Lucene search
OracleLinuxELSA-2019-3832HistoryNov 22, 2019 - 12:00 a.m.
kernel security update
2019-11-2200:00:00
linux.oracle.com
68
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
[4.18.0-147.0.2_1.OL8]
- Oracle Linux certificates (Alexey Petrenko)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
[4.18.0-147.0.2_1] - [drm] drm/i915: Lower RM timeout to avoid DSI hard hangs (Dave Airlie) [1766056 1756805] {CVE-2019-0154}
- [drm] drm/i915/gen8+: Add RC6 CTX corruption WA (Dave Airlie) [1766056 1756805] {CVE-2019-0154}
- [drm] drm/i915/cmdparser: Ignore Length operands during command matching (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915/cmdparser: Add support for backward jumps (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915/cmdparser: Use explicit goto for error paths (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915: Add gen9 BCS cmdparsing (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915: Allow parsing of unsized batches (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915: Support ro ppgtt mapped cmdparser shadow buffers (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915: Add support for mandatory cmdparsing (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915: Remove Master tables from cmdparser (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915: Disable Secure Batches for gen6+ (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [drm] drm/i915: Rename gen7 cmdparser tables (Dave Airlie) [1756871 1756873] {CVE-2019-0155}
- [x86] x86/tsx: Add config options to set tsx=on|off|auto (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [documentation] x86/speculation/taa: Add documentation for TSX Async Abort (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [x86] x86/tsx: Add ‘auto’ option to the tsx= cmdline parameter (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [base] x86/speculation/taa: Add sysfs reporting for TSX Async Abort (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [x86] x86/speculation/taa: Add mitigation for TSX Async Abort (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [x86] x86/cpu: Add a ‘tsx=’ cmdline option with TSX disabled by default (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [x86] x86/cpu: Add a helper function x86_read_arch_cap_msr() (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [x86] x86/msr: Add the IA32_TSX_CTRL MSR (Josh Poimboeuf) [1766550 1766551] {CVE-2019-11135}
- [documentation] Documentation: Add ITLB_MULTIHIT documentation (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] kvm: x86: mmu: Recovery of shattered NX large pages (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [virt] kvm: Add helper function for creating VM worker threads (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] kvm: mmu: ITLB_MULTIHIT mitigation (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kernel] cpu/speculation: Uninline and export CPU mitigations helpers (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [x86] x86/cpu: Add Tremont to the cpu vulnerability whitelist (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [x86] x86: Add ITLB_MULTIHIT bug infrastructure (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] KVM: vmx, svm: always run with EFER.NXE=1 when shadow paging is active (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] KVM: x86: add tracepoints around __direct_map and FNAME(fetch) (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] KVM: x86: change kvm_mmu_page_get_gfn BUG_ON to WARN_ON (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] KVM: x86: remove now unneeded hugepage gfn adjustment (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] KVM: x86: make FNAME(fetch) and __direct_map more similar (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] kvm: mmu: Do not release the page inside mmu_set_spte() (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] kvm: Convert kvm_lock to a mutex (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] KVM: x86/mmu: Reintroduce fast invalidate/zap for flushing memslot (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] Revert ‘KVM: x86/mmu: Zap only the relevant pages when removing a memslot’ (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [kvm] kvm: x86, powerpc: do not allow clearing largepages debugfs entry (Paolo Bonzini) [1698416 1690344] {CVE-2018-12207}
