{"id":"MGASA-2018-0172","summary":"Updated kernel packages fix security vulnerabilities","details":"This kernel update is based on the upstream 4.14.25 and updates the\nKPTI mitigation for Meltdown (CVE-2017-5754) on 32bit x86. It also adds\nome optimizations and improvements to mitigate some of the slowdons\ncaused by the Meltdown (CVE-2017-5754) and Spectre,  variant 2 \n(CVE-2017-5715).\n\nOther security fixes in this update:\n\nThe netfilter subsystem in the Linux kernel through 4.15.7 mishandles the\ncase of a rule blob that contains a jump but lacks a user-defined chain,\nwhich allows local users to cause a denial of service (NULL pointer\ndereference) by leveraging the CAP_NET_RAW or CAP_NET_ADMIN capability,\nrelated to arpt_do_table in net/ipv4/netfilter/arp_tables.c, ipt_do_table\nin net/ipv4/netfilter/ip_tables.c, and ip6t_do_table in\nnet/ipv6/netfilter/ip6_tables.c (CVE-2018-1065).\n\nOther changes in this update:\n\nWireGuard has been updated to 0.0.20180304.\n\nA fix in the scsi subsystem that prevents the kernel to hang or oops,\ntriggered at least when trying to mount some raid6 setups (mga#22704).\n\ninput/goodix: add support for GDIX1002 (mga#22703)\n\nFor other upstream fixes in this update, read the referenced changelogs.\n","modified":"2026-04-16T01:48:49.810743782Z","published":"2018-03-19T12:13:14Z","upstream":["CVE-2017-5715","CVE-2017-5754","CVE-2018-1065"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2018-0172.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=22731"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=22704"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=22703"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.21"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.22"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.23"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.24"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.25"}],"affected":[{"package":{"name":"kernel","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/kernel?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.14.25-1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0172.json"}},{"package":{"name":"kernel-userspace-headers","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/kernel-userspace-headers?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.14.25-1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0172.json"}},{"package":{"name":"kmod-vboxadditions","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/kmod-vboxadditions?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.2.8-5.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0172.json"}},{"package":{"name":"kmod-virtualbox","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/kmod-virtualbox?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.2.8-5.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0172.json"}},{"package":{"name":"kmod-xtables-addons","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/kmod-xtables-addons?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.13-25.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0172.json"}},{"package":{"name":"wireguard-tools","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/wireguard-tools?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.0.20180304-1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0172.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}