{"id": "USN-4325-1", "bulletinFamily": "unix", "title": "Linux kernel vulnerabilities", "description": "It was discovered that the IPMI message handler implementation in the Linux \nkernel did not properly deallocate memory in certain situations. A local \nattacker could use this to cause a denial of service (kernel memory \nexhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a use- \nafter-free vulnerability. A local attacker could use this to cause a denial \nof service (system crash) or possibly expose sensitive information (kernel \nmemory). (CVE-2020-8428)", "published": "2020-04-07T00:00:00", "modified": "2020-04-07T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}, "href": "https://ubuntu.com/security/notices/USN-4325-1", "reporter": "Ubuntu", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2019-19046", "https://people.canonical.com/~ubuntu-security/cve/CVE-2020-8428"], "cvelist": ["CVE-2020-8428", "CVE-2019-19046"], "type": "ubuntu", "lastseen": "2020-07-02T11:37:58", "edition": 2, "viewCount": 27, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2020-8428", "CVE-2019-19046"]}, {"type": "nessus", "idList": ["UBUNTU_USN-4324-1.NASL", "UBUNTU_USN-4319-1.NASL", "UBUNTU_USN-4320-1.NASL", "DEBIAN_DSA-4667.NASL", "UBUNTU_USN-4318-1.NASL", "PHOTONOS_PHSA-2020-3_0-0069_LINUX.NASL", "REDHAT-RHSA-2020-5206.NASL", "PHOTONOS_PHSA-2020-2_0-0219_LINUX.NASL", "REDHAT-RHSA-2020-3545.NASL", "UBUNTU_USN-4325-1.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310844384", "OPENVAS:1361412562310844387", "OPENVAS:1361412562310844385", "OPENVAS:1361412562310844364", "OPENVAS:1361412562311220201342", "OPENVAS:1361412562310844383", "OPENVAS:1361412562310704667", "OPENVAS:1361412562311220201292", "OPENVAS:1361412562310844382", "OPENVAS:1361412562310877113"]}, {"type": "ubuntu", "idList": ["LSN-0065-1", "USN-4302-1", "USN-4318-1", "USN-4319-1", "USN-4320-1", "USN-4324-1"]}, {"type": "cloudfoundry", "idList": ["CFOUNDRY:A6BB54E614972BC1F16419D7DB82331A", "CFOUNDRY:F57A73CFC5FB17A63EC4D0328D382C3A"]}, {"type": "redhat", "idList": ["RHSA-2020:4062", "RHSA-2020:5206", "RHSA-2020:5656", "RHSA-2020:4060", "RHSA-2020:4431", "RHSA-2020:4609", "RHSA-2020:3545"]}, {"type": "debian", "idList": ["DEBIAN:DLA-2242-1:573AF", "DEBIAN:DSA-4667-1:62006", "DEBIAN:DSA-4698-1:66813"]}, {"type": "threatpost", "idList": ["THREATPOST:3073D5AD7F3554F422710689A9436CAA"]}, {"type": "symantec", "idList": ["SMNTC-110895"]}, {"type": "fedora", "idList": ["FEDORA:94BC060A4ECF", "FEDORA:803AE30C6416", "FEDORA:628EB603ECD0", "FEDORA:51B856067EB8", "FEDORA:4002B609954A", "FEDORA:EC9F26076D31", "FEDORA:8FEA960A4096", "FEDORA:224AE608F491", "FEDORA:371E06040B12", "FEDORA:267796076024"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2020:0336-1", "OPENSUSE-SU-2019:2675-1"]}, {"type": "centos", "idList": ["CESA-2020:4060"]}, {"type": "oraclelinux", "idList": ["ELSA-2020-4060"]}], "modified": "2020-07-02T11:37:58", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2020-07-02T11:37:58", "rev": 2}, "vulnersScore": 5.6}, "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-5.0.0-1047-oem-osp1", "packageVersion": "5.0.0-1047.52"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-azure", "packageVersion": "5.0.0.1036.47"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-5.0.0-1036-azure", "packageVersion": "5.0.0-1036.38"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-gke-5.0", "packageVersion": "5.0.0.1033.21"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-5.0.0-1033-gke", "packageVersion": "5.0.0-1033.34"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-5.0.0-1014-oracle", "packageVersion": "5.0.0-1014.19"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-gcp", "packageVersion": "5.0.0.1034.38"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-5.0.0-1034-gcp", "packageVersion": "5.0.0-1034.35"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-oracle", "packageVersion": "5.0.0.1014.15"}, {"OS": "Ubuntu", "OSVersion": "18.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "linux-image-oem-osp1", "packageVersion": "5.0.0.1047.50"}], "scheme": null}

{"cve": [{"lastseen": "2020-12-09T22:03:18", "description": "fs/namei.c in the Linux kernel before 5.5 has a may_create_in_sticky use-after-free, which allows local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if the socket is being moved to a new parent directory and its old parent directory is being removed.", "edition": 21, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "baseScore": 7.1, "privilegesRequired": "LOW", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "userInteraction": "NONE", "version": "3.1"}, "impactScore": 5.2}, "published": "2020-01-29T00:15:00", "title": "CVE-2020-8428", "type": "cve", "cwe": ["CWE-416"], "bulletinFamily": "NVD", "cvss2": {"severity": "LOW", "exploitabilityScore": 3.9, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "NONE", "baseScore": 3.6, "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:P", "version": "2.0", "accessVector": "LOCAL", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 4.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-8428"], "modified": "2020-06-10T20:15:00", "cpe": [], "id": "CVE-2020-8428", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-8428", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}, "cpe23": []}, {"lastseen": "2020-12-09T21:41:48", "description": "** DISPUTED ** A memory leak in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering ida_simple_get() failure, aka CID-4aa7afb0ee20. NOTE: third parties dispute the relevance of this because an attacker cannot realistically control this failure at probe time.", "edition": 14, "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "NONE", "baseScore": 6.5, "privilegesRequired": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "userInteraction": "NONE", "version": "3.1"}, "impactScore": 3.6}, "published": "2019-11-18T06:15:00", "title": "CVE-2019-19046", "type": "cve", "cwe": ["CWE-401"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "COMPLETE", "integrityImpact": "NONE", "baseScore": 6.8, "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "acInsufInfo": false, "impactScore": 6.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2019-19046"], "modified": "2020-08-24T17:37:00", "cpe": ["cpe:/o:fedoraproject:fedora:30", "cpe:/o:opensuse:leap:15.1", "cpe:/o:fedoraproject:fedora:31", "cpe:/o:linux:linux_kernel:5.3.11"], "id": "CVE-2019-19046", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-19046", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}, "cpe23": ["cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "cpe:2.3:o:linux:linux_kernel:5.3.11:*:*:*:*:*:*:*"]}], "nessus": [{"lastseen": "2020-03-27T06:41:23", "description": "An update of the linux package has been released.", "edition": 2, "cvss3": {"score": 7.1, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}, "published": "2020-03-24T00:00:00", "title": "Photon OS 3.0: Linux PHSA-2020-3.0-0069", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428", "CVE-2019-19046"], "modified": "2020-03-24T00:00:00", "cpe": ["p-cpe:/a:vmware:photonos:linux", "cpe:/o:vmware:photonos:3.0"], "id": "PHOTONOS_PHSA-2020-3_0-0069_LINUX.NASL", "href": "https://www.tenable.com/plugins/nessus/134874", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\n# The descriptive text and package checks in this plugin were\n# extracted from VMware Security Advisory PHSA-2020-3.0-0069. The text\n# itself is copyright (C) VMware, Inc.\n\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(134874);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/26\");\n\n script_cve_id(\"CVE-2019-19046\", \"CVE-2020-8428\");\n\n script_name(english:\"Photon OS 3.0: Linux PHSA-2020-3.0-0069\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote PhotonOS host is missing multiple security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"An update of the linux package has been released.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://github.com/vmware/photon/wiki/Security-Updates-3.0-69.md\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected Linux packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-8428\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/11/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/03/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/03/24\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:vmware:photonos:linux\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:photonos:3.0\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"PhotonOS Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/PhotonOS/release\", \"Host/PhotonOS/rpm-list\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/PhotonOS/release\");\nif (isnull(release) || release !~ \"^VMware Photon\") audit(AUDIT_OS_NOT, \"PhotonOS\");\nif (release !~ \"^VMware Photon (?:Linux|OS) 3\\.0(\\D|$)\") audit(AUDIT_OS_NOT, \"PhotonOS 3.0\");\n\nif (!get_kb_item(\"Host/PhotonOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"aarch64\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"PhotonOS\", cpu);\n\nflag = 0;\n\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", reference:\"linux-api-headers-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-debuginfo-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-devel-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-docs-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-drivers-gpu-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-hmacgen-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-oprofile-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-aws-sound-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-debuginfo-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-devel-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-docs-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-drivers-gpu-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-drivers-sound-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-esx-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-esx-debuginfo-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-esx-devel-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-esx-docs-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-esx-hmacgen-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-hmacgen-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-oprofile-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-secure-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-secure-debuginfo-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-secure-devel-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-secure-docs-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-secure-hmacgen-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-secure-lkcm-4.19.104-1.ph3\")) flag++;\nif (rpm_check(release:\"PhotonOS-3.0\", cpu:\"x86_64\", reference:\"linux-tools-4.19.104-1.ph3\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux\");\n}\n", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-09-18T11:04:20", "description": "It was discovered that the IPMI message handler implementation in the\nLinux kernel did not properly deallocate memory in certain situations.\nA local attacker could use this to cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 3, "cvss3": {"score": 7.1, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}, "published": "2020-04-07T00:00:00", "title": "Ubuntu 18.04 LTS / 19.10 : Linux kernel vulnerabilities (USN-4319-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428", "CVE-2019-19046"], "modified": "2020-04-07T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp-edge", "p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2-hwe-18.04", "cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-edge", "cpe:/o:canonical:ubuntu_linux:19.10", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure-edge", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke"], "id": "UBUNTU_USN-4319-1.NASL", "href": "https://www.tenable.com/plugins/nessus/135270", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4319-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(135270);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/09/17\");\n\n script_cve_id(\"CVE-2019-19046\", \"CVE-2020-8428\");\n script_xref(name:\"USN\", value:\"4319-1\");\n\n script_name(english:\"Ubuntu 18.04 LTS / 19.10 : Linux kernel vulnerabilities (USN-4319-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"It was discovered that the IPMI message handler implementation in the\nLinux kernel did not properly deallocate memory in certain situations.\nA local attacker could use this to cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4319-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-8428\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.3-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:19.10\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/11/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/07\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(18\\.04|19\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 18.04 / 19.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2019-19046\", \"CVE-2020-8428\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4319-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-1014-oracle\", pkgver:\"5.3.0-1014.15~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-1017-gcp\", pkgver:\"5.3.0-1017.18~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-1019-azure\", pkgver:\"5.3.0-1019.20~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-1022-raspi2\", pkgver:\"5.3.0-1022.24~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-46-generic\", pkgver:\"5.3.0-46.38~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-46-generic-lpae\", pkgver:\"5.3.0-46.38~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.3.0-46-lowlatency\", pkgver:\"5.3.0-46.38~18.04.1\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-azure-edge\", pkgver:\"5.3.0.1019.19\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gcp-edge\", pkgver:\"5.3.0.1017.16\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic-hwe-18.04\", pkgver:\"5.3.0.46.102\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic-lpae-hwe-18.04\", pkgver:\"5.3.0.46.102\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-lowlatency-hwe-18.04\", pkgver:\"5.3.0.46.102\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oracle-edge\", pkgver:\"5.3.0.1014.13\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-raspi2-hwe-18.04\", pkgver:\"5.3.0.1022.11\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-snapdragon-hwe-18.04\", pkgver:\"5.3.0.46.102\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-virtual-hwe-18.04\", pkgver:\"5.3.0.46.102\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1014-oracle\", pkgver:\"5.3.0-1014.15\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1015-kvm\", pkgver:\"5.3.0-1015.16\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1016-aws\", pkgver:\"5.3.0-1016.17\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1017-gcp\", pkgver:\"5.3.0-1017.18\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1019-azure\", pkgver:\"5.3.0-1019.20\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-1022-raspi2\", pkgver:\"5.3.0-1022.24\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-46-generic\", pkgver:\"5.3.0-46.38\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-46-generic-lpae\", pkgver:\"5.3.0-46.38\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-46-lowlatency\", pkgver:\"5.3.0-46.38\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-5.3.0-46-snapdragon\", pkgver:\"5.3.0-46.38\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-aws\", pkgver:\"5.3.0.1016.18\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-azure\", pkgver:\"5.3.0.1019.38\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-gcp\", pkgver:\"5.3.0.1017.18\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-generic\", pkgver:\"5.3.0.46.39\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-generic-lpae\", pkgver:\"5.3.0.46.39\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-gke\", pkgver:\"5.3.0.1017.18\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-kvm\", pkgver:\"5.3.0.1015.17\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-lowlatency\", pkgver:\"5.3.0.46.39\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-oracle\", pkgver:\"5.3.0.1014.15\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-raspi2\", pkgver:\"5.3.0.1022.19\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-snapdragon\", pkgver:\"5.3.0.46.39\")) flag++;\nif (ubuntu_check(osver:\"19.10\", pkgname:\"linux-image-virtual\", pkgver:\"5.3.0.46.39\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-5.3-aws / linux-image-5.3-azure / linux-image-5.3-gcp / etc\");\n}\n", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-04-16T18:41:43", "description": "It was discovered that the IPMI message handler implementation in the\nLinux kernel did not properly deallocate memory in certain situations.\nA local attacker could use this to cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 2, "cvss3": {"score": 7.1, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}, "published": "2020-04-08T00:00:00", "title": "Ubuntu 18.04 LTS : linux-azure, linux-gcp, linux-gke-5.0, linux-oem-osp1, linux-oracle-5.0 (USN-4325-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428", "CVE-2019-19046"], "modified": "2020-04-08T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gke", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oem-osp1", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gcp", "cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-oem-osp1", "p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-5.0", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure"], "id": "UBUNTU_USN-4325-1.NASL", "href": "https://www.tenable.com/plugins/nessus/135286", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4325-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(135286);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/04/14\");\n\n script_cve_id(\"CVE-2019-19046\", \"CVE-2020-8428\");\n script_xref(name:\"USN\", value:\"4325-1\");\n\n script_name(english:\"Ubuntu 18.04 LTS : linux-azure, linux-gcp, linux-gke-5.0, linux-oem-osp1, linux-oracle-5.0 (USN-4325-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that the IPMI message handler implementation in the\nLinux kernel did not properly deallocate memory in certain situations.\nA local attacker could use this to cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4325-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-8428\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-oem-osp1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-5.0-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-5.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oem-osp1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/11/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/08\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(18\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 18.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2019-19046\", \"CVE-2020-8428\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4325-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1014-oracle\", pkgver:\"5.0.0-1014.19\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1033-gke\", pkgver:\"5.0.0-1033.34\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1034-gcp\", pkgver:\"5.0.0-1034.35\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1036-azure\", pkgver:\"5.0.0-1036.38\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-5.0.0-1047-oem-osp1\", pkgver:\"5.0.0-1047.52\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-azure\", pkgver:\"5.0.0.1036.47\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gcp\", pkgver:\"5.0.0.1034.38\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gke-5.0\", pkgver:\"5.0.0.1033.21\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oem-osp1\", pkgver:\"5.0.0.1047.50\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oracle\", pkgver:\"5.0.0.1014.15\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-5.0-azure / linux-image-5.0-gcp / linux-image-5.0-gke / etc\");\n}\n", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-04-12T18:43:06", "description": "Al Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 2, "cvss3": {"score": 7.1, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}, "published": "2020-04-07T00:00:00", "title": "Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerability (USN-4320-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428"], "modified": "2020-04-07T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-lts-xenial", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2", "cpe:/o:canonical:ubuntu_linux:16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-lts-xenial", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lts-xenial", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-lts-xenial", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws", "cpe:/o:canonical:ubuntu_linux:14.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic"], "id": "UBUNTU_USN-4320-1.NASL", "href": "https://www.tenable.com/plugins/nessus/135271", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4320-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(135271);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/04/10\");\n\n script_cve_id(\"CVE-2020-8428\");\n script_xref(name:\"USN\", value:\"4320-1\");\n\n script_name(english:\"Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerability (USN-4320-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Al Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4320-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.4-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-lts-xenial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lts-xenial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-lts-xenial\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-lts-xenial\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/07\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(14\\.04|16\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 14.04 / 16.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2020-8428\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4320-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1069-kvm\", pkgver:\"4.4.0-1069.76\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1105-aws\", pkgver:\"4.4.0-1105.116\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1131-raspi2\", pkgver:\"4.4.0-1131.140\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-1135-snapdragon\", pkgver:\"4.4.0-1135.143\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-177-generic\", pkgver:\"4.4.0-177.207\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-177-generic-lpae\", pkgver:\"4.4.0-177.207\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.4.0-177-lowlatency\", pkgver:\"4.4.0-177.207\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-aws\", pkgver:\"4.4.0.1105.109\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic\", pkgver:\"4.4.0.177.185\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic-lpae\", pkgver:\"4.4.0.177.185\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-kvm\", pkgver:\"4.4.0.1069.69\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-lowlatency\", pkgver:\"4.4.0.177.185\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-raspi2\", pkgver:\"4.4.0.1131.131\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-snapdragon\", pkgver:\"4.4.0.1135.127\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-virtual\", pkgver:\"4.4.0.177.185\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-4.4-aws / linux-image-4.4-generic / etc\");\n}\n", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-03-27T06:41:21", "description": "An update of the linux package has been released.", "edition": 2, "cvss3": {"score": 7.1, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}, "published": "2020-03-24T00:00:00", "title": "Photon OS 2.0: Linux PHSA-2020-2.0-0219", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428"], "modified": "2020-03-24T00:00:00", "cpe": ["p-cpe:/a:vmware:photonos:linux", "cpe:/o:vmware:photonos:2.0"], "id": "PHOTONOS_PHSA-2020-2_0-0219_LINUX.NASL", "href": "https://www.tenable.com/plugins/nessus/134875", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\n# The descriptive text and package checks in this plugin were\n# extracted from VMware Security Advisory PHSA-2020-2.0-0219. The text\n# itself is copyright (C) VMware, Inc.\n\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(134875);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/26\");\n\n script_cve_id(\"CVE-2020-8428\");\n\n script_name(english:\"Photon OS 2.0: Linux PHSA-2020-2.0-0219\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote PhotonOS host is missing multiple security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"An update of the linux package has been released.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://github.com/vmware/photon/wiki/Security-Updates-2-219.md\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected Linux packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-8428\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/03/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/03/24\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:vmware:photonos:linux\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:photonos:2.0\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"PhotonOS Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/PhotonOS/release\", \"Host/PhotonOS/rpm-list\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/PhotonOS/release\");\nif (isnull(release) || release !~ \"^VMware Photon\") audit(AUDIT_OS_NOT, \"PhotonOS\");\nif (release !~ \"^VMware Photon (?:Linux|OS) 2\\.0(\\D|$)\") audit(AUDIT_OS_NOT, \"PhotonOS 2.0\");\n\nif (!get_kb_item(\"Host/PhotonOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"aarch64\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"PhotonOS\", cpu);\n\nflag = 0;\n\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", reference:\"linux-api-headers-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-aws-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-aws-debuginfo-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-aws-devel-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-aws-docs-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-aws-drivers-gpu-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-aws-oprofile-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-aws-sound-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-debuginfo-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-devel-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-docs-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-drivers-gpu-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-esx-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-esx-debuginfo-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-esx-devel-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-esx-docs-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-oprofile-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-secure-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-secure-debuginfo-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-secure-devel-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-secure-docs-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-secure-lkcm-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-sound-4.9.214-1.ph2\")) flag++;\nif (rpm_check(release:\"PhotonOS-2.0\", cpu:\"x86_64\", reference:\"linux-tools-4.9.214-1.ph2\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux\");\n}\n", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-04-16T18:41:43", "description": "Al Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428)\n\nShijie Luo discovered that the ext4 file system implementation in the\nLinux kernel did not properly check for a too-large journal size. An\nattacker could use this to construct a malicious ext4 image that, when\nmounted, could cause a denial of service (soft lockup).\n(CVE-2020-8992).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 2, "cvss3": {"score": 7.1, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}, "published": "2020-04-08T00:00:00", "title": "Ubuntu 16.04 LTS / 18.04 LTS : linux-aws, linux-aws-hwe, linux-azure, linux-gcp, linux-gke-4.15, (USN-4324-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8992", "CVE-2020-8428"], "modified": "2020-04-08T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-lts-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-kvm", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-aws", "cpe:/o:canonical:ubuntu_linux:16.04", "cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-4.15", "p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-raspi2", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gcp", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-oem", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-hwe", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure-edge", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-snapdragon", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-lts-18.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-aws", "p-cpe:/a:canonical:ubuntu_linux:linux-image-azure", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oem", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gke", "cpe:/o:canonical:ubuntu_linux:14.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-gke"], "id": "UBUNTU_USN-4324-1.NASL", "href": "https://www.tenable.com/plugins/nessus/135285", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4324-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(135285);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/04/14\");\n\n script_cve_id(\"CVE-2020-8428\", \"CVE-2020-8992\");\n script_xref(name:\"USN\", value:\"4324-1\");\n\n script_name(english:\"Ubuntu 16.04 LTS / 18.04 LTS : linux-aws, linux-aws-hwe, linux-azure, linux-gcp, linux-gke-4.15, (USN-4324-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Al Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428)\n\nShijie Luo discovered that the ext4 file system implementation in the\nLinux kernel did not properly check for a too-large journal size. An\nattacker could use this to construct a malicious ext4 image that, when\nmounted, could cause a denial of service (soft lockup).\n(CVE-2020-8992).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4324-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-8428\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-oem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-hwe\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-aws-lts-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-azure-edge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gcp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-gke-4.15\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-kvm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oracle-lts-18.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-raspi2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-snapdragon\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/08\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(14\\.04|16\\.04|18\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 14.04 / 16.04 / 18.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2020-8428\", \"CVE-2020-8992\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4324-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1037-oracle\", pkgver:\"4.15.0-1037.41~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1060-gcp\", pkgver:\"4.15.0-1060.64\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1065-aws\", pkgver:\"4.15.0-1065.69~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-1077-azure\", pkgver:\"4.15.0-1077.82\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-aws-hwe\", pkgver:\"4.15.0.1065.65\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-azure\", pkgver:\"4.15.0.1077.80\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-azure-edge\", pkgver:\"4.15.0.1077.80\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-gcp\", pkgver:\"4.15.0.1060.74\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-gke\", pkgver:\"4.15.0.1060.74\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-oracle\", pkgver:\"4.15.0.1037.30\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1037-oracle\", pkgver:\"4.15.0-1037.41\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1057-gke\", pkgver:\"4.15.0-1057.60\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1058-kvm\", pkgver:\"4.15.0-1058.59\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1060-raspi2\", pkgver:\"4.15.0-1060.64\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1065-aws\", pkgver:\"4.15.0-1065.69\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1076-snapdragon\", pkgver:\"4.15.0-1076.83\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-1079-oem\", pkgver:\"4.15.0-1079.89\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-aws\", pkgver:\"4.15.0.1065.67\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-aws-lts-18.04\", pkgver:\"4.15.0.1065.67\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gke\", pkgver:\"4.15.0.1057.61\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-gke-4.15\", pkgver:\"4.15.0.1057.61\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-kvm\", pkgver:\"4.15.0.1058.58\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oem\", pkgver:\"4.15.0.1079.83\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-oracle-lts-18.04\", pkgver:\"4.15.0.1037.45\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-raspi2\", pkgver:\"4.15.0.1060.58\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-snapdragon\", pkgver:\"4.15.0.1076.79\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-4.15-aws / linux-image-4.15-azure / etc\");\n}\n", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-04-12T18:43:06", "description": "Al Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428)\n\nGustavo Romero and Paul Mackerras discovered that the KVM\nimplementation in the Linux kernel for PowerPC processors did not\nproperly keep guest state separate from host state. A local attacker\nin a KVM guest could use this to cause a denial of service (host\nsystem crash). (CVE-2020-8834)\n\nShijie Luo discovered that the ext4 file system implementation in the\nLinux kernel did not properly check for a too-large journal size. An\nattacker could use this to construct a malicious ext4 image that, when\nmounted, could cause a denial of service (soft lockup).\n(CVE-2020-8992).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 2, "cvss3": {"score": 7.1, "vector": "AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}, "published": "2020-04-07T00:00:00", "title": "Ubuntu 16.04 LTS / 18.04 LTS : linux, linux-hwe vulnerabilities (USN-4318-1)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8992", "CVE-2020-8834", "CVE-2020-8428"], "modified": "2020-04-07T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-16.04", "cpe:/o:canonical:ubuntu_linux:16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-16.04", "cpe:/o:canonical:ubuntu_linux:18.04:-:lts", "p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-16.04", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic-lpae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-lowlatency", "p-cpe:/a:canonical:ubuntu_linux:linux-image-oem", "p-cpe:/a:canonical:ubuntu_linux:linux-image-generic"], "id": "UBUNTU_USN-4318-1.NASL", "href": "https://www.tenable.com/plugins/nessus/135269", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-4318-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(135269);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/04/10\");\n\n script_cve_id(\"CVE-2020-8428\", \"CVE-2020-8834\", \"CVE-2020-8992\");\n script_xref(name:\"USN\", value:\"4318-1\");\n\n script_name(english:\"Ubuntu 16.04 LTS / 18.04 LTS : linux, linux-hwe vulnerabilities (USN-4318-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Al Viro discovered that the vfs layer in the Linux kernel contained a\nuse- after-free vulnerability. A local attacker could use this to\ncause a denial of service (system crash) or possibly expose sensitive\ninformation (kernel memory). (CVE-2020-8428)\n\nGustavo Romero and Paul Mackerras discovered that the KVM\nimplementation in the Linux kernel for PowerPC processors did not\nproperly keep guest state separate from host state. A local attacker\nin a KVM guest could use this to cause a denial of service (host\nsystem crash). (CVE-2020-8834)\n\nShijie Luo discovered that the ext4 file system implementation in the\nLinux kernel did not properly check for a too-large journal size. An\nattacker could use this to construct a malicious ext4 image that, when\nmounted, could cause a denial of service (soft lockup).\n(CVE-2020-8992).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/4318-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-8428\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-generic-lpae-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-lowlatency-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-oem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-virtual-hwe-16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:18.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/07\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(16\\.04|18\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 16.04 / 18.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2020-8428\", \"CVE-2020-8834\", \"CVE-2020-8992\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-4318-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-96-generic\", pkgver:\"4.15.0-96.97~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-96-generic-lpae\", pkgver:\"4.15.0-96.97~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-4.15.0-96-lowlatency\", pkgver:\"4.15.0-96.97~16.04.1\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic-hwe-16.04\", pkgver:\"4.15.0.96.104\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-generic-lpae-hwe-16.04\", pkgver:\"4.15.0.96.104\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-lowlatency-hwe-16.04\", pkgver:\"4.15.0.96.104\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-oem\", pkgver:\"4.15.0.96.104\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"linux-image-virtual-hwe-16.04\", pkgver:\"4.15.0.96.104\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-96-generic\", pkgver:\"4.15.0-96.97\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-96-generic-lpae\", pkgver:\"4.15.0-96.97\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-4.15.0-96-lowlatency\", pkgver:\"4.15.0-96.97\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic\", pkgver:\"4.15.0.96.87\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-generic-lpae\", pkgver:\"4.15.0.96.87\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-lowlatency\", pkgver:\"4.15.0.96.87\")) flag++;\nif (ubuntu_check(osver:\"18.04\", pkgname:\"linux-image-virtual\", pkgver:\"4.15.0.96.87\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_NOTE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-4.15-generic / linux-image-4.15-generic-lpae / etc\");\n}\n", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-11-21T06:03:55", "description": "The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3545 advisory.\n\n - kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c (CVE-2019-19046)\n\n - kernel: Buffer over-read in crypto_authenc_extractkeys() when a payload longer than 4 bytes is not aligned. (CVE-2020-10769)\n\n - kernel: sync of excessive duration via an XFS v5 image with crafted metadata (CVE-2020-12655)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "edition": 3, "cvss3": {"score": 6.5, "vector": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}, "published": "2020-08-26T00:00:00", "title": "RHEL 7 : kernel-alt (RHSA-2020:3545)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-10769", "CVE-2019-19046", "CVE-2020-12655"], "modified": "2020-08-26T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:7::server", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "p-cpe:/a:redhat:enterprise_linux:kernel-headers", "cpe:/o:redhat:enterprise_linux:7", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper", "p-cpe:/a:redhat:enterprise_linux:kernel-tools", "p-cpe:/a:redhat:enterprise_linux:kernel", "p-cpe:/a:redhat:enterprise_linux:python-perf", "p-cpe:/a:redhat:enterprise_linux:perf"], "id": "REDHAT-RHSA-2020-3545.NASL", "href": "https://www.tenable.com/plugins/nessus/139809", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:3545. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(139809);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/11/19\");\n\n script_cve_id(\"CVE-2019-19046\", \"CVE-2020-10769\", \"CVE-2020-12655\");\n script_xref(name:\"RHSA\", value:\"2020:3545\");\n\n script_name(english:\"RHEL 7 : kernel-alt (RHSA-2020:3545)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3545 advisory.\n\n - kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c (CVE-2019-19046)\n\n - kernel: Buffer over-read in crypto_authenc_extractkeys() when a payload longer than 4 bytes is not aligned. (CVE-2020-10769)\n\n - kernel: sync of excessive duration via an XFS v5 image with crafted metadata (CVE-2020-12655)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/20.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/119.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/400.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/401.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/835.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19046\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-10769\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-12655\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:3545\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1708775\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774988\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1832543\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-19046\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_cwe_id(20, 119, 400, 401, 835);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/11/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/08/25\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/08/26\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7::server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python-perf\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\ninclude('ksplice.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item('Host/RedHat/release');\nif (isnull(release) || 'Red Hat' >!< release) audit(AUDIT_OS_NOT, 'Red Hat');\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, 'Red Hat 7.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nrepositories = {\n 'enterprise_linux_7_server': [\n 'rhel-7-for-arm-64-debug-rpms',\n 'rhel-7-for-arm-64-optional-debug-rpms',\n 'rhel-7-for-arm-64-optional-rpms',\n 'rhel-7-for-arm-64-optional-source-rpms',\n 'rhel-7-for-arm-64-rpms',\n 'rhel-7-for-arm-64-source-rpms',\n 'rhel-7-for-system-z-a-debug-rpms',\n 'rhel-7-for-system-z-a-optional-debug-rpms',\n 'rhel-7-for-system-z-a-optional-rpms',\n 'rhel-7-for-system-z-a-optional-source-rpms',\n 'rhel-7-for-system-z-a-rpms',\n 'rhel-7-for-system-z-a-source-rpms',\n 'rhel-7-for-system-z-debug-rpms',\n 'rhel-7-for-system-z-fastrack-debug-rpms',\n 'rhel-7-for-system-z-fastrack-rpms',\n 'rhel-7-for-system-z-fastrack-source-rpms',\n 'rhel-7-for-system-z-optional-debug-rpms',\n 'rhel-7-for-system-z-optional-fastrack-debug-rpms',\n 'rhel-7-for-system-z-optional-fastrack-rpms',\n 'rhel-7-for-system-z-optional-fastrack-source-rpms',\n 'rhel-7-for-system-z-optional-rpms',\n 'rhel-7-for-system-z-optional-source-rpms',\n 'rhel-7-for-system-z-rpms',\n 'rhel-7-for-system-z-source-rpms',\n 'rhel-7-server-debug-rpms',\n 'rhel-7-server-fastrack-debug-rpms',\n 'rhel-7-server-fastrack-rpms',\n 'rhel-7-server-fastrack-source-rpms',\n 'rhel-7-server-optional-debug-rpms',\n 'rhel-7-server-optional-fastrack-debug-rpms',\n 'rhel-7-server-optional-fastrack-rpms',\n 'rhel-7-server-optional-fastrack-source-rpms',\n 'rhel-7-server-optional-rpms',\n 'rhel-7-server-optional-source-rpms',\n 'rhel-7-server-rpms',\n 'rhel-7-server-source-rpms',\n 'rhel-ha-for-rhel-7-for-system-z-debug-rpms',\n 'rhel-ha-for-rhel-7-for-system-z-rpms',\n 'rhel-ha-for-rhel-7-for-system-z-source-rpms',\n 'rhel-ha-for-rhel-7-server-debug-rpms',\n 'rhel-ha-for-rhel-7-server-rpms',\n 'rhel-ha-for-rhel-7-server-source-rpms',\n 'rhel-rs-for-rhel-7-for-system-z-debug-rpms',\n 'rhel-rs-for-rhel-7-for-system-z-rpms',\n 'rhel-rs-for-rhel-7-for-system-z-source-rpms',\n 'rhel-rs-for-rhel-7-server-debug-rpms',\n 'rhel-rs-for-rhel-7-server-rpms',\n 'rhel-rs-for-rhel-7-server-source-rpms'\n ]\n};\n\nfound_repos = NULL;\nhost_repo_list = get_kb_list('Host/RedHat/repo-list/*');\nif (!(empty_or_null(host_repo_list))) {\n found_repos = make_list();\n foreach repo_key (keys(repositories)) {\n foreach repo ( repositories[repo_key] ) {\n if (get_kb_item('Host/RedHat/repo-list/' + repo)) {\n append_element(var:found_repos, value:repo_key);\n break;\n }\n }\n }\n if(empty_or_null(found_repos)) audit(AUDIT_RHSA_NOT_AFFECTED, 'RHSA-2020:3545');\n}\n\nif (get_one_kb_item('Host/ksplice/kernel-cves'))\n{\n rm_kb_item(name:'Host/uptrack-uname-r');\n cve_list = make_list('CVE-2019-19046', 'CVE-2020-10769', 'CVE-2020-12655');\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2020:3545');\n }\n else\n {\n __rpm_report = ksplice_reporting_text();\n }\n}\n\npkgs = [\n {'reference':'kernel-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-abi-whitelists-4.14.0-115.29.1.el7a', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-debug-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-debug-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-debug-devel-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-debug-devel-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-devel-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-devel-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-headers-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-headers-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-kdump-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-kdump-devel-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-tools-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-tools-libs-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'kernel-tools-libs-devel-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'perf-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'perf-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'python-perf-4.14.0-115.29.1.el7a', 'cpu':'aarch64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']},\n {'reference':'python-perf-4.14.0-115.29.1.el7a', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['enterprise_linux_7_server']}\n];\n\nflag = 0;\nforeach package_array ( pkgs ) {\n reference = NULL;\n release = NULL;\n sp = NULL;\n cpu = NULL;\n el_string = NULL;\n rpm_spec_vers_cmp = NULL;\n epoch = NULL;\n allowmaj = NULL;\n repo_list = NULL;\n if (!empty_or_null(package_array['repo_list'])) repo_list = package_array['repo_list'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = 'RHEL' + package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];\n if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];\n if (reference && release) {\n repocheck = FALSE;\n if (empty_or_null(found_repos))\n {\n repocheck = TRUE;\n }\n else\n {\n foreach repo (repo_list) {\n if (contains_element(var:found_repos, value:repo))\n {\n repocheck = TRUE;\n break;\n }\n }\n }\n if (repocheck && rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n if (empty_or_null(host_repo_list)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'kernel / kernel-abi-whitelists / kernel-debug / kernel-debug-devel / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2020-09-14T13:49:44", "description": "Several vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service, or information\nleak.\n\n - CVE-2020-2732\n Paulo Bonzini discovered that the KVM implementation for\n Intel processors did not properly handle instruction\n emulation for L2 guests when nested virtualization is\n enabled. This could allow an L2 guest to cause privilege\n escalation, denial of service, or information leaks in\n the L1 guest.\n\n - CVE-2020-8428\n Al Viro discovered a use-after-free vulnerability in the\n VFS layer. This allowed local users to cause a\n denial-of-service (crash) or obtain sensitive\n information from kernel memory.\n\n - CVE-2020-10942\n It was discovered that the vhost_net driver did not\n properly validate the type of sockets set as back-ends.\n A local user permitted to access /dev/vhost-net could\n use this to cause a stack corruption via crafted system\n calls, resulting in denial of service (crash) or\n possibly privilege escalation.\n\n - CVE-2020-11565\n Entropy Moe reported that the shared memory filesystem\n (tmpfs) did not correctly handle an 'mpol' mount option\n specifying an empty node list, leading to a stack-based\n out-of-bounds write. If user namespaces are enabled, a\n local user could use this to cause a denial of service\n (crash) or possibly for privilege escalation.\n\n - CVE-2020-11884\n Al Viro reported a race condition in memory management\n code for IBM Z (s390x architecture), that can result in\n the kernel executing code from the user address space. A\n local user could use this for privilege escalation.", "edition": 4, "cvss3": {"score": 7.0, "vector": "AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}, "published": "2020-04-30T00:00:00", "title": "Debian DSA-4667-1 : linux - security update", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-11884", "CVE-2020-10942", "CVE-2020-8428", "CVE-2020-11565", "CVE-2020-2732"], "modified": "2020-04-30T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:10.0", "p-cpe:/a:debian:debian_linux:linux"], "id": "DEBIAN_DSA-4667.NASL", "href": "https://www.tenable.com/plugins/nessus/136124", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-4667. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(136124);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/05/08\");\n\n script_cve_id(\"CVE-2020-10942\", \"CVE-2020-11565\", \"CVE-2020-11884\", \"CVE-2020-2732\", \"CVE-2020-8428\");\n script_xref(name:\"DSA\", value:\"4667\");\n\n script_name(english:\"Debian DSA-4667-1 : linux - security update\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Several vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service, or information\nleak.\n\n - CVE-2020-2732\n Paulo Bonzini discovered that the KVM implementation for\n Intel processors did not properly handle instruction\n emulation for L2 guests when nested virtualization is\n enabled. This could allow an L2 guest to cause privilege\n escalation, denial of service, or information leaks in\n the L1 guest.\n\n - CVE-2020-8428\n Al Viro discovered a use-after-free vulnerability in the\n VFS layer. This allowed local users to cause a\n denial-of-service (crash) or obtain sensitive\n information from kernel memory.\n\n - CVE-2020-10942\n It was discovered that the vhost_net driver did not\n properly validate the type of sockets set as back-ends.\n A local user permitted to access /dev/vhost-net could\n use this to cause a stack corruption via crafted system\n calls, resulting in denial of service (crash) or\n possibly privilege escalation.\n\n - CVE-2020-11565\n Entropy Moe reported that the shared memory filesystem\n (tmpfs) did not correctly handle an 'mpol' mount option\n specifying an empty node list, leading to a stack-based\n out-of-bounds write. If user namespaces are enabled, a\n local user could use this to cause a denial of service\n (crash) or possibly for privilege escalation.\n\n - CVE-2020-11884\n Al Viro reported a race condition in memory management\n code for IBM Z (s390x architecture), that can result in\n the kernel executing code from the user address space. A\n local user could use this for privilege escalation.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2020-2732\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2020-8428\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2020-10942\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2020-11565\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2020-11884\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/source-package/linux\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/buster/linux\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2020/dsa-4667\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the linux packages.