overflow in nsTextFragment + CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer + CVE-2023-6866: TypedArrays lack sufficient exception handling + CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture validation + CVE-2023-6867: Clickjacking permission prompts using the popup transition + CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in headless mode + CVE-2023-6868: WebPush requests on Firefox for Android did not require VAPID key + CVE-2023-6869: Content can paint outside of sandboxed iframe + CVE-2023-6870: Android Toast notifications may obscure fullscreen event notifications + CVE-2023-6871: Lack of protocol handler warning in some instances + CVE-2023-6872: Browsing history leaked to syslogs via GNOME + CVE-2023-6863: Undefined behavior in ShutdownObserver() + CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6 + CVE-2023-6873: Memory safety bugs fixed in Firefox 121
Dec 21, 2023, 02:03 AM
#336891 sent by Alexey Gladkov
Dec 20, 2023, 04:24 PM
#336882 sent by Alexey Gladkov
Highly customizable Wayland bar for Sway and Wlroots based compositors
Dec. 20, 2023 Alexey Gladkov:
- New version (0.9.24).
Dec 19, 2023, 06:55 AM
#336698 sent by Alexey Gladkov
An open source web browser developed by Google
Dec. 18, 2023 Alexey Gladkov:
- Bring back optimization flags.
Dec 17, 2023, 02:20 AM
#336463 sent by Alexey Gladkov
An open source web browser developed by Google
Dec. 16, 2023 Alexey Gladkov:
- New version (120.0.6099.109). - Security fixes: - CVE-2023-6702: Type Confusion in V8. - CVE-2023-6703: Use after free in Blink. - CVE-2023-6704: Use after free in libavif. - CVE-2023-6705: Use after free in WebRTC. - CVE-2023-6706: Use after free in FedCM. - CVE-2023-6707: Use after free in CSS.
Dec 15, 2023, 04:50 PM
#336542 sent by Alexey Gladkov
Tools for managing the Linux console
Dec. 15, 2023 Alexey Gladkov:
- New release version (2.6.4).
Dec 6, 2023, 02:08 AM
#335890 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Dec. 5, 2023 Alexey Gladkov:
- Updated to kernel-5.14.0-394.el9: + Add Add Intel Meteor Lake PCH-S LPSS PCI IDs + Add i2c-i801 support for MTL-S PCH + Add pinctrl support for MTL-S + Add support for Intel Birch Stream SoC + Backport OPP Tables for UFS Node + CNB94: ipv4: Invalidate neighbour for broadcast address upon address addition + CNB94: neighbour: annotate lockless accesses to n->nud_state + CNB94: net: add check for current MAC address in dev_set_mac_address + CNB94: xsk: Multi-buffer support + Fix possible deadlock in audit_exe_compare() code path + Merge commit '6085d3e6a6013fce864c359ac6faa23e3d8cb7da' + Merge commit '86bc7724d3d9ea8e92fbe0ceb6238a56ee3ce720' + Performance improvements of cryptography for PowerPC + RDMA/irdma: driver update to v6.6 + RDMA: Bug fixes from v6.6 + RDT: Support non-contiguous masks to be programmed into cache capacity MSRs + USB/TB code rebase of supported drivers to upstream v6.5 + Update Kunit (el9.4) + Update userspace rtla to latest upstream + Updates for powerpc fadump and vmcore + XFS: sync to newer upstream version for RHEL9.4 + arm64: update core arm64 code to upstream v6.6 + block, bfq: fix uaf for bfqq in bic_set_bfqq() + bnxt_en: Driver update for RHEL-9.4 + drm/mgag200: Flush the cache to improve latency + nvme: update firmware version after commit + perf test: Skip CoreSight tests if cs_etm// event is not available + perf: fix two broken tests + perf: sync tools headers with kernel + powerpc/code-patching: Pre-map patch area + redhat/Makefile: fix the detection of "-n" (RHTEST) + treewide: Implement new Red Hat driver and device status infrastructure + Various changes and improvements that are poorly described in merge.
