4586 matches found
SUSE-SU-2021:3371-1 Security update for the Linux Kernel (Live Patch 24 for SLE 15)
This update for the Linux Kernel 4.12.14-15072 fixes several issues. The following security issues were fixed: - CVE-2021-3715: Fixed a user-after-free in the Linux kernel's Traffic Control networking subsystem which could lead to local privilege escalation. bsc1190350. - CVE-2021-38160: Fixed a...
Unbreakable Enterprise kernel security update
4.14.35-2047.507.7.6 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33406810 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33406819 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33406814 - net/mlx5: Ra...
arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architecture.
...
SUSE-SU-2021:3205-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function scosocksendmsg in the bluetooth stack bsc1188172. - CVE-2021-3653: Missing validation of the intc...
Unbreakable Enterprise kernel security update
4.1.12-124.54.6.1 - fs/namespace.c: fix mountpoint reference counter race Piotr Krysiuk Orabug: 33369433 CVE-2020-12114 CVE-2020-12114 - btrfs: only search for leftinfo if there is no rightinfo in trymergefreespace Josef Bacik Orabug: 33369414 CVE-2019-19448 CVE-2019-19448 - cfg80211: wext: avoid...
SUSE-SU-2021:3177-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP2 Realtime kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks bsc1190115. - CVE-2021-38160: Data...
kernel: SVM nested virtualization issue in KVM (AVIC support)
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB virtual machine control block provided by the L1 guest to spawn/handle a nested guest L2. Due to improper validation of the "intctl" field, this issue could allow a malicious ...
Moderate: kernel security, bug fix, and enhancement update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: SVM nested virtualization issue in KVM AVIC support CVE-2021-3653 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
kernel: out-of-bounds write in xt_compat_target_from_user() in net/netfilter/x_tables.c
A flaw was discovered in processing setsockopt IPTSOSETREPLACE or IP6TSOSETREPLACE for 32 bit processes on 64 bit systems. This flaw will allow local user to gain privileges or cause a DoS through user name space. This action is usually restricted to root-privileged users but can also be leverage...
LSN-0081-1 Kernel Live Patch Security Notice
Maxim Levitsky discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel did not properly prevent a guest VM from enabling AVIC in nested guest VMs. An attacker in a guest VM could use this to write to portions of the host's physical memory.CVE-2021-3653 Maxim...
CVE-2021-33909 affecting package kernel 5.10.168.1-1
CVE-2021-33909 affecting package kernel 5.10.168.1-1. A patched version of the package is available...
CVE-2020-25639 affecting package kernel 5.10.189.1-1
CVE-2020-25639 affecting package kernel 5.10.189.1-1. A patched version of the package is available...
kernel security and bug fix update
3.10.0-1160.42.2.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
OESA-2021-1336 kernel security update
he Linux Kernel, the operating system core itself. Security Fixes: A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race condition of the call scoconndel together with the call scosocksendm...
Linux eBPF ALU32 32-bit Invalid Bounds Tracking Local Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linux eBPF ALU32 32-bit Invalid Bounds Tracking LPE', 'Description' = %q Linux kernels from 5.7-rc1 prior to 5.13-rc4, 5.12.4, 5.11.21, and 5.10....
OESA-2021-1324 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of...
LSN-0080-1 Kernel Live Patch Security Notice
Andy Nguyen discovered that the netfilter subsystem in the Linux kernel contained an out-of-bounds write in its setsockopt implementation. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2021-22555...
kernel security, bug fix, and enhancement update
4.18.0-305.12.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: Fix /proc/kcore Henry...
Unbreakable Enterprise kernel security update
5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 5.4.17-2102.204.4.1 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: F...