\n\nFor the stable distribution (buster), these problems have been fixed\nin version 4.19.98-1+deb10u1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-11884\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:10.0\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/04/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/04/30\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"10.0\", prefix:\"affs-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"affs-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"affs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"affs-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ata-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ata-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ata-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ata-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ata-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"btrfs-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"cdrom-core-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"compress-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crc-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-dm-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"crypto-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"dasd-extra-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"dasd-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"efi-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"event-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"event-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"event-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"event-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"event-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"event-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"event-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ext4-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fancontrol-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fat-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fb-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fb-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fb-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fb-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fb-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fb-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"firewire-core-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"firewire-core-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"fuse-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"hfs-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"hfs-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"hfs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"hfs-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"hyperv-daemons\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"hypervisor-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"i2c-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"i2c-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"i2c-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"i2c-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"input-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"input-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"input-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"input-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"input-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"input-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"input-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ipv6-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"isofs-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jffs2-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jfs-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jfs-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jfs-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jfs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jfs-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jfs-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"jfs-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"kernel-image-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"leds-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"leds-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"libbpf-dev\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"libbpf4.19\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"libcpupower-dev\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"libcpupower1\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"liblockdep-dev\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"liblockdep4.19\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-compiler-gcc-8-arm\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-compiler-gcc-8-s390\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-compiler-gcc-8-x86\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-config-4.19\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-cpupower\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-doc-4.19\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-4kc-malta\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-5kc-malta\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-686\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-686-pae\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-amd64\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-arm64\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-armel\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-armhf\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-i386\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-mips\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-mips64el\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-mipsel\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-ppc64el\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-all-s390x\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-amd64\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-arm64\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-armmp\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-armmp-lpae\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-cloud-amd64\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-common\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-common-rt\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-loongson-3\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-marvell\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-octeon\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-powerpc64le\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-rpi\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-rt-686-pae\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-rt-amd64\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-rt-arm64\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-rt-armmp\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-headers-4.19.0-5-s390x\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-4kc-malta\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-4kc-malta-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-5kc-malta\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-5kc-malta-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-686-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-686-pae-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-686-pae-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-686-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-amd64-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-amd64-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-arm64-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-arm64-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-armmp\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-armmp-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-armmp-lpae\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-armmp-lpae-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-cloud-amd64-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-cloud-amd64-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-loongson-3\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-loongson-3-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-marvell\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-marvell-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-octeon\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-octeon-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-powerpc64le\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-powerpc64le-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rpi\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rpi-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-686-pae-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-686-pae-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-amd64-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-amd64-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-arm64-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-arm64-unsigned\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-armmp\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-rt-armmp-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-s390x\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-4.19.0-5-s390x-dbg\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-amd64-signed-template\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-arm64-signed-template\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-image-i386-signed-template\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-kbuild-4.19\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-libc-dev\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-perf-4.19\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-source-4.19\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"linux-support-4.19.0-5\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"lockdep\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"loop-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"md-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"minix-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"minix-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"minix-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"minix-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"minix-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mmc-core-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mmc-core-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mmc-core-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mmc-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mmc-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mmc-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mmc-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mouse-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mouse-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mouse-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mouse-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-core-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-core-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-core-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-core-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-core-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-core-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"mtd-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"multipath-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nbd-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nfs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-shared-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-shared-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-shared-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-shared-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-shared-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-shared-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-shared-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-usb-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-usb-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-usb-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-usb-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-usb-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-usb-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-usb-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-wireless-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-wireless-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-wireless-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-wireless-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-wireless-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"nic-wireless-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"pata-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"pata-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"pata-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"pata-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"pata-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ppp-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ppp-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ppp-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ppp-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ppp-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ppp-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"ppp-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"rtc-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sata-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sata-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sata-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sata-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sata-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sata-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sata-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-core-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-nic-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-nic-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-nic-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-nic-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-nic-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"scsi-nic-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"serial-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sound-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sound-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sound-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"sound-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"speakup-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"squashfs-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"squashfs-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"squashfs-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"squashfs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"squashfs-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"squashfs-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"squashfs-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"udf-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"uinput-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"uinput-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"uinput-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-serial-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-serial-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-serial-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-serial-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-serial-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-serial-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-serial-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-storage-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-storage-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-storage-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-storage-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-storage-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-storage-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usb-storage-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"usbip\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"xfs-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"xfs-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"xfs-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"xfs-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"xfs-modules-4.19.0-5-powerpc64le-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"xfs-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"zlib-modules-4.19.0-5-4kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"zlib-modules-4.19.0-5-5kc-malta-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"zlib-modules-4.19.0-5-armmp-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"zlib-modules-4.19.0-5-loongson-3-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"zlib-modules-4.19.0-5-marvell-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"zlib-modules-4.19.0-5-octeon-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\nif (deb_check(release:\"10.0\", prefix:\"zlib-modules-4.19.0-5-s390x-di\", reference:\"4.19.98-1+deb10u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-02T13:51:50", "description": "The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the RHSA-2020:5206 advisory.\n\n - kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c\n (CVE-2017-18551)\n\n - kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c\n (CVE-2019-19046)\n\n - kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a\n use-after-free in ext4_put_super in fs/ext4/super.c (CVE-2019-19447)\n\n - kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n - kernel: sg_write function lacks an sg_remove_request call in a certain failure case (CVE-2020-12770)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "edition": 2, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "published": "2020-11-24T00:00:00", "title": "RHEL 7 : kernel (RHSA-2020:5206)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-12770", "CVE-2019-9454", "CVE-2017-18551", "CVE-2019-19447", "CVE-2019-19046"], "modified": "2020-11-24T00:00:00", "cpe": ["cpe:/o:redhat:rhel_e4s:7.7::computenode", "cpe:/o:redhat:rhel_e4s:7.7::server", "p-cpe:/a:redhat:enterprise_linux:bpftool", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump", "cpe:/o:redhat:rhel_tus:7.7::computenode", "p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists", "cpe:/o:redhat:rhel_eus:7.7::computenode", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel", "cpe:/o:redhat:rhel_tus:7.7", "cpe:/o:redhat:rhel_aus:7.7", "p-cpe:/a:redhat:enterprise_linux:kernel-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-debug", "cpe:/o:redhat:rhel_aus:7.7::computenode", "p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs", "p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel", "p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper", "p-cpe:/a:redhat:enterprise_linux:kernel-tools", "p-cpe:/a:redhat:enterprise_linux:kernel", "cpe:/o:redhat:rhel_eus:7.7::server", "cpe:/o:redhat:rhel_e4s:7.7", "cpe:/o:redhat:rhel_eus:7.7", "cpe:/o:redhat:rhel_aus:7.7::server", "p-cpe:/a:redhat:enterprise_linux:python-perf", "p-cpe:/a:redhat:enterprise_linux:perf", "cpe:/o:redhat:rhel_tus:7.7::server"], "id": "REDHAT-RHSA-2020-5206.NASL", "href": "https://www.tenable.com/plugins/nessus/143241", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:5206. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(143241);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/12/01\");\n\n script_cve_id(\n \"CVE-2017-18551\",\n \"CVE-2019-9454\",\n \"CVE-2019-19046\",\n \"CVE-2019-19447\",\n \"CVE-2020-12770\"\n );\n script_xref(name:\"RHSA\", value:\"2020:5206\");\n\n script_name(english:\"RHEL 7 : kernel (RHSA-2020:5206)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as\nreferenced in the RHSA-2020:5206 advisory.\n\n - kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c\n (CVE-2017-18551)\n\n - kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c\n (CVE-2019-19046)\n\n - kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a\n use-after-free in ext4_put_super in fs/ext4/super.c (CVE-2019-19447)\n\n - kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n - kernel: sg_write function lacks an sg_remove_request call in a certain failure case (CVE-2020-12770)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/119.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/400.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/401.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/416.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://cwe.mitre.org/data/definitions/787.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2017-18551\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-9454\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19046\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2019-19447\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-12770\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:5206\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1757368\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1774988\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1781679\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1818818\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1834845\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2019-19447\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_cwe_id(119, 400, 401, 416, 787);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2019/05/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/11/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/11/24\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:7.7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:7.7::computenode\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:7.7::server\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:7.7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:7.7::computenode\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:7.7::server\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:7.7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:7.7::computenode\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:7.7::server\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:7.7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:7.7::computenode\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:7.7::server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:bpftool\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-abi-whitelists\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:python-perf\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\ninclude('ksplice.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item('Host/RedHat/release');\nif (isnull(release) || 'Red Hat' >!< release) audit(AUDIT_OS_NOT, 'Red Hat');\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7\\.7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, 'Red Hat 7.7', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nrepositories = {\n 'rhel_e4s_7_7_server': [\n 'rhel-7-server-aus-debug-rpms',\n 'rhel-7-server-aus-rpms',\n 'rhel-7-server-aus-source-rpms',\n 'rhel-7-server-e4s-debug-rpms',\n 'rhel-7-server-e4s-rpms',\n 'rhel-7-server-e4s-source-rpms',\n 'rhel-7-server-tus-debug-rpms',\n 'rhel-7-server-tus-rpms',\n 'rhel-7-server-tus-source-rpms'\n ],\n 'rhel_eus_7_7_computenode': [\n 'rhel-7-hpc-node-eus-debug-rpms',\n 'rhel-7-hpc-node-eus-optional-debug-rpms',\n 'rhel-7-hpc-node-eus-optional-rpms',\n 'rhel-7-hpc-node-eus-optional-source-rpms',\n 'rhel-7-hpc-node-eus-rpms',\n 'rhel-7-hpc-node-eus-source-rpms'\n ],\n 'rhel_eus_7_7_server': [\n 'rhel-7-for-system-z-eus-debug-rpms',\n 'rhel-7-for-system-z-eus-optional-debug-rpms',\n 'rhel-7-for-system-z-eus-optional-rpms',\n 'rhel-7-for-system-z-eus-optional-source-rpms',\n 'rhel-7-for-system-z-eus-rpms',\n 'rhel-7-for-system-z-eus-source-rpms',\n 'rhel-7-server-aus-debug-rpms',\n 'rhel-7-server-aus-optional-debug-rpms',\n 'rhel-7-server-aus-optional-rpms',\n 'rhel-7-server-aus-optional-source-rpms',\n 'rhel-7-server-aus-rpms',\n 'rhel-7-server-aus-source-rpms',\n 'rhel-7-server-e4s-debug-rpms',\n 'rhel-7-server-e4s-optional-debug-rpms',\n 'rhel-7-server-e4s-optional-rpms',\n 'rhel-7-server-e4s-optional-source-rpms',\n 'rhel-7-server-e4s-rpms',\n 'rhel-7-server-e4s-source-rpms',\n 'rhel-7-server-eus-debug-rpms',\n 'rhel-7-server-eus-optional-debug-rpms',\n 'rhel-7-server-eus-optional-rpms',\n 'rhel-7-server-eus-optional-source-rpms',\n 'rhel-7-server-eus-rpms',\n 'rhel-7-server-eus-source-rpms',\n 'rhel-7-server-tus-debug-rpms',\n 'rhel-7-server-tus-optional-debug-rpms',\n 'rhel-7-server-tus-optional-rpms',\n 'rhel-7-server-tus-optional-source-rpms',\n 'rhel-7-server-tus-rpms',\n 'rhel-7-server-tus-source-rpms',\n 'rhel-ha-for-rhel-7-server-e4s-debug-rpms',\n 'rhel-ha-for-rhel-7-server-e4s-rpms',\n 'rhel-ha-for-rhel-7-server-e4s-source-rpms',\n 'rhel-ha-for-rhel-7-server-eus-debug-rpms',\n 'rhel-ha-for-rhel-7-server-eus-rpms',\n 'rhel-ha-for-rhel-7-server-eus-source-rpms',\n 'rhel-ha-for-rhel-7-server-tus-debug-rpms',\n 'rhel-ha-for-rhel-7-server-tus-rpms',\n 'rhel-ha-for-rhel-7-server-tus-source-rpms',\n 'rhel-rs-for-rhel-7-server-eus-debug-rpms',\n 'rhel-rs-for-rhel-7-server-eus-rpms',\n 'rhel-rs-for-rhel-7-server-eus-source-rpms'\n ],\n 'rhel_tus_7_7_server': [\n 'rhel-ha-for-rhel-7-server-tus-debug-rpms',\n 'rhel-ha-for-rhel-7-server-tus-rpms',\n 'rhel-ha-for-rhel-7-server-tus-source-rpms'\n ]\n};\n\nfound_repos = NULL;\nhost_repo_list = get_kb_list('Host/RedHat/repo-list/*');\nif (!(empty_or_null(host_repo_list))) {\n found_repos = make_list();\n foreach repo_key (keys(repositories)) {\n foreach repo ( repositories[repo_key] ) {\n if (get_kb_item('Host/RedHat/repo-list/' + repo)) {\n append_element(var:found_repos, value:repo_key);\n break;\n }\n }\n }\n if(empty_or_null(found_repos)) audit(AUDIT_RHSA_NOT_AFFECTED, 'RHSA-2020:5206');\n}\n\nif (get_one_kb_item('Host/ksplice/kernel-cves'))\n{\n rm_kb_item(name:'Host/uptrack-uname-r');\n cve_list = make_list('CVE-2017-18551', 'CVE-2019-9454', 'CVE-2019-19046', 'CVE-2019-19447', 'CVE-2020-12770');\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2020:5206');\n }\n else\n {\n __rpm_report = ksplice_reporting_text();\n }\n}\n\npkgs = [\n {'reference':'bpftool-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'bpftool-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-abi-whitelists-3.10.0-1062.40.1.el7', 'sp':'7', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-debug-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-debug-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-debug-devel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-debug-devel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-devel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-devel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-kdump-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-kdump-devel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-tools-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-tools-libs-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'kernel-tools-libs-devel-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'perf-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'perf-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'python-perf-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']},\n {'reference':'python-perf-3.10.0-1062.40.1.el7', 'sp':'7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'repo_list':['rhel_e4s_7_7_server', 'rhel_eus_7_7_computenode', 'rhel_eus_7_7_server', 'rhel_tus_7_7_server']}\n];\n\nflag = 0;\nforeach package_array ( pkgs ) {\n reference = NULL;\n release = NULL;\n sp = NULL;\n cpu = NULL;\n el_string = NULL;\n rpm_spec_vers_cmp = NULL;\n epoch = NULL;\n allowmaj = NULL;\n repo_list = NULL;\n if (!empty_or_null(package_array['repo_list'])) repo_list = package_array['repo_list'];\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = 'RHEL' + package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];\n if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];\n if (reference && release) {\n repocheck = FALSE;\n if (empty_or_null(found_repos))\n {\n repocheck = TRUE;\n }\n else\n {\n foreach repo (repo_list) {\n if (contains_element(var:found_repos, value:repo))\n {\n repocheck = TRUE;\n break;\n }\n }\n }\n if (repocheck && rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n if (empty_or_null(host_repo_list)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bpftool / kernel / kernel-abi-whitelists / kernel-debug / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}], "openvas": [{"lastseen": "2020-04-15T15:04:22", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428", "CVE-2019-19046"], "description": "The remote host is missing an update for the ", "modified": "2020-04-10T00:00:00", "published": "2020-04-08T00:00:00", "id": "OPENVAS:1361412562310844387", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310844387", "type": "openvas", "title": "Ubuntu: Security Advisory for linux-azure (USN-4325-1)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Some text descriptions might be excerpted from the referenced\n# advisories, and are Copyright (C) by the respective right holder(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.844387\");\n script_version(\"2020-04-10T03:46:49+0000\");\n script_cve_id(\"CVE-2019-19046\", \"CVE-2020-8428\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:S/C:N/I:N/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-04-10 03:46:49 +0000 (Fri, 10 Apr 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-04-08 03:00:26 +0000 (Wed, 08 Apr 2020)\");\n script_name(\"Ubuntu: Security Advisory for linux-azure (USN-4325-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU18\\.04 LTS\");\n\n script_xref(name:\"USN\", value:\"4325-1\");\n script_xref(name:\"URL\", value:\"https://lists.ubuntu.com/archives/ubuntu-security-announce/2020-April/005387.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux-azure'\n package(s) announced via the USN-4325-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"It was discovered that the IPMI message handler implementation in the Linux\nkernel did not properly deallocate memory in certain situations. A local\nattacker could use this to cause a denial of service (kernel memory\nexhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a use-\nafter-free vulnerability. A local attacker could use this to cause a denial\nof service (system crash) or possibly expose sensitive information (kernel\nmemory). (CVE-2020-8428)\");\n\n script_tag(name:\"affected\", value:\"'linux-azure' package(s) on Ubuntu 18.04 LTS.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"UBUNTU18.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.0.0-1014-oracle\", ver:\"5.0.0-1014.19\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.0.0-1033-gke\", ver:\"5.0.0-1033.34\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.0.0-1034-gcp\", ver:\"5.0.0-1034.35\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.0.0-1036-azure\", ver:\"5.0.0-1036.38\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.0.0-1047-oem-osp1\", ver:\"5.0.0-1047.52\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-azure\", ver:\"5.0.0.1036.47\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gcp\", ver:\"5.0.0.1034.38\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke-5.0\", ver:\"5.0.0.1033.21\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oem-osp1\", ver:\"5.0.0.1047.50\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oracle\", ver:\"5.0.0.1014.15\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2020-04-15T15:04:29", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428", "CVE-2019-19046"], "description": "The remote host is missing an update for the ", "modified": "2020-04-07T00:00:00", "published": "2020-04-07T00:00:00", "id": "OPENVAS:1361412562310844384", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310844384", "type": "openvas", "title": "Ubuntu: Security Advisory for linux (USN-4319-1)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.844384\");\n script_version(\"2020-04-07T12:33:10+0000\");\n script_cve_id(\"CVE-2019-19046\", \"CVE-2020-8428\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:S/C:N/I:N/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-04-07 12:33:10 +0000 (Tue, 07 Apr 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-04-07 03:00:28 +0000 (Tue, 07 Apr 2020)\");\n script_name(\"Ubuntu: Security Advisory for linux (USN-4319-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=(UBUNTU19\\.10|UBUNTU18\\.04 LTS)\");\n\n script_xref(name:\"USN\", value:\"4319-1\");\n script_xref(name:\"URL\", value:\"https://lists.ubuntu.com/archives/ubuntu-security-announce/2020-April/005382.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the USN-4319-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"It was discovered that the IPMI message handler implementation in the Linux\nkernel did not properly deallocate memory in certain situations. A local\nattacker could use this to cause a denial of service (kernel memory\nexhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a use-\nafter-free vulnerability. A local attacker could use this to cause a denial\nof service (system crash) or possibly expose sensitive information (kernel\nmemory). (CVE-2020-8428)\");\n\n script_tag(name:\"affected\", value:\"'linux' package(s) on Ubuntu 19.10, Ubuntu 18.04 LTS.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"UBUNTU19.10\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1014-oracle\", ver:\"5.3.0-1014.15\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1015-kvm\", ver:\"5.3.0-1015.16\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1016-aws\", ver:\"5.3.0-1016.17\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1017-gcp\", ver:\"5.3.0-1017.18\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1022-raspi2\", ver:\"5.3.0-1022.24\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-46-generic\", ver:\"5.3.0-46.38\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-46-generic-lpae\", ver:\"5.3.0-46.38\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-46-lowlatency\", ver:\"5.3.0-46.38\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-46-snapdragon\", ver:\"5.3.0-46.38\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws\", ver:\"5.3.0.1016.18\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gcp\", ver:\"5.3.0.1017.18\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic\", ver:\"5.3.0.46.39\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-lpae\", ver:\"5.3.0.46.39\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke\", ver:\"5.3.0.1017.18\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-kvm\", ver:\"5.3.0.1015.17\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-lowlatency\", ver:\"5.3.0.46.39\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oracle\", ver:\"5.3.0.1014.15\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-raspi2\", ver:\"5.3.0.1022.19\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-snapdragon\", ver:\"5.3.0.46.39\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-virtual\", ver:\"5.3.0.46.39\", rls:\"UBUNTU19.10\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nif(release == \"UBUNTU18.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1014-oracle\", ver:\"5.3.0-1014.15~18.04.1\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1017-gcp\", ver:\"5.3.0-1017.18~18.04.1\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-1022-raspi2\", ver:\"5.3.0-1022.24~18.04.1\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-46-generic\", ver:\"5.3.0-46.38~18.04.1\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-46-generic-lpae\", ver:\"5.3.0-46.38~18.04.1\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-5.3.0-46-lowlatency\", ver:\"5.3.0-46.38~18.04.1\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gcp-edge\", ver:\"5.3.0.1017.16\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-hwe-18.04\", ver:\"5.3.0.46.102\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-lpae-hwe-18.04\", ver:\"5.3.0.46.102\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-lowlatency-hwe-18.04\", ver:\"5.3.0.46.102\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oracle-edge\", ver:\"5.3.0.1014.13\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-raspi2-hwe-18.04\", ver:\"5.3.0.1022.11\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-snapdragon-hwe-18.04\", ver:\"5.3.0.46.102\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-virtual-hwe-18.04\", ver:\"5.3.0.46.102\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2020-04-15T15:04:42", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8428"], "description": "The remote host is missing an update for the ", "modified": "2020-04-07T00:00:00", "published": "2020-04-07T00:00:00", "id": "OPENVAS:1361412562310844382", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310844382", "type": "openvas", "title": "Ubuntu: Security Advisory for linux (USN-4320-1)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.844382\");\n script_version(\"2020-04-07T12:33:10+0000\");\n script_cve_id(\"CVE-2020-8428\");\n script_tag(name:\"cvss_base\", value:\"3.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:P/I:N/A:P\");\n script_tag(name:\"last_modification\", value:\"2020-04-07 12:33:10 +0000 (Tue, 07 Apr 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-04-07 03:00:24 +0000 (Tue, 07 Apr 2020)\");\n script_name(\"Ubuntu: Security Advisory for linux (USN-4320-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU16\\.04 LTS\");\n\n script_xref(name:\"USN\", value:\"4320-1\");\n script_xref(name:\"URL\", value:\"https://lists.ubuntu.com/archives/ubuntu-security-announce/2020-April/005381.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the USN-4320-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Al Viro discovered that the vfs layer in the Linux kernel contained a use-\nafter-free vulnerability. A local attacker could use this to cause a denial\nof service (system crash) or possibly expose sensitive information (kernel\nmemory).\");\n\n script_tag(name:\"affected\", value:\"'linux' package(s) on Ubuntu 16.04 LTS.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"UBUNTU16.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-1069-kvm\", ver:\"4.4.0-1069.76\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-1105-aws\", ver:\"4.4.0-1105.116\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-1131-raspi2\", ver:\"4.4.0-1131.140\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-1135-snapdragon\", ver:\"4.4.0-1135.143\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-177-generic\", ver:\"4.4.0-177.207\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-177-generic-lpae\", ver:\"4.4.0-177.207\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-177-lowlatency\", ver:\"4.4.0-177.207\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-177-powerpc-e500mc\", ver:\"4.4.0-177.207\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-177-powerpc-smp\", ver:\"4.4.0-177.207\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-177-powerpc64-emb\", ver:\"4.4.0-177.207\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.4.0-177-powerpc64-smp\", ver:\"4.4.0-177.207\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws\", ver:\"4.4.0.1105.109\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-lpae\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-kvm\", ver:\"4.4.0.1069.69\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-lowlatency\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc-e500mc\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc-smp\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc64-emb\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc64-smp\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-raspi2\", ver:\"4.4.0.1131.131\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-snapdragon\", ver:\"4.4.0.1135.127\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-virtual\", ver:\"4.4.0.177.185\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-04-15T15:03:47", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8992", "CVE-2020-8428"], "description": "The remote host is missing an update for the ", "modified": "2020-04-10T00:00:00", "published": "2020-04-08T00:00:00", "id": "OPENVAS:1361412562310844385", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310844385", "type": "openvas", "title": "Ubuntu: Security Advisory for linux-aws (USN-4324-1)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Some text descriptions might be excerpted from the referenced\n# advisories, and are Copyright (C) by the respective right holder(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.844385\");\n script_version(\"2020-04-10T03:46:49+0000\");\n script_cve_id(\"CVE-2020-8428\", \"CVE-2020-8992\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-04-10 03:46:49 +0000 (Fri, 10 Apr 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-04-08 03:00:24 +0000 (Wed, 08 Apr 2020)\");\n script_name(\"Ubuntu: Security Advisory for linux-aws (USN-4324-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=(UBUNTU18\\.04 LTS|UBUNTU16\\.04 LTS)\");\n\n script_xref(name:\"USN\", value:\"4324-1\");\n script_xref(name:\"URL\", value:\"https://lists.ubuntu.com/archives/ubuntu-security-announce/2020-April/005386.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux-aws'\n package(s) announced via the USN-4324-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Al Viro discovered that the vfs layer in the Linux kernel contained a use-\nafter-free vulnerability. A local attacker could use this to cause a denial\nof service (system crash) or possibly expose sensitive information (kernel\nmemory). (CVE-2020-8428)\n\nShijie Luo discovered that the ext4 file system implementation in the Linux\nkernel did not properly check for a too-large journal size. An attacker\ncould use this to construct a malicious ext4 image that, when mounted,\ncould cause a denial of service (soft lockup). (CVE-2020-8992)\");\n\n script_tag(name:\"affected\", value:\"'linux-aws' package(s) on Ubuntu 18.04 LTS, Ubuntu 16.04 LTS.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"UBUNTU18.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1037-oracle\", ver:\"4.15.0-1037.41\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1057-gke\", ver:\"4.15.0-1057.60\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1058-kvm\", ver:\"4.15.0-1058.59\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1060-raspi2\", ver:\"4.15.0-1060.64\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1065-aws\", ver:\"4.15.0-1065.69\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1076-snapdragon\", ver:\"4.15.0-1076.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1079-oem\", ver:\"4.15.0-1079.89\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws\", ver:\"4.15.0.1065.67\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws-lts-18.04\", ver:\"4.15.0.1065.67\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke\", ver:\"4.15.0.1057.61\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke-4.15\", ver:\"4.15.0.1057.61\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-kvm\", ver:\"4.15.0.1058.58\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oem\", ver:\"4.15.0.1079.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oracle-lts-18.04\", ver:\"4.15.0.1037.45\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-raspi2\", ver:\"4.15.0.1060.58\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-snapdragon\", ver:\"4.15.0.1076.79\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nif(release == \"UBUNTU16.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1037-oracle\", ver:\"4.15.0-1037.41~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1060-gcp\", ver:\"4.15.0-1060.64\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1065-aws\", ver:\"4.15.0-1065.69~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1077-azure\", ver:\"4.15.0-1077.82\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws-hwe\", ver:\"4.15.0.1065.65\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-azure\", ver:\"4.15.0.1077.80\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-azure-edge\", ver:\"4.15.0.1077.80\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gcp\", ver:\"4.15.0.1060.74\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke\", ver:\"4.15.0.1060.74\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oracle\", ver:\"4.15.0.1037.30\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-04-15T15:04:29", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8992", "CVE-2020-8834", "CVE-2020-8428"], "description": "The remote host is missing an update for the ", "modified": "2020-04-07T00:00:00", "published": "2020-04-07T00:00:00", "id": "OPENVAS:1361412562310844383", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310844383", "type": "openvas", "title": "Ubuntu: Security Advisory for linux (USN-4318-1)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.844383\");\n script_version(\"2020-04-07T12:33:10+0000\");\n script_cve_id(\"CVE-2020-8428\", \"CVE-2020-8834\", \"CVE-2020-8992\");\n script_tag(name:\"cvss_base\", value:\"4.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-04-07 12:33:10 +0000 (Tue, 07 Apr 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-04-07 03:00:25 +0000 (Tue, 07 Apr 2020)\");\n script_name(\"Ubuntu: Security Advisory for linux (USN-4318-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=(UBUNTU18\\.04 LTS|UBUNTU16\\.04 LTS)\");\n\n script_xref(name:\"USN\", value:\"4318-1\");\n script_xref(name:\"URL\", value:\"https://lists.ubuntu.com/archives/ubuntu-security-announce/2020-April/005380.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the USN-4318-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Al Viro discovered that the vfs layer in the Linux kernel contained a use-\nafter-free vulnerability. A local attacker could use this to cause a denial\nof service (system crash) or possibly expose sensitive information (kernel\nmemory). (CVE-2020-8428)\n\nGustavo Romero and Paul Mackerras discovered that the KVM implementation in\nthe Linux kernel for PowerPC processors did not properly keep guest state\nseparate from host state. A local attacker in a KVM guest could use this to\ncause a denial of service (host system crash). (CVE-2020-8834)\n\nShijie Luo discovered that the ext4 file system implementation in the Linux\nkernel did not properly check for a too-large journal size. An attacker\ncould use this to construct a malicious ext4 image that, when mounted,\ncould cause a denial of service (soft lockup). (CVE-2020-8992)\");\n\n script_tag(name:\"affected\", value:\"'linux' package(s) on Ubuntu 18.04 LTS, Ubuntu 16.04 LTS.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"UBUNTU18.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-96-generic\", ver:\"4.15.0-96.97\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-96-generic-lpae\", ver:\"4.15.0-96.97\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-96-lowlatency\", ver:\"4.15.0-96.97\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-lpae\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-lowlatency\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc-e500mc\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc-smp\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc64-emb\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc64-smp\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-virtual\", ver:\"4.15.0.96.87\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nif(release == \"UBUNTU16.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-96-generic\", ver:\"4.15.0-96.97~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-96-generic-lpae\", ver:\"4.15.0-96.97~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-96-lowlatency\", ver:\"4.15.0-96.97~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-hwe-16.04\", ver:\"4.15.0.96.104\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-lpae-hwe-16.04\", ver:\"4.15.0.96.104\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-lowlatency-hwe-16.04\", ver:\"4.15.0.96.104\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oem\", ver:\"4.15.0.96.104\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-virtual-hwe-16.04\", ver:\"4.15.0.96.104\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-06-04T15:53:49", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-11884", "CVE-2020-10942", "CVE-2020-8428", "CVE-2020-11565", "CVE-2020-2732"], "description": "The remote host is missing an update for the ", "modified": "2020-06-03T00:00:00", "published": "2020-04-30T00:00:00", "id": "OPENVAS:1361412562310704667", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310704667", "type": "openvas", "title": "Debian: Security Advisory for linux (DSA-4667-1)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Some text descriptions might be excerpted from (a) referenced\n# source(s), and are Copyright (C) by the respective right holder(s).\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.704667\");\n script_version(\"2020-06-03T08:38:58+0000\");\n script_cve_id(\"CVE-2020-10942\", \"CVE-2020-11565\", \"CVE-2020-11884\", \"CVE-2020-2732\", \"CVE-2020-8428\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-06-03 08:38:58 +0000 (Wed, 03 Jun 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-04-30 03:00:30 +0000 (Thu, 30 Apr 2020)\");\n script_name(\"Debian: Security Advisory for linux (DSA-4667-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB10\");\n\n script_xref(name:\"URL\", value:\"https://www.debian.org/security/2020/dsa-4667.html\");\n script_xref(name:\"URL\", value:\"https://security-tracker.debian.org/tracker/DSA-4667-1\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the DSA-4667-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Several vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service, or information\nleak.\n\nCVE-2020-2732\nPaulo Bonzini discovered that the KVM implementation for Intel\nprocessors did not properly handle instruction emulation for L2\nguests when nested virtualization is enabled. This could allow\nan L2 guest to cause privilege escalation, denial of service,\nor information leaks in the L1 guest.\n\nCVE-2020-8428\nAl Viro discovered a use-after-free vulnerability in the VFS\nlayer. This allowed local users to cause a denial-of-service\n(crash) or obtain sensitive information from kernel memory.\n\nCVE-2020-10942\nIt was discovered that the vhost_net driver did not properly\nvalidate the type of sockets set as back-ends. A local user\npermitted to access /dev/vhost-net could use this to cause a stack\ncorruption via crafted system calls, resulting in denial of\nservice (crash) or possibly privilege escalation.\n\nCVE-2020-11565\nEntropy Moe reported that the shared memory filesystem (tmpfs) did\nnot correctly handle an mpol\nmount option specifying an empty\nnode list, leading to a stack-based out-of-bounds write. If user\nnamespaces are enabled, a local user could use this to cause a\ndenial of service (crash) or possibly for privilege escalation.\n\nCVE-2020-11884\nAl Viro reported a race condition in memory management code for\nIBM Z (s390x architecture), that can result in the kernel\nexecuting code from the user address space. A local user could\nuse this for privilege escalation.\");\n\n script_tag(name:\"affected\", value:\"'linux' package(s) on Debian Linux.\");\n\n script_tag(name:\"solution\", value:\"For the stable distribution (buster), these problems have been fixed in\nversion 4.19.98-1+deb10u1.\n\nWe recommend that you upgrade your linux packages.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif(!isnull(res = isdpkgvuln(pkg:\"hyperv-daemons\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"libbpf-dev\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"libbpf4.19\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"libcpupower-dev\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"libcpupower1\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"liblockdep-dev\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"liblockdep4.19\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-compiler-gcc-8-arm\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-compiler-gcc-8-s390\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-compiler-gcc-8-x86\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-config-4.19\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-cpupower\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-doc-4.19\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-4kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-5kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-686\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-686-pae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-arm64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-armel\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-armhf\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-i386\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-mips\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-mips64el\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-mipsel\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-ppc64el\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-all-s390x\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-arm64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-armmp-lpae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-cloud-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-common\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-common-rt\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-loongson-3\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-marvell\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-octeon\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-powerpc64le\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-rpi\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-rt-686-pae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-rt-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-rt-arm64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-rt-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-6-s390x\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-4kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-5kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-686\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-686-pae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-arm64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-armel\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-armhf\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-i386\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-mips\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-mips64el\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-mipsel\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-ppc64el\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-all-s390x\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-arm64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-armmp-lpae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-cloud-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-common\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-common-rt\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-loongson-3\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-marvell\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-octeon\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-powerpc64le\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-rpi\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-rt-686-pae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-rt-amd64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-rt-arm64\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-rt-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-headers-4.19.0-8-s390x\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-4kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-4kc-malta-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-5kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-5kc-malta-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-686-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-686-pae-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-686-pae-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-686-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-amd64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-amd64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-arm64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-arm64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-armmp-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-armmp-lpae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-armmp-lpae-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-cloud-amd64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-cloud-amd64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-loongson-3\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-loongson-3-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-marvell\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-marvell-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-octeon\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-octeon-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-powerpc64le\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-powerpc64le-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rpi\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rpi-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-686-pae-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-686-pae-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-amd64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-amd64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-arm64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-arm64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-rt-armmp-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-s390x\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-6-s390x-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-4kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-4kc-malta-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-5kc-malta\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-5kc-malta-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-686-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-686-pae-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-686-pae-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-686-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-amd64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-amd64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-arm64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-arm64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-armmp-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-armmp-lpae\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-armmp-lpae-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-cloud-amd64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-cloud-amd64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-loongson-3\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-loongson-3-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-marvell\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-marvell-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-octeon\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-octeon-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-powerpc64le\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-powerpc64le-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rpi\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rpi-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-686-pae-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-686-pae-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-amd64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-amd64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-arm64-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-arm64-unsigned\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-armmp\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-rt-armmp-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-s390x\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.19.0-8-s390x-dbg\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-amd64-signed-template\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-arm64-signed-template\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-image-i386-signed-template\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-kbuild-4.19\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-libc-dev\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-perf-4.19\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-source-4.19\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-support-4.19.0-6\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"linux-support-4.19.0-8\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"lockdep\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\nif(!isnull(res = isdpkgvuln(pkg:\"usbip\", ver:\"4.19.98-1+deb10u1\", rls:\"DEB10\"))) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if(__pkg_match) {\n exit(99);\n}\n\nexit(0);\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-05-08T17:12:21", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8832", "CVE-2019-15217", "CVE-2019-19051", "CVE-2019-19058", "CVE-2019-14615", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19046", "CVE-2020-2732", "CVE-2019-19056"], "description": "The remote host is missing an update for the ", "modified": "2020-05-07T00:00:00", "published": "2020-03-17T00:00:00", "id": "OPENVAS:1361412562310844364", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310844364", "type": "openvas", "title": "Ubuntu: Security Advisory for linux (USN-4302-1)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Some text descriptions might be excerpted from (a) referenced\n# source(s), and are Copyright (C) by the respective right holder(s).