Lucene search
OracleLinuxELSA-2023-4819HistoryAug 31, 2023 - 12:00 a.m.
kernel security and bug fix update
2023-08-3100:00:00
linux.oracle.com
18
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
21.4%
[3.10.0-1160.99.1.0.1.OL7]
- debug: lock down kgdb [Orabug: 34270798] {CVE-2022-21499}
[3.10.0-1160.99.1.OL7] - Update Oracle Linux certificates (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)([email protected])
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 <= 15-2.0.9
- Update oracle(kernel-sig-key) value to match new certificate (Ilya Okomin)
[3.10.0-1160.99.1] - x86/cpu/amd: Add a Zenbleed fix (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu/amd: Move the errata checking functionality up (Waiman Long) [2226841] {CVE-2023-20593}
- x86/cpu: Restore AMD’s DE_CFG MSR after resume (Waiman Long) [2226841] {CVE-2023-20593}
[3.10.0-1160.98.1] - GFS2: gfs2_dir_get_hash_table(): avoiding deferred vfree() is easy here… (Andrew Price) [2190450]
- GFS2: use kvfree() instead of open-coding it (Andrew Price) [2190450]
[3.10.0-1160.97.1] - net/sched: flower: fix possible OOB write in fl_set_geneve_opt() (Davide Caratti) [2216982] {CVE-2023-35788}
- netfilter: conntrack: re-fetch conntrack after insertion (Florian Westphal) [2188190]
- netfilter: conntrack: handle tcp challenge acks during connection reuse (Florian Westphal) [2128262]
- netfilter: conntrack: reduce timeout when receiving out-of-window fin or rst (Florian Westphal) [2128262]
- netfilter: conntrack: remove unneeded indent level (Florian Westphal) [2128262]
- netfilter: conntrack: ignore overly delayed tcp packets (Florian Westphal) [2128262]
- netfilter: conntrack: prepare tcp_in_window for ternary return value (Florian Westphal) [2128262]
- netfilter: conntrack: connection timeout after re-register (Florian Westphal) [2128262]
- netfilter: conntrack: always store window size un-scaled (Florian Westphal) [2128262]
- netfilter: conntrack: work around exceeded receive window (Florian Westphal) [2128262]
- netfilter: conntrack: avoid misleading ‘invalid’ in log message (Florian Westphal) [2128262]
- netfilter: remove BUG_ON() after skb_header_pointer() (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: re-init for syn packets only (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (Florian Westphal) [2128262]
- netfilter: conntrack: re-init state for retransmitted syn-ack (Florian Westphal) [2128262]
- netfilter: conntrack: move synack init code to helper (Florian Westphal) [2128262]
- netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (Florian Westphal) [2128262]
- netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP options (Florian Westphal) [2128262]
[3.10.0-1160.96.1] - sched/fair: Eliminate bandwidth race between throttling and distribution (Phil Auld) [2180681]
- sched/fair: Fix race between runtime distribution and assignment (Phil Auld) [2180681]
- sched/fair: Don’t assign runtime for throttled cfs_rq (Phil Auld) [2180681]
Related
nessus
nessus
CentOS 7 : kernel-rt (RHSA-2023:4821)
2024-01-09 00:00:00
RHEL 7 : kernel-rt (RHSA-2023:4821)
2023-08-29 00:00:00
Oracle Linux 7 : kernel (ELSA-2023-4819)
2023-08-31 00:00:00
redhat
redhat
(RHSA-2023:4819) Important: kernel security and bug fix update
2023-08-29 07:37:36
(RHSA-2023:4821) Important: kernel-rt security and bug fix update
2023-08-29 07:37:38
