Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 2 articles for you...
100
security advisoryupdateDoS attackSUSE: 2025:0857-1 important: DoS fix for build vulnerabilities
* bsc#1217269 * bsc#1230469 Cross-References: * CVE-2024-22038 . # Security update for build Announcement ID: SUSE-SU-2025:0857-1 Release Date: 2025-03-13T17:58:42Z Rating: important References: * bsc#1217269 * bsc#1230469 Cross-References: * CVE-2024-22038 CVSS scores: * CVE-2024-22038 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-22038 ( SUSE ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H * CVE-2024-22038 ( NVD ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2024-22038 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H Affected Products: * Development Tools Module 15-SP6 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves onevulnerability and has one security fix can now be installed. ## Description: This update for build fixes the following issues: \- CVE-2024-22038: Fixed DoS attacks, information leaks with crafted Git repositories (bnc#1230469) Other fixes: \- Fixed behaviour when using "\--shell" aka "osc shell" option in a VM build. Startup is faster and permissions stay intact now. * fixes for POSIX compatibility for obs-docker-support adn mkbaselibs * Add support for apk in docker/podman builds * Add support for 'wget' in Docker images * Fix debian support for Dockerfile builds * Fix preinstallimages in containers * mkosi: add back system-packages used by build-recipe directly * pbuild: parse the Release files for debian repos * mkosi: drop most systemd/build-packages deps and use obs_scm directory as source if present * improve source copy handling * Introduce --repos-directory and --containers-directory options * productcompose: support of building against a baseiso * preinstallimage: avoid inclusion of build script generated files * preserve timestamps on sources copy-in for kiwi and productcompose * alpine package support updates * tumbleweed config update * debian: Support installation of foreign architecture packages (required for armv7l setups) * Parse unknown timezones as UTC * Apk (Alpine Linux) format support added * Implement default value in parameter expansion * Also support supplements that use & as "and" * Add workaround for skopeo's argument parser * add cap-htm=off on power9 * Fixed usage of chown calls * Remove leading `go` from `purl` locators * container related: * Implement support for the new element in kiwi recipes * Fixes for SBOM and dependencies of multi stage container builds * obs-docker-support: enable dnf and yum substitutions * Arch Linux: * fix file path for Arch repo * exclude unsupported arch * Use root as download user * build-vm-qemu: force sv48 satp mode on riscv64 * mkosi: * Create .sha256 filesafter mkosi builds * Always pass --image-version to mkosi * General improvements and bugfixes (mkosi, pbuild, appimage/livebuild, obs work detection, documention, SBOM) * Support slsa v1 in unpack_slsa_provenance * generate_sbom: do not clobber spdx supplier * Harden export_debian_orig_from_git (bsc#1230469) * SBOM generation: * Adding golang introspection support * Adding rust binary introspection support * Keep track of unknwon licenses and add a "hasExtractedLicensingInfos" section * Also normalize licenses for cyclonedx * Make generate_sbom errors fatal * general improvements * Fix noprep building not working because the buildir is removed * kiwi image: also detect a debian build if /var/lib/dpkg/status is present * Do not use the Encode module to convert a code point to utf8 * Fix personality syscall number for riscv * add more required recommendations for KVM builds * set PACKAGER field in build-recipe-arch * fix writing _modulemd.yaml * pbuild: support --release and --baselibs option * container: * copy base container information from the annotation into the containerinfo * track base containers over multiple stages * always put the base container last in the dependencies * providing fileprovides in createdirdeps tool * Introduce buildflag nochecks * productcompose: support **all** option * config update: tumbleweed using preinstallexpand * minor improvements * tumbleweed build config update * support the %load macro * improve container filename generation (docker) * fix hanging curl calls during build (docker) * productcompose: fix milestone query * tumbleweed build config update * 15.6 build config fixes * sourcerpm & sourcedep handling fixes * productcompose: * Fix milestone handling * Support bcntsynctag * Adding debian support to generate_sbom * Add syscall for personality switch on loongarch64 kernel * vm-build: ext3 & ext4: fix disk space allocation * mkosi format updates, not fully workingyet * pbuild exception fixes * Fixes for current fedora and centos distros * Don't copy original dsc sources if OBS-DCH-RELEASE set * Unbreak parsing of sources/patches * Support ForceMultiVersion in the dockerfile parser * Support %bcond of rpm 4.17.1 * Add a hack for systemd 255.3, creating an empty /etc/os-release if missing after preinstall. * docker: Fix HEAD request in dummyhttpserver * pbuild: Make docker-nobasepackages expand flag the default * rpm: Support a couple of builtin rpm macros * rpm: Implement argument expansion for define/with/bcond... * Fix multiline macro handling * Accept -N parameter of %autosetup * documentation updates * various code cleanup and speedup work. * ProductCompose: multiple improvements * Add buildflags:define_specfile support * Fix copy-in of git subdirectory sources * pbuild: Speed up XML parsing * pubild: product compose support * generate_sbom: add help option * podman: enforce runtime=runc * Implement direct conflicts from the distro config * changelog2spec: fix time zone handling * Do not unmount /proc/sys/fs/binfmt_misc before runnint the check scripts * spec file cleanup * documentation updates * productcompose: * support schema 0.1 * support milestones * Leap 15.6 config * SLE 15 SP6 config * productcompose: follow incompatible flavor syntax change * pbuild: support for zstd * fixed handling for cmdline parameters via kernel packages * productcompose: * BREAKING: support new schema * adapt flavor architecture parsing * productcompose: * support filtered package lists * support default architecture listing * fix copy in binaries in VM builds^ * obsproduct build type got renamed to productcompose * Support zstd compressed rpm-md meta data (bsc#1217269) * Added Debian 12 configuration * First ObsProduct build format support * fix SLE 15 SP5 build configuration * Improve user agent handling for obs repositories * Docker: * Support flavor specificbuild descriptions via Dockerfile.$flavor * support "PlusRecommended" hint to also provide recommended packages * use the name/version as filename if both are known * Produce docker format containers by default * pbuild: Support for signature authentification of OBS resources * Fix wiping build root for --vm-type podman * Put BUILD_RELEASE and BUILD_CHANGELOG_TIMESTAMP in the /.buildenv * build-vm-kvm: use -cpu host on riscv64 * small fixes and cleanups * Added parser for BcntSyncTag in sources * pbuild: * fix dependency expansion for build types other than spec * Reworked cycle handling code * add --extra-packs option * add debugflags option * Pass-through --buildtool-opt * Parse Patch and Source lines more accurately * fix tunefs functionality * minor bugfixes * \--vm-type=podman added (supports also root-less builds) * Also support build constraints in the Dockerfile * minor fixes * Add SUSE ALP build config * BREAKING: Record errors when parsing the project config former behaviour was undefined * container: Support compression format configuration option * Don't setup ccache with --no-init * improved loongarch64 support * sbom: SPDX supplier tag added * kiwi: support different versions per profile * preinstallimage: fail when recompression fails * Add support for recommends and supplements dependencies * Support the "keepfilerequires" expand flag * add '\--buildtool-opt=OPTIONS' to pass options to the used build tool * distro config updates * ArchLinux * Tumbleweed * documentation updates * openSUSE Tumbleweed: sync config and move to suse_version 1699. * universal post-build hook, just place a file in /usr/lib/build/post_build.d/ * mkbaselibs/hwcaps, fix pattern name once again (x86_64_v3) * KiwiProduct: add --use-newest-package hint if the option is set * Dockerfile support: * export multibuild flavor as argument * allow parameters in FROM .. scratch lines * include OS name in build result if != linux * Workaround directory-> symlink usrmerge problems for cross arch sysroot * multiple fixes for SBOM support * KIWI VM image SBOM support added ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-857=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-857=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-857=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2025-857=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-857=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-857=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-857=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-857=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-857=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-857=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-857=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-857=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-857=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP4-2025-857=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Enterprise Storage 7.1 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * openSUSE Leap 15.6 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-initvm-x86_64-20250306-150200.19.1 * build-initvm-aarch64-20250306-150200.19.1 * build-initvm-s390x-20250306-150200.19.1 * build-mkdrpms-20250306-150200.19.1 * build-initvm-powerpc64le-20250306-150200.19.1 * build-20250306-150200.19.1 * Development Tools Module 15-SP6 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) *build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * build-mkbaselibs-20250306-150200.19.1 * build-20250306-150200.19.1 ## References: * https://www.suse.com/security/cve/CVE-2024-22038.html * https://bugzilla.suse.com/show_bug.cgi?id=1217269 * https://bugzilla.suse.com/show_bug.cgi?id=1230469 . Essential SUSE patch tackles DoS vulnerabilities and key compilation challenges across various offerings.. SUSE Linux, security update, build fixes, DoS attacks, 15 SP6. . Severity: Important. LinuxSecurity.com Team
