Security update for libvirt (important)

openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2020:1778-1 Rating: important References: 1174955 1175465 1175574 1176430 1177155 1177480 Cross-References: CVE-2020-15708 CVE-2020-25637 Affected Products: openSUSE Leap 15.1 An update that solves two...

OPENSUSE-SU-2020:1486-1 Security update for virtualbox

This update for virtualbox fixes the following issues: Update to Oracle version 6.1.14a. This minor update enables the building of libvirt again. Version update to 6.1.14 released September 04 2020 by Oracle File 'fixvirtiobuild.patch' is added to fix a build problem. This is a maintenance releas...

MGASA-2020-0180 Updated virtualbox packages fix security vulnerabilities

This update provides the upstream 6.0.20 adding support for kernel 5.6 series and fixes the following security vulnerabilities: Oracle VM VirtualBox before 6.0.20 has an easily exploitable vulnerability that allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...

Updated virtualbox packages fix security vulnerabilities

This update provides the upstream 6.0.20 adding support for kernel 5.6 series and fixes the following security vulnerabilities: Oracle VM VirtualBox before 6.0.20 has an easily exploitable vulnerability that allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...

CVE-2020-5291 Privilege escalation in setuid mode via user namespaces in Bubblewrap

Bubblewrap bwrap before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the bwrap --userns2 option can be used to make the setuid process keep running as root while being traceable. This can in turn be used to gain root permissions. Note that...

SUSE-SU-2019:3348-1 Security update for spectre-meltdown-checker

This update for spectre-meltdown-checker fixes the following issues: - feat: implement TAA detection CVE-2019-11135 bsc1139073 - feat: implement MCEPSC / iTLB Multihit detection CVE-2018-12207 bsc1117665 - feat: taa: add TSXCTRL MSR detection in hardware info - feat: fwdb: use both Intel GitHub...

OPENSUSE-SU-2019:2607-1 Recommended update for openafs

This update for openafs fixes the following issues: Update to security-release 1.8.5, adresses: OPENAFS-SA-2019-001: Skip server OUT args on error OPENAFS-SA-2019-002: Zero all server RPC args OPENAFS-SA-2019-003: ubik: Avoid unlocked ubikcurrentTrans deref update to official version 1.8.4 suppor...

MGASA-2018-0065 Updated openafs packages fixes security vulnerability

This update provides an update to openafs 1.6.22, fixing the following security issue: It was discovered that malformed jumbogram packets could result in denial of service against OpenAFS CVE-2017-17432. It also adds support for 4.14 series kernels...

Updated nonfree firmwares fixes security issues and adds new hw support

Updated nonfree firmwares fixes at least the following security issues: Broadcom firmware fixes: - dropping BRCM proprietary packets received over the air CVE-2016-0801 - adding length checks for TDLS action frames CVE-2017-0561 - adding length checks for WME IE CVE-2017-9417 Iwlwifi firmware...

Application Level Firewall OpenSnitch

Application Level Firewall OpenSnitch OpenSnitch is a GNU/Linux port of the Little Snitch application firewall. OpenSnitch is an application level firewall, meaning then while running, it will detect and alert the user for every outgoing connection applications he’s running are creating. This can...

CVE-2016-3070

The tracewritebackdirtypage implementation in include/trace/events/writeback.h in the Linux kernel before 4.4 improperly interacts with mm/migrate.c, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact by...

[SECURITY] Fedora 19 Update: cifs-utils-6.3-2.fc19

The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. This package contains tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a SMB/CIFS...

Microsoft Windows TrueType Font Parsing Remote Code Execution Vulnerability (Remote Kernel)

This vulnerability allows remote attackers to execute arbitrary code from the contact of kernelspace on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific...

[SECURITY] Fedora 16 Update: cifs-utils-5.4-1.fc16

The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. This package contains tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a SMB/CIFS...

[SECURITY] Fedora 16 Update: cifs-utils-5.0-2.fc16

The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. This package contains tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a SMB/CIFS...

[SECURITY] Fedora 14 Update: cifs-utils-4.8.1-7.fc14

The SMB/CIFS protocol is a standard file sharing protocol widely deployed on Microsoft Windows machines. This package contains tools for mounting shares on Linux using the SMB/CIFS protocol. The tools in this package work in conjunction with support in the kernel to allow one to mount a SMB/CIFS...

Design/Logic Flaw

UPR-Kernel in Ubuntu Privacy Remix UPR before 8.04r1 includes kernel support for mounting RAID arrays, which might allow remote attackers to bypass intended isolation mechanisms by 1 reading from or 2 writing to these arrays...

CVE-2008-5393

UPR-Kernel in Ubuntu Privacy Remix UPR before 8.04r1 includes kernel support for mounting RAID arrays, which might allow remote attackers to bypass intended isolation mechanisms by 1 reading from or 2 writing to these arrays...

Low: Red Hat Security Advisory: lm_sensors security update

Updated lmsensors packages that fix an insecure file issue are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The lmsensors package includes a collection of modules for general SMBus access and hardware monitoring. This package...