Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleLinuxELSA-2019-1488
HistoryJun 18, 2019 - 12:00 a.m.

kernel security and bug fix update

2019-06-1800:00:00
linux.oracle.com
119

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.974 High

EPSS

Percentile

99.9%

JSON

[2.6.32-754.15.3.OL6]

  • Update genkey [bug 25599697]
    [2.6.32-754.15.3]
  • [net] tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() (Florian Westphal) [1719614] {CVE-2019-11479}
  • [net] tcp: add tcp_min_snd_mss sysctl (Florian Westphal) [1719614] {CVE-2019-11479}
  • [net] tcp: tcp_fragment() should apply sane memory limits (Florian Westphal) [1719840] {CVE-2019-11478}
  • [net] tcp: limit payload size of sacked skbs (Florian Westphal) [1719585] {CVE-2019-11477}
  • [net] tcp: pass previous skb to tcp_shifted_skb() (Florian Westphal) [1719585] {CVE-2019-11477}
    [2.6.32-754.15.2]
  • [lib] idr: free the top layer if idr tree has the maximum height (Denys Vlasenko) [1698139] {CVE-2019-3896}
  • [lib] idr: fix top layer handling (Denys Vlasenko) [1698139] {CVE-2019-3896}
  • [lib] idr: fix backtrack logic in idr_remove_all (Denys Vlasenko) [1698139] {CVE-2019-3896}
    [2.6.32-754.15.1]
  • [x86] x86/speculation: Don’t print MDS_MSG_SMT message if mds_nosmt specified (Waiman Long) [1710081 1710517]
  • [x86] x86/spec_ctrl: Fix incorrect MDS handling in late microcode loading (Waiman Long) [1710081 1710517]
  • [x86] x86/speculation: Fix misuse of boot_cpu_has() with bug bits (Waiman Long) [1710121]
  • [x86] x86/speculation/mds: Fix documentation typo (Waiman Long) [1710517]
  • [documentation] Documentation: Correct the possible MDS sysfs values (Waiman Long) [1710517]
  • [x86] x86/mds: Add MDSUM variant to the MDS documentation (Waiman Long) [1710517]
  • [x86] x86/speculation/mds: Print SMT vulnerable on MSBDS with mitigations off (Waiman Long) [1710517]
  • [x86] x86/speculation/mds: Fix comment (Waiman Long) [1710517]
  • [x86] x86/speculation/mds: Add SMT warning message (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Add mds=full, nosmt cmdline option (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation: Remove redundant arch_smt_update() invocation (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/spec_ctrl: Add debugfs x86/smt_present file (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/spec_ctrl: Update MDS mitigation status after late microcode load (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [documentation] Documentation: Add MDS vulnerability documentation (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [documentation] Documentation: Move L1TF to separate directory (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Add mitigation mode VMWERV (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Add sysfs reporting for MDS (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Add mitigation control for MDS (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Conditionally clear CPU buffers on idle entry (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [kvm] x86/kvm/vmx: Add MDS protection when L1D Flush is not active (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Clear CPU buffers on exit to user (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Add mds_clear_cpu_buffers() (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [kvm] x86/kvm: Expose X86_FEATURE_MD_CLEAR to guests (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Add BUG_MSBDS_ONLY (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation/mds: Add basic bug infrastructure for MDS (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation: Consolidate CPU whitelists (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/l1tf: Show actual SMT state (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation: Simplify sysfs report of VMX L1TF vulnerability (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/cpu: Sanitize FAM6_ATOM naming (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [kernel] sched/smt: Provide sched_smt_active() (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/speculation: Provide arch_smt_update() (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
  • [x86] x86/mm: Fix compilation warning in pgtable_types.h (Waiman Long) [1692386 1692387 1692388] {CVE-2018-12126 CVE-2018-12127 CVE-2018-12130}
OSVersionArchitecturePackageVersionFilename
oracle linux6srckernel< 2.6.32-754.15.3.el6kernel-2.6.32-754.15.3.el6.src.rpm
oracle linux6i686kernel< 2.6.32-754.15.3.el6kernel-2.6.32-754.15.3.el6.i686.rpm
oracle linux6noarchkernel-abi-whitelists< 2.6.32-754.15.3.el6kernel-abi-whitelists-2.6.32-754.15.3.el6.noarch.rpm
oracle linux6i686kernel-debug< 2.6.32-754.15.3.el6kernel-debug-2.6.32-754.15.3.el6.i686.rpm
oracle linux6i686kernel-debug-devel< 2.6.32-754.15.3.el6kernel-debug-devel-2.6.32-754.15.3.el6.i686.rpm
oracle linux6i686kernel-devel< 2.6.32-754.15.3.el6kernel-devel-2.6.32-754.15.3.el6.i686.rpm
oracle linux6noarchkernel-doc< 2.6.32-754.15.3.el6kernel-doc-2.6.32-754.15.3.el6.noarch.rpm
oracle linux6noarchkernel-firmware< 2.6.32-754.15.3.el6kernel-firmware-2.6.32-754.15.3.el6.noarch.rpm
oracle linux6i686kernel-headers< 2.6.32-754.15.3.el6kernel-headers-2.6.32-754.15.3.el6.i686.rpm
oracle linux6i686perf< 2.6.32-754.15.3.el6perf-2.6.32-754.15.3.el6.i686.rpm
Rows per page:
1-10 of 231

