Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
100
security advisoryprivilege escalationimportantSUSE: 2023:4510-1 Important: Ucode-Intel CPU Privilege Escalation Fix
* bsc#1215278 Cross-References: * CVE-2023-23583 . # Security update for ucode-intel Announcement ID: SUSE-SU-2023:4510-1 Rating: important References: * bsc#1215278 Cross-References: * CVE-2023-23583 CVSS scores: * CVE-2023-23583 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE CaaS Platform 4.0 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 An update that solves one vulnerability can now be installed. ## Description: This update for ucode-intel fixes the following issues: * Updated to Intel CPU Microcode 20231114 release. (bsc#1215278) * CVE-2023-23583: Fixed potential CPU deadlocks or privilege escalation. (bsc#1215278) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2023-4510=1 * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2023-4510=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2023-4510=1 * SUSE CaaS Platform 4.0 To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. ## Package List: * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (x86_64) * ucode-intel-20231114-150100.3.231.1 * SUSE Linux EnterpriseServer 15 SP1 LTSS 15-SP1 (x86_64) * ucode-intel-20231114-150100.3.231.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 (x86_64) * ucode-intel-20231114-150100.3.231.1 * SUSE CaaS Platform 4.0 (x86_64) * ucode-intel-20231114-150100.3.231.1 ## References: * https://www.suse.com/security/cve/CVE-2023-23583.html * https://bugzilla.suse.com/show_bug.cgi?id=1215278 . Crucial announcement regarding ucode-intel addresses CPU hangs and security risks in SUSE offerings. Please adhere to the provided installation guidelines.. SUSE Security Update,Ucode-Intel Update,CPU Privilege Escalation. . Severity: Important. LinuxSecurity.com Team
Nov 21, 2023
•Important
SuSE
203
security advisorycritical updatedata exposureMageia 8 MGASA-2023-0244 Critical: Zen 2 Microcode Leak Issue
Under specific microarchitectural circumstances, a register in "Zen 2" CPUs may not be written to 0 correctly. This may cause data from another process and/or thread to be stored in the YMM register, which may allow an attacker to potentially access sensitive information (CVE-2023-20593, also known as Zenbleed). . MGASA-2023-0244 - Updated microcode packages fix security vulnerability Publication date: 26 Jul 2023 URL: https://advisories.mageia.org/MGASA-2023-0244.html Type: security Affected Mageia releases: 8 CVE: CVE-2023-20593 Under specific microarchitectural circumstances, a register in "Zen 2" CPUs may not be written to 0 correctly. This may cause data from another process and/or thread to be stored in the YMM register, which may allow an attacker to potentially access sensitive information (CVE-2023-20593, also known as Zenbleed). This update adds the microcode for Amd Epyc gen 2 cpus. Other Zen 2 based CPUs will get their microcode update at a later time when Amd has fixed and validated the microcodes, see the referenced Amd url that has info about estimated timelines for various CPUs. References: - https://bugs.mageia.org/show_bug.cgi?id=32142 - https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7008.html - https://www.cve.org/CVERecord?id=CVE-2023-20593 SRPMS: - 8/nonfree/microcode-0.20230613-2.mga8.nonfree . MGASA-2023-0245 releases firmware adjustments to address a vulnerability in Zen 2 processors that could result in the leakage of confidential information.. Microcode Update, Zen 2 Vulnerability, AMD Security, Mageia Advisory. . Severity: Critical. LinuxSecurity.com Team
Jul 26, 2023
•Critical
Mageia
100
security advisorymoderate severitypython updateSUSE: 2023:169-1 Moderate: BCI Python Update Addressing CPU Issue
The container bci/python was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/python ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:169-1 Container Tags : bci/python:3 , bci/python:3-11.4 , bci/python:3.10 , bci/python:3.10-11.4 , bci/python:latest Container Release : 11.4 Severity : moderate Type : security References : 1206667 CVE-2022-40897 ----------------------------------------------------------------- The container bci/python was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:91-1 Released: Mon Jan 16 11:14:14 2023 Summary: Security update for python310-setuptools Type: security Severity: moderate References: 1206667,CVE-2022-40897 This update for python310-setuptools fixes the following issues: - CVE-2022-40897: Fixed an excessive CPU usage that could be triggered by fetching a malicious HTML document (bsc#1206667). The following package changes have been done: - python310-setuptools-57.4.0-150400.4.3.1 updated . The latest SUSE Container Update for bci/node introduces essential security enhancements and resolves memory optimization concerns within Node.js libraries.. SUSE Container, Python Security, Container Update, Moderate Severity, CPU Usage Fix. . LinuxSecurity.com Team
Jan 17, 2023
SuSE
87
security advisorysoftware updatedebianDebian: DSA-4871-1 Critical: Tor CPU Overload and Failure Risk
Two vulnerabilities were discovered in Tor, a connection-based low-latency anonymous communication system, which could lead to excessive CPU usage or cause a directory authority to crash. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-4871-1
