Lucene search
K

180 matches found

OSV
OSV
added 2023/10/30 10:5 a.m.6 views

SUSE-SU-2023:4261-1 Security update for the Linux Kernel (Live Patch 36 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059133 fixes several issues. The following security issues were fixed: - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve local privilege escalation bsc1215440. - CVE-2023-4004: Fixed imprope...

7.8CVSS8.2AI score0.01029EPSS
Exploits1References7
OSV
OSV
added 2023/09/17 7:34 p.m.9 views

SUSE-SU-2023:3627-1 Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059115 fixes several issues. The following security issues were fixed: - CVE-2023-32233: Fixed a use-after-free in Netfilter nftables when processing batch requests bsc1211187. - CVE-2023-2156: Fixed a flaw in the networking subsystem within the handli...

7.8CVSS8AI score0.12966EPSS
Exploits10References15
OSV
OSV
added 2023/07/19 7:53 p.m.11 views

MGASA-2023-0237 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.120 and fixes atleast the following security issues: A flaw null pointer dereference in the Linux kernel DECnet networking protocol was found. A remote user could use this flaw to crash the system. This is fixed by removing DECnet support CVE-2023-3338...

7.8CVSS7.2AI score0.08091EPSS
Exploits5References6
OSV
OSV
added 2023/07/19 7:53 p.m.11 views

MGASA-2023-0238 Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.120 and fixes atleast the following security issues: A flaw null pointer dereference in the Linux kernel DECnet networking protocol was found. A remote user could use this flaw to crash the system. This is fixed by removing DECnet support...

7.8CVSS6.9AI score0.08091EPSS
Exploits3References6
OSV
OSV
added 2023/05/19 7:23 a.m.8 views

MGASA-2023-0173 Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.110 and fixes atleast the following security issues: A slab-out-of-bound read problem was found in brcmfgetassocies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c. This issue could occur when associnfo-reqlen data is bigger than t...

7.8CVSS6.6AI score0.16642EPSS
Exploits2References6
OSV
OSV
added 2023/05/16 7:17 p.m.10 views

MGASA-2023-0166 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.110 and fixes atleast the following security issues: A slab-out-of-bound read problem was found in brcmfgetassocies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c. This issue could occur when associnfo-reqlen data is bigger than the siz...

7.8CVSS6.9AI score0.16642EPSS
Exploits9References6
OSV
OSV
added 2023/04/17 7:52 p.m.10 views

MGASA-2023-0149 Updated kernel-linus packages fix security vulnerability

This kernel-linus update is based on upstream 5.15.106 and fixes atleast the following security issues: A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0 due to a type confusion in their initialization function. While it will be often correct, as tunta...

7.8CVSS7.5AI score0.06346EPSS
Exploits2References10
OSV
OSV
added 2023/03/11 7:0 p.m.13 views

MGASA-2023-0088 Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.98 and fixes atleast the following security issues: A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines o...

8.8CVSS8AI score0.01944EPSS
Exploits6References12
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.1 views

PT-2023-35181 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.90 Description: A potential security issue exists in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.90, upda...

7.4AI score
Exploits0References1
OSV
OSV
added 2023/01/22 8:39 p.m.11 views

MGASA-2023-0008 Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.88 and fixes atleast the following security issues: A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first grufileunlockedioctl function is called by the user, where a fail pass occurs in the...

8CVSS7.5AI score0.71737EPSS
Exploits3References9
OSV
OSV
added 2022/11/18 12:36 p.m.11 views

SUSE-SU-2022:4072-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-28748: Fixed a leak of kernel memory over the network by ax88179178a devices bsc1196018. - CVE-2022-1882: Fixed a use-after-free flaw in freepipeinfo th...

8.8CVSS8.2AI score0.03681EPSS
Exploits8References101
Positive Technologies
Positive Technologies
added 2022/10/09 12:0 a.m.10 views

PT-2022-34766 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.12 Description: The issue is related to a potential security vulnerability in the Linux Kernel, specifically in the s390/dasd component. It is caused by a missing pavgroup, which can lead to an Oops in das...

7.3AI score
Exploits0References1
OSV
OSV
added 2022/08/25 9:21 p.m.12 views

MGASA-2022-0308 Updated kernel-linus packages fix security vulnerabilities

This kernel update is based on upstream 5.15.62 and fixes at least the following security issues: A use-after-free flaw was found in the Linux kernel Atheros wireless adapter driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages. This flaw allows a...

7.8CVSS7.2AI score0.12746EPSS
Exploits15References7
OSV
OSV
added 2022/08/10 12:34 p.m.11 views

SUSE-SU-2022:2745-1 Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122106 fixes several issues. The following security issues were fixed: - CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcbausb.c vulnerability in the Linux kernel. bnc1198033 - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An...

7.8CVSS7.2AI score0.00804EPSS
Exploits2References13
OSV
OSV
added 2022/08/08 10:4 p.m.7 views

SUSE-SU-2022:2699-1 Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP4)

This update for the Linux Kernel 4.12.14-9593 fixes several issues. The following security issues were fixed: - CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcbausb.c vulnerability in the Linux kernel. bnc1198033 - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An...

7.8CVSS7.2AI score0.00804EPSS
Exploits2References13
OSV
OSV
added 2022/07/26 11:58 a.m.9 views

SUSE-SU-2022:2549-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information bsc1199657....

8.2CVSS8.1AI score0.05451EPSS
Exploits13References72
OSV
OSV
added 2022/07/21 3:37 p.m.6 views

SUSE-SU-2022:2515-1 Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005971 fixes several issues. The following security issues were fixed: - CVE-2022-20154: Fixed a use after free due to a race condition in locksocknested of sock.c. This could lead to local escalation of privilege with System execution privileges needed...

7.8CVSS7.7AI score0.00232EPSS
Exploits0References5
OSV
OSV
added 2022/06/13 8:44 p.m.7 views

MGASA-2022-0230 Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.46 and fixes at least the following security issues: KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID CVE-2022-1789. KVM: x86: avoid calling x86 emulator without a decoded instruction CVE-2022-1852. A use-after-free vulnerability was...

7.1CVSS6.8AI score0.00318EPSS
Exploits6References5
OSV
OSV
added 2022/06/13 8:44 p.m.9 views

MGASA-2022-0229 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.46 and fixes at least the following security issues: KVM: x86: avoid calling x86 emulator without a decoded instruction CVE-2022-1852. A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nftablesapi.c. Th...

7.1CVSS6.7AI score0.00302EPSS
Exploits6References5
OSV
OSV
added 2022/05/28 8:56 a.m.4 views

MGASA-2022-0212 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.43 and fixes at least the following security issues: A race condition in the perf subsystem allows for a local privilege escalation. NOTE: Mageia kernels by default has disabled the perf usage for unprivileged users, effectively rendering this...

7CVSS7AI score0.00612EPSS
Exploits0References4
Rows per page
Query Builder