(RHSA-2023:4834) Important: kpatch-patch security update
2023-08-29 07:42:21
prion
prion
Design/Logic Flaw
2023-06-16 21:15:00
Information disclosure
2023-07-24 20:15:00
cve
cve
CVE-2023-35788
2023-06-16 21:15:09
CVE-2023-20593
2023-07-24 20:15:10
osv
osv
linux-intel-iotg, linux-intel-iotg-5.15 vulnerabilities
2023-07-07 19:40:55
linux-xilinx-zynqmp vulnerability
2023-07-18 12:22:18
openvas
openvas
Ubuntu: Security Advisory (USN-6212-1)
2023-07-10 00:00:00
Ubuntu: Security Advisory (USN-6234-1)
2023-07-19 00:00:00
Ubuntu: Security Advisory (USN-6205-1)
2023-07-07 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-06-29 00:00:00
Linux kernel (GKE) vulnerabilities
2023-07-06 00:00:00
Linux kernel (Intel IoTG) vulnerabilities
2023-07-07 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-35788 affecting package kernel 5.10.183.1-1
2023-07-28 23:16:55
CVE-2023-35788 affecting package kernel for versions less than 5.15.116.1-2
2023-07-17 16:19:05
redhatcve
redhatcve
CVE-2023-35788
2023-06-23 13:17:21
CVE-2023-20593
2023-07-25 17:19:04
ubuntucve
ubuntucve
CVE-2023-35788
2023-06-16 00:00:00
CVE-2023-20593
2023-07-24 00:00:00
f5
f5
K000137791 : Linux kernel vulnerability CVE-2023-35788
2023-12-05 00:00:00
K000135632 : AMD Ryzen vulnerability CVE-2023-20593
2023-07-27 00:00:00
debiancve
debiancve
CVE-2023-35788
2023-06-16 21:15:09
CVE-2023-20593
2023-07-24 20:15:10
githubexploit
githubexploit
Exploit for CVE-2023-20593
2023-08-01 04:33:06
cloudlinux
cloudlinux
microcode_ctl: Fix of CVE-2023-20593
2023-08-15 14:15:18
citrix
citrix
Citrix Hypervisor Security Update for CVE-2023-20593
2023-07-24 17:47:30
almalinux
almalinux
Moderate: linux-firmware security update
2023-09-12 00:00:00
Moderate: linux-firmware security update
2023-09-19 00:00:00
Important: kernel security, bug fix, and enhancement update
2023-09-19 00:00:00
veracode
veracode
Information Disclosure
2023-07-27 13:58:24
oraclelinux
oraclelinux
linux-firmware security update
2023-07-31 00:00:00
linux-firmware security update
2023-07-26 00:00:00
linux-firmware security update
2023-07-31 00:00:00
wizblog
wizblog
cloudfoundry
cloudfoundry
USN-6244-1: AMD Microcode vulnerability | Cloud Foundry
2023-10-05 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: spectre-meltdown-checker-0.46-1.fc38
2023-08-21 00:59:06
[SECURITY] Fedora 38 Update: xen-4.17.1-9.fc38
2023-08-05 01:40:22
thn
thn
mageia
mageia
Updated microcode packages fix security vulnerability
2023-07-27 01:07:49
Updated kernel packages fix security vulnerability
2023-07-27 01:07:49
debian
debian
[SECURITY] [DSA 5462-1] linux security update
2023-07-30 07:30:55
[SECURITY] [DSA 5459-1] amd64-microcode security update
2023-07-25 21:07:38
[SECURITY] [DLA 3511-1] amd64-microcode security update
2023-07-31 13:04:04
xen
xen
x86/AMD: Zenbleed
2023-07-24 16:00:00
slackware
slackware
[slackware-security] kernel-firmware
2023-07-24 22:21:22
amd
amd
Cross-Process Information Leak
2023-07-24 00:00:00
amazon
amazon
Medium: linux-firmware
2023-08-03 18:10:00
chrome
chrome
Stable Channel Update for ChromeOS / ChromeOS Flex
2023-08-01 00:00:00
centos
centos
rocky
rocky
kernel security, bug fix, and enhancement update
2023-09-26 13:26:05
kernel security, bug fix, and enhancement update
2023-10-06 22:19:15
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
21.4%
Related for ELSA-2023-4819