Lucene search
OracleLinuxELSA-2020-5756HistoryJul 14, 2020 - 12:00 a.m.
Unbreakable Enterprise kernel security update
2020-07-1400:00:00
linux.oracle.com
83
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
[5.4.17-2011.4.4uek]
- KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path (Sean Christopherson) [Orabug: 31536904]
[5.4.17-2011.4.3uek] - NFS: replace cross device check in copy_file_range (Olga Kornievskaia) [Orabug: 31507615]
- rds: Fix potential use after free in rds_ib_inc_free (Hans Westgaard Ry) [Orabug: 31504052]
- perf/smmuv3: Allow sharing MMIO registers with the SMMU driver (Jean-Philippe Brucker) [Orabug: 31422283]
- perf/smmuv3: use devm_platform_ioremap_resource() to simplify code (YueHaibing) [Orabug: 31422283]
- ACPI/IORT: Fix PMCG node single ID mapping handling (Tuan Phan) [Orabug: 31422283]
- uek-rpm: Increase CONFIG_NODES_SHIFT from 2 to 3 (Dave Kleikamp) [Orabug: 31422283]
- perf: avoid breaking KABI by reusing enum (Dave Kleikamp) [Orabug: 31422283]
- uek-rpm: update aarch64 configs for Ampere eMAG2 (Dave Kleikamp) [Orabug: 31422283]
- perf: arm_dmc620: Update ACPI ID. (Tuan Phan) [Orabug: 31422283]
- perf: arm_dsu: Support ACPI mode. (Tuan Phan) [Orabug: 31422283]
- perf: arm_dsu: Allow IRQ to be shared among devices. (Tuan Phan) [Orabug: 31422283]
- perf: arm_cmn: improve and make it work on 2P. (Tuan Phan) [Orabug: 31422283]
- Perf: arm-cmn: Allow irq to be shared. (Tuan Phan) [Orabug: 31422283]
- BACKPORT: arm64: acpi: Make apei_claim_sea() synchronise with APEI’s irq work (James Morse) [Orabug: 31422283]
- BACKPORT: ACPI / APEI: Kick the memory_failure() queue for synchronous errors (James Morse) [Orabug: 31422283]
- BACKPORT: mm/memory-failure: Add memory_failure_queue_kick() (James Morse) [Orabug: 31422283]
- perf: Add ARM DMC-620 PMU driver. (Tuan Phan) [Orabug: 31422283]
- BACKPORT: WIP: perf/arm-cmn: Add ACPI support (Robin Murphy) [Orabug: 31422283]
- BACKPORT: WIP: perf: Add Arm CMN-600 PMU driver (Robin Murphy) [Orabug: 31422283]
- BACKPORT: perf: Add Arm CMN-600 DT binding (Robin Murphy) [Orabug: 31422283]
- net/rds: NULL pointer de-reference in rds_ib_add_one() (Ka-Cheong Poon) [Orabug: 30984983]
- mm: Fix mremap not considering huge pmd devmap (Fan Yang) [Orabug: 31452396] {CVE-2020-10757} {CVE-2020-10757}
[5.4.17-2011.4.2uek] - UEK6 compiler warning for /net/rds/ib.c (Sharath Srinivasan) [Orabug: 31489529]
- UEK6 compiler warning for /net/rds/send.c (Sharath Srinivasan) [Orabug: 31489529]
- Fix up two build warnings in the UEK6 GA tree (Jack Vogel) [Orabug: 31489333]
- drivers/scsi/scsi_scan.c Fix the compiler warning. (Sudhakar Panneerselvam) [Orabug: 31489322]
- x86/retpoline: Fix retpoline unwind (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- x86: Change {JMP,CALL}_NOSPEC argument (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- x86: Simplify retpoline declaration (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- x86/speculation: Change STUFF_RSB to work with objtool (Alexandre Chartre) [Orabug: 31077463] [Orabug: 31489320]
- x86/speculation: Change FILL_RETURN_BUFFER to work with objtool (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- x86/unwind: Introduce UNWIND_HINT_EMPTY_ASM (Alexandre Chartre) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Add support for intra-function calls (Alexandre Chartre) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Remove INSN_STACK (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Make handle_insn_ops() unconditional (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Rework allocating stack_ops on decode (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- objtool: UNWIND_HINT_RET_OFFSET should not check registers (Alexandre Chartre) [Orabug: 31077463] [Orabug: 31489320]
- objtool: is_fentry_call() crashes if call has no destination (Alexandre Chartre) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Uniquely identify alternative instruction groups (Alexandre Chartre) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Remove check preventing branches within alternative (Julien Thierry) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Introduce HINT_RET_OFFSET (Peter Zijlstra) [Orabug: 31077463] [Orabug: 31489320]
