16 matches found
CVE-2026-53110
A flaw was found in the Linux kernel's BPF Berkeley Packet Filter JIT Just-In-Time compiler for the s390x architecture. The system's Application Binary Interface ABI requires that unsigned arguments and return values be zero-extended. However, the BPF JIT compiler incorrectly performed only sign...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: crypto: afalg – Fixed an issue where initialisation was missing, affecting gcm-aes-s390. Fixed the afalgallocareq function to initialize areq-firstrsgl.sgl.sgt.sgl to point to the scatterlist array within areq-firstrsgl.sgl.sg...
CLSA-2025-1765231763 golang: Fix of 3 CVEs
Update to Go 1.22.9 - Remove CVE-2024-34155, CVE-2024-34156, and CVE-2024-34158 patches - Remove fix-standard-crypto-panic.patch no longer needed - Add disablestatictestspart1.patch and disablestatictestspart2.patch to disable OpenSSL backend for static builds - Add...
java-1.8.0-openjdk bug fix update for Rocky Linux 8.8, 8.10, 9.2, 9.4 and 9.5
An update is available for java-1.8.0-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime...
Security update for glibc
This update for glibc fixes the following issue: CVE-2025-0395: Fix underallocation of abortmsgs struct bsc1236282, BZ 32582 s390x-wcsncmp patch: s390x: Fix segfault in wcsncmp bsc1228044. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
USN-5086-1 linux, linux-hwe, linux-hwe-5.11, linux-hwe-5.4 vulnerability
Johan Almbladh discovered that the eBPF JIT implementation for IBM s390x systems in the Linux kernel miscompiled operations in some situations, allowing circumvention of the BPF verifier. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...
[SECURITY] [DSA 4667-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4667-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 28, 2020 https://www.debian.org/security/faq -...
SUSE-SU-2020:1117-1 Security update for pam_radius
This update for pamradius fixes the following issues: - CVE-2015-9542: Fixed a buffer overflow in password field bsc1163933. - On s390x didn't decrypt passwords correctly bsc1141670...
SUSE-SU-2018:1498-1 Security update for gcc43
This update for gcc43 fixes the following issues: This update adds support for 'expolines' on s390x, allowing fixing CVE-2017-5715 in a more lightweight fashion. bsc1086069 The option flags are the same as for the x86 retpolines. A compiler crash when building userland packages with x86 retpoline...
USN-3541-2 linux-hwe, linux-azure, linux-gcp, linux-oem vulnerabilities
USN-3541-1 addressed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS. Jann Horn discovered that microprocessors utilizing speculative execution and branch...
kernel: stack buffer overflow in the native Bluetooth stack
A stack buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client. On systems with the stack protection feature enabled in the kernel CONFIGCCSTACKPROTECTOR=y, which is enabled on all architectures other tha...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The Linux-headers-2.6.18-6-s390x package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
The Linux-image-2.6.18-6-s390x operating system from Debian GNU/Linux has multiple vulnerabilities that, if exploited, may compromise the accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the linux-headers-2.6.26-1-s390x package of the Debian GNU/Linux operating system may be exploited, leading to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality of protected information
The Linux-image-2.6.18-4-s390x operating system from Debian GNU/Linux has multiple vulnerabilities that, if exploited, may lead to a violation of the confidentiality of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities of the Debian GNU/Linux operating system that allow a remote attacker to compromise the accessibility of protected information
Multiple vulnerabilities exist in the kernel-image-2.4.27-4-s390x operating system from Debian GNU/Linux. Exploitation of these vulnerabilities may lead to a violation of the accessibility of protected information. These vulnerabilities can be exploited remotely...