Mar 16, 2021
•Critical
Debian
202
security advisoryupdatesambaopenSUSE Leap 15.1: 2020:0984-1 Important: Samba CPU Issues and Loop Fixes
An update that solves four vulnerabilities and has two fixes is now available.. openSUSE Security Update: Security update for samba ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0984-1 Rating: important References: #1171437 #1172307 #1173159 #1173160 #1173161 #1173359 Cross-References: CVE-2020-10730 CVE-2020-10745 CVE-2020-10760 CVE-2020-14303 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that solves four vulnerabilities and has two fixes is now available. Description: This update for samba fixes the following issues: - CVE-2020-10745: Fixed an issue which parsing and packing of NBT and DNS packets containing dots could potentially have consumed excessive CPU (bsc#1173160). - CVE-2020-14303: Fixed an endless loop when receiving at AD DC empty UDP packets (bsc#1173359). - CVE-2020-10730: Fixed a null de-reference in AD DC LDAP server when ASQ and VLV combined (bsc#1173159). - CVE-2020-10760: Fixed a use-after-free in AD DC Global Catalog LDAP server with paged_result or VLV (bsc#1173161). - Added libnetapi-devel to baselibs conf, for wine usage (bsc#1172307). - Fixed an installing issue where samba - samba-ad-dc.service did not exist and unit was not found (bsc#1171437). This update was imported from the SUSE:SLE-15-SP1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-984=1 Package List: - openSUSE Leap 15.1 (i586 x86_64): ctdb-4.9.5+git.343.4bc358522a9-lp151.2.27.1 ctdb-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 ctdb-pcp-pmda-4.9.5+git.343.4bc358522a9-lp151.2.27.1 ctdb-pcp-pmda-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 ctdb-tests-4.9.5+git.343.4bc358522a9-lp151.2.27.1 ctdb-tests-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-binding0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-binding0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-samr-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-samr0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-samr0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-krb5pac-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-krb5pac0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-krb5pac0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-nbt-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-nbt0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-nbt0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-standard-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-standard0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-standard0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libnetapi-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libnetapi0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libnetapi0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-credentials-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-credentials0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-credentials0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-errors-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-errors0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-errors0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-hostconfig-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-hostconfig0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-hostconfig0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-passdb-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-passdb0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-passdb0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy-python-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy-python3-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-python3-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-python3-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-util-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-util0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-util0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamdb-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamdb0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamdb0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbclient-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbclient0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbclient0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbconf-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbconf0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbconf0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbldap-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbldap2-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbldap2-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libtevent-util-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libtevent-util0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libtevent-util0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libwbclient-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libwbclient0-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libwbclient0-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-ad-dc-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-ad-dc-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-client-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