Mar 13, 2025
•Important
SuSE
89
security advisoryfedorasoftware fixFedora 37: 2022-02f3c7a859 Minor: Systemd Security Patch Addressed
stop building for ix86 and armv7hl due to missing build dependency x86 pv: Race condition in typeref acquisition [XSA-401, CVE-2022-26362] x86 pv: Insufficient care with non-coherent mappings [ XSA-402, CVE-2022-26363, CVE-2022-26364] ---- Split qemu-user-static into per-arch subpackages (bz 2061584). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-0142d562ca 2022-06-22 00:46:07.353356 --------------------------------------------------------------------------------Name : collectd Product : Fedora 36 Version : 5.12.0 Release : 16.fc36 URL : https://collectd.org/ Summary : Statistics collection daemon for filling RRD files Description : collectd is a daemon which collects system performance statistics periodically and provides mechanisms to store the values in a variety of ways, for example in RRD files. --------------------------------------------------------------------------------Update Information: stop building for ix86 and armv7hl due to missing build dependency x86 pv: Race condition in typeref acquisition [XSA-401, CVE-2022-26362] x86 pv: Insufficient care with non-coherent mappings [ XSA-402, CVE-2022-26363, CVE-2022-26364] ---- Split qemu-user-static into per-arch subpackages (bz 2061584) --------------------------------------------------------------------------------ChangeLog: * Sat Jun 11 2022 Cole Robinson - 5.12.0-16 - Adjust for Xen dropping i686 support --------------------------------------------------------------------------------References: [ 1 ] Bug #2061584 - qemu-user-static needs to be broken into separate package per arch. https://bugzilla.redhat.com/show_bug.cgi?id=2061584 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-0142d562ca' at the command line. For more information, refer to the dnf documentationavailable at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jun 21, 2022
•Important
Fedora
89
security advisorysoftware updateFedoraFedora 36: FEDORA-2022-08ae2dd481 Critical: golang-storj-drpc CVE Fix
Rebuild for CVE-2022-27191 ---- Fix FTBFS Close: rhbz#2045471. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-08ae2dd481 2022-05-07 04:08:14.315797 --------------------------------------------------------------------------------Name : golang-storj-drpc Product : Fedora 36 Version : 0.0.16 Release : 5.fc36 URL : https://github.com/storj/drpc Summary : Light replacement for gprc Description : Package drpc is a light replacement for gprc. --------------------------------------------------------------------------------Update Information: Rebuild for CVE-2022-27191 ---- Fix FTBFS Close: rhbz#2045471 --------------------------------------------------------------------------------ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati - 0.0.16-5 - Rebuilt for CVE-2022-27191 --------------------------------------------------------------------------------References: [ 1 ] Bug #2045471 - golang-github-appc-goaci: FTBFS in Fedora rawhide/f36 https://bugzilla.redhat.com/show_bug.cgi?id=2045471 [ 2 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-08ae2dd481' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 07, 2022
•Critical
Fedora
89
security advisoryupdateFedoraFedora 36: FEDORA-2022-08ae2dd481 Moderate: Update for Build Issue
Rebuild for CVE-2022-27191 ---- Fix FTBFS Close: rhbz#2045471. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-08ae2dd481 2022-05-07 04:08:14.315797 --------------------------------------------------------------------------------Name : golang-github-cucumber-godog Product : Fedora 36 Version : 0.12.1 Release : 3.fc36 URL : https://github.com/cucumber/godog Summary : Cucumber for golang Description : Cucumber for golang. --------------------------------------------------------------------------------Update Information: Rebuild for CVE-2022-27191 ---- Fix FTBFS Close: rhbz#2045471 --------------------------------------------------------------------------------ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati 0.12.1-3 - Rebuilt for CVE-2022-27191 --------------------------------------------------------------------------------References: [ 1 ] Bug #2045471 - golang-github-appc-goaci: FTBFS in Fedora rawhide/f36 https://bugzilla.redhat.com/show_bug.cgi?id=2045471 [ 2 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-08ae2dd481' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 07, 2022
