Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 2 articles for you...
89
security advisoryfedoraupdateFedora 43: opentofu Update 1.10.7 Advisory FEDORA-2025-21b93506d5
Update to 1.10.7. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-21b93506d5 2025-11-15 00:51:07.993138+00:00 -------------------------------------------------------------------------------- Name : opentofu Product : Fedora 43 Version : 1.10.7 Release : 1.fc43 URL : https://github.com/opentofu/opentofu Summary : OpenTofu lets you declaratively manage your cloud infrastructure Description : OpenTofu lets you declaratively manage your cloud infrastructure. -------------------------------------------------------------------------------- Update Information: Update to 1.10.7 -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 6 2025 Mikel Olasagasti Uranga - 1.10.7-1 - Update to 1.10.7 - Closes rhbz#2413156 * Fri Oct 10 2025 Alejandro Sez - 1.10.6-2 - rebuild * Thu Sep 4 2025 Mikel Olasagasti Uranga - 1.10.6-1 - Update to 1.10.6 - Closes rhbz#2385775 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-21b93506d5' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . OpenTofu version 1.10.7 released for Fedora 43, enhancing your cloud infrastructure management capabilities. Update now!. Fedora opentofu cloud management update. . Severity: Informational. LinuxSecurity.com Team
Nov 15, 2025
•Informational
Fedora
172
security advisorycritical issuesoftware updateUbuntu 23.04 USN-6073-8 Critical: Nova Regression Security Issue
USN-6073-3 introduced a regression in Nova.. =========================================================================Ubuntu Security Notice USN-6073-8 May 23, 2023 nova regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.04 - Ubuntu 22.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: USN-6073-3 introduced a regression in Nova. Software Description: - nova: OpenStack Compute cloud infrastructure Details: USN-6073-3 fixed a vulnerability in Nova. Unfortunately the update introduced a regression with detaching volumes. The security fix has been removed pending further investigation. We apologize for the inconvenience. Original advisory details: Jan Wasilewski and Gorka Eguileor discovered that Nova incorrectly handled deleted volume attachments. An authenticated user or attacker could possibly use this issue to gain access to sensitive information. This update may require configuration changes to be completely effective, please see the upstream advisory for more information: Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.04: python3-nova 3:27.0.0-0ubuntu1.2 Ubuntu 22.10: python3-nova 3:26.1.0-0ubuntu2.2 Ubuntu 22.04 LTS: python3-nova 3:25.1.0-0ubuntu2.2 Ubuntu 20.04 LTS: python3-nova 2:21.2.4-0ubuntu2.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6073-8 https://ubuntu.com/security/notices/USN-6073-1 https://bugs.launchpad.net/ubuntu/+source/nova/+bug/2020111 Package Information: https://launchpad.net/ubuntu/+source/nova/3:27.0.0-0ubuntu1.2 https://launchpad.net/ubuntu/+source/nova/3:26.1.0-0ubuntu2.2 https://launchpad.net/ubuntu/+source/nova/3:25.1.0-0ubuntu2.2 https://launchpad.net/ubuntu/+source/nova/2:21.2.4-0ubuntu2.5 . Caution Alert USN-6073-9 highlights a nova issue affecting multiple Ubuntu versions and provides upgrade details.. Nova Regression, Ubuntu Security, OpenStack Compute, Security Notice, Cloud Infrastructure. . Severity: Critical. LinuxSecurity.com Team
May 23, 2023
•Critical