- objtool: Support multiple stack_op per instruction (Julien Thierry) [Orabug: 31077463] [Orabug: 31489320]
}
Related
nessus
nessus
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2020-5756)
2020-07-15 00:00:00
Fedora 30 : kernel (2020-5a69decc0c)
2020-05-20 00:00:00
Fedora 31 : kernel (2020-c6b9fff7f8)
2020-05-20 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: kernel-5.6.13-100.fc30
2020-05-20 03:48:40
[SECURITY] Fedora 31 Update: kernel-5.6.13-200.fc31
2020-05-20 03:16:44
[SECURITY] Fedora 32 Update: kernel-5.6.18-300.fc32
2020-06-15 01:58:35
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2020-5a69decc0c)
2020-05-29 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2020-c6b9fff7f8)
2020-05-29 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2020-e47d28bc2b)
2020-06-23 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerability
2020-05-24 21:04:47
Updated kernel-linus packages fix security vulnerabilities
2020-05-24 21:04:47
Updated kernel packages fix security vulnerabilities
2020-04-03 01:48:49
oraclelinux
oraclelinux
kernel security and bug fix update
2020-06-10 00:00:00
kernel security and bug fix update
2020-06-10 00:00:00
kernel security update
2020-05-13 00:00:00
prion
prion
Double free
2019-12-12 20:15:00
Design/Logic Flaw
2020-05-05 06:15:00
Design/Logic Flaw
2020-06-09 13:15:00
debiancve
debiancve
symantec
symantec
Linux Kernel CVE-2019-19769 Local Denial of Service Vulnerability
2019-12-12 00:00:00
osv
osv
KASAN: use-after-free Read in locks_delete_block
2020-09-01 00:00:00
linux - security update
2020-06-09 00:00:00
CVE-2020-10711
2020-05-22 15:15:11
ubuntucve
ubuntucve
redhatcve
redhatcve
cve
cve
debian
debian
[SECURITY] [DSA 4699-1] linux security update
2020-06-09 19:44:24
[SECURITY] [DSA 4699-1] linux security update
2020-06-09 19:44:24
f5
f5
K05617914 : Linux kernel vulnerability CVE-2020-10757
2020-10-13 00:00:00
K02354867 : Kernel vulnerability CVE-2020-10711
2020-09-22 00:00:00
K25920352 : Intel CPU SRBDS side-channel vulnerability CVE-2020-0543
2020-09-30 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-12655 affecting package kernel 5.4.91-6
2021-04-06 23:51:14
CVE-2020-12770 affecting package kernel 5.4.91-6
2021-04-06 23:51:14
CVE-2020-10757 affecting package kernel 5.4.91-6
2021-04-06 23:51:14
veracode
veracode
Denial Of Service (DoS)
2020-11-05 03:10:03
Privilege Escalation
2020-07-22 03:26:54
Denial Of Service (DoS)
2020-11-05 03:10:00
amazon
amazon
Important: kernel
2020-05-11 20:37:00
Important: kernel
2020-06-23 06:02:00
redhat
redhat
(RHSA-2020:3598) Important: kernel security and bug fix update
2020-09-01 15:23:11
(RHSA-2020:2103) Important: kernel security update
2020-05-12 13:42:40
(RHSA-2020:2429) Important: kernel security and bug fix update
2020-06-09 18:18:09
centos
centos
kernel, perf, python security update
2020-05-21 14:25:29
kernel, perf, python security update
2020-06-10 17:19:46
bpftool, kernel, perf, python security update
2020-06-23 19:56:05
ubuntu
ubuntu
Linux kernel vulnerabilities
2020-07-06 00:00:00
Linux kernel vulnerabilities
2020-07-06 00:00:00
Linux kernel vulnerabilities
2020-07-02 00:00:00
ibm
ibm
suse
suse
Security update for xen (important)
2020-06-16 00:00:00
freebsd
freebsd
Intel CPU issues
2020-06-09 00:00:00
lenovo
lenovo
Intel Special Register Buffer Data Sampling Advisory - Lenovo Support US
2020-06-04 16:44:25
Intel Special Register Buffer Data Sampling Advisory - Lenovo Support NL
2020-06-04 16:44:25
xen
xen
Special Register Buffer speculative side channel
2020-06-09 16:33:00
attackerkb
attackerkb
CVE-2020-0543 CROSSTALK
2020-06-15 00:00:00
ics
ics
Siemens Industrial Products (Update F)
2022-03-10 12:00:00
intel
intel
Special Register Buffer Data Sampling Advisory
2020-06-12 00:00:00
virtuozzo
virtuozzo
citrix
citrix
Citrix Hypervisor Security Updates
2020-06-09 04:00:00
thn
thn
Intel CPUs Vulnerable to New 'SGAxe' and 'CrossTalk' Side-Channel Attacks
2020-06-10 12:59:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
Related for ELSA-2020-5756