Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 5 articles for you...
89
security advisoryFedoraDoSFedora 38: FEDORA-2024-ec22e51ec2 Critical: nghttp2 Denial of Service
fix CONTINUATION frames DoS (CVE-2024-28182). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-ec22e51ec2 2024-04-20 02:13:26.365103 -------------------------------------------------------------------------------- Name : nghttp2 Product : Fedora 38 Version : 1.52.0 Release : 3.fc38 URL : https://nghttp2.org/ Summary : Experimental HTTP/2 client, server and proxy Description : This package contains the HTTP/2 client, server and proxy programs. -------------------------------------------------------------------------------- Update Information: fix CONTINUATION frames DoS (CVE-2024-28182) -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 4 2024 Jan Macku - 1.52.0-3 - fix CONTINUATION frames DoS (CVE-2024-28182) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2268639 - CVE-2024-28182 nghttp2: CONTINUATION frames DoS https://bugzilla.redhat.com/show_bug.cgi?id=2268639 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ec22e51ec2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 20, 2024
•Critical
Fedora
89
security advisoryfedoramoderate severityFedora 39 FEDORA-2023-153404713b moderate: SSH attack on ProFTPD
Security fix for CVE-2023-48795 (Terrapin SSH protocol attack), affecting mod_sftp.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-153404713b 2023-12-30 01:20:53.296279 -------------------------------------------------------------------------------- Name : proftpd Product : Fedora 39 Version : 1.3.8b Release : 1.fc39 URL : http://www.proftpd.org/ Summary : Flexible, stable and highly-configurable FTP server Description : ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based directory visibility. This package defaults to the standalone behavior of ProFTPD, but all the needed scripts to have it run by systemd instead are included. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2023-48795 (Terrapin SSH protocol attack), affecting mod_sftp. -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 20 2023 Paul Howarth - 1.3.8b-1 - Update to 1.3.8b - Compiling ProFTPD 1.3.8a mod_sftp, mod_tls using libressl 3.7.3 failed (GH#1735) - Build system failed for specific module names (GH#1756) - "Terrapin" Prefix Truncation Attacks in SSH Specification affected mod_sftp (CVE-2023-48795, GH#1760) * Fri Dec 8 2023 Florian Weimer - 1.3.8a-2 - Additional C compatibility fix -------------------------------------------------------------------------------- References: [ 1 ] Bug #2254210 - CVE-2023-48795 ssh: Prefix truncation attack on Binary Packet Protocol (BPP) https://bugzilla.redhat.com/show_bug.cgi?id=2254210 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-153404713b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Dec 30, 2023
Fedora
100
security advisorymoderatepatchSUSE: 2023:4946-1 moderate: libssh2_org attack resolution
* bsc#1218127 Cross-References: * CVE-2023-48795 . # Security update for libssh2_org Announcement ID: SUSE-SU-2023:4946-1 Rating: moderate References: * bsc#1218127 Cross-References: * CVE-2023-48795 CVSS scores: * CVE-2023-48795 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for libssh2_org fixes the following issues: * CVE-2023-48795: Fixed prefix truncation breaking ssh channel integrity (Terrapin Attack) (bsc#1218127). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2023-4946=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4946=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4946=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4946=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libssh2_org-debugsource-1.11.0-29.9.1 * libssh2-devel-1.11.0-29.9.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * libssh2_org-debugsource-1.11.0-29.9.1 * libssh2-1-1.11.0-29.9.1 * libssh2-1-debuginfo-1.11.0-29.9.