-client-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-core-devel-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-debugsource-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-dsdb-modules-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-dsdb-modules-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python3-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python3-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-pidl-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-python-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-python-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-python3-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-python3-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-test-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-test-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-winbind-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-winbind-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 - openSUSE Leap 15.1 (noarch): samba-doc-4.9.5+git.343.4bc358522a9-lp151.2.27.1 - openSUSE Leap 15.1 (x86_64): libdcerpc-binding0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-binding0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-samr0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc-samr0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libdcerpc0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-krb5pac0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-krb5pac0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-nbt0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-nbt0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-standard0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr-standard0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libndr0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libnetapi-devel-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libnetapi0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libnetapi0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-credentials0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-credentials0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-errors0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-errors0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-hostconfig0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-hostconfig0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-passdb0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-passdb0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-python3-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-policy0-python3-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-util0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamba-util0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamdb0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsamdb0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbclient0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbclient0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbconf0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbconf0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbldap2-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libsmbldap2-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libtevent-util0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libtevent-util0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libwbclient0-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 libwbclient0-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-ad-dc-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-ad-dc-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-ceph-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-ceph-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-client-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-client-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python3-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-libs-python3-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-winbind-32bit-4.9.5+git.343.4bc358522a9-lp151.2.27.1 samba-winbind-32bit-debuginfo-4.9.5+git.343.4bc358522a9-lp151.2.27.1 References: https://www.suse.com/security/cve/CVE-2020-10730.html https://www.suse.com/security/cve/CVE-2020-10745.html https://www.suse.com/security/cve/CVE-2020-10760.html https://www.suse.com/security/cve/CVE-2020-14303.html https://bugzilla.suse.com/1171437 https://bugzilla.suse.com/1172307 https://bugzilla.suse.com/1173159 https://bugzilla.suse.com/1173160 https://bugzilla.suse.com/1173161 https://bugzilla.suse.com/1173359 -- . This important upgrade for Fedora addresses multiple samba concerns, improving security, efficiency, and system dependability.. openSUSE Update, Samba Security Fix, Performance Issue, Security Update. . Severity: Important. LinuxSecurity.com Team
Jul 18, 2020
•Important
OpenSUSE
100
security advisoryupdatesecurity fixSUSE: 2019:3091-1 Important: Ucode-Intel CPU Issues Resolved