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Dec 1, 2023, 08:34 PM
#335537 sent by Alexey Gladkov
remove
deleted slogin
Dec. 1, 2023 Alexey Gladkov:
- package removed
Dec 1, 2023, 08:31 PM
#335538 sent by Alexey Gladkov
remove
deleted papt
Dec. 1, 2023 Alexey Gladkov:
- package removed
Dec 1, 2023, 06:34 PM
#335519 sent by Alexey Gladkov
Empty firefox dependency holder on platforms that don't have one
The Mozilla Firefox project is a redesign of Mozilla's browser
Dec. 1, 2023 Alexey Gladkov:
- New release (120.0.1).
Dec 1, 2023, 04:02 PM
#335499 sent by Alexey Gladkov
remove
deleted eudev
Dec. 1, 2023 Alexey Gladkov:
- package removed
Dec 1, 2023, 03:51 PM
#335498 sent by Alexey Gladkov
remove
deleted extlinux
Dec. 1, 2023 Alexey Gladkov:
- package removed
Dec 1, 2023, 03:47 PM
#335500 sent by Alexey Gladkov
remove
deleted docker-systemctl-replacement
Dec. 1, 2023 Alexey Gladkov:
- package removed
Dec 1, 2023, 03:43 PM
#335497 sent by Alexey Gladkov
remove
deleted md2man
Dec. 1, 2023 Alexey Gladkov:
- package removed
Nov 29, 2023, 06:07 PM
#335339 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Nov. 28, 2023 Alexey Gladkov:
- Updated to kernel-5.14.0-390.el9 (fixes: CVE-2023-45871): + ARM TLB Invalidate ASID improvements + CNB94: net: add missing includes and forward declarations under net/ + EDAC: add support for Granite Rapids + Memory: Architectural Linear Address Masking (LAM) + Merge branch 'c9s-iommu' into RHEL-11561 + Merge branch 'pci-sac' into RHEL-11561 + Merge branch 'rhel9.4-vfio' into RHEL-11561 + RHEL-9.4 P1 Bond stable backport + RHEL-9.4 P1 Selftest stable backport + Revert "KVM: s390: selftests: Add selftest for single-stepping" + Update userspace / kernel rv to latest upstream kernel + bpf: Change syscall_nr type to int in struct syscall_tp_t + bpf: update to 6.5 + driver/base/cpu: Retry online operation if -EBUSY + ext4: fix racy may inline data check in dio write + fbdev/simplefb: Support memory-region & power-domains + gfs2: Fix another freeze/thaw hang + igb: set max size RX buffer when store bad packet is enabled + lpfc updates, patch sets 14.2.0.13 and 14.2.0.14 for centos-9 + macsec: backports from upstream + mptcp: rebase to Linux 6.7 + net-core: stable backports for 9.4 phase 1 + net/other: phase-1 backports for RHEL-9.4 + net/sched: phase-1 backports for RHEL-9.4 + net: backport drop reason related patches + nvme-auth: use chap->s2 to indicate bidirectional authentication + ovs: P1 backports from upstream + perf: sync with upstream v6.6 + sched/fair: Make the BW replenish timer expire in hardirq context for PREEMPT_RT + scsi: qedf: update qedf driver to latest upstream + scsi: qedi: update qedi driver to latest upstream + scsi: qla2xxx: update qla2xxx driver to latest upstream + tcp: allow again tcp_disconnect() when threads are waiting + tcp: enforce receive buffer memory limits by allowing the tcp window to shrink + tipc: backports from upstream + xfrm: backports from upstream
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device
Nov 22, 2023, 06:47 PM
#334890 sent by Alexey Gladkov
Empty firefox dependency holder on platforms that don't have one
The Mozilla Firefox project is a redesign of Mozilla's browser
Nov. 21, 2023 Alexey Gladkov:
