Synopsis: Important: linux-firmware security, bug fix, and enhancement 
Advisory ID:       SLSA-2019:2169-1
Issue Date:        2019-08-06
CVE Numbers:       CVE-2018-5383
--

Security Fix(es):

* kernel: Bluetooth implementations may not sufficiently validate elliptic
curve parameters during Diffie-Hellman key exchange (CVE-2018-5383)
--

SL7
  x86_64
    iwl7260-firmware-22.0.7.0-72.el7.noarch.rpm
    iwl5150-firmware-8.24.2.2-72.el7.noarch.rpm
    iwl135-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl4965-firmware-228.61.2.24-72.el7.noarch.rpm
    iwl3160-firmware-22.0.7.0-72.el7.noarch.rpm
    iwl7265-firmware-22.0.7.0-72.el7.noarch.rpm
    iwl6050-firmware-41.28.5.1-72.el7.noarch.rpm
    iwl2030-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl6000g2a-firmware-17.168.5.3-72.el7.noarch.rpm
    iwl5000-firmware-8.83.5.1_1-72.el7.noarch.rpm
    iwl2000-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl1000-firmware-39.31.5.1-72.el7.noarch.rpm
    linux-firmware-20190429-72.gitddde598.el7.noarch.rpm
    iwl6000-firmware-9.221.4.1-72.el7.noarch.rpm
    iwl105-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl6000g2b-firmware-17.168.5.2-72.el7.noarch.rpm
    iwl3945-firmware-15.32.2.9-72.el7.noarch.rpm
    iwl100-firmware-39.31.5.1-72.el7.noarch.rpm
  noarch
    iwl100-firmware-39.31.5.1-72.el7.noarch.rpm
    iwl1000-firmware-39.31.5.1-72.el7.noarch.rpm
    iwl105-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl135-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl2000-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl2030-firmware-18.168.6.1-72.el7.noarch.rpm
    iwl3160-firmware-22.0.7.0-72.el7.noarch.rpm
    iwl3945-firmware-15.32.2.9-72.el7.noarch.rpm
    iwl4965-firmware-228.61.2.24-72.el7.noarch.rpm
    iwl5000-firmware-8.83.5.1_1-72.el7.noarch.rpm
    iwl5150-firmware-8.24.2.2-72.el7.noarch.rpm
    iwl6000-firmware-9.221.4.1-72.el7.noarch.rpm
    iwl6000g2a-firmware-17.168.5.3-72.el7.noarch.rpm
    iwl6000g2b-firmware-17.168.5.2-72.el7.noarch.rpm
    iwl6050-firmware-41.28.5.1-72.el7.noarch.rpm
    iwl7260-firmware-22.0.7.0-72.el7.noarch.rpm
    iwl7265-firmware-22.0.7.0-72.el7.noarch.rpm
    linux-firmware-20190429-72.gitddde598.el7.noarch.rpm

- Scientific Linux Development Team

SciLinux: SLSA-2019-2169-1 Important: linux-firmware on SL7.x x86_64

kernel: Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange (CVE-2018-5383) SL7 x86_64 iwl7260-firmware-22.0.7.0-72...