Related

ibm 19
nessus 83
virtuozzo 4
openvas 20
centos 4
redhat 18
oraclelinux 11
fedora 3
citrix 2
archlinux 4
amazon 2
checkpoint_security 1
fortinet 1
attackerkb 1
myhack58 3
mscve 1
arista 1
threatpost 2
cert 1
zdt 1
mageia 1
ics 1
symantec 1
paloalto 1
vmware 1
ubuntu 5
osv 3
intel 1
thn 1
suse 2
ibm
ibm
Security Bulletin: IBM Netezza Host Management is affected by the vulnerabilities known as Intel Microarchitectural Data Sampling (MDS) and other Kernel vulnerabilities
2019-10-18 03:36:34
Security Bulletin: IBM Security QRadar Packet Capture is vulnerable to Denial of Service (CVE-2019-11477, CVE-2019-11478, CVE-2019-11479, CVE-2019-3896)
2019-09-17 17:30:07
Security Bulletin: IBM Security Guardium is affected by a TCP SACK PANIC -Kernel vulnerability
2020-10-06 20:36:57
nessus
nessus
RHEL 6 : kernel (RHSA-2019:1490) (SACK Panic) (SACK Slowness)
2019-06-18 00:00:00
CentOS 6 : kernel (CESA-2019:1488) (SACK Panic) (SACK Slowness)
2019-06-19 00:00:00
Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-052)
2019-06-24 00:00:00
virtuozzo
virtuozzo
Important kernel security update: New kernel 2.6.32-042stab139.1; Virtuozzo 6.0 Update 12 Hotfix 43 (6.0.12-3743)
2019-06-20 00:00:00
Important kernel security update: New kernel 2.6.32-042stab139.1 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0
2019-06-20 00:00:00
Kernel update: Virtuozzo ReadyKernel patch 82.2 for Virtuozzo 7.0.8 HF1 and 7.0.10 HF1
2019-06-27 00:00:00
openvas
openvas
CentOS Update for kernel CESA-2019:1488 centos6
2019-06-19 00:00:00
Greenbone OS - Kernel Denial of Service Vulnerabilities (Jun 2019)
2019-06-21 00:00:00
Fedora Update for kernel-headers FEDORA-2019-6c3d89b3d0
2019-06-19 00:00:00
centos
centos
kernel, perf, python security update
2019-06-19 00:19:05
bpftool, kernel, perf, python security update
2019-06-19 00:21:01
libvirt security update
2019-05-15 15:41:00
redhat
redhat
(RHSA-2019:1490) Important: kernel security and bug fix update
2019-06-17 19:12:38
(RHSA-2019:1489) Important: kernel security and bug fix update
2019-06-17 19:12:30
(RHSA-2019:1488) Important: kernel security and bug fix update
2019-06-17 17:31:37
oraclelinux
oraclelinux
kernel security and bug fix update
2019-07-30 00:00:00
Unbreakable Enterprise kernel security update
2019-06-17 00:00:00
Unbreakable Enterprise kernel security update
2019-06-17 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-headers-5.1.11-200.fc29
2019-06-18 21:19:41
[SECURITY] Fedora 30 Update: kernel-headers-5.1.11-300.fc30
2019-06-18 18:15:45
[SECURITY] Fedora 30 Update: qemu-3.1.0-8.fc30
2019-05-17 01:08:38
citrix
citrix
Citrix SD-WAN Security Update
2019-09-11 04:00:00
Citrix Hypervisor Security Update.
2019-07-08 04:00:00
archlinux
archlinux
[ASA-201906-13] linux: denial of service
2019-06-18 00:00:00
[ASA-201906-12] linux-hardened: denial of service
2019-06-17 00:00:00
[ASA-201906-15] linux-zen: denial of service
2019-06-18 00:00:00
amazon
amazon
Critical: kernel
2019-06-13 21:37:00