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * libssh2-1-32bit-1.11.0-29.9.1 * libssh2-1-debuginfo-32bit-1.11.0-29.9.1 * SUSE Linux Enterprise Server12 SP5 (aarch64 ppc64le s390x x86_64) * libssh2_org-debugsource-1.11.0-29.9.1 * libssh2-1-1.11.0-29.9.1 * libssh2-1-debuginfo-1.11.0-29.9.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libssh2-1-32bit-1.11.0-29.9.1 * libssh2-1-debuginfo-32bit-1.11.0-29.9.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * libssh2_org-debugsource-1.11.0-29.9.1 * libssh2-1-1.11.0-29.9.1 * libssh2-1-debuginfo-1.11.0-29.9.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libssh2-1-32bit-1.11.0-29.9.1 * libssh2-1-debuginfo-32bit-1.11.0-29.9.1 ## References: * https://www.suse.com/security/cve/CVE-2023-48795.html * https://bugzilla.suse.com/show_bug.cgi?id=1218127 . SUSE customers must tackle a libssh2 security issue by upgrading their system, installing the fix, and rebooting the service.. SUSE Linux Patch, libssh2_org Update, Security Advisory. . LinuxSecurity.com Team
Dec 21, 2023
SuSE
100
security advisoryimportantsuseSUSE: 2023:4199-1 Important: Fix for nghttp2 Rapid Reset Attack
* bsc#1216123 * bsc#1216174 Cross-References: * CVE-2023-44487 . # Security update for nghttp2 Announcement ID: SUSE-SU-2023:4199-1 Rating: important References: * bsc#1216123 * bsc#1216174 Cross-References: * CVE-2023-44487 CVSS scores: * CVE-2023-44487 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-44487 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for nghttp2 fixes the following issues: * CVE-2023-44487: Fixed HTTP/2 Rapid Reset attack. (bsc#1216174) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2023-4199=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4199=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4199=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4199=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * libnghttp2-devel-1.39.2-3.13.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * nghttp2-debugsource-1.39.2-3.13.1 * nghttp2-debuginfo-1.39.2-3.13.1 * libnghttp2-14-1.39.2-3.13.1 * libnghttp2-14-debuginfo-1.39.2-3.13.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) *libnghttp2-14-debuginfo-32bit-1.39.2-3.13.1 * libnghttp2-14-32bit-1.39.2-3.13.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * nghttp2-debugsource-1.39.2-3.13.1 * nghttp2-debuginfo-1.39.2-3.13.1 * libnghttp2-14-1.39.2-3.13.1 * libnghttp2-14-debuginfo-1.39.2-3.13.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libnghttp2-14-debuginfo-32bit-1.39.2-3.13.1 * libnghttp2-14-32bit-1.39.2-3.13.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * nghttp2-debugsource-1.39.2-3.13.1 * nghttp2-debuginfo-1.39.2-3.13.1 * libnghttp2-14-1.39.2-3.13.1 * libnghttp2-14-debuginfo-1.39.2-3.13.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libnghttp2-14-debuginfo-32bit-1.39.2-3.13.1 * libnghttp2-14-32bit-1.39.2-3.13.1 ## References: * https://www.suse.com/security/cve/CVE-2023-44487.html * https://bugzilla.suse.com/show_bug.cgi?id=1216123 * https://bugzilla.suse.com/show_bug.cgi?id=1216174 . Urgent patch release for nghttp2 in SUSE tackling HTTP/2 Rapid Reset vulnerability. Update your systems immediately.. Linux Enterprise, SuSE Linux, Server Security, nghttp2, Software Update. . Severity: Important. LinuxSecurity.com Team
Oct 26, 2023
•Important
SuSE
89
security advisorymoderateFedoraFedora 34: FEDORA-2021-e8b7e177a4 moderate: libxml2 attack fix
