EUVD-2024-53773

Malicious code in bioql PyPI...

postgresql: PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table

An access control bypass flaw has been discovered in PostgreSQL. The PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access. Separately, statistics allow a user to read sampled data that a row security policy intended to hide...

Linux Distros Unpatched Vulnerability : CVE-2024-57849

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/cpumsf: Handle CPU hotplug remove during sampling CPU hotplug remove handling triggers the following function call sequence: CPUHPAPPERFS390SFONLINE --...

CVE-2024-57849

A vulnerability was found in the Linux Kernel. This issue affects performance monitoring on the s390 architecture during specific CPU hotplug scenarios. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteri...

CVE-2024-57849

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Handle CPU hotplug remove during sampling CPU hotplug remove handling triggers the following function call sequence: CPUHPAPPERFS390SFONLINE -- s390pmusfofflinecpu ... CPUHPAPPERFONLINE -- perfeventexitcpu The s390...

CVE-2024-57849

The CVE-2024-57849 issue is in the Linux kernel s390 CPUMF sampling path. When a CPU is hotplugged out while a performance event is still active on that CPU, the hotplug/removal sequence can cause SDBs (sampling data buffers) to be freed while still in use, creating a potential use-after-free con...

CVE-2024-57849 s390/cpum_sf: Handle CPU hotplug remove during sampling

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Handle CPU hotplug remove during sampling CPU hotplug remove handling triggers the following function call sequence: CPUHPAPPERFS390SFONLINE -- s390pmusfofflinecpu ... CPUHPAPPERFONLINE -- perfeventexitcpu The s390...

CVE-2024-57849 s390/cpum_sf: Handle CPU hotplug remove during sampling

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Handle CPU hotplug remove during sampling CPU hotplug remove handling triggers the following function call sequence: CPUHPAPPERFS390SFONLINE -- s390pmusfofflinecpu ... CPUHPAPPERFONLINE -- perfeventexitcpu The s390...

MGASA-2019-0172 Updated kernel-linus packages fixes security vulnerabilities

This kernel update provides the upstream 4.14.119 that adds the kernel side mitigations for the Microarchitectural Data Sampling MDS, also called ZombieLoad attack vulnerabilities in Intel processors that can allow attackers to retrieve data being processed inside a CPU. To complete the mitigatio...