Slackware: Security Advisory (SSA:2018-208-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:1482-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1478)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0284)

The remote OracleVM system is missing necessary patches to address critical security updates : - Revert commit 8bd274934987 'block: fix bdi vs gendisk lifetime mismatch' Ashish Samant Orabug: 28968102 - KVM/x86: Add IBPB support Ashok Raj Orabug: 28703712 - x86/intel/spectrev2: Remove unnecessary...

Unbreakable Enterprise kernel security update

4.1.12-124.22.4 - Revert commit 8bd274934987 'block: fix bdi vs gendisk lifetime mismatch' Ashish Samant Orabug: 28968102 - KVM/x86: Add IBPB support Ashok Raj Orabug: 28703712 - x86/intel/spectrev2: Remove unnecessary retpcompiler test Boris Ostrovsky Orabug: 28814570 - x86/intel/spectrev4:...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4261)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4261 advisory. - x86/speculation: Protect against userspace-userspace spectreRSB Jiri Kosina Orabug: 28631590 CVE-2018-15572 - x86/spectrev2: Remove remaining...

CVE-2018-15572

The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks...

CVE-2018-15572

The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks...

[slackware-security] Slackware 14.2 kernel

New kernel packages are available for Slackware 14.2 to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/linux-4.4.144/: Upgraded. This kernel update enables additional mitigations for spectrev2 IBPB and IBRSFW. It also enables reporting on the...

Unbreakable Enterprise kernel security update

4.1.12-124.15.4 - x86/bugs/IBRS: Keep SSBD mitigation in effect if spectrev2=ibrs is selected Mihai Carabas - fs/pstore: update the backend parameter in pstore module Wang Long Orabug: 27994372 - kvm: vmx: Reinstate support for CPUs without virtual NMI Paolo Bonzini Orabug: 28041210 - dm crypt: a...

Unbreakable Enterprise kernel security update

4.1.12-61.63.1 - Revert 'kernel.spec: Require the new microcodectl.' Brian Maly - x86: Clean up IBRS functionality resident in common code Kanth Ghatraju Orabug: 27439198 - x86: Display correct settings for the SPECTREV2 bug Kanth Ghatraju Orabug: 27439198 - Set CONFIGGENERICCPUVULNERABILITIES fl...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2018-4020)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4020 advisory. - x86: Use PREDCMD MSR when ibpb is enabled Konrad Rzeszutek Wilk Orabug: 27369777 CVE-2017-5715 CVE-2017-5753 - x86/spec: Dont print the Missing...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0012) (Spectre)

The remote OracleVM system is missing necessary patches to address critical security updates : - Revert 'kernel.spec: Require the new microcodectl.' Brian Maly - xen-blkback: add pendingreq allocation stats Ankur Arora Orabug: 27386890 - xen-blkback: move indirect req allocation out-of-line Ankur...