SUSE-SU-2021:1148-1 Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP2)

This update for the Linux Kernel 4.4.121-92152 fixes several issues. The following security issues were fixed: - CVE-2021-27365: Fixed an issue where data structures did not have appropriate length constraints or checks, and could exceed the PAGESIZE value bsc1183491. - CVE-2021-27363: Fixed a...

openSUSE Security Update : the Linux Kernel (openSUSE-2021-532)

The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:0532-1 Rating: important References: 1152472 1152489 1153274 1154353 1155518 1156256 1159280 1160634 1167773 1168777 1169514 1169709 1171295 1173485 1177326 1178163 1178330 1179454 1180197 1180980...

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:1075-1)

This update for the Linux Kernel 4.12.14-122222 fixes several issues. The following security issues were fixed : CVE-2021-27365: Fixed an issue where data structures did not have appropriate length constraints or checks, and could exceed the PAGESIZE value bsc1183491. CVE-2021-27363: Fixed a kern...

SUSE-SU-2021:1075-1 Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94138 fixes several issues. The following security issues were fixed: - CVE-2021-27365: Fixed an issue where data structures did not have appropriate length constraints or checks, and could exceed the PAGESIZE value bsc1183491. - CVE-2021-27363: Fixed a...

SUSE-SU-2021:1046-1 Security update for the Linux Kernel (Live Patch 16 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-12263 fixes several issues. The following security issues were fixed: - CVE-2021-27365: Fixed an issue where data structures did not have appropriate length constraints or checks, and could exceed the PAGESIZE value bsc1183491. - CVE-2021-27363: Fixed a...

Updated kernel-linus packages fix security issues

This kernel-linus update is based on upstream 5.10.25 and fixes at least the following security issues: A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRMIOCTLNOUVEAUCHANNELALLOC. This...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9112)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9112 advisory. - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs...

Unspecified vulnerability in Linux kernel (CNVD-2021-19424)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel versions 5.11.3 and earlier, which stems from a kernel pointer leak that can be used to determine the address of an iscsi...

CVE-2021-27363

An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsitransport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via the sysfs file...

UBUNTU-CVE-2021-27363

An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsitransport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via the sysfs file...

CVE-2021-27363

CVE-2021-27363 affects the Linux kernel iSCSI subsystem. A flaw leaks the iSCSI transport’s kernel address via the sysfs handle (/sys/class/iscsi_transport/$TRANSPORT_NAME/handle), enabling a local attacker to leak the iscsi_transport pointer and potentially end arbitrary iSCSI connections. Conne...

kernel: kernel pointer leak due to WARN_ON statement in video driver leads to local information disclosure

A flaw was found in the Linux kernel's video driver. A kernel pointer lead, due to a WARNON statement could lead to a local information disclosure with system execution privileges. User interaction is not needed for exploitation. The highest threat from this vulnerability is to data confidentiali...

Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use after free in the video driver leads to local privilege escalation CVE-2019-9458 kernel: use-after-free in drivers/bluetooth/hcildisc.c CVE-2019-15917 kernel: out-of-bounds access in...

CVE-2018-21079

An issue was discovered on Samsung mobile devices with L5.x, M6.0, N7.x, and O8.0 software. There is a kernel pointer leak in the USB gadget driver. The Samsung ID is SVE-2017-10993 March 2018...

CVE-2018-21079

An issue was discovered on Samsung mobile devices with L5.x, M6.0, N7.x, and O8.0 software. There is a kernel pointer leak in the USB gadget driver. The Samsung ID is SVE-2017-10993 March 2018...

Design/Logic Flaw

An issue was discovered on Samsung mobile devices with L5.x, M6.0, N7.x, and O8.0 software. There is a kernel pointer leak in the USB gadget driver. The Samsung ID is SVE-2017-10993 March 2018...

CVE-2018-21079

CVE-2018-21079 affects Samsung mobile devices on L/M/N/O releases, with a kernel pointer leak in the USB gadget driver (SVE-2017-10993). The Red Hat and CNVD entries corroborate the issue as described, but the connected documents do not provide specific affected component versions beyond the gene...

CVE-2018-21079

An issue was discovered on Samsung mobile devices with L5.x, M6.0, N7.x, and O8.0 software. There is a kernel pointer leak in the USB gadget driver. The Samsung ID is SVE-2017-10993 March 2018...

CVE-2020-10840

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 Exynos 9610 chipsets software. There is a kernel pointer leak in the vipx driver. The Samsung ID is SVE-2019-16293 February 2020...