Advisories ยป MGASA-2015-0439

Updated kernel-linus packages fixes security vulnerability

Publication date: 10 Nov 2015
Type: security
Affected Mageia releases : 5
CVE: CVE-2015-5257

Description

This update of kernel-linus provides the upstream 4.1.12 longterm kernel
and fixes atleast the following security issue:

Moein Ghasemzadeh discovered that the USB WhiteHEAT serial driver contained
hardcoded attributes about the USB devices. An attacker could construct a
fake WhiteHEAT USB device that, when inserted, causes a denial of service
(system crash) (CVE-2015-5257).

It also fixes various upstream bugs, for more info see the referenced
changelogs:
                

References

SRPMS

5/core