Summary

Important: linux-firmware security, bug fix, and enhancement



Security Fixes

* kernel: Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange (CVE-2018-5383)
SL7 x86_64 iwl7260-firmware-22.0.7.0-72.el7.noarch.rpm iwl5150-firmware-8.24.2.2-72.el7.noarch.rpm iwl135-firmware-18.168.6.1-72.el7.noarch.rpm iwl4965-firmware-228.61.2.24-72.el7.noarch.rpm iwl3160-firmware-22.0.7.0-72.el7.noarch.rpm iwl7265-firmware-22.0.7.0-72.el7.noarch.rpm iwl6050-firmware-41.28.5.1-72.el7.noarch.rpm iwl2030-firmware-18.168.6.1-72.el7.noarch.rpm iwl6000g2a-firmware-17.168.5.3-72.el7.noarch.rpm iwl5000-firmware-8.83.5.1_1-72.el7.noarch.rpm iwl2000-firmware-18.168.6.1-72.el7.noarch.rpm iwl1000-firmware-39.31.5.1-72.el7.noarch.rpm linux-firmware-20190429-72.gitddde598.el7.noarch.rpm iwl6000-firmware-9.221.4.1-72.el7.noarch.rpm iwl105-firmware-18.168.6.1-72.el7.noarch.rpm iwl6000g2b-firmware-17.168.5.2-72.el7.noarch.rpm iwl3945-firmware-15.32.2.9-72.el7.noarch.rpm iwl100-firmware-39.31.5.1-72.el7.noarch.rpm noarch iwl100-firmware-39.31.5.1-72.el7.noarch.rpm iwl1000-firmware-39.31.5.1-72.el7.noarch.rpm iwl105-firmware-18.168.6.1-72.el7.noarch.rpm iwl135-firmware-18.168.6.1-72.el7.noarch.rpm iwl2000-firmware-18.168.6.1-72.el7.noarch.rpm iwl2030-firmware-18.168.6.1-72.el7.noarch.rpm iwl3160-firmware-22.0.7.0-72.el7.noarch.rpm iwl3945-firmware-15.32.2.9-72.el7.noarch.rpm iwl4965-firmware-228.61.2.24-72.el7.noarch.rpm iwl5000-firmware-8.83.5.1_1-72.el7.noarch.rpm iwl5150-firmware-8.24.2.2-72.el7.noarch.rpm iwl6000-firmware-9.221.4.1-72.el7.noarch.rpm iwl6000g2a-firmware-17.168.5.3-72.el7.noarch.rpm iwl6000g2b-firmware-17.168.5.2-72.el7.noarch.rpm iwl6050-firmware-41.28.5.1-72.el7.noarch.rpm iwl7260-firmware-22.0.7.0-72.el7.noarch.rpm iwl7265-firmware-22.0.7.0-72.el7.noarch.rpm linux-firmware-20190429-72.gitddde598.el7.noarch.rpm
- Scientific Linux Development Team

Severity
Advisory ID: SLSA-2019:2169-1
Issued Date: : 2019-08-06
CVE Numbers: CVE-2018-5383

Related News

21.Globe RadiatingCode Esm H320
2 - 3 min read
The recent discovery of a backdoor in XZ Utils , a widely used Linux tool, raises concerns about the security of the open-source ecosystem. While
13.Lock StylizedMotherboard Esm H320
1 - 2 min read
Spiral Linux is a Debian-based distribution that offers a range of desktop environments, making it stand out from other Linux distributions. In
32.Lock Code Circular Esm H320
2 - 3 min read
Two critical security vulnerabilities were found in pgAdmin, the open-source administration tool for PostgreSQL . The vulnerabilities assigned
1.Penguin Landscape Esm H320
2 - 3 min read
The recent release of AlmaLinux 9.4 , closely aligned with Red Hat Enterprise Linux (RHEL) 9.4 , presents Linux admins and infosec professionals
11.Locks IsometricPattern Esm H320
2 - 3 min read
The upcoming release of Linux Mint 22 will introduce significant changes, particularly in handling XApp , GNOME applications, and the Software
2.Motherboard Esm H320
2 - 3 min read
German software engineer Lennart Poettering recently presented run0 , a new tool in systemd v256 that aims to address the security concerns
22.Lock ScreenEffect Esm H320
2 - 3 min read
Red Hat recently released its newest enterprise Linux distro, Red Hat Enterprise Linux (RHEL) 9.4 , which introduces several features designed to
8.Locks HexConnections CodeGlobe Esm H320
1 - 2 min read
The latest release of Debian , one of the oldest and most trusted distributions within the Linux ecosystem, redefines security, stability, and
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved