Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 4 articles for you...
172
security advisorydenial of servicesystem updateUbuntu 18.04 LTS USN-7003-2 Critical: Kernel Security Threats
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7003-2 September 12, 2024 linux-aws-5.4, linux-azure-5.4, linux-gcp-5.4, linux-hwe-5.4, linux-ibm-5.4, linux-oracle-5.4, linux-raspi-5.4 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-aws-5.4: Linux kernel for Amazon Web Services (AWS) systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems - linux-gcp-5.4: Linux kernel for Google Cloud Platform (GCP) systems - linux-hwe-5.4: Linux hardware enablement (HWE) kernel - linux-ibm-5.4: Linux kernel for IBM cloud systems - linux-oracle-5.4: Linux kernel for Oracle Cloud systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Details: It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-40902) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - MIPS architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Serial ATA and Parallel ATA drivers; - Drivers core; - GPIO subsystem; - GPU drivers; - Greybus drivers; - HID subsystem; - I2C subsystem; - IIO subsystem; - InfiniBand drivers; - Media drivers; - VMware VMCI Driver; - Network drivers; - Pin controllers subsystem; - S/390 drivers; - SCSI drivers; - USB subsystem; - JFFS2 file system; - JFS file system; - File systems infrastructure; - NILFS2 file system; - IOMMU subsystem; - Sun RPC protocol; - Netfilter; - Memory management; -B.A.T.M.A.N. meshing protocol; - CAN network layer; - Ceph Core library; - Networking core; - IPv4 networking; - IPv6 networking; - IUCV driver; - MAC80211 subsystem; - NET/ROM layer; - Network traffic control; - SoC Audio for Freescale CPUs drivers; (CVE-2024-40941, CVE-2024-42086, CVE-2024-41097, CVE-2024-40958, CVE-2024-41089, CVE-2024-40942, CVE-2024-40968, CVE-2024-40934, CVE-2024-40902, CVE-2024-42124, CVE-2023-52887, CVE-2024-42115, CVE-2024-41041, CVE-2024-39501, CVE-2024-40932, CVE-2024-42102, CVE-2024-40960, CVE-2024-39487, CVE-2024-39503, CVE-2024-40945, CVE-2024-40959, CVE-2024-40987, CVE-2024-40995, CVE-2024-40988, CVE-2024-42084, CVE-2024-40943, CVE-2024-42070, CVE-2024-40904, CVE-2024-41049, CVE-2024-41046, CVE-2024-39502, CVE-2024-42097, CVE-2024-42090, CVE-2024-42236, CVE-2024-42223, CVE-2024-42094, CVE-2024-41007, CVE-2024-42105, CVE-2024-41035, CVE-2024-41087, CVE-2024-42157, CVE-2024-39495, CVE-2024-36894, CVE-2024-40916, CVE-2024-39469, CVE-2024-40974, CVE-2024-42153, CVE-2024-36974, CVE-2024-42096, CVE-2024-42232, CVE-2024-40980, CVE-2024-41034, CVE-2024-42087, CVE-2024-42093, CVE-2024-41095, CVE-2024-42145, CVE-2024-42148, CVE-2023-52803, CVE-2024-39499, CVE-2024-42104, CVE-2024-42224, CVE-2024-37078, CVE-2024-42092, CVE-2024-39505, CVE-2024-38619, CVE-2024-42106, CVE-2024-40978, CVE-2024-41044, CVE-2024-42089, CVE-2024-40981, CVE-2024-42154, CVE-2024-36978, CVE-2024-42076, CVE-2024-40984, CVE-2024-42127, CVE-2024-42119, CVE-2024-40961, CVE-2024-39509, CVE-2024-42101, CVE-2024-40901, CVE-2024-40963, CVE-2024-40905, CVE-2024-39506, CVE-2024-40912, CVE-2024-41006) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS linux-image-5.4.0-1079-ibm 