Updated kernel-linus packages fix security vulnerabilities

Vanilla upstream kernel version 6.6.58 fixes bugs and vulnerabilities. For information about the vulnerabilities see the links...

New Research Reveals Spectre Vulnerability Persists in Latest AMD and Intel Processors

More than six years after the Spectre security flaw impacting modern CPU processors came to light, new research has found that the latest AMD and Intel processors are still susceptible to speculative execution attacks. The attack, disclosed by ETH Zürich researchers Johannes Wikner and Kaveh...

MGASA-2024-0316 Updated kernel, kmod-xtables-addons & kmod-virtualbox packages fix security vulnerabilities

Upstream kernel version 6.6.52 fixes bugs and vulnerabilities. The kmod-virtualbox and kmod-xtables-addons packages have been updated to work with this new kernel. For information about the vulnerabilities see the links...

RHSA-2015:1788 Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update

Bulletin has no description...

RHSA-2014:1281 Red Hat Security Advisory: kernel security and bug fix update

Bulletin has no description...

RHSA-2010:0958 Red Hat Security Advisory: kernel-rt security and bug fix update

Bulletin has no description...

SUSE-SU-2024:2947-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe bsc1220952. - CVE-2021-47103: net: sock: preserve kabi for sock bsc1221010. - CVE-2021-47186: ipc:...

Updated kernel-linus packages fix security vulnerabilities

Vanilla upstream kernel version 6.6.43 fix bugs and vulnerabilities. For information about the vulnerabilities see the links...

MGASA-2024-0263 Updated kernel kmod-xtables-addons kmod-virtualbox dwarves packages fix security vulnerabilities

Upstream kernel version 6.6.37 fix bugs and vulnerabilities. The dwarves, kmod-virtualbox and kmod-xtables-addons packages have been updated to work with this new kernel. For information about the vulnerabilities see the links...

PT-2024-20729 · Insyde · Insydeh2O

Name of the Vulnerable Software and Affected Versions: Insyde InsydeH2O versions prior to kernel 5.2: IB19130163 in 05.29.07 Insyde InsydeH2O versions prior to kernel 5.3: IB19130163 in 05.38.07 Insyde InsydeH2O versions prior to kernel 5.4: IB19130163 in 05.46.07 Insyde InsydeH2O versions prior ...

PT-2024-13431 · Insyde · Insydeh2O

Name of the Vulnerable Software and Affected Versions: Insyde InsydeH2O kernel versions 5.0 through 5.6 Description: An issue was discovered in PnpSmm, where there is a possible out-of-bounds access in the SMM communication buffer, leading to tampering. The PNP-related SMI sub-functions do not...

Updated kernel-linus packages fix bugs and provide mitigations

Upstream kernel version 6.6.22 contains bug fixes and mitigations. For information about the mitigations see the changelog...

MGASA-2024-0097 Updated kernel-linus packages fix bugs and provide mitigations

Upstream kernel version 6.6.22 contains bug fixes and mitigations. For information about the mitigations see the changelog...

CLSA-2023-1693904659 Fix of 11 CVEs

Jammy update: v5.15.86 upstream stable release LP: 2005113 // CVE-url: https://ubuntu.com/security/CVE-2022-3606 - libbpf: Fix null-pointer dereference in findprogbysecinsn Jammy update: v5.15.87 upstream stable release LP: 2007441 // CVE-url: https://ubuntu.com/security/CVE-2023-23454 - net:...

CLSA-2023-1693904331 Fix of 11 CVEs

Jammy update: v5.15.86 upstream stable release LP: 2005113 // CVE-url: https://ubuntu.com/security/CVE-2022-3606 - libbpf: Fix null-pointer dereference in findprogbysecinsn Jammy update: v5.15.87 upstream stable release LP: 2007441 // CVE-url: https://ubuntu.com/security/CVE-2023-23454 - net:...

CLSA-2023-1690395161 Fix of 12 CVEs

Bionic update: upstream stable patchset 2021-11-12 LP: 1950816 // CVE- url: https://ubuntu.com/security/CVE-2021-20321 - ovl: fix missing negative dentry check in ovlrename CVE-url: https://ubuntu.com/security/CVE-2021-20321 - ovl: cleanup unused var in rename2 Jammy update: v5.15.93 upstream...

K17269881: Intel MCE vulnerability CVE-2018-12207

Security Advisory Description Improper invalidation for page table updates by a virtual guest operating system for multiple IntelR Processors may allow an authenticated user to potentially enable denial of service of the host system via local access. CVE-2018-12207 Impact A privileged guest user...

SUSE: Security Advisory (SUSE-SU-2023:0145-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2022-36185 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.80 Description: The issue is related to an unpaired pm runtime put sync in omap8250 remove, which may potentially lead to security vulnerabilities. The actual impact and attack plausibility have not yet be...

CVE-2022-33909

DMA transactions which are targeted at input buffers used for the HddPassword software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the HddPassword driver could cause SMRAM corrupti...