280 matches found
GSD-2022-1005736 arm64: Fix match_list for erratum 1286807 on Arm Cortex-A76
arm64: Fix matchlist for erratum 1286807 on Arm Cortex-A76 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.140 by commit...
PT-2022-33994 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.10.118 through v5.10.139 Description: The issue is related to the Arm Cortex-A76 and concerns a fix for erratum 1286807. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
GSD-2022-1005429 arm64: Fix match_list for erratum 1286807 on Arm Cortex-A76
arm64: Fix matchlist for erratum 1286807 on Arm Cortex-A76 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.64 by commit...
GSD-2022-1005018 arm64: Fix match_list for erratum 1286807 on Arm Cortex-A76
arm64: Fix matchlist for erratum 1286807 on Arm Cortex-A76 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
PT-2022-33276 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.18 through v5.19.5 Description: The issue is related to the Arm Cortex-A76 and concerns the match list for erratum 1286807. It was introduced in version v5.18 and fixed in version v5.19.6. The actual impact and attack...
PT-2022-33687 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.15.42 through v5.15.63 Description: The issue is related to the Arm Cortex-A76 and concerns the match list for erratum 1286807. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
ALBA-2022:1732 java-11-openjdk bug fix and enhancement update
This erratum reinstates changes made to java-11-openjdk in AlmaLinux 8.6 GA. The original builds for AlmaLinux 8.6 GA will have been superseded by newer binaries released as part of the April 2022 security update for AlmaLinux 8.5. For detailed information on changes in this release, see the...
GSD-2022-1001060 x86/mce: Work around an erratum on fast string copy instructions
x86/mce: Work around an erratum on fast string copy instructions This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.3 by commit...
sudo security and bug fix update
1.8.29-7 - RHEL 8.4 ERRATUM - CVE-2021-3156 Resolves: rhbz1917734 - CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit Resolves: rhzb1916434 - CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit Resolves: rhbz1917038 - updated upstream url...
sudo security update
1.8.23-10.1 - RHEL 7.9.Z ERRATUM - CVE-2021-3156 Resolves: rhbz1917729...
(RHSA-2020:5609) Important: fapolicyd bug fix update
The fapolicyd software framework introduces a form of file access control based on a user-defined policy. The application file access control feature provides one of the most efficient ways to prevent running untrusted and possibly malicious applications on the system. Bug Fix: When an update...
(RHSA-2020:5607) Important: fapolicyd bug fix update
The fapolicyd software framework introduces a form of file access control based on a user-defined policy. The application file access control feature provides one of the most efficient ways to prevent running untrusted and possibly malicious applications on the system. Bug Fixes: When an update...
Important: fapolicyd bug fix update
The fapolicyd software framework introduces a form of file access control based on a user-defined policy. The application file access control feature provides one of the most efficient ways to prevent running untrusted and possibly malicious applications on the system. Bug Fixes: When an update...
SUSE SLED15 / SLES15 Security Update : go1.15 (SUSE-SU-2020:2776-1)
go1.15 released 2020-08-11 Go 1.15 is a major release of Go. go1.15.x minor releases will be provided through August 2021. https://github.com/golang/go/wiki/Go-Release-Cycle Most changes are in the implementation of the toolchain, runtime, and libraries. As always, the release maintains the Go 1...
CVE-2020-10772
An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414. Vulnerable versions of Unbound could still amplify an incoming query into a large number of queries directed to a target, even with a lower amplification ratio compared t...
unbound: incomplete fix for CVE-2020-12662 in RHEL7
An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414. Vulnerable versions of Unbound could still amplify an incoming query into a large number of queries directed to a target, even with a lower amplification ratio compared t...
CVE-2020-10772
An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part of erratum RHSA-2020:2414. Vulnerable versions of Unbound could still amplify an incoming query into a large number of queries directed to a target, even with a lower amplification ratio compared t...
rsyslog security, bug fix, and enhancement update
8.1911.0-3 RHEL 8.2.0 ERRATUM - added patch reverting rejecting expired certs by default resolves: rhbz1782353 - added patch silencing false errors on config.enabled statement resolves: rhbz1659383 8.1911.0-2 RHEL 8.2.0 ERRATUM - cleaned old patches, fixed patch names resolves: rhbz1740683...
Denial Of Service (DoS)
SeaMonkey is vulnerable to Denial of Service DoS. A web page containing malicious content could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. to upgrade to these erratum packages, which contain backported patches that correct these issues...
kernel security and bug fix update
4.18.0-147.8.11.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.8.11 - rebuild, due infrastructure issues last kernel build wasn'...