70 matches found
Important: Red Hat Security Advisory: kpatch-patch security update
An update is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Oracle Linux 8 : kernel (ELSA-2021-2570)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-2570 advisory. - Bluetooth: verify AMP hcichan before ampdestroy Gopal Tiwari 1962544 1962546 CVE-2021-33034 - redhat/configs: Add CONFIGSYSTEMREVOCATIONKEYS and...
SUSE SLES15 Security Update : kernel (Live Patch 0 for SLE 15 SP3) (SUSE-SU-2021:2198-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2198-1 advisory. This update for the Linux Kernel 5.3.18-57 fixes several issues. The following issues were fixed: - CVE-2021-3489: Fixed an issue where the eBP...
ALSA-2021:2570 Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in net/bluetooth/hcievent.c when destroying an hcichan CVE-2021-33034 kernel: security bypass in certs/blacklist.c and certs/systemkeyring.c CVE-2020-26541 For more details...
SUSE SLED15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2021:2184-1)
The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2184-1 advisory. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: ...
SUSE SLES15 Security Update : kernel (Live Patch 13 for SLE 15 SP2) (SUSE-SU-2021:2027-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2027-1 advisory. This update for the Linux Kernel 5.3.18-2464 fixes several issues. The following issues were fixed: - CVE-2021-33200: Enforcing incorrect limit...
SUSE SLES12: kernel-livepatch-4_12_14-150_69-default / etc (SUSE-SU-2021:2060-1)
The remote SUSE Linux SLES12 / SLES15 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2060-1 advisory. This update for the Linux Kernel 4.12.14-15069 fixes several issues. The following security issues were fixed: -...
CVE-2020-36386
The CVE-2020-36386 vulnerability affects the Linux kernel prior to 5.8.1 and is located in net/bluetooth/hci_event.c (hci_extended_inquiry_result_evt). A slab-out-of-bounds read in this function could disclose information or contribute to a DoS condition. Exploitation requires local access (AV:L,...
CVE-2021-33034
In the Linux kernel before 5.12.4, net/bluetooth/hcievent.c has a use-after-free when destroying an hcichan, aka CID-5c4c8c954409. This leads to writing an arbitrary value...
SUSE: Security Advisory (SUSE-SU-2018:0245-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-35499
A NULL pointer dereference flaw may be seen if scosockgetsockopt function in net/bluetooth/sco.c do not have a sanity check for a socket connection, when using BTSNDMTU/BTRCVMTU for SCO sockets. This could allow a local attacker with a special user privilege to crash the system DOS or leak kernel...
RHEL 7 : kernel (RHSA-2020:4991)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4991 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: bluetooth: information leak when...
Information Disclosure
kernel is vulnerable to information disclosure. The vulnerability exists in net bluetooth when processing certain AMP packets...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Important: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHEL 7 : kernel-rt (RHSA-2020:4280)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4280 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...
RHEL 7 : kernel (RHSA-2020:4281)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4281 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: bluetooth: type confusion...
Important: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Information Disclosure
kernel-rt is vulnerable to information disclosure. The vulnerability exists as the rfcommsockrecvmsg function in net/bluetooth/rfcomm/sock.c does not initialize a certain length variable...
Information Disclosure
kernel-rt is vulnerable to information disclosure. The vulnerability exists as the btsockrecvmsg function in net/bluetooth/afbluetooth..c does not initialize a certain length variable...