Fixes CVE-2014-9221 denial-of-service vulnerability.

Resolved Bugs
1048169 – CVE-2013-7252 kwallet: crypto misuse [fedora-all]
1177947 – kio_sftp.so corrupts files when reading
1048168 – CVE-2013-7252 kwallet: crypto misuse<br
Pull in upstream fixes for: CVE-2013-7252 kwallet: crypto misuse, and kio_sftp corruption

Resolved Bugs
1048168 – CVE-2013-7252 kwallet: crypto misuse
1048169 – CVE-2013-7252 kwallet: crypto misuse [fedora-all]
1177947 – kio_sftp.so corrupts files when reading<br
Pull in upstream fixes for: CVE-2013-7252 kwallet: crypto misuse, and kio_sftp corruption

Resolved Bugs
1179813 – CVE-2014-9529 kernel: memory corruption or panic during key garbage collection
1179853 – CVE-2014-9529 kernel: memory corruption or panic during key garbage collection [fedora-all]
1177260 – CVE-2014-9419 kernel: partial ASLR bypass through TLS base addresses leak
1177263 – CVE-2014-9419 kernel: partial ASLR bypass through TLS base addresses leak [fedora-all]
1178826 – CVE-2014-9428 kernel: remote denial of service via batman-adv module
1178833 – CVE-2014-9428 kernel: remote denial of service via batman-adv module [fedora-all]
1163927 – CIFS mounts fail with kernel-3.17.2-200.fc20.x86_64
972446 – F2FS kernel module not built
1170684 – CVE-2014-8989 kernel: Linux user namespaces can bypass group-based restrictions
1170688 – CVE-2014-8989 kernel: Linux user namespaces can bypass group-based restrictions [fedora-all]
1168434 – dm cache: kernel crashes when handling a partial block at end of device
1175261 – kernel bug when hotplugging a CPU
1169478 – Feature request: USB-over-IP (CONFIG_USBIP_CORE) support in Linux kernel
1175235 – CVE-2014-9420 Kernel: fs: isofs: infinite loop in CE record entries
1175250 – Kernel: fs: isofs: infinite loop in CE record entries [fedora-all]<br
The 3.17.8 stable update contains a number of important fixes across the tree.

Resolved Bugs
1179813 – CVE-2014-9529 kernel: memory corruption or panic during key garbage collection
1179853 – CVE-2014-9529 kernel: memory corruption or panic during key garbage collection [fedora-all]
1177260 – CVE-2014-9419 kernel: partial ASLR bypass through TLS base addresses leak
1177263 – CVE-2014-9419 kernel: partial ASLR bypass through TLS base addresses leak [fedora-all]
1178826 – CVE-2014-9428 kernel: remote denial of service via batman-adv module
1178833 – CVE-2014-9428 kernel: remote denial of service via batman-adv module [fedora-all]
1163927 – CIFS mounts fail with kernel-3.17.2-200.fc20.x86_64
972446 – F2FS kernel module not built
1170684 – CVE-2014-8989 kernel: Linux user namespaces can bypass group-based restrictions
1170688 – CVE-2014-8989 kernel: Linux user namespaces can bypass group-based restrictions [fedora-all]
1168434 – dm cache: kernel crashes when handling a partial block at end of device
1175261 – kernel bug when hotplugging a CPU
1169478 – Feature request: USB-over-IP (CONFIG_USBIP_CORE) support in Linux kernel
1175235 – CVE-2014-9420 Kernel: fs: isofs: infinite loop in CE record entries
1175250 – Kernel: fs: isofs: infinite loop in CE record entries [fedora-all]<br
The 3.17.8 stable update contains a number of important fixes across the tree.

Resolved Bugs
1180189 – CVE-2015-0204 openssl: Only allow ephemeral RSA keys in export ciphersuites [fedora-all]<br
New upstream release fixing multiple low and moderate impact security issues.

Resolved Bugs
1076676 – CVE-2014-2497 gd: NULL pointer dereference in gdImageCreateFromXpm()<br
Previous patch of #1076676 introduced memory leak.

– Fix SSL connection issues with some websites after the POODLE vulnerability fix.
– Fix a crash when loading flash plugins.
– Fix build on GNU Hurd
– Fix build on OS X.
– Fix documentation of webkit_print_operation_get_page_setup().
– Security fixes: CVE-2014-1344, CVE-2014-1384, CVE-2014-1385, CVE-2014-1386, CVE-2014-1387, CVE-2014-1388, CVE-2014-1389, CVE-2014-1390.

Resolved Bugs
1174904 – CVE-2004-2771 CVE-2014-7844 bsd-mailx: mailx: command execution flaw [epel-6]
1162783 – CVE-2004-2771 CVE-2014-7844 mailx: command execution flaw<br
Security fix for CVE-2004-2771, CVE-2014-7844

Resolved Bugs
1162577 – CVE-2014-8501 cross-binutils: binutils: out-of-bounds write when parsing specially crafted PE executable [fedora-all]
1162601 – CVE-2014-8502 cross-binutils: binutils: heap overflow in objdump [fedora-all]
1162611 – CVE-2014-8503 cross-binutils: binutils: stack overflow in objdump when parsing specially crafted ihex file [fedora-all]
1162625 – CVE-2014-8504 cross-binutils: binutils: stack overflow in the SREC parser [fedora-all]
1162659 – cross-binutils: binutils: directory traversal vulnerability [fedora-all]
1162672 – cross-binutils: binutils: out of bounds memory write [fedora-all]<br
Upgrade to binutils-2.25 thus fixing a number of security bugs