Fedora is responding to a spike in Linux Kernel security vulnerabilities (CopyFail, DirtyFrag, Fragnesia) that allow privilege escalation from standard user to root. The post explains how Fedora maintainers track CVEs via mailing lists and Red Hat Product Security, use tools like Anitya and Packit to automate package updates, and apply standalone patches when upstream fixes aren't yet merged. Users are advised to run `dnf update --security` regularly, use dnf-automatic for automated patching, and check `dnf changelog` to verify patches even when version numbers haven't changed.
Sort: