SUSE-SU-2021:2559-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-5910 fixes several issues. The following security issues were fixed: - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. bsc1188062 - CVE-2021-22555: Fixed an heap out-of-bounds write in...

LSN-0079-1 Kernel Live Patch Security Notice

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.CVE-2021-3600 It was discovered that the virtual file system...

SUSE-SU-2021:2433-1 Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94127 fixes several issues. The following security issues were fixed: - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. bsc1187687 - CVE-2021-0512: Fixed a...

SUSE-SU-2021:2368-1 Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP4)

This update for the Linux Kernel 4.12.14-9577 fixes several issues. The following security issues were fixed: - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. bsc1187687 - CVE-2021-0512: Fixed a...

SUSE-SU-2021:2332-1 Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-19756 fixes several issues. The following security issues were fixed: - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. bsc1187597 - CVE-2021-23133: Fixed...

Microsoft Windows Kernel 安全特征问题漏洞

Microsoft Windows Kernel is the kernel of the Windows operating system from Microsoft Corporation USA. A vulnerability exists in the Microsoft Windows Kernel due to a security feature issue. The following products and editions are affected: Windows 10 Version 21H1 for x64-based Systems,Windows 10...

Exploit for Use After Free in Microsoft

CVE-2021-31166-Exploit Exploit for MS Http Protocol Stack RCE...

GSD-2021-1000903 KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message

KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.126 by commit...

RHEL 8 : kernel (RHSA-2021:2570)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2570 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in...

SUSE: Security Advisory (SUSE-SU-2021:1977-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2021:0873-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service panic because net/netfilter/xtables.c and...

Unbreakable Enterprise kernel-container security update

5.4.17-2102.202.5 - sctp: delay autoasconf init until binding the first addr Xin Long Orabug: 32907967 CVE-2021-23133 - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860491 CVE-2021-31916 - uek-rpm: update kABI lists for the new symbols Saeed Mirzamohammadi...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9307)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9307 advisory. - sctp: delay autoasconf init until binding the first addr Xin Long Orabug: 32907967 CVE-2021-23133 - dm ioctl: fix out of bounds array access when...

SUSE: Security Advisory (SUSE-SU-2021:0354-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

CVE-2020-10742

A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to crash. In some cases, a reach out of the index after one memory allocation by kmalloc will cause a kernel panic. The highest threat from this vulnerability is to data confidentiality...

UVI-2021-1000075 cifs: fix regression when mounting shares with prefix paths

cifs: fix regression when mounting shares with prefix paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...

SUSE-SU-2021:1728-1 Security update for the Linux Kernel (Live Patch 18 for SLE 15)

This update for the Linux Kernel 4.12.14-15052 fixes several issues. The following security issues were fixed: - CVE-2020-36322: Fixed an issue inside the FUSE filesystem implementation where fusedogetattr calls makebadinode in inappropriate situations, could have caused a system crash. NOTE: the...

ALSA-2021:1578 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Integer overflow in IntelR Graphics Drivers CVE-2020-12362 kernel: memory leak in sofsetgetlargectrldata function in sound/soc/sof/ipc.c CVE-2019-18811 kernel: use-after-free caused by a...

Linux kernel elevation of privilege vulnerability (CNVD-2021-34716)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel version 5.12.2. net/bluetooth/hcirequest.c in the Linux kernel has a race condition to remove the HCI controller. No details...