SUSE-SU-2020:2506-1 Security update for the Linux Kernel (Live Patch 1 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-1227 fixes several issues. The following security issues were fixed: - CVE-2020-14331: Fixed a buffer over-write in vgaconscroll bsc1174247. - CVE-2020-15780: Fixed a lockdown bypass via injection of malicious ACPI tables via configfs bsc1174186. -...

SUSE-SU-2020:2499-1 Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94116 fixes several issues. The following security issues were fixed: - CVE-2020-14331: Fixed a buffer over-write in vgaconscroll bsc1174247. - CVE-2019-16746: Fixed a buffer overflow in net/wireless/nl80211.c bsc1173659. - CVE-2020-11668: Fixed a memory...

SUSE-SU-2020:2498-1 Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94113 fixes several issues. The following security issues were fixed: - CVE-2020-14331: Fixed a buffer over-write in vgaconscroll bsc1174247. - CVE-2019-16746: Fixed a buffer overflow in net/wireless/nl80211.c bsc1173659. - CVE-2019-9458: Fixed a...

SUSE-SU-2020:2487-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-10135: Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may have allowed an...

MGASA-2020-0355 Updated kernel and kernel-linus packages fix security vulnerabilities

This update is based on the upstream 5.7.19 kernel and fixes at least the following security issue: In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in trymergefreespace ...

kernel security and bug fix update

2.6.32-754.33.1.OL6 - Update genkey bug 25599697 2.6.32-754.33.1 - message scsi: mptscsih: Fix read sense data size Tomas Henzl 1824907 2.6.32-754.32.1 - wireless libertas: make lbsibssjoinexisting return error code on rates overflow Jarod Wilson 1776569 - wireless libertas: don't exit from...

Kernel security update: Virtuozzo ReadyKernel patch 113.0 for Virtuozzo Hybrid Server 7.0, Virtuozzo Infrastructure Platform 2.5, 3.0 and Virtuozzo Hybrid Infrastructure 3.5

The cumulative Virtuozzo ReadyKernel patch was updated with security and stability fixes. The patch applies to the kernels 3.10.0-862.20.2.vz7.73.29 Virtuozzo Hybrid Server 7.0.9 and Virtuozzo Infrastructure Platform 2.5, 3.10.0-957.10.1.vz7.85.17 Virtuozzo Hybrid Server 7.0.10,...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

kernel security, bug fix, and enhancement update

4.18.0-193.13.22.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-193.13.22 - Rebuild to get kernel image properly signed Bruno...

kernel: Indirect branch speculation can be enabled after it was force-disabled by the PR_SPEC_FORCE_DISABLE prctl command.

A flaw was found in the prctl function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to...

Code injection

An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port permissions of an unrelated task. This occurs because tssinvalidateiobitmap mishandling causes a loss of synchronization between the I/O bitmaps ...

Amazon Linux AMI : kernel (ALAS-2020-1401)

The version of kernel installed on the remote host is prior to 4.14.186-110.268. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1401 advisory. An issue where a provided address with accessok is not checked was discovered in i915gemexecbuffer2ioctl in...

kernel security and bug fix update

2.6.32-754.31.1.OL6 - Update genkey bug 25599697 2.6.32-754.31.1 - x86 x86/speculation: Provide SRBDS late microcode loading support Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation: Add Ivy Bridge to affected list Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.47.1 - media: ttusb-dec: Fix info-leak in ttusbdecsendcommand Tomas Bortoli Orabug: 31351121 CVE-2019-19533 - can: peakusb: fix slab info leak Johan Hovold Orabug: 31351143 CVE-2019-19534 - ALSA: core: Fix card races between register and disconnect Takashi Iwai Orabug:...

SUSE-SU-2020:1587-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which...

CVE-2020-13974

An issue was discovered in the Linux kernel 4.4 through 5.7.1. drivers/tty/vt/keyboard.c has an integer overflow if kascii is called several times in a row, aka CID-b86dab054059. NOTE: Members in the community argue that the integer overflow does not lead to a security issue in this case...

Unbreakable Enterprise kernel security update

2.6.39-400.322.1 - ipvs: reset ipvs pointer in netns Julian Anastasov Orabug: 31027196 - ipvs: prefer NETDEVDOWN event to free cached dsts Julian Anastasov Orabug: 31027196 - HID: hiddev: do cleanup in failure of opening a device Hillf Danton Orabug: 31206362 CVE-2019-19527 - HID: hiddev: avoid...

SUSE-SU-2020:1486-1 Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2)

This update for the Linux Kernel 4.4.121-92129 fixes several issues. The following security issues were fixed: - CVE-2020-12653: Fixed a buffer overflow in mwifiexcmdappendvsietlv which could have allowed local users to gain privileges or cause a denial of service bsc1171254. - CVE-2020-12654:...

kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c

A use-after-free vulnerability was found in the Linux kernel’s implementation of blktrace in the blkaddtrace function. A local attacker with permissions to run block trace instructions against a device can create a situation where the core blocktrace object is used after it is freed. The attacker...

LSN-0067-1 Kernel Live Patch Security Notice

It was discovered that the Serial CAN interface driver in the Linux kernel did not properly initialize data. A local attacker could use this to expose sensitive information kernel memory. CVE-2020-11494...