- [zstream] switch to zstream (Frantisek Hrbata)
Related
osv
osv
linux-4.9 - security update
2019-11-12 00:00:00
linux - security update
2019-11-12 00:00:00
linux - security update
2019-11-12 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: kernel-headers-5.3.11-200.fc30
2019-11-13 06:28:06
[SECURITY] Fedora 30 Update: kernel-tools-5.3.11-200.fc30
2019-11-13 06:28:06
[SECURITY] Fedora 30 Update: microcode_ctl-2.1-33.fc30
2019-11-13 06:28:06
oraclelinux
oraclelinux
kernel security update
2019-11-14 00:00:00
kernel security update
2019-11-14 00:00:00
kernel security and bug fix update
2019-11-13 00:00:00
openvas
openvas
Fedora Update for microcode_ctl FEDORA-2019-1689d3fe07
2019-11-14 00:00:00
Fedora Update for kernel-headers FEDORA-2019-1689d3fe07
2019-11-14 00:00:00
Fedora Update for kernel-tools FEDORA-2019-1689d3fe07
2019-11-14 00:00:00
redhat
redhat
(RHSA-2019:3841) Important: kernel security update
2019-11-12 19:44:24
(RHSA-2019:3840) Important: kernel security update
2019-11-12 19:36:13
(RHSA-2019:3832) Important: kernel security update
2019-11-12 18:22:16
nessus
nessus
RHEL 7 : kernel (RHSA-2019:3841)
2019-11-13 00:00:00
Oracle Linux 8 : kernel (ELSA-2019-3832)
2019-11-25 00:00:00
RHEL 7 : kernel (RHSA-2019:3839)
2019-11-13 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2019-11-20 00:16:53
Updated microcode packages fix security vulnerabilities
2019-11-20 00:16:53
Updated microcode packages fix security vulnerabilities
2019-12-26 01:57:53
slackware
slackware
[slackware-security] Slackware 14.2 kernel
2019-11-16 20:57:46
centos
centos
bpftool, kernel, perf, python security update
2019-11-14 19:41:10
kernel, perf, python security update
2019-11-14 01:19:32
virtuozzo
virtuozzo
suse
suse
Security update for spectre-meltdown-checker (moderate)
2019-12-31 00:00:00
Security update for the Linux Kernel (important)
2019-11-14 00:00:00
Security update for the Linux Kernel (important)
2019-11-14 00:00:00
vmware
vmware
citrix
citrix
Citrix Hypervisor Security Update
2019-11-12 05:00:00
f5
f5
K73659122 : GPU vulnerabilities CVE-2019-0154 and CVE-2019-0155
2019-11-20 00:00:00
K17269881 : Intel MCE vulnerability CVE-2018-12207
2019-12-04 00:00:00
K02912734 : Intel CPU vulnerability CVE-2019-11135
2019-11-15 00:00:00
mskb
mskb
November 12, 2019—KB4525245 (OS Build 15063.2172)
2019-11-12 00:00:00
debian
debian
[SECURITY] [DLA 1990-1] linux-4.9 security update
2019-11-13 22:51:44
[SECURITY] [DSA 4564-1] linux security update
2019-11-12 19:17:26
[SECURITY] [DSA 4564-1] linux security update
2019-11-12 19:17:26
ubuntu
ubuntu
Linux kernel vulnerability
2019-11-13 00:00:00
Linux kernel vulnerabilities
2019-11-13 00:00:00
Linux kernel (Xenial HWE) vulnerabilities
2019-11-13 00:00:00
cloudfoundry
cloudfoundry
USN-4185-3: Linux kernel vulnerability and regression | Cloud Foundry
2019-11-21 00:00:00
USN-4185-1: Linux kernel vulnerabilities | Cloud Foundry
2019-11-21 00:00:00
xen
xen
x86: Machine Check Error on Page Size Change DoS
2019-11-12 17:53:00
cve
cve
symantec
symantec
intel
intel
2019.2 IPU – Intel® Processor Graphics Update Advisory
2019-11-12 00:00:00
2019.2 IPU – Intel® Processor Machine Check Error Advisory
2021-05-11 00:00:00
2019.2 IPU – TSX Asynchronous Abort Advisory
2021-05-11 00:00:00
prion
prion
Improper access control
2019-11-14 19:15:00
Input validation
2019-11-14 20:15:00
Design/Logic Flaw
2019-11-14 19:15:00
redhatcve
redhatcve
ubuntucve
ubuntucve
debiancve
debiancve
veracode
veracode
Denial Of Service (DoS)
2019-11-13 00:19:59
Denial Of Service (DoS)
2019-11-13 00:19:59
freebsd
freebsd
FreeBSD -- Machine Check Exception on Page Size Change
2019-11-14 00:00:00
amazon
amazon
Important: kernel
2019-11-19 17:31:00
Important: kernel
2019-11-19 17:52:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-19:25.mcepsc
2019-11-12 00:00:00
mscve
mscve
Windows Denial of Service Vulnerability
2019-11-12 08:00:00
alpinelinux
alpinelinux
CVE-2019-11135
2019-11-14 19:15:00
ibm
ibm
photon
photon
thn
thn
New ZombieLoad v2 Attack Affects Intel's Latest Cascade Lake CPUs
2019-11-13 15:46:00
almalinux
almalinux
Moderate: virt:rhel security update
2020-01-29 13:42:54
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related for ELSA-2019-3832