Lucene search
K

180 matches found

OSV
OSV
added 2018/02/28 12:34 p.m.6 views

SUSE-SU-2018:0562-1 Security update for the Linux Kernel (Live Patch 31 for SLE 12)

This update for the Linux Kernel 3.12.61-52119 fixes several issues. The following security issue was fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becaus...

7.8CVSS7.1AI score0.00962EPSS
Exploits4References3
OSV
OSV
added 2018/02/11 6:42 p.m.10 views

MGASA-2018-0125 Updated kernel packages fix security vulnerabilities

This kernel update is based on the upstream 4.14.18 and adds some support for mitigating Spectre, variant 1 CVE-2017-5753 and as it is built with the retpoline-aware gcc-5.5.0-1.mga6, it now provides full retpoline mitigation for Spectre, variant 2 CVE-2017-5715. WireGuard has been updated to...

5.6CVSS7AI score0.93838EPSS
Exploits12References5
OSV
OSV
added 2018/02/05 7:12 p.m.11 views

MGASA-2018-0106 Updated kernel packages fix security vulnerabilities

This kernel update is based on the upstream 4.14.16 and fixes several security issues. The most important fixes in this update is for the security issue named "Spectre, variant 2 CVE-2017-5715" that is partly mitigated by enabling retpoline support. For full retpoline mitigation, kernel needs to ...

7.8CVSS7AI score0.93838EPSS
Exploits17References5
OSV
OSV
added 2018/01/30 7:16 a.m.6 views

SUSE-SU-2018:0280-1 Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2)

This update for the Linux Kernel 4.4.74-9232 fixes several issues. The following security issues were fixed: - CVE-2017-17712: The rawsendmsg function had a race condition that lead to uninitialized stack pointer usage. This allowed a local user to execute code and gain privileges bsc1073230. -...

7.8CVSS7.8AI score0.0215EPSS
Exploits3References6
OSV
OSV
added 2018/01/13 2:28 p.m.13 views

MGASA-2018-0078 Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update provided the upstream 4.14.13 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KTPI. Note that according to AMD, this issue does not...

5.6CVSS7.1AI score0.84172EPSS
Exploits3References7
OSV
OSV
added 2018/01/13 2:28 p.m.12 views

MGASA-2018-0077 Updated kernel-tmb packages fix security vulnerabilities

This kernel-tmb update is based on the upstream 4.14.13 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KTPI. Note that according to AMD, this issue does not...

6.5CVSS7.3AI score0.93838EPSS
Exploits13References7
OSV
OSV
added 2018/01/13 2:28 p.m.7 views

MGASA-2018-0076 Updated kernel packages fix security vulnerabilities

This kernel update is based on the upstream 4.14.13 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KPTI. Note that according to AMD, this issue does not...

6.5CVSS7.3AI score0.93838EPSS
Exploits13References7
OSV
OSV
added 2018/01/13 2:28 p.m.15 views

MGASA-2018-0073 Updated kernel packages fix security vulnerabilities

This kernel update is based on the upstream 4.4.111 and fixes several security issues. The most important fix in this update is for the security issue named "Meltdown" that is fixed in theese kernels by enabling kernel Page Table Isolation KTPI. Note that according to AMD, this issue does not...

7.4CVSS7.3AI score0.93838EPSS
Exploits13References10
OSV
OSV
added 2018/01/06 12:53 a.m.30 views

MGASA-2018-0064 kernel-linus update provides 4.14 series and fixes security vulnerabilities

This kernel-linus update provides an upgrade to the 4.14 longterm branch, currently based on 4.14.10. It also fixes at least the following security issues: An elevation of privilege vulnerability in the Broadcom wi-fi driver CVE-2017-0786. Use-after-free vulnerability in the sndpcminfo function i...

8.8CVSS8.7AI score0.30052EPSS
Exploits32References17
OSV
OSV
added 2017/11/29 10:1 p.m.6 views

SUSE-SU-2017:3139-1 Security update for the Linux Kernel (Live Patch 6 for SLE 12 SP2)

This update for the Linux Kernel 4.4.49-9214 fixes several issues. The following security issues were fixed: - CVE-2017-15649: net/packet/afpacket.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packetfanout data structures, becaus...

7.8CVSS6.8AI score0.02285EPSS
Exploits4References7
OSV
OSV
added 2017/10/24 8:9 p.m.10 views

MGASA-2017-0388 Updated kernel-tmb packages fix security vulnerabilities

This kernel-tmb update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netli...

