128 matches found
EulerOS Virtualization for ARM 64 3.0.2.0 : gcc (EulerOS-SA-2019-2308)
According to the version of the gcc packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - This is compiler for arm64. Security Fixes:The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimiz...
openSUSE Security Update : gcc7 (openSUSE-2019-2365)
This update for gcc7 to r275405 fixes the following issues : Security issues fixed : - CVE-2019-14250: Fixed an integer overflow in binutils bsc1142649. - CVE-2019-15847: Fixed an optimization in the POWER9 backend of gcc that could reduce the entropy of the random number generator bsc1149145...
Security update for gcc7 (moderate)
openSUSE Security Update: Security update for gcc7 Announcement ID: openSUSE-SU-2019:2364-1 Rating: moderate References: 1071995 1141897 1142649 1148517 1149145 Cross-References: CVE-2019-14250 CVE-2019-15847 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has...
Security update for gcc7 (moderate)
openSUSE Security Update: Security update for gcc7 Announcement ID: openSUSE-SU-2019:2365-1 Rating: moderate References: 1071995 1141897 1142649 1148517 1149145 Cross-References: CVE-2019-14250 CVE-2019-15847 Affected Products: openSUSE Leap 15.0 An update that solves two vulnerabilities and has...
SUSE SLED15 / SLES15 Security Update : gcc7 (SUSE-SU-2019:2702-1)
This update for gcc7 to r275405 fixes the following issues : Security issues fixed : CVE-2019-14250: Fixed an integer overflow in binutils bsc1142649. CVE-2019-15847: Fixed an optimization in the POWER9 backend of gcc that could reduce the entropy of the random number generator bsc1149145...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
Design/Logic Flaw
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
CVE-2019-15847
CVE-2019-15847 affects the POWER9 backend of GCC, where the compiler could coalesce multiple __builtin_darn() calls into one due to an unspecified volatile operation, reducing random-number entropy. The GCC GLSA/Advisory notes that this issue stems from flawed code generation and can cause repeat...
CVE-2019-15847
The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...
Important: Red Hat Security Advisory: kernel-alt security and bug fix update
An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...
Moderate: Red Hat Security Advisory: kernel-alt security and bug fix update
An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Security Bulletin: IBM has released updated AIX and VIOS fixes for CVE-2017-5715, known as Spectre, that are only applicable to some POWER9 systems.
Summary IBM has released updated AIX and VIOS fixes for CVE-2017-5715, known as Spectre, that are only applicable to the following POWER9 systems: 9040-MR9 9080-M9S The prtconf command may be used to find the system model number. For example: prtconf | grep "System Model" Vulnerability Details...
IBM has released updated AIX and VIOS fixes for CVE-2017-5715 known as Spectre that are only applicable to some POWER9 systems.,IBM has released updated VIOS and VIOS fixes for CVE-2017-5715 known as Spectre that are only applicable to some POWER9 systems.
IBM SECURITY ADVISORY First Issued: Fri Aug 17 08:05:01 CDT 2018 |Updated: Mon Sep 24 08:59:02 CDT 2018 |Update: Added system model 9080-M9S as a system to which the bulletin | applies. The most recent version of this document is available here:...
RHEL 7 : Virtualization Manager (RHSA-2018:2328) (Spectre)
An update for rhvm-setup-plugins is now available for Red Hat Virtualization Engine 4.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Important: Red Hat Security Advisory: rhvm-setup-plugins security, bug fix, and enhancement update
An update for rhvm-setup-plugins is now available for Red Hat Virtualization Engine 4.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...