SUSE-SU-2021:4052-1 Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94150 fixes several issues. The following security issues were fixed: - CVE-2021-0935: In ip6xmit of ip6output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution...

About the security content of tvOS 15.2

About the security content of tvOS 15.2 This document describes the security content of tvOS 15.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

Improve kernel security with the new Microsoft Vulnerable and Malicious Driver Reporting Center

Windows 10 and Windows 11 have continued to raise the security bar for drivers running in the kernel. Kernel-mode driver publishers must pass the Hardware Lab Kit HLK compatibility tests, malware scanning, and prove their identity through extended validation EV certificates. This has significantl...

Unbreakable Enterprise kernel security update

4.1.12-124.58.2 - ovl: prevent private clone if bind mount is not allowed Miklos Szeredi Orabug: 33560431 CVE-2021-3732 4.1.12-124.58.1 - sunrpc: move NOCRKEYTIMEOUT to the auth-auflags Scott Mayhew Orabug: 33443537 - xen/netfront: stop tx queues during live migration Dongli Zhang Orabug: 3353641...

Exploit for CVE-2016-2384

This repository contains proof-of-concept PoC exploits for various vulnerabilities in the Linux kernel. The exploits target different vulnerabilities, including CVE-2016-2384, CVE-2016-9793, and CVE-2017-1000112. CVE-2016-2384 is a use-after-free vulnerability in the usb-midi driver, which allows...

OPENSUSE-SU-2021:3876-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past jscSLE-22573 You can reenable v...

PUB-A-174049006

In regmapexit of regmap.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation...

Unbreakable Enterprise kernel-container security update

5.4.17-2136.301.1.2.el7 - Revert 'net/rds: Allocate pages on HCA NUMA nodeid' Gerd Rausch Orabug: 33561324 - Revert 'net/rds: Allocate rdsibincoming,fragslab on HCA NUMA nodeid' Gerd Rausch Orabug: 33561324 - Revert 'net/rds: Use the same vector for send & receive' Gerd Rausch Orabug: 33561324 -...

SUSE-SU-2021:3742-1 Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-5919 fixes several issues. The following security issues were fixed: - CVE-2021-34866: Fixed possible eBPF Type Confusion privilege escalation vulnerability via eBPF type confusion bsc1191646. - CVE-2021-41864: Fixed an integer overflow with a resultant...

kernel security update

4.18.0-348.2.15.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

CVE-2021-42114

CVE-2021-42114 (Blacksmith) affects modern DRAM (PC‑DDR4, LPDDR4X) where TRR mitigations can be bypassed by non‑uniform memory access patterns. ETH Zurich et al. demonstrated a fuzzer (Blacksmith) that triggered bit flips across 40 DRAM devices from major vendors (Samsung, SK Hynix, Micron), enab...

kernel security, bug fix, and enhancement update

4.18.0-348.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

GSD-2021-1001965 regmap: Fix possible double-free in regcache_rbtree_exit()

regmap: Fix possible double-free in regcacherbtreeexit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.254 by commit...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

kernel security, bug fix, and enhancement update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

CLSA-2021-1634922728 Fixed 22 CVEs in kernel

ELS-138: netfilter: xtables: add missing tables zeroing - ELS-138: CVE-2021-33909: seqfile: disallow extremely large seq buffer allocation - ELS-138: CVE-2021-22555: netfilter: xtables: fix compat match/target pad out-of-bound write - ELS-138: CVE-2020-29661: tty: Fix -pgrp locking in tiocspgrp -...

Unbreakable Enterprise kernel security update

4.14.35-2047.508.3 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33396682 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33392821 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33352735 4.14.35-2047.508...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...