7.1CVSS6.1AI score0.01155EPSS
Exploits4References6
OSV
OSV
added 2017/10/24 8:9 p.m.8 views

MGASA-2017-0386 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink...

7.1CVSS6.1AI score0.01155EPSS
Exploits4References6
OSV
OSV
added 2017/08/20 8:48 a.m.10 views

MGASA-2017-0287 Updated kernel-linus packages fixes security and other bugs

This kernel-linus update is based on upstream 4.9.43 and fixes at least the following security issues: The curseg-segno call in f2fs driver can be malformed so that it will have a value that triggers an out of boundary write that could cause memory corruption on the affected devices, leading to...

7.8CVSS7.5AI score0.20797EPSS
Exploits19References5
OSV
OSV
added 2017/08/13 1:17 p.m.13 views

MGASA-2017-0261 Updated kernel-tmb packages fixes security and other bugs

This kernel-tmb update is based on upstream 4.4.79 and fixes at least the following security issues: Linux kernel built with the VirtIO GPU driverCONFIGDRMVIRTIOGPU support is vulnerable to a memory leakage issue. It could occur while creating a virtio gpu object in virtiogpuobjectcreate. A...

7.8CVSS7.4AI score0.03763EPSS
Exploits0References7
OSV
OSV
added 2017/08/07 8:8 a.m.7 views

SUSE-SU-2017:2070-1 Security update for Linux Kernel Live Patch 6 for SLE 12 SP2

This update for the Linux Kernel 4.4.49-9214 fixes several issues. The following security bugs were fixed: - CVE-2017-7533: A bug in inotify code allowed local users to escalate privilege bsc1050751. - CVE-2017-8797: The NFSv4 server in the Linux kernel did not properly validate the layout type...

7.8CVSS7.7AI score0.08665EPSS
Exploits8References14
OSV
OSV
added 2017/08/03 7:5 p.m.12 views

MGASA-2017-0242 Updated kernel packages fixes security and other bugs

This kernel update is based on upstream 4.4.79 and fixes at least the following security issues: Linux kernel built with the VirtIO GPU driverCONFIGDRMVIRTIOGPU support is vulnerable to a memory leakage issue. It could occur while creating a virtio gpu object in virtiogpuobjectcreate. A...

7.8CVSS7.4AI score0.03763EPSS
Exploits0References7
OSV
OSV
added 2017/05/15 3:59 p.m.11 views

SUSE-SU-2017:1283-1 Security update for Linux Kernel Live Patch 5 for SLE 12 SP2

This update for the Linux Kernel 4.4.49-9211 fixes several issues. The following security bugs were fixed: - CVE-2017-7308: The packetsetring function in net/packet/afpacket.c in the Linux kernel did not properly validate certain block-size data, which allowed local users to cause a denial of...

7.8CVSS7.7AI score0.17827EPSS
Exploits17References7
OSV
OSV
added 2017/05/10 8:47 p.m.10 views

MGASA-2017-0136 Updated kernel packages fixes security vulnerabilities

This kernel update is based on upstream 4.4.65 and fixes at least the following security issues: fs/namespace.c in the Linux kernel before 4.9 does not restrict how many mounts may exist in a mount namespace, which allows local users to cause a denial of service memory consumption and deadlock vi...

9.3CVSS7.7AI score0.17827EPSS
Exploits23References8
Oracle linux
Oracle linux
added 2017/04/13 12:0 a.m.79 views

Unbreakable Enterprise kernel security update

2.6.39-400.294.7 - udp: properly support MSGPEEK with truncated buffers Eric Dumazet Orabug: 25874741 CVE-2016-10229 - block: fix use-after-free in seq file Vegard Nossum Orabug: 25877531 CVE-2016-7910...

10CVSS2.9AI score0.12791EPSS
Exploits2
OSV
OSV
added 2017/03/25 8:15 p.m.8 views

MGASA-2017-0088 Updated kernel packages fixes security vulnerabilities

This kernel update is based on upstream 4.4.55 and fixes at least the following security issues: Race condition in drivers/tty/nhdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service double free by setting the HDLC line discipline CVE-2017-263...

7.8CVSS7.1AI score0.01021EPSS
Exploits2References7
Rows per page
Query Builder