\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.844364\");\n script_version(\"2020-05-07T08:41:48+0000\");\n script_cve_id(\"CVE-2020-2732\", \"CVE-2019-14615\", \"CVE-2020-8832\", \"CVE-2019-19046\", \"CVE-2019-19051\", \"CVE-2019-19056\", \"CVE-2019-19058\", \"CVE-2019-19066\", \"CVE-2019-19068\", \"CVE-2019-15217\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:S/C:N/I:N/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-05-07 08:41:48 +0000 (Thu, 07 May 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-03-17 04:00:29 +0000 (Tue, 17 Mar 2020)\");\n script_name(\"Ubuntu: Security Advisory for linux (USN-4302-1)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=(UBUNTU18\\.04 LTS|UBUNTU16\\.04 LTS)\");\n\n script_xref(name:\"USN\", value:\"4302-1\");\n script_xref(name:\"URL\", value:\"https://lists.ubuntu.com/archives/ubuntu-security-announce/2020-March/005358.html\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the USN-4302-1 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Paulo Bonzini discovered that the KVM hypervisor implementation in the\nLinux kernel could improperly let a nested (level 2) guest access the\nresources of a parent (level 1) guest in certain situations. An attacker\ncould use this to expose sensitive information. (CVE-2020-2732)\n\nGregory Herrero discovered that the fix for CVE-2019-14615 to address the\nLinux kernel not properly clearing data structures on context switches for\ncertain Intel graphics processors was incomplete. A local attacker could\nuse this to expose sensitive information. (CVE-2020-8832)\n\nIt was discovered that the IPMI message handler implementation in the Linux\nkernel did not properly deallocate memory in certain situations. A local\nattacker could use this to cause a denial of service (kernel memory\nexhaustion). (CVE-2019-19046)\n\nIt was discovered that the Intel WiMAX 2400 driver in the Linux kernel did\nnot properly deallocate memory in certain situations. A local attacker\ncould use this to cause a denial of service (kernel memory exhaustion).\n(CVE-2019-19051)\n\nIt was discovered that the Marvell Wi-Fi device driver in the Linux kernel\ndid not properly deallocate memory in certain error conditions. A local\nattacker could use this to possibly cause a denial of service (kernel\nmemory exhaustion). (CVE-2019-19056)\n\nIt was discovered that the Intel(R) Wi-Fi device driver in the Linux kernel\ndevice driver in the Linux kernel did not properly deallocate memory in\ncertain error conditions. A local attacker could possibly use this to cause\na denial of service (kernel memory exhaustion). (CVE-2019-19058)\n\nIt was discovered that the Brocade BFA Fibre Channel device driver in the\nLinux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could possibly use this to cause a denial of\nservice (kernel memory exhaustion). (CVE-2019-19066)\n\nIt was discovered that the Realtek RTL8xxx USB Wi-Fi device driver in the\nLinux kernel did not properly deallocate memory in certain error\nconditions. A local attacker could possibly use this to cause a denial of\nservice (kernel memory exhaustion). (CVE-2019-19068)\n\nIt was discovered that ZR364XX Camera USB device driver for the Linux\nkernel did not properly initialize memory. A physically proximate attacker\ncould use this to cause a denial of service (system crash).\n(CVE-2019-15217)\");\n\n script_tag(name:\"affected\", value:\"'linux' package(s) on Ubuntu 18.04 LTS, Ubuntu 16.04 LTS.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"UBUNTU18.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1055-gke\", ver:\"4.15.0-1055.58\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1056-kvm\", ver:\"4.15.0-1056.57\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1057-raspi2\", ver:\"4.15.0-1057.61\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1063-aws\", ver:\"4.15.0-1063.67\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1074-snapdragon\", ver:\"4.15.0-1074.81\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-91-generic\", ver:\"4.15.0-91.92\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-91-generic-lpae\", ver:\"4.15.0-91.92\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-91-lowlatency\", ver:\"4.15.0-91.92\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws\", ver:\"4.15.0.1063.64\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws-lts-18.04\", ver:\"4.15.0.1063.64\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-lpae\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke\", ver:\"4.15.0.1055.59\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke-4.15\", ver:\"4.15.0.1055.59\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-kvm\", ver:\"4.15.0.1056.56\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-lowlatency\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc-e500mc\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc-smp\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc64-emb\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-powerpc64-smp\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-raspi2\", ver:\"4.15.0.1057.55\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-snapdragon\", ver:\"4.15.0.1074.77\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-virtual\", ver:\"4.15.0.91.83\", rls:\"UBUNTU18.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nif(release == \"UBUNTU16.04 LTS\") {\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1058-gcp\", ver:\"4.15.0-1058.62\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-1063-aws\", ver:\"4.15.0-1063.67~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-91-generic\", ver:\"4.15.0-91.92~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-91-generic-lpae\", ver:\"4.15.0-91.92~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-4.15.0-91-lowlatency\", ver:\"4.15.0-91.92~16.04.1\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-aws-hwe\", ver:\"4.15.0.1063.63\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gcp\", ver:\"4.15.0.1058.72\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-hwe-16.04\", ver:\"4.15.0.91.101\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-generic-lpae-hwe-16.04\", ver:\"4.15.0.91.101\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-gke\", ver:\"4.15.0.1058.72\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-lowlatency-hwe-16.04\", ver:\"4.15.0.91.101\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-oem\", ver:\"4.15.0.91.101\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(!isnull(res = isdpkgvuln(pkg:\"linux-image-virtual-hwe-16.04\", ver:\"4.15.0.91.101\", rls:\"UBUNTU16.04 LTS\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2020-03-24T16:51:57", "bulletinFamily": "scanner", "cvelist": ["CVE-2020-8992", "CVE-2020-8648", "CVE-2020-9383", "CVE-2019-3016", "CVE-2019-19768", "CVE-2020-8428", "CVE-2019-19807", "CVE-2020-8649", "CVE-2019-19447", "CVE-2020-8647", "CVE-2020-2732"], "description": "The remote host is missing an update for the Huawei EulerOS\n ", "modified": "2020-03-23T00:00:00", "published": "2020-03-23T00:00:00", "id": "OPENVAS:1361412562311220201292", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562311220201292", "type": "openvas", "title": "Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1292)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.1.2.2020.1292\");\n script_version(\"2020-03-23T07:40:01+0000\");\n script_cve_id(\"CVE-2019-19447\", \"CVE-2019-19768\", \"CVE-2019-19807\", \"CVE-2019-3016\", \"CVE-2020-2732\", \"CVE-2020-8428\", \"CVE-2020-8647\", \"CVE-2020-8648\", \"CVE-2020-8649\", \"CVE-2020-8992\", \"CVE-2020-9383\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-03-23 07:40:01 +0000 (Mon, 23 Mar 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-03-23 07:40:01 +0000 (Mon, 23 Mar 2020)\");\n script_name(\"Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1292)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Huawei EulerOS Local Security Checks\");\n script_dependencies(\"gb_huawei_euleros_consolidation.nasl\");\n script_mandatory_keys(\"ssh/login/euleros\", \"ssh/login/rpms\", re:\"ssh/login/release=EULEROS-2\\.0SP8\");\n\n script_xref(name:\"EulerOS-SA\", value:\"2020-1292\");\n script_xref(name:\"URL\", value:\"https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1292\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the Huawei EulerOS\n 'kernel' package(s) announced via the EulerOS-SA-2020-1292 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c.(CVE-2019-19447 )\n\nIn the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer).(CVE-2019-19768)\n\next4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows attackers to cause a denial of service (soft lockup) via a crafted journal size.(CVE-2020-8992)\n\nAn issue was discovered in the Linux kernel through 5.5.6. set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2.(CVE-2020-9383)\n\nIn the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to snd_timer_open and snd_timer_close_locked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a different purpose after refactoring.(CVE-2019-19807)\n\nKernel: kvm: nVMX: L2 guest may trick the L0 hypervisor to access sensitive L1 resources(CVE-2020-2732)\n\nThere is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.(CVE-2020-8648)\n\nThere is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vgacon_invert_region function in drivers/video/console/vgacon.c.(CVE-2020-8649)\n\nThere is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vc_do_resize function in drivers/tty/vt/vt.c.(CVE-2020-8647)\n\nfs/namei.c in the Linux kernel before 5.5 has a may_create_in_sticky use-after-free, which allows local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if the socket is being moved to a new parent directory and its old parent directory is being removed.(CVE-2020-8428)\n\nIn a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.(CVE-2019-3016)\");\n\n script_tag(name:\"affected\", value:\"'kernel' package(s) on Huawei EulerOS V2.0SP8.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"EULEROS-2.0SP8\") {\n\n if(!isnull(res = isrpmvuln(pkg:\"bpftool\", rpm:\"bpftool~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-source\", rpm:\"kernel-source~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-tools\", rpm:\"kernel-tools~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-tools-libs\", rpm:\"kernel-tools-libs~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"perf\", rpm:\"perf~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"python-perf\", rpm:\"python-perf~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"python3-perf\", rpm:\"python3-perf~4.19.36~vhulk1907.1.0.h702.eulerosv2r8\", rls:\"EULEROS-2.0SP8\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if (__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-04-03T17:04:59", "bulletinFamily": "scanner", "cvelist": ["CVE-2019-5108", "CVE-2020-8648", "CVE-2020-9383", "CVE-2019-20095", "CVE-2019-19332", "CVE-2019-14896", "CVE-2019-19922", "CVE-2019-3016", "CVE-2019-11135", "CVE-2019-19947", "CVE-2019-19338", "CVE-2019-14895", "CVE-2019-14897", "CVE-2020-8428", "CVE-2020-8649", "CVE-2020-8647", "CVE-2019-20096"], "description": "The remote host is missing an update for the Huawei EulerOS\n ", "modified": "2020-04-01T00:00:00", "published": "2020-04-01T00:00:00", "id": "OPENVAS:1361412562311220201342", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562311220201342", "type": "openvas", "title": "Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1342)", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.1.2.2020.1342\");\n script_version(\"2020-04-01T13:54:05+0000\");\n script_cve_id(\"CVE-2019-11135\", \"CVE-2019-14895\", \"CVE-2019-14896\", \"CVE-2019-14897\", \"CVE-2019-19332\", \"CVE-2019-19338\", \"CVE-2019-19922\", \"CVE-2019-19947\", \"CVE-2019-20095\", \"CVE-2019-20096\", \"CVE-2019-3016\", \"CVE-2019-5108\", \"CVE-2020-8428\", \"CVE-2020-8647\", \"CVE-2020-8648\", \"CVE-2020-8649\", \"CVE-2020-9383\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-04-01 13:54:05 +0000 (Wed, 01 Apr 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-04-01 13:54:05 +0000 (Wed, 01 Apr 2020)\");\n script_name(\"Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1342)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Huawei EulerOS Local Security Checks\");\n script_dependencies(\"gb_huawei_euleros_consolidation.nasl\");\n script_mandatory_keys(\"ssh/login/euleros\", \"ssh/login/rpms\", re:\"ssh/login/release=EULEROSVIRTARM64-3\\.0\\.6\\.0\");\n\n script_xref(name:\"EulerOS-SA\", value:\"2020-1342\");\n script_xref(name:\"URL\", value:\"https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1342\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the Huawei EulerOS\n 'kernel' package(s) announced via the EulerOS-SA-2020-1342 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"A heap-based buffer overflow was discovered in the Linux kernel's Marvell WiFi chip driver. The flaw could occur when the station attempts a connection negotiation during the handling of the remote devices country settings. This could allow the remote device to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2019-14895)\n\nA flaw was found in the fix for CVE-2019-11135, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has 'TSX' enabled. Confidentiality of data is the highest threat associated with this vulnerability.(CVE-2019-19338)\n\nA flaw was found in the way Intel CPUs handle speculative execution of instructions when the TSX Asynchronous Abort (TAA) error occurs. A local authenticated attacker with the ability to monitor execution times could infer the TSX memory state by comparing abort execution times. This could allow information disclosure via this observed side-channel for any TSX transaction being executed while an attacker is able to observe abort timing. Intel's Transactional Synchronisation Extensions (TSX) are set of instructions which enable transactional memory support to improve performance of the multi-threaded applications, in the lock-protected critical sections. The CPU executes instructions in the critical-sections as transactions, while ensuring their atomic state. When such transaction execution is unsuccessful, the processor cannot ensure atomic updates to the transaction memory, so the processor rolls back or aborts such transaction execution. While TSX Asynchronous Abort (TAA) is pending, CPU may continue to read data from architectural buffers and pass it to the dependent speculative operations. This may cause information leakage via speculative side-channel means, which is quite similar to the Microarchitectural Data Sampling (MDS) issue.(CVE-2019-11135)\n\nAn out-of-bounds memory write issue was found in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the '/dev/kvm' device could use this flaw to crash the s ...\n\n Description truncated. Please see the references for more information.\");\n\n script_tag(name:\"affected\", value:\"'kernel' package(s) on Huawei EulerOS Virtualization for ARM 64 3.0.6.0.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"EULEROSVIRTARM64-3.0.6.0\") {\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-devel\", rpm:\"kernel-devel~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-headers\", rpm:\"kernel-headers~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-tools\", rpm:\"kernel-tools~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-tools-libs\", rpm:\"kernel-tools-libs~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel-tools-libs-devel\", rpm:\"kernel-tools-libs-devel~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"perf\", rpm:\"perf~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"python-perf\", rpm:\"python-perf~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"python3-perf\", rpm:\"python3-perf~4.19.36~vhulk1907.1.0.h697.eulerosv2r8\", rls:\"EULEROSVIRTARM64-3.0.6.0\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if (__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-14T14:48:03", "bulletinFamily": "scanner", "cvelist": ["CVE-2019-19054", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-0155", "CVE-2019-19062", "CVE-2019-19053", "CVE-2019-19064", "CVE-2018-12207", "CVE-2019-19059", "CVE-2019-11135", "CVE-2019-19055", "CVE-2019-19043", "CVE-2019-19063", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19050", "CVE-2019-19071", "CVE-2019-0154", "CVE-2019-19073", "CVE-2019-19070", "CVE-2019-19046", "CVE-2019-19074", "CVE-2019-19056", "CVE-2019-19072"], "description": "The remote host is missing an update for the ", "modified": "2020-01-13T00:00:00", "published": "2020-01-09T00:00:00", "id": "OPENVAS:1361412562310877113", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310877113", "type": "openvas", "title": "Fedora Update for kernel FEDORA-2019-34a75d7e61", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.877113\");\n script_version(\"2020-01-13T11:49:13+0000\");\n script_cve_id(\"CVE-2019-19074\", \"CVE-2019-19073\", \"CVE-2019-19072\", \"CVE-2019-19071\", \"CVE-2019-19070\", \"CVE-2019-19068\", \"CVE-2019-19043\", \"CVE-2019-19066\", \"CVE-2019-19046\", \"CVE-2019-19050\", \"CVE-2019-19062\", \"CVE-2019-19064\", \"CVE-2019-19063\", \"CVE-2019-19059\", \"CVE-2019-19058\", \"CVE-2019-19057\", \"CVE-2019-19053\", \"CVE-2019-19056\", \"CVE-2019-19055\", \"CVE-2019-19054\", \"CVE-2019-11135\", \"CVE-2018-12207\", \"CVE-2019-0154\", \"CVE-2019-0155\");\n script_tag(name:\"cvss_base\", value:\"7.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"last_modification\", value:\"2020-01-13 11:49:13 +0000 (Mon, 13 Jan 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-01-09 07:25:58 +0000 (Thu, 09 Jan 2020)\");\n script_name(\"Fedora Update for kernel FEDORA-2019-34a75d7e61\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC31\");\n\n script_xref(name:\"FEDORA\", value:\"2019-34a75d7e61\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PY7LJMSPAGRIKABJPDKQDTXYW3L5RX2T\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'kernel'\n package(s) announced via the FEDORA-2019-34a75d7e61 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The kernel meta package\");\n\n script_tag(name:\"affected\", value:\"'kernel' package(s) on Fedora 31.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"FC31\") {\n\n if(!isnull(res = isrpmvuln(pkg:\"kernel\", rpm:\"kernel~5.3.12~300.fc31\", rls:\"FC31\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if (__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "ubuntu": [{"lastseen": "2020-07-02T11:38:40", "bulletinFamily": "unix", "cvelist": ["CVE-2020-8428", "CVE-2019-19046"], "description": "It was discovered that the IPMI message handler implementation in the Linux \nkernel did not properly deallocate memory in certain situations. A local \nattacker could use this to cause a denial of service (kernel memory \nexhaustion). (CVE-2019-19046)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a use- \nafter-free vulnerability. A local attacker could use this to cause a denial \nof service (system crash) or possibly expose sensitive information (kernel \nmemory). (CVE-2020-8428)", "edition": 3, "modified": "2020-04-10T00:00:00", "published": "2020-04-10T00:00:00", "id": "USN-4319-1", "href": "https://ubuntu.com/security/notices/USN-4319-1", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2020-07-02T11:42:43", "bulletinFamily": "unix", "cvelist": ["CVE-2020-8428"], "description": "Al Viro discovered that the vfs layer in the Linux kernel contained a use- \nafter-free vulnerability. A local attacker could use this to cause a denial \nof service (system crash) or possibly expose sensitive information (kernel \nmemory).", "edition": 2, "modified": "2020-04-06T00:00:00", "published": "2020-04-06T00:00:00", "id": "USN-4320-1", "href": "https://ubuntu.com/security/notices/USN-4320-1", "title": "Linux kernel vulnerability", "type": "ubuntu", "cvss": {"score": 3.6, "vector": "AV:L/AC:L/Au:N/C:P/I:N/A:P"}}, {"lastseen": "2020-07-02T11:34:09", "bulletinFamily": "unix", "cvelist": ["CVE-2020-8992", "CVE-2020-8428"], "description": "Al Viro discovered that the vfs layer in the Linux kernel contained a use- \nafter-free vulnerability. A local attacker could use this to cause a denial \nof service (system crash) or possibly expose sensitive information (kernel \nmemory). (CVE-2020-8428)\n\nShijie Luo discovered that the ext4 file system implementation in the Linux \nkernel did not properly check for a too-large journal size. An attacker \ncould use this to construct a malicious ext4 image that, when mounted, \ncould cause a denial of service (soft lockup). (CVE-2020-8992)", "edition": 2, "modified": "2020-04-07T00:00:00", "published": "2020-04-07T00:00:00", "id": "USN-4324-1", "href": "https://ubuntu.com/security/notices/USN-4324-1", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-07-02T11:40:00", "bulletinFamily": "unix", "cvelist": ["CVE-2020-8992", "CVE-2020-8834", "CVE-2020-8428"], "description": "Al Viro discovered that the vfs layer in the Linux kernel contained a use- \nafter-free vulnerability. A local attacker could use this to cause a denial \nof service (system crash) or possibly expose sensitive information (kernel \nmemory). (CVE-2020-8428)\n\nGustavo Romero and Paul Mackerras discovered that the KVM implementation in \nthe Linux kernel for PowerPC processors did not properly keep guest state \nseparate from host state. A local attacker in a KVM guest could use this to \ncause a denial of service (host system crash). (CVE-2020-8834)\n\nShijie Luo discovered that the ext4 file system implementation in the Linux \nkernel did not properly check for a too-large journal size. An attacker \ncould use this to construct a malicious ext4 image that, when mounted, \ncould cause a denial of service (soft lockup). (CVE-2020-8992)", "edition": 2, "modified": "2020-04-06T00:00:00", "published": "2020-04-06T00:00:00", "id": "USN-4318-1", "href": "https://ubuntu.com/security/notices/USN-4318-1", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-05-06T00:59:34", "bulletinFamily": "unix", "cvelist": ["CVE-2019-3016", "CVE-2020-8428", "CVE-2013-1798"], "description": "Andrew Honig reported a flaw in the way KVM (Kernel-based Virtual Machine) emulated the IOAPIC. A privileged guest user could exploit this flaw to read host memory or cause a denial of service (crash the host). (CVE-2013-1798)\n\nIt was discovered that the KVM implementation in the Linux kernel, when paravirtual TLB flushes are enabled in guests, the hypervisor in some situations could miss deferred TLB flushes or otherwise mishandle them. An attacker in a guest VM could use this to expose sensitive information (read memory from another guest VM). (CVE-2019-3016)\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory). (CVE-2020-8428)", "edition": 1, "modified": "2020-04-09T00:00:00", "published": "2020-04-09T00:00:00", "id": "LSN-0065-1", "href": "https://usn.ubuntu.com/lsn/0065-1/", "title": "Kernel Live Patch Security Notice", "type": "ubuntu", "cvss": {"score": 6.2, "vector": "AV:A/AC:H/Au:N/C:C/I:N/A:C"}}, {"lastseen": "2020-07-18T01:32:46", "bulletinFamily": "unix", "cvelist": ["CVE-2020-8832", "CVE-2019-15217", "CVE-2019-19051", "CVE-2019-19058", "CVE-2019-14615", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19046", "CVE-2020-2732", "CVE-2019-19056"], "description": "Paulo Bonzini discovered that the KVM hypervisor implementation in the \nLinux kernel could improperly let a nested (level 2) guest access the \nresources of a parent (level 1) guest in certain situations. An attacker \ncould use this to expose sensitive information. (CVE-2020-2732)\n\nGregory Herrero discovered that the fix for CVE-2019-14615 to address the \nLinux kernel not properly clearing data structures on context switches for \ncertain Intel graphics processors was incomplete. A local attacker could \nuse this to expose sensitive information. (CVE-2020-8832)\n\nIt was discovered that the IPMI message handler implementation in the Linux \nkernel did not properly deallocate memory in certain situations. A local \nattacker could use this to cause a denial of service (kernel memory \nexhaustion). (CVE-2019-19046)\n\nIt was discovered that the Intel WiMAX 2400 driver in the Linux kernel did \nnot properly deallocate memory in certain situations. A local attacker \ncould use this to cause a denial of service (kernel memory exhaustion). \n(CVE-2019-19051)\n\nIt was discovered that the Marvell Wi-Fi device driver in the Linux kernel \ndid not properly deallocate memory in certain error conditions. A local \nattacker could use this to possibly cause a denial of service (kernel \nmemory exhaustion). (CVE-2019-19056)\n\nIt was discovered that the Intel(R) Wi-Fi device driver in the Linux kernel \ndevice driver in the Linux kernel did not properly deallocate memory in \ncertain error conditions. A local attacker could possibly use this to cause \na denial of service (kernel memory exhaustion). (CVE-2019-19058)\n\nIt was discovered that the Brocade BFA Fibre Channel device driver in the \nLinux kernel did not properly deallocate memory in certain error \nconditions. A local attacker could possibly use this to cause a denial of \nservice (kernel memory exhaustion). (CVE-2019-19066)\n\nIt was discovered that the Realtek RTL8xxx USB Wi-Fi device driver in the \nLinux kernel did not properly deallocate memory in certain error \nconditions. A local attacker could possibly use this to cause a denial of \nservice (kernel memory exhaustion). (CVE-2019-19068)\n\nIt was discovered that ZR364XX Camera USB device driver for the Linux \nkernel did not properly initialize memory. A physically proximate attacker \ncould use this to cause a denial of service (system crash). \n(CVE-2019-15217)", "edition": 7, "modified": "2020-03-25T00:00:00", "published": "2020-03-25T00:00:00", "id": "USN-4302-1", "href": "https://ubuntu.com/security/notices/USN-4302-1", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}], "cloudfoundry": [{"lastseen": "2020-06-03T01:24:16", "bulletinFamily": "software", "cvelist": ["CVE-2020-8992", "CVE-2020-8834", "CVE-2020-8428"], "description": "# \n\n## Severity\n\nMedium\n\n## Vendor\n\nCanonical Ubuntu\n\n## Versions Affected\n\n * Canonical Ubuntu 16.04\n\n## Description\n\nAl Viro discovered that the vfs layer in the Linux kernel contained a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory). (CVE-2020-8428)\n\nGustavo Romero and Paul Mackerras discovered that the KVM implementation in the Linux kernel for PowerPC processors did not properly keep guest state separate from host state. A local attacker in a KVM guest could use this to cause a denial of service (host system crash). (CVE-2020-8834)\n\nShijie Luo discovered that the ext4 file system implementation in the Linux kernel did not properly check for a too-large journal size. An attacker could use this to construct a malicious ext4 image that, when mounted, could cause a denial of service (soft lockup). (CVE-2020-8992)\n\nCVEs contained in this USN include: CVE-2020-8428, CVE-2020-8834, CVE-2020-8992.\n\n## Affected Cloud Foundry Products and Versions\n\n_Severity is medium unless otherwise noted._\n\n * Xenial Stemcells \n * 170.x versions prior to 170.215\n * 250.x versions prior to 250.196\n * 315.x versions prior to 315.179\n * 456.x versions prior to 456.108\n * 621.x versions prior to 621.69\n * All other stemcells not listed.\n\n## Mitigation\n\nUsers of affected products are strongly encouraged to follow the mitigations below. The Cloud Foundry project recommends upgrading the following releases:\n\n * Xenial Stemcells \n * Upgrade 170.x versions to 170.215 or greater\n * Upgrade 250.x versions to 250.196 or greater\n * Upgrade 315.x versions to 315.179 or greater\n * Upgrade 456.x versions to 456.108 or greater\n * Upgrade 621.x versions to 621.69 or greater\n * All other stemcells should be upgraded to the latest version available on [bosh.io](<https://bosh.io/stemcells>).\n\n## References\n\n * [USN Notice](<https://usn.ubuntu.com/4318-1/>)\n * [CVE-2020-8428](<https://people.canonical.com/~ubuntu-security/cve/CVE-2020-8428>)\n * [CVE-2020-8834](<https://people.canonical.com/~ubuntu-security/cve/CVE-2020-8834>)\n * [CVE-2020-8992](<https://people.canonical.com/~ubuntu-security/cve/CVE-2020-8992>)\n\n## History\n\n2020-04-06: Initial vulnerability report published.\n", "edition": 1, "modified": "2020-05-14T00:00:00", "published": "2020-05-14T00:00:00", "id": "CFOUNDRY:F57A73CFC5FB17A63EC4D0328D382C3A", "href": "https://www.cloudfoundry.org/blog/usn-4318-1/", "title": "USN-4318-1: Linux kernel vulnerabilities | Cloud Foundry", "type": "cloudfoundry", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-05-06T02:42:13", "bulletinFamily": "software", "cvelist": ["CVE-2020-8832", "CVE-2019-15217", "CVE-2019-19051", "CVE-2019-19058", "CVE-2019-14615", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19046", "CVE-2020-2732", "CVE-2019-19056"], "description": "# \n\n## Severity\n\nMedium\n\n## Vendor\n\nCanonical Ubuntu\n\n## Versions Affected\n\n * Canonical Ubuntu 16.04\n\n## Description\n\nPaulo Bonzini discovered that the KVM hypervisor implementation in the Linux kernel could improperly let a nested (level 2) guest access the resources of a parent (level 1) guest in certain situations. An attacker could use this to expose sensitive information. (CVE-2020-2732)\n\nGregory Herrero discovered that the fix for CVE-2019-14615 to address the Linux kernel not properly clearing data structures on context switches for certain Intel graphics processors was incomplete. A local attacker could use this to expose sensitive information. (CVE-2020-8832)\n\nIt was discovered that the IPMI message handler implementation in the Linux kernel did not properly deallocate memory in certain situations. A local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19046)\n\nIt was discovered that the Intel WiMAX 2400 driver in the Linux kernel did not properly deallocate memory in certain situations. A local attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19051)\n\nIt was discovered that the Marvell Wi-Fi device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could use this to possibly cause a denial of service (kernel memory exhaustion). (CVE-2019-19056)\n\nIt was discovered that the Intel\u00ae Wi-Fi device driver in the Linux kernel device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19058)\n\nIt was discovered that the Brocade BFA Fibre Channel device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19066)\n\nIt was discovered that the Realtek RTL8xxx USB Wi-Fi device driver in the Linux kernel did not properly deallocate memory in certain error conditions. A local attacker could possibly use this to cause a denial of service (kernel memory exhaustion). (CVE-2019-19068)\n\nIt was discovered that ZR364XX Camera USB device driver for the Linux kernel did not properly initialize memory. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2019-15217)\n\nCVEs contained in this USN include: CVE-2019-15217, CVE-2019-19051, CVE-2019-19056, CVE-2019-19066, CVE-2019-19068, CVE-2019-19058, CVE-2020-2732, CVE-2019-19046, CVE-2020-8832.\n\n## Affected Cloud Foundry Products and Versions\n\n_Severity is medium unless otherwise noted._\n\n * Xenial Stemcells \n * 97.x versions prior to 97.239\n * 170.x versions prior to 170.210\n * 250.x versions prior to 250.189\n * 315.x versions prior to 315.175\n * 456.x versions prior to 456.104\n * 621.x versions prior to 621.64\n * All other stemcells not listed.\n\n## Mitigation\n\nUsers of affected products are strongly encouraged to follow the mitigations below. The Cloud Foundry project recommends upgrading the following releases:\n\n * Xenial Stemcells \n * Upgrade 97.x versions to 97.239 or greater\n * Upgrade 170.x versions to 170.210 or greater\n * Upgrade 250.x versions to 250.189 or greater\n * Upgrade 315.x versions to 315.175 or greater\n * Upgrade 456.x versions to 456.104 or greater\n * Upgrade 621.x versions to 621.64 or greater\n * All other stemcells should be upgraded to the latest version available on [bosh.io](<https://bosh.io/stemcells>).\n\n## References\n\n * [USN Notice](<https://usn.ubuntu.com/4302-1/>)\n * [CVE-2019-15217](<https://people.canonical.com/~ubuntu-security/cve/CVE-2019-15217>)\n * [CVE-2019-19051](<https://people.canonical.com/~ubuntu-security/cve/CVE-2019-19051>)\n * [CVE-2019-19056](<https://people.canonical.com/~ubuntu-security/cve/CVE-2019-19056>)\n * [CVE-2019-19066](<https://people.canonical.com/~ubuntu-security/cve/CVE-2019-19066>)\n * [CVE-2019-19068](<https://people.canonical.com/~ubuntu-security/cve/CVE-2019-19068>)\n * [CVE-2019-19058](<https://people.canonical.com/~ubuntu-security/cve/CVE-2019-19058>)\n * [CVE-2020-2732](<https://people.canonical.com/~ubuntu-security/cve/CVE-2020-2732>)\n * [CVE-2019-19046](<https://people.canonical.com/~ubuntu-security/cve/CVE-2019-19046>)\n * [CVE-2020-8832](<https://people.canonical.com/~ubuntu-security/cve/CVE-2020-8832>)\n\n## History\n\n2020-03-17: Initial vulnerability report published.\n", "edition": 2, "modified": "2020-04-23T00:00:00", "published": "2020-04-23T00:00:00", "id": "CFOUNDRY:A6BB54E614972BC1F16419D7DB82331A", "href": "https://www.cloudfoundry.org/blog/usn-4302-1/", "title": "USN-4302-1: Linux kernel vulnerabilities | Cloud Foundry", "type": "cloudfoundry", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}], "redhat": [{"lastseen": "2020-08-25T14:07:14", "bulletinFamily": "unix", "cvelist": ["CVE-2019-19046", "CVE-2020-10769", "CVE-2020-12655"], "description": "The kernel-alt packages provide the Linux kernel version 4.x.\n\nSecurity Fix(es):\n\n* kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c (CVE-2019-19046)\n\n* kernel: Buffer over-read in crypto_authenc_extractkeys() when a payload longer than 4 bytes is not aligned. (CVE-2020-10769)\n\n* kernel: sync of excessive duration via an XFS v5 image with crafted metadata (CVE-2020-12655)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* list corruption in iscsi_queuecommand (BZ#1839622)", "modified": "2020-08-25T17:01:23", "published": "2020-08-25T16:38:29", "id": "RHSA-2020:3545", "href": "https://access.redhat.com/errata/RHSA-2020:3545", "type": "redhat", "title": "(RHSA-2020:3545) Moderate: kernel-alt security and bug fix update", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2020-11-25T15:29:11", "bulletinFamily": "unix", "cvelist": ["CVE-2017-18551", "CVE-2019-19046", "CVE-2019-19447", "CVE-2019-9454", "CVE-2020-12770"], "description": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551)\n\n* kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n* kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c (CVE-2019-19046)\n\n* kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c (CVE-2019-19447)\n\n* kernel: sg_write function lacks an sg_remove_request call in a certain failure case (CVE-2020-12770)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* [RHEL7] deadlock between page fault handler and __get_free_pages() (BZ#1889766)\n\n* RHEL7.6: no-carrier configured interfaces causes soft lockups by mount.nfs and hang booting/shutdown process (BZ#1889772)\n\n* RHEL7.7 zstream - ESS - kernel panic triggered by freelist pointer corruption (BZ#1893807)", "modified": "2020-11-25T19:00:24", "published": "2020-11-24T14:51:23", "id": "RHSA-2020:5206", "href": "https://access.redhat.com/errata/RHSA-2020:5206", "type": "redhat", "title": "(RHSA-2020:5206) Moderate: kernel security and bug fix update", "cvss": {"score": 6.8, "vector": "AV:N/AC:L/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2020-12-22T09:31:55", "bulletinFamily": "unix", "cvelist": ["CVE-2017-18551", "CVE-2018-20836", "CVE-2019-19046", "CVE-2019-19447", "CVE-2019-20636", "CVE-2019-9454", "CVE-2020-12770"], "description": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551)\n\n* kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free (CVE-2018-20836)\n\n* kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n* kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c (CVE-2019-19046)\n\n* kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c (CVE-2019-19447)\n\n* kernel: out-of-bounds write via crafted keycode table (CVE-2019-20636)\n\n* kernel: sg_write function lacks an sg_remove_request call in a certain failure case (CVE-2020-12770)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "modified": "2020-12-22T14:01:54", "published": "2020-12-22T13:30:57", "id": "RHSA-2020:5656", "href": "https://access.redhat.com/errata/RHSA-2020:5656", "type": "redhat", "title": "(RHSA-2020:5656) Moderate: kernel security update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-11-04T02:33:21", "bulletinFamily": "unix", "cvelist": ["CVE-2019-15917", "CVE-2019-15925", "CVE-2019-16231", "CVE-2019-16233", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-19046", "CVE-2019-19056", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19068", "CVE-2019-19072", "CVE-2019-19319", "CVE-2019-19332", "CVE-2019-19447", "CVE-2019-19524", "CVE-2019-19533", "CVE-2019-19537", "CVE-2019-19543", "CVE-2019-19767", "CVE-2019-19770", "CVE-2019-20054", "CVE-2019-20636", "CVE-2019-9455", "CVE-2019-9458", "CVE-2020-0305", "CVE-2020-10732", "CVE-2020-10751", "CVE-2020-10774", "CVE-2020-10942", "CVE-2020-11565", "CVE-2020-11668", "CVE-2020-12655", "CVE-2020-12659", "CVE-2020-12770", "CVE-2020-12826", "CVE-2020-14381", "CVE-2020-25641", "CVE-2020-8647", "CVE-2020-8648", "CVE-2020-8649"], "description": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: use after free due to race condition in the video driver leads to local privilege escalation (CVE-2019-9458)\n\n* kernel: use-after-free in drivers/bluetooth/hci_ldisc.c (CVE-2019-15917)\n\n* kernel: out-of-bounds access in function hclge_tm_schd_mode_vnet_base_cfg (CVE-2019-15925)\n\n* kernel: memory leak in ccp_run_sha_cmd() (CVE-2019-18808)\n\n* kernel: Denial Of Service in the __ipmi_bmc_register() (CVE-2019-19046)\n\n* kernel: out-of-bounds write in ext4_xattr_set_entry in fs/ext4/xattr.c (CVE-2019-19319)\n\n* Kernel: kvm: OOB memory write via kvm_dev_ioctl_get_cpuid (CVE-2019-19332)\n\n* kernel: use-after-free in ext4_put_super (CVE-2019-19447)\n\n* kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free (CVE-2019-19524)\n\n* kernel: race condition caused by a malicious USB device in the USB character device driver layer (CVE-2019-19537)\n\n* kernel: use-after-free in serial_ir_init_module() (CVE-2019-19543)\n\n* kernel: use-after-free in __ext4_expand_extra_isize and ext4_xattr_set_entry (CVE-2019-19767)\n\n* kernel: use-after-free in debugfs_remove (CVE-2019-19770)\n\n* kernel: out-of-bounds write via crafted keycode table (CVE-2019-20636)\n\n* kernel: possible use-after-free due to a race condition in cdev_get of char_dev.c (CVE-2020-0305)\n\n* kernel: out-of-bounds read in in vc_do_resize (CVE-2020-8647)\n\n* kernel: use-after-free in n_tty_receive_buf_common (CVE-2020-8648)\n\n* kernel: invalid read location in vgacon_invert_region (CVE-2020-8649)\n\n* kernel: uninitialized kernel data leak in userspace coredumps (CVE-2020-10732)\n\n* kernel: SELinux netlink permission check bypass (CVE-2020-10751)\n\n* kernel: out-of-bounds write in mpol_parse_str function in mm/mempolicy.c (CVE-2020-11565)\n\n* kernel: mishandles invalid descriptors in drivers/media/usb/gspca/xirlink_cit.c (CVE-2020-11668)\n\n* kernel: out-of-bounds write in xdp_umem_reg (CVE-2020-12659)\n\n* kernel: sg_write function lacks an sg_remove_request call in a certain failure case (CVE-2020-12770)\n\n* kernel: possible to send arbitrary signals to a privileged (suidroot) parent process (CVE-2020-12826)\n\n* kernel: referencing inode of removed superblock in get_futex_key() causes UAF (CVE-2020-14381)\n\n* kernel: soft-lockups in iov_iter_copy_from_user_atomic() could result in DoS (CVE-2020-25641)\n\n* kernel: kernel pointer leak due to WARN_ON statement in video driver leads to local information disclosure (CVE-2019-9455)\n\n* kernel: null-pointer dereference in drivers/net/fjes/fjes_main.c (CVE-2019-16231)\n\n* kernel: null pointer dereference in drivers/scsi/qla2xxx/qla_os.c (CVE-2019-16233)\n\n* kernel: memory leak in af9005_identify_state() function in drivers/media/usb/dvb-usb/af9005.c (CVE-2019-18809)\n\n* kernel: A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf() (CVE-2019-19056)\n\n* kernel: memory leak in the crypto_report() function in crypto/crypto_user_base.c allows for DoS (CVE-2019-19062)\n\n* kernel: Two memory leaks in the rtl_usb_probe() (CVE-2019-19063)\n\n* kernel: A memory leak in the rtl8xxxu_submit_int_urb() (CVE-2019-19068)\n\n* kernel: A memory leak in the predicate_parse() function in kernel/trace/trace_events_filter.c allows for a DoS (CVE-2019-19072)\n\n* kernel: information leak bug caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c (CVE-2019-19533)\n\n* kernel: Null pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c (CVE-2019-20054)\n\n* kernel: possibility of memory disclosure when reading the file /proc/sys/kernel/rh_features (CVE-2020-10774)\n\n* kernel: vhost-net: stack overflow in get_raw_socket while checking sk_family field (CVE-2020-10942)\n\n* kernel: sync of excessive duration via an XFS v5 image with crafted metadata (CVE-2020-12655)", "modified": "2020-11-04T05:06:01", "published": "2020-11-03T17:20:02", "id": "RHSA-2020:4609", "href": "https://access.redhat.com/errata/RHSA-2020:4609", "type": "redhat", "title": "(RHSA-2020:4609) Moderate: kernel-rt security and bug fix update", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-09-29T19:44:14", "bulletinFamily": "unix", "cvelist": ["CVE-2017-18551", "CVE-2018-20836", "CVE-2019-15217", "CVE-2019-15807", "CVE-2019-15917", "CVE-2019-16231", "CVE-2019-16233", "CVE-2019-16994", "CVE-2019-17053", "CVE-2019-17055", "CVE-2019-18808", "CVE-2019-19046", "CVE-2019-19055", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19332", "CVE-2019-19447", "CVE-2019-19523", "CVE-2019-19524", "CVE-2019-19530", "CVE-2019-19534", "CVE-2019-19537", "CVE-2019-19767", "CVE-2019-19807", "CVE-2019-20054", "CVE-2019-20095", "CVE-2019-20636", "CVE-2019-9454", "CVE-2019-9458", "CVE-2020-10690", "CVE-2020-10732", "CVE-2020-10742", "CVE-2020-10751", "CVE-2020-10942", "CVE-2020-11565", "CVE-2020-12770", "CVE-2020-12826", "CVE-2020-14305", "CVE-2020-1749", "CVE-2020-2732", "CVE-2020-8647", "CVE-2020-8649", "CVE-2020-9383"], "description": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: use-after-free in sound/core/timer.c (CVE-2019-19807)\n\n* kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551)\n\n* kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free (CVE-2018-20836)\n\n* kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n* kernel: use after free due to race condition in the video driver leads to local privilege escalation (CVE-2019-9458)\n\nSpace precludes documenting all of the security fixes in this advisory. See the descriptions of the remaining security fixes in the related Knowledge Article:\n\nhttps://access.redhat.com/articles/5442481\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.", "modified": "2020-09-29T22:42:38", "published": "2020-09-29T22:41:41", "id": "RHSA-2020:4062", "href": "https://access.redhat.com/errata/RHSA-2020:4062", "type": "redhat", "title": "(RHSA-2020:4062) Important: kernel-rt security and bug fix update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-11-04T02:31:24", "bulletinFamily": "unix", "cvelist": ["CVE-2019-12614", "CVE-2019-15917", "CVE-2019-15925", "CVE-2019-16231", "CVE-2019-16233", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-19046", "CVE-2019-19056", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19068", "CVE-2019-19072", "CVE-2019-19319", "CVE-2019-19332", "CVE-2019-19447", "CVE-2019-19524", "CVE-2019-19533", "CVE-2019-19537", "CVE-2019-19543", "CVE-2019-19767", "CVE-2019-19770", "CVE-2019-20054", "CVE-2019-20636", "CVE-2019-9455", "CVE-2019-9458", "CVE-2020-0305", "CVE-2020-10732", "CVE-2020-10751", "CVE-2020-10773", "CVE-2020-10774", "CVE-2020-10942", "CVE-2020-11565", "CVE-2020-11668", "CVE-2020-12465", "CVE-2020-12655", "CVE-2020-12659", "CVE-2020-12770", "CVE-2020-12826", "CVE-2020-14381", "CVE-2020-25641", "CVE-2020-8647", "CVE-2020-8648", "CVE-2020-8649"], "description": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: use after free in the video driver leads to local privilege escalation (CVE-2019-9458)\n\n* kernel: use-after-free in drivers/bluetooth/hci_ldisc.c (CVE-2019-15917)\n\n* kernel: out-of-bounds access in function hclge_tm_schd_mode_vnet_base_cfg (CVE-2019-15925)\n\n* kernel: memory leak in ccp_run_sha_cmd() (CVE-2019-18808)\n\n* kernel: Denial Of Service in the __ipmi_bmc_register() (CVE-2019-19046)\n\n* kernel: out-of-bounds write in ext4_xattr_set_entry (CVE-2019-19319)\n\n* Kernel: kvm: OOB memory write via kvm_dev_ioctl_get_cpuid (CVE-2019-19332)\n\n* kernel: use-after-free in ext4_put_super (CVE-2019-19447)\n\n* kernel: a malicious USB device in the drivers/input/ff-memless.c leads to use-after-free (CVE-2019-19524)\n\n* kernel: race condition caused by a malicious USB device in the USB character device driver layer (CVE-2019-19537)\n\n* kernel: use-after-free in serial_ir_init_module() (CVE-2019-19543)\n\n* kernel: use-after-free in __ext4_expand_extra_isize and ext4_xattr_set_entry (CVE-2019-19767)\n\n* kernel: use-after-free in debugfs_remove (CVE-2019-19770)\n\n* kernel: out-of-bounds write via crafted keycode table (CVE-2019-20636)\n\n* kernel: possible use-after-free due to a race condition in cdev_get (CVE-2020-0305)\n\n* kernel: out-of-bounds read in in vc_do_resize function (CVE-2020-8647)\n\n* kernel: use-after-free in n_tty_receive_buf_common function (CVE-2020-8648)\n\n* kernel: invalid read location in vgacon_invert_region function (CVE-2020-8649)\n\n* kernel: uninitialized kernel data leak in userspace coredumps (CVE-2020-10732)\n\n* kernel: SELinux netlink permission check bypass (CVE-2020-10751)\n\n* kernel: out-of-bounds write in mpol_parse_str (CVE-2020-11565)\n\n* kernel: mishandles invalid descriptors in drivers/media/usb/gspca/xirlink_cit.c (CVE-2020-11668)\n\n* kernel: buffer overflow in mt76_add_fragment function (CVE-2020-12465)\n\n* kernel: xdp_umem_reg in net/xdp/xdp_umem.c has an out-of-bounds write which could result in crash and data coruption (CVE-2020-12659)\n\n* kernel: sg_write function lacks an sg_remove_request call in a certain failure case (CVE-2020-12770)\n\n* kernel: possible to send arbitrary signals to a privileged (suidroot) parent process (CVE-2020-12826)\n\n* kernel: referencing inode of removed superblock in get_futex_key() causes UAF (CVE-2020-14381)\n\n* kernel: soft-lockups in iov_iter_copy_from_user_atomic() could result in DoS (CVE-2020-25641)\n\n* kernel: kernel pointer leak due to WARN_ON statement in video driver leads to local information disclosure (CVE-2019-9455)\n\n* kernel: null pointer dereference in dlpar_parse_cc_property (CVE-2019-12614)\n\n* kernel: null-pointer dereference in drivers/net/fjes/fjes_main.c (CVE-2019-16231)\n\n* kernel: null pointer dereference in drivers/scsi/qla2xxx/qla_os.c (CVE-2019-16233)\n\n* kernel: memory leak in af9005_identify_state() function (CVE-2019-18809)\n\n* kernel: A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf() function (CVE-2019-19056)\n\n* kernel: memory leak in the crypto_report() function (CVE-2019-19062)\n\n* kernel: Two memory leaks in the rtl_usb_probe() function (CVE-2019-19063)\n\n* kernel: A memory leak in the rtl8xxxu_submit_int_urb() function (CVE-2019-19068)\n\n* kernel: A memory leak in the predicate_parse() function (CVE-2019-19072)\n\n* kernel: information leak bug caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c (CVE-2019-19533)\n\n* kernel: Null pointer dereference in drop_sysctl_table() (CVE-2019-20054)\n\n* kernel: kernel stack information leak on s390/s390x (CVE-2020-10773)\n\n* kernel: possibility of memory disclosure when reading the file /proc/sys/kernel/rh_features (CVE-2020-10774)\n\n* kernel: vhost-net: stack overflow in get_raw_socket while checking sk_family field (CVE-2020-10942)\n\n* kernel: sync of excessive duration via an XFS v5 image with crafted metadata (CVE-2020-12655)", "modified": "2020-11-04T05:03:54", "published": "2020-11-03T17:03:57", "id": "RHSA-2020:4431", "href": "https://access.redhat.com/errata/RHSA-2020:4431", "type": "redhat", "title": "(RHSA-2020:4431) Moderate: kernel security, bug fix, and enhancement update", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-09-29T19:44:05", "bulletinFamily": "unix", "cvelist": ["CVE-2017-18551", "CVE-2018-20836", "CVE-2019-12614", "CVE-2019-15217", "CVE-2019-15807", "CVE-2019-15917", "CVE-2019-16231", "CVE-2019-16233", "CVE-2019-16994", "CVE-2019-17053", "CVE-2019-17055", "CVE-2019-18808", "CVE-2019-19046", "CVE-2019-19055", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19332", "CVE-2019-19447", "CVE-2019-19523", "CVE-2019-19524", "CVE-2019-19530", "CVE-2019-19534", "CVE-2019-19537", "CVE-2019-19767", "CVE-2019-19807", "CVE-2019-20054", "CVE-2019-20095", "CVE-2019-20636", "CVE-2019-9454", "CVE-2019-9458", "CVE-2020-10690", "CVE-2020-10732", "CVE-2020-10742", "CVE-2020-10751", "CVE-2020-10942", "CVE-2020-11565", "CVE-2020-12770", "CVE-2020-12826", "CVE-2020-14305", "CVE-2020-1749", "CVE-2020-2732", "CVE-2020-8647", "CVE-2020-8649", "CVE-2020-9383"], "description": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: use-after-free in sound/core/timer.c (CVE-2019-19807)\n\n* kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551)\n\n* kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free (CVE-2018-20836)\n\n* kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n* kernel: use after free due to race condition in the video driver leads to local privilege escalation (CVE-2019-9458)\n\nSpace precludes documenting all of the security fixes in this advisory. See the descriptions of the remaining security fixes in the related Knowledge Article:\n\nhttps://access.redhat.com/articles/5442421\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.", "modified": "2020-09-29T22:43:41", "published": "2020-09-29T22:42:12", "id": "RHSA-2020:4060", "href": "https://access.redhat.com/errata/RHSA-2020:4060", "type": "redhat", "title": "(RHSA-2020:4060) Important: kernel security, bug fix, and enhancement update", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "debian": [{"lastseen": "2020-12-06T01:16:59", "bulletinFamily": "unix", "cvelist": ["CVE-2020-11884", "CVE-2020-10942", "CVE-2020-8428", "CVE-2020-11565", "CVE-2020-2732"], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-4667-1 security@debian.org\nhttps://www.debian.org/security/ Salvatore Bonaccorso\nApril 28, 2020 https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : linux\nCVE ID : CVE-2020-2732 CVE-2020-8428 CVE-2020-10942 CVE-2020-11565\n CVE-2020-11884\n\nSeveral vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service, or information\nleak.\n\nCVE-2020-2732\n\n Paulo Bonzini discovered that the KVM implementation for Intel\n processors did not properly handle instruction emulation for L2\n guests when nested virtualization is enabled. This could allow\n an L2 guest to cause privilege escalation, denial of service,\n or information leaks in the L1 guest.\n\nCVE-2020-8428\n\n Al Viro discovered a use-after-free vulnerability in the VFS\n layer. This allowed local users to cause a denial-of-service\n (crash) or obtain sensitive information from kernel memory.\n\nCVE-2020-10942\n\n It was discovered that the vhost_net driver did not properly\n validate the type of sockets set as back-ends. A local user\n permitted to access /dev/vhost-net could use this to cause a stack\n corruption via crafted system calls, resulting in denial of\n service (crash) or possibly privilege escalation.\n\nCVE-2020-11565\n\n Entropy Moe reported that the shared memory filesystem (tmpfs) did\n not correctly handle an &quot;mpol&quot; mount option specifying an empty\n node list, leading to a stack-based out-of-bounds write. If user\n namespaces are enabled, a local user could use this to cause a\n denial of service (crash) or possibly for privilege escalation.\n\nCVE-2020-11884\n\n Al Viro reported a race condition in memory management code for\n IBM Z (s390x architecture), that can result in the kernel\n executing code from the user address space. A local user could\n use this for privilege escalation.\n\nFor the stable distribution (buster), these problems have been fixed in\nversion 4.19.98-1+deb10u1.\n\nWe recommend that you upgrade your linux packages.