An update that solves two vulnerabilities and has two fixes is now available. . SUSE Security Update: Security update for ucode-intel ______________________________________________________________________________ Announcement ID: SUSE-SU-2019:3091-1 Rating: important References: #1139073 #1141035 #1155988 #1157004 Cross-References: CVE-2019-11135 CVE-2019-11139 Affected Products: SUSE Linux Enterprise Server 12-SP5 ______________________________________________________________________________ An update that solves two vulnerabilities and has two fixes is now available. Description: This update for ucode-intel to version fixes the following issues: - Updated to 20191115 official security release (bsc#1157004 and bsc#1155988) - Includes security fixes for: - CVE-2019-11135: Added feature allowing to disable TSX RTM (bsc#1139073) - CVE-2019-11139: A CPU microcode only fix for Voltage modulation issues (bsc#1141035) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2019-3091=1 Package List: - SUSE Linux Enterprise Server 12-SP5 (x86_64): ucode-intel-20191115-3.3.1 ucode-intel-debuginfo-20191115-3.3.1 ucode-intel-debugsource-20191115-3.3.1 References: https://www.suse.com/security/cve/CVE-2019-11135.html https://www.suse.com/security/cve/CVE-2019-11139.html https://bugzilla.suse.com/1139073 https://bugzilla.suse.com/1141035 https://bugzilla.suse.com/1155988 https://bugzilla.suse.com/1157004 _______________________________________________ sle-security-updates mailing list
Nov 28, 2019
•Important
SuSE
100
security advisoryimportantSUSESUSE: 2019:2958-1 Important: ucode-intel CPU Issues Addressed
An update that solves two vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for ucode-intel ______________________________________________________________________________ Announcement ID: SUSE-SU-2019:2958-1 Rating: important References: #1139073 #1141035 #1155988 Cross-References: CVE-2019-11135 CVE-2019-11139 Affected Products: SUSE Linux Enterprise Module for Basesystem 15-SP1 ______________________________________________________________________________ An update that solves two vulnerabilities and has one errata is now available. Description: This update for ucode-intel fixes the following issues: - Updated to 20191112 security release (bsc#1155988) - Processor Identifier Version Products - Model Stepping F-MO-S/PI Old-> New - ---- new platforms ---------------------------------------- - CML-U62 A0 6-a6-0/80 000000c6 Core Gen10 Mobile - CNL-U D0 6-66-3/80 0000002a Core Gen8 Mobile - SKX-SP B1 6-55-3/97 01000150 Xeon Scalable - ICL U/Y D1 6-7e-5/80 00000046 Core Gen10 Mobile - ---- updated platforms ------------------------------------ - SKL U/Y D0 6-4e-3/c0 000000cc-> 000000d4 Core Gen6 Mobile - SKL H/S/E3 R0/N0 6-5e-3/36 000000cc-> 000000d4 Core Gen6 - AML-Y22 H0 6-8e-9/10 000000b4-> 000000c6 Core Gen8 Mobile - KBL-U/Y H0 6-8e-9/c0 000000b4-> 000000c6 Core Gen7 Mobile - CFL-U43e D0 6-8e-a/c0 000000b4-> 000000c6 Core Gen8 Mobile - WHL-U W0 6-8e-b/d0 000000b8-> 000000c6 Core Gen8 Mobile - AML-Y V0 6-8e-c/94 000000b8-> 000000c6 Core Gen10 Mobile - CML-U42 V0 6-8e-c/94 000000b8-> 000000c6 Core Gen10 Mobile - WHL-U V0 6-8e-c/94 000000b8-> 000000c6 Core Gen8 Mobile - KBL-G/X H0 6-9e-9/2a000000b4-> 000000c6 Core Gen7/Gen8 - KBL-H/S/E3 B0 6-9e-9/2a 000000b4-> 000000c6 Core Gen7; Xeon E3 v6 - CFL-H/S/E3 U0 6-9e-a/22 000000b4-> 000000c6 Core Gen8 Desktop, Mobile, Xeon E - CFL-S B0 6-9e-b/02 000000b4-> 000000c6 Core Gen8 - CFL-H R0 6-9e-d/22 000000b8-> 000000c6 Core Gen9 Mobile - Includes security fixes for: - CVE-2019-11135: Added feature allowing to disable TSX RTM (bsc#1139073) - CVE-2019-11139: A CPU microcode only fix for Voltage modulation issues (bsc#1141035) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Basesystem 15-SP1: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2019-2958=1 Package List: - SUSE Linux Enterprise Module for Basesystem 15-SP1 (x86_64): ucode-intel-20191112-3.9.1 References: https://www.suse.com/security/cve/CVE-2019-11135.html https://www.suse.com/security/cve/CVE-2019-11139.html https://bugzilla.suse.com/1139073 https://bugzilla.suse.com/1141035 https://bugzilla.suse.com/1155988 _______________________________________________ sle-security-updates mailing list
Nov 12, 2019
•Important
SuSE
89
security advisoryfedoraupdateFedora 23 Update: vtun High CPU Usage Fix and Security Advisory
patch to fix #1319858,#1319859,#1319861. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-0fb6577f07 2016-04-05 10:10:09.990519 -------------------------------------------------------------------------------- Name : vtun Product : Fedora 23 Version : 3.0.3 Release : 15.fc23 URL : Summary : Virtual tunnel over TCP/IP networks Description : VTun provides a method for creating Virtual Tunnels over TCP/IP networks and allows one to shape, compress, and encrypt traffic in those tunnels. Supported types of tunnels are: PPP, IP, Ethernet and most other serial protocols and programs. VTun is easily and highly configurable: it can be used for various network tasks like VPN, Mobile IP, Shaped Internet access, IP address saving, etc. It is completely a user space implementation and does not require modification to any kernel parts. -------------------------------------------------------------------------------- Update Information: patch to fix #1319858,#1319859,#1319861 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1319858 - vtun: high CPU usage after SIGHUP https://bugzilla.redhat.com/show_bug.cgi?id=1319858 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update vtun' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Apr 05, 2016
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!