- New release (120.0). - Security fixes: + CVE-2023-6204: Out-of-bound memory access in WebGL2 blitFramebuffer + CVE-2023-6205: Use-after-free in MessagePort::Entangled + CVE-2023-6206: Clickjacking permission prompts using the fullscreen transition + CVE-2023-6207: Use-after-free in ReadableByteStreamQueueEntry::Buffer + CVE-2023-6208: Using Selection API would copy contents into X11 primary selection. + CVE-2023-6209: Incorrect parsing of relative URLs starting with "///" + CVE-2023-6210: Mixed-content resources not blocked in a javascript: pop-up + CVE-2023-6211: Clickjacking to load insecure pages in HTTPS-only mode + CVE-2023-6212: Memory safety bugs fixed in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5 + CVE-2023-6213: Memory safety bugs fixed in Firefox 120
Nov 21, 2023, 07:24 PM
#334808 sent by Alexey Gladkov
new-release
The Linux kernel (the core of the Linux operating system)
Nov. 21, 2023 Alexey Gladkov:
- Updated to kernel-5.14.0-387.el9 (fixes: CVE-2023-1192, CVE-2023-20569, CVE-2023-20588, CVE-2023-20593, CVE-2023-28866, CVE-2023-31083, CVE-2023-3567, CVE-2023-3812, CVE-2023-40283, CVE-2023-42753, CVE-2023-5178): + Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO + CNB94: lib: cpu_rmap: Add irq_cpu_rmap_remove to complement irq_cpu_rmap_add + CNB94: virtchnl: Sync headers with upstream + Enable -Werror for s390x and ppc64le + Ext4 Update for 9.4 + Implement counters for nested guest shadow events + KVM: selftests: aarch64: Fix page_fault_test failure + Merge remote-tracking branch 'refs/remotes/c9s/merge-requests/3244' into c9s-iommu + Merge remote-tracking branch 'refs/remotes/c9s/merge-requests/3245' into c9s-iommu + RHEL-9.4 P1 Wireguard stable backport + RHEL-9.4 Update IPMI to upstream v6.5+ + Revert "rcu: Permit start_poll_synchronize_rcu_expedited() to be invoked early" + SCSI updates for 9.4 + USB/TB code rebase of supported drivers to upstream v6.4 + Update net/bluetooth and drivers/bluetooth to upstream v6.5 + Updates for Power IOMMU + Updates for powerpc CPT SMT + [s390] [IBM 9.4 FEAT] Upgrade the SMC driver to latest from upstream, e.g. kernel 6.4 + [s390] [IBM 9.4 FEAT] Upgrade the qeth driver to latest from upstream, e.g. kernel 6.4 + arm64: dts: imx8 updates + cifs: Fix UAF in cifs_demultiplex_thread() + clk: Sanitize possible_parent_show to Handle Return Value of of_clk_get_parent_name + hwmon: (ina3221) Add support for channel summation disable + iommu: IOMMU and DMA-mapping API Updates for 9.4 + livepatch: selected fixes for rhel-9.4 + nd_btt: Make BTT lanes preemptible + net: tun: fix bugs for oversize packet when napi frags enabled + netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash_netportnet.c + nvme: update the drivers + nvmet-tcp: Fix a possible UAF in queue intialization setup + redhat/configs: Increase CONFIG_NODES_SHIFT from 6 to 8 for arm64 + redhat: various fix ups + scsi: mpi3mr: driver update + scsi: mpt3sas: driver updates + tcp: stable backport for 9.4 phase 1 + tty: serial: fsl_lpuart: driver updates + update drivers/base to v6.4 + vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF + vfio: Updates for RHEL9.4 + wifi: rtw89: Fix loading of compressed firmware + x86/speculation: Disable IBRS when idle + x86/srso: AMD Speculative RAS Overflow (Inception) Mitigation CVE-2023-20569
Modules for Broadcom IEEE 802.11a/b/g/n adapters
DisplayLink kernel module
Linux Kernel Runtime Guard module
v4l2-loopback device