\n\nFor the detailed security status of linux please refer to its security\ntracker page at:\nhttps://security-tracker.debian.org/tracker/linux\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 15, "modified": "2020-04-28T20:33:29", "published": "2020-04-28T20:33:29", "id": "DEBIAN:DSA-4667-1:62006", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2020/msg00071.html", "title": "[SECURITY] [DSA 4667-1] linux security update", "type": "debian", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-08-12T00:56:54", "bulletinFamily": "unix", "cvelist": ["CVE-2020-11494", "CVE-2019-5108", "CVE-2020-10711", "CVE-2020-8648", "CVE-2020-12770", "CVE-2020-9383", "CVE-2019-19462", "CVE-2019-2182", "CVE-2020-12114", "CVE-2020-10942", "CVE-2020-11609", "CVE-2020-10732", "CVE-2019-19768", "CVE-2020-0543", "CVE-2020-12464", "CVE-2020-12654", "CVE-2019-20806", "CVE-2019-19319", "CVE-2020-12653", "CVE-2020-8428", "CVE-2020-11608", "CVE-2020-11668", "CVE-2020-10751", "CVE-2020-13143", "CVE-2020-11565", "CVE-2020-8649", "CVE-2020-12652", "CVE-2020-10757", "CVE-2020-8647", "CVE-2019-20811", "CVE-2020-2732"], "description": "Package : linux-4.9\nVersion : 4.9.210-1+deb9u1~deb8u1\nCVE ID : CVE-2019-2182 CVE-2019-5108 CVE-2019-19319 CVE-2019-19462\n CVE-2019-19768 CVE-2019-20806 CVE-2019-20811 CVE-2020-0543\n CVE-2020-2732 CVE-2020-8428 CVE-2020-8647 CVE-2020-8648\n CVE-2020-8649 CVE-2020-9383 CVE-2020-10711 CVE-2020-10732\n CVE-2020-10751 CVE-2020-10757 CVE-2020-10942 CVE-2020-11494\n CVE-2020-11565 CVE-2020-11608 CVE-2020-11609 CVE-2020-11668\n CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653\n CVE-2020-12654 CVE-2020-12770 CVE-2020-13143\nDebian Bug : 952660\n\nSeveral vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service or information\nleaks.\n\nCVE-2019-2182\n\n Hanjun Guo and Lei Li reported a race condition in the arm64\n virtual memory management code, which could lead to an information\n disclosure, denial of service (crash), or possibly privilege\n escalation.\n\nCVE-2019-5108\n\n Mitchell Frank of Cisco discovered that when the IEEE 802.11\n (WiFi) stack was used in AP mode with roaming, it would trigger\n roaming for a newly associated station before the station was\n authenticated. An attacker within range of the AP could use this\n to cause a denial of service, either by filling up a switching\n table or by redirecting traffic away from other stations.\n\nCVE-2019-19319\n\n Jungyeon discovered that a crafted filesystem can cause the ext4\n implementation to deallocate or reallocate journal blocks. A user\n permitted to mount filesystems could use this to cause a denial of\n service (crash), or possibly for privilege escalation.\n\nCVE-2019-19462\n\n The syzbot tool found a missing error check in the &#x27;relay&#x27;\n library used to implement various files under debugfs. A local\n user permitted to access debugfs could use this to cause a denial\n of service (crash) or possibly for privilege escalation.\n\nCVE-2019-19768\n\n Tristan Madani reported a race condition in the blktrace debug\n facility that could result in a use-after-free. A local user able\n to trigger removal of block devices could possibly use this to\n cause a denial of service (crash) or for privilege escalation.\n\nCVE-2019-20806\n\n A potential null pointer dereference was discovered in the tw5864\n media driver. The security impact of this is unclear.\n\nCVE-2019-20811\n\n The Hulk Robot tool found a reference-counting bug in an error\n path in the network subsystem. The security impact of this is\n unclear.\n\nCVE-2020-0543\n\n Researchers at VU Amsterdam discovered that on some Intel CPUs\n supporting the RDRAND and RDSEED instructions, part of a random\n value generated by these instructions may be used in a later\n speculative execution on any core of the same physical CPU.\n Depending on how these instructions are used by applications, a\n local user or VM guest could use this to obtain sensitive\n information such as cryptographic keys from other users or VMs.\n\n This vulnerability can be mitigated by a microcode update, either\n as part of system firmware (BIOS) or through the intel-microcode\n package in Debian&#x27;s non-free archive section. This kernel update\n only provides reporting of the vulnerability and the option to\n disable the mitigation if it is not needed.\n\nCVE-2020-2732\n\n Paulo Bonzini discovered that the KVM implementation for Intel\n processors did not properly handle instruction emulation for L2\n guests when nested virtualization is enabled. This could allow an\n L2 guest to cause privilege escalation, denial of service, or\n information leaks in the L1 guest.\n\nCVE-2020-8428\n\n Al Viro discovered a potential use-after-free in the filesystem\n core (vfs). A local user could exploit this to cause a denial of\n service (crash) or possibly to obtain sensitive information from\n the kernel.\n\nCVE-2020-8647, CVE-2020-8649\n\n The Hulk Robot tool found a potential MMIO out-of-bounds access in\n the vgacon driver. A local user permitted to access a virtual\n terminal (/dev/tty1 etc.) on a system using the vgacon driver\n could use this to cause a denial of service (crash or memory\n corruption) or possibly for privilege escalation.\n\nCVE-2020-8648\n\n The syzbot tool found a race condition in the the virtual terminal\n driver, which could result in a use-after-free. A local user\n permitted to access a virtual terminal could use this to cause a\n denial of service (crash or memory corruption) or possibly for\n privilege escalation.\n\nCVE-2020-9383\n\n Jordy Zomer reported an incorrect range check in the floppy driver\n which could lead to a static out-of-bounds access. A local user\n permitted to access a floppy drive could use this to cause a\n denial of service (crash or memory corruption) or possibly for\n privilege escalation.\n\nCVE-2020-10711\n\n Matthew Sheets reported NULL pointer dereference issues in the\n SELinux subsystem while receiving CIPSO packet with null category. A\n remote attacker can take advantage of this flaw to cause a denial of\n service (crash). Note that this issue does not affect the binary\n packages distributed in Debian as CONFIG_NETLABEL is not enabled.\n\nCVE-2020-10732\n\n An information leak of kernel private memory to userspace was found\n in the kernel&#x27;s implementation of core dumping userspace processes.\n\nCVE-2020-10751\n\n Dmitry Vyukov reported that the SELinux subsystem did not properly\n handle validating multiple messages, which could allow a privileged\n attacker to bypass SELinux netlink restrictions.\n\nCVE-2020-10757\n\n Fan Yang reported a flaw in the way mremap handled DAX hugepages,\n allowing a local user to escalate their privileges\n\nCVE-2020-10942\n\n It was discovered that the vhost_net driver did not properly\n validate the type of sockets set as back-ends. A local user\n permitted to access /dev/vhost-net could use this to cause a stack\n corruption via crafted system calls, resulting in denial of\n service (crash) or possibly privilege escalation.\n\nCVE-2020-11494\n\n It was discovered that the slcan (serial line CAN) network driver\n did not fully initialise CAN headers for received packets,\n resulting in an information leak from the kernel to user-space or\n over the CAN network.\n\nCVE-2020-11565\n\n Entropy Moe reported that the shared memory filesystem (tmpfs) did\n not correctly handle an &quot;mpol&quot; mount option specifying an empty\n node list, leading to a stack-based out-of-bounds write. If user\n namespaces are enabled, a local user could use this to cause a\n denial of service (crash) or possibly for privilege escalation.\n\nCVE-2020-11608, CVE-2020-11609, CVE-2020-11668\n\n It was discovered that the ov519, stv06xx, and xirlink_cit media\n drivers did not properly validate USB device descriptors. A\n physically present user with a specially constructed USB device\n could use this to cause a denial-of-service (crash) or possibly\n for privilege escalation.\n\nCVE-2020-12114\n\n Piotr Krysiuk discovered a race condition between the umount and\n pivot_root operations in the filesystem core (vfs). A local user\n with the CAP_SYS_ADMIN capability in any user namespace could use\n this to cause a denial of service (crash).\n\nCVE-2020-12464\n\n Kyungtae Kim reported a race condition in the USB core that can\n result in a use-after-free. It is not clear how this can be\n exploited, but it could result in a denial of service (crash or\n memory corruption) or privilege escalation.\n\nCVE-2020-12652\n\n Tom Hatskevich reported a bug in the mptfusion storage drivers.\n An ioctl handler fetched a parameter from user memory twice,\n creating a race condition which could result in incorrect locking\n of internal data structures. A local user permitted to access\n /dev/mptctl could use this to cause a denial of service (crash or\n memory corruption) or for privilege escalation.\n\nCVE-2020-12653\n\n It was discovered that the mwifiex WiFi driver did not\n sufficiently validate scan requests, resulting a potential heap\n buffer overflow. A local user with CAP_NET_ADMIN capability could\n use this to cause a denial of service (crash or memory corruption)\n or possibly for privilege escalation.\n\nCVE-2020-12654\n\n It was discovered that the mwifiex WiFi driver did not\n sufficiently validate WMM parameters received from an access point\n (AP), resulting a potential heap buffer overflow. A malicious AP\n could use this to cause a denial of service (crash or memory\n corruption) or possibly to execute code on a vulnerable system.\n\nCVE-2020-12770\n\n It was discovered that the sg (SCSI generic) driver did not\n correctly release internal resources in a particular error case.\n A local user permitted to access an sg device could possibly use\n this to cause a denial of service (resource exhaustion).\n\nCVE-2020-13143\n\n Kyungtae Kim reported a potential heap out-of-bounds write in\n the USB gadget subsystem. A local user permitted to write to\n the gadget configuration filesystem could use this to cause a\n denial of service (crash or memory corruption) or potentially\n for privilege escalation.\n\nFor Debian 8 &quot;Jessie&quot;, these problems have been fixed in version\n4.9.210-1+deb9u1~deb8u1. This version also fixes some related bugs\nthat do not have their own CVE IDs, and a regression in the macvlan\ndriver introduced in the previous security update (bug #952660).\n\nWe recommend that you upgrade your linux-4.9 packages.\n\nFurther information about Debian LTS security advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://wiki.debian.org/LTS\n\n-- \nBen Hutchings - Debian developer, member of kernel, installer and LTS teams\n", "edition": 5, "modified": "2020-06-10T10:49:01", "published": "2020-06-10T10:49:01", "id": "DEBIAN:DLA-2242-1:573AF", "href": "https://lists.debian.org/debian-lts-announce/2020/debian-lts-announce-202006/msg00012.html", "title": "[SECURITY] [DLA 2242-1] linux-4.9 security update", "type": "debian", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-10-30T13:19:19", "bulletinFamily": "unix", "cvelist": ["CVE-2020-11494", "CVE-2019-5108", "CVE-2020-10711", "CVE-2020-8648", "CVE-2020-12770", "CVE-2020-9383", "CVE-2019-19462", "CVE-2019-2182", "CVE-2020-12114", "CVE-2020-10942", "CVE-2020-11609", "CVE-2020-10732", "CVE-2019-19768", "CVE-2020-0543", "CVE-2020-12464", "CVE-2020-12654", "CVE-2019-20806", "CVE-2019-19319", "CVE-2020-12653", "CVE-2020-8428", "CVE-2020-11608", "CVE-2020-11668", "CVE-2020-10751", "CVE-2020-13143", "CVE-2020-11565", "CVE-2020-8649", "CVE-2020-12652", "CVE-2020-10757", "CVE-2020-8647", "CVE-2019-20811", "CVE-2020-2732"], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-4698-1 security@debian.org\nhttps://www.debian.org/security/ Ben Hutchings\nJune 09, 2020 https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : linux\nCVE ID : CVE-2019-2182 CVE-2019-5108 CVE-2019-19319 CVE-2019-19462\n CVE-2019-19768 CVE-2019-20806 CVE-2019-20811 CVE-2020-0543\n CVE-2020-2732 CVE-2020-8428 CVE-2020-8647 CVE-2020-8648\n CVE-2020-8649 CVE-2020-9383 CVE-2020-10711 CVE-2020-10732\n CVE-2020-10751 CVE-2020-10757 CVE-2020-10942 CVE-2020-11494\n CVE-2020-11565 CVE-2020-11608 CVE-2020-11609 CVE-2020-11668\n CVE-2020-12114 CVE-2020-12464 CVE-2020-12652 CVE-2020-12653\n CVE-2020-12654 CVE-2020-12770 CVE-2020-13143\nDebian Bug : 952660\n\nSeveral vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service or information\nleaks.\n\nCVE-2019-2182\n\n Hanjun Guo and Lei Li reported a race condition in the arm64\n virtual memory management code, which could lead to an information\n disclosure, denial of service (crash), or possibly privilege\n escalation.\n\nCVE-2019-5108\n\n Mitchell Frank of Cisco discovered that when the IEEE 802.11\n (WiFi) stack was used in AP mode with roaming, it would trigger\n roaming for a newly associated station before the station was\n authenticated. An attacker within range of the AP could use this\n to cause a denial of service, either by filling up a switching\n table or by redirecting traffic away from other stations.\n\nCVE-2019-19319\n\n Jungyeon discovered that a crafted filesystem can cause the ext4\n implementation to deallocate or reallocate journal blocks. A user\n permitted to mount filesystems could use this to cause a denial of\n service (crash), or possibly for privilege escalation.\n\nCVE-2019-19462\n\n The syzbot tool found a missing error check in the &#x27;relay&#x27;\n library used to implement various files under debugfs. A local\n user permitted to access debugfs could use this to cause a denial\n of service (crash) or possibly for privilege escalation.\n\nCVE-2019-19768\n\n Tristan Madani reported a race condition in the blktrace debug\n facility that could result in a use-after-free. A local user able\n to trigger removal of block devices could possibly use this to\n cause a denial of service (crash) or for privilege escalation.\n\nCVE-2019-20806\n\n A potential null pointer dereference was discovered in the tw5864\n media driver. The security impact of this is unclear.\n\nCVE-2019-20811\n\n The Hulk Robot tool found a reference-counting bug in an error\n path in the network subsystem. The security impact of this is\n unclear.\n\nCVE-2020-0543\n\n Researchers at VU Amsterdam discovered that on some Intel CPUs\n supporting the RDRAND and RDSEED instructions, part of a random\n value generated by these instructions may be used in a later\n speculative execution on any core of the same physical CPU.\n Depending on how these instructions are used by applications, a\n local user or VM guest could use this to obtain sensitive\n information such as cryptographic keys from other users or VMs.\n\n This vulnerability can be mitigated by a microcode update, either\n as part of system firmware (BIOS) or through the intel-microcode\n package in Debian&#x27;s non-free archive section. This kernel update\n only provides reporting of the vulnerability and the option to\n disable the mitigation if it is not needed.\n\nCVE-2020-2732\n\n Paulo Bonzini discovered that the KVM implementation for Intel\n processors did not properly handle instruction emulation for L2\n guests when nested virtualization is enabled. This could allow an\n L2 guest to cause privilege escalation, denial of service, or\n information leaks in the L1 guest.\n\nCVE-2020-8428\n\n Al Viro discovered a potential use-after-free in the filesystem\n core (vfs). A local user could exploit this to cause a denial of\n service (crash) or possibly to obtain sensitive information from\n the kernel.\n\nCVE-2020-8647, CVE-2020-8649\n\n The Hulk Robot tool found a potential MMIO out-of-bounds access in\n the vgacon driver. A local user permitted to access a virtual\n terminal (/dev/tty1 etc.) on a system using the vgacon driver\n could use this to cause a denial of service (crash or memory\n corruption) or possibly for privilege escalation.\n\nCVE-2020-8648\n\n The syzbot tool found a race condition in the the virtual terminal\n driver, which could result in a use-after-free. A local user\n permitted to access a virtual terminal could use this to cause a\n denial of service (crash or memory corruption) or possibly for\n privilege escalation.\n\nCVE-2020-9383\n\n Jordy Zomer reported an incorrect range check in the floppy driver\n which could lead to a static out-of-bounds access. A local user\n permitted to access a floppy drive could use this to cause a\n denial of service (crash or memory corruption) or possibly for\n privilege escalation.\n\nCVE-2020-10711\n\n Matthew Sheets reported NULL pointer dereference issues in the\n SELinux subsystem while receiving CIPSO packet with null category. A\n remote attacker can take advantage of this flaw to cause a denial of\n service (crash). Note that this issue does not affect the binary\n packages distributed in Debian as CONFIG_NETLABEL is not enabled.\n\nCVE-2020-10732\n\n An information leak of kernel private memory to userspace was found\n in the kernel&#x27;s implementation of core dumping userspace processes.\n\nCVE-2020-10751\n\n Dmitry Vyukov reported that the SELinux subsystem did not properly\n handle validating multiple messages, which could allow a privileged\n attacker to bypass SELinux netlink restrictions.\n\nCVE-2020-10757\n\n Fan Yang reported a flaw in the way mremap handled DAX hugepages,\n allowing a local user to escalate their privileges\n\nCVE-2020-10942\n\n It was discovered that the vhost_net driver did not properly\n validate the type of sockets set as back-ends. A local user\n permitted to access /dev/vhost-net could use this to cause a stack\n corruption via crafted system calls, resulting in denial of\n service (crash) or possibly privilege escalation.\n\nCVE-2020-11494\n\n It was discovered that the slcan (serial line CAN) network driver\n did not fully initialise CAN headers for received packets,\n resulting in an information leak from the kernel to user-space or\n over the CAN network.\n\nCVE-2020-11565\n\n Entropy Moe reported that the shared memory filesystem (tmpfs) did\n not correctly handle an &quot;mpol&quot; mount option specifying an empty\n node list, leading to a stack-based out-of-bounds write. If user\n namespaces are enabled, a local user could use this to cause a\n denial of service (crash) or possibly for privilege escalation.\n\nCVE-2020-11608, CVE-2020-11609, CVE-2020-11668\n\n It was discovered that the ov519, stv06xx, and xirlink_cit media\n drivers did not properly validate USB device descriptors. A\n physically present user with a specially constructed USB device\n could use this to cause a denial-of-service (crash) or possibly\n for privilege escalation.\n\nCVE-2020-12114\n\n Piotr Krysiuk discovered a race condition between the umount and\n pivot_root operations in the filesystem core (vfs). A local user\n with the CAP_SYS_ADMIN capability in any user namespace could use\n this to cause a denial of service (crash).\n\nCVE-2020-12464\n\n Kyungtae Kim reported a race condition in the USB core that can\n result in a use-after-free. It is not clear how this can be\n exploited, but it could result in a denial of service (crash or\n memory corruption) or privilege escalation.\n\nCVE-2020-12652\n\n Tom Hatskevich reported a bug in the mptfusion storage drivers.\n An ioctl handler fetched a parameter from user memory twice,\n creating a race condition which could result in incorrect locking\n of internal data structures. A local user permitted to access\n /dev/mptctl could use this to cause a denial of service (crash or\n memory corruption) or for privilege escalation.\n\nCVE-2020-12653\n\n It was discovered that the mwifiex WiFi driver did not\n sufficiently validate scan requests, resulting a potential heap\n buffer overflow. A local user with CAP_NET_ADMIN capability could\n use this to cause a denial of service (crash or memory corruption)\n or possibly for privilege escalation.\n\nCVE-2020-12654\n\n It was discovered that the mwifiex WiFi driver did not\n sufficiently validate WMM parameters received from an access point\n (AP), resulting a potential heap buffer overflow. A malicious AP\n could use this to cause a denial of service (crash or memory\n corruption) or possibly to execute code on a vulnerable system.\n\nCVE-2020-12770\n\n It was discovered that the sg (SCSI generic) driver did not\n correctly release internal resources in a particular error case.\n A local user permitted to access an sg device could possibly use\n this to cause a denial of service (resource exhaustion).\n\nCVE-2020-13143\n\n Kyungtae Kim reported a potential heap out-of-bounds write in\n the USB gadget subsystem. A local user permitted to write to\n the gadget configuration filesystem could use this to cause a\n denial of service (crash or memory corruption) or potentially\n for privilege escalation.\n\nFor the oldstable distribution (stretch), these problems have been\nfixed in version 4.9.210-1+deb9u1. This version also fixes some\nrelated bugs that do not have their own CVE IDs, and a regression in\nthe macvlan driver introduced in the previous point release (bug\n#952660).\n\nWe recommend that you upgrade your linux packages.\n\nFor the detailed security status of linux please refer to its security\ntracker page at:\nhttps://security-tracker.debian.org/tracker/linux\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 11, "modified": "2020-06-09T19:44:35", "published": "2020-06-09T19:44:35", "id": "DEBIAN:DSA-4698-1:66813", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2020/msg00102.html", "title": "[SECURITY] [DSA 4698-1] linux security update", "type": "debian", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}], "threatpost": [{"lastseen": "2020-10-16T22:36:19", "bulletinFamily": "info", "cvelist": ["CVE-2019-14073", "CVE-2019-14080", "CVE-2019-2219", "CVE-2019-9460", "CVE-2020-0113", "CVE-2020-0114", "CVE-2020-0115", "CVE-2020-0116", "CVE-2020-0117", "CVE-2020-0118", "CVE-2020-0119", "CVE-2020-0121", "CVE-2020-8428", "CVE-2020-8597", "CVE-2020-8647", "CVE-2020-8648"], "description": "Google has addressed two critical flaws in its latest monthly Android update that enable remote code execution (RCE) on Android mobile devices.\n\nThe critical bugs (CVE-2020-0117 and CVE-2020-8597) exist in the Android System area, and would allow a remote attacker using a specially crafted transmission to execute arbitrary code within the context of a privileged process. They affect Android versions 8 to Android 10.\n\n\u201cSuccessful exploitation of the most severe of these vulnerabilities could allow for remote code execution in the context of a privileged process,\u201d according to a related advisory from the Multi-State Information Sharing and Analysis Center (MS-ISAC), sent via email. \u201cThese vulnerabilities could be exploited through multiple methods such as email, web browsing and MMS when processing media files.\u201d\n\n[](<https://threatpost.com/newsletter-sign/>)\n\nDepending on the privileges associated with the application, an attacker could then install programs; view, change or delete data; or create new accounts with full user rights.\n\nThe other flaws affecting System are two high-severity information-disclosure issues affecting Android 10 (CVE-2020-0116 and CVE-2020-0119) \u2013 and Google offered no technical details on them.\n\nThe June security updates also address high-severity bugs in other areas, including the Android Framework. These include an elevation-of-privilege (EoP) bug (CVE-2020-0114) in Android 10 that \u201ccould enable a local malicious application to bypass user interaction requirements in order to gain access to additional permissions,\u201d according to the [security bulletin](<https://source.android.com/security/bulletin/2020-06-01>), issued on Monday.\n\nMeanwhile, Google also patched CVE-2020-0115, an EoP bug in Android 8 to Android 10; and CVE-2020-0121, an information-disclosure bug in Android 10.\n\nThere are also two patches for the Android Media Framework, including CVE-2020-0118, which could enable a local malicious application to bypass user interaction requirements in order to gain access to additional permissions; it affects Android 10. The other is an information disclosure bug (CVE-2020-0113) affecting Android 9 and 10.\n\nAnd finally, there are three high-severity security bugs in Android\u2019s kernel components. The most severe of them (CVE-2020-8647) could enable a local attacker using a specially crafted application to execute arbitrary code within the context of a privileged process. The other two (CVE-2020-8648 and CVE-2020-8428) are also listed as high-severity.\n\nGoogle also updated the advisories for two older bugs: CVE-2019-2219, affecting Framework for Android 8 to Android 10, could enable a local malicious application to bypass operating system protections that isolate application data from other applications; and an EoP vulnerability in System (CVE-2019-9460) could enable a remote attacker to bypass user interaction requirements in order to gain access to additional permissions.\n\nIn all, June is a fairly light monthly bulletin; [last month\u2019s Android updates](<https://threatpost.com/google-android-rce-bug-full-device-access/155460/>) addressed 39 vulnerabilities.\n\nThere were also patches issued this week to address multiple vulnerabilities in Qualcomm closed-source and general components used in Android devices.\n\nTwo of the bugs are critical and can be remotely exploited; they both exist in the data-modem area of Qualcomm\u2019s mobile chips.\n\nThe flaw tracked as CVE-2019-14073 arises because the system buffers copy without checking the size of the input in the modem data, according to [Qualcomm\u2019s advisory](<https://www.qualcomm.com/company/product-security/bulletins/june-2020-security-bulletin#_cve-2019-14073>).\n\n\u201cCopying [real-time transport protocol control protocol] RTCP messages into the output buffer without checking the destination buffer size which could lead to a remote stack overflow when processing large data or non-standard feedback messages,\u201d according to the silicon-maker.\n\nAlso, CVE-2019-14080 stems from improper validation of the array index in the modem data, having to do with power transmission in the chipset:\n\n\u201cOut of bound write can happen due to lack of check of array index value while parsing [session description protocol] SDP attribute for [specific absorption rate] SAR,\u201d Qualcomm said.\n\n**_Concerned about the IoT security challenges businesses face as more connected devices run our enterprises, drive our manufacturing lines, track and deliver healthcare to patients, and more? On _**[**_June 3 at 2 p.m. ET_**](<https://attendee.gotowebinar.com/register/1837650474090338831?source=ART>)**_, join renowned security technologist Bruce Schneier, Armis CISO Curtis Simpson and Threatpost for a FREE webinar, _**[**_Taming the Unmanaged and IoT Device Tsunami_**](<https://attendee.gotowebinar.com/register/1837650474090338831?source=ART>)**_. Get exclusive insights on how to manage this new and growing attack surface. _**[**_Please register here_**](<https://attendee.gotowebinar.com/register/1837650474090338831?source=ART>)**_ for this sponsored webinar._**\n", "modified": "2020-06-02T17:10:58", "published": "2020-06-02T17:10:58", "id": "THREATPOST:3073D5AD7F3554F422710689A9436CAA", "href": "https://threatpost.com/two-critical-android-bugs-rce/156216/", "type": "threatpost", "title": "Two Critical Android Bugs Open Door to RCE", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}], "symantec": [{"lastseen": "2019-11-19T19:22:08", "bulletinFamily": "software", "cvelist": ["CVE-2019-19054", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19062", "CVE-2019-19053", "CVE-2019-19064", "CVE-2019-19082", "CVE-2019-19059", "CVE-2019-19078", "CVE-2019-19055", "CVE-2019-19043", "CVE-2019-19063", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19050", "CVE-2019-19071", "CVE-2019-19073", "CVE-2019-19077", "CVE-2019-19070", "CVE-2019-19046", "CVE-2019-19074", "CVE-2019-19056", "CVE-2019-19072"], "description": "### Description\n\nLinux Kernel is prone to multiple denial-of-service vulnerabilities. Successful exploitation of these issues may cause excessive memory consumption, resulting in denial-of-service conditions. Linux kernel versions through 5.3.11 are vulnerable.\n\n### Technologies Affected\n\n * Linux kernel 2.6.0 \n * Linux kernel 2.6.1 \n * Linux kernel 2.6.11 .11 \n * Linux kernel 2.6.11 .12 \n * Linux kernel 2.6.11 .4 \n * Linux kernel 2.6.11 .5 \n * Linux kernel 2.6.11 .6 \n * Linux kernel 2.6.11 .7 \n * Linux kernel 2.6.11 .8 \n * Linux kernel 2.6.11 \n * Linux kernel 2.6.11.1 \n * Linux kernel 2.6.11.10 \n * Linux kernel 2.6.11.11 \n * Linux kernel 2.6.11.12 \n * Linux kernel 2.6.11.2 \n * Linux kernel 2.6.11.3 \n * Linux kernel 2.6.11.4 \n * Linux kernel 2.6.11.5 \n * Linux kernel 2.6.11.6 \n * Linux kernel 2.6.11.7 \n * Linux kernel 2.6.11.8 \n * Linux kernel 2.6.11.9 \n * Linux kernel 2.6.12 .1 \n * Linux kernel 2.6.12 .12 \n * Linux kernel 2.6.12 .2 \n * Linux kernel 2.6.12 .22 \n * Linux kernel 2.6.12 .3 \n * Linux kernel 2.6.12 .4 \n * Linux kernel 2.6.12 .5 \n * Linux kernel 2.6.12 .6 \n * Linux kernel 2.6.12 \n * Linux kernel 2.6.12.1 \n * Linux kernel 2.6.12.2 \n * Linux kernel 2.6.12.3 \n * Linux kernel 2.6.12.4 \n * Linux kernel 2.6.12.5 \n * Linux kernel 2.6.12.6 \n * Linux kernel 2.6.13 .1 \n * Linux kernel 2.6.13 .2 \n * Linux kernel 2.6.13 .3 \n * Linux kernel 2.6.13 .4 \n * Linux kernel 2.6.13 \n * Linux kernel 2.6.13.2 \n * Linux kernel 2.6.13.3 \n * Linux kernel 2.6.13.4 \n * Linux kernel 2.6.13.5 \n * Linux kernel 2.6.14 .1 \n * Linux kernel 2.6.14 .2 \n * Linux kernel 2.6.14 .3 \n * Linux kernel 2.6.14 \n * Linux kernel 2.6.14.1 \n * Linux kernel 2.6.14.2 \n * Linux kernel 2.6.14.3 \n * Linux kernel 2.6.14.4 \n * Linux kernel 2.6.14.5 \n * Linux kernel 2.6.14.6 \n * Linux kernel 2.6.14.7 \n * Linux kernel 2.6.15 .4 \n * Linux kernel 2.6.15 \n * Linux kernel 2.6.15.1 \n * Linux kernel 2.6.15.11 \n * Linux kernel 2.6.15.2 \n * Linux kernel 2.6.15.3 \n * Linux kernel 2.6.15.4 \n * Linux kernel 2.6.15.5 \n * Linux kernel 2.6.15.6 \n * Linux kernel 2.6.15.7 \n * Linux kernel 2.6.16 .1 \n * Linux kernel 2.6.16 .11 \n * Linux kernel 2.6.16 .12 \n * Linux kernel 2.6.16 .19 \n * Linux kernel 2.6.16 .23 \n * Linux kernel 2.6.16 .7 \n * Linux kernel 2.6.16 .9 \n * Linux kernel 2.6.16 13 \n * Linux kernel 2.6.16 27 \n * Linux kernel 2.6.16 \n * Linux kernel 2.6.16.10 \n * Linux kernel 2.6.16.11 \n * Linux kernel 2.6.16.12 \n * Linux kernel 2.6.16.13 \n * Linux kernel 2.6.16.14 \n * Linux kernel 2.6.16.15 \n * Linux kernel 2.6.16.16 \n * Linux kernel 2.6.16.17 \n * Linux kernel 2.6.16.18 \n * Linux kernel 2.6.16.19 \n * Linux kernel 2.6.16.2 \n * Linux kernel 2.6.16.20 \n * Linux kernel 2.6.16.21 \n * Linux kernel 2.6.16.22 \n * Linux kernel 2.6.16.24 \n * Linux kernel 2.6.16.25 \n * Linux kernel 2.6.16.26 \n * Linux kernel 2.6.16.27 \n * Linux kernel 2.6.16.28 \n * Linux kernel 2.6.16.29 \n * Linux kernel 2.6.16.3 \n * Linux kernel 2.6.16.30 \n * Linux kernel 2.6.16.31 \n * Linux kernel 2.6.16.32 \n * Linux kernel 2.6.16.33 \n * Linux kernel 2.6.16.34 \n * Linux kernel 2.6.16.35 \n * Linux kernel 2.6.16.36 \n * Linux kernel 2.6.16.37 \n * Linux kernel 2.6.16.38 \n * Linux kernel 2.6.16.39 \n * Linux kernel 2.6.16.4 \n * Linux kernel 2.6.16.40 \n * Linux kernel 2.6.16.41 \n * Linux kernel 2.6.16.43 \n * Linux kernel 2.6.16.44 \n * Linux kernel 2.6.16.45 \n * Linux kernel 2.6.16.46 \n * Linux kernel 2.6.16.47 \n * Linux kernel 2.6.16.48 \n * Linux kernel 2.6.16.49 \n * Linux kernel 2.6.16.5 \n * Linux kernel 2.6.16.50 \n * Linux kernel 2.6.16.51 \n * Linux kernel 2.6.16.52 \n * Linux kernel 2.6.16.53 \n * Linux kernel 2.6.16.6 \n * Linux kernel 2.6.16.7 \n * Linux kernel 2.6.16.8 \n * Linux kernel 2.6.16.9 \n * Linux kernel 2.6.17 .8 \n * Linux kernel 2.6.17 \n * Linux kernel 2.6.17.1 \n * Linux kernel 2.6.17.10 \n * Linux kernel 2.6.17.11 \n * Linux kernel 2.6.17.12 \n * Linux kernel 2.6.17.13 \n * Linux kernel 2.6.17.14 \n * Linux kernel 2.6.17.2 \n * Linux kernel 2.6.17.3 \n * Linux kernel 2.6.17.4 \n * Linux kernel 2.6.17.5 \n * Linux kernel 2.6.17.6 \n * Linux kernel 2.6.17.7 \n * Linux kernel 2.6.17.9 \n * Linux kernel 2.6.18 .1 \n * Linux kernel 2.6.18 \n * Linux kernel 2.6.18.2 \n * Linux kernel 2.6.18.3 \n * Linux kernel 2.6.18.4 \n * Linux kernel 2.6.18.5 \n * Linux kernel 2.6.18.6 \n * Linux kernel 2.6.18.7 \n * Linux kernel 2.6.18.8 \n * Linux kernel 2.6.19 \n * Linux kernel 2.6.19.1 \n * Linux kernel 2.6.19.2 \n * Linux kernel 2.6.19.3 \n * Linux kernel 2.6.19.4 \n * Linux kernel 2.6.2 \n * Linux kernel 2.6.20 \n * Linux kernel 2.6.20-2 \n * Linux kernel 2.6.20.1 \n * Linux kernel 2.6.20.10 \n * Linux kernel 2.6.20.11 \n * Linux kernel 2.6.20.12 \n * Linux kernel 2.6.20.13 \n * Linux kernel 2.6.20.14 \n * Linux kernel 2.6.20.15 \n * Linux kernel 2.6.20.2 \n * Linux kernel 2.6.20.3 \n * Linux kernel 2.6.20.4 \n * Linux kernel 2.6.20.5 \n * Linux kernel 2.6.20.6 \n * Linux kernel 2.6.20.7 \n * Linux kernel 2.6.20.8 \n * Linux kernel 2.6.20.9 \n * Linux kernel 2.6.21 .1 \n * Linux kernel 2.6.21 4 \n * Linux kernel 2.6.21 \n * Linux kernel 2.6.21.2 \n * Linux kernel 2.6.21.3 \n * Linux kernel 2.6.21.6 \n * Linux kernel 2.6.21.7 \n * Linux kernel 2.6.22 \n * Linux kernel 2.6.22.1 \n * Linux kernel 2.6.22.11 \n * Linux kernel 2.6.22.12 \n * Linux kernel 2.6.22.13 \n * Linux kernel 2.6.22.14 \n * Linux kernel 2.6.22.15 \n * Linux kernel 2.6.22.16 \n * Linux kernel 2.6.22.17 \n * Linux kernel 2.6.23.1 \n * Linux kernel 2.6.23.10 \n * Linux kernel 2.6.23.14 \n * Linux kernel 2.6.23.2 \n * Linux kernel 2.6.23.3 \n * Linux kernel 2.6.23.4 \n * Linux kernel 2.6.23.5 \n * Linux kernel 2.6.23.6 \n * Linux kernel 2.6.24 \n * Linux kernel 2.6.24.1 \n * Linux kernel 2.6.24.2 \n * Linux kernel 2.6.25 19 \n * Linux kernel 2.6.25.1 \n * Linux kernel 2.6.25.2 \n * Linux kernel 2.6.25.3 \n * Linux kernel 2.6.25.4 \n * Linux kernel 2.6.25.6 \n * Linux kernel 2.6.25.7 \n * Linux kernel 2.6.25.8 \n * Linux kernel 2.6.25.9 \n * Linux kernel 2.6.26 7 \n * Linux kernel 2.6.26 \n * Linux kernel 2.6.26.3 \n * Linux kernel 2.6.26.4 \n * Linux kernel 2.6.26.5 \n * Linux kernel 2.6.26.6 \n * Linux kernel 2.6.27.12 \n * Linux kernel 2.6.27.13 \n * Linux kernel 2.6.27.14 \n * Linux kernel 2.6.27.24 \n * Linux kernel 2.6.27.46 \n * Linux kernel 2.6.27.8 \n * Linux kernel 2.6.28.1 \n * Linux kernel 2.6.28.2 \n * Linux kernel 2.6.28.3 \n * Linux kernel 2.6.28.4 \n * Linux kernel 2.6.28.5 \n * Linux kernel 2.6.28.6 \n * Linux kernel 2.6.28.8 \n * Linux kernel 2.6.29 \n * Linux kernel 2.6.29.1 \n * Linux kernel 2.6.29.4 \n * Linux kernel 2.6.3 \n * Linux kernel 2.6.30 \n * Linux kernel 2.6.30.1 \n * Linux kernel 2.6.30.10 \n * Linux kernel 2.6.30.3 \n * Linux kernel 2.6.30.4 \n * Linux kernel 2.6.30.5 \n * Linux kernel 2.6.31 \n * Linux kernel 2.6.31.1 \n * Linux kernel 2.6.31.11 \n * Linux kernel 2.6.31.13 \n * Linux kernel 2.6.31.2 \n * Linux kernel 2.6.31.4 \n * Linux kernel 2.6.31.5 \n * Linux kernel 2.6.31.6 \n * Linux kernel 2.6.32 \n * Linux kernel 2.6.32.1 \n * Linux kernel 2.6.32.10 \n * Linux kernel 2.6.32.11 \n * Linux kernel 2.6.32.12 \n * Linux kernel 2.6.32.13 \n * Linux kernel 2.6.32.14 \n * Linux kernel 2.6.32.15 \n * Linux kernel 2.6.32.16 \n * Linux kernel 2.6.32.17 \n * Linux kernel 2.6.32.18 \n * Linux kernel 2.6.32.2 \n * Linux kernel 2.6.32.22 \n * Linux kernel 2.6.32.28 \n * Linux kernel 2.6.32.3 \n * Linux kernel 2.6.32.4 \n * Linux kernel 2.6.32.5 \n * Linux kernel 2.6.32.6 \n * Linux kernel 2.6.32.60 \n * Linux kernel 2.6.32.61 \n * Linux kernel 2.6.32.62 \n * Linux kernel 2.6.32.7 \n * Linux kernel 2.6.32.8 \n * Linux kernel 2.6.32.9 \n * Linux kernel 3.0 \n * Linux kernel 3.0.1 \n * Linux kernel 3.0.18 \n * Linux kernel 3.0.2 \n * Linux kernel 3.0.34 \n * Linux kernel 3.0.37 \n * Linux kernel 3.0.4 \n * Linux kernel 3.0.5 \n * Linux kernel 3.0.58 \n * Linux kernel 3.0.59 \n * Linux kernel 3.0.60 \n * Linux kernel 3.0.62 \n * Linux kernel 3.0.65 \n * Linux kernel 3.0.66 \n * Linux kernel 3.0.69 \n * Linux kernel 3.0.72 \n * Linux kernel 3.0.75 \n * Linux kernel 3.0.98 \n * Linux kernel 3.1 \n * Linux kernel 3.1.8 \n * Linux kernel 3.10 \n * Linux kernel 3.10.0 \n * Linux kernel 3.10.10 \n * Linux kernel 3.10.14 \n * Linux kernel 3.10.17 \n * Linux kernel 3.10.20 \n * Linux kernel 3.10.21 \n * Linux kernel 3.10.22 \n * Linux kernel 3.10.23 \n * Linux kernel 3.10.26 \n * Linux kernel 3.10.27 \n * Linux kernel 3.10.30 \n * Linux kernel 3.10.31 \n * Linux kernel 3.10.36 \n * Linux kernel 3.10.37 \n * Linux kernel 3.10.38 \n * Linux kernel 3.10.41 \n * Linux kernel 3.10.43 \n * Linux kernel 3.10.45 \n * Linux kernel 3.10.5 \n * Linux kernel 3.10.7 \n * Linux kernel 3.10.73 \n * Linux kernel 3.10.81 \n * Linux kernel 3.10.9 \n * Linux kernel 3.10.90 \n * Linux kernel 3.11 \n * Linux kernel 3.11.3 \n * Linux kernel 3.11.6 \n * Linux kernel 3.11.9 \n * Linux kernel 3.12 \n * Linux kernel 3.12.1 \n * Linux kernel 3.12.11 \n * Linux kernel 3.12.12 \n * Linux kernel 3.12.14 \n * Linux kernel 3.12.15 \n * Linux kernel 3.12.16 \n * Linux kernel 3.12.17 \n * Linux kernel 3.12.18 \n * Linux kernel 3.12.2 \n * Linux kernel 3.12.21 \n * Linux kernel 3.12.22 \n * Linux kernel 3.12.3 \n * Linux kernel 3.12.4 \n * Linux kernel 3.12.40 \n * Linux kernel 3.12.44 \n * Linux kernel 3.12.48 \n * Linux kernel 3.12.49 \n * Linux kernel 3.12.7 \n * Linux kernel 3.13 \n * Linux kernel 3.13.0 \n * Linux kernel 3.13.1 \n * Linux kernel 3.13.11 \n * Linux kernel 3.13.3 \n * Linux kernel 3.13.4 \n * Linux kernel 3.13.5 \n * Linux kernel 3.13.6 \n * Linux kernel 3.13.7 \n * Linux kernel 3.13.9 \n * Linux kernel 3.14 \n * Linux kernel 3.14-1 \n * Linux kernel 3.14-4 \n * Linux kernel 3.14.2 \n * Linux kernel 3.14.3 \n * Linux kernel 3.14.37 \n * Linux kernel 3.14.4 \n * Linux kernel 3.14.45 \n * Linux kernel 3.14.5 \n * Linux kernel 3.14.54 \n * Linux kernel 3.14.7 \n * Linux kernel 3.14.73 \n * Linux kernel 3.14.79 \n * Linux kernel 3.15 \n * Linux kernel 3.15.10 \n * Linux kernel 3.15.2 \n * Linux kernel 3.15.5 \n * Linux kernel 3.16 \n * Linux kernel 3.16.0-28 \n * Linux kernel 3.16.1 \n * Linux kernel 3.16.2 \n * Linux kernel 3.16.36 \n * Linux kernel 3.16.6 \n * Linux kernel 3.16.7 \n * Linux kernel 3.17 \n * Linux kernel 3.17.2 \n * Linux kernel 3.17.4 \n * Linux kernel 3.17.6 \n * Linux kernel 3.18 \n * Linux kernel 3.18.1 \n * Linux kernel 3.18.11 \n * Linux kernel 3.18.17 \n * Linux kernel 3.18.2 \n * Linux kernel 3.18.22 \n * Linux kernel 3.18.3 \n * Linux kernel 3.18.7 \n * Linux kernel 3.18.8 \n * Linux kernel 3.18.9 \n * Linux kernel 3.19 \n * Linux kernel 3.19.3 \n * Linux kernel 3.2 \n * Linux kernel 3.2.1 \n * Linux kernel 3.2.12 \n * Linux kernel 3.2.13 \n * Linux kernel 3.2.2 \n * Linux kernel 3.2.23 \n * Linux kernel 3.2.24 \n * Linux kernel 3.2.38 \n * Linux kernel 3.2.42 \n * Linux kernel 3.2.44 \n * Linux kernel 3.2.50 \n * Linux kernel 3.2.51 \n * Linux kernel 3.2.52 \n * Linux kernel 3.2.53 \n * Linux kernel 3.2.54 \n * Linux kernel 3.2.55 \n * Linux kernel 3.2.56 \n * Linux kernel 3.2.57 \n * Linux kernel 3.2.60 \n * Linux kernel 3.2.62 \n * Linux kernel 3.2.63 \n * Linux kernel 3.2.72 \n * Linux kernel 3.2.78 \n * Linux kernel 3.2.81 \n * Linux kernel 3.2.82 \n * Linux kernel 3.2.9 \n * Linux kernel 3.3 \n * Linux kernel 3.3.2 \n * Linux kernel 3.3.4 \n * Linux kernel 3.3.5 \n * Linux kernel 3.4 \n * Linux kernel 3.4.1 \n * Linux kernel 3.4.10 \n * Linux kernel 3.4.11 \n * Linux kernel 3.4.12 \n * Linux kernel 3.4.13 \n * Linux kernel 3.4.14 \n * Linux kernel 3.4.15 \n * Linux kernel 3.4.16 \n * Linux kernel 3.4.17 \n * Linux kernel 3.4.18 \n * Linux kernel 3.4.19 \n * Linux kernel 3.4.2 \n * Linux kernel 3.4.20 \n * Linux kernel 3.4.21 \n * Linux kernel 3.4.25 \n * Linux kernel 3.4.26 \n * Linux kernel 3.4.27 \n * Linux kernel 3.4.29 \n * Linux kernel 3.4.3 \n * Linux kernel 3.4.31 \n * Linux kernel 3.4.32 \n * Linux kernel 3.4.36 \n * Linux kernel 3.4.4 \n * Linux kernel 3.4.42 \n * Linux kernel 3.4.5 \n * Linux kernel 3.4.58 \n * Linux kernel 3.4.6 \n * Linux kernel 3.4.64 \n * Linux kernel 3.4.67 \n * Linux kernel 3.4.7 \n * Linux kernel 3.4.70 \n * Linux kernel 3.4.71 \n * Linux kernel 3.4.72 \n * Linux kernel 3.4.73 \n * Linux kernel 3.4.76 \n * Linux kernel 3.4.8 \n * Linux kernel 3.4.80 \n * Linux kernel 3.4.81 \n * Linux kernel 3.4.86 \n * Linux kernel 3.4.87 \n * Linux kernel 3.4.88 \n * Linux kernel 3.4.9 \n * Linux kernel 3.4.93 \n * Linux kernel 3.5 \n * Linux kernel 3.5.1 \n * Linux kernel 3.5.2 \n * Linux kernel 3.5.3 \n * Linux kernel 3.5.4 \n * Linux kernel 3.5.5 \n * Linux kernel 3.5.6 \n * Linux kernel 3.5.7 \n * Linux kernel 3.6 \n * Linux kernel 3.6.1 \n * Linux kernel 3.6.10 \n * Linux kernel 3.6.11 \n * Linux kernel 3.6.2 \n * Linux kernel 3.6.3 \n * Linux kernel 3.6.4 \n * Linux kernel 3.6.5 \n * Linux kernel 3.6.6 \n * Linux kernel 3.6.7 \n * Linux kernel 3.6.8 \n * Linux kernel 3.6.9 \n * Linux kernel 3.7 \n * Linux kernel 3.7.1 \n * Linux kernel 3.7.10 \n * Linux kernel 3.7.2 \n * Linux kernel 3.7.3 \n * Linux kernel 3.7.4 \n * Linux kernel 3.7.5 \n * Linux kernel 3.7.6 \n * Linux kernel 3.7.7 \n * Linux kernel 3.7.8 \n * Linux kernel 3.7.9 \n * Linux kernel 3.8 \n * Linux kernel 3.8.1 \n * Linux kernel 3.8.2 \n * Linux kernel 3.8.4 \n * Linux kernel 3.8.5 \n * Linux kernel 3.8.6 \n * Linux kernel 3.8.9 \n * Linux kernel 3.9 \n * Linux kernel 3.9.4 \n * Linux kernel 3.9.8 \n * Linux kernel 4.0 \n * Linux kernel 4.0.5 \n * Linux kernel 4.0.6 \n * Linux kernel 4.1 \n * Linux kernel 4.1.1 \n * Linux kernel 4.1.15 \n * Linux kernel 4.1.4 \n * Linux kernel 4.10.0 \n * Linux kernel 4.10.1 \n * Linux kernel 4.10.10 \n * Linux kernel 4.10.11 \n * Linux kernel 4.10.12 \n * Linux kernel 4.10.13 \n * Linux kernel 4.10.2 \n * Linux kernel 4.10.3 \n * Linux kernel 4.10.4 \n * Linux kernel 4.15 \n * Linux kernel 4.15.11 \n * Linux kernel 4.15.14 \n * Linux kernel 4.15.16 \n * Linux kernel 4.15.4 \n * Linux kernel 4.15.7 \n * Linux kernel 4.15.8 \n * Linux kernel 4.15.9 \n * Linux kernel 4.16 \n * Linux kernel 4.16.11 \n * Linux kernel 4.16.3 \n * Linux kernel 4.16.6 \n * Linux kernel 4.16.9 \n * Linux kernel 4.17 \n * Linux kernel 4.17.1 \n * Linux kernel 4.17.10 \n * Linux kernel 4.17.11 \n * Linux kernel 4.17.2 \n * Linux kernel 4.17.3 \n * Linux kernel 4.17.4 \n * Linux kernel 4.17.7 \n * Linux kernel 4.18 \n * Linux kernel 4.18.1 \n * Linux kernel 4.18.11 \n * Linux kernel 4.18.12 \n * Linux kernel 4.18.16 \n * Linux kernel 4.18.5 \n * Linux kernel 4.18.6 \n * Linux kernel 4.18.9 \n * Linux kernel 4.19 \n * Linux kernel 4.19.13 \n * Linux kernel 4.19.19 \n * Linux kernel 4.19.2 \n * Linux kernel 4.19.23 \n * Linux kernel 4.19.3 \n * Linux kernel 4.19.6 \n * Linux kernel 4.19.8 \n * Linux kernel 4.2 \n * Linux kernel 4.2.3 \n * Linux kernel 4.2.8 \n * Linux kernel 4.20.10 \n * Linux kernel 4.20.12 \n * Linux kernel 4.20.14 \n * Linux kernel 4.20.2 \n * Linux kernel 4.20.5 \n * Linux kernel 4.20.6 \n * Linux kernel 4.20.8 \n * Linux kernel 4.3.3 \n * Linux kernel 5.0 \n * Linux kernel 5.0.1 \n * Linux kernel 5.0.10 \n * Linux kernel 5.0.11 \n * Linux kernel 5.0.14 \n * Linux kernel 5.0.15 \n * Linux kernel 5.0.17 \n * Linux kernel 5.0.2 \n * Linux kernel 5.0.3 \n * Linux kernel 5.0.4 \n * Linux kernel 5.0.5 \n * Linux kernel 5.0.6 \n * Linux kernel 5.0.7 \n * Linux kernel 5.0.8 \n * Linux kernel 5.0.9 \n * Linux kernel 5.0rc6 \n * Linux kernel 5.1-rc1 \n * Linux kernel 5.1-rc5 \n * Linux kernel 5.1-rc6 \n * Linux kernel 5.1.12 \n * Linux kernel 5.1.13 \n * Linux kernel 5.1.14 \n * Linux kernel 5.1.15 \n * Linux kernel 5.1.17 \n * Linux kernel 5.1.2 \n * Linux kernel 5.1.3 \n * Linux kernel 5.1.5 \n * Linux kernel 5.1.6 \n * Linux kernel 5.1.7 \n * Linux kernel 5.1.8 \n * Linux kernel 5.1.9 \n * Linux kernel 5.2.1 \n * Linux kernel 5.2.13 \n * Linux kernel 5.2.14 \n * Linux kernel 5.2.17 \n * Linux kernel 5.2.2 \n * Linux kernel 5.2.3 \n * Linux kernel 5.2.6 \n * Linux kernel 5.2.8 \n * Linux kernel 5.2.9 \n * Linux kernel 5.3 \n * Linux kernel 5.3.1 \n * Linux kernel 5.3.10 \n * Linux kernel 5.3.11 \n * Linux kernel 5.3.2 \n * Linux kernel 5.3.4 \n * Linux kernel 5.3.5 \n * Linux kernel 5.3.6 \n * Linux kernel 5.3.7 \n * Linux kernel 5.3.8 \n * Linux kernel 5.3.9 \n\n### Recommendations\n\n**Block external access at the network boundary, unless external parties require service.** \nFilter access to the affected computer at the network boundary if global access isn't needed. Restricting access to only trusted computers and networks might greatly reduce the likelihood of a successful exploit.\n\n**Run all software as a nonprivileged user with minimal access rights.** \nTo limit the potential damage that successful exploits may achieve, run all nonadministrative software as an unprivileged user.\n\n**Deploy network intrusion detection systems to monitor network traffic for malicious activity.** \nDeploy NIDS to monitor network traffic for signs of anomalous or suspicious activity. This may indicate exploit attempts or activity that results from successful exploits.\n\nUpdates are available. Please see the references or vendor advisory for more information.\n", "modified": "2019-09-14T00:00:00", "published": "2019-09-14T00:00:00", "id": "SMNTC-110895", "href": "https://www.symantec.com/content/symantec/english/en/security-center/vulnerabilities/writeup.html/110895", "type": "symantec", "title": "Linux Kernel Multiple Memory Leak Denial of Service Vulnerabilities", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "fedora": [{"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074"], "description": "The kernel meta package ", "modified": "2019-11-27T00:25:48", "published": "2019-11-27T00:25:48", "id": "FEDORA:8FEA960A4096", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.3.12-300.fc31", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078"], "description": "The kernel meta package ", "modified": "2019-12-02T01:15:11", "published": "2019-12-02T01:15:11", "id": "FEDORA:371E06040B12", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.3.13-300.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-16232", "CVE-2019-18660", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18811", "CVE-2019-18812", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082"], "description": "The kernel meta package ", "modified": "2019-12-06T05:47:53", "published": "2019-12-06T05:47:53", "id": "FEDORA:628EB603ECD0", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.3.14-300.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-16232", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18811", "CVE-2019-18812", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082"], "description": "The kernel meta package ", "modified": "2020-02-18T01:46:48", "published": "2020-02-18T01:46:48", "id": "FEDORA:51B856067EB8", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.4.19-200.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-16232", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18811", "CVE-2019-18812", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082"], "description": "The kernel meta package ", "modified": "2020-01-21T01:40:05", "published": "2020-01-21T01:40:05", "id": "FEDORA:EC9F26076D31", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.4.12-200.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-16232", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18811", "CVE-2019-18812", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082", "CVE-2019-19332"], "description": "The kernel meta package ", "modified": "2019-12-17T01:46:08", "published": "2019-12-17T01:46:08", "id": "FEDORA:94BC060A4ECF", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.3.16-300.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-16232", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18811", "CVE-2019-18812", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082", "CVE-2020-2732"], "description": "The kernel meta package ", "modified": "2020-03-02T19:06:16", "published": "2020-03-02T19:06:16", "id": "FEDORA:224AE608F491", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.5.7-200.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-16232", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18811", "CVE-2019-18812", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082", "CVE-2020-9391"], "description": "The kernel meta package ", "modified": "2020-02-29T03:22:04", "published": "2020-02-29T03:22:04", "id": "FEDORA:267796076024", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.5.6-201.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:56", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-11135", "CVE-2019-14895", "CVE-2019-14896", "CVE-2019-14897", "CVE-2019-14901", "CVE-2019-16232", "CVE-2019-18808", "CVE-2019-18809", "CVE-2019-18811", "CVE-2019-18812", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-19077", "CVE-2019-19078", "CVE-2019-19082", "CVE-2019-19769", "CVE-2020-10711", "CVE-2020-10757", "CVE-2020-11884", "CVE-2020-12655", "CVE-2020-12888", "CVE-2020-2732", "CVE-2020-8835"], "description": "The kernel meta package ", "modified": "2020-06-11T19:00:32", "published": "2020-06-11T19:00:32", "id": "FEDORA:803AE30C6416", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 31 Update: kernel-5.6.16-200.fc31", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-12-21T08:17:55", "bulletinFamily": "unix", "cvelist": ["CVE-2018-12126", "CVE-2018-12127", "CVE-2018-12130", "CVE-2018-12207", "CVE-2019-0154", "CVE-2019-0155", "CVE-2019-10126", "CVE-2019-10207", "CVE-2019-11091", "CVE-2019-11135", "CVE-2019-11477", "CVE-2019-11478", "CVE-2019-11479", "CVE-2019-11884", "CVE-2019-12378", "CVE-2019-12379", "CVE-2019-12380", "CVE-2019-12381", "CVE-2019-12382", "CVE-2019-12454", "CVE-2019-12455", "CVE-2019-12456", "CVE-2019-12614", "CVE-2019-12817", "CVE-2019-13631", "CVE-2019-14814", "CVE-2019-14815", "CVE-2019-14816", "CVE-2019-14821", "CVE-2019-15504", "CVE-2019-15505", "CVE-2019-15538", "CVE-2019-17052", "CVE-2019-17053", "CVE-2019-17054", "CVE-2019-17055", "CVE-2019-17666", "CVE-2019-19043", "CVE-2019-19046", "CVE-2019-19050", "CVE-2019-19053", "CVE-2019-19054", "CVE-2019-19055", "CVE-2019-19056", "CVE-2019-19057", "CVE-2019-19058", "CVE-2019-19059", "CVE-2019-19062", "CVE-2019-19063", "CVE-2019-19064", "CVE-2019-19066", "CVE-2019-19068", "CVE-2019-19070", "CVE-2019-19071", "CVE-2019-19072", "CVE-2019-19073", "CVE-2019-19074", "CVE-2019-3846", "CVE-2019-3900"], "description": "The kernel meta package ", "modified": "2019-11-26T23:55:24", "published": "2019-11-26T23:55:24", "id": "FEDORA:4002B609954A", "href": "", "type": "fedora", "title": "[SECURITY] Fedora 30 Update: kernel-5.3.12-200.fc30", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}], "suse": [{"lastseen": "2020-03-13T16:35:04", "bulletinFamily": "unix", "cvelist": ["CVE-2019-19527", "CVE-2019-19054", "CVE-2020-8992", "CVE-2020-8648", "CVE-2019-19045", "CVE-2019-19533", "CVE-2019-20095", "CVE-2019-19051", "CVE-2019-19767", "CVE-2019-19318", "CVE-2019-19332", "CVE-2019-14896", "CVE-2019-19523", "CVE-2019-19526", "CVE-2019-19965", "CVE-2019-14615", "CVE-2019-16746", "CVE-2019-19319", "CVE-2019-19535", "CVE-2019-19338", "CVE-2019-19927", "CVE-2019-18808", "CVE-2019-14897", "CVE-2019-19036", "CVE-2019-19066", "CVE-2020-8428", "CVE-2019-19447", "CVE-2020-7053", "CVE-2019-19532", "CVE-2019-19537", "CVE-2019-16994", "CVE-2020-2732", "CVE-2019-19966", "CVE-2019-20054", "CVE-2019-20096"], "description": "The openSUSE Leap 15.1 kernel was updated to receive various security and\n bugfixes.\n\n The following security bugs were fixed:\n\n - CVE-2019-14615: Insufficient control flow in certain data structures for\n some Intel(R) Processors with Intel(R) Processor Graphics may have\n allowed an unauthenticated user to potentially enable information\n disclosure via local access (bnc#1160195 bnc#1165881).\n - CVE-2019-14896: A heap-based buffer overflow vulnerability was found in\n the Marvell WiFi chip driver. A remote attacker could cause a denial of\n service (system crash) or, possibly execute arbitrary code, when the\n lbs_ibss_join_existing function is called after a STA connects to an AP\n (bnc#1157157).\n - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell\n WiFi chip driver. An attacker is able to cause a denial of service\n (system crash) or, possibly execute arbitrary code, when a STA works in\n IBSS mode (allows connecting stations together without the use of an AP)\n and connects to another STA (bnc#1157155).\n - CVE-2019-16746: An issue was discovered in net/wireless/nl80211.c. It\n did not check the length of variable elements in a beacon head, leading\n to a buffer overflow (bnc#1152107).\n - CVE-2019-16994: In the Linux kernel before 5.0, a memory leak exists in\n sit_init_net() in net/ipv6/sit.c when register_netdev() fails to\n register sitn-&gt;fb_tunnel_dev, which may cause denial of service, aka\n CID-07f12b26e21a (bnc#1161523).\n - CVE-2019-18808: A memory leak in the ccp_run_sha_cmd() function in\n drivers/crypto/ccp/ccp-ops.c allowed attackers to cause a denial of\n service (memory consumption), aka CID-128c66429247 (bnc#1156259).\n - CVE-2019-19036: btrfs_root_node in fs/btrfs/ctree.c allowed a NULL\n pointer dereference because rcu_dereference(root-&gt;node) can be zero\n (bnc#1157692).\n - CVE-2019-19045: A memory leak in the mlx5_fpga_conn_create_cq() function\n in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c allowed attackers\n to cause a denial of service (memory consumption) by triggering\n mlx5_vector2eqn() failures, aka CID-c8c2a057fdc7 (bnc#1161522).\n - CVE-2019-19051: A memory leak in the i2400m_op_rfkill_sw_toggle()\n function in drivers/net/wimax/i2400m/op-rfkill.c allowed attackers to\n cause a denial of service (memory consumption), aka CID-6f3ef5c25cc7\n (bnc#1159024).\n - CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in\n drivers/media/pci/cx23885/cx23888-ir.c allowed attackers to cause a\n denial of service (memory consumption) by triggering kfifo_alloc()\n failures, aka CID-a7b2df76b42b (bnc#1161518).\n - CVE-2019-19066: A memory leak in the bfad_im_get_stats() function in\n drivers/scsi/bfa/bfad_attr.c allowed attackers to cause a denial of\n service (memory consumption) by triggering bfa_port_get_stats()\n failures, aka CID-0e62395da2bd (bnc#1157303).\n - CVE-2019-19318: Mounting a crafted btrfs image twice can cause an\n rwsem_down_write_slowpath use-after-free because (in\n rwsem_can_spin_on_owner in kernel/locking/rwsem (bnc#1158026).\n - CVE-2019-19319: A setxattr operation, after a mount of a crafted ext4\n image, can cause a slab-out-of-bounds write access because of an\n ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large\n old_size value is used in a memset call (bnc#1158021).\n - CVE-2019-19332: An out-of-bounds memory write issue was found in the way\n the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID'\n ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A\n user or process able to access the '/dev/kvm' device could use this flaw\n to crash the system, resulting in a denial of service (bnc#1158827).\n - CVE-2019-19338: There was an incomplete fix for Transaction Asynchronous\n Abort (TAA) (bnc#1158954).\n - CVE-2019-19447: Mounting a crafted ext4 filesystem image, performing\n some operations, and unmounting can lead to a use-after-free in\n ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in\n fs/ext4/super.c (bnc#1158819).\n - CVE-2019-19526: There was a use-after-free bug that can be caused by a\n malicious USB device in the drivers/nfc/pn533/usb.c driver, aka\n CID-6af3aa57a098 (bnc#1158893).\n - CVE-2019-19527: There was a use-after-free bug that can be caused by a\n malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka\n CID-9c09b214f30e (bnc#1158900).\n - CVE-2019-19532: There were multiple out-of-bounds write bugs that can be\n caused by a malicious USB device in the Linux kernel HID drivers, aka\n CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c,\n drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c,\n drivers/hid/hid-holtekff.c, drivers/hid/hid-lg2ff.c,\n drivers/hid/hid-lg3ff.c, drivers/hid/hid-lg4ff.c,\n drivers/hid/hid-lgff.c, drivers/hid/hid-logitech-hidpp.c,\n drivers/hid/hid-microsoft.c, drivers/hid/hid-sony.c,\n drivers/hid/hid-tmff.c, and drivers/hid/hid-zpff.c (bnc#1158824).