Ubuntu
172
security advisoryupdateubuntuUbuntu 20.04 LTS USN-6073-5 Moderate: Nova Regression Issues Fixed
USN-6073-3 introduced a regression in Nova.. =========================================================================Ubuntu Security Notice USN-6073-5 May 14, 2023 nova regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: USN-6073-3 introduced a regression in Nova. Software Description: - nova: OpenStack Compute cloud infrastructure Details: USN-6073-3 fixed a vulnerability in Nova. The update introduced a regression causing Nova to be unable to detach volumes from instances. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Jan Wasilewski and Gorka Eguileor discovered that Nova incorrectly handled deleted volume attachments. An authenticated user or attacker could possibly use this issue to gain access to sensitive information. This update may require configuration changes to be completely effective, please see the upstream advisory for more information: Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: python3-nova 2:21.2.4-0ubuntu2.4 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6073-5 https://ubuntu.com/security/notices/USN-6073-1 https://bugs.launchpad.net/cloud-archive/+bug/2019460 Package Information: https://launchpad.net/ubuntu/+source/nova/2:21.2.4-0ubuntu2.4 . A new issue surfaced in Nova impacting Ubuntu 20.04 LTS. Please update promptly for resolutions and further information.. Ubuntu Security Notice,Nova Update,Cloud Infrastructure Fix. . LinuxSecurity.com Team
May 14, 2023
Ubuntu
98
security advisorymoderatesecurity updateRed Hat OpenShift Security Advisory: RHSA-2023-1042-01 on Custom Metrics
Custom Metrics Autoscaler Operator for Red Hat OpenShift including security updates. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Custom Metrics Autoscaler Operator for Red Hat OpenShift (with security updates) Advisory ID: RHSA-2023:1042-01 Product: custom-metrics-autoscaler Advisory URL: https://access.redhat.com/errata/RHSA-2023:1042 Issue date: 2023-03-06 CVE Names: CVE-2022-1705 CVE-2022-1962 CVE-2022-2879 CVE-2022-2880 CVE-2022-27664 CVE-2022-28131 CVE-2022-28327 CVE-2022-30630 CVE-2022-30631 CVE-2022-30632 CVE-2022-30633 CVE-2022-30635 CVE-2022-32148 CVE-2022-32149 CVE-2022-41715 ==================================================================== 1. Summary: Custom Metrics Autoscaler Operator for Red Hat OpenShift including security updates. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: The Custom Metrics Autoscaler Operator for Red Hat OpenShift is an optional operator, based on the Kubernetes Event Driven Autoscaler (KEDA), that allows workloads to be scaled using additional metrics sources other than pod metrics. This release builds upon updated compiler, runtime library, and base images for the purpose of resolving any potential security issues present in previous toolset versions. This version makes use of newer tools and libraries to address the following issues: golang: net/http: improper sanitization of Transfer-Encodingheader (CVE-2022-1705) golang: go/parser: stack exhaustion in all Parse* functions (CVE-2022-1962) golang: archive/tar: unbounded memory consumption when reading headers(CVE-2022-2879) golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters (CVE-2022-2880) golang: net/http: handle server errors after sending GOAWAY (CVE-2022-27664) golang: encoding/xml: stack exhaustion in Decoder.Skip (CVE-2022-28131) golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327) golang: io/fs: stack exhaustion in Glob (CVE-2022-30630) golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631) golang: path/filepath: stack exhaustion in Glob (CVE-2022-30632) golang: encoding/xml: stack exhaustion in Unmarshal (CVE-2022-30633) golang: encoding/gob: stack exhaustion in Decoder.Decode (CVE-2022-30635) golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working (CVE-2022-32148) golang: golang.org/x/text/language: ParseAcceptLanguage takes a long time to parse complex tags (CVE-2022-32149) golang: regexp/syntax: limit memory used by parsing regexps (CVE-2022-41715) 3. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 4. Bugs fixed (https://bugzilla.redhat.com/): 2077689 - CVE-2022-28327 golang: crypto/elliptic: panic caused by oversized scalar 2100763 - No space to specify operator.logLevel from Form view when create KedaController 2107342 - CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read 2107371 - CVE-2022-30630 golang: io/fs: stack exhaustion in Glob 2107374 - CVE-2022-1705 golang: net/http: improper sanitization of Transfer-Encoding header 2107376 - CVE-2022-1962 golang: go/parser: stack exhaustion in all Parse* functions 2107383 - CVE-2022-32148 golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working 2107386 - CVE-2022-30632golang: path/filepath: stack exhaustion in Glob 2107388 - CVE-2022-30635 golang: encoding/gob: stack exhaustion in Decoder.Decode 2107390 - CVE-2022-28131 golang: encoding/xml: stack exhaustion in Decoder.Skip 2107392 - CVE-2022-30633 golang: encoding/xml: stack exhaustion in Unmarshal 2113945 - Icon of Custom Metrics Autoscaler is blurry on operatorhub 2118404 - Wrong GitHub link for Custom Metrics Autoscaler in OperatorHub 2124669 - CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY 2132867 - CVE-2022-2879 golang: archive/tar: unbounded memory consumption when reading headers2132868 - CVE-2022-2880 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters2132872 - CVE-2022-41715 golang: regexp/syntax: limit memory used by parsing regexps 2134010 - CVE-2022-32149 golang: golang.org/x/text/language: ParseAcceptLanguage takes a long time to parse complex tags 5. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): OCPNODE-1260 - Wrong links to CMA repository in CMA operator in OperatorHub 6. References: https://access.redhat.com/security/cve/CVE-2022-1705 https://access.redhat.com/security/cve/CVE-2022-1962 https://access.redhat.com/security/cve/CVE-2022-2879 https://access.redhat.com/security/cve/CVE-2022-2880 https://access.redhat.com/security/cve/CVE-2022-27664 https://access.redhat.com/security/cve/CVE-2022-28131 https://access.redhat.com/security/cve/CVE-2022-28327 https://access.redhat.com/security/cve/CVE-2022-30630 https://access.redhat.com/security/cve/CVE-2022-30631 https://access.redhat.com/security/cve/CVE-2022-30632 https://access.redhat.com/security/cve/CVE-2022-30633 https://access.redhat.com/security/cve/CVE-2022-30635 https://access.redhat.com/security/cve/CVE-2022-32148 https://access.redhat.com/security/cve/CVE-2022-32149 https://access.redhat.com/security/cve/CVE-2022-41715 https://access.redhat.com/security/updates/classification#moderate 7. