Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support, Red Hat Enterprise Linux 7.7 Telco Extended Update Support, and Red Hat Enterprise Linux 7.7 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...

GLSA-202305-27 : Tinyproxy: Memory Disclosure

The remote host is affected by the vulnerability described in GLSA-202305-27 Tinyproxy: Memory Disclosure - Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. Tinyproxy commit 84f203f and earlier use uninitialized buffers in...

WordPress Multiple Vulnerabilities (May 2023) - Linux

WordPress is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescripti...

RHEL 8 : freerdp (RHSA-2023:2851)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2851 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to R...

kernel: bpf: prevent leak of lsm program after failed attach

A reference count leak was found in the BPF subsystem. When attaching a BPF LSM program to a cgroup fails validation, the program's reference count is not decremented, causing the BPF program to remain loaded indefinitely...

Moderate: qemu-kvm security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. The following packages have been upgraded to a later upstream version: qemu-kvm 7.2.0...

DLA-3404-1 linux-5.10 - security update

Bulletin has no description...

USN-5970-1: Linux kernel vulnerabilities

It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs. An attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. CVE-2022-2196 It was discovered...

K35205264: Linux kernel vulnerability CVE-2018-10938

Security Advisory Description A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipsov4optptr function in net/ipv4/cipsoipv4.c leading to a denial-of-servic...

SUSE CVE-2015-3631

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules LSM and dockert policies via an image that allows volumes to override files in /proc...

SUSE CVE-2017-5123

Insufficient data validation in waitid allowed an user to escape sandboxes on Linux...

SUSE CVE-2019-12589

In Firejail before 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified by an attacker...

PT-2023-33212 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.83 Description: The issue concerns the af unix component in the Linux Kernel, specifically with how the user ns is obtained from in skb in the unix diag get exact function. The actual impact and potential...

CVE-2022-26386

Previously Firefox for macOS and Linux would download temporary files to a user-specific directory in /tmp, but this behavior was changed to download them to /tmp where they could be affected by other local users. This behavior was reverted to the original, user-specific directory. This bug only...

DLA-3244-1 linux-5.10 - security update

Bulletin has no description...

CVE-2022-45461

The Java Admin Console in Veritas NetBackup through 10.1 and related Veritas products on Linux and UNIX allows authenticated non-root users that have been explicitly added to the auth.conf file to execute arbitrary commands as root...

RLSA-2022:7967 Moderate: qemu-kvm security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. The following packages have been upgraded to a later upstream version: qemu-kvm 7.0.0...

GLSA-202211-02 : lesspipe: Arbitrary Code Exeecution

The remote host is affected by the vulnerability described in GLSA-202211-02 lesspipe: Arbitrary Code Exeecution - lesspipe before 2.06 allows attackers to execute code via Perl Storable pst files, because of deserialized object destructor execution via a key/value pair in a hash. CVE-2022-44542...

GLSA-202210-41 : android-tools: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202210-41 android-tools: Multiple Vulnerabilities - Please review the referenced CVE identifiers for details. CVE-2022-20128, CVE-2022-3168 Note that Nessus has not tested for these issues but has instead relied only on the...

Design/Logic Flaw

Files or Directories Accessible to External Parties vulnerability in OpenNebula on Linux allows File Discovery...