\n - CVE-2019-19533: There was an info-leak bug that can be caused by a\n malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c\n driver, aka CID-a10feaf8c464 (bnc#1158834).\n - CVE-2019-19535: There was an info-leak bug that can be caused by a\n malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c\n driver, aka CID-30a8beeb3042 (bnc#1158903).\n - CVE-2019-19537: There was a race condition bug that can be caused by a\n malicious USB device in the USB character device driver layer, aka\n CID-303911cfc5b9. This affects drivers/usb/core/file.c (bnc#1158904).\n - CVE-2019-19767: The Linux kernel mishandled ext4_expand_extra_isize, as\n demonstrated by use-after-free errors in __ext4_expand_extra_isize and\n ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c,\n aka CID-4ea99936a163 (bnc#1159297).\n - CVE-2019-19927: Mounting a crafted f2fs filesystem image and performing\n some operations can lead to slab-out-of-bounds read access in\n ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related\n to the vmwgfx or ttm module (bnc#1160147).\n - CVE-2019-19965: There was a NULL pointer dereference in\n drivers/scsi/libsas/sas_discover.c because of mishandling of port\n disconnection during discovery, related to a PHY down race condition,\n aka CID-f70267f379b5 (bnc#1159911).\n - CVE-2019-19966: There was a use-after-free in cpia2_exit() in\n drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service,\n aka CID-dea37a972655 (bnc#1159841).\n - CVE-2019-20054: There was a NULL pointer dereference in\n drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka\n CID-23da9588037e (bnc#1159910).\n - CVE-2019-20095: mwifiex_tm_cmd in\n drivers/net/wireless/marvell/mwifiex/cfg80211.c had some error-handling\n cases that did not free allocated hostcmd memory, aka CID-003b686ace82.\n This will cause a memory leak and denial of service (bnc#1159909).\n - CVE-2019-20096: There was a memory leak in __feat_register_sp() in\n net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b\n (bnc#1159908).\n - CVE-2020-2732: Fixed an issue affecting Intel CPUs where an L2 guest may\n trick the L0 hypervisor into accessing sensitive L1 resources\n (bsc#1163971).\n - CVE-2020-7053: There was a use-after-free (write) in the\n i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka\n CID-7dc40713618c. This is related to i915_gem_context_destroy_ioctl in\n drivers/gpu/drm/i915/i915_gem_context.c (bnc#1160966).\n - CVE-2020-8428: fs/namei.c has a may_create_in_sticky use-after-free,\n which allowed local users to cause a denial of service (OOPS) or\n possibly obtain sensitive information from kernel memory, aka\n CID-d0cb50185ae9. One attack vector may be an open system call for a\n UNIX domain socket, if the socket is being moved to a new parent\n directory and its old parent directory is being removed (bnc#1162109).\n - CVE-2020-8648: There was a use-after-free vulnerability in the\n n_tty_receive_buf_common function in drivers/tty/n_tty.c (bnc#1162928).\n - CVE-2020-8992: ext4_protect_reserved_inode in fs/ext4/block_validity.c\n allowed attackers to cause a denial of service (soft lockup) via a\n crafted journal size (bnc#1164069).\n - CVE-2019-19523: There was a use-after-free bug that can be caused by a\n malicious USB device in the drivers/usb/misc/adutux.c driver, aka\n CID-44efc269db79 (bnc#1158823).\n\n The following non-security bugs were fixed:\n\n - smb3: print warning once if posix context returned on open\n (bsc#1144333).\n - 6pack,mkiss: fix possible deadlock (bsc#1051510).\n - ACPI / APEI: Do not wait to serialise with oops messages when panic()ing\n (bsc#1051510).\n - ACPI / APEI: Switch estatus pool to use vmalloc memory (bsc#1051510).\n - ACPI / LPSS: Ignore acpi_device_fix_up_power() return value\n (bsc#1051510).\n - ACPI / video: Add force_none quirk for Dell OptiPlex 9020M (bsc#1051510).\n - ACPI / watchdog: Fix init failure with overlapping register regions\n (bsc#1162557).\n - ACPI / watchdog: Set default timeout in probe (bsc#1162557).\n - ACPI: OSL: only free map once in osl.c (bsc#1051510).\n - ACPI: PM: Avoid attaching ACPI PM domain to certain devices\n (bsc#1051510).\n - ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data()\n (bsc#1051510).\n - ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion()\n (bsc#1051510).\n - ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 (bsc#1051510).\n - ACPI: video: Do not export a non working backlight interface on MSI\n MS-7721 boards (bsc#1051510).\n - ACPI: watchdog: Allow disabling WDAT at boot (bsc#1162557).\n - ALSA: control: remove useless assignment in .info callback of PCM chmap\n element (git-fixes).\n - ALSA: dummy: Fix PCM format loop in proc output (bsc#1111666).\n - ALSA: echoaudio: simplify get_audio_levels (bsc#1051510).\n - ALSA: fireface: fix return value in error path of isochronous resources\n reservation (bsc#1051510).\n - ALSA: hda - Add docking station support for Lenovo Thinkpad T420s\n (git-fixes).\n - ALSA: hda - Apply sync-write workaround to old Intel platforms, too\n (bsc#1111666).\n - ALSA: hda - Downgrade error message for single-cmd fallback (git-fixes).\n - ALSA: hda - constify and cleanup static NodeID tables (bsc#1111666).\n - ALSA: hda - fixup for the bass speaker on Lenovo Carbon X1 7th gen\n (git-fixes).\n - ALSA: hda/analog - Minor optimization for SPDIF mux connections\n (git-fixes).\n - ALSA: hda/ca0132 - Avoid endless loop (git-fixes).\n - ALSA: hda/ca0132 - Fix work handling in delayed HP detection (git-fixes).\n - ALSA: hda/ca0132 - Keep power on during processing DSP response\n (git-fixes).\n - ALSA: hda/hdmi - Add new pci ids for AMD GPU display audio (git-fixes).\n - ALSA: hda/hdmi - Clean up Intel platform-specific fixup checks\n (bsc#1111666).\n - ALSA: hda/hdmi - Fix duplicate unref of pci_dev (bsc#1051510).\n - ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() (git-fixes).\n - ALSA: hda/hdmi - fix atpx_present when CLASS is not VGA (bsc#1051510).\n - ALSA: hda/hdmi - fix vgaswitcheroo detection for AMD (git-fixes).\n - ALSA: hda/realtek - Add Bass Speaker and fixed dac for bass speaker\n (bsc#1111666).\n - ALSA: hda/realtek - Add Headset Mic supported for HP cPC (bsc#1111666).\n - ALSA: hda/realtek - Add headset Mic no shutup for ALC283 (bsc#1051510).\n - ALSA: hda/realtek - Add new codec supported for ALCS1200A (bsc#1111666).\n - ALSA: hda/realtek - Add quirk for the bass speaker on Lenovo Yoga X1 7th\n gen (bsc#1111666).\n - ALSA: hda/realtek - Apply mic mute LED quirk for Dell E7xx laptops, too\n (bsc#1111666).\n - ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236\n (git-fixes).\n - ALSA: hda/realtek - Enable the bass speaker of ASUS UX431FLC\n (bsc#1111666).\n - ALSA: hda/realtek - Fix inverted bass GPIO pin on Acer 8951G (git-fixes).\n - ALSA: hda/realtek - Fix silent output on MSI-GL73 (git-fixes).\n - ALSA: hda/realtek - Fixed one of HP ALC671 platform Headset Mic\n supported (bsc#1111666).\n - ALSA: hda/realtek - Line-out jack does not work on a Dell AIO\n (bsc#1051510).\n - ALSA: hda/realtek - More constifications (bsc#1111666).\n - ALSA: hda/realtek - Set EAPD control to default for ALC222 (bsc#1111666).\n - ALSA: hda: Add Clevo W65_67SB the power_save blacklist (git-fixes).\n - ALSA: hda: Add JasperLake PCI ID and codec vid (bsc#1111666).\n - ALSA: hda: Clear RIRB status before reading WP (bsc#1111666).\n - ALSA: hda: Constify snd_kcontrol_new items (bsc#1111666).\n - ALSA: hda: Constify snd_pci_quirk tables (bsc#1111666).\n - ALSA: hda: More constifications (bsc#1111666).\n - ALSA: hda: Reset stream if DMA RUN bit not cleared (bsc#1111666).\n - ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs\n (git-fixes).\n - ALSA: hda: constify copied structure (bsc#1111666).\n - ALSA: hda: correct kernel-doc parameter descriptions (bsc#1111666).\n - ALSA: hda: hdmi - add Tigerlake support (bsc#1111666).\n - ALSA: hda: hdmi - fix pin setup on Tigerlake (bsc#1111666).\n - ALSA: hda: patch_hdmi: remove warnings with empty body (bsc#1111666).\n - ALSA: hda: patch_realtek: fix empty macro usage in if block\n (bsc#1111666).\n - ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code\n (bsc#1051510).\n - ALSA: oxfw: fix return value in error path of isochronous resources\n reservation (bsc#1051510).\n - ALSA: pcm: Avoid possible info leaks from PCM stream buffers (git-fixes).\n - ALSA: pcm: oss: Avoid potential buffer overflows (git-fixes).\n - ALSA: seq: Avoid concurrent access to queue flags (git-fixes).\n - ALSA: seq: Fix concurrent access to queue current tick/time (git-fixes).\n - ALSA: seq: Fix racy access for queue timer in proc read (bsc#1051510).\n - ALSA: sh: Fix compile warning wrt const (git-fixes).\n - ALSA: sh: Fix unused variable warnings (bsc#1111666).\n - ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 (git-fixes).\n - ALSA: usb-audio: Apply the sample rate quirk for Bose Companion 5\n (bsc#1111666).\n - ALSA: usb-audio: Fix endianess in descriptor validation (bsc#1111666).\n - ALSA: usb-audio: fix set_format altsetting sanity check (bsc#1051510).\n - ALSA: usb-audio: fix sync-ep altsetting sanity check (bsc#1051510).\n - ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report\n (bsc#1051510).\n - ASoC: au8540: use 64-bit arithmetic instead of 32-bit (bsc#1051510).\n - ASoC: compress: fix unsigned integer overflow check (bsc#1051510).\n - ASoC: cs4349: Use PM ops 'cs4349_runtime_pm' (bsc#1051510).\n - ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1\n (bsc#1051510).\n - ASoC: samsung: i2s: Fix prescaler setting for the secondary DAI\n (bsc#1111666).\n - ASoC: sun8i-codec: Fix setting DAI data format (git-fixes).\n - ASoC: wm8962: fix lambda value (git-fixes).\n - Bluetooth: Fix race condition in hci_release_sock() (bsc#1051510).\n - Bluetooth: hci_bcm: Handle specific unknown packets after firmware\n loading (bsc#1051510).\n - btrfs: add missing extents release on file extent cluster relocation\n error (bsc#1159483).\n - btrfs: avoid fallback to transaction commit during fsync of files with\n holes (bsc#1159569).\n - btrfs: fix block group remaining RO forever after error during device\n replace (bsc#1160442).\n - btrfs: fix btrfs_write_inode vs delayed iput deadlock (bsc#1154243).\n - btrfs: fix infinite loop during fsync after rename operations\n (bsc#1163383).\n - btrfs: fix infinite loop during nocow writeback due to race\n (bsc#1160804).\n - btrfs: fix missing data checksums after replaying a log tree\n (bsc#1161931).\n - btrfs: fix negative subv_writers counter and data space leak after\n buffered write (bsc#1160802).\n - btrfs: fix race between adding and putting tree mod seq elements and\n nodes (bsc#1163384).\n - btrfs: fix removal logic of the tree mod log that leads to\n use-after-free issues (bsc#1160803).\n - btrfs: fix selftests failure due to uninitialized i_mode in test inodes\n (Fix for dependency of bsc#1157692).\n - btrfs: make tree checker detect checksum items with overlapping ranges\n (bsc#1161931).\n - btrfs: send, skip backreference walking for extents with many references\n (bsc#1162139).\n - CDC-NCM: handle incomplete transfer of MTU (networking-stable-19_11_10).\n - CIFS: Add support for setting owner info, dos attributes, and create\n time (bsc#1144333).\n - CIFS: Close cached root handle only if it had a lease (bsc#1144333).\n - CIFS: Close open handle after interrupted close (bsc#1144333).\n - CIFS: Do not miss cancelled OPEN responses (bsc#1144333).\n - CIFS: Fix NULL pointer dereference in mid callback (bsc#1144333).\n - CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks\n (bsc#1144333).\n - CIFS: Fix task struct use-after-free on reconnect (bsc#1144333).\n - CIFS: Properly process SMB3 lease breaks (bsc#1144333).\n - CIFS: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1144333).\n - CIFS: Return directly after a failed build_path_from_dentry() in\n cifs_do_create() (bsc#1144333).\n - CIFS: Use common error handling code in smb2_ioctl_query_info()\n (bsc#1144333).\n - CIFS: Use memdup_user() rather than duplicating its implementation\n (bsc#1144333).\n - CIFS: fix a white space issue in cifs_get_inode_info() (bsc#1144333).\n - CIFS: refactor cifs_get_inode_info() (bsc#1144333).\n - CIFS: remove set but not used variables 'cinode' and 'netfid'\n (bsc#1144333).\n - Cover up kABI breakage due to DH key verification (bsc#1155331).\n - Delete patches which cause regression (bsc#1165527 ltc#184149).\n - Documentation: Document arm64 kpti control (bsc#1162623).\n - Enable CONFIG_BLK_DEV_SR_VENDOR (boo#1164632).\n - Fix the locking in dcache_readdir() and friends (bsc#1123328).\n - HID: doc: fix wrong data structure reference for UHID_OUTPUT\n (bsc#1051510).\n - HID: hiddev: Fix race in in hiddev_disconnect() (git-fixes).\n - HID: hidraw, uhid: Always report EPOLLOUT (bsc#1051510).\n - HID: hidraw: Fix returning EPOLLOUT from hidraw_poll (bsc#1051510).\n - HID: intel-ish-hid: fixes incorrect error handling (bsc#1051510).\n - HID: uhid: Fix returning EPOLLOUT from uhid_char_poll (bsc#1051510).\n - IB/hfi1: Close window for pq and request coliding (bsc#1060463 ).\n - IB/hfi1: Do not cancel unused work item (bsc#1114685 ).\n - IB/mlx5: Fix steering rule of drop and count (bsc#1103991 ).\n - IB/mlx5: Remove dead code (bsc#1103991).\n - Input: aiptek - fix endpoint sanity check (bsc#1051510).\n - Input: cyttsp4_core - fix use after free bug (bsc#1051510).\n - Input: goodix - add upside-down quirk for Teclast X89 tablet\n (bsc#1051510).\n - Input: gtco - fix endpoint sanity check (bsc#1051510).\n - Input: keyspan-remote - fix control-message timeouts (bsc#1051510).\n - Input: pegasus_notetaker - fix endpoint sanity check (bsc#1051510).\n - Input: pm8xxx-vib - fix handling of separate enable register\n (bsc#1051510).\n - Input: rmi_f54 - read from FIFO in 32 byte blocks (bsc#1051510).\n - Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register\n (bsc#1051510).\n - Input: sur40 - fix interface sanity checks (bsc#1051510).\n - Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus (bsc#1051510).\n - Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers\n (bsc#1051510).\n - Input: synaptics-rmi4 - simplify data read in rmi_f54_work (bsc#1051510).\n - KVM: Clean up __kvm_gfn_to_hva_cache_init() and its callers\n (bsc#1133021).\n - KVM: PPC: Book3S HV: Uninit vCPU if vcore creation fails (bsc#1061840).\n - KVM: PPC: Book3S PR: Fix -Werror=return-type build failure (bsc#1061840).\n - KVM: PPC: Book3S PR: Free shared page if mmu initialization fails\n (bsc#1061840).\n - KVM: SVM: Override default MMIO mask if memory encryption is enabled\n (bsc#1162618).\n - KVM: arm64: Store vcpu on the stack during __guest_enter() (bsc#1133021).\n - KVM: fix spectrev1 gadgets (bsc#1164705).\n - KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl\n (git-fixes).\n - KVM: s390: ENOTSUPP -&gt; EOPNOTSUPP fixups (bsc#1133021).\n - KVM: s390: Test for bad access register and size at the start of\n S390_MEM_OP (git-fixes).\n - KVM: s390: do not clobber registers during guest reset/store status\n (bsc#1133021).\n - KVM: x86: Protect DR-based index computations from Spectre-v1/L1TF\n attacks (bsc#1164734).\n - KVM: x86: Protect MSR-based index computations from Spectre-v1/L1TF\n attacks in x86.c (bsc#1164733).\n - KVM: x86: Protect MSR-based index computations in\n fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks (bsc#1164731).\n - KVM: x86: Protect MSR-based index computations in pmu.h from\n Spectre-v1/L1TF attacks (bsc#1164732).\n - KVM: x86: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks\n (bsc#1164728).\n - KVM: x86: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks\n (bsc#1164729).\n - KVM: x86: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF\n attacks (bsc#1164712).\n - KVM: x86: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks\n (bsc#1164730).\n - KVM: x86: Protect pmu_intel.c from Spectre-v1/L1TF attacks (bsc#1164735).\n - KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks\n (bsc#1164705).\n - KVM: x86: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks\n (bsc#1164727).\n - KVM: x86: Remove a spurious export of a static function (bsc#1158954).\n - NFC: fdp: fix incorrect free object (networking-stable-19_11_10).\n - NFC: pn533: fix bulk-message timeout (bsc#1051510).\n - NFC: pn544: Adjust indentation in pn544_hci_check_presence (git-fixes).\n - NFC: st21nfca: fix double free (networking-stable-19_11_10).\n - PCI/IOV: Fix memory leak in pci_iov_add_virtfn() (git-fixes).\n - PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity()\n (bsc#1051510).\n - PCI/switchtec: Fix vep_vector_number ioread width (bsc#1051510).\n - PCI: Add DMA alias quirk for Intel VCA NTB (bsc#1051510).\n - PCI: Do not disable bridge BARs when assigning bus resources\n (bsc#1051510).\n - PCI: pciehp: Avoid returning prematurely from sysfs requests (git-fixes).\n - PCI: rpaphp: Add drc-info support for hotplug slot registration\n (bsc#1157480 ltc#181028).\n - PCI: rpaphp: Annotate and correctly byte swap DRC properties\n (bsc#1157480 ltc#181028).\n - PCI: rpaphp: Avoid a sometimes-uninitialized warning (bsc#1157480\n ltc#181028).\n - PCI: rpaphp: Correctly match ibm, my-drc-index to drc-name when using\n drc-info (bsc#1157480 ltc#181028).\n - PCI: rpaphp: Do not rely on firmware feature to imply drc-info support\n (bsc#1157480 ltc#181028).\n - PCI: rpaphp: Fix up pointer to first drc-info entry (bsc#1157480\n ltc#181028).\n - PM / AVS: SmartReflex: NULL check before some freeing functions is not\n needed (bsc#1051510).\n - PM / Domains: Deal with multiple states but no governor in genpd\n (bsc#1051510).\n - RDMA/bnxt_re: Avoid freeing MR resources if dereg fails (bsc#1050244).\n - RDMA/bnxt_re: Enable SRIOV VF support on Broadcom's 57500 adapter series\n (bsc#1154916).\n - RDMA/bnxt_re: Fix chip number validation Broadcom's Gen P5 series\n (bsc#1157895).\n - RDMA/bnxt_re: Fix missing le16_to_cpu (bsc#1157895).\n - RDMA/cma: Fix unbalanced cm_id reference count during address resolve\n (bsc#1103992).\n - RDMA/hfi1: Fix memory leak in _dev_comp_vect_mappings_create\n (bsc#1114685).\n - RDMA/hns: Bugfix for qpc/cqc timer configuration (bsc#1104427\n bsc#1126206).\n - RDMA/hns: Correct the value of srq_desc_size (bsc#1104427 ).\n - RDMA/hns: Fix to support 64K page for srq (bsc#1104427 ).\n - RDMA/hns: Prevent memory leaks of eq-&gt;buf_list (bsc#1104427 ).\n - RDMA/uverbs: Verify MR access flags (bsc#1103992).\n - crypto/dh: Adjust for change of DH_KPP_SECRET_MIN_SIZE in\n 35f7d5225ffcbf1b759f641aec1735e3a89b1914\n - crypto/dh: Remove the fips=1 check in dh.c dh.c is not fips-specific and\n should perform the same regardless of this setting.\n - Revert &quot;HID: add NOGET quirk for Eaton Ellipse MAX UPS&quot; (git-fixes).\n - Revert &quot;Input: synaptics-rmi4 - do not increment rmiaddr for SMBus\n transfers&quot; (bsc#1051510).\n - Revert &quot;ath10k: fix DMA related firmware crashes on multiple devices&quot;\n (git-fixes).\n - Revert &quot;locking/pvqspinlock: Do not wait if vCPU is preempted&quot;\n (bsc#1050549).\n - Revert &quot;mmc: sdhci: Fix incorrect switch to HS mode&quot; (bsc#1051510).\n - Revert patches.suse/samples-bpf-add-a-test-for-bpf_override_return.patch\n (bsc#1159500)\n - SMB3: Backup intent flag missing from some more ops (bsc#1144333).\n - SMB3: Fix crash in SMB2_open_init due to uninitialized field in\n compounding path (bsc#1144333).\n - SMB3: Fix persistent handles reconnect (bsc#1144333).\n - SUNRPC: Fix svcauth_gss_proxy_init() (bsc#1103992).\n - Staging: iio: adt7316: Fix i2c data reading, set the data field\n (bsc#1051510).\n - USB: EHCI: Do not return -EPIPE when hub is disconnected (git-fixes).\n - USB: adutux: fix interface sanity check (bsc#1051510).\n - USB: atm: ueagle-atm: add missing endpoint check (bsc#1051510).\n - USB: core: add endpoint-blacklist quirk (git-fixes).\n - USB: core: fix check for duplicate endpoints (git-fixes).\n - USB: documentation: flags on usb-storage versus UAS (bsc#1051510).\n - USB: idmouse: fix interface sanity checks (bsc#1051510).\n - USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 (git-fixes).\n - USB: serial: ch341: handle unbound port at reset_resume (bsc#1051510).\n - USB: serial: ftdi_sio: add device IDs for U-Blox C099-F9P (bsc#1051510).\n - USB: serial: io_edgeport: add missing active-port sanity check\n (bsc#1051510).\n - USB: serial: io_edgeport: fix epic endpoint lookup (bsc#1051510).\n - USB: serial: io_edgeport: handle unbound ports on URB completion\n (bsc#1051510).\n - USB: serial: io_edgeport: use irqsave() in USB's complete callback\n (bsc#1051510).\n - USB: serial: ir-usb: add missing endpoint sanity check (bsc#1051510).\n - USB: serial: ir-usb: fix IrLAP framing (bsc#1051510).\n - USB: serial: ir-usb: fix link-speed handling (bsc#1051510).\n - USB: serial: keyspan: handle unbound ports (bsc#1051510).\n - USB: serial: opticon: fix control-message timeouts (bsc#1051510).\n - USB: serial: option: Add support for Quectel RM500Q (bsc#1051510).\n - USB: serial: option: add Telit ME910G1 0x110a composition (git-fixes).\n - USB: serial: option: add ZLP support for 0x1bc7/0x9010 (git-fixes).\n - USB: serial: option: add support for Quectel RM500Q in QDL mode\n (git-fixes).\n - USB: serial: quatech2: handle unbound ports (bsc#1051510).\n - USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx\n (bsc#1051510).\n - USB: serial: suppress driver bind attributes (bsc#1051510).\n - USB: uas: heed CAPACITY_HEURISTICS (bsc#1051510).\n - USB: uas: honor flag to avoid CAPACITY16 (bsc#1051510).\n - Update\n patches.suse/powerpc-xive-Implement-get_irqchip_state-method-for-.patch\n (bsc#1085030).\n - af_packet: set defaule value for tmo (bsc#1051510).\n - apparmor: fix unsigned len comparison with less than zero (git-fixes).\n - ar5523: check NULL before memcpy() in ar5523_cmd() (bsc#1051510).\n - arm64: Revert support for execute-only user mappings (bsc#1160218).\n - ata: ahci: Add shutdown to freeze hardware resources of ahci\n (bsc#1164388).\n - ath10k: Correct the DMA direction for management tx buffers\n (bsc#1111666).\n - ath10k: fix fw crash by moving chip reset after napi disabled\n (bsc#1051510).\n - ath10k: pci: Fix comment on ath10k_pci_dump_memory_sram (bsc#1111666).\n - ath10k: pci: Only dump ATH10K_MEM_REGION_TYPE_IOREG when safe\n (bsc#1111666).\n - ath6kl: Fix off by one error in scan completion (bsc#1051510).\n - ath9k: fix storage endpoint lookup (git-fixes).\n - atl1e: checking the status of atl1e_write_phy_reg (bsc#1051510).\n - audit: Allow auditd to set pid to 0 to end auditing (bsc#1158094).\n - batman-adv: Fix DAT candidate selection on little endian systems\n (bsc#1051510).\n - bcache: Fix an error code in bch_dump_read() (bsc#1163762).\n - bcache: Revert &quot;bcache: shrink btree node cache after bch_btree_check()&quot;\n (bsc#1163762, bsc#1112504).\n - bcache: add code comment bch_keylist_pop() and bch_keylist_pop_front()\n (bsc#1163762).\n - bcache: add code comments for state-&gt;pool in __btree_sort()\n (bsc#1163762).\n - bcache: add code comments in bch_btree_leaf_dirty() (bsc#1163762).\n - bcache: add cond_resched() in __bch_cache_cmp() (bsc#1163762).\n - bcache: add idle_max_writeback_rate sysfs interface (bsc#1163762).\n - bcache: add more accurate error messages in read_super() (bsc#1163762).\n - bcache: add readahead cache policy options via sysfs interface\n (bsc#1163762).\n - bcache: at least try to shrink 1 node in bch_mca_scan() (bsc#1163762).\n - bcache: avoid unnecessary btree nodes flushing in btree_flush_write()\n (bsc#1163762).\n - bcache: check return value of prio_read() (bsc#1163762).\n - bcache: deleted code comments for dead code in bch_data_insert_keys()\n (bsc#1163762).\n - bcache: do not export symbols (bsc#1163762).\n - bcache: explicity type cast in bset_bkey_last() (bsc#1163762).\n - bcache: fix a lost wake-up problem caused by mca_cannibalize_lock\n (bsc#1163762).\n - bcache: fix deadlock in bcache_allocator (bsc#1163762).\n - bcache: fix incorrect data type usage in btree_flush_write()\n (bsc#1163762).\n - bcache: fix memory corruption in bch_cache_accounting_clear()\n (bsc#1163762).\n - bcache: fix static checker warning in bcache_device_free() (bsc#1163762).\n - bcache: ignore pending signals when creating gc and allocator thread\n (bsc#1163762, bsc#1112504).\n - bcache: print written and keys in trace_bcache_btree_write (bsc#1163762).\n - bcache: reap c-&gt;btree_cache_freeable from the tail in bch_mca_scan()\n (bsc#1163762).\n - bcache: reap from tail of c-&gt;btree_cache in bch_mca_scan() (bsc#1163762).\n - bcache: remove macro nr_to_fifo_front() (bsc#1163762).\n - bcache: remove member accessed from struct btree (bsc#1163762).\n - bcache: remove the extra cflags for request.o (bsc#1163762).\n - bcma: remove set but not used variable 'sizel' (git-fixes).\n - blk-mq: avoid sysfs buffer overflow with too many CPU cores\n (bsc#1159377).\n - blk-mq: avoid sysfs buffer overflow with too many CPU cores\n (bsc#1163840).\n - blk-mq: make sure that line break can be printed (bsc#1159377).\n - blk-mq: make sure that line break can be printed (bsc#1164098).\n - bnxt: apply computed clamp value for coalece parameter (bsc#1104745).\n - bnxt_en: Fix MSIX request logic for RDMA driver (bsc#1104745 ).\n - bnxt_en: Fix NTUPLE firmware command failures (bsc#1104745 ).\n - bnxt_en: Fix TC queue mapping (networking-stable-20_02_05).\n - bnxt_en: Improve device shutdown method (bsc#1104745 ).\n - bnxt_en: Issue PCIe FLR in kdump kernel to cleanup pending DMAs\n (bsc#1134090 jsc#SLE-5954).\n - bnxt_en: Return error if FW returns more data than dump length\n (bsc#1104745).\n - bonding: fix active-backup transition after link failure (git-fixes).\n - bonding: fix potential NULL deref in bond_update_slave_arr (bsc#1051510).\n - bonding: fix slave stuck in BOND_LINK_FAIL state\n (networking-stable-19_11_10).\n - bonding: fix state transition issue in link monitoring\n (networking-stable-19_11_10).\n - bonding: fix unexpected IFF_BONDING bit unset (bsc#1051510).\n - bpf, offload: Replace bitwise AND by logical AND in\n bpf_prog_offload_info_fill (bsc#1109837).\n - bpf, offload: Unlock on error in bpf_offload_dev_create() (bsc#1109837).\n - bpf/sockmap: Read psock ingress_msg before sk_receive_queue\n (bsc#1083647).\n - bpf/stackmap: Fix deadlock with rq_lock in bpf_get_stack() (bsc#1083647).\n - bpf: Fix incorrect verifier simulation of ARSH under ALU32 (bsc#1083647).\n - bpf: Make use of probe_user_write in probe write helper (bsc#1083647).\n - bpf: Reject indirect var_off stack access in raw mode (bsc#1160618).\n - bpf: Reject indirect var_off stack access in unpriv mode (bco#1160618).\n - bpf: Sanity check max value for var_off stack access (bco#1160618).\n - bpf: Support variable offset stack access from helpers (bco#1160618).\n - bpf: add self-check logic to liveness analysis (bsc#1160618).\n - bpf: add verifier stats and log_level bit 2 (bsc#1160618).\n - bpf: improve stacksafe state comparison (bco#1160618).\n - bpf: improve verification speed by droping states (bsc#1160618).\n - bpf: improve verification speed by not remarking live_read (bsc#1160618).\n - bpf: improve verifier branch analysis (bsc#1160618).\n - bpf: increase complexity limit and maximum program size (bsc#1160618).\n - bpf: increase verifier log limit (bsc#1160618).\n - bpf: skmsg, fix potential psock NULL pointer dereference (bsc#1109837).\n - bpf: speed up stacksafe check (bco#1160618).\n - bpf: verifier: teach the verifier to reason about the BPF_JSET\n instruction (bco#1160618).\n - brcmfmac: Fix memory leak in brcmf_p2p_create_p2pdev() (bsc#1111666).\n - brcmfmac: Fix memory leak in brcmf_usbdev_qinit (git-fixes).\n - brcmfmac: Fix use after free in brcmf_sdio_readframes() (git-fixes).\n - brcmfmac: fix interface sanity check (git-fixes).\n - brcmfmac: sdio: Fix OOB interrupt initialization on brcm43362\n (bsc#1111666).\n - brcmfmac: set F2 watermark to 256 for 4373 (bsc#1111666).\n - brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373 (bsc#1111666).\n - btrfs: Ensure we trim ranges across block group boundary (bsc#1151910).\n - btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it\n (dependency for bsc#1157692).\n - btrfs: abort transaction after failed inode updates in create_subvol\n (bsc#1161936).\n - btrfs: dev-replace: remove warning for unknown return codes when\n finished (dependency for bsc#1162067).\n - btrfs: do not call synchronize_srcu() in inode_tree_del (bsc#1161934).\n - btrfs: do not double lock the subvol_sem for rename exchange\n (bsc#1162943).\n - btrfs: fix integer overflow in calc_reclaim_items_nr (bsc#1160433).\n - btrfs: handle ENOENT in btrfs_uuid_tree_iterate (bsc#1161937).\n - btrfs: harden agaist duplicate fsid on scanned devices (bsc#1134973).\n - btrfs: inode: Verify inode mode to avoid NULL pointer dereference\n (dependency for bsc#1157692).\n - btrfs: record all roots for rename exchange on a subvol (bsc#1161933).\n - btrfs: relocation: fix reloc_root lifespan and access (bsc#1159588).\n - btrfs: scrub: Require mandatory block group RO for dev-replace\n (bsc#1162067).\n - btrfs: simplify inode locking for RWF_NOWAIT (git-fixes).\n - btrfs: skip log replay on orphaned roots (bsc#1161935).\n - btrfs: tree-checker: Check chunk item at tree block read time\n (dependency for bsc#1157692).\n - btrfs: tree-checker: Check level for leaves and nodes (dependency for\n bsc#1157692).\n - btrfs: tree-checker: Enhance chunk checker to validate chunk profile\n (dependency for bsc#1157692).\n - btrfs: tree-checker: Fix wrong check on max devid (fixes for dependency\n of bsc#1157692).\n - btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN\n instead of EIO (dependency for bsc#1157692).\n - btrfs: tree-checker: Make chunk item checker messages more readable\n (dependency for bsc#1157692).\n - btrfs: tree-checker: Verify dev item (dependency for bsc#1157692).\n - btrfs: tree-checker: Verify inode item (dependency for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in block_group_err (dependency\n for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_block_group_item\n (dependency for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_csum_item (dependency\n for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_dev_item (dependency\n for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_dir_item (dependency\n for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_extent_data_item\n (dependency for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_inode_item (dependency\n for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_leaf_item (dependency\n for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in dev_item_err (dependency for\n bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in dir_item_err (dependency for\n bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in file_extent_err (dependency\n for bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in check_leaf (dependency for\n bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in chunk_err (dependency for\n bsc#1157692).\n - btrfs: tree-checker: get fs_info from eb in generic_err (dependency for\n bsc#1157692).\n - btrfs: volumes: Use more straightforward way to calculate map length\n (bsc#1151910).\n - can, slip: Protect tty-&gt;disc_data in write_wakeup and close with RCU\n (bsc#1051510).\n - can: c_can: D_CAN: c_can_chip_config(): perform a sofware reset on open\n (bsc#1051510).\n - can: can_dropped_invalid_skb(): ensure an initialized headroom in\n outgoing CAN sk_buffs (bsc#1051510).\n - can: gs_usb: gs_usb_probe(): use descriptors of current altsetting\n (bsc#1051510).\n - can: mscan: mscan_rx_poll(): fix rx path lockup when returning from\n polling to irq mode (bsc#1051510).\n - can: peak_usb: report bus recovery as well (bsc#1051510).\n - can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error\n (bsc#1051510).\n - can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on\n error (bsc#1051510).\n - can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors\n on queue overflow or OOM (bsc#1051510).\n - can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to\n propagate error value in case of errors (bsc#1051510).\n - can: slcan: Fix use-after-free Read in slcan_open (bsc#1051510).\n - cdrom: respect device capabilities during opening action (boo#1164632).\n - cfg80211/mac80211: make ieee80211_send_layer2_update a public function\n (bsc#1051510).\n - cfg80211: check for set_wiphy_params (bsc#1051510).\n - cfg80211: fix deadlocks in autodisconnect work (bsc#1111666).\n - cfg80211: fix memory leak in cfg80211_cqm_rssi_update (bsc#1111666).\n - cfg80211: fix page refcount issue in A-MSDU decap (bsc#1051510).\n - cgroup: pids: use atomic64_t for pids-&gt;limit (bsc#1161514).\n - chardev: Avoid potential use-after-free in 'chrdev_open()' (bsc#1163849).\n - cifs: Add tracepoints for errors on flush or fsync (bsc#1144333).\n - cifs: Adjust indentation in smb2_open_file (bsc#1144333).\n - cifs: Avoid doing network I/O while holding cache lock (bsc#1144333).\n - cifs: Clean up DFS referral cache (bsc#1144333).\n - cifs: Do not display RDMA transport on reconnect (bsc#1144333).\n - cifs: Fix lookup of root ses in DFS referral cache (bsc#1144333).\n - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd()\n (bsc#1144333).\n - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd()\n (bsc#1144333).\n - cifs: Fix mode output in debugging statements (bsc#1144333).\n - cifs: Fix mount options set in automount (bsc#1144333).\n - cifs: Fix mount options set in automount (bsc#1144333).\n - cifs: Fix potential deadlock when updating vol in cifs_reconnect()\n (bsc#1144333).\n - cifs: Fix potential softlockups while refreshing DFS cache (bsc#1144333).\n - cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1144333).\n - cifs: Fix return value in __update_cache_entry (bsc#1144333).\n - cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1144333).\n - cifs: Get rid of kstrdup_const()'d paths (bsc#1144333).\n - cifs: Introduce helpers for finding TCP connection (bsc#1144333).\n - cifs: Merge is_path_valid() into get_normalized_path() (bsc#1144333).\n - cifs: Optimize readdir on reparse points (bsc#1144333).\n - cifs: Use #define in cifs_dbg (bsc#1144333).\n - cifs: add SMB2_open() arg to return POSIX data (bsc#1144333).\n - cifs: add SMB3 change notification support (bsc#1144333).\n - cifs: add a debug macro that prints \\\\server\\share for errors\n (bsc#1144333).\n - cifs: add missing mount option to /proc/mounts (bsc#1144333).\n - cifs: add new debugging macro cifs_server_dbg (bsc#1144333).\n - cifs: add passthrough for smb2 setinfo (bsc#1144333).\n - cifs: add smb2 POSIX info level (bsc#1144333).\n - cifs: add support for fallocate mode 0 for non-sparse files\n (bsc#1144333).\n - cifs: add support for flock (bsc#1144333).\n - cifs: allow chmod to set mode bits using special sid (bsc#1144333).\n - cifs: call wake_up(&amp;server-&gt;response_q) inside of cifs_reconnect()\n (bsc#1144333).\n - cifs: close the shared root handle on tree disconnect (bsc#1144333).\n - cifs: create a helper function to parse the query-directory response\n buffer (bsc#1144333).\n - cifs: do d_move in rename (bsc#1144333).\n - cifs: do not ignore the SYNC flags in getattr (bsc#1144333).\n - cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1144333).\n - cifs: do not use 'pre:' for MODULE_SOFTDEP (bsc#1144333).\n - cifs: enable change notification for SMB2.1 dialect (bsc#1144333).\n - cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1144333).\n - cifs: fix NULL dereference in match_prepath (bsc#1144333).\n - cifs: fix a comment for the timeouts when sending echos (bsc#1144333).\n - cifs: fix dereference on ses before it is null checked (bsc#1144333).\n - cifs: fix mode bits from dir listing when mounted with modefromsid\n (bsc#1144333).\n - cifs: fix mount option display for sec=krb5i (bsc#1161907).\n - cifs: fix potential mismatch of UNC paths (bsc#1144333).\n - cifs: fix rename() by ensuring source handle opened with DELETE bit\n (bsc#1144333).\n - cifs: fix soft mounts hanging in the reconnect code (bsc#1144333).\n - cifs: fix soft mounts hanging in the reconnect code (bsc#1144333).\n - cifs: fix unitialized variable poential problem with network I/O cache\n lock patch (bsc#1144333).\n - cifs: get mode bits from special sid on stat (bsc#1144333).\n - cifs: handle prefix paths in reconnect (bsc#1144333).\n - cifs: log warning message (once) if out of disk space (bsc#1144333).\n - cifs: make sure we do not overflow the max EA buffer size (bsc#1144333).\n - cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1144333).\n - cifs: modefromsid: make room for 4 ACE (bsc#1144333).\n - cifs: modefromsid: write mode ACE first (bsc#1144333).\n - cifs: plumb smb2 POSIX dir enumeration (bsc#1144333).\n - cifs: potential unintitliazed error code in cifs_getattr() (bsc#1144333).\n - cifs: prepare SMB2_query_directory to be used with compounding\n (bsc#1144333).\n - cifs: print warning once if mounting with vers=1.0 (bsc#1144333).\n - cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1144333).\n - cifs: remove redundant assignment to variable rc (bsc#1144333).\n - cifs: remove set but not used variable 'server' (bsc#1144333).\n - cifs: remove set but not used variables (bsc#1144333).\n - cifs: remove unused variable 'sid_user' (bsc#1144333).\n - cifs: remove unused variable (bsc#1144333).\n - cifs: rename a variable in SendReceive() (bsc#1144333).\n - cifs: rename posix create rsp (bsc#1144333).\n - cifs: replace various strncpy with strscpy and similar (bsc#1144333).\n - cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1144333).\n - cifs: smbd: Add messages on RDMA session destroy and reconnection\n (bsc#1144333).\n - cifs: smbd: Invalidate and deregister memory registration on re-send for\n direct I/O (bsc#1144333).\n - cifs: smbd: Only queue work for error recovery on memory registration\n (bsc#1144333).\n - cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1144333).\n - cifs: smbd: Return -ECONNABORTED when trasnport is not in connected\n state (bsc#1144333).\n - cifs: smbd: Return -EINVAL when the number of iovs exceeds\n SMBDIRECT_MAX_SGE (bsc#1144333).\n - cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1144333).\n - cifs: use compounding for open and first query-dir for readdir()\n (bsc#1144333).\n - cifs: use mod_delayed_work() for &amp;server-&gt;reconnect if already queued\n (bsc#1144333).\n - clk: Do not try to enable critical clocks if prepare failed\n (bsc#1051510).\n - clk: imx: clk-composite-8m: add lock to gate/mux (git-fixes).\n - clk: mmp2: Fix the order of timer mux parents (bsc#1051510).\n - clk: qcom: rcg2: Do not crash if our parent can't be found; return an\n error (bsc#1051510).\n - clk: rockchip: fix I2S1 clock gate register for rk3328 (bsc#1051510).\n - clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 (bsc#1051510).\n - clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering\n (bsc#1051510).\n - clk: rockchip: fix rk3188 sclk_smc gate data (bsc#1051510).\n - clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock (bsc#1051510).\n - clk: sunxi: sun9i-mmc: Implement reset callback for reset controls\n (bsc#1051510).\n - clk: tegra: Mark fuse clock as critical (bsc#1051510).\n - clocksource/drivers/bcm2835_timer: Fix memory leak of timer\n (bsc#1051510).\n - clocksource: Prevent double add_timer_on() for watchdog_timer\n (bsc#1051510).\n - closures: fix a race on wakeup from closure_sync (bsc#1163762).\n - cls_rsvp: fix rsvp_policy (networking-stable-20_02_05).\n - configfs_register_group() shouldn't be (and isn't) called in rmdirable\n parts (bsc#1051510).\n - copy/pasted &quot;Recommends:&quot; instead of &quot;Provides:&quot;, &quot;Obsoletes:&quot; and\n &quot;Conflicts:\n - core: Do not skip generic XDP program execution for cloned SKBs\n (bsc#1109837).\n - crypto: DRBG - add FIPS 140-2 CTRNG for noise source (bsc#1155334).\n - crypto: af_alg - Use bh_lock_sock in sk_destruct (bsc#1051510).\n - crypto: api - Check spawn-&gt;alg under lock in crypto_drop_spawn\n (bsc#1051510).\n - crypto: api - Fix race condition in crypto_spawn_alg (bsc#1051510).\n - crypto: atmel-sha - fix error handling when setting hmac key\n (bsc#1051510).\n - crypto: caam/qi2 - fix typo in algorithm's driver name (bsc#1111666).\n - crypto: ccp - fix uninitialized list head (bsc#1051510).\n - crypto: chelsio - fix writing tfm flags to wrong place (bsc#1051510).\n - crypto: dh - add public key verification test (bsc#1155331).\n - crypto: dh - fix calculating encoded key size (bsc#1155331).\n - crypto: dh - fix memory leak (bsc#1155331).\n - crypto: dh - update test for public key verification (bsc#1155331).\n - crypto: ecdh - add public key verification test (bsc#1155331).\n - crypto: ecdh - fix typo of P-192 b value (bsc#1155331).\n - crypto: mxc-scc - fix build warnings on ARM64 (bsc#1051510).\n - crypto: pcrypt - Do not clear MAY_SLEEP flag in original request\n (bsc#1051510).\n - crypto: picoxcell - adjust the position of tasklet_init and fix missed\n tasklet_kill (bsc#1051510).\n - crypto: reexport crypto_shoot_alg() (bsc#1051510, kABI fix).\n - cxgb4: request the TX CIDX updates to status page (bsc#1127371).\n - devlink: report 0 after hitting end in region read (bsc#1109837).\n - dma-buf: Fix memory leak in sync_file_merge() (git-fixes).\n - dma-mapping: fix return type of dma_set_max_seg_size() (bsc#1051510).\n - dmaengine: Fix access to uninitialized dma_slave_caps (bsc#1051510).\n - dmaengine: coh901318: Fix a double-lock bug (bsc#1051510).\n - dmaengine: coh901318: Remove unused variable (bsc#1051510).\n - drivers/base/memory.c: cache blocks in radix tree to accelerate lookup\n (bsc#1159955 ltc#182993).\n - drivers/base/memory.c: do not access uninitialized memmaps in\n soft_offline_page_store() (bsc#1051510).\n - drivers/base/platform.c: kmemleak ignore a known leak (bsc#1051510).\n - drivers/regulator: fix a missing check of return value (bsc#1051510).\n - drm/amd/display: Retrain dongles when SINK_COUNT becomes non-zero\n (bsc#1111666).\n - drm/amd/powerplay: remove set but not used variable 'us_mvdd'\n (bsc#1111666).\n - drm/amdgpu/{uvd,vcn}: fetch ring's read_ptr after alloc (bsc#1111666).\n - drm/amdgpu: add function parameter description in\n 'amdgpu_device_set_cg_state' (bsc#1111666).\n - drm/amdgpu: add function parameter description in 'amdgpu_gart_bind'\n (bsc#1051510).\n - drm/amdgpu: fix bad DMA from INTERRUPT_CNTL2 (bsc#1114279)\n - drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2)\n (bsc#1111666).\n - drm/amdgpu: remove 4 set but not used variable in\n amdgpu_atombios_get_connector_info_from_object_table (bsc#1051510).\n - drm/amdgpu: remove always false comparison in\n 'amdgpu_atombios_i2c_process_i2c_ch' (bsc#1051510).\n - drm/amdgpu: remove set but not used variable 'amdgpu_connector'\n (bsc#1051510).\n - drm/amdgpu: remove set but not used variable 'dig' (bsc#1051510).\n - drm/amdgpu: remove set but not used variable 'dig_connector'\n (bsc#1051510).\n - drm/amdgpu: remove set but not used variable 'invalid' (bsc#1111666).\n - drm/amdgpu: remove set but not used variable 'mc_shared_chmap'\n (bsc#1051510).\n - drm/amdgpu: remove set but not used variable 'mc_shared_chmap' from\n 'gfx_v6_0.c' and 'gfx_v7_0.c' (bsc#1051510).\n - drm/amdkfd: fix a use after free race with mmu_notifer unregister\n (bsc#1114279)\n - drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ (bsc#1051510).\n - drm/etnaviv: fix dumping of iommuv2 (bsc#1114279)\n - drm/fb-helper: Round up bits_per_pixel if possible (bsc#1051510).\n - drm/i810: Prevent underflow in ioctl (bsc#1114279)\n - drm/i915/gvt: Pin vgpu dma address before using (bsc#1112178)\n - drm/i915/gvt: Separate display reset from ALL_ENGINES reset (bsc#1114279)\n - drm/i915/gvt: set guest display buffer as readonly (bsc#1112178)\n - drm/i915/gvt: use vgpu lock for active state setting (bsc#1112178)\n - drm/i915/perf: add missing delay for OA muxes configuration\n (bsc#1111666).\n - drm/i915/userptr: Try to acquire the page lock around (bsc#1114279)\n - drm/i915/userptr: fix size calculation (bsc#1114279)\n - drm/i915: Add missing include file &lt;linux/math64.h&gt; (bsc#1051510).\n - drm/i915: Call dma_set_max_seg_size() in i915_driver_hw_probe()\n (bsc#1111666).\n - drm/i915: Fix pid leak with banned clients (bsc#1114279)\n - drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set\n (bsc#1111666).\n - drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV\n (bsc#1111666).\n - drm/i915: Reacquire priolist cache after dropping the engine lock\n (bsc#1129770) Fixes a const function argument in the patch.\n - drm/i915: Sanity check mmap length against object size (bsc#1111666).\n - drm/i915: Wean off drm_pci_alloc/drm_pci_free (bsc#1114279)\n - drm/mediatek: Add gamma property according to hardware capability\n (bsc#1114279)\n - drm/mediatek: disable all the planes in atomic_disable (bsc#1114279)\n - drm/mipi_dbi: Fix off-by-one bugs in mipi_dbi_blank() (bsc#1114279)\n - drm/msm: include linux/sched/task.h (bsc#1112178)\n - drm/mst: Fix MST sideband up-reply failure handling (bsc#1051510).\n - drm/nouveau/bar/gf100: ensure BAR is mapped (bsc#1111666).\n - drm/nouveau/bar/nv50: check bar1 vmm return value (bsc#1111666).\n - drm/nouveau/mmu: qualify vmm during dtor (bsc#1111666).\n - drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new()\n (bsc#1051510).\n - drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler\n (bsc#1051510).\n - drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028)\n - drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028)\n - drm/radeon: fix r1xx/r2xx register checker for POT textures (bsc#1114279)\n - drm/rect: Avoid division by zero (bsc#1111666).\n - drm/rect: update kerneldoc for drm_rect_clip_scaled() (bsc#1111666).\n - drm/rockchip: Round up _before_ giving to the clock framework\n (bsc#1114279)\n - drm/rockchip: lvds: Fix indentation of a #define (bsc#1051510).\n - drm/sun4i: hdmi: Remove duplicate cleanup calls (bsc#1113956)\n - drm/sun4i: tcon: Set RGB DCLK min. divider based on hardware model\n (bsc#1111666).\n - drm/sun4i: tcon: Set min division of TCON0_DCLK to 1 (bsc#1111666).\n - drm/ttm: ttm_tt_init_fields() can be static (bsc#1111666).\n - drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add (bsc#1051510).\n - drm: atmel-hlcdc: enable clock before configuring timing engine\n (bsc#1114279)\n - drm: bridge: dw-hdmi: constify copied structure (bsc#1051510).\n - drm: limit to INT_MAX in create_blob ioctl (bsc#1051510).\n - drm: meson: venc: cvbs: fix CVBS mode matching (bsc#1051510).\n - drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable\n (bsc#1111666).\n - drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable\n (bsc#1114279)\n - drm: panel-lvds: Potential Oops in probe error handling (bsc#1114279)\n - drm: rcar-du: Recognize &quot;renesas,vsps&quot; in addition to &quot;vsps&quot;\n (bsc#1114279)\n - e1000e: Add support for Comet Lake (bsc#1158533).\n - e1000e: Add support for Tiger Lake (bsc#1158533).\n - e1000e: Increase pause and refresh time (bsc#1158533).\n - e100: Fix passing zero to 'PTR_ERR' warning in e100_load_ucode_wait\n (bsc#1051510).\n - enic: prevent waking up stopped tx queues over watchdog reset\n (bsc#1133147).\n - ethtool: Factored out similar ethtool link settings for virtual devices\n to core (bsc#1136157 ltc#177197).\n - exit: panic before exit_mm() on global init exit (bsc#1161549).\n - ext2: check err when partial != NULL (bsc#1163859).\n - ext4, jbd2: ensure panic when aborting with zero errno (bsc#1163853).\n - ext4: Fix mount failure with quota configured as module (bsc#1164471).\n - ext4: check for directory entries too close to block end (bsc#1163861).\n - ext4: fix a bug in ext4_wait_for_tail_page_commit (bsc#1163841).\n - ext4: fix checksum errors with indexed dirs (bsc#1160979).\n - ext4: fix deadlock allocating crypto bounce page from mempool\n (bsc#1163842).\n - ext4: fix mount failure with quota configured as module (bsc#1164471).\n - ext4: improve explanation of a mount failure caused by a misconfigured\n kernel (bsc#1163843).\n - extcon: max8997: Fix lack of path setting in USB device mode\n (bsc#1051510).\n - firestream: fix memory leaks (bsc#1051510).\n - fix autofs regression caused by follow_managed() changes (bsc#1159271).\n - fix dget_parent() fastpath race (bsc#1159271).\n - fix memory leak in large read decrypt offload (bsc#1144333).\n - fjes: fix missed check in fjes_acpi_add (bsc#1051510).\n - fs/cifs/cifssmb.c: use true,false for bool variable (bsc#1144333).\n - fs/cifs/sess.c: Remove set but not used variable 'capabilities'\n (bsc#1144333).\n - fs/cifs/smb2ops.c: use true,false for bool variable (bsc#1144333).\n - fs/cifs/smb2pdu.c: Make SMB2_notify_init static (bsc#1144333).\n - fs/namei.c: fix missing barriers when checking positivity (bsc#1159271).\n - fs/namei.c: pull positivity check into follow_managed() (bsc#1159271).\n - fs/open.c: allow opening only regular files during execve()\n (bsc#1163845).\n - fs: cifs: Fix atime update check vs mtime (bsc#1144333).\n - fs: cifs: Initialize filesystem timestamp ranges (bsc#1144333).\n - fs: cifs: cifsssmb: remove redundant assignment to variable ret\n (bsc#1144333).\n - fs: cifs: mute -Wunused-const-variable message (bsc#1144333).\n - fscrypt: do not set policy for a dead directory (bsc#1163846).\n - ftrace: Add comment to why rcu_dereference_sched() is open coded\n (git-fixes).\n - ftrace: Avoid potential division by zero in function profiler\n (bsc#1160784).\n - ftrace: Protect ftrace_graph_hash with ftrace_sync (git-fixes).\n - genirq/proc: Return proper error code when irq_set_affinity() fails\n (bnc#1105392).\n - genirq: Prevent NULL pointer dereference in resend_irqs() (bsc#1051510).\n - genirq: Properly pair kobject_del() with kobject_add() (bsc#1051510).\n - gpio: Fix error message on out-of-range GPIO in lookup table\n (bsc#1051510).\n - gtp: avoid zero size hashtable (networking-stable-20_01_01).\n - gtp: do not allow adding duplicate tid and ms_addr pdp context\n (networking-stable-20_01_01).\n - gtp: fix an use-after-free in ipv4_pdp_find()\n (networking-stable-20_01_01).\n - gtp: fix wrong condition in gtp_genl_dump_pdp()\n (networking-stable-20_01_01).\n - gtp: make sure only SOCK_DGRAM UDP sockets are accepted\n (networking-stable-20_01_27).\n - gtp: use __GFP_NOWARN to avoid memalloc warning\n (networking-stable-20_02_05).\n - hidraw: Return EPOLLOUT from hidraw_poll (bsc#1051510).\n - hotplug/drc-info: Add code to search ibm,drc-info property (bsc#1157480\n ltc#181028).\n - hv_netvsc: Fix memory leak when removing rndis device\n (networking-stable-20_01_20).\n - hv_netvsc: Fix offset usage in netvsc_send_table() (bsc#1164598).\n - hv_netvsc: Fix send_table offset in case of a host bug (bsc#1164598).\n - hv_netvsc: Fix tx_table init in rndis_set_subchannel() (bsc#1164598).\n - hv_netvsc: Fix unwanted rx_table reset (bsc#1164598).\n - hwmon: (adt7475) Make volt2reg return same reg as reg2volt input\n (bsc#1051510).\n - hwmon: (core) Do not use device managed functions for memory allocations\n (bsc#1051510).\n - hwmon: (k10temp) Add support for AMD family 17h, model 70h CPUs\n (bsc#1163206).\n - hwmon: (nct7802) Fix voltage limits to wrong registers (bsc#1051510).\n - hwmon: (pmbus/ltc2978) Fix PMBus polling of MFR_COMMON definitions\n (bsc#1051510).\n - hwrng: stm32 - fix unbalanced pm_runtime_enable (bsc#1051510).\n - i2c: imx: do not print error message on probe defer (bsc#1051510).\n - ibmveth: Detect unsupported packets before sending to the hypervisor\n (bsc#1159484 ltc#182983).\n - ibmvfc: Fix NULL return compiler warning (bsc#1161951 ltc#183551).\n - ibmvnic: Bound waits for device queries (bsc#1155689 ltc#182047).\n - ibmvnic: Fix completion structure initialization (bsc#1155689\n ltc#182047).\n - ibmvnic: Serialize device queries (bsc#1155689 ltc#182047).\n - ibmvnic: Terminate waiting device threads after loss of service\n (bsc#1155689 ltc#182047).\n - ice: fix stack leakage (bsc#1118661).\n - idr: Fix idr_alloc_u32 on 32-bit systems (bsc#1051510).\n - iio: adc: max9611: Fix too short conversion time delay (bsc#1051510).\n - iio: buffer: align the size of scan bytes to size of the largest element\n (bsc#1051510).\n - inet: protect against too small mtu values (networking-stable-19_12_16).\n - iommu/amd: Fix IOMMU perf counter clobbering during init (bsc#1162617).\n - iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA\n (bsc#1164314).\n - iommu/io-pgtable-arm: Fix race handling in split_blk_unmap()\n (bsc#1164115).\n - iommu/iova: Init the struct iova to fix the possible memleak\n (bsc#1160469).\n - iommu/mediatek: Correct the flush_iotlb_all callback (bsc#1160470).\n - iommu/vt-d: Unlink device if failed to add to group (bsc#1160756).\n - iommu: Remove device link to group on failure (bsc#1160755).\n - ipmi: Do not allow device module unload when in use (bsc#1154768).\n - ipv4: Fix table id reference in fib_sync_down_addr\n (networking-stable-19_11_10).\n - ipv4: ensure rcu_read_lock() in cipso_v4_error() (git-fixes).\n - ipv6: restrict IPV6_ADDRFORM operation (bsc#1109837).\n - iwlegacy: ensure loop counter addr does not wrap and cause an infinite\n loop (git-fixes).\n - iwlwifi: change monitor DMA to be coherent (bsc#1161243).\n - iwlwifi: clear persistence bit according to device family (bsc#1111666).\n - iwlwifi: do not throw error when trying to remove IGTK (bsc#1051510).\n - iwlwifi: mvm: Send non offchannel traffic via AP sta (bsc#1051510).\n - iwlwifi: mvm: fix NVM check for 3168 devices (bsc#1051510).\n - iwlwifi: mvm: force TCM re-evaluation on TCM resume (bsc#1111666).\n - iwlwifi: mvm: synchronize TID queue removal (bsc#1051510).\n - iwlwifi: pcie: fix erroneous print (bsc#1111666).\n - iwlwifi: trans: Clear persistence bit when starting the FW (bsc#1111666).\n - jbd2: Fix possible overflow in jbd2_log_space_left() (bsc#1163860).\n - jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info\n when load journal (bsc#1163862).\n - jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer\n (bsc#1163836).\n - jbd2: make sure ESHUTDOWN to be recorded in the journal superblock\n (bsc#1163863).\n - jbd2: move the clearing of b_modified flag to the journal_unmap_buffer()\n (bsc#1163880).\n - jbd2: switch to use jbd2_journal_abort() when failed to submit the\n commit record (bsc#1163852).\n - kABI fix for &quot;ipmi: Do not allow device module unload when in use&quot;\n (bsc#1154768).\n - kABI fixup for alloc_dax_region (bsc#1158071,bsc#1160678).\n - kABI workaround for can/skb.h inclusion (bsc#1051510).\n - crypto/dh: Make sure the FIPS pubkey check is only executed in FIPS mode.\n - kABI: Protest new fields in BPF structs (bsc#1160618).\n - kABI: add _q suffix to exports that take struct dh (bsc#1155331).\n - kABI: protect struct sctp_ep_common (kabi).\n - kabi/severities: Whitelist rpaphp_get_drc_props (bsc#1157480 ltc#181028).\n - kconfig: fix broken dependency in randconfig-generated .config\n (bsc#1051510).\n - kernel-binary.spec.in: do not recommend firmware for kvmsmall and azure\n flavor (boo#1161360).\n - kernel/module.c: Only return -EEXIST for modules that have finished\n loading (bsc#1165488).\n - kernel/module.c: wakeup processes in module_wq on module unload\n (bsc#1165488).\n - kernel/trace: Fix do not unregister tracepoints when register\n sched_migrate_task fail (bsc#1160787).\n - kernfs: Fix range checks in kernfs_get_target_path (bsc#1051510).\n - kexec: bail out upon SIGKILL when allocating memory (git-fixes).\n - kvm: x86: Host feature SSBD does not imply guest feature SPEC_CTRL_SSBD\n (bsc#1160476).\n - l2tp: Allow duplicate session creation with UDP\n (networking-stable-20_02_05).\n - lcoking/rwsem: Add missing ACQUIRE to read_slowpath sleep loop\n (bsc#1050549).\n - leds: Allow to call led_classdev_unregister() unconditionally\n (bsc#1161674).\n - leds: class: ensure workqueue is initialized before setting brightness\n (bsc#1161674).