Critical: kernel
2019-06-13 22:11:00
checkpoint_security
checkpoint_security
Check Point response to TCP SACK PANIC - Linux Kernel vulnerabilities - CVE-2019-11477, CVE-2019-11478 and CVE-2019-11479
2019-06-18 05:16:31
fortinet
fortinet
TCP SACK panic attack- Linux Kernel Vulnerabilities- CVE-2019-11477, CVE-2019-11478 & CVE-2019-11479
2019-11-29 00:00:00
attackerkb
attackerkb
TCP SACK PANIC
2020-02-13 00:00:00
myhack58
myhack58
CVE-2019-11477: Linux kernel TCP SACK mechanism remote Dos early warning analysis-vulnerability warning-the black bar safety net
2019-06-19 00:00:00
Zombieload: Intel CPU exposure of a new side channel attack-exploit warning-the black bar safety net
2019-05-15 00:00:00
Intel official for 5 on 15, the aeration out of the CPU side channel vulnerabilities“ZombieLoad”detailed technical analysis on-the vulnerability warning-the black bar safety net
2019-05-20 00:00:00
mscve
mscve
Linux Kernel TCP SACK Denial of Service Vulnerability
2019-06-28 07:00:00
arista
arista
Security Advisory 0041
2019-07-02 00:00:00
threatpost
threatpost
Linux Kernel Bug Knocks PCs, IoT Gadgets and More Offline
2019-06-18 18:43:50
Intel CPUs Impacted By New Class of Spectre-Like Attacks
2019-05-14 18:01:49
cert
cert
Multiple TCP Selective Acknowledgement (SACK) and Maximum Segment Size (MSS) networking vulnerabilities may cause denial-of-service conditions in Linux and FreeBSD kernels
2019-06-20 00:00:00
zdt
zdt
Linux / FreeBSD TCP-Based Denial Of Service Vulnerability
2019-06-18 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerability
2019-06-21 04:07:01
ics
ics
Siemens Industrial Products (Update R)
2022-05-12 12:00:00
symantec
symantec
Linux Kernel Vulnerabilities May-June 2019
2019-09-05 08:00:00
paloalto
paloalto
Information about TCP SACK Panic Findings in PAN-OS
2019-06-27 00:00:00
vmware
vmware
VMware product updates address Linux kernel vulnerabilities in TCP Selective Acknowledgement (SACK) (CVE-2019-11477, CVE-2019-11478)
2019-07-02 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2019-06-17 00:00:00
Linux kernel vulnerabilities
2019-06-17 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2019-05-15 00:00:00
osv
osv
linux-4.9 - security update
2019-05-15 00:00:00
intel-microcode - security update
2019-05-15 00:00:00
intel-microcode - security update
2019-06-20 00:00:00
intel
intel
Microarchitectural Data Sampling Advisory
2021-05-11 00:00:00
thn
thn
New Class of CPU Flaws Affect Almost Every Intel Processor Since 2011
2019-05-14 20:20:00
suse
suse
Security update for ucode-intel (important)
2019-05-28 00:00:00
Security update for ucode-intel (important)
2019-07-24 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.974 High

EPSS

Percentile

99.9%

JSON
Related for ELSA-2019-1488
ibm19nessus83virtuozzo4openvas20centos4redhat18oraclelinux11fedora3citrix2archlinux4amazon2checkpoint_security1fortinet1attackerkb1myhack583mscve1arista1threatpost2cert1zdt1mageia1ics1symantec1paloalto1vmware1ubuntu5osv3intel1thn1suse2