Mageia 7: MGASA-2019-0388 Critical: KVM Out-of-Bounds Write Fix
mageia
December 13, 2019
This update provides an update to 5.4 series kernels, currently based on upstream 5.4.2, adding support for new hardware and features, and fixing atleast the following security iss...
Summary
This update provides an update to 5.4 series kernels, currently based on
upstream 5.4.2, adding support for new hardware and features, and fixing
atleast the following security issue:
KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID
(CVE-2019-19332)
WireGuard has been updated to 0.0.20191205.
xtables-addons have been updated to 3.7 for kernel 5.4 support.
For other fixes and features in this update, see the referenced changelogs.
References
- https://bugs.mageia.org/show_bug.cgi?id=25834
- https://kernelnewbies.org/Linux_5.4
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.1
- https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.2
- https://www.cve.org/CVERecord?id=CVE-2019-19332
Topics Covered
Resolution
SRPMS
- 7/core/kernel-5.4.2-1.mga7
- 7/core/wireguard-tools-0.0.20191205-1.mga7
- 7/core/kmod-virtualbox-6.0.14-10.mga7
- 7/core/xtables-addons-3.7-1.mga7
- 7/core/kmod-xtables-addons-3.7-1.mga7
- 7/core/ldetect-lst-0.6.7-1.mga7
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Publication date: 14 Dec 2019
URL: https://advisories.mageia.org/MGASA-2019-0388.html
Type: security
CVE: CVE-2019-19332
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!