Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2020-0156
HistoryApr 03, 2020 - 1:48 a.m.

Updated kernel packages fix security vulnerabilities

2020-04-0301:48:49
Gentoo Foundation
advisories.mageia.org
41

0.001 Low

EPSS

Percentile

35.9%

JSON

This update is based on upstream 5.5.14 and fixes at least the following security vulnerabilities: In the Linux kernel 5.3.10, there is a use-after-free (read) in the perf_trace_lock_acquire function (related to include/trace/events/lock.h) (CVE-2019-19769). Manfred Paul discovered that the bpf verifier in the Linux kernel did not properly calculate register bounds for certain operations. A local attacker could use this to expose sensitive information (kernel memory) or gain administrative privileges (CVE-2020-8835). Security fixes and hardenings to the mac00211 layer to prevent leaking keys and frames. Other notable changes in this update: - WireGuard kernel module has been updated to v1.0.20200330 and the tools to v1.0.20200319. - exfat-utils has been rebuilt in core (was previously in tainted) as we now also ship the official upstream exfat driver. For other upstream fixes in this update, see the referenced changelogs.

Related

openvas 23
nessus 18
fedora 9
prion 2
debiancve 2
ubuntucve 2
symantec 1
osv 1
cvelist 2
redhatcve 3
cve 2
f5 1
githubexploit 4
archlinux 3
ubuntu 4
zdi 1
attackerkb 2
zdt 1
metasploit 1
packetstorm 2
mageia 1
oraclelinux 2
suse 4
ibm 1
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2020-73c00eda1c)
2020-04-19 00:00:00
Mageia: Security Advisory (MGASA-2020-0156)
2022-01-28 00:00:00
Fedora: Security Advisory for kernel-headers (FEDORA-2020-73c00eda1c)
2020-04-19 00:00:00
nessus
nessus
Fedora 30 : kernel / kernel-headers / kernel-tools (2020-73c00eda1c)
2020-04-16 00:00:00
Fedora 31 : kernel (2020-76966b3419)
2020-03-30 00:00:00
Fedora 31 : kernel / kernel-headers / kernel-tools (2020-666f3b1ac3)
2020-04-07 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: kernel-tools-5.5.16-100.fc30
2020-04-15 21:03:00
[SECURITY] Fedora 30 Update: kernel-5.5.16-100.fc30
2020-04-15 21:02:58
[SECURITY] Fedora 30 Update: kernel-headers-5.5.16-100.fc30
2020-04-15 21:02:59
prion
prion
Double free
2019-12-12 20:15:00
Out-of-bounds
2020-04-02 18:15:00
debiancve
debiancve
CVE-2019-19769
2019-12-12 20:15:00
CVE-2020-8835
2020-04-02 18:15:00
ubuntucve
ubuntucve
CVE-2019-19769
2019-12-12 00:00:00
CVE-2020-8835
2020-03-30 00:00:00
symantec
symantec
Linux Kernel CVE-2019-19769 Local Denial of Service Vulnerability
2019-12-12 00:00:00
osv
osv
KASAN: use-after-free Read in locks_delete_block
2020-09-01 00:00:00
cvelist
cvelist
CVE-2019-19769
2019-12-12 19:39:20
CVE-2020-8835 Linux kernel bpf verifier vulnerability
2020-03-30 00:00:00
redhatcve
redhatcve
CVE-2019-19769
2019-12-23 18:08:47
CVE-2020-8835
2020-04-04 17:33:29
CVE-2021-31440
2021-05-24 15:13:24
cve
cve
CVE-2019-19769
2019-12-12 20:15:00
CVE-2020-8835
2020-04-02 18:15:00
f5
f5
K18004724 : Linux kernel vulnerability CVE-2020-8835
2020-05-08 00:00:00
githubexploit
githubexploit
Exploit for Out-of-bounds Read in Linux Linux Kernel
2020-10-18 03:17:58
Exploit for CVE-2020-8835
2020-09-16 19:38:43
Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Linux Linux Kernel
2020-11-09 11:58:34
archlinux
archlinux
[ASA-202004-2] linux-hardened: privilege escalation
2020-04-01 00:00:00
[ASA-202004-3] linux-lts: privilege escalation
2020-04-01 00:00:00
[ASA-202004-4] linux: privilege escalation
2020-04-01 00:00:00
ubuntu
ubuntu
Linux kernel vulnerability
2020-03-30 00:00:00
Linux kernel vulnerabilities
2020-05-19 00:00:00
Linux kernel regression
2020-05-28 00:00:00
zdi
zdi
(Pwn2Own) Linux Kernel eBPF Improper Input Validation Privilege Escalation Vulnerability
2020-03-31 00:00:00
attackerkb
attackerkb
CVE-2020-8835
2020-03-30 00:00:00
CVE-2021-33909
2021-07-20 00:00:00
zdt
zdt
Linux eBPF ALU32 32-bit Invalid Bounds Tracking Local Privilege Escalation Exploit
2021-09-01 00:00:00
metasploit
metasploit
Linux eBPF ALU32 32-bit Invalid Bounds Tracking LPE
2021-08-17 23:01:14
packetstorm
packetstorm
Linux eBPF ALU32 32-bit Invalid Bounds Tracking Local Privilege Escalation
2021-09-01 00:00:00
Sequoia: A Deep Root In Linux's Filesystem Layer
2021-07-21 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2020-04-04 01:53:32
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2020-07-14 00:00:00
Unbreakable Enterprise kernel security update
2020-04-27 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2021-04-10 00:00:00
Security update for the Linux Kernel (important)
2021-05-22 00:00:00
Security update for the Linux Kernel (important)
2021-07-11 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus
2020-04-01 00:35:26

0.001 Low

EPSS

Percentile

35.9%

JSON
Related for MGASA-2020-0156
openvas23nessus18fedora9prion2debiancve2ubuntucve2symantec1osv1cvelist2redhatcve3cve2f51githubexploit4archlinux3ubuntu4zdi1attackerkb2zdt1metasploit1packetstorm2mageia1oraclelinux2suse4ibm1