Update to 2.9.12 * Fix CVE-2021-3541 * Verify sources with GPG signature. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-e8b7e177a4 2021-05-24 01:00:24.873751 --------------------------------------------------------------------------------Name : libxml2 Product : Fedora 34 Version : 2.9.12 Release : 2.fc34 URL : Summary : Library providing XML and HTML support Description : This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream or and in-memory DOM like representations. In this case one can use the built-in XPath and XPointer implementation to select sub nodes or ranges. A flexible Input/Output mechanism is available, with existing HTTP and FTP modules and combined to an URI library. --------------------------------------------------------------------------------Update Information: Update to 2.9.12 * Fix CVE-2021-3541 * Verify sources with GPG signature --------------------------------------------------------------------------------ChangeLog: * Wed May 19 2021 David King - 2.9.12-2 - Fix python-lxml regression with 2.9.12 * Thu May 13 2021 David King - 2.9.12-1 - Update to 2.9.12 (#1960153) --------------------------------------------------------------------------------References: [ 1 ] Bug #1960153 - CVE-2021-3541 libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1960153 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-e8b7e177a4' at the command line. For more information, refer to thednf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 23, 2021
Fedora
203
security advisorykernel updatemoderate severityMageia 7: MGASA-2021-0058 Moderate: SCSI XCOPY Attack Exploit
This kernel-linus update is based on upstream 5.10.11 and fixes atleast the following security issue: SCSI “EXTENDED COPY” (XCOPY) requests sent to a Linux SCSI target (LIO) allow an attacker to read or write anywhere on any LIO backstore configured . MGASA-2021-0058 - Updated kernel-linus packages fix security vulnerabilities Publication date: 29 Jan 2021 URL: https://advisories.mageia.org/MGASA-2021-0058.html Type: security Affected Mageia releases: 7 CVE: CVE-2020-28374, CVE-2021-3178 This kernel-linus update is based on upstream 5.10.11 and fixes atleast the following security issue: SCSI “EXTENDED COPY” (XCOPY) requests sent to a Linux SCSI target (LIO) allow an attacker to read or write anywhere on any LIO backstore configured on the host, provided the attacker has access to one LUN and knowledge of the victim backstore’s vpd_unit_serial (AKA “wwn”). This is possible regardless of the transport/HBA settings for the victim backstore (CVE-2020-28374). fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS (CVE-2021-3178). It also adds the following fix: - fix up kernel-devel packages to not cause errors during dkms installs (mga#27080) References: - https://bugs.mageia.org/show_bug.cgi?id=28164 - https://bugs.mageia.org/show_bug.cgi?id=27080 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.7 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.8 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.9 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.10 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.11 - https://www.cve.org/CVERecord?id=CVE-2020-28374 - https://www.cve.org/CVERecord?id=CVE-2021-3178 SRPMS: - 7/core/kernel-linus-5.10.11-1.mga7 . Kernel-linus patch MGASA-2021-0059 addresses vulnerabilities in network protocols, fortifying overall system integrity.. Mageia KernelUpdate,SCSI XCOPY Attack Fix,Kernel Security. . LinuxSecurity.com Team
Jan 29, 2021
Mageia
100
security advisorypatchdevelopment toolsSUSE Linux: 2019:2561-1 Moderate: openssl-1_0_0 Security Update
An update that solves two vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for openssl-1_0_0 ______________________________________________________________________________ Announcement ID: SUSE-SU-2019:2561-1 Rating: moderate References: #1131291 #1150003 #1150250 Cross-References: CVE-2019-1547 CVE-2019-1563 Affected Products: SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Legacy Software 15-SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Enterprise Storage 6 ______________________________________________________________________________ An update that solves two vulnerabilities and has one errata is now available. Description: This update for openssl-1_0_0 fixes the following issues: OpenSSL Security Advisory [10 September 2019] * CVE-2019-1547: Added EC_GROUP_set_generator side channel attack avoidance. (bsc#1150003) * CVE-2019-1563: Fixed Bleichenbacher attack against cms/pkcs7 encryption transported key (bsc#1150250) In addition fixed invalid curve attacks by validating that an EC point lies on the curve (bsc#1131291). