Unbreakable Enterprise kernel security update

2.6.39-400.302.1 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459730 CVE-2018-7566 - rds: CVE-2018-7492: Fix NULL pointer dereference in rdsrdmamap Hakon Bugge Orabug: 28539910...

Unbreakable Enterprise kernel security update

4.14.35-1818.3.3 - net: netfailover: fix typo in netfailoverslaveregister Liran Alon Orabug: 28122110 - virtionet: Extend virtio to use VF datapath when available Sridhar Samudrala Orabug: 28122110 - virtionet: Introduce VIRTIONETFSTANDBY feature bit Sridhar Samudrala Orabug: 28122110 - net:...

kernel security and bug fix update

2.6.32-754.6.3.OL6 - Update genkey bug 25599697 2.6.32-754.6.3 - kvm VMX: fixes for vmentryl1dflush module parameter Marcelo Tosatti 1628796 - x86 speculation: Use ARCHCAPABILITIES to skip L1D flush on vmentry Marcelo Tosatti 1628796 - x86 KVM: VMX: skip L1TF flush on VM-entry if EPT is disabled...

May 10, 2016 — KB3156387 (OS Build 10240.16854)

May 10, 2016 — KB3156387 OS Build 10240.16854 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Fixed memory leak that occurs when opening a portable document format PDF form multiple times. Fix...

Amazon Linux AMI : kernel (ALAS-2018-1087)

NOTE: CVE-2018-14634 was already fixed in the 4.14 kernel released with the 2018.03 AMI release. The advisory release date does not accurately reflect the date this was fixed. The actual date of the fix being released is: 2018-04-23. An integer overflow flaw was found in the Linux kernel's...

Amazon Linux AMI : kernel (ALAS-2018-1086)

A security flaw was found in the chapservercomputemd5 function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack. The atta...

Important: kernel

Issue Overview: A security flaw was found in the chapservercomputemd5 function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed. An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the...

SUSE-SU-2018:2981-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-14617: Prevent NULL pointer dereference and panic in hfspluslookup when opening a file that is purportedly a hard link in an hfs+ filesystem that has...

SUSE-SU-2018:2961-1 Security update for the Linux Kernel (Live Patch 16 for SLE 12 SP3)

This update for the Linux Kernel 4.4.143-9447 fixes several issues. The following security issues were fixed: - CVE-2018-5390: Prevent very expensive calls to tcpcollapseofoqueue and tcppruneofoqueue for every incoming TCP packet which can lead to a denial of service bsc1102682. - CVE-2018-10938:...

SUSE-SU-2018:2938-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15)

This update for the Linux Kernel 4.12.14-256 fixes one issue. The following security issue was fixed: - CVE-2018-10938: It was found that a crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipsov4optptr function in net/ipv4/cipsoipv4.c...

SUSE-SU-2018:2940-1 Security update for the Linux Kernel (Live Patch 1 for SLE 15)

This update for the Linux Kernel 4.12.14-253 fixes several issues. The following security issues were fixed: - CVE-2018-10938: It was found that a crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipsov4optptr function in net/ipv4/cipsoipv4...

SUSE-SU-2018:2933-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15)

This update for the Linux Kernel 4.12.14-2511 fixes several issues. The following security issues were fixed: - CVE-2018-15471: An issue was discovered in xenvifsethashmapping in drivers/net/xen-netback/hash.c. The Linux netback driver allowed frontends to control mapping of requests to request...

August 9, 2016 — KB3176495 (OS Build 14393.51)

August 9, 2016 — KB3176495 OS Build 14393.51 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability for Internet Explorer 11. Addressed issue to keep pen click settings after...

kernel security and bug fix update

3.10.0-862.14.4.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.14.4 - scsi Revert: lpfc: Fix port initialization failure Radomir Vrbovsky...

SUSE-SU-2018:2862-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP3 RT kernel was updated to 4.4.155 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-13093: Prevent NULL pointer dereference and panic in lookupslow on a NULL inode-iops pointer when doing pathwalks on a corrupted xfs image...

SUSE-SU-2018:2860-1 Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP2)

This update for the Linux Kernel 4.4.114-9264 fixes several issues. The following security issues were fixed: - CVE-2018-5390: Prevent very expensive calls to tcpcollapseofoqueue and tcppruneofoqueue for every incoming TCP packet which can lead to a denial of service bsc1102682. - CVE-2018-100002...

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on the upstream 4.14.69 and adds additional fixes for the L1TF and Spectre security issues. Other fixes in this update: all SPIINTELSPI config options have been disable to prevent a potential bios corrupting bug mga23560 For other changes in this update, see the...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.24.2 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Extend 64bit swap file size...

CVE-2018-16276

An issue was discovered in yurexread in drivers/usb/misc/yurex.c in the Linux kernel before 4.17.7. Local attackers could use user access read/writes with incorrect bounds checking in the yurex USB driver to crash the kernel or potentially escalate privileges...

CVE-2018-14619

A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each afalgctx was freed instead of when the aeadtfm was freed. This can cause the null skcipher to be freed while it is still in use leading to a local user bein...