{"id":"MGASA-2015-0238","summary":"Updated kernel-tmb packages fix security vulnerabilities and bugs","details":"Updated kernel-tmb fixes security, critical data corruption and pdata loss issues\n\nThis kernel-tmb update is based on upstream -longterm 3.14.43 and fixes\na security issue, and critical data corruption and data loss issues:\n\ndrivers/vhost/scsi.c: potential memory corruption (CVE-2015-4036)\n\next4 filesystem has a bug that make it possible to lose whole file system\nblock worth of data when we hit the specific interaction with unwritten\nand delayed extents in status extent tree.\n\nwhen using software raid 0 on SSDs along with trim/discard, any delete or\nmodification of files can lead to random destruction on the filesystem.\n(this regression was introduced in upstream 3.14.41)\n\nFor other fixes in this update, see the referenced changelogs.\n","modified":"2026-01-30T19:03:04.302002Z","published":"2015-05-27T16:57:52Z","related":["CVE-2015-4036"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0238.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=16009"},{"type":"REPORT","url":"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.42"},{"type":"REPORT","url":"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.43"}],"affected":[{"package":{"name":"kernel-tmb","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/kernel-tmb?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.14.43-1.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0238.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}