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1: zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2561=1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15: zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2019-2561=1 - SUSE Linux Enterprise Module for Legacy Software 15-SP1: zypper in -t patchSUSE-SLE-Module-Legacy-15-SP1-2019-2561=1 - SUSE Linux Enterprise Module for Legacy Software 15: zypper in -t patch SUSE-SLE-Module-Legacy-15-2019-2561=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2019-2561=1 Package List: - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (aarch64 ppc64le s390x x86_64): libopenssl1_0_0-hmac-1.0.2p-3.22.1 libopenssl1_0_0-steam-1.0.2p-3.22.1 libopenssl1_0_0-steam-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-cavs-1.0.2p-3.22.1 openssl-1_0_0-cavs-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debugsource-1.0.2p-3.22.1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (x86_64): libopenssl-1_0_0-devel-32bit-1.0.2p-3.22.1 libopenssl1_0_0-32bit-1.0.2p-3.22.1 libopenssl1_0_0-32bit-debuginfo-1.0.2p-3.22.1 libopenssl1_0_0-hmac-32bit-1.0.2p-3.22.1 libopenssl1_0_0-steam-32bit-1.0.2p-3.22.1 libopenssl1_0_0-steam-32bit-debuginfo-1.0.2p-3.22.1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (noarch): openssl-1_0_0-doc-1.0.2p-3.22.1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (aarch64 ppc64le s390x x86_64): libopenssl1_0_0-hmac-1.0.2p-3.22.1 libopenssl1_0_0-steam-1.0.2p-3.22.1 libopenssl1_0_0-steam-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-cavs-1.0.2p-3.22.1 openssl-1_0_0-cavs-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debugsource-1.0.2p-3.22.1 - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (noarch): openssl-1_0_0-doc-1.0.2p-3.22.1 - SUSE Linux Enterprise Module for Legacy Software 15-SP1 (aarch64 ppc64le s390x x86_64): libopenssl-1_0_0-devel-1.0.2p-3.22.1 libopenssl1_0_0-1.0.2p-3.22.1 libopenssl1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-1.0.2p-3.22.1 openssl-1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debugsource-1.0.2p-3.22.1 - SUSE Linux Enterprise Module for Legacy Software 15 (aarch64 ppc64le s390x x86_64): libopenssl-1_0_0-devel-1.0.2p-3.22.1 libopenssl1_0_0-1.0.2p-3.22.1 libopenssl1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-1.0.2p-3.22.1 openssl-1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debugsource-1.0.2p-3.22.1 - SUSE Enterprise Storage 6 (aarch64 x86_64): libopenssl1_0_0-1.0.2p-3.22.1 libopenssl1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debuginfo-1.0.2p-3.22.1 openssl-1_0_0-debugsource-1.0.2p-3.22.1 References: https://www.suse.com/security/cve/CVE-2019-1547.html https://www.suse.com/security/cve/CVE-2019-1563.html https://bugzilla.suse.com/1131291 https://bugzilla.suse.com/1150003 https://bugzilla.suse.com/1150250 _______________________________________________ sle-security-updates mailing list
Oct 04, 2019
SuSE
202
security advisoryDoSsystem updatesopenSUSE 42.3: 2018:0459-1 Critical: Xen DoS Attack Resolution
An update that solves 10 vulnerabilities and has three fixes is now available.. openSUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: openSUSE-SU-2018:0459-1 Rating: important References: #1027519 #1035442 #1051729 #1061081 #1067317 #1068032 #1070158 #1070159 #1070160 #1070163 #1074562 #1076116 #1076180 Cross-References: CVE-2017-15595 CVE-2017-17563 CVE-2017-17564 CVE-2017-17565 CVE-2017-17566 CVE-2017-18030 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2018-5683 Affected Products: openSUSE Leap 42.3 ______________________________________________________________________________ An update that solves 10 vulnerabilities