kernel security update

4.18.0-372.9.1.0.2.el8.OL8 - debug: lockdown kgdb Orabug: 34270802 CVE-2022-21499 4.18.0-372.9.1.0.1.el8.OL8 - mei: me: disable driver on the ign firmware Alexander Usyskin Orabug: 34176425...

LSN-0087-1 Kernel Live Patch Security Notice

Aaron Adams discovered that the netfilter subsystem in the Linux kernel did not properly handle the removal of stateful expressions in some situations, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or execute arbitrary...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.514.3.el7 - uek-rpm: Update OL7 SecureBoot certificate files Saeed Mirzamohammadi Orabug: 34219958 4.14.35-2047.514.2 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043 CVE-2022-21499...

SUSE SLES12 Security Update : kernel (SUSE-SU-2022:2077-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2077-1 advisory. - The acpinsevaluate function in drivers/acpi/acpica/nseval.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a...

SUSE-SU-2022:2079-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. bsc1199650 - CVE-2022-21123: Fixed a stale MMIO data...

SUSE-SU-2022:1940-1 Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP4)

This update for the Linux Kernel 4.12.14-9596 fixes several issues. The following security issue was fixed: - CVE-2022-30594: Fixed restriction bypass on setting the PTSUSPENDSECCOMP flag bnc1199602. - Add missing modulemutex lock to module notifier for previous live patches bsc1199834...

PUB-A-219513976

In TBD of TBD, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Unbreakable Enterprise kernel security update

5.4.17-2136.307.3.5 - KVM: x86: avoid calling x86 emulator without a decoded instruction Sean Christopherson Orabug: 34211496 CVE-2022-1852 CVE-2022-1852...

CVE-2022-1882

A use-after-free flaw was found in the Linux kernel’s pipes functionality in how a user performs manipulations with the pipe postonenotification after freepipeinfo that is already called. This flaw allows a local user to crash or potentially escalate their privileges on the system...

SUSE-SU-2022:1849-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-5910 fixes several issues. The following security issue was fixed: - CVE-2022-1280: Fixed a use-after-free vulnerability in drmleaseheld in drivers/gpu/drm/drmlease.c. This flaw allowed a local user privilege attacker to cause a denial of service DoS or a...

Unbreakable Enterprise kernel-container security update

5.4.17-2136.307.3.4 - iouring: always use original task when preparing req identity Jens Axboe Orabug: 34186552 CVE-2022-1786 5.4.17-2136.307.3.3 - debug: Lock down kgdb Stephen Brennan Orabug: 34152699 CVE-2022-21499...

Unbreakable Enterprise kernel security update

4.14.35-2047.513.2.2 - debug: Lock down kgdb Stephen Brennan Orabug: 34152700 CVE-2022-21499...

kernel security and bug fix update

3.10.0-1160.66.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...

kernel security, bug fix, and enhancement update

4.18.0-372.9.1.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

CVE-2021-45868 affecting package kernel 5.10.189.1-1

CVE-2021-45868 affecting package kernel 5.10.189.1-1. A patched version of the package is available...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

ALSA-2022:1988 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fget: check that the fd still exists after getting a ref to it CVE-2021-4083 kernel: avoid cyclic entity chains due to malformed USB descriptors CVE-2020-0404 kernel: speculation on...

SUSE-SU-2022:1591-1 Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-2464 fixes several issues. The following security issues were fixed: - - CVE-2022-1158: Fixed KVM x86/mmu compare-and-exchange of gPTE via the user address bsc1198133 - CVE-2022-0330: A random memory access flaw was found in the Linux kernel's GPU i915 kern...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.513.2.el7 - Revert 'rds/ib: recover rds connection from stuck tx path' Nagappan Ramasamy Palaniappan Orabug: 34124234 4.14.35-2047.513.1.el7 - mm/page-writeback: Fix performance when BDI's share of ratio is 0. Chi Wu Orabug: 34050050 - esp: Fix possible buffer overflow in ESP...