Gentoo FoundationMGASA-2019-0388Updated kernel packages fix security vulnerability
6.1 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
5.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:P/A:C
0.001 Low
EPSS
Percentile
27.6%
This update provides an update to 5.4 series kernels, currently based on upstream 5.4.2, adding support for new hardware and features, and fixing at least the following security issue: KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332) WireGuard has been updated to 0.0.20191205. xtables-addons have been updated to 3.7 for kernel 5.4 support. For other fixes and features in this update, see the referenced changelogs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | kernel | < 5.4.2-1 | kernel-5.4.2-1.mga7 |
| Mageia | 7 | noarch | wireguard-tools | < 0.0.20191205-1 | wireguard-tools-0.0.20191205-1.mga7 |
| Mageia | 7 | noarch | kmod-virtualbox | < 6.0.14-10 | kmod-virtualbox-6.0.14-10.mga7 |
| Mageia | 7 | noarch | xtables-addons | < 3.7-1 | xtables-addons-3.7-1.mga7 |
| Mageia | 7 | noarch | kmod-xtables-addons | < 3.7-1 | kmod-xtables-addons-3.7-1.mga7 |
| Mageia | 7 | noarch | ldetect-lst | < 0.6.7-1 | ldetect-lst-0.6.7-1.mga7 |
Related
6.1 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
5.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:P/A:C
0.001 Low
EPSS
Percentile
27.6%