OESA-2021-1336 kernel security update

he Linux Kernel, the operating system core itself. Security Fixes: A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race condition of the call scoconndel together with the call scosocksendm...

Linux eBPF ALU32 32-bit Invalid Bounds Tracking Local Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linux eBPF ALU32 32-bit Invalid Bounds Tracking LPE', 'Description' = %q Linux kernels from 5.7-rc1 prior to 5.13-rc4, 5.12.4, 5.11.21, and 5.10....

OESA-2021-1324 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of...

LSN-0080-1 Kernel Live Patch Security Notice

Andy Nguyen discovered that the netfilter subsystem in the Linux kernel contained an out-of-bounds write in its setsockopt implementation. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2021-22555...

kernel security, bug fix, and enhancement update

4.18.0-305.12.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Unbreakable Enterprise kernel-container security update

5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: Fix /proc/kcore Henry...

Unbreakable Enterprise kernel security update

5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 5.4.17-2102.204.4.1 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: F...

SUSE-SU-2021:2559-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-5910 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. bsc1188062 - CVE-2021-22555: Fixed an heap out-of-bounds write in...

LSN-0079-1 Kernel Live Patch Security Notice

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.CVE-2021-3600 It was discovered that the virtual file system...

SUSE-SU-2021:2433-1 Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94127 fixes several issues. The following security issues were fixed: - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. bsc1187687 - CVE-2021-0512: Fixed a...

SUSE-SU-2021:2368-1 Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP4)

This update for the Linux Kernel 4.12.14-9577 fixes several issues. The following security issues were fixed: - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. bsc1187687 - CVE-2021-0512: Fixed a...

SUSE-SU-2021:2332-1 Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-19756 fixes several issues. The following security issues were fixed: - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. bsc1187597 - CVE-2021-23133: Fixed...

Microsoft Windows Kernel 安全特征问题漏洞

Microsoft Windows Kernel is the kernel of the Windows operating system from Microsoft Corporation USA. A vulnerability exists in the Microsoft Windows Kernel due to a security feature issue. The following products and editions are affected: Windows 10 Version 21H1 for x64-based Systems,Windows 10...

Exploit for Use After Free in Microsoft

CVE-2021-31166-Exploit Exploit for MS Http Protocol Stack RCE...

GSD-2021-1000903 KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message

KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.126 by commit...

RHEL 8 : kernel (RHSA-2021:2570)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2570 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in...

SUSE: Security Advisory (SUSE-SU-2021:1977-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2021:0873-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service panic because net/netfilter/xtables.c and...

Unbreakable Enterprise kernel-container security update

5.4.17-2102.202.5 - sctp: delay autoasconf init until binding the first addr Xin Long Orabug: 32907967 CVE-2021-23133 - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860491 CVE-2021-31916 - uek-rpm: update kABI lists for the new symbols Saeed Mirzamohammadi...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9307)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9307 advisory. - sctp: delay autoasconf init until binding the first addr Xin Long Orabug: 32907967 CVE-2021-23133 - dm ioctl: fix out of bounds array access when...