USN-8260-1 linux-azure-fips vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

USN-8185-1: Linux kernel (NVIDIA) vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

kernel: jbd2: fix potential buffer head reference count leak

A buffer head reference count leak was found in the JBD2 journaling layer used by ext4. When jbd2fcwaitbufs encounters a non-uptodate buffer and returns -EIO, the journal offset is not updated, causing subsequent buffer release to skip some buffer heads...

Debian Security Advisory DSA 2469-1 (linux-2.6 - privilege escalation/denial of service)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2011-4086Eric Sandeen reported an issue in the journaling layer for ext4 filesyste...