257 matches found
CVE-2021-35477
In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled...
CVE-2021-35477
In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled...
UBUNTU-CVE-2021-35477
In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an attacker-controlled...
CVE-2021-34556
CVE-2021-34556 affects the Linux kernel up to 5.13.7. An unprivileged eBPF (BPF) program can leak sensitive kernel memory via a Speculative Store Bypass side-channel, because the protection mechanism did not account for uninitialized memory on the BPF stack. The root cause is information disclosu...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:2352-1 Rating: important References: 1152489 1153274 1154353 1155518 1164648 1176447 1176774 1176919 1177028 1178134 1182470 1184212 1184685 1185486 1185675 1185677 1186206 1186666 1186949 1187171...
SUSE: Security Advisory (SUSE-SU-2021:2303-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15 Security Update : kernel (SUSE-SU-2021:2305-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2305-1 advisory. - In hidinputchangeresolutionmultipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead...
OPENSUSE-SU-2021:2305-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. bsc1186666 -...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:2305-1 Rating: important References: 1152489 1153274 1154353 1155518 1164648 1176447 1176774 1176919 1177028 1178134 1182470 1183682 1184212 1184685 1185486 1185675 1185677 1186071 1186206 1186666...
MGASA-2021-0296 Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.10.46 and fixes at least the following security issues: In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted e.g., because of type confusion and consequently an unprivileged BPF program can read arbitrary memory...
MGASA-2021-0295 Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update is based on upstream 5.10.46 and fixes at least the following security issues: In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted e.g., because of type confusion and consequently an unprivileged BPF program can read arbitrary memory...
CVE-2021-33624
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted e.g., because of type confusion and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db...
CVE-2021-33624
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted e.g., because of type confusion and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db...
CVE-2021-33624
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted e.g., because of type confusion and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db...
Linux Kernel Information Disclosure Vulnerability (CNVD-2021-60528)
Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux Kernel is vulnerable to information leakage, which can be exploited by attackers to obtain the contents of arbitrary kernel memory information by executing a specially crafted BPF program...
Remote Code Execution (RCE)
Blueman is vulnerable to remote code execution RCE. On systems with ISC DHCP client dhclient, attackers can pass arguments to ip link with the interface name that can e.g. be used to bring down an interface or add an arbitrary XDP/BPF program. On systems with dhcpcd and without ISC DHCP client,...
[ASA-201811-1] linux: denial of service
Arch Linux Security Advisory ASA-201811-1 ========================================= Severity: Low Date : 2018-11-01 CVE-ID : CVE-2018-18445 Package : linux Type : denial of service Remote : No Link : https://security.archlinux.org/AVG-784 Summary ======= The package linux before version...