Photon OS 3.0: Linux PHSA-2024-3.0-0744

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0744. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

SUSE-SU-2024:2493-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47145: btrfs: do not BUGON in linktofixupdir bsc1222005. - CVE-2021-47201: iavf: free qvectors before queues in iavfdisablevf bsc1222792. - CVE-2021-4727...

[SECURITY] [DSA 5730-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5730-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 15, 2024 https://www.debian.org/security/faq -...

CVE-2024-39510 cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefilesondemanddaemonread We got the following issue in a fuzz test of randomly issuing the restore command: ================================================================== BUG: KASAN:...

SUSE-SU-2024:2394-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47089: kfence: fix memory leak when cat kfence objects bsc1220958. - CVE-2021-47432: lib/generic-radix-tree.c: Do not overflow in peek bsc1225391. -...

GLSA-202407-23 : LIVE555 Media Server: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202407-23 LIVE555 Media Server: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in LIVE555 Media Server. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding...

GLSA-202407-19 : Mozilla Thunderbird: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202407-19 Mozilla Thunderbird: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding...

GLSA-202407-22 : Mozilla Firefox: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202407-22 Mozilla Firefox: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Mozilla Firefox. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description...

[SECURITY] [DLA 3840-1] linux security update

Debian LTS Advisory DLA-3840-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings June 25, 2024 https://wiki.debian.org/LTS Package : linux Version : 4.19.316-1 CVE ID : CVE-2021-33630 CVE-2022-48627 CVE-2023-0386 CVE-2023-6040 CVE-2023-6270 CVE-2023-7042 CVE-2023-4683...

DEBIAN-CVE-2021-4440

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream. USERGSSYSRET64 is used to return from a syscall via SYSRET, but a Xen PV guest will nevertheless use the IRET hypercall, as ther...

DLA-3841-1 linux-5.10 - security update

Bulletin has no description...

GLSA-202406-04 : LZ4: Memory Corruption

The remote host is affected by the vulnerability described in GLSA-202406-04 LZ4: Memory Corruption An attacker who submits a crafted file to an application linked with lz4 may be able to trigger an integer overflow, leading to calling of memmove on a negative size argument, causing an...

CVE-2024-38539 RDMA/cma: Fix kmemleak in rdma_core observed during blktests nvme/rdma use siw

In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Fix kmemleak in rdmacore observed during blktests nvme/rdma use siw When running blktests nvme/rdma, the following kmemleak issue will appear. kmemleak: Kernel memory leak detector initialized mempool available:36041...

MasterParser - Powerful DFIR Tool Designed For Analyzing And Parsing Linux Logs

What is MasterParser ? MasterParser stands as a robust Digital Forensics and Incident Response tool meticulously crafted for the analysis of Linux logs within the var/log directory. Specifically designed to expedite the investigative process for security incidents on Linux systems, MasterParser...

CVE-2024-27053

A flaw was found in the Linux kernel's Wi-Fi hif.c driver, where RCU-protected data is accessed without correctly managing the required RCU read-side critical section. This can lead to synchronization issues, including race conditions and use-after-free errors when accessing this data. This...

CVE-2024-32462

CVE-2024-32462 affects Flatpak releases prior to 1.15.8, 1.10.9, 1.12.9, and 1.14.6. The issue arises when a Flatpak app passes arbitrary bwrap arguments (eg, --bind) to the --command used by flatpak run, which can be constructed from a portal call (org.freedesktop.portal.Background.RequestBackgr...

CVE-2024-26854

In the Linux kernel, the following vulnerability has been resolved: ice: fix uninitialized dplls mutex usage The pf-dplls.lock mutex is initialized too late, after its first use. Move it to the top of icedpllinit. Note that the "errexit" error path destroys the mutex. And the mutex is the last...

DLA-3782-1 util-linux - security update

Bulletin has no description...

MGASA-2024-0112 Updated util-linux packages fix security vulnerability

wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users' terminals through argv. Specifically, escape sequences received from stdin are blocked, but escape sequences received from argv are not blocked. There may be plausible...

SUSE CVE-2024-26632

In the Linux kernel, the following vulnerability has been resolved: block: Fix iterating over an empty bio with bioforeachfolioall If the bio contains no data, biofirstfolio calls pagefolio on a NULL pointer and oopses. Move the test that we've reached the end of the bio from bionextfolio to...