\n - lib/scatterlist.c: adjust indentation in __sg_alloc_table (bsc#1051510).\n - lib/test_kasan.c: fix memory leak in kmalloc_oob_krealloc_more()\n (bsc#1051510).\n - lib: crc64: include &lt;linux/crc64.h&gt; for 'crc64_be' (bsc#1163762).\n - libnvdimm-fix-devm_nsio_enable-kabi.patch: Fixup compiler warning\n - libnvdimm/namespace: Differentiate between probe mapping and runtime\n mapping (bsc#1153535).\n - libnvdimm/pfn: Account for PAGE_SIZE &gt; info-block-size in nd_pfn_init()\n (bsc#1127682 bsc#1153535 ltc#175033 ltc#181834).\n - libnvdimm: Fix devm_nsio_enable() kabi (bsc#1153535).\n - livepatch/samples/selftest: Use klp_shadow_alloc() API correctly\n (bsc#1071995).\n - livepatch/selftest: Clean up shadow variable names and type\n (bsc#1071995).\n - locking/rwsem: Prevent decrement of reader count before increment\n (bsc#1050549).\n - mac80211: Do not send Layer 2 Update frame before authorization\n (bsc#1051510).\n - mac80211: Fix TKIP replay protection immediately after key setup\n (bsc#1051510).\n - mac80211: fix ieee80211_txq_setup_flows() failure path (bsc#1111666).\n - mac80211: fix station inactive_time shortly after boot (bsc#1051510).\n - mac80211: mesh: restrict airtime metric to peered established plinks\n (bsc#1051510).\n - macvlan: do not assume mac_header is set in macvlan_broadcast()\n (bsc#1051510).\n - macvlan: use skb_reset_mac_header() in macvlan_queue_xmit()\n (bsc#1051510).\n - mailbox: mailbox-test: fix null pointer if no mmio (bsc#1051510).\n - md/raid0: Fix buffer overflow at debug print (bsc#1164051).\n - media/v4l2-core: set pages dirty upon releasing DMA buffers\n (bsc#1051510).\n - media: af9005: uninitialized variable printked (bsc#1051510).\n - media: cec.h: CEC_OP_REC_FLAG_ values were swapped (bsc#1051510).\n - media: cec: CEC 2.0-only bcast messages were ignored (git-fixes).\n - media: cec: report Vendor ID after initialization (bsc#1051510).\n - media: digitv: do not continue if remote control state can't be read\n (bsc#1051510).\n - media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 (bsc#1051510).\n - media: exynos4-is: fix wrong mdev and v4l2 dev order in error path\n (git-fixes).\n - media: gspca: zero usb_buf (bsc#1051510).\n - media: iguanair: fix endpoint sanity check (bsc#1051510).\n - media: ov6650: Fix control handler not freed on init error (git-fixes).\n - media: ov6650: Fix crop rectangle alignment not passed back (git-fixes).\n - media: ov6650: Fix incorrect use of JPEG colorspace (git-fixes).\n - media: pulse8-cec: fix lost cec_transmit_attempt_done() call.\n - media: pulse8-cec: return 0 when invalidating the logical address\n (bsc#1051510).\n - media: stkwebcam: Bugfix for wrong return values (bsc#1051510).\n - media: uvcvideo: Avoid cyclic entity chains due to malformed USB\n descriptors (bsc#1051510).\n - media: uvcvideo: Fix error path in control parsing failure (git-fixes).\n - media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE (bsc#1051510).\n - media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT (bsc#1051510).\n - media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments\n (bsc#1051510).\n - mei: bus: prefix device names on bus with the bus name (bsc#1051510).\n - mfd: da9062: Fix watchdog compatible string (bsc#1051510).\n - mfd: dln2: More sanity checking for endpoints (bsc#1051510).\n - mfd: rn5t618: Mark ADC control register volatile (bsc#1051510).\n - missing escaping of backslashes in macro expansions (bsc#1143959)\n - mlxsw: spectrum: Wipe xstats.backlog of down ports (bsc#1112374).\n - mlxsw: spectrum_qdisc: Ignore grafting of invisible FIFO (bsc#1112374).\n - mlxsw: spectrum_qdisc: Include MC TCs in Qdisc counters (bsc#1112374).\n - mlxsw: spectrum_router: Fix determining underlay for a GRE tunnel\n (bsc#1112374).\n - mm, memory_hotplug: do not clear numa_node association after hot_remove\n (bnc#1115026).\n - mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock\n (bsc#1159394).\n - mm: memory_hotplug: use put_device() if device_register fail\n (bsc#1159955 ltc#182993).\n - mmc: mediatek: fix CMD_TA to 2 for MT8173 HS200/HS400 mode (bsc#1051510).\n - mmc: sdhci-of-esdhc: Revert &quot;mmc: sdhci-of-esdhc: add erratum A-009204\n support&quot; (bsc#1051510).\n - mmc: sdhci-of-esdhc: fix P2020 errata handling (bsc#1051510).\n - mmc: sdhci: Add a quirk for broken command queuing (git-fixes).\n - mmc: sdhci: Workaround broken command queuing on Intel GLK (git-fixes).\n - mmc: sdhci: fix minimum clock rate for v3 controller (bsc#1051510).\n - mmc: spi: Toggle SPI polarity, do not hardcode it (bsc#1051510).\n - mmc: tegra: fix SDR50 tuning override (bsc#1051510).\n - mod_devicetable: fix PHY module format (networking-stable-19_12_28).\n - moduleparam: fix parameter description mismatch (bsc#1051510).\n - mqprio: Fix out-of-bounds access in mqprio_dump (bsc#1109837).\n - mtd: fix mtd_oobavail() incoherent returned value (bsc#1051510).\n - mwifiex: debugfs: correct histogram spacing, formatting (bsc#1051510).\n - mwifiex: delete unused mwifiex_get_intf_num() (bsc#1111666).\n - mwifiex: drop most magic numbers from\n mwifiex_process_tdls_action_frame() (git-fixes).\n - mwifiex: fix potential NULL dereference and use after free (bsc#1051510).\n - mwifiex: update set_mac_address logic (bsc#1111666).\n - namei: only return -ECHILD from follow_dotdot_rcu() (bsc#1163851).\n - net, ip6_tunnel: fix namespaces move (networking-stable-20_01_27).\n - net, ip_tunnel: fix namespaces move (networking-stable-20_01_27).\n - net, sysctl: Fix compiler warning when only cBPF is present\n (bsc#1109837).\n - net-sysfs: Fix reference count leak (networking-stable-20_01_27).\n - net/ethtool: Introduce link_ksettings API for virtual network devices\n (bsc#1136157 ltc#177197).\n - net/ibmvnic: Fix typo in retry check (bsc#1155689 ltc#182047).\n - net/mlx4_en: Fix wrong limitation for number of TX rings (bsc#1103989).\n - net/mlx4_en: fix mlx4 ethtool -N insertion (networking-stable-19_11_25).\n - net/mlx5: Accumulate levels for chains prio namespaces (bsc#1103990).\n - net/mlx5: Fix lowest FDB pool size (bsc#1103990).\n - net/mlx5: IPsec, Fix esp modify function attribute (bsc#1103990 ).\n - net/mlx5: IPsec, fix memory leak at mlx5_fpga_ipsec_delete_sa_ctx\n (bsc#1103990).\n - net/mlx5: Update the list of the PCI supported devices (bsc#1127611).\n - net/mlx5: Update the list of the PCI supported devices (bsc#1127611).\n - net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (bsc#1046303).\n - net/mlx5e: Fix SFF 8472 eeprom length (git-fixes).\n - net/mlx5e: Fix set vf link state error flow (networking-stable-19_11_25).\n - net/mlx5e: Query global pause state before setting prio2buffer\n (bsc#1103990).\n - net/mlxfw: Fix out-of-memory error in mfa2 flash burning (bsc#1051858).\n - net/mlxfw: Verify FSM error code translation does not exceed array size\n (bsc#1051858).\n - net/sched: act_pedit: fix WARN() in the traffic path\n (networking-stable-19_11_25).\n - net/tls: fix async operation (bsc#1109837).\n - net/tls: free the record on encryption error (bsc#1109837).\n - net/tls: take into account that bpf_exec_tx_verdict() may free the\n record (bsc#1109837).\n - net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info\n (networking-stable-20_01_20).\n - net: Fix Tx hash bound checking (bsc#1109837).\n - net: add sendmsg_locked and sendpage_locked to af_inet6 (bsc#1144162).\n - net: bridge: deny dev_set_mac_address() when unregistering\n (networking-stable-19_12_16).\n - net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() (git-fixes).\n - net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM\n (networking-stable-20_01_27).\n - net: dsa: mv88e6xxx: Preserve priority when setting CPU port\n (networking-stable-20_01_11).\n - net: dsa: tag_qca: fix doubled Tx statistics\n (networking-stable-20_01_20).\n - net: dst: Force 4-byte alignment of dst_metrics\n (networking-stable-19_12_28).\n - net: ena: fix napi handler misbehavior when the napi budget is zero\n (networking-stable-20_01_01).\n - net: ethernet: octeon_mgmt: Account for second possible VLAN header\n (networking-stable-19_11_10).\n - net: ethernet: ti: cpsw: fix extra rx interrupt\n (networking-stable-19_12_16).\n - net: fix data-race in neigh_event_send() (networking-stable-19_11_10).\n - net: hisilicon: Fix a BUG trigered by wrong bytes_compl\n (networking-stable-19_12_28).\n - net: hns3: fix ETS bandwidth validation bug (bsc#1104353 ).\n - net: hns3: fix a copying IPv6 address error in\n hclge_fd_get_flow_tuples() (bsc#1104353).\n - net: hns: fix soft lockup when there is not enough memory\n (networking-stable-20_01_20).\n - net: hsr: fix possible NULL deref in hsr_handle_frame()\n (networking-stable-20_02_05).\n - net: ip6_gre: fix moving ip6gre between namespaces\n (networking-stable-20_01_27).\n - net: nfc: nci: fix a possible sleep-in-atomic-context bug in\n nci_uart_tty_receive() (networking-stable-19_12_28).\n - net: phy: Check against net_device being NULL (bsc#1051510).\n - net: phy: Fix not to call phy_resume() if PHY is not attached\n (bsc#1051510).\n - net: phy: Fix the register offsets in Broadcom iProc mdio mux driver\n (bsc#1051510).\n - net: phy: at803x: Change error to EINVAL for invalid MAC (bsc#1051510).\n - net: phy: broadcom: Use strlcpy() for ethtool::get_strings (bsc#1051510).\n - net: phy: dp83867: Set up RGMII TX delay (bsc#1051510).\n - net: phy: fixed_phy: Fix fixed_phy not checking GPIO (bsc#1051510).\n - net: phy: marvell: Use strlcpy() for ethtool::get_strings (bsc#1051510).\n - net: phy: marvell: clear wol event before setting it (bsc#1051510).\n - net: phy: meson-gxl: check phy_write return value (bsc#1051510).\n - net: phy: micrel: Use strlcpy() for ethtool::get_strings (bsc#1051510).\n - net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32 (bsc#1051510).\n - net: phy: mscc: read 'vsc8531,vddmac' as an u32 (bsc#1051510).\n - net: phy: xgene: disable clk on error paths (bsc#1051510).\n - net: phy: xgmiitorgmii: Check phy_driver ready before accessing\n (bsc#1051510).\n - net: phy: xgmiitorgmii: Check read_status results (bsc#1051510).\n - net: phy: xgmiitorgmii: Support generic PHY status read (bsc#1051510).\n - net: psample: fix skb_over_panic (networking-stable-19_12_03).\n - net: qlogic: Fix error paths in ql_alloc_large_buffers()\n (networking-stable-19_12_28).\n - net: rtnetlink: prevent underflows in do_setvfinfo()\n (networking-stable-19_11_25).\n - net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link()\n (networking-stable-20_01_27).\n - net: sch_prio: When ungrafting, replace with FIFO\n (networking-stable-20_01_11).\n - net: sched: correct flower port blocking (git-fixes).\n - net: sched: ensure opts_len &lt;= IP_TUNNEL_OPTS_MAX in act_tunnel_key\n (bsc#1109837).\n - net: sched: fix `tc -s class show` no bstats on class with nolock\n subqueues (networking-stable-19_12_03).\n - net: sched: fix dump qlen for sch_mq/sch_mqprio with NOLOCK subqueues\n (bsc#1109837).\n - net: stmmac: Delete txtimer in suspend() (networking-stable-20_02_05).\n - net: stmmac: dwmac-sunxi: Allow all RGMII modes\n (networking-stable-20_01_11).\n - net: usb: lan78xx: Add .ndo_features_check (networking-stable-20_01_27).\n - net: usb: lan78xx: Fix suspend/resume PHY register access error\n (networking-stable-19_12_28).\n - net: usb: lan78xx: fix possible skb leak (networking-stable-20_01_11).\n - net: usb: lan78xx: limit size of local TSO packets (bsc#1051510).\n - net: usb: qmi_wwan: add support for DW5821e with eSIM support\n (networking-stable-19_11_10).\n - net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules\n (networking-stable-19_11_18).\n - net_sched: ematch: reject invalid TCF_EM_SIMPLE\n (networking-stable-20_01_30).\n - net_sched: fix an OOB access in cls_tcindex (networking-stable-20_02_05).\n - net_sched: fix datalen for ematch (networking-stable-20_01_27).\n - netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes).\n - new helper: lookup_positive_unlocked() (bsc#1159271).\n - nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info\n (bsc#1163774).\n - openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info()\n (networking-stable-19_12_03).\n - openvswitch: remove another BUG_ON() (networking-stable-19_12_03).\n - openvswitch: support asymmetric conntrack (networking-stable-19_12_16).\n - orinoco_usb: fix interface sanity check (git-fixes).\n - percpu: Separate decrypted varaibles anytime encryption can be enabled\n (bsc#1114279).\n - perf/x86/intel: Fix inaccurate period in context switch for auto-reload\n (bsc#1164315).\n - phy: qualcomm: Adjust indentation in read_poll_timeout (bsc#1051510).\n - pinctrl: cherryview: Fix irq_valid_mask calculation (bsc#1111666).\n - pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues (bsc#1051510).\n - pinctrl: sh-pfc: r8a7778: Fix duplicate SDSELF_B and SD1_CLK_B\n (bsc#1051510).\n - pinctrl: xway: fix gpio-hog related boot issues (bsc#1051510).\n - pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM\n (networking-stable-20_01_11).\n - pktcdvd: remove warning on attempting to register non-passthrough dev\n (bsc#1051510).\n - platform/mellanox: fix potential deadlock in the tmfifo driver\n (bsc#1136333 jsc#SLE-4994).\n - platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0\n (bsc#1051510).\n - platform/x86: hp-wmi: Fix ACPI errors caused by passing 0 as input size\n (bsc#1051510).\n - platform/x86: hp-wmi: Fix ACPI errors caused by too small buffer\n (bsc#1051510).\n - platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes\n (bsc#1051510).\n - platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI\n table (bsc#1051510).\n - power: supply: ltc2941-battery-gauge: fix use-after-free (bsc#1051510).\n - powerpc/archrandom: fix arch_get_random_seed_int() (bsc#1065729).\n - powerpc/irq: fix stack overflow verification (bsc#1065729).\n - powerpc/mm: Remove kvm radix prefetch workaround for Power9 DD2.2\n (bsc#1061840).\n - powerpc/mm: drop #ifdef CONFIG_MMU in is_ioremap_addr() (bsc#1065729).\n - powerpc/papr_scm: Do not enable direct map for a region by default\n (bsc#1129551).\n - powerpc/papr_scm: Fix leaking 'bus_desc.provider_name' in some paths\n (bsc#1142685 ltc#179509).\n - powerpc/pkeys: remove unused pkey_allows_readwrite (bsc#1065729).\n - powerpc/powernv: Disable native PCIe port management (bsc#1065729).\n - powerpc/pseries/hotplug-memory: Change rc variable to bool (bsc#1065729).\n - powerpc/pseries/lparcfg: Fix display of Maximum Memory (bsc#1162028\n ltc#181740).\n - powerpc/pseries/memory-hotplug: Only update DT once per memory DLPAR\n request (bsc#1165404 ltc#183498).\n - powerpc/pseries/mobility: notify network peers after migration\n (bsc#1152631 ltc#181798).\n - powerpc/pseries/vio: Fix iommu_table use-after-free refcount warning\n (bsc#1065729).\n - powerpc/pseries: Add cpu DLPAR support for drc-info property\n (bsc#1157480 ltc#181028).\n - powerpc/pseries: Advance pfn if section is not present in\n lmb_is_removable() (bsc#1065729).\n - powerpc/pseries: Allow not having ibm,\n hypertas-functions::hcall-multi-tce for DDW (bsc#1065729).\n - powerpc/pseries: Avoid NULL pointer dereference when drmem is\n unavailable (bsc#1160659).\n - powerpc/pseries: Drop pointless static qualifier in vpa_debugfs_init()\n (git-fixes).\n - powerpc/pseries: Enable support for ibm,drc-info property (bsc#1157480\n ltc#181028).\n - powerpc/pseries: Fix bad drc_index_start value parsing of drc-info entry\n (bsc#1157480 ltc#181028).\n - powerpc/pseries: Fix drc-info mappings of logical cpus to drc-index\n (bsc#1157480 ltc#181028).\n - powerpc/pseries: Fix vector5 in ibm architecture vector table\n (bsc#1157480 ltc#181028).\n - powerpc/pseries: Revert support for ibm,drc-info devtree property\n (bsc#1157480 ltc#181028).\n - powerpc/pseries: group lmb operation and memblock's (bsc#1165404\n ltc#183498).\n - powerpc/pseries: update device tree before ejecting hotplug uevents\n (bsc#1165404 ltc#183498).\n - powerpc/security: Fix debugfs data leak on 32-bit (bsc#1065729).\n - powerpc/smp: Use nid as fallback for package_id (bsc#1165813 ltc#184091).\n - powerpc/tm: Fix clearing MSR[TS] in current when reclaiming on signal\n delivery (bsc#1118338 ltc#173734).\n - powerpc/tools: Do not quote $objdump in scripts (bsc#1065729).\n - powerpc/xive: Discard ESB load value when interrupt is invalid\n (bsc#1085030).\n - powerpc/xive: Skip ioremap() of ESB pages for LSI interrupts\n (bsc#1085030).\n - powerpc/xmon: do not access ASDR in VMs (bsc#1065729).\n - powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges\n &gt;4GB (bnc#1151927 5.3.17).\n - powerpc: Allow flush_icache_range to work across ranges &gt;4GB\n (bnc#1151927 5.3.17).\n - powerpc: Enable support for ibm,drc-info devtree property (bsc#1157480\n ltc#181028).\n - powerpc: Fix vDSO clock_getres() (bsc#1065729).\n - powerpc: avoid adjusting memory_limit for capture kernel memory\n reservation (bsc#1140025 ltc#176086).\n - powerpc: reserve memory for capture kernel after hugepages init\n (bsc#1140025 ltc#176086).\n - ppp: Adjust indentation into ppp_async_input (git-fixes).\n - prevent active file list thrashing due to refault detection (VM\n Performance, bsc#1156286).\n - pseries/drc-info: Search DRC properties for CPU indexes (bsc#1157480\n ltc#181028).\n - pstore/ram: Write new dumps to start of recycled zones (bsc#1051510).\n - ptr_ring: add include of linux/mm.h (bsc#1109837).\n - pwm: Clear chip_data in pwm_put() (bsc#1051510).\n - pwm: Remove set but not set variable 'pwm' (git-fixes).\n - pwm: clps711x: Fix period calculation (bsc#1051510).\n - pwm: omap-dmtimer: Remove PWM chip in .remove before making it\n unfunctional (git-fixes).\n - pxa168fb: Fix the function used to release some memory in an error\n (bsc#1114279)\n - qede: Disable hardware gro when xdp prog is installed (bsc#1086314\n bsc#1086313 bsc#1086301 ).\n - qede: Fix multicast mac configuration (networking-stable-19_12_28).\n - qede: fix NULL pointer deref in __qede_remove()\n (networking-stable-19_11_10).\n - qmi_wwan: Add support for Quectel RM500Q (bsc#1051510).\n - quota: Check that quota is not dirty before release (bsc#1163858).\n - quota: fix livelock in dquot_writeback_dquots (bsc#1163857).\n - r8152: add missing endpoint sanity check (bsc#1051510).\n - r8152: get default setting of WOL before initializing (bsc#1051510).\n - random: move FIPS continuous test to output functions (bsc#1155334).\n - regulator: Fix return value of _set_load() stub (bsc#1051510).\n - regulator: rk808: Lower log level on optional GPIOs being not available\n (bsc#1051510).\n - regulator: rn5t618: fix module aliases (bsc#1051510).\n - regulator: tps65910: fix a missing check of return value (bsc#1051510).\n - reiserfs: Fix memory leak of journal device string (bsc#1163867).\n - reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling\n (bsc#1163869).\n - reset: fix reset_control_ops kerneldoc comment (bsc#1051510).\n - resource: fix locking in find_next_iomem_res() (bsc#1114279).\n - rpm/kabi.pl: support new (&gt;=5.4) Module.symvers format (new symbol\n namespace field)\n - rpm/kernel-binary.spec.in: Conflict with too old powerpc-utils\n (jsc#ECO-920, jsc#SLE-11054, jsc#SLE-11322).\n - rpm/kernel-subpackage-spec: Exclude kernel-firmware recommends\n (bsc#1143959) For reducing the dependency on kernel-firmware in sub\n packages\n - rpm/kernel-subpackage-spec: Fix empty Recommends tag (bsc#1143959)\n - rpm/modules.fips: update module list (bsc#1157853)\n - rsi_91x_usb: fix interface sanity check (git-fixes).\n - rtc: cmos: Stop using shared IRQ (bsc#1051510).\n - rtc: dt-binding: abx80x: fix resistance scale (bsc#1051510).\n - rtc: hym8563: Return -EINVAL if the time is known to be invalid\n (bsc#1051510).\n - rtc: max8997: Fix the returned value in case of error in\n 'max8997_rtc_read_alarm()' (bsc#1051510).\n - rtc: msm6242: Fix reading of 10-hour digit (bsc#1051510).\n - rtc: pcf8523: set xtal load capacitance from DT (bsc#1051510).\n - rtc: s35390a: Change buf's type to u8 in s35390a_init (bsc#1051510).\n - rtl818x: fix potential use after free (bsc#1051510).\n - rtl8xxxu: fix interface sanity check (git-fixes).\n - rtlwifi: Fix MAX MPDU of VHT capability (git-fixes).\n - rtlwifi: Remove redundant semicolon in wifi.h (git-fixes).\n - rtlwifi: rtl8192de: Fix missing callback that tests for hw release of\n buffer (bsc#1111666).\n - rxrpc: Fix insufficient receive notification generation\n (networking-stable-20_02_05).\n - s390/qeth: clean up page frag creation (git-fixes).\n - s390/qeth: consolidate skb allocation (git-fixes).\n - s390/qeth: ensure linear access to packet headers (git-fixes).\n - s390/qeth: guard against runt packets (git-fixes).\n - sched/fair: Add tmp_alone_branch assertion (bnc#1156462).\n - sched/fair: Fix O(nr_cgroups) in the load balancing path (bnc#1156462).\n - sched/fair: Fix insertion in rq-&gt;leaf_cfs_rq_list (bnc#1156462).\n - sched/fair: Optimize update_blocked_averages() (bnc#1156462).\n - sched/fair: WARN() and refuse to set buddy when !se-&gt;on_rq (bsc#1158132).\n - scsi-qla2xxx-Fix-qla2x00_request_irqs-for-MSI.patch\n - scsi-qla2xxx-fix-rports-not-being-mark-as-lost-in-sy.patch\n - scsi-qla2xxx-unregister-ports-after-GPN_FT-failure.patch\n - scsi: fnic: do not queue commands during fwreset (bsc#1146539).\n - scsi: ibmvfc: Add failed PRLI to cmd_status lookup array (bsc#1161951\n ltc#183551).\n - scsi: ibmvfc: Avoid loss of all paths during SVC node reboot\n (bsc#1161951 ltc#183551).\n - scsi: ibmvfc: Byte swap status and error codes when logging (bsc#1161951\n ltc#183551).\n - scsi: ibmvfc: Clean up transport events (bsc#1161951 ltc#183551).\n - scsi: ibmvfc: Do not call fc_block_scsi_eh() on host reset (bsc#1161951\n ltc#183551).\n - scsi: ibmvfc: Mark expected switch fall-throughs (bsc#1161951\n ltc#183551).\n - scsi: ibmvfc: Remove &quot;failed&quot; from logged errors (bsc#1161951\n ltc#183551).\n - scsi: ibmvfc: Remove unneeded semicolons (bsc#1161951 ltc#183551).\n - scsi: ibmvfc: constify dev_pm_ops structures (bsc#1161951 ltc#183551).\n - scsi: ibmvfc: ibmvscsi: ibmvscsi_tgt: constify vio_device_id\n (bsc#1161951 ltc#183551).\n - scsi: ibmvscsi: Do not use rc uninitialized in ibmvscsi_do_work\n (bsc#1161951 ltc#183551).\n - scsi: ibmvscsi: Improve strings handling (bsc#1161951 ltc#183551).\n - scsi: ibmvscsi: Wire up host_reset() in the driver's scsi_host_template\n (bsc#1161951 ltc#183551).\n - scsi: ibmvscsi: change strncpy+truncation to strlcpy (bsc#1161951\n ltc#183551).\n - scsi: ibmvscsi: constify dev_pm_ops structures (bsc#1161951 ltc#183551).\n - scsi: ibmvscsi: fix tripping of blk_mq_run_hw_queue WARN_ON (bsc#1161951\n ltc#183551).\n - scsi: ibmvscsi: redo driver work thread to use enum action states\n (bsc#1161951 ltc#183551).\n - scsi: lpfc: fix build failure with DEBUGFS disabled (bsc#1154601).\n - scsi: qla2xxx: Add 16.0GT for PCI String (bsc#1157424).\n - scsi: qla2xxx: Add D-Port Diagnostic reason explanation logs\n (bsc#1158013).\n - scsi: qla2xxx: Add a shadow variable to hold disc_state history of\n fcport (bsc#1158013).\n - scsi: qla2xxx: Add beacon LED config sysfs interface (bsc#1157424).\n - scsi: qla2xxx: Add changes in preparation for vendor extended FDMI/RDP\n (bsc#1157424).\n - scsi: qla2xxx: Add deferred queue for processing ABTS and RDP\n (bsc#1157424).\n - scsi: qla2xxx: Add endianizer macro calls to fc host stats (bsc#1157424).\n - scsi: qla2xxx: Add fixes for mailbox command (bsc#1157424).\n - scsi: qla2xxx: Add ql2xrdpenable module parameter for RDP (bsc#1157424).\n - scsi: qla2xxx: Add sysfs node for D-Port Diagnostics AEN data\n (bsc#1157424).\n - scsi: qla2xxx: Add vendor extended FDMI commands (bsc#1157424).\n - scsi: qla2xxx: Add vendor extended RDP additions and amendments\n (bsc#1157424).\n - scsi: qla2xxx: Added support for MPI and PEP regions for ISP28XX\n (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).\n - scsi: qla2xxx: Avoid setting firmware options twice in\n 24xx_update_fw_options (bsc#1157424).\n - scsi: qla2xxx: Check locking assumptions at runtime in\n qla2x00_abort_srb() (bsc#1157424).\n - scsi: qla2xxx: Cleanup ELS/PUREX iocb fields (bsc#1157424).\n - scsi: qla2xxx: Cleanup unused async_logout_done (bsc#1158013).\n - scsi: qla2xxx: Consolidate fabric scan (bsc#1158013).\n - scsi: qla2xxx: Convert MAKE_HANDLE() from a define into an inline\n function (bsc#1157424).\n - scsi: qla2xxx: Correct fcport flags handling (bsc#1158013).\n - scsi: qla2xxx: Correction to selection of loopback/echo test\n (bsc#1157424).\n - scsi: qla2xxx: Correctly retrieve and interpret active flash region\n (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).\n - scsi: qla2xxx: Display message for FCE enabled (bsc#1157424).\n - scsi: qla2xxx: Fix FCP-SCSI FC4 flag passing error (bsc#1157424).\n - scsi: qla2xxx: Fix NPIV instantiation after FW dump (bsc#1157424).\n - scsi: qla2xxx: Fix RDP respond data format (bsc#1157424).\n - scsi: qla2xxx: Fix RDP response size (bsc#1157424).\n - scsi: qla2xxx: Fix RIDA Format-2 (bsc#1158013).\n - scsi: qla2xxx: Fix a NULL pointer dereference in an error path\n (bsc#1157966 bsc#1158013 bsc#1157424).\n - scsi: qla2xxx: Fix control flags for login/logout IOCB (bsc#1157424).\n - scsi: qla2xxx: Fix fabric scan hang (bsc#1158013).\n - scsi: qla2xxx: Fix incorrect SFUB length used for Secure Flash Update MB\n Cmd (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).\n - scsi: qla2xxx: Fix mtcp dump collection failure (bsc#1158013).\n - scsi: qla2xxx: Fix qla2x00_echo_test() based on ISP type (bsc#1157424).\n - scsi: qla2xxx: Fix sparse warning reported by kbuild bot (bsc#1157424).\n - scsi: qla2xxx: Fix sparse warnings triggered by the PCI state checking\n code (bsc#1157424).\n - scsi: qla2xxx: Fix stuck login session using prli_pend_timer\n (bsc#1158013).\n - scsi: qla2xxx: Fix stuck session in GNL (bsc#1158013).\n - scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return\n type (bsc#1158013).\n - scsi: qla2xxx: Fix unbound NVME response length (bsc#1157966 bsc#1158013\n bsc#1157424).\n - scsi: qla2xxx: Fix update_fcport for current_topology (bsc#1158013).\n - scsi: qla2xxx: Force semaphore on flash validation failure (bsc#1157424).\n - scsi: qla2xxx: Handle NVME status iocb correctly (bsc#1157424).\n - scsi: qla2xxx: Handle cases for limiting RDP response payload length\n (bsc#1157424).\n - scsi: qla2xxx: Improve readability of the code that handles\n qla_flt_header (bsc#1158013).\n - scsi: qla2xxx: Improved secure flash support messages (bsc#1157424).\n - scsi: qla2xxx: Move free of fcport out of interrupt context\n (bsc#1157424).\n - scsi: qla2xxx: Print portname for logging in qla24xx_logio_entry()\n (bsc#1157424).\n - scsi: qla2xxx: Remove defer flag to indicate immeadiate port loss\n (bsc#1158013).\n - scsi: qla2xxx: Remove restriction of FC T10-PI and FC-NVMe (bsc#1157424).\n - scsi: qla2xxx: Return appropriate failure through BSG Interface\n (bsc#1157424).\n - scsi: qla2xxx: Save rscn_gen for new fcport (bsc#1157424).\n - scsi: qla2xxx: Serialize fc_port alloc in N2N (bsc#1157424).\n - scsi: qla2xxx: Set Nport ID for N2N (bsc#1157424).\n - scsi: qla2xxx: Show correct port speed capabilities for RDP command\n (bsc#1157424).\n - scsi: qla2xxx: Simplify the code for aborting SCSI commands\n (bsc#1157424).\n - scsi: qla2xxx: Suppress endianness complaints in\n qla2x00_configure_local_loop() (bsc#1157424).\n - scsi: qla2xxx: Update BPM enablement semantics (bsc#1157424).\n - scsi: qla2xxx: Update driver version to 10.01.00.22-k (bsc#1158013).\n - scsi: qla2xxx: Update driver version to 10.01.00.24-k (bsc#1157424).\n - scsi: qla2xxx: Update driver version to 10.01.00.25-k (bsc#1157424).\n - scsi: qla2xxx: Use FC generic update firmware options routine for\n ISP27xx (bsc#1157424).\n - scsi: qla2xxx: Use QLA_FW_STOPPED macro to propagate flag (bsc#1157424).\n - scsi: qla2xxx: Use a dedicated interrupt handler for\n 'handshake-required' ISPs (bsc#1157424).\n - scsi: qla2xxx: Use common routine to free fcport struct (bsc#1158013).\n - scsi: qla2xxx: Use correct ISP28xx active FW region (bsc#1157424).\n - scsi: qla2xxx: Use endian macros to assign static fields in fwdump\n header (bsc#1157424).\n - scsi: qla2xxx: Use get_unaligned_*() instead of open-coding these\n functions (bsc#1158013).\n - scsi: qla2xxx: add more FW debug information (bsc#1157424).\n - scsi: qla2xxx: fix FW resource count values (bsc#1157424).\n - scsi: tcm_qla2xxx: Make qlt_alloc_qfull_cmd() set cmd-&gt;se_cmd.map_tag\n (bsc#1157424).\n - scsi: zfcp: trace channel log even for FCP command responses (git-fixes).\n - sctp: cache netns in sctp_ep_common (networking-stable-19_12_03).\n - sctp: free cmd-&gt;obj.chunk for the unprocessed SCTP_CMD_REPLY\n (networking-stable-20_01_11).\n - sctp: fully initialize v4 addr in some functions\n (networking-stable-19_12_28).\n - serial: 8250_bcm2835aux: Fix line mismatch on driver unbind\n (bsc#1051510).\n - serial: ifx6x60: add missed pm_runtime_disable (bsc#1051510).\n - serial: max310x: Fix tx_empty() callback (bsc#1051510).\n - serial: pl011: Fix DMA -&gt;flush_buffer() (bsc#1051510).\n - serial: serial_core: Perform NULL checks for break_ctl ops (bsc#1051510).\n - serial: stm32: fix transmit_chars when tx is stopped (bsc#1051510).\n - sfc: Only cancel the PPS workqueue if it exists\n (networking-stable-19_11_25).\n - sfc: Remove 'PCIE error reporting unavailable' (bsc#1161472).\n - sh_eth: TSU_QTAG0/1 registers the same as TSU_QTAGM0/1 (bsc#1051510).\n - sh_eth: check sh_eth_cpu_data::dual_port when dumping registers\n (bsc#1051510).\n - sh_eth: fix TSU init on SH7734/R8A7740 (bsc#1051510).\n - sh_eth: fix TXALCR1 offsets (bsc#1051510).\n - sh_eth: fix dumping ARSTR (bsc#1051510).\n - sh_eth: fix invalid context bug while calling auto-negotiation by\n ethtool (bsc#1051510).\n - sh_eth: fix invalid context bug while changing link options by ethtool\n (bsc#1051510).\n - smb3: Add defines for new information level, FileIdInformation\n (bsc#1144333).\n - smb3: Add missing reparse tags (bsc#1144333).\n - smb3: Fix regression in time handling (bsc#1144333).\n - smb3: add debug messages for closing unmatched open (bsc#1144333).\n - smb3: add dynamic tracepoints for flush and close (bsc#1144333).\n - smb3: add missing flag definitions (bsc#1144333).\n - smb3: add missing worker function for SMB3 change notify (bsc#1144333).\n - smb3: add mount option to allow RW caching of share accessed by only 1\n client (bsc#1144333).\n - smb3: add mount option to allow forced caching of read only share\n (bsc#1144333).\n - smb3: add one more dynamic tracepoint missing from strict fsync path\n (bsc#1144333).\n - smb3: add some more descriptive messages about share when mounting\n cache=ro (bsc#1144333).\n - smb3: allow decryption keys to be dumped by admin for debugging\n (bsc#1144333).\n - smb3: allow disabling requesting leases (bsc#1144333).\n - smb3: allow parallelizing decryption of reads (bsc#1144333).\n - smb3: allow skipping signature verification for perf sensitive\n configurations (bsc#1144333).\n - smb3: cleanup some recent endian errors spotted by updated sparse\n (bsc#1144333).\n - smb3: display max smb3 requests in flight at any one time (bsc#1144333).\n - smb3: dump in_send and num_waiters stats counters by default\n (bsc#1144333).\n - smb3: enable offload of decryption of large reads via mount option\n (bsc#1144333).\n - smb3: fix default permissions on new files when mounting with\n modefromsid (bsc#1144333).\n - smb3: fix mode passed in on create for modetosid mount option\n (bsc#1144333).\n - smb3: fix performance regression with setting mtime (bsc#1144333).\n - smb3: fix potential null dereference in decrypt offload (bsc#1144333).\n - smb3: fix problem with null cifs super block with previous patch\n (bsc#1144333).\n - smb3: fix refcount underflow warning on unmount when no directory leases\n (bsc#1144333).\n - smb3: improve check for when we send the security descriptor context on\n create (bsc#1144333).\n - smb3: log warning if CSC policy conflicts with cache mount option\n (bsc#1144333).\n - smb3: missing ACL related flags (bsc#1144333).\n - smb3: only offload decryption of read responses if multiple requests\n (bsc#1144333).\n - smb3: pass mode bits into create calls (bsc#1144333).\n - smb3: query attributes on file close (bsc#1144333).\n - smb3: remove confusing dmesg when mounting with encryption (&quot;seal&quot;)\n (bsc#1144333).\n - smb3: remove noisy debug message and minor cleanup (bsc#1144333).\n - smb3: remove unused flag passed into close functions (bsc#1144333).\n - soc/tegra: fuse: Correct straps' address for older Tegra124 device trees\n (bsc#1051510).\n - soc: renesas: rcar-sysc: Add goto to of_node_put() before return\n (bsc#1051510).\n - soc: ti: wkup_m3_ipc: Fix race condition with rproc_boot (bsc#1051510).\n - spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch\n (bsc#1051510).\n - spi: omap2-mcspi: Set FIFO DMA trigger level to word length\n (bsc#1051510).\n - spi: tegra114: clear packed bit for unpacked mode (bsc#1051510).\n - spi: tegra114: configure dma burst size to fifo trig level (bsc#1051510).\n - spi: tegra114: fix for unpacked mode transfers (bsc#1051510).\n - spi: tegra114: flush fifos (bsc#1051510).\n - spi: tegra114: terminate dma and reset on transfer timeout (bsc#1051510).\n - sr_vendor: support Beurer GL50 evo CD-on-a-chip devices (boo#1164632).\n - staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713\n (bsc#1051510).\n - staging: rtl8188eu: fix interface sanity check (bsc#1051510).\n - staging: rtl8192e: fix potential use after free (bsc#1051510).\n - staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids\n (bsc#1051510).\n - staging: rtl8723bs: Drop ACPI device ids (bsc#1051510).\n - staging: vt6656: Fix false Tx excessive retries reporting (bsc#1051510).\n - staging: vt6656: correct packet types for CTS protect, mode\n (bsc#1051510).\n - staging: vt6656: use NULLFUCTION stack on mac80211 (bsc#1051510).\n - staging: wlan-ng: ensure error return is actually returned (bsc#1051510).\n - stm class: Fix a double free of stm_source_device (bsc#1051510).\n - stop_machine, sched: Fix migrate_swap() vs. active_balance() deadlock\n (bsc#1088810, bsc#1161702).\n - stop_machine: Atomically queue and wake stopper threads (bsc#1088810,\n bsc#1161702).\n - stop_machine: Disable preemption after queueing stopper threads\n (bsc#1088810, bsc#1161702).\n - stop_machine: Disable preemption when waking two stopper threads\n (bsc#1088810, bsc#1161702).\n - tcp: clear tp-&gt;data_segs{in|out} in tcp_disconnect()\n (networking-stable-20_02_05).\n - tcp: clear tp-&gt;delivered in tcp_disconnect()\n (networking-stable-20_02_05).\n - tcp: clear tp-&gt;packets_out when purging write queue (bsc#1160560).\n - tcp: clear tp-&gt;segs_{in|out} in tcp_disconnect()\n (networking-stable-20_02_05).\n - tcp: clear tp-&gt;total_retrans in tcp_disconnect()\n (networking-stable-20_02_05).\n - tcp: do not send empty skb from tcp_write_xmit()\n (networking-stable-20_01_01).\n - tcp: exit if nothing to retransmit on RTO timeout (bsc#1160560, stable\n 4.14.159).\n - tcp: fix &quot;old stuff&quot; D-SACK causing SACK to be treated as D-SACK\n (networking-stable-20_01_11).\n - tcp: fix marked lost packets not being retransmitted\n (networking-stable-20_01_20).\n - tcp: md5: fix potential overestimation of TCP option space\n (networking-stable-19_12_16).\n - tcp_bbr: improve arithmetic division in bbr_update_bw()\n (networking-stable-20_01_27).\n - thermal: Fix deadlock in thermal thermal_zone_device_check (bsc#1051510).\n - thunderbolt: Prevent crash if non-active NVMem file is read (git-fixes).\n - tipc: fix a missing check of genlmsg_put (bsc#1051510).\n - tipc: fix link name length check (bsc#1051510).\n - tipc: fix memory leak in tipc_nl_compat_publ_dump (bsc#1051510).\n - tipc: fix skb may be leaky in tipc_link_input (bsc#1051510).\n - tools lib traceevent: Do not free tep-&gt;cmdlines in add_new_comm() on\n failure (git-fixes).\n - tracing: Annotate ftrace_graph_hash pointer with __rcu (git-fixes).\n - tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu\n (git-fixes).\n - tracing: Fix tracing_stat return values in error handling paths\n (git-fixes).\n - tracing: Fix very unlikely race of registering two stat tracers\n (git-fixes).\n - tracing: Have the histogram compare functions convert to u64 first\n (bsc#1160210).\n - tracing: xen: Ordered comparison of function pointers (git-fixes).\n - tty/serial: atmel: Add is_half_duplex helper (bsc#1051510).\n - tty: n_hdlc: fix build on SPARC (bsc#1051510).\n - tty: serial: msm_serial: Fix lockup for sysrq and oops (bsc#1051510).\n - tty: vt: keyboard: reject invalid keycodes (bsc#1051510).\n - ttyprintk: fix a potential deadlock in interrupt context issue\n (git-fixes).\n - tun: add mutex_unlock() call and napi.skb clearing in tun_get_user()\n (bsc#1109837).\n - uaccess: Add non-pagefault user-space write function (bsc#1083647).\n - ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag\n (bsc#1163855).\n - ubifs: Fix deadlock in concurrent bulk-read and writepage (bsc#1163856).\n - ubifs: Reject unsupported ioctl flags explicitly (bsc#1163844).\n - ubifs: do not trigger assertion on invalid no-key filename (bsc#1163850).\n - udp: fix integer overflow while computing available space in sk_rcvbuf\n (networking-stable-20_01_01).\n - usb-storage: Disable UAS on JMicron SATA enclosure (bsc#1051510).\n - usb: Allow USB device to be warm reset in suspended state (bsc#1051510).\n - usb: chipidea: host: Disable port power only if previously enabled\n (bsc#1051510).\n - usb: core: hub: Improved device recognition on remote wakeup\n (bsc#1051510).\n - usb: core: urb: fix URB structure initialization function (bsc#1051510).\n - usb: dwc3: debugfs: Properly print/set link state for HS (bsc#1051510).\n - usb: dwc3: do not log probe deferrals; but do log other error codes\n (bsc#1051510).\n - usb: dwc3: ep0: Clear started flag on completion (bsc#1051510).\n - usb: dwc3: turn off VBUS when leaving host mode (bsc#1051510).\n - usb: gadget: Zero ffs_io_data (bsc#1051510).\n - usb: gadget: f_ecm: Use atomic_t to track in-flight request\n (bsc#1051510).\n - usb: gadget: f_ncm: Use atomic_t to track in-flight request\n (bsc#1051510).\n - usb: gadget: legacy: set max_speed to super-speed (bsc#1051510).\n - usb: gadget: pch_udc: fix use after free (bsc#1051510).\n - usb: gadget: u_serial: add missing port entry locking (bsc#1051510).\n - usb: host: xhci-hub: fix extra endianness conversion (bsc#1051510).\n - usb: mon: Fix a deadlock in usbmon between mmap and read (bsc#1051510).\n - usb: mtu3: fix dbginfo in qmu_tx_zlp_error_handler (bsc#1051510).\n - usb: musb: dma: Correct parameter passed to IRQ handler (bsc#1051510).\n - usb: musb: fix idling for suspend after disconnect interrupt\n (bsc#1051510).\n - usb: roles: fix a potential use after free (git-fixes).\n - usb: typec: tcpci: mask event interrupts when remove driver\n (bsc#1051510).\n - usb: xhci: Fix build warning seen with CONFIG_PM=n (bsc#1051510).\n - usb: xhci: only set D3hot for pci device (bsc#1051510).\n - usbip: Fix error path of vhci_recv_ret_submit() (git-fixes).\n - usbip: Fix receive error in vhci-hcd when using scatter-gather\n (bsc#1051510).\n - usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit()\n (git-fixes).\n - vfs: fix preadv64v2 and pwritev64v2 compat syscalls with offset == -1\n (bsc#1051510).\n - vhost/vsock: accept only packets with the right dst_cid\n (networking-stable-20_01_01).\n - video: backlight: Add devres versions of of_find_backlight (bsc#1090888)\n Taken for 6010831dde5.\n - video: backlight: Add of_find_backlight helper in backlight.c\n (bsc#1090888) Taken for 6010831dde5.\n - vlan: fix memory leak in vlan_dev_set_egress_priority\n (networking-stable-20_01_11).\n - vlan: vlan_changelink() should propagate errors\n (networking-stable-20_01_11).\n - vxlan: fix tos value before xmit (networking-stable-20_01_11).\n - watchdog: max77620_wdt: fix potential build errors (bsc#1051510).\n - watchdog: rn5t618_wdt: fix module aliases (bsc#1051510).\n - watchdog: sama5d4: fix WDD value to be always set to max (bsc#1051510).\n - watchdog: wdat_wdt: fix get_timeleft call for wdat_wdt (bsc#1162557).\n - wireless: fix enabling channel 12 for custom regulatory domain\n (bsc#1051510).\n - wireless: wext: avoid gcc -O3 warning (bsc#1051510).\n - workqueue: Fix pwq ref leak in rescuer_thread() (bsc#1160211).\n - x86/MCE/AMD: Allow Reserved types to be overwritten in smca_banks\n (bsc#1114279).\n - x86/MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure()\n (bsc#1114279).\n - x86/amd_nb: Add PCI device IDs for family 17h, model 70h (bsc#1163206).\n - x86/cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR\n (bsc#1162619).\n - x86/intel_rdt: Split resource group removal in two (bsc#1112178).\n - x86/intel_rdt: Split resource group removal in two (bsc#1112178).\n - x86/kgbd: Use NMI_VECTOR not APIC_DM_NMI (bsc#1114279).\n - x86/mce/AMD: Allow any CPU to initialize the smca_banks array\n (bsc#1114279).\n - x86/mce: Fix possibly incorrect severity calculation on AMD\n (bsc#1114279).\n - x86/resctrl: Check monitoring static key in the MBM overflow handler\n (bsc#1114279).\n - x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178).\n - x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178).\n - x86/resctrl: Fix an imbalance in domain_remove_cpu() (bsc#1114279).\n - x86/resctrl: Fix potential memory leak (bsc#1114279).\n - x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup\n (bsc#1112178).\n - x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup\n (bsc#1112178).\n - x86/resctrl: Fix use-after-free when deleting resource groups\n (bsc#1114279).\n - x86/speculation: Fix incorrect MDS/TAA mitigation status (bsc#1114279).\n - x86/speculation: Fix redundant MDS mitigation message (bsc#1114279).\n - xen-blkfront: switch kcalloc to kvcalloc for large array allocation\n (bsc#1160917).\n - xen/balloon: Support xend-based toolstack take two (bsc#1065600).\n - xen/blkback: Avoid unmapping unmapped grant pages (bsc#1065600).\n - xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk (bsc#1065600).\n - xen: Enable interrupts when calling _cond_resched() (bsc#1065600).\n - xfrm: Fix transport mode skb control buffer usage (bsc#1161552).\n - xfs: Fix tail rounding in xfs_alloc_file_space() (bsc#1161087,\n bsc#1153917).\n - xhci: Fix memory leak in xhci_add_in_port() (bsc#1051510).\n - xhci: Increase STS_HALT timeout in xhci_suspend() (bsc#1051510).\n - xhci: fix USB3 device initiated resume race with roothub autosuspend\n (bsc#1051510).\n - xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour\n (bsc#1051510).\n - xhci: make sure interrupts are restored to correct state (bsc#1051510).\n - zd1211rw: fix storage endpoint lookup (git-fixes).\n\n", "edition": 1, "modified": "2020-03-13T12:59:33", "published": "2020-03-13T12:59:33", "id": "OPENSUSE-SU-2020:0336-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00021.html", "title": "Security update for the Linux Kernel (important)", "type": "suse", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-12-12T18:20:13", "bulletinFamily": "unix", "cvelist": ["CVE-2019-19525", "CVE-2019-18683", "CVE-2019-19534", "CVE-2019-18809", "CVE-2019-19057", "CVE-2019-19075", "CVE-2019-19052", "CVE-2019-15211", "CVE-2019-14901", "CVE-2019-19524", "CVE-2019-19058", "CVE-2019-19062", "CVE-2019-19065", "CVE-2019-19082", "CVE-2019-19078", "CVE-2019-19227", "CVE-2019-19531", "CVE-2019-15213", "CVE-2019-19063", "CVE-2019-14895", "CVE-2019-19528", "CVE-2019-19083", "CVE-2019-19067", "CVE-2019-19068", "CVE-2019-19081", "CVE-2019-19529", "CVE-2019-19073", "CVE-2019-19077", "CVE-2019-19046", "CVE-2019-19530", "CVE-2019-19080", "CVE-2019-19543", "CVE-2019-18660", "CVE-2019-19074", "CVE-2019-15916", "CVE-2019-19060", "CVE-2019-19056", "CVE-2019-19536", "CVE-2019-19049"], "description": "The openSUSE Leap 15.1 kernel was updated to receive various security and\n bugfixes.\n\n The following security bugs were fixed:\n\n - CVE-2019-15211: There was a use-after-free caused by a malicious USB\n device in drivers/media/v4l2-core/v4l2-dev.c (bnc#1146519).\n - CVE-2019-15213: There was a use-after-free caused by a malicious USB\n device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver\n (bnc#1146544).\n - CVE-2019-19531: There was a use-after-free bug that can be caused by a\n malicious USB device in the drivers/usb/misc/yurex.c driver, aka\n CID-fc05481b2fca (bnc#1158427 1158445).\n - CVE-2019-19543: There is a use-after-free in serial_ir_init_module() in\n drivers/media/rc/serial_ir.c (bnc#1158427).\n - CVE-2019-19525: There is a use-after-free bug that can be caused by a\n malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka\n CID-7fd25e6fc035 (bnc#1158417).\n - CVE-2019-19530: There is a use-after-free bug that can be caused by a\n malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka\n CID-c52873e5a1ef (bnc#1158410).\n - CVE-2019-19536: There is an info-leak bug that can be caused by a\n malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_pro.c\n driver, aka CID-ead16e53c2f0 (bnc#1158394).\n - CVE-2019-19524: There is a use-after-free bug that can be caused by a\n malicious USB device in the drivers/input/ff-memless.c driver, aka\n CID-fa3a5a1880c9 (bnc#1158413).\n - CVE-2019-19528: There is a use-after-free bug that can be caused by a\n malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka\n CID-edc4746f253d (bnc#1158407).\n - CVE-2019-19534: There is an info-leak bug that can be caused by a\n malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c\n driver, aka CID-f7a1337f0d29 (bnc#1158398).\n - CVE-2019-19529: There is a use-after-free bug that can be caused by a\n malicious USB device in the drivers/net/can/usb/mcba_usb.c driver, aka\n CID-4d6636498c41 (bnc#1158381).\n - CVE-2019-14901: A heap overflow flaw was found in the Marvell WiFi chip\n driver. The vulnerability allowed a remote attacker to cause a system\n crash, resulting in a denial of service, or execute arbitrary code. The\n highest threat with this vulnerability is with the availability of the\n system. If code execution occurs, the code will run with the permissions\n of root. This will affect both confidentiality and integrity of files on\n the system (bnc#1157042).\n - CVE-2019-14895: A heap-based buffer overflow was discovered in the\n Marvell WiFi chip driver. The flaw could occur when the station attempts\n a connection negotiation during the handling of the remote devices\n country settings. This could allowed the remote device to cause a denial\n of service (system crash) or possibly execute arbitrary code\n (bnc#1157158).\n - CVE-2019-18660: The Linux kernel on powerpc allowed Information Exposure\n because the Spectre-RSB mitigation is not in place for all applicable\n CPUs, aka CID-39e72bf96f58. This is related to\n arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security.c\n (bnc#1157038).\n - CVE-2019-18683: An issue was discovered in drivers/media/platform/vivid,\n which was exploitable for privilege escalation on some Linux\n distributions where local users have /dev/video0 access, but only if the\n driver happens to be loaded. There are multiple race conditions during\n streaming stopping in this driver (part of the V4L2 subsystem). These\n issues are caused by wrong mutex locking in\n vivid_stop_generating_vid_cap(), vivid_stop_generating_vid_out(),\n sdr_cap_stop_streaming(), and the corresponding kthreads. At least one\n of these race conditions leads to a use-after-free (bnc#1155897).\n - CVE-2019-18809: A memory leak in the af9005_identify_state() function in\n drivers/media/usb/dvb-usb/af9005.c allowed attackers to cause a denial\n of service (memory consumption), aka CID-2289adbfa559 (bnc#1156258).\n - CVE-2019-19046: A memory leak in the __ipmi_bmc_register() function in\n drivers/char/ipmi/ipmi_msghandler.c was fixed (bnc#1157304).\n - CVE-2019-19078: A memory leak in the ath10k_usb_hif_tx_sg() function in\n drivers/net/wireless/ath/ath10k/usb.c allowed attackers to cause a\n denial of service (memory consumption) by triggering usb_submit_urb()\n failures, aka CID-b8d17e7d93d2 (bnc#1157032).\n - CVE-2019-19062: A memory leak in the crypto_report() function in\n crypto/crypto_user_base.c allowed attackers to cause a denial of service\n (memory consumption) by triggering crypto_report_alg() failures, aka\n CID-ffdde5932042 (bnc#1157333).\n - CVE-2019-19057: Two memory leaks in the mwifiex_pcie_init_evt_ring()\n function in drivers/net/wireless/marvell/mwifiex/pcie.c allowed\n attackers to cause a denial of service (memory consumption) by\n triggering mwifiex_map_pci_memory() failures, aka CID-d10dcb615c8e\n (bnc#1157193).\n - CVE-2019-19056: A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf()\n function in drivers/net/wireless/marvell/mwifiex/pcie.c allowed\n attackers to cause a denial of service (memory consumption) by\n triggering mwifiex_map_pci_memory() failures, aka CID-db8fd2cde932\n (bnc#1157197).\n - CVE-2019-19068: A memory leak in the rtl8xxxu_submit_int_urb() function\n in drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c allowed\n attackers to cause a denial of service (memory consumption) by\n triggering usb_submit_urb() failures, aka CID-a2cdd07488e6 (bnc#1157307).\n - CVE-2019-19063: Two memory leaks in the rtl_usb_probe() function in\n drivers/net/wireless/realtek/rtlwifi/usb.c allowed attackers to cause a\n denial of service (memory consumption), aka CID-3f9361695113\n (bnc#1157298).\n - CVE-2019-19227: In the AppleTalk subsystem there was a potential NULL\n pointer dereference because register_snap_client may return NULL. This\n will lead to denial of service in net/appletalk/aarp.c and\n net/appletalk/ddp.c, as demonstrated by unregister_snap_client, aka\n CID-9804501fa122 (bnc#1157678).\n - CVE-2019-19081: A memory leak in the nfp_flower_spawn_vnic_reprs()\n function in drivers/net/ethernet/netronome/nfp/flower/main.c allowed\n attackers to cause a denial of service (memory consumption), aka\n CID-8ce39eb5a67a (bnc#1157045).\n - CVE-2019-19080: Four memory leaks in the nfp_flower_spawn_phy_reprs()\n function in drivers/net/ethernet/netronome/nfp/flower/main.c allowed\n attackers to cause a denial of service (memory consumption), aka\n CID-8572cea1461a (bnc#1157044).\n - CVE-2019-19065: A memory leak in the sdma_init() function in\n drivers/infiniband/hw/hfi1/sdma.c allowed attackers to cause a denial of\n service (memory consumption) by triggering rhashtable_init() failures,\n aka CID-34b3be18a04e (bnc#1157191).\n - CVE-2019-19077: A memory leak in the bnxt_re_create_srq() function in\n drivers/infiniband/hw/bnxt_re/ib_verbs.c allowed attackers to cause a\n denial of service (memory consumption) by triggering copy to udata\n failures, aka CID-4a9d46a9fe14 (bnc#1157171).\n - CVE-2019-19052: A memory leak in the gs_can_open() function in\n drivers/net/can/usb/gs_usb.c allowed attackers to cause a denial of\n service (memory consumption) by triggering usb_submit_urb() failures,\n aka CID-fb5be6a7b486 (bnc#1157324).\n - CVE-2019-19067: Four memory leaks in the acp_hw_init() function in\n drivers/gpu/drm/amd/amdgpu/amdgpu_acp.c were fixed. (bnc#1157180).\n - CVE-2019-19060: A memory leak in the adis_update_scan_mode() function in\n drivers/iio/imu/adis_buffer.c allowed attackers to cause a denial of\n service (memory consumption), aka CID-ab612b1daf41 (bnc#1157178).\n - CVE-2019-19049: A memory leak in the unittest_data_add() function in\n drivers/of/unittest.c was fixed. (bnc#1157173).\n - CVE-2019-19075: A memory leak in the ca8210_probe() function in\n drivers/net/ieee802154/ca8210.c allowed attackers to cause a denial of\n service (memory consumption) by triggering ca8210_get_platform_data()\n failures, aka CID-6402939ec86e (bnc#1157162).\n - CVE-2019-19058: A memory leak in the alloc_sgtable() function in\n drivers/net/wireless/intel/iwlwifi/fw/dbg.c allowed attackers to cause a\n denial of service (memory consumption) by triggering alloc_page()\n failures, aka CID-b4b814fec1a5 (bnc#1157145).\n - CVE-2019-19074: A memory leak in the ath9k_wmi_cmd() function in\n drivers/net/wireless/ath/ath9k/wmi.c allowed attackers to cause a denial\n of service (memory consumption), aka CID-728c1e2a05e4 (bnc#1157143).\n - CVE-2019-19073: Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c\n allowed attackers to cause a denial of service (memory consumption) by\n triggering wait_for_completion_timeout() failures. This affects the\n htc_config_pipe_credits() function, the htc_setup_complete() function,\n and the htc_connect_service() function, aka CID-853acf7caf10\n (bnc#1157070).\n - CVE-2019-19083: Memory leaks in *clock_source_create() functions under\n drivers/gpu/drm/amd/display/dc allowed attackers to cause a denial of\n service (memory consumption). This affects the\n dce112_clock_source_create() function in\n drivers/gpu/drm/amd/display/dc/dce112/dce112_resource.c, the\n dce100_clock_source_create() function in\n drivers/gpu/drm/amd/display/dc/dce100/dce100_resource.c, the\n dcn10_clock_source_create() function in\n drivers/gpu/drm/amd/display/dc/dcn10/dcn10_resource.c, the\n dcn20_clock_source_create() function in\n drivers/gpu/drm/amd/display/dc/dcn20/dcn20_resource.c, the\n dce120_clock_source_create() function in\n drivers/gpu/drm/amd/display/dc/dce120/dce120_resource.c, the\n dce110_clock_source_create() function in\n drivers/gpu/drm/amd/display/dc/dce110/dce110_resource.c, and the\n dce80_clock_source_create() function in\n drivers/gpu/drm/amd/display/dc/dce80/dce80_resource.c, aka\n CID-055e547478a1 (bnc#1157049).\n - CVE-2019-19082: Memory leaks in *create_resource_pool() functions under\n drivers/gpu/drm/amd/display/dc allowed attackers to cause a denial of\n service (memory consumption). This affects the\n dce120_create_resource_pool() function in\n drivers/gpu/drm/amd/display/dc/dce120/dce120_resource.c, the\n dce110_create_resource_pool() function in\n drivers/gpu/drm/amd/display/dc/dce110/dce110_resource.c, the\n dce100_create_resource_pool() function in\n drivers/gpu/drm/amd/display/dc/dce100/dce100_resource.c, the\n dcn10_create_resource_pool() function in\n drivers/gpu/drm/amd/display/dc/dcn10/dcn10_resource.c, and the\n dce112_create_resource_pool() function in\n drivers/gpu/drm/amd/display/dc/dce112/dce112_resource.c, aka\n CID-104c307147ad (bnc#1157046).\n - CVE-2019-15916: There was a memory leak in register_queue_kobjects() in\n net/core/net-sysfs.c, which will cause denial of service (bnc#1149448).\n\n The following non-security bugs were fixed:\n\n - ACPICA: Never run _REG on system_memory and system_IO (bsc#1051510).\n - ACPICA: Use %d for signed int print formatting instead of %u\n (bsc#1051510).\n - ACPI / hotplug / PCI: Allocate resources directly under the non-hotplug\n bridge (bsc#1111666).\n - ACPI / LPSS: Exclude I2C busses shared with PUNIT from pmc_atom_d3_mask\n (bsc#1051510).\n - acpi/nfit, device-dax: Identify differentiated memory with a unique\n numa-node (bsc#1158071).\n - ACPI / SBS: Fix rare oops when removing modules (bsc#1051510).\n - ALSA: 6fire: Drop the dead code (git-fixes).\n - ALSA: cs4236: fix error return comparison of an unsigned integer\n (git-fixes).\n - ALSA: firewire-motu: Correct a typo in the clock proc string (git-fixes).\n - ALSA: hda: Add Cometlake-S PCI ID (git-fixes).\n - ALSA: hda - Add mute led support for HP ProBook 645 G4 (git-fixes).\n - ALSA: hda - Fix pending unsol events at shutdown (git-fixes).\n - ALSA: hda: Fix racy display power access (bsc#1156928).\n - ALSA: hda/hdmi - Clear codec-&gt;relaxed_resume flag at unbinding\n (git-fixes).\n - ALSA: hda: hdmi - fix port numbering for ICL and TGL platforms\n (git-fixes).\n - ALSA: hda: hdmi - remove redundant code comments (git-fixes).\n - ALSA: hda/intel: add CometLake PCI IDs (bsc#1156729).\n - ALSA: hda/realtek - Enable internal speaker of ASUS UX431FLC (git-fixes).\n - ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop\n (git-fixes).\n - ALSA: hda/realtek - Move some alc236 pintbls to fallback table\n (git-fixes).\n - ALSA: hda/realtek - Move some alc256 pintbls to fallback table\n (git-fixes).