and has three fixes is now available. Description: This update for xen fixes several issues. These security issues were fixed: - CVE-2017-5753, CVE-2017-5715, CVE-2017-5754: Prevent information leaks via side effects of speculative execution, aka "Spectre" and "Meltdown" attacks (bsc#1074562, bsc#1068032) - CVE-2017-15595: x86 PV guest OS users were able to cause a DoS (unbounded recursion, stack consumption, and hypervisor crash) or possibly gain privileges via crafted page-table stacking (bsc#1061081) - CVE-2017-17566: Prevent PV guest OS users to cause a denial of service (host OS crash) or gain host OS privileges in shadow mode by mapping a certain auxiliary page (bsc#1070158). - CVE-2017-17563: Prevent guest OS users to cause a denial of service (host OS crash) or gain host OS privileges by leveraging an incorrect mask for reference-count overflow checking in shadow mode (bsc#1070159). - CVE-2017-17564: Prevent guest OS users to cause a denial of service (host OS crash) or gain host OS privileges by leveraging incorrect error handling for reference counting in shadowmode (bsc#1070160). - CVE-2017-17565: Prevent PV guest OS users to cause a denial of service (host OS crash) if shadow mode and log-dirty mode are in place, because of an incorrect assertion related to M2P (bsc#1070163). - CVE-2018-5683: The vga_draw_text function allowed local OS guest privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) by leveraging improper memory address validation (bsc#1076116). - CVE-2017-18030: The cirrus_invalidate_region function allowed local OS guest privileged users to cause a denial of service (out-of-bounds array access and QEMU process crash) via vectors related to negative pitch (bsc#1076180). These non-security issues were fixed: - bsc#1067317: pass cache=writeback|unsafe|directsync to qemu depending on the libxl disk settings - bsc#1051729: Prevent invalid symlinks after install of SLES 12 SP2 - bsc#1035442: Increased the value of LIBXL_DESTROY_TIMEOUT from 10 to 100 seconds. If many domUs shutdown in parallel the backends couldn't keep up - bsc#1027519: Added several upstream patches This update was imported from the SUSE:SLE-12-SP3:Update update project. Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2018-169=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE Leap 42.3 (x86_64): xen-4.9.1_08-16.1 xen-debugsource-4.9.1_08-16.1 xen-devel-4.9.1_08-16.1 xen-doc-html-4.9.1_08-16.1 xen-libs-4.9.1_08-16.1 xen-libs-debuginfo-4.9.1_08-16.1 xen-tools-4.9.1_08-16.1 xen-tools-debuginfo-4.9.1_08-16.1 xen-tools-domU-4.9.1_08-16.1 xen-tools-domU-debuginfo-4.9.1_08-16.1 References: https://www.suse.com/security/cve/CVE-2017-15595.html https://www.suse.com/security/cve/CVE-2017-17563.html https://www.suse.com/security/cve/CVE-2017-17564.html https://www.suse.com/security/cve/CVE-2017-17565.html https://www.suse.com/security/cve/CVE-2017-17566.html https://www.suse.com/security/cve/CVE-2017-18030.html https://www.suse.com/security/cve/CVE-2017-5715.html https://www.suse.com/security/cve/CVE-2017-5753.html https://www.suse.com/security/cve/CVE-2017-5754.html https://www.suse.com/security/cve/CVE-2018-5683.html https://bugzilla.suse.com/1027519 https://bugzilla.suse.com/1035442 https://bugzilla.suse.com/1051729 https://bugzilla.suse.com/1061081 https://bugzilla.suse.com/1067317 https://bugzilla.suse.com/1068032 https://bugzilla.suse.com/1070158 https://bugzilla.suse.com/1070159 https://bugzilla.suse.com/1070160 https://bugzilla.suse.com/1070163 https://bugzilla.suse.com/1074562 https://bugzilla.suse.com/1076116 https://bugzilla.suse.com/1076180 -- . An important patch for Fedora resolves 12 vulnerabilities in KVM, improving system integrity and performance with protections against data breaches.. DoS Attacks, openSUSE Updates, xen Security Fixes. . Severity: Important. LinuxSecurity.com Team
Feb 16, 2018
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!