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBZAaFRtzjgjWX9erEAQj/4hAAldx0//Hb5yYz4eiZy9WZCnnao56WgBbQ DBxiep9b9bhaoOUDDw8g7ClxafMHpp7u7BmQksA9+bnqcBEqNg8OV5mNqglzoPKa qJkHKI837qX1NUBNwmmj/32cjT0czC0N+QiTM0LoPyWQmiw1pJWriHMfLyFIfcgw QUDemm7XzYiRYxf+ViHaufndsOGYVplmysdO2C9qGi+Lckzl1fr5GeJgPD4QL/4h ebpgV2XQb5drYIiBt224HruJNmj2j4iP32hxf3IYOJbihk+EB2ZzkINmDq27a5mf qrJSJn9Q9ZiMyVP7NqK04HoW/Ntj9ZU0atzHnVVd470TFubgRKOAGsnS68fIC5XP ZbCPWoGC+mZzzsZrgK+3vMX90Y5rmBXWPHLLooSWCha4TpEhg0rlzmw4dzW+Uumz M48n+SfIde5b6aCsPAmnNeLNy0UQ9iDcv4Yzmc4qdEfWigRgULaoIHOqJGW0UVZg ffqcu4S7tihJij5L4j20vbTGWZgn5KAmTY7Dxt/S1yN0Re5uBzMXu0gri5TtKJgM CEfULzNSXgjE1C8hrPPKKR6La+cyIbAXCocPTlTepwE+mqVtHqAHkvKooOCr45um BRwrMWahWGgOpZ/COrPu0ccgaz1GRtmArK/pjbXswM8ep2wa6oMaQgf4IA7/1UUF 7NvSWcK9Wr0=F/ST -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 07, 2023
Red Hat
100
security advisorysecurity updateimportantSUSE: 2020:3631-1 Critical: Stack Corruption Threat in Xen
An update that solves 5 vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:3631-1 Rating: important References: #1177409 #1177412 #1177413 #1177414 #1178591 #1178963 Cross-References: CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27674 CVE-2020-28368 Affected Products: SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud 8 SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server 12-SP3-LTSS SUSE Linux Enterprise Server 12-SP3-BCL SUSE Enterprise Storage 5 HPE Helion Openstack 8 ______________________________________________________________________________ An update that solves 5 vulnerabilities and has one errata is now available. Description: This update for xen fixes the following issues: - bsc#1178963 - stack corruption from XSA-346 change (XSA-355) - bsc#1177409 - CVE-2020-27674: x86 PV guest INVLPG-like flushes may leave stale TLB entries (XSA-286) - bsc#1177412 - CVE-2020-27672: Race condition in Xen mapping code (XSA-345) - bsc#1177413 - CVE-2020-27671: undue deferral of IOMMU TLB flushes (XSA-346) - bsc#1177414 - CVE-2020-27670: unsafe AMD IOMMU page table updates (XSA-347) - bsc#1178591 - CVE-2020-28368: Intel RAPL sidechannel attack aka PLATYPUS attack aka XSA-351 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud Crowbar 8: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2020-3631=1 - SUSE OpenStack Cloud 8: zypper in -t patchSUSE-OpenStack-Cloud-8-2020-3631=1 - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2020-3631=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2020-3631=1 - SUSE Linux Enterprise Server 12-SP3-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP3-BCL-2020-3631=1 - SUSE Enterprise Storage 5: zypper in -t patch SUSE-Storage-5-2020-3631=1 - HPE Helion Openstack 8: zypper in -t patch HPE-Helion-OpenStack-8-2020-3631=1 Package List: - SUSE OpenStack Cloud Crowbar 8 (x86_64): xen-4.9.4_14-3.77.1 xen-debugsource-4.9.4_14-3.77.1 xen-doc-html-4.9.4_14-3.77.1 xen-libs-32bit-4.9.4_14-3.77.1 xen-libs-4.9.4_14-3.77.1 xen-libs-debuginfo-32bit-4.9.4_14-3.77.1 xen-libs-debuginfo-4.9.4_14-3.77.1 xen-tools-4.9.4_14-3.77.1 xen-tools-debuginfo-4.9.4_14-3.77.1 xen-tools-domU-4.9.4_14-3.77.1 xen-tools-domU-debuginfo-4.9.4_14-3.77.1 - SUSE OpenStack Cloud 8 (x86_64): xen-4.9.4_14-3.77.1 xen-debugsource-4.9.4_14-3.77.1 xen-doc-html-4.9.4_14-3.77.1 xen-libs-32bit-4.9.4_14-3.77.1 xen-libs-4.9.4_14-3.77.1 xen-libs-debuginfo-32bit-4.9.4_14-3.77.1 xen-libs-debuginfo-4.9.4_14-3.77.1 xen-tools-4.9.4_14-3.77.1 xen-tools-debuginfo-4.9.4_14-3.77.1 xen-tools-domU-4.9.4_14-3.77.1 xen-tools-domU-debuginfo-4.9.4_14-3.77.