Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
200
security advisoryDoSkernelScientific Linux: SLSA-2016:1539-1 Important Kernel Security Fix
Important: kernel security and bug fix update. Date: Wed, 3 Aug 2016 17:10:43 -0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Important: kernel on SL7.x x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2016:1539-1 Issue Date: 2016-08-02 CVE Numbers: CVE-2015-8660 CVE-2016-4470 CVE-2016-2143 -- To see the complete list of bug fixes, users are directed to the related Knowledge Article: Security Fix(es): * A flaw was found in the Linux kernel's keyring handling code, where in key_reject_and_link() an uninitialised variable would eventually lead to arbitrary free address which could allow attacker to use a use-after-free style attack. (CVE-2016-4470, Important) * The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and modify the attributes of arbitrary overlay files via a crafted application. (CVE-2015-8660, Moderate) * It was reported that on s390x, the fork of a process with four page table levels will cause memory corruption with a variety of symptoms. All processes are created with three level page table and a limit of 4TB for the address space. If the parent process has four page table levels with a limit of 8PB, the function that duplicates the address space will try to copy memory areas outside of the address space limit for the child process. (CVE-2016-2143, Moderate) Bug Fix(es): * The glibc headers and the Linux headers share certain definitions of key structures that are required to be defined in kernel and in userspace. In some instances both userspace and sanitized kernel headers have to be included in order to get the structure definitions required by the user program. Unfortunately because the glibc and Linux headers don't coordinate this can result in compilation errors. The glibc headershave therefore been fixed to coordinate with Linux UAPI-based headers. With the header coordination compilation errors no longer occur. * When running the TCP/IPv6 traffic over the mlx4_en networking interface on the big endian architectures, call traces reporting about a "hw csum failure" could occur. With this update, the mlx4_en driver has been fixed by correction of the checksum calculation for the big endian architectures. As a result, the call trace error no longer appears in the log messages. * Under significant load, some applications such as logshifter could generate bursts of log messages too large for the system logger to spool. Due to a race condition, log messages from that application could then be lost even after the log volume dropped to manageable levels. This update fixes the kernel mechanism used to notify the transmitter end of the socket used by the system logger that more space is available on the receiver side, removing a race condition which previously caused the sender to stop transmitting new messages and allowing all log messages to be processed correctly. * Previously, after heavy open or close of the Accelerator Function Unit (AFU) contexts, the interrupt packet went out and the AFU context did not see any interrupts. Consequently, a kernel panic could occur. The provided patch set fixes handling of the interrupt requests, and kernel panic no longer occurs in the described situation. * net: recvfrom would fail on short buffer. * Backport rhashtable changes from upstream. * Server Crashing after starting Glusterd & creating volumes. * RAID5 reshape deadlock fix. * BDX perf uncore support fix. -- SL7 x86_64 kernel-3.10.0-327.28.2.el7.x86_64.rpm kernel-debug-3.10.0-327.28.2.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-327.28.2.el7.x86_64.rpm kernel-debug-devel-3.10.0-327.28.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-327.28.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-327.28.2.el7.x86_64.rpm kernel-devel-3.10.0-327.28.2.el7.x86_64.rpm kernel-headers-3.10.0-327.28.2.el7.x86_64.rpm kernel-tools-3.10.0-327.28.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-327.28.2.el7.x86_64.rpm kernel-tools-libs-3.10.0-327.28.2.el7.x86_64.rpm perf-3.10.0-327.28.2.el7.x86_64.rpm perf-debuginfo-3.10.0-327.28.2.el7.x86_64.rpm python-perf-3.10.0-327.28.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-327.28.2.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-327.28.2.el7.x86_64.rpm noarch kernel-abi-whitelists-3.10.0-327.28.2.el7.noarch.rpm kernel-doc-3.10.0-327.28.2.el7.noarch.rpm - Scientific Linux Development Team . Vital concerns are tackled in a kernel security patch for Scientific Linux to guarantee system protection.. Kernel Update, Security Patch, Scientific Linux. . Severity: Important. LinuxSecurity.com Team
Aug 03, 2016
•Important
Scientific Linux
89
security advisorymoderateFedoraFedora 10: FEDORA-2009-2131 Moderate: Libpng Arbitrary Free Fix
Update to libpng 1.2.35, to fix CVE-2009-0040.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-2131 2009-02-26 15:02:46 --------------------------------------------------------------------------------Name : mingw32-libpng Product : Fedora 10 Version : 1.2.35 Release : 1.fc10 URL : http://www.libpng.org/pub/png/ Summary : MinGW Windows Libpng library Description : MinGW Windows Libpng library. --------------------------------------------------------------------------------Update Information: Update to libpng 1.2.35, to fix CVE-2009-0040. --------------------------------------------------------------------------------References: [ 1 ] Bug #486355 - CVE-2009-0040 libpng arbitrary free() flaw https://bugzilla.redhat.com/show_bug.cgi?id=486355 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update mingw32-libpng' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list
Feb 26, 2009
Fedora
89
security advisorymoderateupdateFedora: DEBIAN-2021-8495 Moderate: OpenSSL Critical Exposure
Fixes CVE-2009-0040. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-2112 2009-02-26 15:02:22 --------------------------------------------------------------------------------Name : libpng Product : Fedora 10 Version : 1.2.35 Release : 1.fc10 URL : http://www.libpng.org/pub/png/ Summary : A library of functions for manipulating PNG image format files Description : The libpng package contains a library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. PNG is a bit-mapped graphics format similar to the GIF format. PNG was created to replace the GIF format, since GIF uses a patented data compression algorithm. Libpng should be installed if you need to manipulate PNG format image files. --------------------------------------------------------------------------------Update Information: Fixes CVE-2009-0040 --------------------------------------------------------------------------------ChangeLog: * Wed Feb 25 2009 Tom Lane 2:1.2.35-1 - Update to libpng 1.2.35, to fix CVE-2009-0040 * Fri Jan 9 2009 Tom Lane 2:1.2.34-1 - Update to libpng 1.2.34 * Sun Nov 2 2008 Tom Lane 2:1.2.33-1 - Update to libpng 1.2.33 --------------------------------------------------------------------------------References: [ 1 ] Bug #486355 - CVE-2009-0040 libpng arbitrary free() flaw https://bugzilla.redhat.com/show_bug.cgi?id=486355 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update libpng' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list
Feb 26, 2009
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!