\n - ALSA: i2c/cs8427: Fix int to char conversion (bsc#1051510).\n - ALSA: intel8x0m: Register irq handler after register initializations\n (bsc#1051510).\n - ALSA: pcm: Fix stream lock usage in snd_pcm_period_elapsed() (git-fixes).\n - ALSA: pcm: signedness bug in snd_pcm_plug_alloc() (bsc#1051510).\n - ALSA: pcm: Yet another missing check of non-cached buffer type\n (bsc#1111666).\n - ALSA: seq: Do error checks at creating system ports (bsc#1051510).\n - ALSA: usb-audio: Add skip_validation option (git-fixes).\n - ALSA: usb-audio: Fix Focusrite Scarlett 6i6 gen1 - input handling\n (git-fixes).\n - ALSA: usb-audio: Fix incorrect NULL check in create_yamaha_midi_quirk()\n (git-fixes).\n - ALSA: usb-audio: Fix incorrect size check for processing/extension units\n (git-fixes).\n - ALSA: usb-audio: Fix missing error check at mixer resolution test\n (git-fixes).\n - ALSA: usb-audio: Fix NULL dereference at parsing BADD (git-fixes).\n - ALSA: usb-audio: not submit urb for stopped endpoint (git-fixes).\n - ALSA: usb-audio: sound: usb: usb true/false for bool return type\n (git-fixes).\n - appledisplay: fix error handling in the scheduled work (git-fixes).\n - arm64: Update config files. (bsc#1156466) Enable HW_RANDOM_OMAP driver\n and mark driver omap-rng as supported.\n - ASoC: davinci: Kill BUG_ON() usage (stable 4.14.y).\n - ASoC: davinci-mcasp: Handle return value of devm_kasprintf (stable\n 4.14.y).\n - ASoC: dpcm: Properly initialise hw-&gt;rate_max (bsc#1051510).\n - ASoC: Intel: hdac_hdmi: Limit sampling rates at dai creation\n (bsc#1051510).\n - ASoC: kirkwood: fix external clock probe defer (git-fixes).\n - ASoC: msm8916-wcd-analog: Fix RX1 selection in RDAC2 MUX (git-fixes).\n - ASoC: sgtl5000: avoid division by zero if lo_vag is zero (bsc#1051510).\n - ASoC: tegra_sgtl5000: fix device_node refcounting (bsc#1051510).\n - ASoC: tlv320aic31xx: Handle inverted BCLK in non-DSP modes (stable\n 4.14.y).\n - ASoC: tlv320dac31xx: mark expected switch fall-through (stable 4.14.y).\n - ata: ep93xx: Use proper enums for directions (bsc#1051510).\n - ath10k: allocate small size dma memory in ath10k_pci_diag_write_mem\n (bsc#1111666).\n - ath10k: avoid possible memory access violation (bsc#1111666).\n - ath10k: Correct error handling of dma_map_single() (bsc#1111666).\n - ath10k: fix kernel panic by moving pci flush after napi_disable\n (bsc#1051510).\n - ath10k: fix vdev-start timeout on error (bsc#1051510).\n - ath10k: limit available channels via DT ieee80211-freq-limit\n (bsc#1051510).\n - ath10k: skip resetting rx filter for WCN3990 (bsc#1111666).\n - ath10k: wmi: disable softirq's while calling ieee80211_rx (bsc#1051510).\n - ath9k: add back support for using active monitor interfaces for tx99\n (bsc#1051510).\n - ath9k: Fix a locking bug in ath9k_add_interface() (bsc#1051510).\n - ath9k: fix reporting calculated new FFT upper max (bsc#1051510).\n - ath9k: fix tx99 with monitor mode interface (bsc#1051510).\n - ath9k_hw: fix uninitialized variable data (bsc#1051510).\n - ax88172a: fix information leak on short answers (bsc#1051510).\n - backlight: lm3639: Unconditionally call led_classdev_unregister\n (bsc#1051510).\n - Bluetooth: btusb: fix PM leak in error case of setup (bsc#1051510).\n - Bluetooth: delete a stray unlock (bsc#1051510).\n - Bluetooth: Fix invalid-free in bcsp_close() (git-fixes).\n - Bluetooth: Fix memory leak in hci_connect_le_scan (bsc#1051510).\n - Bluetooth: hci_core: fix init for HCI_USER_CHANNEL (bsc#1051510).\n - Bluetooth: L2CAP: Detect if remote is not able to use the whole MPS\n (bsc#1051510).\n - bnxt_en: Increase timeout for HWRM_DBG_COREDUMP_XX commands\n (bsc#1104745).\n - bnxt_en: Increase timeout for HWRM_DBG_COREDUMP_XX commands\n (bsc#1104745 FATE#325918).\n - bnxt_en: Update firmware interface spec. to 1.10.0.47 (bsc#1157115)\n - bnxt_en: Update firmware interface spec. to 1.10.0.89 (bsc#1157115)\n - bnxt_en: Update firmware interface to 1.10.0.69 (bsc#1157115)\n - bpf: fix BTF limits (bsc#1109837).\n - bpf: fix BTF verification of enums (bsc#1109837).\n - bpf: Fix use after free in subprog's jited symbol removal (bsc#1109837).\n - brcmfmac: fix full timeout waiting for action frame on-channel tx\n (bsc#1051510).\n - brcmfmac: fix wrong strnchr usage (bsc#1111666).\n - brcmfmac: increase buffer for obtaining firmware capabilities\n (bsc#1111666).\n - brcmfmac: reduce timeout for action frame scan (bsc#1051510).\n - brcmsmac: AP mode: update beacon when TIM changes (bsc#1051510).\n - brcmsmac: never log &quot;tid x is not agg'able&quot; by default (bsc#1051510).\n - brcmsmac: Use kvmalloc() for ucode allocations (bsc#1111666).\n - btrfs: fix log context list corruption after rename exchange operation\n (bsc#1156494).\n - can: c_can: c_can_poll(): only read status register after status IRQ\n (git-fixes).\n - can: mcba_usb: fix use-after-free on disconnect (git-fixes).\n - can: peak_usb: fix a potential out-of-sync while decoding packets\n (git-fixes).\n - can: peak_usb: fix slab info leak (git-fixes).\n - can: rx-offload: can_rx_offload_offload_one(): do not increase the\n skb_queue beyond skb_queue_len_max (git-fixes).\n - can: rx-offload: can_rx_offload_queue_sorted(): fix error handling,\n avoid skb mem leak (git-fixes).\n - can: rx-offload: can_rx_offload_queue_tail(): fix error handling, avoid\n skb mem leak (git-fixes).\n - can: usb_8dev: fix use-after-free on disconnect (git-fixes).\n - ceph: add missing check in d_revalidate snapdir handling (bsc#1157183).\n - ceph: do not try to handle hashed dentries in non-O_CREAT atomic_open\n (bsc#1157184).\n - ceph: fix use-after-free in __ceph_remove_cap() (bsc#1154058).\n - ceph: just skip unrecognized info in ceph_reply_info_extra (bsc#1157182).\n - cfg80211: Avoid regulatory restore when COUNTRY_IE_IGNORE is set\n (bsc#1051510).\n - cfg80211: call disconnect_wk when AP stops (bsc#1051510).\n - cfg80211: Prevent regulatory restore during STA disconnect in concurrent\n interfaces (bsc#1051510).\n - cfg80211: validate wmm rule when setting (bsc#1111666).\n - cgroup,writeback: do not switch wbs immediately on dead wbs if the memcg\n is dead (bsc#1158645).\n - cifs: add a helper to find an existing readable handle to a file\n (bsc#1144333, bsc#1154355).\n - cifs: avoid using MID 0xFFFF (bsc#1144333, bsc#1154355).\n - cifs: create a helper to find a writeable handle by path name\n (bsc#1144333, bsc#1154355).\n - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs\n (bsc#1144333, bsc#1154355).\n - cifs: fix max ea value size (bsc#1144333, bsc#1154355).\n - cifs: Fix missed free operations (bsc#1144333, bsc#1154355).\n - cifs: Fix oplock handling for SMB 2.1+ protocols (bsc#1144333,\n bsc#1154355).\n - cifs: Fix retry mid list corruption on reconnects (bsc#1144333,\n bsc#1154355).\n - cifs: Fix SMB2 oplock break processing (bsc#1144333, bsc#1154355).\n - cifs: Fix use after free of file info structures (bsc#1144333,\n bsc#1154355).\n - cifs: Force reval dentry if LOOKUP_REVAL flag is set (bsc#1144333,\n bsc#1154355).\n - cifs: Force revalidate inode when dentry is stale (bsc#1144333,\n bsc#1154355).\n - cifs: Gracefully handle QueryInfo errors during open (bsc#1144333,\n bsc#1154355).\n - cifs: move cifsFileInfo_put logic into a work-queue (bsc#1144333,\n bsc#1154355).\n - cifs: prepare SMB2_Flush to be usable in compounds (bsc#1144333,\n bsc#1154355).\n - cifs: set domainName when a domain-key is used in multiuser\n (bsc#1144333, bsc#1154355).\n - cifs: use cifsInodeInfo-&gt;open_file_lock while iterating to avoid a panic\n (bsc#1144333, bsc#1154355).\n - cifs: use existing handle for compound_op(OP_SET_INFO) when possible\n (bsc#1144333, bsc#1154355).\n - cifs: Use kzfree() to zero out the password (bsc#1144333, bsc#1154355).\n - clk: at91: avoid sleeping early (git-fixes).\n - clk: pxa: fix one of the pxa RTC clocks (bsc#1051510).\n - clk: samsung: exynos5420: Preserve CPU clocks configuration during\n suspend/resume (bsc#1051510).\n - clk: samsung: exynos5420: Preserve PLL configuration during\n suspend/resume (git-fixes).\n - clk: samsung: Use clk_hw API for calling clk framework from clk\n notifiers (bsc#1051510).\n - clk: sunxi-ng: a80: fix the zero'ing of bits 16 and 18 (git-fixes).\n - clocksource/drivers/sh_cmt: Fix clocksource width for 32-bit machines\n (bsc#1051510).\n - clocksource/drivers/sh_cmt: Fixup for 64-bit machines (bsc#1051510).\n - compat_ioctl: handle SIOCOUTQNSD (bsc#1051510).\n - component: fix loop condition to call unbind() if bind() fails\n (bsc#1051510).\n - cpufreq: intel_pstate: Register when ACPI PCCH is present (bsc#1051510).\n - cpufreq/pasemi: fix use-after-free in pas_cpufreq_cpu_init()\n (bsc#1051510).\n - cpufreq: powernv: fix stack bloat and hard limit on number of CPUs\n (bsc#1051510).\n - cpufreq: Skip cpufreq resume if it's not suspended (bsc#1051510).\n - cpufreq: ti-cpufreq: add missing of_node_put() (bsc#1051510).\n - cpupower: Fix coredump on VMWare (bsc#1051510).\n - cpupower : Fix cpupower working when cpu0 is offline (bsc#1051510).\n - cpupower : frequency-set -r option misses the last cpu in related cpu\n list (bsc#1051510).\n - crypto: af_alg - cast ki_complete ternary op to int (bsc#1051510).\n - crypto: crypto4xx - fix double-free in crypto4xx_destroy_sdr\n (bsc#1051510).\n - crypto: ecdh - fix big endian bug in ECC library (bsc#1051510).\n - crypto: fix a memory leak in rsa-kcs1pad's encryption mode (bsc#1051510).\n - crypto: geode-aes - switch to skcipher for cbc(aes) fallback\n (bsc#1051510).\n - crypto: mxs-dcp - Fix AES issues (bsc#1051510).\n - crypto: mxs-dcp - Fix SHA null hashes and output length (bsc#1051510).\n - crypto: mxs-dcp - make symbols 'sha1_null_hash' and 'sha256_null_hash'\n static (bsc#1051510).\n - crypto: s5p-sss: Fix Fix argument list alignment (bsc#1051510).\n - crypto: tgr192 - remove unneeded semicolon (bsc#1051510).\n - cw1200: Fix a signedness bug in cw1200_load_firmware() (bsc#1051510).\n - cxgb4: fix panic when attaching to ULD fail (networking-stable-19_11_05).\n - cxgb4: request the TX CIDX updates to status page (bsc#1127354\n bsc#1127371).\n - dccp: do not leak jiffies on the wire (networking-stable-19_11_05).\n - dlm: do not leak kernel pointer to userspace (bsc#1051510).\n - dlm: fix invalid free (bsc#1051510).\n - dmaengine: dma-jz4780: Do not depend on MACH_JZ4780 (bsc#1051510).\n - dmaengine: dma-jz4780: Further residue status fix (bsc#1051510).\n - dmaengine: ep93xx: Return proper enum in ep93xx_dma_chan_direction\n (bsc#1051510).\n - dmaengine: imx-sdma: fix use-after-free on probe error path\n (bsc#1051510).\n - dmaengine: rcar-dmac: set scatter/gather max segment size (bsc#1051510).\n - dmaengine: timb_dma: Use proper enum in td_prep_slave_sg (bsc#1051510).\n - docs: move protection-keys.rst to the core-api book (bsc#1078248).\n - docs: move protection-keys.rst to the core-api book (FATE#322447,\n bsc#1078248).\n - Documentation: debugfs: Document debugfs helper for unsigned long values\n (git-fixes).\n - Documentation: x86: convert protection-keys.txt to reST (bsc#1078248).\n - Documentation: x86: convert protection-keys.txt to reST (FATE#322447,\n bsc#1078248).\n - drm/amdgpu: fix bad DMA from INTERRUPT_CNTL2 (bsc#1111666).\n - drm/amd/powerplay: issue no PPSMC_MSG_GetCurrPkgPwr on unsupported\n (bsc#1113956)\n - drm/etnaviv: fix dumping of iommuv2 (bsc#1113722)\n - drm: fix module name in edid_firmware log message (bsc#1113956)\n - drm/i915: Do not dereference request if it may have been retired when\n (bsc#1142635)\n - drm/i915: Fix and improve MCR selection logic (bsc#1112178)\n - drm/i915/gvt: fix dropping obj reference twice (bsc#1111666).\n - drm/i915: Lock the engine while dumping the active request (bsc#1142635)\n - drm/i915/pmu: &quot;Frequency&quot; is reported as accumulated cycles (bsc#1112178)\n - drm/i915: Reacquire priolist cache after dropping the engine lock\n (bsc#1129770)\n - drm/i915: Skip modeset for cdclk changes if possible (bsc#1156928).\n - drm/msm: fix memleak on release (bsc#1111666).\n - drm/omap: fix max fclk divider for omap36xx (bsc#1113722)\n - drm/radeon: fix bad DMA from INTERRUPT_CNTL2 (git-fixes).\n - drm/radeon: fix si_enable_smc_cac() failed issue (bsc#1113722)\n - Drop scsi-qla2xxx-Fix-memory-leak-when-sending-I-O-fails.patch This\n patch has introduces an double free. Upstream has dropped it from the\n scsi-queue before it hit mainline. So let's drop it as well.\n - e1000e: Drop unnecessary __E1000_DOWN bit twiddling (bsc#1158049).\n - e1000e: Use dev_get_drvdata where possible (bsc#1158049).\n - e1000e: Use rtnl_lock to prevent race conditions between net and pci/pm\n (bsc#1158049).\n - ecryptfs_lookup_interpose(): lower_dentry-&gt;d_inode is not stable\n (bsc#1158646).\n - ecryptfs_lookup_interpose(): lower_dentry-&gt;d_parent is not stable either\n (bsc#1158647).\n - EDAC/ghes: Fix locking and memory barrier issues (bsc#1114279).\n EDAC/ghes: Do not warn when incrementing refcount on 0 (bsc#1114279).\n - EDAC/ghes: Fix Use after free in ghes_edac remove path (bsc#1114279).\n - ext4: fix punch hole for inline_data file systems (bsc#1158640).\n - ext4: update direct I/O read lock pattern for IOCB_NOWAIT (bsc#1158639).\n - extcon: cht-wc: Return from default case to avoid warnings (bsc#1051510).\n - fbdev: sbuslib: integer overflow in sbusfb_ioctl_helper() (bsc#1051510).\n - fbdev: sbuslib: use checked version of put_user() (bsc#1051510).\n - ftrace: Introduce PERMANENT ftrace_ops flag (bsc#1120853).\n - gpiolib: acpi: Add Terra Pad 1061 to the\n run_edge_events_on_boot_blacklist (bsc#1051510).\n - gpio: mpc8xxx: Do not overwrite default irq_set_type callback\n (bsc#1051510).\n - gpio: syscon: Fix possible NULL ptr usage (bsc#1051510).\n - gsmi: Fix bug in append_to_eventlog sysfs handler (bsc#1051510).\n - HID: Add ASUS T100CHI keyboard dock battery quirks (bsc#1051510).\n - HID: Add quirk for Microsoft PIXART OEM mouse (bsc#1051510).\n - HID: asus: Add T100CHI bluetooth keyboard dock special keys mapping\n (bsc#1051510).\n - HID: Fix assumption that devices have inputs (git-fixes).\n - HID: wacom: generic: Treat serial number and related fields as unsigned\n (git-fixes).\n - hwmon: (ina3221) Fix INA3221_CONFIG_MODE macros (bsc#1051510).\n - hwmon: (pwm-fan) Silence error on probe deferral (bsc#1051510).\n - hwrng: omap3-rom - Call clk_disable_unprepare() on exit only if not\n idled (bsc#1051510).\n - hwrng: omap - Fix RNG wait loop timeout (bsc#1051510).\n - hypfs: Fix error number left in struct pointer member (bsc#1051510).\n - i2c: of: Try to find an I2C adapter matching the parent (bsc#1129770)\n - i40e: enable X710 support (bsc#1151067).\n - IB/mlx5: Free mpi in mp_slave mode (bsc#1103991).\n - IB/mlx5: Free mpi in mp_slave mode (bsc#1103991 FATE#326007).\n - IB/mlx5: Support MLX5_CMD_OP_QUERY_LAG as a DEVX general command\n (bsc#1103991).\n - IB/mlx5: Support MLX5_CMD_OP_QUERY_LAG as a DEVX general command\n (bsc#1103991 FATE#326007).\n - ibmvnic: Bound waits for device queries (bsc#1155689 ltc#182047).\n - ibmvnic: Fix completion structure initialization (bsc#1155689\n ltc#182047).\n - ibmvnic: Serialize device queries (bsc#1155689 ltc#182047).\n - ibmvnic: Terminate waiting device threads after loss of service\n (bsc#1155689 ltc#182047).\n - ice: fix potential infinite loop because loop counter being too small\n (bsc#1118661).\n - ice: fix potential infinite loop because loop counter being too small\n (bsc#1118661 FATE#325277).\n - iio: adc: max9611: explicitly cast gain_selectors (bsc#1051510).\n - iio: adc: stm32-adc: fix stopping dma (git-fixes).\n - iio: dac: mcp4922: fix error handling in mcp4922_write_raw (bsc#1051510).\n - iio: imu: adis16480: assign bias value only if operation succeeded\n (git-fixes).\n - iio: imu: adis16480: make sure provided frequency is positive\n (git-fixes).\n - iio: imu: adis: assign read val in debugfs hook only if op successful\n (git-fixes).\n - iio: imu: adis: assign value only if return code zero in read funcs\n (git-fixes).\n - include/linux/bitrev.h: fix constant bitrev (bsc#1114279).\n - inet: stop leaking jiffies on the wire (networking-stable-19_11_05).\n - Input: ff-memless - kill timer in destroy() (bsc#1051510).\n - Input: silead - try firmware reload after unsuccessful resume\n (bsc#1051510).\n - Input: st1232 - set INPUT_PROP_DIRECT property (bsc#1051510).\n - Input: synaptics-rmi4 - clear IRQ enables for F54 (bsc#1051510).\n - Input: synaptics-rmi4 - destroy F54 poller workqueue when removing\n (bsc#1051510).\n - Input: synaptics-rmi4 - disable the relative position IRQ in the F12\n driver (bsc#1051510).\n - Input: synaptics-rmi4 - do not consume more data than we have (F11, F12)\n (bsc#1051510).\n - Input: synaptics-rmi4 - fix video buffer size (git-fixes).\n - intel_th: Fix a double put_device() in error path (git-fixes).\n - iomap: Fix pipe page leakage during splicing (bsc#1158651).\n - iommu/vt-d: Fix QI_DEV_IOTLB_PFSID and QI_DEV_EIOTLB_PFSID macros\n (bsc#1158063).\n - ipmi:dmi: Ignore IPMI SMBIOS entries with a zero base address\n (bsc#1051510).\n - ipv4: Return -ENETUNREACH if we can't create route but saddr is valid\n (networking-stable-19_10_24).\n - irqdomain: Add the missing assignment of domain-&gt;fwnode for named fwnode\n (bsc#1111666).\n - iwlwifi: api: annotate compressed BA notif array sizes (bsc#1051510).\n - iwlwifi: check kasprintf() return value (bsc#1051510).\n - iwlwifi: drop packets with bad status in CD (bsc#1111666).\n - iwlwifi: mvm: avoid sending too many BARs (bsc#1051510).\n - iwlwifi: mvm: do not send keys when entering D3 (bsc#1051510).\n - iwlwifi: mvm: use correct FIFO length (bsc#1111666).\n - iwlwifi: pcie: fit reclaim msg to MAX_MSG_LEN (bsc#1111666).\n - iwlwifi: pcie: read correct prph address for newer devices (bsc#1111666).\n - ixgbe: fix double clean of Tx descriptors with xdp (bsc#1113994 ).\n - ixgbe: fix double clean of Tx descriptors with xdp (bsc#1113994\n FATE#326315 FATE#326317).\n - ixgbevf: Fix secpath usage for IPsec Tx offload (bsc#1113994 ).\n - ixgbevf: Fix secpath usage for IPsec Tx offload (bsc#1113994\n FATE#326315 FATE#326317).\n - kABI: Fix for &quot;KVM: x86: Introduce vcpu-&gt;arch.xsaves_enabled&quot;\n (bsc#1158066).\n - kABI fixup alloc_dax_region (bsc#1158071).\n - kabi: s390: struct subchannel (git-fixes).\n - kABI workaround for ath10k hw_filter_reset_required field (bsc#1111666).\n - kABI workaround for ath10k last_wmi_vdev_start_status field\n (bsc#1051510).\n - kABI workaround for iwlwifi iwl_rx_cmd_buffer change (bsc#1111666).\n - kABI workaround for struct mwifiex_power_cfg change (bsc#1051510).\n - KVM: s390: fix __insn32_query() inline assembly (git-fixes).\n - KVM: s390: vsie: Do not shadow CRYCB when no AP and no keys (git-fixes).\n - KVM: s390: vsie: Return correct values for Invalid CRYCB format\n (git-fixes).\n - KVM: SVM: Guard against DEACTIVATE when performing WBINVD/DF_FLUSH\n (bsc#1114279).\n - KVM: SVM: Serialize access to the SEV ASID bitmap (bsc#1114279).\n - KVM: VMX: Consider PID.PIR to determine if vCPU has pending interrupts\n (bsc#1158064).\n - KVM: VMX: Fix conditions for guest IA32_XSS support (bsc#1158065).\n - KVM: x86: Introduce vcpu-&gt;arch.xsaves_enabled (bsc#1158066).\n - KVM: x86/mmu: Take slots_lock when using kvm_mmu_zap_all_fast()\n (bsc#1158067).\n - libnvdimm: Export the target_node attribute for regions and namespaces\n (bsc#1158071).\n - lib/scatterlist: Fix chaining support in sgl_alloc_order() (git-fixes).\n - lib/scatterlist: Introduce sgl_alloc() and sgl_free() (git-fixes).\n - liquidio: fix race condition in instruction completion processing\n (bsc#1051510).\n - livepatch: Allow to distinguish different version of system state\n changes (bsc#1071995).\n - livepatch: Allow to distinguish different version of system state\n changes (bsc#1071995 fate#323487).\n - livepatch: Basic API to track system state changes (bsc#1071995 ).\n - livepatch: Basic API to track system state changes (bsc#1071995\n fate#323487).\n - livepatch: Keep replaced patches until post_patch callback is called\n (bsc#1071995).\n - livepatch: Keep replaced patches until post_patch callback is called\n (bsc#1071995 fate#323487).\n - livepatch: Selftests of the API for tracking system state changes\n (bsc#1071995).\n - livepatch: Selftests of the API for tracking system state changes\n (bsc#1071995 fate#323487).\n - loop: add ioctl for changing logical block size (bsc#1108043).\n - loop: fix no-unmap write-zeroes request behavior (bsc#1158637).\n - lpfc: size cpu map by last cpu id set (bsc#1157160).\n - mac80211: consider QoS Null frames for STA_NULLFUNC_ACKED (bsc#1051510).\n - mac80211: minstrel: fix CCK rate group streams value (bsc#1051510).\n - mac80211: minstrel: fix sampling/reporting of CCK rates in HT mode\n (bsc#1051510).\n - macvlan: schedule bc_work even if error (bsc#1051510).\n - mailbox: reset txdone_method TXDONE_BY_POLL if client knows_txdone\n (git-fixes).\n - media: au0828: Fix incorrect error messages (bsc#1051510).\n - media: bdisp: fix memleak on release (git-fixes).\n - media: cxusb: detect cxusb_ctrl_msg error in query (bsc#1051510).\n - media: davinci: Fix implicit enum conversion warning (bsc#1051510).\n - media: exynos4-is: Fix recursive locking in isp_video_release()\n (git-fixes).\n - media: fix: media: pci: meye: validate offset to avoid arbitrary access\n (bsc#1051510).\n - media: flexcop-usb: ensure -EIO is returned on error condition\n (git-fixes).\n - media: imon: invalid dereference in imon_touch_event (bsc#1051510).\n - media: isif: fix a NULL pointer dereference bug (bsc#1051510).\n - media: pci: ivtv: Fix a sleep-in-atomic-context bug in ivtv_yuv_init()\n (bsc#1051510).\n - media: pxa_camera: Fix check for pdev-&gt;dev.of_node (bsc#1051510).\n - media: radio: wl1273: fix interrupt masking on release (git-fixes).\n - media: ti-vpe: vpe: Fix Motion Vector vpdma stride (git-fixes).\n - media: usbvision: Fix races among open, close, and disconnect\n (bsc#1051510).\n - media: vim2m: Fix abort issue (git-fixes).\n - media: vivid: Set vid_cap_streaming and vid_out_streaming to true\n (bsc#1051510).\n - mei: fix modalias documentation (git-fixes).\n - mei: samples: fix a signedness bug in amt_host_if_call() (bsc#1051510).\n - mfd: intel-lpss: Add default I2C device properties for Gemini Lake\n (bsc#1051510).\n - mfd: max8997: Enale irq-wakeup unconditionally (bsc#1051510).\n - mfd: mc13xxx-core: Fix PMIC shutdown when reading ADC values\n (bsc#1051510).\n - mfd: palmas: Assign the right powerhold mask for tps65917 (git-fixes).\n - mfd: ti_am335x_tscadc: Keep ADC interface on if child is wakeup capable\n (bsc#1051510).\n - mISDN: Fix type of switch control variable in ctrl_teimanager\n (bsc#1051510).\n - mlx5: add parameter to disable enhanced IPoIB (bsc#1142095)\n - mlx5: add parameter to disable enhanced IPoIB (bsc#1142095) Fix badly\n backported patch\n - mlxsw: spectrum_flower: Fail in case user specifies multiple mirror\n actions (bsc#1112374).\n - mmc: core: fix wl1251 sdio quirks (git-fixes).\n - mmc: host: omap_hsmmc: add code for special init of wl1251 to get rid of\n pandora_wl1251_init_card (git-fixes).\n - mmc: mediatek: fix cannot receive new request when msdc_cmd_is_ready\n fail (bsc#1051510).\n - mm/compaction.c: clear total_{migrate,free}_scanned before scanning a\n new zone (git fixes (mm/compaction)).\n - mmc: sdhci-esdhc-imx: correct the fix of ERR004536 (git-fixes).\n - mmc: sdhci-of-at91: fix quirk2 overwrite (git-fixes).\n - mmc: sdio: fix wl1251 vendor id (git-fixes).\n - mm/debug.c: PageAnon() is true for PageKsm() pages (git fixes\n (mm/debug)).\n - mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d()\n (git fixes (mm/gup)).\n - mt7601u: fix bbp version check in mt7601u_wait_bbp_ready (bsc#1051510).\n - mt76x0: init hw capabilities.\n - mtd: nand: mtk: fix incorrect register setting order about ecc irq.\n - mtd: spear_smi: Fix Write Burst mode (bsc#1051510).\n - mtd: spi-nor: fix silent truncation in spi_nor_read() (bsc#1051510).\n - mwifex: free rx_cmd skb in suspended state (bsc#1111666).\n - mwifiex: do no submit URB in suspended state (bsc#1111666).\n - mwifiex: Fix NL80211_TX_POWER_LIMITED (bsc#1051510).\n - nbd: prevent memory leak (bsc#1158638).\n - net: add READ_ONCE() annotation in __skb_wait_for_more_packets()\n (networking-stable-19_11_05).\n - net: add skb_queue_empty_lockless() (networking-stable-19_11_05).\n - net: annotate accesses to sk-&gt;sk_incoming_cpu\n (networking-stable-19_11_05).\n - net: annotate lockless accesses to sk-&gt;sk_napi_id\n (networking-stable-19_11_05).\n - net: avoid potential infinite loop in tc_ctl_action()\n (networking-stable-19_10_24).\n - net: bcmgenet: Fix RGMII_MODE_EN value for GENET v1/2/3\n (networking-stable-19_10_24).\n - net: bcmgenet: reset 40nm EPHY on energy detect\n (networking-stable-19_11_05).\n - net: bcmgenet: Set phydev-&gt;dev_flags only for internal PHYs\n (networking-stable-19_10_24).\n - net: dsa: b53: Do not clear existing mirrored port mask\n (networking-stable-19_11_05).\n - net: dsa: bcm_sf2: Fix IMP setup for port different than 8\n (networking-stable-19_11_05).\n - net: dsa: fix switch tree list (networking-stable-19_11_05).\n - net: ethernet: ftgmac100: Fix DMA coherency issue with SW checksum\n (networking-stable-19_11_05).\n - net: fix sk_page_frag() recursion from memory reclaim\n (networking-stable-19_11_05).\n - net: hisilicon: Fix ping latency when deal with high throughput\n (networking-stable-19_11_05).\n - net: hns3: change GFP flag during lock period (bsc#1104353 ).\n - net: hns3: change GFP flag during lock period (bsc#1104353 FATE#326415).\n - net: hns3: do not query unsupported commands in debugfs (bsc#1104353).\n - net: hns3: do not query unsupported commands in debugfs (bsc#1104353\n FATE#326415).\n - net: hns3: fix GFP flag error in hclge_mac_update_stats() (bsc#1126390).\n - net: hns3: fix some reset handshake issue (bsc#1104353 ).\n - net: hns3: fix some reset handshake issue (bsc#1104353 FATE#326415).\n - net: hns3: prevent unnecessary MAC TNL interrupt (bsc#1104353\n bsc#1134983).\n - net: hns3: prevent unnecessary MAC TNL interrupt (bsc#1104353\n FATE#326415 bsc#1134983).\n - net: hns: Fix the stray netpoll locks causing deadlock in NAPI path\n (bsc#1104353).\n - net: hns: Fix the stray netpoll locks causing deadlock in NAPI path\n (bsc#1104353 FATE#326415).\n - net/ibmvnic: Ignore H_FUNCTION return from H_EOI to tolerate XIVE mode\n (bsc#1089644, ltc#166495, ltc#165544, git-fixes).\n - net/mlx4_core: Dynamically set guaranteed amount of counters per VF\n (networking-stable-19_11_05).\n - net/mlx5e: Fix eswitch debug print of max fdb flow (bsc#1103990 ).\n - net/mlx5e: Fix eswitch debug print of max fdb flow (bsc#1103990\n FATE#326006).\n - net/mlx5e: Fix ethtool self test: link speed (bsc#1103990 ).\n - net/mlx5e: Fix ethtool self test: link speed (bsc#1103990 FATE#326006).\n - net/mlx5e: Fix handling of compressed CQEs in case of low NAPI budget\n (networking-stable-19_11_05).\n - net/mlx5e: Print a warning when LRO feature is dropped or not allowed\n (bsc#1103990).\n - net/mlx5e: Print a warning when LRO feature is dropped or not allowed\n (bsc#1103990 FATE#326006).\n - net/mlx5: FWTrace, Reduce stack usage (bsc#1103990).\n - net/mlx5: FWTrace, Reduce stack usage (bsc#1103990 FATE#326006).\n - netns: fix GFP flags in rtnl_net_notifyid() (networking-stable-19_11_05).\n - net: phy: bcm7xxx: define soft_reset for 40nm EPHY (bsc#1119113 ).\n - net: phy: bcm7xxx: define soft_reset for 40nm EPHY (bsc#1119113\n FATE#326472).\n - net: phylink: Fix flow control resolution (bsc#1119113 ).\n - net: phylink: Fix flow control resolution (bsc#1119113 FATE#326472).\n - net: sched: cbs: Avoid division by zero when calculating the port rate\n (bsc#1109837).\n - net/sched: cbs: Fix not adding cbs instance to list (bsc#1109837).\n - net/sched: cbs: Set default link speed to 10 Mbps in cbs_set_port_rate\n (bsc#1109837).\n - net: sched: fix possible crash in tcf_action_destroy() (bsc#1109837).\n - net: sched: fix reordering issues (bsc#1109837).\n - net/smc: avoid fallback in case of non-blocking connect (git-fixes).\n - net/smc: do not schedule tx_work in SMC_CLOSED state (git-fixes).\n - net/smc: fix closing of fallback SMC sockets (git-fixes).\n - net/smc: Fix error path in smc_init (git-fixes).\n - net/smc: fix ethernet interface refcounting (git-fixes).\n - net/smc: fix fastopen for non-blocking connect() (git-fixes).\n - net/smc: fix refcounting for non-blocking connect() (git-fixes).\n - net/smc: fix refcount non-blocking connect() -part 2 (git-fixes).\n - net/smc: fix SMCD link group creation with VLAN id (git-fixes).\n - net/smc: keep vlan_id for SMC-R in smc_listen_work() (git-fixes).\n - net/smc: original socket family in inet_sock_diag (git-fixes).\n - net: sock_map, fix missing ulp check in sock hash case (bsc#1109837).\n - net: stmmac: disable/enable ptp_ref_clk in suspend/resume flow\n (networking-stable-19_10_24).\n - net: use skb_queue_empty_lockless() in busy poll contexts\n (networking-stable-19_11_05).\n - net: use skb_queue_empty_lockless() in poll() handlers\n (networking-stable-19_11_05).\n - net: wireless: ti: remove local VENDOR_ID and DEVICE_ID definitions\n (git-fixes).\n - net: wireless: ti: wl1251 use new SDIO_VENDOR_ID_TI_WL1251 definition\n (git-fixes).\n - net: Zeroing the structure ethtool_wolinfo in ethtool_get_wol()\n (networking-stable-19_11_05).\n - nfc: netlink: fix double device reference drop (git-fixes).\n - NFC: nxp-nci: Fix NULL pointer dereference after I2C communication error\n (git-fixes).\n - nfc: port100: handle command failure cleanly (git-fixes).\n - nfp: flower: fix memory leak in nfp_flower_spawn_vnic_reprs\n (bsc#1109837).\n - nfp: flower: prevent memory leak in nfp_flower_spawn_phy_reprs\n (bsc#1109837).\n - nl80211: Fix a GET_KEY reply attribute (bsc#1051510).\n - nvme-tcp: support C2HData with SUCCESS flag (bsc#1157386).\n - ocfs2: fix panic due to ocfs2_wq is null (bsc#1158644).\n - ocfs2: fix passing zero to 'PTR_ERR' warning (bsc#1158649).\n - openvswitch: fix flow command message size (git-fixes).\n - padata: use smp_mb in padata_reorder to avoid orphaned padata jobs\n (git-fixes).\n - PCI/ACPI: Correct error message for ASPM disabling (bsc#1051510).\n - PCI: Apply Cavium ACS quirk to ThunderX2 and ThunderX3 (bsc#1051510).\n - PCI: dwc: Fix find_next_bit() usage (bsc#1051510).\n - PCI: Fix Intel ACS quirk UPDCR register address (bsc#1051510).\n - PCI/MSI: Fix incorrect MSI-X masking on resume (bsc#1051510).\n - PCI: pciehp: Do not disable interrupt twice on suspend (bsc#1111666).\n - PCI/PM: Clear PCIe PME Status even for legacy power management\n (bsc#1111666).\n - PCI/PME: Fix possible use-after-free on remove (git-fixes).\n - PCI/PTM: Remove spurious &quot;d&quot; from granularity message (bsc#1051510).\n - PCI: rcar: Fix missing MACCTLR register setting in initialization\n sequence (bsc#1051510).\n - PCI: sysfs: Ignore lockdep for remove attribute (git-fixes).\n - PCI: tegra: Enable Relaxed Ordering only for Tegra20 &amp; Tegra30\n (git-fixes).\n - perf/x86/amd: Change/fix NMI latency mitigation to use a timestamp\n (bsc#1142924).\n - phy: phy-twl4030-usb: fix denied runtime access (git-fixes).\n - pinctl: ti: iodelay: fix error checking on pinctrl_count_index_with_args\n call (git-fixes).\n - pinctrl: at91: do not use the same irqchip with multiple gpiochips\n (git-fixes).\n - pinctrl: cherryview: Allocate IRQ chip dynamic (git-fixes).\n - pinctrl: lewisburg: Update pin list according to v1.1v6 (bsc#1051510).\n - pinctrl: lpc18xx: Use define directive for PIN_CONFIG_GPIO_PIN_INT\n (bsc#1051510).\n - pinctrl: qcom: spmi-gpio: fix gpio-hog related boot issues (bsc#1051510).\n - pinctrl: samsung: Fix device node refcount leaks in init code\n (bsc#1051510).\n - pinctrl: samsung: Fix device node refcount leaks in S3C24xx wakeup\n controller init (bsc#1051510).\n - pinctrl: samsung: Fix device node refcount leaks in S3C64xx wakeup\n controller init (bsc#1051510).\n - pinctrl: sunxi: Fix a memory leak in 'sunxi_pinctrl_build_state()'\n (bsc#1051510).\n - pinctrl: zynq: Use define directive for PIN_CONFIG_IO_STANDARD\n (bsc#1051510).\n - PM / devfreq: Check NULL governor in available_governors_show\n (git-fixes).\n - PM / devfreq: exynos-bus: Correct clock enable sequence (bsc#1051510).\n - PM / devfreq: Lock devfreq in trans_stat_show (git-fixes).\n - PM / devfreq: passive: fix compiler warning (bsc#1051510).\n - PM / devfreq: passive: Use non-devm notifiers (bsc#1051510).\n - PM / hibernate: Check the success of generating md5 digest before\n hibernation (bsc#1051510).\n - powerpc/64: Make meltdown reporting Book3S 64 specific (bsc#1091041).\n - powerpc/book3s64/hash: Use secondary hash for bolted mapping if the\n primary is full (bsc#1157778 ltc#182520).\n - powerpc/bpf: Fix tail call implementation (bsc#1157698).\n - powerpc/pseries: address checkpatch warnings in dlpar_offline_cpu\n (bsc#1156700 ltc#182459).\n - powerpc/pseries: Do not fail hash page table insert for bolted mapping\n (bsc#1157778 ltc#182520).\n - powerpc/pseries: Do not opencode HPTE_V_BOLTED (bsc#1157778 ltc#182520).\n - powerpc/pseries: safely roll back failed DLPAR cpu add (bsc#1156700\n ltc#182459).\n - powerpc/security/book3s64: Report L1TF status in sysfs (bsc#1091041).\n - powerpc/security: Fix wrong message when RFI Flush is disable\n (bsc#1131107).\n - powerpc/xive: Prevent page fault issues in the machine crash handler\n (bsc#1156882 ltc#182435).\n - power: reset: at91-poweroff: do not procede if at91_shdwc is allocated\n (bsc#1051510).\n - power: supply: ab8500_fg: silence uninitialized variable warnings\n (bsc#1051510).\n - power: supply: twl4030_charger: disable eoc interrupt on linear charge\n (bsc#1051510).\n - power: supply: twl4030_charger: fix charging current out-of-bounds\n (bsc#1051510).\n - ppdev: fix PPGETTIME/PPSETTIME ioctls (bsc#1051510).\n - printk: Export console_printk (bsc#1071995).\n - printk: Export console_printk (bsc#1071995 fate#323487).\n - pwm: bcm-iproc: Prevent unloading the driver module while in use\n (git-fixes).\n - pwm: lpss: Only set update bit if we are actually changing the settings\n (bsc#1051510).\n - qxl: fix null-pointer crash during suspend (bsc#1111666).\n - r8152: add device id for Lenovo ThinkPad USB-C Dock Gen 2\n (networking-stable-19_11_05).\n - RDMA/bnxt_re: Fix stat push into dma buffer on gen p5 devices\n (bsc#1157115)\n - RDMA/efa: Clear the admin command buffer prior to its submission\n (git-fixes) Patch was already picked through Amazon driver repo but was\n not marked with a Git-commit tag\n - RDMA/hns: Fix comparison of unsigned long variable 'end' with less than\n zero (bsc#1104427 bsc#1137236).\n - RDMA/hns: Fix comparison of unsigned long variable 'end' with less than\n zero (bsc#1104427 FATE#326416 bsc#1137236).\n - RDMA/hns: Fix wrong assignment of qp_access_flags (bsc#1104427 ).\n - RDMA/hns: Fix wrong assignment of qp_access_flags (bsc#1104427\n FATE#326416).\n - regulator: ab8500: Remove AB8505 USB regulator (bsc#1051510).\n - regulator: ab8500: Remove SYSCLKREQ from enum ab8505_regulator_id\n (bsc#1051510).\n - remoteproc: Check for NULL firmwares in sysfs interface (git-fixes).\n - Remove patches that reportedly cause regression (bsc#1155689 ltc#182047).\n - reset: fix of_reset_simple_xlate kerneldoc comment (bsc#1051510).\n - reset: Fix potential use-after-free in __of_reset_control_get()\n (bsc#1051510).\n - reset: fix reset_control_get_exclusive kerneldoc comment (bsc#1051510).\n - Revert &quot;drm/etnaviv: fix dumping of iommuv2 (bsc#1113722)&quot; This reverts\n commit 71e3a1b8d8cf73f711f3e4100aa51f68e631f94f. ATM the backported\n patch does not build on x86.\n - rpm/kernel-binary.spec.in: add COMPRESS_VMLINUX (bnc#1155921) Let\n COMPRESS_VMLINUX determine the compression used for vmlinux. By default\n (historically), it is gz.\n - rpm/kernel-source.spec.in: Fix dependency of kernel-devel (bsc#1154043)\n - rt2800: remove errornous duplicate condition (git-fixes).\n - rtl8187: Fix warning generated when strncpy() destination length matches\n the sixe argument (bsc#1051510).\n - rtlwifi: btcoex: Use proper enumerated types for Wi-Fi only interface\n (bsc#1111666).\n - rtlwifi: Remove unnecessary NULL check in rtl_regd_init (bsc#1051510).\n - rtlwifi: rtl8192de: Fix misleading REG_MCUFWDL information (bsc#1051510).\n - rtlwifi: rtl8192de: Fix missing code to retrieve RX buffer address\n (bsc#1051510).\n - rtlwifi: rtl8192de: Fix missing enable interrupt flag (bsc#1051510).\n - s390/bpf: fix lcgr instruction encoding (bsc#1051510).\n - s390/bpf: use 32-bit index for tail calls (bsc#1051510).\n - s390/cio: avoid calling strlen on null pointer (bsc#1051510).\n - s390/cio: exclude subchannels with no parent from pseudo check\n (bsc#1051510).\n - s390/cio: fix virtio-ccw DMA without PV (git-fixes).\n - s390/cmm: fix information leak in cmm_timeout_handler() (bsc#1051510).\n - s390: fix stfle zero padding (bsc#1051510).\n - s390/idle: fix cpu idle time calculation (bsc#1051510).\n - s390/mm: properly clear _PAGE_NOEXEC bit when it is not supported\n (bsc#1051510).\n - s390/process: avoid potential reading of freed stack (bsc#1051510).\n - s390/qdio: do not touch the dsci in tiqdio_add_input_queues()\n (bsc#1051510).\n - s390/qdio: (re-)initialize tiqdio list entries (bsc#1051510).\n - s390/qeth: return proper errno on IO error (bsc#1051510).\n - s390/setup: fix boot crash for machine without EDAT-1 (bsc#1051510\n bsc#1140948).\n - s390/setup: fix early warning messages (bsc#1051510 bsc#1140948).\n - s390/topology: avoid firing events before kobjs are created\n (bsc#1051510).\n - s390: vsie: Use effective CRYCBD.31 to check CRYCBD validity (git-fixes).\n - s390/zcrypt: fix memleak at release (git-fixes).\n - scsi: lpfc: Add enablement of multiple adapter dumps (bsc#1154601).\n - scsi: lpfc: Add registration for CPU Offline/Online events (bsc#1154601).\n - scsi: lpfc: Change default IRQ model on AMD architectures (bsc#1154601).\n - scsi: lpfc: Clarify FAWNN error message (bsc#1154601).\n - scsi: lpfc: Fix a kernel warning triggered by lpfc_get_sgl_per_hdwq()\n (bsc#1154601).\n - scsi: lpfc: Fix a kernel warning triggered by lpfc_sli4_enable_intr()\n (bsc#1154601).\n - scsi: lpfc: fix build error of lpfc_debugfs.c for vfree/vmalloc\n (bsc#1154601).\n - scsi: lpfc: Fix configuration of BB credit recovery in service\n parameters (bsc#1154601).\n - scsi: lpfc: fix: Coverity: lpfc_cmpl_els_rsp(): Null pointer\n dereferences (bsc#1154601).\n - scsi: lpfc: fix: Coverity: lpfc_get_scsi_buf_s3(): Null pointer\n dereferences (bsc#1154601).\n - scsi: lpfc: Fix duplicate unreg_rpi error in port offline flow\n (bsc#1154601).\n - scsi: lpfc: Fix dynamic fw log enablement check (bsc#1154601).\n - scsi: lpfc: fix inlining of lpfc_sli4_cleanup_poll_list() (bsc#1154601).\n - scsi: lpfc: Fix kernel crash at lpfc_nvme_info_show during remote port\n bounce (bsc#1154601).\n - scsi: lpfc: Fix lpfc_cpumask_of_node_init() (bsc#1154601).\n - scsi: lpfc: Fix NULL check before mempool_destroy is not needed\n (bsc#1154601).\n - scsi: lpfc: Fix Oops in nvme_register with target logout/login\n (bsc#1151900).\n - scsi: lpfc: fix spelling error in MAGIC_NUMER_xxx (bsc#1154601).\n - scsi: lpfc: Fix unexpected error messages during RSCN handling\n (bsc#1154601).\n - scsi: lpfc: Honor module parameter lpfc_use_adisc (bsc#1153628).\n - scsi: lpfc: Honor module parameter lpfc_use_adisc (bsc#1154601).\n - scsi: lpfc: Initialize cpu_map for not present cpus (bsc#1154601).\n - scsi: lpfc: lpfc_attr: Fix Use plain integer as NULL pointer\n (bsc#1154601).\n - scsi: lpfc: lpfc_nvmet: Fix Use plain integer as NULL pointer\n (bsc#1154601).\n - scsi: lpfc: Make lpfc_debugfs_ras_log_data static (bsc#1154601).\n - scsi: lpfc: Mitigate high memory pre-allocation by SCSI-MQ (bsc#1154601).\n - scsi: lpfc: Raise config max for lpfc_fcp_mq_threshold variable\n (bsc#1154601).\n - scsi: lpfc: revise nvme max queues to be hdwq count (bsc#1154601).\n - scsi: lpfc: Sync with FC-NVMe-2 SLER change to require Conf with SLER\n (bsc#1154601).\n - scsi: lpfc: Update lpfc version to 12.6.0.1 (bsc#1154601).\n - scsi: lpfc: Update lpfc version to 12.6.0.2 (bsc#1154601).\n - scsi: lpfc: use hdwq assigned cpu for allocation (bsc#1157160).\n - scsi: qla2xxx: Add debug dump of LOGO payload and ELS IOCB (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Allow PLOGI in target mode (bsc#1157424, bsc#1157908.\n bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Change discovery state before PLOGI (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Configure local loop for N2N target (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Do not call qlt_async_event twice (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Do not defer relogin unconditonally (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Drop superfluous INIT_WORK of del_work (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Fix PLOGI payload and ELS IOCB dump length (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Fix qla2x00_request_irqs() for MSI (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: fix rports not being mark as lost in sync fabric scan\n (bsc#1138039).\n - scsi: qla2xxx: Ignore NULL pointer in tcm_qla2xxx_free_mcmd\n (bsc#1157424, bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Ignore PORT UPDATE after N2N PLOGI (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Initialize free_work before flushing it (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: Send Notify ACK after N2N PLOGI (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: qla2xxx: unregister ports after GPN_FT failure (bsc#1138039).\n - scsi: qla2xxx: Use correct number of vectors for online CPUs\n (bsc#1137223).\n - scsi: qla2xxx: Use explicit LOGO in target mode (bsc#1157424,\n bsc#1157908. bsc#1117169, bsc#1151548).\n - scsi: zfcp: fix request object use-after-free in send path causing wrong\n traces (bsc#1051510).\n - sctp: change sctp_prot .no_autobind with true\n (networking-stable-19_10_24).\n - sctp: fix SCTP regression (bsc#1158082) (networking-stable-19_10_24\n bsc#1158082).\n - selftests: net: reuseport_dualstack: fix uninitalized parameter\n (networking-stable-19_11_05).\n - serial: mxs-auart: Fix potential infinite loop (bsc#1051510).\n - serial: samsung: Enable baud clock for UART reset procedure in resume\n (bsc#1051510).\n - serial: uartps: Fix suspend functionality (bsc#1051510).\n - signal: Properly set TRACE_SIGNAL_LOSE_INFO in __send_signal\n (bsc#1157463).\n - slcan: Fix memory leak in error path (bsc#1051510).\n - slip: Fix memory leak in slip_open error path (bsc#1051510).\n - slip: Fix use-after-free Read in slip_open (bsc#1051510).\n - smb3: fix leak in &quot;open on server&quot; perf counter (bsc#1144333,\n bsc#1154355).\n - smb3: fix signing verification of large reads (bsc#1144333, bsc#1154355).\n - smb3: fix unmount hang in open_shroot (bsc#1144333, bsc#1154355).\n - smb3: improve handling of share deleted (and share recreated)\n (bsc#1144333, bsc#1154355).\n - smb3: Incorrect size for netname negotiate context (bsc#1144333,\n bsc#1154355).\n - soc: imx: gpc: fix PDN delay (bsc#1051510).\n - soc: qcom: wcnss_ctrl: Avoid string overflow (bsc#1051510).\n - Sort series.conf.\n - spi: atmel: Fix CS high support (bsc#1051510).\n - spi: atmel: fix handling of cs_change set on non-last xfer (bsc#1051510).\n - spi: fsl-lpspi: Prevent FIFO under/overrun by default (bsc#1051510).\n - spi: mediatek: Do not modify spi_transfer when transfer (bsc#1051510).\n - spi: mediatek: use correct mata-&gt;xfer_len when in fifo transfer\n (bsc#1051510).\n - spi: pic32: Use proper enum in dmaengine_prep_slave_rg (bsc#1051510).\n - spi: rockchip: initialize dma_slave_config properly (bsc#1051510).\n - spi: spidev: Fix OF tree warning logic (bsc#1051510).\n - supported.conf:\n - synclink_gt(): fix compat_ioctl() (bsc#1051510).\n - tcp_nv: fix potential integer overflow in tcpnv_acked (bsc#1051510).\n - thunderbolt: Fix lockdep circular locking depedency warning (git-fixes).\n - tipc: Avoid copying bytes beyond the supplied data (bsc#1051510).\n - tipc: check bearer name with right length in\n tipc_nl_compat_bearer_enable (bsc#1051510).\n - tipc: check link name with right length in tipc_nl_compat_link_set\n (bsc#1051510).\n - tipc: check msg-&gt;req data len in tipc_nl_compat_bearer_disable\n (bsc#1051510).\n - tipc: compat: allow tipc commands without arguments (bsc#1051510).\n - tipc: fix tipc_mon_delete() oops in tipc_enable_bearer() error path\n (bsc#1051510).\n - tipc: fix wrong timeout input for tipc_wait_for_cond() (bsc#1051510).\n - tipc: handle the err returned from cmd header function (bsc#1051510).\n - tipc: pass tunnel dev as NULL to udp_tunnel(6)_xmit_skb (bsc#1051510).\n - tipc: tipc clang warning (bsc#1051510).\n - tools: bpftool: fix arguments for p_err() in do_event_pipe()\n (bsc#1109837).\n - tools/power/x86/intel-speed-select: Fix a read overflow in\n isst_set_tdp_level_msr() (bsc#1111666).\n - tpm: add check after commands attribs tab allocation (bsc#1051510).\n - tty: serial: fsl_lpuart: use the sg count from dma_map_sg (bsc#1051510).\n - tty: serial: imx: use the sg count from dma_map_sg (bsc#1051510).\n - tty: serial: msm_serial: Fix flow control (bsc#1051510).\n - tty: serial: pch_uart: correct usage of dma_unmap_sg (bsc#1051510).\n - tun: fix data-race in gro_normal_list() (bsc#1111666).\n - UAS: Revert commit 3ae62a42090f (&quot;UAS: fix alignment of scatter/gather\n segments&quot;).\n - ubifs: Correctly initialize c-&gt;min_log_bytes (bsc#1158641).\n - ubifs: Limit the number of pages in shrink_liability (bsc#1158643).\n - udp: use skb_queue_empty_lockless() (networking-stable-19_11_05).\n - Update\n patches.suse/ipv6-defrag-drop-non-last-frags-smaller-than-min-mtu.patch\n (add bsc#1141054).\n - Update\n patches.suse/RDMA-Fix-goto-target-to-release-the-allocated-memory.patch\n (bsc#1050244 FATE#322915 bsc#1157171 CVE-2019-19077).\n - USB: chaoskey: fix error case of a timeout (git-fixes).\n - usb: chipidea: Fix otg event handler (bsc#1051510).\n - usb: chipidea: imx: enable OTG overcurrent in case USB subsystem is\n already started (bsc#1051510).\n - usb: dwc3: gadget: Check ENBLSLPM before sending ep command\n (bsc#1051510).\n - usb: gadget: udc: fotg210-udc: Fix a sleep-in-atomic-context bug in\n fotg210_get_status() (bsc#1051510).\n - usb: gadget: uvc: configfs: Drop leaked references to config items\n (bsc#1051510).\n - usb: gadget: uvc: configfs: Prevent format changes after linking header\n (bsc#1051510).\n - usb: gadget: uvc: Factor out video USB request queueing (bsc#1051510).\n - usb: gadget: uvc: Only halt video streaming endpoint in bulk mode\n (bsc#1051510).\n - USBIP: add config dependency for SGL_ALLOC (git-fixes).\n - usbip: Fix free of unallocated memory in vhci tx (git-fixes).\n - usbip: Fix vhci_urb_enqueue() URB null transfer buffer error path\n (git-fixes).\n - usbip: Implement SG support to vhci-hcd and stub driver (git-fixes).\n - usbip: tools: fix fd leakage in the function of read_attr_usbip_status\n (git-fixes).\n - USB: misc: appledisplay: fix backlight update_status return code\n (bsc#1051510).\n - usb-serial: cp201x: support Mark-10 digital force gauge (bsc#1051510).\n - USB: serial: mos7720: fix remote wakeup (git-fixes).\n - USB: serial: mos7840: add USB ID to support Moxa UPort 2210\n (bsc#1051510).\n - USB: serial: mos7840: fix remote wakeup (git-fixes).\n - USB: serial: option: add support for DW5821e with eSIM support\n (bsc#1051510).\n - USB: serial: option: add support for Foxconn T77W968 LTE modules\n (bsc#1051510).\n - usb: xhci-mtk: fix ISOC error when interval is zero (bsc#1051510).\n - vfio-ccw: Fix misleading comment when setting orb.cmd.c64 (bsc#1051510).\n - vfio: ccw: push down unsupported IDA check (bsc#1156471 LTC#182362).\n - vfio-ccw: Set pa_nr to 0 if memory allocation fails for pa_iova_pfn\n (bsc#1051510).\n - video/hdmi: Fix AVI bar unpack (git-fixes).\n - virtio_console: allocate inbufs in add_port() only if it is needed\n (git-fixes).\n - virtio_ring: fix return code on DMA mapping fails (git-fixes).\n - virtio/s390: fix race on airq_areas (bsc#1051510).\n - vmxnet3: turn off lro when rxcsum is disabled (bsc#1157499).\n - vsock/virtio: fix sock refcnt holding during the shutdown (git-fixes).\n - watchdog: meson: Fix the wrong value of left time (bsc#1051510).\n - wil6210: drop Rx multicast packets that are looped-back to STA\n (bsc#1111666).\n - wil6210: fix debugfs memory access alignment (bsc#1111666).\n - wil6210: fix invalid memory access for rx_buff_mgmt debugfs\n (bsc#1111666).\n - wil6210: fix L2 RX status handling (bsc#1111666).\n - wil6210: fix locking in wmi_call (bsc#1111666).\n - wil6210: fix RGF_CAF_ICR address for Talyn-MB (bsc#1111666).\n - wil6210: prevent usage of tx ring 0 for eDMA (bsc#1111666).\n - wil6210: set edma variables only for Talyn-MB devices (bsc#1111666).\n - x86/alternatives: Add int3_emulate_call() selftest (bsc#1153811).\n - x86/alternatives: Fix int3_emulate_call() selftest stack corruption\n (bsc#1153811).\n - x86/mm/pkeys: Fix typo in Documentation/x86/protection-keys.txt\n (bsc#1078248).\n - x86/mm/pkeys: Fix typo in Documentation/x86/protection-keys.txt\n (FATE#322447, bsc#1078248).\n - x86/pkeys: Update documentation about availability (bsc#1078248).\n - x86/pkeys: Update documentation about availability (FATE#322447,\n bsc#1078248).\n - x86/resctrl: Fix potential lockdep warning (bsc#1114279).\n - x86/resctrl: Prevent NULL pointer dereference when reading mondata\n (bsc#1114279).\n - x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs\n (bsc#1158068).\n - xfrm: fix sa selector validation (bsc#1156609).\n - xfrm: Fix xfrm sel prefix length validation (git-fixes).\n - xfs: Sanity check flags of Q_XQUOTARM call (bsc#1158652).\n - xsk: Fix registration of Rx-only sockets (bsc#1109837).\n - xsk: relax UMEM headroom alignment (bsc#1109837).\n\n", "edition": 1, "modified": "2019-12-12T15:11:34", "published": "2019-12-12T15:11:34", "id": "OPENSUSE-SU-2019:2675-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html", "title": "Security update for the Linux Kernel (important)", "type": "suse", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}], "centos": [{"lastseen": "2020-10-20T23:06:08", "bulletinFamily": "unix", "cvelist": ["CVE-2020-12770", "CVE-2020-9383", "CVE-2019-15217", "CVE-2019-9454", "CVE-2019-20095", "CVE-2019-19767", "CVE-2019-16233", "CVE-2019-19534", "CVE-2019-15807", "CVE-2020-14305", "CVE-2019-19332", "CVE-2020-12826", "CVE-2019-19524", "CVE-2019-17055", "CVE-2019-19058", "CVE-2020-10942", "CVE-2019-19062", "CVE-2017-18551", "CVE-2019-20636", "CVE-2019-19523", "CVE-2020-10732", "CVE-2020-10690", "CVE-2019-19059", "CVE-2019-19055", "CVE-2019-19063", "CVE-2019-18808", "CVE-2020-1749", "CVE-2020-10742", "CVE-2020-10751", "CVE-2019-12614", "CVE-2019-19807", "CVE-2019-9458", "CVE-2020-11565", "CVE-2020-8649", "CVE-2019-16231", "CVE-2019-19447", "CVE-2019-19046", "CVE-2020-8647", "CVE-2019-19530", "CVE-2019-19537", "CVE-2019-16994", "CVE-2020-2732", "CVE-2019-17053", "CVE-2019-20054", "CVE-2018-20836", "CVE-2019-15917"], "description": "**CentOS Errata and Security Advisory** CESA-2020:4060\n\n\nThe kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: use-after-free in sound/core/timer.c (CVE-2019-19807)\n\n* kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551)\n\n* kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free (CVE-2018-20836)\n\n* kernel: out of bounds write in i2c driver leads to local escalation of privilege (CVE-2019-9454)\n\n* kernel: use after free due to race condition in the video driver leads to local privilege escalation (CVE-2019-9458)\n\nSpace precludes documenting all of the security fixes in this advisory. See the descriptions of the remaining security fixes in the related Knowledge Article:\n\nhttps://access.redhat.com/articles/5442421\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-cr-announce/2020-October/012745.html\n\n**Affected packages:**\nbpftool\nkernel\nkernel-abi-whitelists\nkernel-debug\nkernel-debug-devel\nkernel-devel\nkernel-doc\nkernel-headers\nkernel-tools\nkernel-tools-libs\nkernel-tools-libs-devel\nperf\npython-perf\n\n**Upstream details at:**\n", "edition": 1, "modified": "2020-10-20T18:20:15", "published": "2020-10-20T18:20:15", "id": "CESA-2020:4060", "href": "http://lists.centos.org/pipermail/centos-cr-announce/2020-October/012745.html", "title": "bpftool, kernel, perf, python security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "oraclelinux": [{"lastseen": "2020-10-07T06:55:38", "bulletinFamily": "unix", "cvelist": ["CVE-2019-19527", "CVE-2020-10711", "CVE-2020-12770", "CVE-2020-9383", "CVE-2020-12888", "CVE-2019-15217", "CVE-2019-9454", "CVE-2019-20095", "CVE-2019-19767", "CVE-2019-16233", "CVE-2019-19534", "CVE-2019-15807", "CVE-2020-14305", "CVE-2019-19332", "CVE-2020-12826", "CVE-2019-19524", "CVE-2019-17055", "CVE-2019-19058", "CVE-2020-10942", "CVE-2019-19062", "CVE-2017-18551", "CVE-2019-20636", "CVE-2019-19523", "CVE-2020-10732", "CVE-2019-19768", "CVE-2020-0543", "CVE-2020-10690", "CVE-2019-19059", "CVE-2020-12654", "CVE-2019-19055", "CVE-2019-19063", "CVE-2019-18808", "CVE-2020-12653", "CVE-2020-1749", "CVE-2020-10742", "CVE-2020-10751", "CVE-2019-12614", "CVE-2019-19807", "CVE-2019-9458", "CVE-2020-11565", "CVE-2020-8649", "CVE-2019-16231", "CVE-2019-19447", "CVE-2020-10757", "CVE-2019-19046", "CVE-2020-8647", "CVE-2019-19530", "CVE-2019-19537", "CVE-2019-16994", "CVE-2020-2732", "CVE-2019-17053", "CVE-2019-20054", "CVE-2018-20836", "CVE-2019-15917"], "description": "[3.10.0-1160.OL7]\n- Oracle Linux certificates (Ilya Okomin)\n- Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)(alexey.petrenko@oracle.com)\n- Update x509.genkey [Orabug: 24817676]\n- Conflict with shim-ia32 and shim-x64 <= 15-2.0.3\n[3.10.0-1160]\n- [kernel] modsign: Add nomokvarconfig kernel parameter (Lenny Szubowicz) [1867857]\n- [firmware] modsign: Add support for loading certs from the EFI MOK config table (Lenny Szubowicz) [1867857]\n- [kernel] modsign: Move import of MokListRT certs to separate routine (Lenny Szubowicz) [1867857]\n- [kernel] modsign: Avoid spurious error message after last MokListRTn (Lenny Szubowicz) [1867857]\n[3.10.0-1159]\n- [kernel] modsign: Import certificates from optional MokListRT (Lenny Szubowicz) [1862840]\n- [crypto] crypto/pefile: Support multiple signatures in verify_pefile_signature (Lenny Szubowicz) [1862840]\n- [crypto] crypto/pefile: Tolerate other pefile signatures after first (Lenny Szubowicz) [1862840]\n[3.10.0-1158]\n- [redhat] switch secureboot kernel image signing to release keys (Jan Stancek) []\n[3.10.0-1157]\n- [fs] signal: Dont send signals to tasks that dont exist (Vladis Dronov) [1856166]\n[3.10.0-1156]\n- [fs] gfs2: Fix regression due to unwanted gfs2_qa_put (Robert S Peterson) [1798713]\n- [include] signal: Unfairly acquire tasklist_lock in send_sigio() if irq disabled (Waiman Long) [1838799]\n- [fs] signal: Dont take tasklist_lock if PID type is PIDTYPE_PID (Waiman Long) [1838799]\n- [vfio] vfio/pci: Fix SR-IOV VF handling with MMIO blocking (Alex Williamson) [1820632] {CVE-2020-12888}\n[3.10.0-1155]\n- [x86] Revert 'x86: respect memory size limiting via mem= parameter' (Joel Savitz) [1851576]\n- [mm] Revert 'mm/memory_hotplug.c: only respect mem= parameter during boot stage' (Joel Savitz) [1851576]\n- [fs] nfsd: only WARN once on unmapped errors ('J. Bruce Fields') [1850430]\n- [powerpc] pci/of: Fix OF flags parsing for 64bit BARs (Greg Kurz) [1840114]\n- [fs] cifs: fix NULL dereference in match_prepath (Leif Sahlberg) [1759852]\n[3.10.0-1154]\n- [fs] gfs2: move privileged user check to gfs2_quota_lock_check (Robert S Peterson) [1798713]\n- [fs] gfs2: Fix problems regarding gfs2_qa_get and _put (Robert S Peterson) [1798713]\n- [fs] gfs2: dont call quota_unhold if quotas are not locked (Robert S Peterson) [1798713]\n- [fs] gfs2: Remove unnecessary gfs2_qa_{get, put} pairs (Robert S Peterson) [1798713]\n- [fs] gfs2: Split gfs2_rsqa_delete into gfs2_rs_delete and gfs2_qa_put (Robert S Peterson) [1798713]\n- [fs] gfs2: Change inode qa_data to allow multiple users (Robert S Peterson) [1798713]\n- [fs] gfs2: eliminate gfs2_rsqa_alloc in favor of gfs2_qa_alloc (Robert S Peterson) [1798713]\n- [fs] gfs2: Switch to list_{first,last}_entry (Robert S Peterson) [1798713]\n- [fs] gfs2: Clean up inode initialization and teardown (Robert S Peterson) [1798713]\n- [fs] gfs2: Minor gfs2_alloc_inode cleanup (Robert S Peterson) [1798713]\n- [fs] gfs2: Fix busy-on-umount in gfs2_atomic_open() (Andrew Price) [1812558]\n[3.10.0-1153]\n- [x86] mm: Fix mremap not considering huge pmd devmap (Rafael Aquini) [1843437] {CVE-2020-10757}\n- [mm] mm, dax: check for pmd_none() after split_huge_pmd() (Rafael Aquini) [1843437] {CVE-2020-10757}\n- [mm] mm: mremap: streamline move_page_tables()s move_huge_pmd() corner case (Rafael Aquini) [1843437] {CVE-2020-10757}\n- [mm] mm: mremap: validate input before taking lock (Rafael Aquini) [1843437] {CVE-2020-10757}\n- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_ret_wmm_get_status() (Jarod Wilson) [1844070] {CVE-2020-12654}\n- [wireless] mwifiex: Fix possible buffer overflows in mwifiex_cmd_append_vsie_tlv() (Jarod Wilson) [1844026] {CVE-2020-12653}\n- [net] netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6 (Florian Westphal) [1845428]\n[3.10.0-1152]\n- [nvmem] nvmem: properly handle returned value nvmem_reg_read (Vladis Dronov) [1844409]\n- [mailbox] PCC: fix dereference of ERR_PTR (Vladis Dronov) [1844409]\n- [kernel] futex: Unlock hb->lock in futex_wait_requeue_pi() error path (Vladis Dronov) [1844409]\n- [fs] aio: fix inconsistent ring state (Jeff Moyer) [1845326]\n- [vfio] vfio/mdev: make create attribute static (Vladis Dronov) [1837549]\n- [vfio] treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Synchronize device create/remove with parent removal (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Avoid creating sysfs remove file on stale device removal (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Improve the create/remove sequence (Vladis Dronov) [1837549]\n- [vfio] treewide: Add SPDX license identifier - Makefile/Kconfig (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Avoid inline get and put parent helpers (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Fix aborting mdev child device removal if one fails (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Follow correct remove sequence (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Avoid masking error code to EBUSY (Vladis Dronov) [1837549]\n- [include] vfio/mdev: Drop redundant extern for exported symbols (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Removed unused kref (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Avoid release parent reference during error path (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: Add iommu related member in mdev_device (Vladis Dronov) [1837549]\n- [vfio] vfio/mdev: add static modifier to add_mdev_supported_type (Vladis Dronov) [1837549]\n- [vfio] vfio: mdev: make a couple of functions and structure vfio_mdev_driver static (Vladis Dronov) [1837549]\n- [char] tpm/tpm_tis: Free IRQ if probing fails (David Arcari) [1774698]\n- [kernel] audit: fix a memleak caused by auditing load module (Richard Guy Briggs) [1843370]\n- [kernel] audit: fix potential null dereference 'context->module.name' (Richard Guy Briggs) [1843370]\n- [nvme] nvme: limit number of IO queues on Dell/Samsung config (David Milburn) [1837617]\n[3.10.0-1151]\n- [netdrv] qede: Fix multicast mac configuration (Michal Schmidt) [1740064]\n- [scsi] sd_dif: avoid incorrect ref_tag errors on 4K devices larger than 2TB (Ewan Milne) [1833528]\n- [hid] HID: hiddev: do cleanup in failure of opening a device (Torez Smith) [1814257] {CVE-2019-19527}\n- [hid] HID: hiddev: avoid opening a disconnected device (Torez Smith) [1814257] {CVE-2019-19527}\n- [x86] x86: make mul_u64_u64_div_u64() 'static inline' (Oleg Nesterov) [1845864]\n- [mm] mm: page_isolation: fix potential warning from user (Rafael Aquini) [1845620]\n- [s390] s390/mm: correct return value of pmd_pfn (Claudio Imbrenda) [1841106]\n- [fs] fs/proc/vmcore.c:mmap_vmcore: skip non-ram pages reported by hypervisors (Lianbo Jiang) [1790799]\n- [kernel] kernel/sysctl.c: ignore out-of-range taint bits introduced via kernel.tainted (Rafael Aquini) [1845356]\n- [documentation] kernel: add panic_on_taint (Rafael Aquini) [1845356]\n- [fs] ext4: Remove unwanted ext4_bread() from ext4_quota_write() (Lukas Czerner) [1845379]\n- [scsi] scsi: sg: add sg_remove_request in sg_write ('Ewan D. Milne') [1840699] {CVE-2020-12770}\n- [fs] fs/binfmt_elf.c: allocate initialized memory in fill_thread_core_info() (Donghai Qiao) [1832062] {CVE-2020-10732}\n[3.10.0-1150]\n- [netdrv] net/mlx5e: Fix handling of compressed CQEs in case of low NAPI budget (Alaa Hleihel) [1845020]\n- [mm] memcg: fix NULL pointer dereference in __mem_cgroup_usage_unregister_event (Waiman Long) [1842715]\n- [mm] memcg: only free spare array when readers are done (Waiman Long) [1842715]\n- [powerpc] powerpc/crashkernel: Take 'mem=' option into account (Pingfan Liu) [1751555]\n- [infiniband] IB/ipoib: Fix double free of skb in case of multicast traffic in CM mode (Kamal Heib) [1597952]\n- [security] selinux: properly handle multiple messages in selinux_netlink_send() (Ondrej Mosnacek) [1839650] {CVE-2020-10751}\n- [netdrv] net: ena: Add PCI shutdown handler to allow safe kexec (Bhupesh Sharma) [1841578]\n- [x86] x86/speculation: Support old struct x86_cpu_id & x86_match_cpu() kABI (Waiman Long) [1827188] {CVE-2020-0543}\n- [documentation] x86/speculation: Add Ivy Bridge to affected list (Waiman Long) [1827188] {CVE-2020-0543}\n- [documentation] x86/speculation: Add SRBDS vulnerability and mitigation documentation (Waiman Long) [1827188] {CVE-2020-0543}\n- [x86] x86/speculation: Add Special Register Buffer Data Sampling (SRBDS) mitigation (Waiman Long) [1827188] {CVE-2020-0543}\n- [x86] x86/cpu: Add 'table' argument to cpu_matches() (Waiman Long) [1827188] {CVE-2020-0543}\n- [x86] x86/cpu: Add a steppings field to struct x86_cpu_id (Waiman Long) [1827188] {CVE-2020-0543}\n- [x86] x86/cpu/bugs: Convert to new matching macros (Waiman Long) [1827188] {CVE-2020-0543}\n- [x86] x86/cpu: Add consistent CPU match macros (Waiman Long) [1827188] {CVE-2020-0543}\n- [cpufreq] x86/devicetable: Move x86 specific macro out of generic code (Waiman Long) [1827188] {CVE-2020-0543}\nheader (Waiman Long) [1827188] {CVE-2020-0543}\n[3.10.0-1149]\n- [mm] mm/memory_hotplug.c: only respect mem= parameter during boot stage (Joel Savitz) [1838795]\n- [netdrv] qed: Reduce the severity of ptp debug message (Manish Chopra) [1703770]\n- [kernel] pid_ns: Sleep in TASK_INTERRUPTIBLE in zap_pid_ns_processes (Jay Shin) [1836620]\n- [fs] gfs2: remove BUG_ON() from gfs2_log_alloc_bio() (Abhijith Das) [1828454]\n- [fs] gfs2: Even more gfs2_find_jhead fixes (Abhijith Das) [1828454]\n- [fs] quota: fix return value in dqget() (Eric Sandeen) [1842761]\n- [fs] proc_sysctl.c: fix potential page fault while unregistering sysctl table (Carlos Maiolino) [1843368]\n- [fs] ext4: fix error handling in ext4_ext_shift_extents (Lukas Czerner) [1843366]\n- [vhost] vhost: Check docket sk_family instead of call getname (Vladis Dronov) [1823302] {CVE-2020-10942}\n- [input] hyperv-keyboard - add module description (Mohammed Gamal) [1842689]\n- [hv] hv: Add a module description line to the hv_vmbus driver (Mohammed Gamal) [1842689]\n- [hid] hyperv: Add a module description line (Mohammed Gamal) [1842689]\n- [x86] sched/cputime: Improve cputime_adjust() (Oleg Nesterov) [1511040]\n- [acpi] ACPI: APEI: call into AER handling regardless of severity (Al Stone) [1737246]\n- [acpi] ACPI: APEI: handle PCIe AER errors in separate function (Al Stone) [1737246]\n- [acpi] ras: acpi/apei: cper: add support for generic data v3 structure (Al Stone) [1737246]\n- [acpi] ACPICA: ACPI 6.1: Updates for the HEST ACPI table (Al Stone) [1737246]\n- [acpi] ACPI / APEI: Switch to use new generic UUID API (Al Stone) [1737246]\n- [x86] x86/efi-bgrt: Quirk for BGRT when memory encryption active (Lenny Szubowicz) [1723477]\n- [scsi] scsi: megaraid_sas: Update driver version to 07.714.04.00-rc1 (Tomas Henzl) [1840550]\n- [scsi] scsi: megaraid_sas: TM command refire leads to controller firmware crash (Tomas Henzl) [1840550]\n- [scsi] scsi: megaraid_sas: Replace undefined MFI_BIG_ENDIAN macro with __BIG_ENDIAN_BITFIELD macro (Tomas Henzl) [1840550]\n- [scsi] scsi: megaraid_sas: Limit device queue depth to controller queue depth (Tomas Henzl) [1840550]\n- [vfio] vfio-pci: Invalidate mmaps and block MMIO access on disabled memory (Alex Williamson) [1820632] {CVE-2020-12888}\n- [vfio] vfio-pci: Fault mmaps to enable vma tracking (Alex Williamson) [1820632] {CVE-2020-12888}\n- [vfio] vfio/type1: Support faulting PFNMAP vmas (Alex Williamson) [1820632] {CVE-2020-12888}\n- [vfio] vfio/type1: Fix VA->PA translation for PFNMAP VMAs in vaddr_get_pfn() (Alex Williamson) [1820632] {CVE-2020-12888}\n- [vfio] vfio/pci: call irq_bypass_unregister_producer() before freeing irq (Alex Williamson) [1820632] {CVE-2020-12888}\n- [vfio] vfio_pci: Enable memory accesses before calling pci_map_rom (Alex Williamson) [1820632] {CVE-2020-12888}\n- [fs] signal: Extend exec_id to 64bits (Chris von Recklinghausen) [1834650] {CVE-2020-12826}\n[3.10.0-1148]\n- [x86] hyper-v: Report crash data in die() when panic_on_oops is set (Mohammed Gamal) [1828450]\n- [hv] x86/hyper-v: Report crash register data when sysctl_record_panic_msg is not set (Mohammed Gamal) [1828450]\n- [x86] hyper-v: Report crash register data or kmsg before running crash kernel (Mohammed Gamal) [1828450]\n- [hv] x86/hyper-v: Trigger crash enlightenment only once during system crash (Mohammed Gamal) [1828450]\n- [hv] x86/hyper-v: Free hv_panic_page when fail to register kmsg dump (Mohammed Gamal) [1828450]\n- [hv] x86/hyper-v: Unload vmbus channel in hv panic callback (Mohammed Gamal) [1828450]\n- [hv] vmbus: Fix the issue with freeing up hv_ctl_table_hdr (Mohammed Gamal) [1828450]\n- [hv] vmus: Fix the check for return value from kmsg get dump buffer (Mohammed Gamal) [1828450]\n- [hv] Send one page worth of kmsg dump over Hyper-V during panic (Mohammed Gamal) [1828450]\n- [x86] kvm: x86: Allow suppressing prints on RDMSR/WRMSR of unhandled MSRs (Vitaly Kuznetsov) [1837412]\n- [fs] ext4: Fix race when checking i_size on direct i/o read (Lukas Czerner) [1506437]\n- [fs] copy_file_range should return ENOSYS not EOPNOTSUPP ('J. Bruce Fields') [1783554]\n- [fs] NFSv4.1 fix incorrect return value in copy_file_range ('J. Bruce Fields') [1783554]\n- [x86] Remove the unsupported check for Intel IceLake (Steve Best) [1841237]\n- [md] md/raid1: release pending accounting for an I/O only after write-behind is also finished (Nigel Croxon) [1792520]\n- [net] gre: fix uninit-value in __iptunnel_pull_header (Guillaume Nault) [1840321]\n- [net] inet: protect against too small mtu values. (Guillaume Nault) [1840321]\n- [net] Fix one possible memleak in ip_setup_cork (Guillaume Nault) [1840321]\n- [net] fix a potential recursive NETDEV_FEAT_CHANGE (Guillaume Nault) [1839130]\n- [net] fix null de-reference of device refcount (Guillaume Nault) [1839130]\n- [net] sch_choke: avoid potential panic in choke_reset() (Davide Caratti) [1839118]\n- [net] net_sched: fix datalen for ematch (Davide Caratti) [1839118]\n- [net] netem: fix error path for corrupted GSO frames (Davide Caratti) [1839118]\n- [net] avoid potential infinite loop in tc_ctl_action() (Davide Caratti) [1839118]\n- [net] net_sched: let qdisc_put() accept NULL pointer (Davide Caratti) [1839118]\n- [net] ipv4: really enforce backoff for redirects (Paolo Abeni) [1832332]\n- [net] ipv4: avoid mixed n_redirects and rate_tokens usage (Paolo Abeni) [1832332]\n- [net] ipv4: use a dedicated counter for icmp_v4 redirect packets (Paolo Abeni) [1832332]\n- [net] ipset: Update byte and packet counters regardless of whether they match (Phil Sutter) [1801366]\n- [net] xfrm: skip rt6i_idev update in xfrm6_dst_ifdown if loopback_idev is gone (Sabrina Dubroca) [1390049]\n[3.10.0-1147]\n- [nvme] nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info (Gopal Tiwari) [1839991]\n- [fs] pipe: actually allow root to exceed the pipe buffer limits (Jan Stancek) [1839629]\n- [scsi] Revert 'scsi: mpt3sas: Dont change the DMA coherent mask after allocations' (Tomas Henzl) [1839128]\n- [scsi] Revert 'scsi: mpt3sas: Rename function name is_MSB_are_same' (Tomas Henzl) [1839128]\n- [scsi] Revert 'scsi: mpt3sas: Separate out RDPQ allocation to new function' (Tomas Henzl) [1839128]\n- [scsi] Revert 'scsi: mpt3sas: Handle RDPQ DMA allocation in same 4G region' (Tomas Henzl) [1839128]\n- [netdrv] net/mlx5e: Avoid duplicating rule destinations (Alaa Hleihel) [1727593]\n- [netdrv] net/mlx5e: Extend encap entry with reference counter (Alaa Hleihel) [1727593]\n- [netdrv] net/mlx5e: Fix free peer_flow when refcount is 0 (Alaa Hleihel) [1727593]\n- [netdrv] net/mlx5e: Extend tc flow struct with reference counter (Alaa Hleihel) [1727593]\n- [netdrv] net/mlx5e: Dont make internal use of errno to denote missing neigh (Alaa Hleihel) [1727593]\n- [netdrv] net/mlx5e: Fix freeing flow with kfree() and not kvfree() (Alaa Hleihel) [1727593]\n- [drm] drm/nouveau/gr/gp107, gp108: implement workaround for HW hanging during init (Karol Herbst) [1834360 1834356 1833485]\n- [drm] drm/nouveau: workaround runpm fail by disabling PCI power management on certain intel bridges (Karol Herbst) [1834360 1834356 1833485]\n[3.10.0-1146]\n- [net] revert 'rtnetlink: validate IFLA_MTU attribute in rtnl_create_link()' (Jiri Benc) [1839608]\n- [net] ipv6/addrconf: call ipv6_mc_up() for non-Ethernet interface (Davide Caratti) [1838936]\n- [net] ipv6: Handle missing host route in __ipv6_ifa_notify (Davide Caratti) [1838936]\n- [net] ipv6: drop incoming packets having a v4mapped source address (Davide Caratti) [1838936]\n- [net] l2tp: fix infoleak in l2tp_ip6_recvmsg() (Andrea Claudi) [1837546]\n- [net] vti6: Fix memory leak of skb if input policy check fails (Patrick Talbert) [1836160]\n- [net] tcp: prevent bogus FRTO undos with non-SACK flows (Guillaume Nault) [1694860]\n- [scsi] scsi: smartpqi: fix controller lockup observed during force reboot (Don Brace) [1775369]\n- [fs] ext4: fix setting of referenced bit in ext4_es_lookup_extent() (Lukas Czerner) [1663720]\n- [fs] ext4: introduce aging to extent status tree (Lukas Czerner) [1663720]\n- [fs] ext4: cleanup flag definitions for extent status tree (Lukas Czerner) [1663720]\n- [fs] ext4: limit number of scanned extents in status tree shrinker (Lukas Czerner) [1663720]\n- [fs] ext4: move handling of list of shrinkable inodes into extent status code (Lukas Czerner) [1663720]\n- [fs] ext4: change LRU to round-robin in extent status tree shrinker (Lukas Czerner) [1663720]\n- [fs] ext4, jbd2: ensure panic when aborting with zero errno (Lukas Czerner) [1834783]\n- [fs] jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record (Lukas Czerner) [1834783]\n- [fs] jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal (Lukas Czerner) [1834783]\n- [fs] ext4: fix buffer leak in ext4_xattr_move_to_block() on error path (Lukas Czerner) [1834783]\n- [fs] ext4: fix missing return values checks in ext4_cross_rename (Lukas Czerner) [1836819]\n- [fs] ext4: Fix POSIX ACL leak in ext4_xattr_set_acl (Lukas Czerner) [1543020]\n- [vfio] vfio-pci: Mask cap zero (Alex Williamson) [1838717]\n- [x86] Mark Intel Cooper Lake (CPX) supported (Steve Best) [1773681]\n- [fs] fs/bio-integrity: dont enable integrity for data-less bio (Ming Lei) [1835943]\n- [char] ipmi_si: Only schedule continuously in the thread in maintenance mode (Alexey Klimov) [1837127]\n- [kernel] wait/ptrace: assume __WALL if the child is traced (Oleg Nesterov) [1497808]\n- [mm] mm, hugetlb, soft_offline: save compound page order before page migration (Artem Savkov) [1751589]\n- [fs] fs/hugetlbfs/inode.c: fix hwpoison reserve accounting (Artem Savkov) [1751589]\n- [fs] mm: hwpoison: dissolve in-use hugepage in unrecoverable memory error (Artem Savkov) [1751589]\n- [mm] mm: soft-offline: dissolve free hugepage if soft-offlined (Artem Savkov) [1751589]\n- [mm] mm: hugetlb: soft-offline: dissolve source hugepage after successful migration (Artem Savkov) [1751589]\n- [mm] mm: hwpoison: change PageHWPoison behavior on hugetlb pages (Artem Savkov) [1751589]\n- [mm] mm: hugetlb: prevent reuse of hwpoisoned free hugepages (Artem Savkov) [1751589]\n- [netdrv] net/mlx5: Tidy up and fix reverse christmas ordring (Alaa Hleihel) [1831134]\n- [netdrv] net/mlx5: Expose port speed when possible (Alaa Hleihel) [1831134]\n- [include] net/mlx5: Expose link speed directly (Alaa Hleihel) [1831134]\n- [usb] USB: core: Fix races in character device registration and deregistraion (Torez Smith) [1785065] {CVE-2019-19537}\n- [usb] usb: cdc-acm: make sure a refcount is taken early enough (Torez Smith) [1802548] {CVE-2019-19530}\n- [usb] USB: adutux: fix use-after-free on disconnect (Torez Smith) [1798822] {CVE-2019-19523}\n- [media] media: usb:zr364xx:Fix KASAN:null-ptr-deref Read in zr364xx_vidioc_querycap (Torez Smith) [1795597] {CVE-2019-15217}\n[3.10.0-1145]\n- [scsi] scsi: qla2xxx: Do not log message when reading port speed via sysfs (Ewan Milne) [1837543]\n- [mm] mm: dmapool: add/remove sysfs file outside of the pool lock lock (Waiman Long) [1836837]\n- [mm] Fix unbalanced mutex in dma_pool_create() (Waiman Long) [1836837]\n- [mm] mm/dmapool.c: remove redundant NULL check for dev in dma_pool_create() (Waiman Long) [1836837]\n- [x86] x86/speculation: Prevent deadlock on ssb_state::lock (Waiman Long) [1836322]\n- [netdrv] can, slip: Protect tty->disc_data in write_wakeup and close with RCU (John Linville) [1805590]\n- [netdrv] slcan: Port write_wakeup deadlock fix from slip (John Linville) [1805590]\n- [fs] ext4: fix support for inode sizes > 1024 bytes (Lukas Czerner) [1817634] {CVE-2019-19767}\n- [fs] ext4: add more paranoia checking in ext4_expand_extra_isize handling (Lukas Czerner) [1817634] {CVE-2019-19767}\n- [fs] ext4: forbid i_extra_isize not divisible by 4 (Lukas Czerner) [1817634] {CVE-2019-19767}\n- [fs] ext4: validate the debug_want_extra_isize mount option at parse time (Lukas Czerner) [1817634] {CVE-2019-19767}\n- [fs] cachefiles: Fix race between read_waiter and read_copier involving op->to_do (Dave Wysochanski) [1829662]\n- [fs] jbd2: Fix possible overflow in jbd2_log_space_left() (Lukas Czerner) [1626092]\n- [media] media: v4l: event: Add subscription to list before calling 'add' operation (Jarod Wilson) [1828802] {CVE-2019-9458}\n- [media] media: v4l: event: Prevent freeing event subscriptions while accessed (Jarod Wilson) [1828802] {CVE-2019-9458}\n- [fs] block: Prevent hung_check firing during long sync IO (Ming Lei) [1724345]\n[3.10.0-1144]\n- [crypto] crypto: user - fix memory leak in crypto_report (Vladis Dronov) [1825132] {CVE-2019-18808 CVE-2019-19062}\n- [crypto] crypto: ccp - Release all allocated memory if sha type is invalid (Vladis Dronov) [1825132] {CVE-2019-18808}\n- [net] xfrm: policy: Fix doulbe free in xfrm_policy_timer (Xin Long) [1836813]\n- [net] xfrm: add the missing verify_sec_ctx_len check in xfrm_add_acquire (Xin Long) [1836813]\n- [net] xfrm: fix uctx len check in verify_sec_ctx_len (Xin Long) [1836813]\n- [net] rtnetlink: validate IFLA_MTU attribute in rtnl_create_link() (Jiri Benc) [1835352]\n- [net] rtnetlink: ndo_dflt_fdb_dump() only work for ARPHRD_ETHER devices (Jiri Benc) [1835352]\n- [net] netlink: fix uninit-value in netlink_sendmsg (Jiri Benc) [1835352]\n- [net] netlink: make sure nladdr has correct size in netlink_connect() (Jiri Benc) [1835352]\n- [net] rtnetlink: fix info leak in RTM_GETSTATS call (Jiri Benc) [1835352]\n- [net] rtnetlink: release net refcnt on error in do_setlink() (Jiri Benc) [1835352]\n- [net] bridge: deny dev_set_mac_address() when unregistering (Hangbin Liu) [1834203]\n- [net] bridge/mdb: remove wrong use of NLM_F_MULTI (Hangbin Liu) [1834203]\n- [net] udp: disable inner UDP checksum offloads in IPsec case (Sabrina Dubroca) [1826244]\n- [net] sctp: Fix SHUTDOWN CTSN Ack in the peer restart case (Xin Long) [1833869]\n- [net] sctp: Fix bundling of SHUTDOWN with COOKIE-ACK (Xin Long) [1833869]\n- [net] sctp: fix possibly using a bad saddr with a given dst (Xin Long) [1833869]\n- [net] sctp: fix refcount bug in sctp_wfree (Xin Long) [1833869]\n- [net] sctp: move the format error check out of __sctp_sf_do_9_1_abort (Xin Long) [1833869]\n- [net] sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY (Xin Long) [1833869]\n- [net] sctp: fully initialize v4 addr in some functions (Xin Long) [1833869]\n- [net] sctp: simplify addr copy (Xin Long) [1833869]\n- [net] sctp: cache netns in sctp_ep_common (Xin Long) [1833869]\n- [net] sctp: destroy bucket if failed to bind addr (Xin Long) [1833869]\n- [net] sctp: Fix the link time qualifier of 'sctp_ctrlsock_exit()' (Xin Long) [1833869]\n- [net] netfilter: nat: never update the UDP checksum when its 0 (Guillaume Nault) [1834278]\n- [net] esp4: add length check for UDP encapsulation (Sabrina Dubroca) [1825155]\n- [net] sit: fix memory leak in sit_init_net() (Andrea Claudi) [1830011] {CVE-2019-16994}\n- [net] sched: cbs: fix NULL dereference in case cbs_init() fails (Davide Caratti) [1830245]\n- [net] netfilter: nf_tables: use-after-free in dynamic operations (Phil Sutter) [1819087]\n- [net] tcp: tcp_v4_err() should be more careful (Marcelo Leitner) [1749964]\n- [net] tcp: remove BUG_ON from tcp_v4_err (Marcelo Leitner) [1749964]\n- [net] tcp: clear icsk_backoff in tcp_write_queue_purge() (Marcelo Leitner) [1749964]\n- [net] psample: fix skb_over_panic (Sabrina Dubroca) [1823251]\n- [net] sched: ensure opts_len <= IP_TUNNEL_OPTS_MAX in act_tunnel_key (Patrick Talbert) [1823691]\n- [netdrv] fjes: Handle workqueue allocation failure (Masayoshi Mizuma) [1830563] {CVE-2019-16231}\n[3.10.0-1143]\n- [mm] mm: mempolicy: require at least one nodeid for MPOL_PREFERRED (Rafael Aquini) [1834434] {CVE-2020-11565}\n- [fs] fs: avoid softlockups in s_inodes iterators (Jay Shin) [1760145]\n- [scsi] scsi: core: Add DID_ALLOC_FAILURE and DID_MEDIUM_ERROR to hostbyte_table (Maurizio Lombardi) [1832019]\n- [fs] locks: allow filesystems to request that ->setlease be called without i_lock (Jeff Layton) [1830606]\n- [fs] locks: move fasync setup into generic_add_lease (Jeff Layton) [1830606]\n- [fs] revert '[fs] xfs: catch bad stripe alignment configurations' (Carlos Maiolino) [1836292]\n- [scsi] scsi: scsi_debug: num_tgts must be >= 0 (Ewan Milne) [1834998]\n- [scsi] scsi: scsi_debug: Avoid PI being disabled when TPGS is enabled (Ewan Milne) [1834998]\n- [scsi] scsi: scsi_debug: Fix memory leak if LBP enabled and module is unloaded (Ewan Milne) [1834998]\n- [scsi] scsi_debug: check for bigger value first (Ewan Milne) [1834998]\n- [scsi] scsi_debug: vfree is null safe so drop the check (Ewan Milne) [1834998]\n- [scsi] scsi_debug: error message should say scsi_host_alloc not scsi_register (Ewan Milne) [1834998]\n- [fs] xfs: Fix tail rounding in xfs_alloc_file_space() (Bill ODonnell) [1833223]\n- [fs] ceph: dont drop message if it contains more data than expected (Jeff Layton) [1828340]\n- [fs] ceph: dont error out on larger-than-expected session messages (Jeff Layton) [1828340]\n- [acpi] ACPI: disable BERT by default, add parameter to enable it (Aristeu Rozanski) [1525298]\n- [acpi] ACPI: APEI: Fix possible out-of-bounds access to BERT region (Aristeu Rozanski) [1525298]\n- [acpi] ACPI / sysfs: Extend ACPI sysfs to provide access to boot error region (Aristeu Rozanski) [1525298]\n- [acpi] ACPI: APEI: Fix BERT resources conflict with ACPI NVS area (Aristeu Rozanski) [1525298]\n- [acpi] ACPI / APEI: Add Boot Error Record Table (BERT) support (Aristeu Rozanski) [1525298]\n- [acpi] ACPICA: Restore error table definitions to reduce code differences between Linux and ACPICA upstream (Aristeu Rozanski) [1525298]\n[3.10.0-1142]\n- [fs] gfs2: Another gfs2_walk_metadata fix (Andreas Grunbacher) [1822230]\n- [fs] ext4: prevent ext4_quota_write() from failing due to ENOSPC (Lukas Czerner) [1068952]\n- [fs] ext4: do not zeroout extents beyond i_disksize (Lukas Czerner) [1834320]\n- [fs] pnfs: Ensure we layoutcommit before revalidating attributes (Benjamin Coddington) [1827647]\n- [fs] nfs: flush data when locking a file to ensure cache coherence for mmap (Scott Mayhew) [1813811]\n- [fs] call fsnotify_sb_delete after evict_inodes (Jay Shin) [1760145]\n- [fs] inode: dont softlockup when evicting inodes (Jay Shin) [1760145]\n- [fs] drop_caches.c: avoid softlockups in drop_pagecache_sb() (Jay Shin) [1760145]\n- [fs] gfs2: More gfs2_find_jhead fixes (Abhijith Das) [1828454]\n- [fs] gfs2: Another gfs2_find_jhead fix (Abhijith Das) [1828454]\n- [fs] nfs: fix mount/umount race in nlmclnt (Jay Shin) [1771205]\n- [fs] nlm_shutdown_hosts_net() cleanup (Jay Shin) [1771205]\n- [scsi] scsi: megaraid: Use true, false for bool variables (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid: make two symbols static in megaraid_sas_base.c (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid: make some symbols static in megaraid_sas_fusion.c (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid: make some symbols static in megaraid_sas_fp.c (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Use scnprintf() for avoiding potential buffer overflow (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: silence a warning (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: fix indentation issue (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Limit the number of retries for the IOCTLs causing firmware fault (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Do not initiate OCR if controller is not in ready state (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Re-Define enum DCMD_RETURN_STATUS (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Do not set HBA Operational if FW is not in operational state (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Do not kill HBA if JBOD Seqence map or RAID map is disabled (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Do not kill host bus adapter, if adapter is already dead (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Update optimal queue depth for SAS and NVMe devices (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Reset adapter if FW is not in READY state after device resume (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Make poll_aen_lock static (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Fix a compilation warning (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Make a bunch of functions static (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Make some functions static (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: remove unused variables 'debugBlk', 'fusion' (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: Unique names for MSI-X vectors (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: fix panic on loading firmware crashdump (Tomas Henzl) [1827037]\n- [scsi] scsi: megaraid_sas: fix spelling mistake 'megarid_sas' -> 'megaraid_sas' (Tomas Henzl) [1827037]\n- [scsi] scsi: mpt3sas: Disable DIF when prot_mask set to zero (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Handle RDPQ DMA allocation in same 4G region (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Separate out RDPQ allocation to new function (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Rename function name is_MSB_are_same (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Dont change the DMA coherent mask after allocations (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Fix kernel panic observed on soft HBA unplug (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Fix double free in attach error handling (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Use Component img header to get Package ver (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Fix module parameter max_msix_vectors (Tomas Henzl) [1832868]\n- [scsi] scsi: mpt3sas: Reject NVMe Encap cmnds to unsupported HBA (Tomas Henzl) [1832868]\n- [netdrv] hv_netvsc: Fix error handling in netvsc_set_features() (Mohammed Gamal) [1821814]\n- [netdrv] hv_netvsc: Sync offloading features to VF NIC (Mohammed Gamal) [1821814]\n- [netdrv] hv_netvsc: Fix IP header checksum for coalesced packets (Mohammed Gamal) [1821814]\n- [netdrv] hv_netvsc: Fix rndis_per_packet_info internal field initialization (Mohammed Gamal) [1821814]\n- [netdrv] hv_netvsc: Add handler for LRO setting change (Mohammed Gamal) [1821814]\n- [netdrv] hv_netvsc: Add support for LRO/RSC in the vSwitch (Mohammed Gamal) [1821814]\n- [netdrv] hv_netvsc: Add handlers for ethtool get/set msg level (Mohammed Gamal) [1821814]\n- [netdrv] hv_netvsc: Fix the variable sizes in ipsecv2 and rsc offload (Mohammed Gamal) [1821814]\n- [fs] fix mntput/mntput race (Miklos Szeredi) [1828320]\n- [wireless] rtlwifi: prevent memory leak in rtl_usb_probe (Jarod Wilson) [1829847] {CVE-2019-19063}\n- [wireless] iwlwifi: dbg_ini: fix memory leak in alloc_sgtable (Jarod Wilson) [1829375] {CVE-2019-19058}\n- [net] nl80211: fix memory leak in nl80211_get_ftm_responder_stats (Jarod Wilson) [1829289] {CVE-2019-19055}\n- [wireless] iwlwifi: pcie: fix memory leaks in iwl_pcie_ctxt_info_gen3_init (Jarod Wilson) [1829393] {CVE-2019-19059}\n[3.10.0-1141]\n- [kernel] sched/fair: Scale bandwidth quota and period without losing quota/period ratio precision (Artem Savkov) [1752067]\n- [edac] EDAC: skx_common: downgrade message importance on missing PCI device (Aristeu Rozanski) [1832683]\n- [s390] s390/qdio: consider ERROR buffers for inbound-full condition (Philipp Rudo) [1831791]\n- [s390] s390/ftrace: fix potential crashes when switching tracers (Philipp Rudo) [1813124]\n- [netdrv] ibmvnic: Skip fatal error reset after passive init (Steve Best) [1830992]\n- [scsi] smartpqi: bump driver version (Don Brace) [1822762]\n- [scsi] scsi: smartpqi: add bay identifier (Don Brace) [1822762]\n- [scsi] scsi: smartpqi: add module param to hide vsep (Don Brace) [1822762]\n- [scsi] scsi: bnx2fc: Update the driver version to 2.12.13 (Nilesh Javali) [1709542]\n- [scsi] scsi: bnx2fc: fix boolreturn.cocci warnings (Nilesh Javali) [1709542]\n- [scsi] scsi: bnx2fc: Fix SCSI command completion after cleanup is posted (Nilesh Javali) [1709542]\n- [scsi] scsi: bnx2fc: Process the RQE with CQE in interrupt context (Nilesh Javali) [1709542]\n- [scsi] scsi: qla2xxx: Fix a recently introduced kernel warning (Nilesh Javali) [1828875]\n- [scsi] Fix abort timeouts in CQ Full conditions (Dick Kennedy) [1802654]\n- [input] Input: add safety guards to input_set_keycode() (Chris von Recklinghausen) [1828222] {CVE-2019-20636}\n- [scsi] scsi: libsas: delete sas port if expander discover failed (Tomas Henzl) [1829965] {CVE-2019-15807}\n- [net] netlabel: cope with NULL catmap (Paolo Abeni) [1827240] {CVE-2020-10711}\n[3.10.0-1140]\n- [netdrv] mlx5: Remove unsupported tag for ConnectX-6 Dx device (Alaa Hleihel) [1829777]\n- [fs] xfs: clear PF_MEMALLOC before exiting xfsaild thread (Brian Foster) [1827910]\n- [fs] gfs2: fix O_EXCL|O_CREAT handling on cold dcache (Andrew Price) [1812558]\n- [fs] nfs: Correct an nfs page array calculation error (Jay Shin) [1824270]\n- [infiniband] RDMA/bnxt_re: Fix stat push into dma buffer on gen p5 devices (Jonathan Toppins) [1828475 1824438]\n- [netdrv] bnxt_en: Fix allocation of zero statistics block size regression (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Allocate the larger per-ring statistics block for 57500 chips (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Expand bnxt_tpa_info struct to support 57500 chips (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Refactor TPA logic (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Add TPA structure definitions for BCM57500 chips (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Update firmware interface spec. to 1.10.0.89 (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Update firmware interface to 1.10.0.69 (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Update firmware interface spec. to 1.10.0.47 (Jonathan Toppins) [1824438]\n- [netdrv] bnxt_en: Refactor ethtool ring statistics logic (Jonathan Toppins) [1824438]\n- [block] blk-mq: Put driver tag in blk_mq_dispatch_rq_list() when no budget (Ming Lei) [1825431]\n- [scsi] scsi: fnic: do not queue commands during fwreset (Govindarajulu Varadarajan) [1794150]\n- [scsi] scsi: fnic: fix invalid stack access (Govindarajulu Varadarajan) [1794150]\n- [scsi] scsi: fnic: fix use after free (Govindarajulu Varadarajan) [1794150]\n- [netdrv] enic: prevent waking up stopped tx queues over watchdog reset (Govindarajulu Varadarajan) [1794148]\n- [fs] ceph: use ceph_evict_inode to cleanup inodes resource (Jeff Layton) [1784016]\n- [fs] ceph: fix use-after-free in __ceph_remove_cap() (Jeff Layton) [1784016]\n- [fs] ceph: hold i_ceph_lock when removing caps for freeing inode (Jeff Layton) [1784016]\n- [input] Input: ff-memless - kill timer in destroy() (Chris von Recklinghausen) [1815021] {CVE-2019-19524}\n- [scsi] scsi: qla2xxx: fix a potential NULL pointer dereference ('Ewan D. Milne') [1829246] {CVE-2019-16233}\n[3.10.0-1139]\n- [fs] nfsd: Fix races between nfsd4_cb_release() and nfsd4_shutdown_callback() ('J. Bruce Fields') [1448750]\n- [fs] nfsd: minor 4.1 callback cleanup ('J. Bruce Fields') [1448750]\n- [fs] nfsd: Dont release the callback slot unless it was actually held (Benjamin Coddington) [1448750]\n- [lib] kobject: dont use WARN for registration failures (Ewan Milne) [1756495]\n- [lib] lib/kobject: Join string literals back (Ewan Milne) [1756495]\n- [scsi] scsi: ibmvfc: Dont send implicit logouts prior to NPIV login (Steve Best) [1828726]\n- [fs] nfs: Serialize O_DIRECT reads and writes (Benjamin Coddington) [1826571]\n- [mm] mm/page_owner: convert page_owner_inited to static key (Rafael Aquini) [1781726]\n- [mm] mm/page_owner: set correct gfp_mask on page_owner (Rafael Aquini) [1781726]\n- [mm] mm/page_owner: fix possible access violation (Rafael Aquini) [1781726]\n- [mm] mm/page_owner: use late_initcall to hook in enabling (Rafael Aquini) [1781726]\n- [mm] mm/page_owner: remove unnecessary stack_trace field (Rafael Aquini) [1781726]\n- [mm] mm/page_owner: correct owner information for early allocated pages (Rafael Aquini) [1781726]\n- [mm] mm/page_owner: keep track of page owners (Rafael Aquini) [1781726]\n- [documentation] Documentation: add new page_owner document (Rafael Aquini) [1781726]\n- [kernel] stacktrace: introduce snprint_stack_trace for buffer output (Rafael Aquini) [1781726]\n[3.10.0-1138]\n- [infiniband] RDMA/bnxt_re: Fix chip number validation Broadcoms Gen P5 series (Jonathan Toppins) [1823679]\n- [scsi] scsi: qla2xxx: Silence fwdump template message (Ewan Milne) [1783191]\n- [scsi] scsi: hpsa: Update driver version (Joseph Szczypek) [1808403]\n- [scsi] scsi: hpsa: correct race condition in offload enabled (Joseph Szczypek) [1808403]\n- [netdrv] bonding: fix active-backup transition after link failure (Jarod Wilson) [1712235]\n- [netdrv] bonding: fix state transition issue in link monitoring (Jarod Wilson) [1712235]\n- [netdrv] bonding: fix potential NULL deref in bond_update_slave_arr (Jarod Wilson) [1712235]\n- [netdrv] bonding: Force slave speed check after link state recovery for 802.3ad (Jarod Wilson) [1712235]\n- [i2c] i2c: core-smbus: prevent stack corruption on read I2C_BLOCK_DATA (Vladis Dronov) [1822641] {CVE-2017-18551}\n- [acpi] ACPI / EC: Ensure lock is acquired before accessing ec struct (Al Stone) [1811132]\n- [x86] x86/mce: Do not log spurious corrected mce errors (Prarit Bhargava) [1797205]\n- [wireless] mwifiex: Fix mem leak in mwifiex_tm_cmd (Jarod Wilson) [1804971] {CVE-2019-20095}\n- [kernel] kernel/module.c: wakeup processes in module_wq on module unload (Prarit Bhargava) [1771939]\n- [acpi] ACPICA: acpi: acpica: fix acpi operand cache leak in nseval.c (Prarit Bhargava) [1790782]\n[3.10.0-1137]\n- [tty] tty/hvc: Use IRQF_SHARED for OPAL hvc consoles (Gustavo Duarte) [1600213]\n- [mm] mm/swap_slots.c: fix race conditions in swap_slots cache init (Rafael Aquini)\n- [block] loop: set PF_MEMALLOC_NOIO for the worker thread (Ming Lei) [1825950]\n- [tty] serial: 8250: drop the printk from serial8250_interrupt() (Prarit Bhargava) [1825049]\n- [net] net: linkwatch: add check for netdevice being present to linkwatch_do_dev (Alaa Hleihel) [1595302]\n[3.10.0-1136]\n- [fs] sunrpc: expiry_time should be seconds not timeval (Benjamin Coddington) [1794055]\n- [nvdimm] Revert 'driver boilerplate changes to properly manage device_rh' (Christoph von Recklinghausen) [1823750]\n- [base] call device_rh_free in device_release before driver/class/type release is called (Christoph von Recklinghausen) [1822888]\n- [md] md:md-faulty kernel panic is caused by QUEUE_FLAG_NO_SG_MERGE (Nigel Croxon) [1822462]\n- [firmware] efi: cper: print AER info of PCIe fatal error (Vladis Dronov) [1820646]\n- [scsi] qla2xxx: Update driver version to 10.01.00.22.07.9-k (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix message indicating vectors used by driver (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Move free of fcport out of interrupt context (Nilesh Javali) [1808129]\n- [scsi] qla2xxx: delete all sessions before unregister local nvme port (Nilesh Javali) [1808129]\n- [scsi] qla2xxx: Fix hang when issuing nvme disconnect-all in NPIV (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix a NULL pointer dereference in an error path (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix mtcp dump collection failure (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix RIDA Format-2 (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix stuck login session using prli_pend_timer (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Add a shadow variable to hold disc_state history of fcport (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Use common routine to free fcport struct (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix update_fcport for current_topology (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix fabric scan hang (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Complain if sp->done() is not called from the completion path (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Ignore PORT UPDATE after N2N PLOGI (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Change discovery state before PLOGI (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Initialize free_work before flushing it (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Retry fabric Scan on IOCB queue full (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: initialize fc4_type_priority (Nilesh Javali) [1808129]\n- [scsi] scsi: qla2xxx: Fix a dma_pool_free() call (Nilesh Javali) [1808129]\n- [security] selinux: ensure we cleanup the internal AVC counters on error in avc_insert() (Artem Savkov) [1808675]\n- [acpi] ACPICA: Mark acpi_ut_create_internal_object_dbg() memory allocations as non-leaks (Artem Savkov) [1808675]\n- [x86] x86/microcode/AMD: Free unneeded patch before exit from update_cache() (Artem Savkov) [1808675]\n- [mm] memcg: ensure mem_cgroup_idr is updated in a coordinated manner (Aaron Tomlin) [1822405]\n- [mm] mm/page_alloc: increase default min_free_kbytes bound (Joel Savitz) [1704326]\n- [scsi] scsi: lpfc: Fix unexpected error messages during RSCN handling (Dick Kennedy) [1743667]\n- [scsi] scsi: lpfc: Fix discovery failures when target device connectivity bounces (Dick Kennedy) [1743667]\n- [scsi] scsi: lpfc: Fix devices that dont return after devloss followed by rediscovery (Dick Kennedy) [1743667]\n- [scsi] scsi: lpfc: Fix port relogin failure due to GID_FT interaction (Dick Kennedy) [1743667]\n- [video] vgacon: Fix a UAF in vgacon_invert_region (Vladis Dronov) [1818730] {CVE-2020-8647 CVE-2020-8649}\n- [x86] uprobes/x86: Fix detection of 32-bit user mode (Oleg Nesterov) [1804959]\n- [powerpc] module: Handle R_PPC64_ENTRY relocations (Yauheni Kaliuta) [1657540]\n- [scripts] recordmcount.pl: support data in text section on powerpc (Yauheni Kaliuta) [1657540]\n- [powerpc] boot: Request no dynamic linker for boot wrapper (Yauheni Kaliuta) [1657540]\n[3.10.0-1135]\n- [fs] fscache: Fix race in fscache_op_complete() due to split atomic_sub & read (Dave Wysochanski) [1683490]\n- [fs] fscache: Pass the correct cancelled indications to fscache_op_complete() (Dave Wysochanski) [1683490]\n- [char] tpm: ibmvtpm: Wait for buffer to be set before proceeding (Jerry Snitselaar) [1815536]\n- [fs] NFS: Fix a race between mmap() and O_DIRECT (Benjamin Coddington) [1813803]\n- [fs] NFS: Remove a redundant call to unmap_mapping_range() (Benjamin Coddington) [1813803]\n- [fs] NFS: Remove redundant waits for O_DIRECT in fsync() and write_begin() (Benjamin Coddington) [1813803]\n- [fs] NFS: Cleanup nfs_direct_complete() (Benjamin Coddington) [1813803]\n- [fs] NFS: Do not serialise O_DIRECT reads and writes (Benjamin Coddington) [1813803]\n- [fs] NFS: Move buffered I/O locking into nfs_file_write() (Benjamin Coddington) [1813803]\n- [fs] bdi: make inode_to_bdi() inline (Benjamin Coddington) [1813803]\n- [fs] NFS: Remove racy size manipulations in O_DIRECT (Benjamin Coddington) [1813803]\n- [fs] NFS: Dont hold the inode lock across fsync() (Benjamin Coddington) [1813803]\n- [fs] nfs: remove nfs_inode_dio_wait (Benjamin Coddington) [1813803]\n- [fs] nfs: remove nfs4_file_fsync (Benjamin Coddington) [1813803]\n- [fs] NFS: Kill NFS_INO_NFS_INO_FLUSHING: it is a performance killer (Benjamin Coddington) [1813803]\n- [fs] filesystem-dax: Fix dax_layout_busy_page() livelock (Carlos Maiolino) [1817866]\n- [block] blk-mq: fix hang caused by freeze/unfreeze sequence (Ming Lei) [1821718]\n- [fs] ceph: dont NULL terminate virtual xattrs (Jeff Layton) [1717454]\n- [fs] ceph: return -ERANGE if virtual xattr value didnt fit in buffer (Jeff Layton) [1717454]\n- [fs] ceph: make getxattr_cb return ssize_t (Jeff Layton) [1717454]\n- [fs] ceph: use bit flags to define vxattr attributes (Jeff Layton) [1717454]\n- [tty] tty: Prevent ldisc drivers from re-using stale tty fields (Vladis Dronov) [1820031]\n- [powerpc] powerpc64/kexec: Hard disable ftrace before switching to the new kernel (Jerome Marchand) [1731578]\n- [powerpc] powerpc64/ftrace: Delay enabling ftrace on secondary cpus (Jerome Marchand) [1731578]\n- [powerpc] powerpc64/ftrace: Add helpers to hard disable ftrace (Jerome Marchand) [1731578]\n- [powerpc] powerpc64/ftrace: Rearrange #ifdef sections in ftrace.h (Jerome Marchand) [1731578]\n- [powerpc] powerpc64/ftrace: Add a field in paca to disable ftrace in unsafe code paths (Jerome Marchand) [1731578]\n- [powerpc] powerpc/ftrace: Pass the correct stack pointer for DYNAMIC_FTRACE_WITH_REGS (Jerome Marchand) [1731578]\n- [isdn] mISDN: enforce CAP_NET_RAW for raw sockets (Andrea Claudi) [1779474] {CVE-2019-17055}\n- [virtio] virtio-balloon: fix managed page counts when migrating pages between zones (David Hildenbrand) [1780330]\n[3.10.0-1134]\n- [net] netfilter: nf_log: fix uninit read in nf_log_proc_dostring (Phil Sutter) [1770232]\n- [net] netfilter: nf_log: fix error on write NONE to logger choice sysctl (Phil Sutter) [1770232]\n- [net] ethtool: convert large order kmalloc allocations to vzalloc (Davide Caratti) [1786448]\n- [net] l2tp: Allow duplicate session creation with UDP (Guillaume Nault) [1808928]\n- [net] sched: flower: insert new filter to idr after setting its mask (Davide Caratti) [1785141]\n- [net] ipv6: remove printk (Hangbin Liu) [1779533]\n- [net] netfilter: ctnetlink: netns exit must wait for callbacks (Florian Westphal) [1766816]\n- [net] raw: do not report ICMP redirects to user space (Hangbin Liu) [1758386]\n[3.10.0-1133]\n- [powerpc] powerpc/pseries/dlpar: Fix a missing check in dlpar_parse_cc_property() (Steve Best) [1806629] {CVE-2019-12614}\n- [s390] s390/pci: Recover handle in clp_set_pci_fn() (Philipp Rudo) [1816662]\n- [fs] xfs: fix attr leaf header freemap.size underflow (Bill ODonnell) [1808671]\n- [block] floppy: check FDC index for errors before assigning it (Ming Lei) [1815403] {CVE-2020-9383}\n- [block] virtio-blk: improve virtqueue error to BLK_STS (Philipp Rudo) [1818001]\n- [block] virtio-blk: fix hw_queue stopped on arbitrary error (Philipp Rudo) [1818001]\n- [s390] dasd: fix endless loop after read unit address configuration (Philipp Rudo) [1816661]\n- [fs] CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks (Leif Sahlberg) [1504193]\n- [fs] cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs (Leif Sahlberg) [1504193]\n- [char] ipmi: Fix memory leak in __ipmi_bmc_register (Tony Camuso) [1812836] {CVE-2019-19046}\n- [net] ipvs: Remove noisy debug print from ip_vs_del_service (Alexey Klimov) [1769816]\n[3.10.0-1132]\n- [tools] tools/power turbostat: Support Ice Lake server (Steve Best) [1776508]\n- [nvme] nvme-fc: ensure association_id is cleared regardless of a Disconnect LS (Ewan Milne) [1816752]\n- [nvme] nvme-fc: clarify error messages (Ewan Milne) [1816752]\n- [nvme] nvme-fc: fix module unloads while lports still pending (Ewan Milne) [1816752]\n- [scsi] scsi: sd: Clear sdkp->protection_type if disk is reformatted without PI (Ewan Milne) [1816307]\n- [scsi] scsi: core: Fix a compiler warning triggered by the SCSI logging code (Ewan Milne) [1816307]\n- [scsi] scsi: tracing: Fix handling of TRANSFER LENGTH == 0 for READ(6) and WRITE(6) (Ewan Milne) [1816307]\n- [scsi] scsi: core: scsi_trace: Use get_unaligned_be*() (Ewan Milne) [1816307]\n- [scsi] scsi: core: try to get module before removing device (Ewan Milne) [1816307]\n- [scsi] scsi: scsi_dh_alua: handle RTPG sense code correctly during state transitions (Ewan Milne) [1816307]\n- [scsi] scsi: device_handler: remove VLAs (Ewan Milne) [1816307]\n- [scsi] scsi: scsi_dh: Document alua_rtpg_queue() arguments (Ewan Milne) [1816307]\n- [scsi] scsi: scsi_dh_alua: skip RTPG for devices only supporting active/optimized (Ewan Milne) [1816307]\n- [scsi] scsi: scsi_dh_emc: return success in clariion_std_inquiry() (Ewan Milne) [1816307]\n- [target] scsi: target: iscsi: rename some variables to avoid confusion (Maurizio Lombardi) [1806966]\n- [target] scsi: target: iscsi: tie the challenge length to the hash digest size (Maurizio Lombardi) [1806966]\n- [target] scsi: target: iscsi: CHAP: add support for SHA1, SHA256 and SHA3-256 (Maurizio Lombardi) [1806966]\n- [target] scsi: target: compare full CHAP_A Algorithm strings (Maurizio Lombardi) [1806966]\n- [base] device_release() can call device_rh_free() too (Christoph von Recklinghausen) [1793248]\n- [nvdimm] driver boilerplate changes to properly manage device_rh (Christoph von Recklinghausen) [1793248]\n- [base] Add an interface for certain drivers who manage their own struct devices to disassociate their device_rhs (Christoph von Recklinghausen) [1793248]\n- [base] kfree(dev->device_rh) in device_create_release() (Christoph von Recklinghausen) [1793248]\n- [base] kfree and zero device_rh in device_release() (Christoph von Recklinghausen) [1793248]\n- [input] Revert 'Fix device_rh memory leak' (Christoph von Recklinghausen) [1793248]\n- [scsi] Revert 'Fix device_rh leak in scsi_alloc_target()' (Christoph von Recklinghausen) [1793248]\n- [scsi] Revert 'Fix memory leaks in scsi_alloc_sdev()' (Christoph von Recklinghausen) [1793248]\n- [nvdimm] libnvdimm/security: Consolidate 'security' operations (Jeff Moyer) [1735364]\n- [nvdimm] libnvdimm/security: Tighten scope of nvdimm->busy vs security operations (Jeff Moyer) [1735364]\n- [nvdimm] libnvdimm/security: Introduce a 'frozen' attribute (Jeff Moyer) [1735364]\n- [acpi] libnvdimm/security, acpi/nfit: unify zero-key for all security commands (Jeff Moyer) [1735364]\n- [nvdimm] libnvdimm/security: provide fix for secure-erase to use zero-key (Jeff Moyer) [1735364]\n- [block] block: fix checking return value of blk_mq_init_queue (Maxim Levitsky) [1795777]\n- [bluetooth] Bluetooth: hci_ldisc: Postpone HCI_UART_PROTO_READY bit set in hci_uart_set_proto() (Aristeu Rozanski) [1808803] {CVE-2019-15917}\n[3.10.0-1131]\n- [x86] kvm: x86: clear stale x86_emulate_ctxt->intercept value (Jon Maloy) [1806818] {CVE-2020-2732}\n- [x86] kvm: vmx: check descriptor table exits on instruction emulation (Jon Maloy) [1806818] {CVE-2020-2732}\n- [x86] kvm: nvmx: Check IO instruction VM-exit conditions (Jon Maloy) [1806818] {CVE-2020-2732}\n- [x86] kvm: nvmx: Refactor IO bitmap checks into helper function (Jon Maloy) [1806818] {CVE-2020-2732}\n- [x86] kvm: nvmx: Dont emulate instructions in guest mode (Jon Maloy) [1806818] {CVE-2020-2732}\n- [x86] kvm: x86: Fix kvm_bitmap_or_dest_vcpus() to use irq shorthand (Nitesh Narayan Lal) [1772082]\n- [x86] kvm: x86: Initializing all kvm_lapic_irq fields in ioapic_write_indirect (Nitesh Narayan Lal) [1772082]\n- [virt] kvm: x86: remove set but not used variable 'called' (Nitesh Narayan Lal) [1772082]\n- [x86] kvm: x86: Zero the IOAPIC scan request dest vCPUs bitmap (Nitesh Narayan Lal) [1772082]\n- [x86] kvm: x86: deliver KVM IOAPIC scan request to target vCPUs (Nitesh Narayan Lal) [1772082]\n- [kernel] kvm: remember position in kvm->vcpus array (Nitesh Narayan Lal) [1772082]\n- [x86] kvm: x86: Drop KVM_APIC_SHORT_MASK and KVM_APIC_DEST_MASK (Nitesh Narayan Lal) [1772082]\n- [virt] kvm: introduce kvm_make_vcpus_request_mask() API (Nitesh Narayan Lal) [1772082]\n- [virt] kvm: avoid unused variable warning for UP builds (Nitesh Narayan Lal) [1772082]\n- [kernel] smp, cpumask: Use non-atomic cpumask_{set, clear}_cpu() (Nitesh Narayan Lal) [1772082]\n- [fs] nfs: change sign of nfs_fh length ('J. Bruce Fields') [1813326]\n- [netdrv] ibmvnic: Do not process device remove during device reset (Steve Best) [1813903]\n- [x86] x86/debug: Extend the lower bound of crash kernel low reservations (Pingfan Liu) [1811511]\n- [net] tcp: make tcp_space() aware of socket backlog (Guillaume Nault) [1790840]\n- [net] ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup (Sabrina Dubroca) [1774447] {CVE-2020-1749}\n- [net] ipv6: add net argument to ip6_dst_lookup_flow (Sabrina Dubroca) [1774447] {CVE-2020-1749}\n- [net] ipv6: constify ip6_dst_lookup_{flow|tail}() sock arguments (Sabrina Dubroca) [1774447] {CVE-2020-1749}\n- [net] macvlan: return correct error value (Matteo Croce) [1654878]\n- [net] ieee802154: enforce CAP_NET_RAW for raw sockets (Andrea Claudi) [1779494] {CVE-2019-17053}\n- [net] ipv4: fix fnhe usage by non-cached routes (Hangbin Liu) [1788435]\n- [net] route: do not cache fib route info on local routes with oif (Hangbin Liu) [1788435]\n- [net] ip6_tunnel: fix potential NULL pointer dereference (Hangbin Liu) [1767045]\n- [net] net_sched: remove a bogus warning in hfsc (Davide Caratti) [1781323]\n- [netdrv] net/mlx5e: allow TSO on VXLAN over VLAN topologies (Davide Caratti) [1780646]\n[3.10.0-1130]\n- [scsi] scsi: avoid repetitive logging of device offline messages (Nilesh Javali) [1798042]\n- [scsi] qla2xxx: Fix I/Os being passed down when FC device is being deleted (Nilesh Javali) [1798042]\n- [scsi] scsi: qla2xxx: Fix unbound sleep in fcport delete path (Nilesh Javali) [1798042]\n- [scsi] scsi: qla2xxx: Fix hang in fcport delete path (Nilesh Javali) [1798042]\n- [scsi] scsi: qla2xxx: Fix stuck session in GNL (Nilesh Javali) [1798042]\n- [scsi] scsi: qla2xxx: Correct fcport flags handling (Nilesh Javali) [1798042]\n- [scsi] scsi: qla2xxx: Remove defer flag to indicate immeadiate port loss (Nilesh Javali) [1798042]\n- [scsi] iscsi: Avoid potential deadlock in iscsi_if_rx func (Oleksandr Natalenko) [1715986]\n- [netdrv] hv/netvsc: Fix NULL dereference at single queue mode fallback (Mohammed Gamal) [1806488]\n- [netdrv] hv/netvsc: fix handling of fallback to single queue mode (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Fix unwanted rx_table reset (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Fix tx_table init in rndis_set_subchannel() (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: fix typos in code comments (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Fix a deadlock by getting rtnl lock earlier in netvsc_probe() (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Fix hash key value reset after other ops (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Refactor assignments of struct netvsc_device_info (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: split sub-channel setup into async and sync (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Fix send_table offset in case of a host bug (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Add NetVSP v6 and v6.1 into version negotiation (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: Fix offset usage in netvsc_send_table() (Mohammed Gamal) [1806488]\n- [netdrv] hv_netvsc: simplify receive side calling arguments (Mohammed Gamal) [1806488]\n- [scsi] scsi: ibmvfc: Fix NULL return compiler warning (Steve Best) [1810643]\n- [scsi] scsi: ibmvfc: Avoid loss of all paths during SVC node reboot (Steve Best) [1810643]\n- [s390] s390/vdso: add vdso support for coarse clocks (Philipp Rudo) [1791822]\n- [s390] s390/vdso: remove NULL pointer check from clock_gettime (Philipp Rudo) [1791822]\n- [s390] scsi: zfcp: fix rport unblock if deleted SCSI devices on Scsi_Host (Philipp Rudo) [1804807]\n[3.10.0-1129]\n- [tools] perf header: Use last modification time for timestamp (Michael Petlan) [1789947]\n- [tools] perf header: Fix up argument to ctime() (Michael Petlan) [1789947]\n- [hid] HID: multitouch: Add pointstick support for ALPS Touchpad (Benjamin Tissoires) [1672425]\n- [kernel] blktrace: fix dereference after null check (Ming Lei) [1798318] {CVE-2019-19768}\n- [kernel] blktrace: Protect q->blk_trace with RCU (Ming Lei) [1798318] {CVE-2019-19768}\n- [kernel] blktrace: fix trace mutex deadlock (Ming Lei) [1798318] {CVE-2019-19768}\n- [kernel] blktrace: fix unlocked registration of tracepoints (Ming Lei) [1798318] {CVE-2019-19768}\n- [kernel] blktrace: fix unlocked access to init/start-stop/teardown (Ming Lei) [1798318] {CVE-2019-19768}\n- [kernel] tracing: Handle NULL formats in hold_module_trace_bprintk_format() (Oleksandr Natalenko) [1811565]\n- [kernel] tracing: Fix trace_printk() to print when not using bprintk() (Oleksandr Natalenko) [1811565]\n- [sound] ALSA: timer: Fix incorrectly assigned timer instance (Jaroslav Kysela) [1798457] {CVE-2019-19807}\n- [x86] kvm: OOB memory write via kvm_dev_ioctl_get_cpuid (CVE-2019-19332) (Philippe Mathieu-Daud) [1783455] {CVE-2019-19332}\n- [x86] kvm: x86: do not reset microcode version on INIT or RESET (Paolo Bonzini) [1801852]\n- [x86] kvm: x86: list MSR_IA32_UCODE_REV as an emulated MSR (Paolo Bonzini) [1801852]\n- [x86] kvm: x86: Allow userspace to define the microcode version (Paolo Bonzini) [1801852]\n[3.10.0-1128]\n- [fs] ceph: only use d_name directly when parent is locked (Jeff Layton) [1699402]\n- [fs] ext4: work around deleting a file with i_nlink == 0 safely (Carlos Maiolino) [1801046]\n- [fs] xfs: attach dquots and reserve quota blocks during unwritten conversion (Carlos Maiolino) [1786005]\n- [fs] Revert 'xfs: attach dquots and reserve quota blocks during unwritten conversion' (Carlos Maiolino) [1786005]\n- [md] dm mpath: call clear_request_fn_mpio() in multipath_release_clone() (Mike Snitzer) [1806400]\n- [scsi] scsi: implement .cleanup_rq callback (Mike Snitzer) [1806400]\n- [md] blk-mq: add callback of .cleanup_rq (Mike Snitzer) [1806400]\n- [target] target: call init_timer_on_stack() to initialize login_timer (Maurizio Lombardi) [1810037]\n- [scsi] scsi: megaraid_sas: fixup MSIx interrupt setup during resume (Tomas Henzl) [1807077]\n- [tools] selftests/livepatch: Test interaction with ftrace_enabled (Yannick Cote) [1806653]\n- [tools] selftests/livepatch: Make dynamic debug setup and restore generic (Yannick Cote) [1806653]\n- [kernel] ftrace: Introduce PERMANENT ftrace_ops flag (Yannick Cote) [1806653]\n- [tools] selftests/livepatch: push and pop dynamic debug config (Yannick Cote) [1806653]", "edition": 1, "modified": "2020-10-06T00:00:00", "published": "2020-10-06T00:00:00", "id": "ELSA-2020-4060", "href": "http://linux.oracle.com/errata/ELSA-2020-4060.html", "title": "kernel security, bug fix, and enhancement update", "type": "oraclelinux", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}]}