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (x86_64): xen-4.9.4_14-3.77.1 xen-debugsource-4.9.4_14-3.77.1 xen-doc-html-4.9.4_14-3.77.1 xen-libs-32bit-4.9.4_14-3.77.1 xen-libs-4.9.4_14-3.77.1 xen-libs-debuginfo-32bit-4.9.4_14-3.77.1 xen-libs-debuginfo-4.9.4_14-3.77.1 xen-tools-4.9.4_14-3.77.1 xen-tools-debuginfo-4.9.4_14-3.77.1 xen-tools-domU-4.9.4_14-3.77.1 xen-tools-domU-debuginfo-4.9.4_14-3.77.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (x86_64): xen-4.9.4_14-3.77.1 xen-debugsource-4.9.4_14-3.77.1 xen-doc-html-4.9.4_14-3.77.1 xen-libs-32bit-4.9.4_14-3.77.1 xen-libs-4.9.4_14-3.77.1 xen-libs-debuginfo-32bit-4.9.4_14-3.77.1 xen-libs-debuginfo-4.9.4_14-3.77.1 xen-tools-4.9.4_14-3.77.1 xen-tools-debuginfo-4.9.4_14-3.77.1 xen-tools-domU-4.9.4_14-3.77.1 xen-tools-domU-debuginfo-4.9.4_14-3.77.1 - SUSE Linux Enterprise Server 12-SP3-BCL (x86_64): xen-4.9.4_14-3.77.1 xen-debugsource-4.9.4_14-3.77.1 xen-doc-html-4.9.4_14-3.77.1 xen-libs-32bit-4.9.4_14-3.77.1 xen-libs-4.9.4_14-3.77.1 xen-libs-debuginfo-32bit-4.9.4_14-3.77.1 xen-libs-debuginfo-4.9.4_14-3.77.1 xen-tools-4.9.4_14-3.77.1 xen-tools-debuginfo-4.9.4_14-3.77.1 xen-tools-domU-4.9.4_14-3.77.1 xen-tools-domU-debuginfo-4.9.4_14-3.77.1 - SUSE Enterprise Storage 5 (x86_64): xen-4.9.4_14-3.77.1 xen-debugsource-4.9.4_14-3.77.1 xen-doc-html-4.9.4_14-3.77.1 xen-libs-32bit-4.9.4_14-3.77.1 xen-libs-4.9.4_14-3.77.1 xen-libs-debuginfo-32bit-4.9.4_14-3.77.1 xen-libs-debuginfo-4.9.4_14-3.77.1 xen-tools-4.9.4_14-3.77.1 xen-tools-debuginfo-4.9.4_14-3.77.1 xen-tools-domU-4.9.4_14-3.77.1 xen-tools-domU-debuginfo-4.9.4_14-3.77.1 - HPE Helion Openstack 8 (x86_64): xen-4.9.4_14-3.77.1 xen-debugsource-4.9.4_14-3.77.1 xen-doc-html-4.9.4_14-3.77.1 xen-libs-32bit-4.9.4_14-3.77.1 xen-libs-4.9.4_14-3.77.1 xen-libs-debuginfo-32bit-4.9.4_14-3.77.1 xen-libs-debuginfo-4.9.4_14-3.77.1 xen-tools-4.9.4_14-3.77.1 xen-tools-debuginfo-4.9.4_14-3.77.1 xen-tools-domU-4.9.4_14-3.77.1 xen-tools-domU-debuginfo-4.9.4_14-3.77.1 References: https://www.suse.com/security/cve/CVE-2020-27670.html https://www.suse.com/security/cve/CVE-2020-27671.html https://www.suse.com/security/cve/CVE-2020-27672.html https://www.suse.com/security/cve/CVE-2020-27674.html https://www.suse.com/security/cve/CVE-2020-28368.html https://bugzilla.suse.com/show_bug.cgi?id=1177409 https://bugzilla.suse.com/show_bug.cgi?id=1177412 https://bugzilla.suse.com/show_bug.cgi?id=1177413 https://bugzilla.suse.com/show_bug.cgi?id=1177414 https://bugzilla.suse.com/show_bug.cgi?id=1178591 https://bugzilla.suse.com/show_bug.cgi?id=1178963 . A critical SUSE Security Patch for kernel addresses several vulnerabilities impacting numerous SUSE offerings.. SUSE Linux Enterprise,xen Security Update,OpenStack Fixes. . Severity: Important. LinuxSecurity.com Team
Dec 07, 2020
•Important
SuSE
100
security advisorysecurity fixmoderate severitySUSE: 2020:0474-1 Moderate: OpenSSL Overflow Bug Advisory
An update that solves one vulnerability and has two fixes is now available. . SUSE Security Update: Security update for openssl ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:0474-1 Rating: moderate References: #1117951 #1158809 #1160163 Cross-References: CVE-2019-1551 Affected Products: SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 7 SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server for SAP 12-SP2 SUSE Linux Enterprise Server 12-SP3-LTSS SUSE Linux Enterprise Server 12-SP3-BCL SUSE Linux Enterprise Server 12-SP2-LTSS SUSE Linux Enterprise Server 12-SP2-BCL SUSE Enterprise Storage 5 SUSE CaaS Platform 3.0 HPE Helion Openstack 8 ______________________________________________________________________________ An update that solves one vulnerability and has two fixes is now available. Description: This update for openssl fixes the following issues: Security issue fixed: - CVE-2019-1551: Fixed an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli (bsc#1158809). Non-security issue fixed: - Fixed a crash in BN_copy (bsc#1160163). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud Crowbar 8: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2020-474=1 - SUSE OpenStack Cloud 8: zypper in -t patch SUSE-OpenStack-Cloud-8-2020-474=1 - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2020-474=1 - SUSE Linux EnterpriseServer for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2020-474=1 - SUSE Linux Enterprise Server for SAP 12-SP2: zypper in -t patch SUSE-SLE-SAP-12-SP2-2020-474=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2020-474=1 - SUSE Linux Enterprise Server 12-SP3-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP3-BCL-2020-474=1 - SUSE Linux Enterprise Server 12-SP2-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2020-474=1 - SUSE Linux Enterprise Server 12-SP2-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2020-474=1 - SUSE Enterprise Storage 5: zypper in -t patch SUSE-Storage-5-2020-474=1 - SUSE CaaS Platform 3.0: To install this update, use the SUSE CaaS Platform Velum dashboard. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. - HPE Helion Openstack 8: zypper in -t patch HPE-Helion-OpenStack-8-2020-474=1 Package List: - SUSE OpenStack Cloud Crowbar 8 (x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE OpenStack Cloud Crowbar 8 (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE OpenStack Cloud 8 (x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE OpenStack Cloud 8 (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE OpenStack Cloud 7 (s390x x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE OpenStack Cloud 7 (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (ppc64le x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (x86_64): libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (ppc64le x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (x86_64): libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (aarch64 ppc64le s390x x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (s390x x86_64): libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP3-BCL (x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP3-BCL (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (ppc64le s390x x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (s390x x86_64): libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP2-BCL (x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE Linux Enterprise Server 12-SP2-BCL (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Enterprise Storage 5 (aarch64 x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - SUSE Enterprise Storage 5 (noarch): openssl-doc-1.0.2j-60.60.1 - SUSE Enterprise Storage 5 (x86_64): libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 - SUSE CaaS Platform 3.0 (x86_64): libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 - HPE Helion Openstack 8 (noarch): openssl-doc-1.0.2j-60.60.1 - HPE Helion Openstack 8 (x86_64): libopenssl-devel-1.0.2j-60.60.1 libopenssl1_0_0-1.0.2j-60.60.1 libopenssl1_0_0-32bit-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-1.0.2j-60.60.1 libopenssl1_0_0-debuginfo-32bit-1.0.2j-60.60.1 libopenssl1_0_0-hmac-1.0.2j-60.60.1 libopenssl1_0_0-hmac-32bit-1.0.2j-60.60.1 openssl-1.0.2j-60.60.1 openssl-debuginfo-1.0.2j-60.60.1 openssl-debugsource-1.0.2j-60.60.1 References: https://www.suse.com/security/cve/CVE-2019-1551.html https://bugzilla.suse.com/1117951 https://bugzilla.suse.com/1158809 https://bugzilla.suse.com/1160163 _______________________________________________ sle-security-updates mailing list