Fedora
87
security advisoryupdatedebianDebian DSA-4830-2: Flatpak Update Fixes Build and Extra-Data Issues
The update for flatpak released as DSA 4830-1 introduced regressions with flatpak build and in the extra-data mechanism. Updated flatpak packages are now available to correct this issue. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-4830-2
Jan 22, 2021
•Important
Debian
89
security advisoryfedoraFedoraFedora 33: 2021-9b7b3599be critical: CPU-X Build Issue Fix
build: dmidecode - apply upstream patch & remove -Wno-format-security flag. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-9b7b3599be 2021-01-14 01:37:01.293160 --------------------------------------------------------------------------------Name : cpu-x Product : Fedora 33 Version : 4.1.0 Release : 3.fc33 URL : https://github.com/TheTumultuousUnicornOfDarkness/CPU-X Summary : Gathers information on CPU, motherboard and more Description : Free software that gathers information on CPU, motherboard and more. CPU-X is similar to CPU-Z (Windows), but CPU-X is a Free and Open Source software designed for GNU/Linux; also, it works on *BSD. This software is written in C and built with CMake tool. It can be used in graphical mode by using GTK or in text-based mode by using NCurses. A dump mode is present from command line. --------------------------------------------------------------------------------Update Information: build: dmidecode - apply upstream patch & remove -Wno-format-security flag --------------------------------------------------------------------------------ChangeLog: * Wed Jan 13 2021 Artem Polishchuk - 4.1.0-3 - build: dmidecode - apply upstream patch & remove -Wno-format-security flag --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-9b7b3599be' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list
Jan 13, 2021
•Critical
Fedora
89
security advisoryFedorabuild issueFedora 26: Security Update for PSPP Fixing GCC 7 Build Problems
* FTBFS with GCC 7. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-03893a3b58 2017-08-09 13:47:12.024535 --------------------------------------------------------------------------------Name : pspp Product : Fedora 26 Version : 0.10.2 Release : 5.fc26 URL : Summary : A program for statistical analysis of sampled data Description : PSPP is a program for statistical analysis of sampled data. It interprets commands in the SPSS language and produces tabular output in ASCII, PostScript, or HTML format. PSPP development is ongoing. It already supports a large subset of SPSS's transformation language. Its statistical procedure support is currently limited, but growing. --------------------------------------------------------------------------------Update Information: * FTBFS with GCC 7 --------------------------------------------------------------------------------References: [ 1 ] Bug #1472861 - CVE-2017-10791 CVE-2017-10792 pspp: Multiple vulnerabilities https://bugzilla.redhat.com/show_bug.cgi?id=1472861 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade pspp' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Aug 09, 2017
•Important
Fedora
89
security advisorysecurity updateFedoraFedora 25: 2016-1d8429b89f Critical: Xen Hypervisor Build Issue
fix build problem with glibc 2.24 x86: Disallow L3 recursive pagetable for 32-bit PV guests [XSA-185, CVE-2016-7092] x86: Mishandling of instruction pointer truncation during emulation [XSA-186, CVE-2016-7093] x86 HVM: Overflow of sh_ctxt-> seg_reg[] [XSA-187, CVE-2016-7094] pandoc (documentation) has dependency issues again on F25. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-1d8429b89f 2016-09-14 15:54:46.805453 -------------------------------------------------------------------------------- Name : xen Product : Fedora 25 Version : 4.7.0 Release : 5.fc25 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: fix build problem with glibc 2.24 x86: Disallow L3 recursive pagetable for 32-bit PV guests [XSA-185, CVE-2016-7092] x86: Mishandling of instruction pointer truncation during emulation [XSA-186, CVE-2016-7093] x86 HVM: Overflow of sh_ctxt-> seg_reg[] [XSA-187, CVE-2016-7094] pandoc (documentation) has dependency issues again on F25 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1370319 - CVE-2016-7092 xen: x86: Disallow L3 recursive pagetable for 32-bit PV guests https://bugzilla.redhat.com/show_bug.cgi?id=1370319 [ 2 ] Bug #1370322 - CVE-2016-7093 xen: x86: Mishandling of instruction pointer truncation during emulation https://bugzilla.redhat.com/show_bug.cgi?id=1370322 [ 3 ] Bug #1370332 - CVE-2016-7094 xen: x86 HVM: Overflow of sh_ctxt-> seg_reg[] https://bugzilla.redhat.com/show_bug.cgi?id=1370332 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c'yum update xen' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Sep 14, 2016
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!