Feb 25, 2020
SuSE
172
security advisoryinformation disclosureubuntuUbuntu 4104-1: Nova Information Exposure Threat Advisory
Nova could be made to expose sensitive information.. =========================================================================Ubuntu Security Notice USN-4104-1 August 19, 2019 nova vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 19.04 - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Nova could be made to expose sensitive information. Software Description: - nova: OpenStack Compute cloud infrastructure Details: Donny Davis discovered that the Nova Compute service could return configuration or other information in response to a failed API request in some situations. A remote attacker could use this to expose sensitive information. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04: nova-compute 2:19.0.1-0ubuntu2.1 python3-nova 2:19.0.1-0ubuntu2.1 Ubuntu 18.04 LTS: nova-compute 2:17.0.10-0ubuntu2.1 python-nova 2:17.0.10-0ubuntu2.1 Ubuntu 16.04 LTS: nova-compute 2:13.1.4-0ubuntu4.5 python-nova 2:13.1.4-0ubuntu4.5 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4104-1 CVE-2019-14433 Package Information: https://launchpad.net/ubuntu/+source/nova/2:19.0.1-0ubuntu2.1 https://launchpad.net/ubuntu/+source/nova/2:17.0.10-0ubuntu2.1 https://launchpad.net/ubuntu/+source/nova/2:13.1.4-0ubuntu4.5 . Ubuntu Security Announcement USN-4104-1 addresses a nova flaw that could potentially lead to unauthorized disclosure of sensitive information.. Nova Exploit, Ubuntu Security Notice, Cloud Infrastructure Vulnerability. . Severity: Important. LinuxSecurity.com Team
Aug 19, 2019
•Important
Ubuntu
98
security advisorymoderatebug fixRed Hat OpenStack Platform 10 RHSA-2018:2102-01 Moderate Info Exposure
An update is now available for Red Hat OpenStack Platform 10.0 (Newton) for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat OpenStack Platform 10 Security, Bug Fix, and Enhancement Advisory Advisory ID: RHSA-2018:2102-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2018:2102 Issue date: 2018-06-27 CVE Names: CVE-2018-1059 ==================================================================== 1. Summary: An update is now available for Red Hat OpenStack Platform 10.0 (Newton) for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: OpenStack 10.0 Tools for RHEL 7 - noarch Red Hat OpenStack Platform 10.0 - noarch, x86_64 3. Description: Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service (IaaS) cloud running on commonly available physical hardware. Security Fix(es): * dpdk: Information exposure in unchecked guest physical to host virtual address translations (CVE-2018-1059) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. The CVE-2018-1059 issue was discovered by Maxime Coquelin (Red Hat). 4. Solution: Before applying this update, ensure all previously released errata relevant to your system have been applied. Red Hat OpenStack Platform 10runs on Red Hat Enterprise Linux 7.4. The Red Hat OpenStack Platform 10 Release Notes contain the following: * An explanation of the way in which the provided components interact to form a working cloud computing environment. * Technology Previews, Recommended Practices, and Known Issues. * The channels required for Red Hat OpenStack Platform 10, including which channels need to be enabled and disabled. The Release Notes are available at: ged/release-notes This update is available through 'yum update' on systems registered through Red Hat Subscription Manager. For more information about Red Hat Subscription Manager, see: nt/1/html/RHSM/index.html 5. Bugs fixed (https://bugzilla.redhat.com/): 1540017 - ovs-vswitchd systemd process timesout in environments with large (200G) hugepages 1540158 - RHOS10.z OVS 1802 update 1540164 - RHOS10.z 1802 Rebase OVS with branch-2.6 1540175 - RHOS10.z 1802 Rebase DPDK with LTS branch 1542107 - Live migration fails on OSPd10 DPDK env because of selinux denied 1544298 - CVE-2018-1059 dpdk: Information exposure in unchecked guest physical to host virtual address translations 1546198 - [RFE] ovs-stats metrics list to add to collectd 1549893 - Issue with pCPUs for PMDs not running 100% in user space, but a relatively high amount of time in kernel space 1550124 - "upcall_cb failure: ukey installation fails" message in OVS DPDK 1550398 - failed to start vhost interface after updating ovs to 2.9 in osp10 1551682 - ovs-vswitchd segfaults after any instance is spawned on numa 1 socket 1553812 - Update openvswitch 2.6 to use stable DPDK 16.11.5 1556662 - vhostuser interface link is down sometimes unexpectedly 1561939 - Backport from master OVS for "LACP: check active partner sys id" 1572510 - OSP10: Support for dpdkvhostuserclient mode 1579905 - Update OSP10 to OVS 2.9 -19 Fast Datapath build 18.04 1583750 - openvswitch-2.9.0-19.el7fdp installs /var/log/openvswitch with permissions 0755 [openstack-10] 6. Package List: Red Hat OpenStack Platform10.0: Source: openstack-selinux-0.8.14-5.el7ost.src.rpm openvswitch-2.9.0-19.el7fdp.1.src.rpm noarch: openstack-selinux-0.8.14-5.el7ost.noarch.rpm python-openvswitch-2.9.0-19.el7fdp.1.noarch.rpm x86_64: openvswitch-2.9.0-19.el7fdp.1.x86_64.rpm openvswitch-debuginfo-2.9.0-19.el7fdp.1.x86_64.rpm openvswitch-devel-2.9.0-19.el7fdp.1.x86_64.rpm openvswitch-ovn-central-2.9.0-19.el7fdp.1.x86_64.rpm openvswitch-ovn-common-2.9.0-19.el7fdp.1.x86_64.rpm openvswitch-ovn-host-2.9.0-19.el7fdp.1.x86_64.rpm openvswitch-ovn-vtep-2.9.0-19.el7fdp.1.x86_64.rpm OpenStack 10.0 Tools for RHEL 7: noarch: openvswitch-test-2.9.0-19.el7fdp.1.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-1059 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBWzQox9zjgjWX9erEAQiYVw//VmfUDHQIZNbxjxrPwaAYKgxziVrU1Uga dzmg9PCViIoJsSniy+oW7Ge7alBd8qxYfYTjrM8wR5AGoOYVjslU5PiXRAC4jsKx 2px1WEx6vWyLKadnDAlyePpl85MDNBhKHjqiChicjLjw5RhpOc2tPUfAo5dYS/V6 zdsVzraUXqas9ygUi0BF8azkDP0OwzA9W93VfKZ7PFOfYc8fYPCrRK1qel8/JqA1 nyaBiJZ4rQUksP5gVon8aPCmzfogdR7IKvP4ZatfXGcWqyN4jt9k4+Mf8FIaiE0E NssKJ5z+GwmegQaxaipZRkuXMr8VwA9ID70v6xiqW0hjr1uNUIDodvGxBrVQgJOI EGpIFLxFYQAB0rZjC3qrwu6yC4LhJQgvxJk+FhTQXamHF34Ha9Op7KCssoO1ujx9 y75kFY5kAeS8inmG0UvrQ3w4K/hBKgKnXOI+++r/B6RCe6vASY54ia8bsURzrOfv LnRSZEbtTxgKcjt9RWpMJsW0SIdZN2sFG6RJgccZjiu6+lmZQMydSHMYkAm7HqJL 5F6uSsFXEGM/ObdHyBh6hqVlwMHRDzoYvIECBr4vcyar9XPRUx3744rXBIEPtdtZ ReBvISiZwX3dF2AxK4Z7UGB7svxOIugGwP2mcEoeKF5yFwsZ7X01T/+spyt71Nbd hyA5W3Nk4JU=N2e4 -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jun 28, 2018
•Medium
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!