5.4.0-1079.84~18.04.1 Available with Ubuntu Pro linux-image-5.4.0-1115-raspi 5.4.0-1115.127~18.04.1 Available with Ubuntu Pro linux-image-5.4.0-1131-oracle 5.4.0-1131.140~18.04.1 Available with Ubuntu Pro linux-image-5.4.0-1132-aws 5.4.0-1132.142~18.04.1 Available with Ubuntu Pro linux-image-5.4.0-1136-gcp 5.4.0-1136.145~18.04.1 Available with Ubuntu Pro linux-image-5.4.0-1137-azure 5.4.0-1137.144~18.04.1 Available with Ubuntu Pro linux-image-5.4.0-195-generic 5.4.0-195.215~18.04.1 Available with Ubuntu Pro linux-image-5.4.0-195-lowlatency 5.4.0-195.215~18.04.1 Available with Ubuntu Pro linux-image-aws 5.4.0.1132.142~18.04.1 Available with Ubuntu Pro linux-image-azure 5.4.0.1137.144~18.04.1 Available with Ubuntu Pro linux-image-gcp 5.4.0.1136.145~18.04.1 Available with Ubuntu Pro linux-image-generic-hwe-18.04 5.4.0.195.215~18.04.1 Available with Ubuntu Pro linux-image-ibm 5.4.0.1079.84~18.04.1 Available with Ubuntu Pro linux-image-lowlatency-hwe-18.04 5.4.0.195.215~18.04.1 Available with Ubuntu Pro linux-image-oem 5.4.0.195.215~18.04.1 Available with Ubuntu Pro linux-image-oem-osp1 5.4.0.195.215~18.04.1 Available with Ubuntu Pro linux-image-oracle 5.4.0.1131.140~18.04.1 Available with Ubuntu Pro linux-image-raspi-hwe-18.04 5.4.0.1115.127~18.04.1 Available with Ubuntu Pro linux-image-snapdragon-hwe-18.04 5.4.0.195.215~18.04.1 Available with Ubuntu Pro linux-image-virtual-hwe-18.04 5.4.0.195.215~18.04.1 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7003-2 https://ubuntu.com/security/notices/USN-7003-1 CVE-2023-52803, CVE-2023-52887, CVE-2024-36894, CVE-2024-36974, CVE-2024-36978, CVE-2024-37078, CVE-2024-38619, CVE-2024-39469, CVE-2024-39487, CVE-2024-39495, CVE-2024-39499, CVE-2024-39501, CVE-2024-39502, CVE-2024-39503, CVE-2024-39505, CVE-2024-39506, CVE-2024-39509, CVE-2024-40901, CVE-2024-40902, CVE-2024-40904, CVE-2024-40905, CVE-2024-40912, CVE-2024-40916, CVE-2024-40932, CVE-2024-40934, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943, CVE-2024-40945, CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40961, CVE-2024-40963, CVE-2024-40968, CVE-2024-40974, CVE-2024-40978, CVE-2024-40980, CVE-2024-40981, CVE-2024-40984, CVE-2024-40987, CVE-2024-40988, CVE-2024-40995, CVE-2024-41006, CVE-2024-41007, CVE-2024-41034, CVE-2024-41035, CVE-2024-41041, CVE-2024-41044, CVE-2024-41046, CVE-2024-41049, CVE-2024-41087, CVE-2024-41089, CVE-2024-41095, CVE-2024-41097, CVE-2024-42070, CVE-2024-42076, CVE-2024-42084, CVE-2024-42086, CVE-2024-42087, CVE-2024-42089, CVE-2024-42090, CVE-2024-42092, CVE-2024-42093, CVE-2024-42094, CVE-2024-42096, CVE-2024-42097, CVE-2024-42101, CVE-2024-42102, CVE-2024-42104, CVE-2024-42105, CVE-2024-42106, CVE-2024-42115, CVE-2024-42119, CVE-2024-42124, CVE-2024-42127, CVE-2024-42145, CVE-2024-42148, CVE-2024-42153, CVE-2024-42154, CVE-2024-42157, CVE-2024-42223, CVE-2024-42224, CVE-2024-42232, CVE-2024-42236 . Numerous vulnerabilities in the Ubuntu kernel necessitate prompt upgrades to bolster system security and reliability.. Ubuntu Kernel Updates, System Protection, Linux Patch Management. . Severity: Critical. LinuxSecurity.com Team
Sep 12, 2024
•Critical
Ubuntu
217
security advisorysoftware fixesimportant updatesOracle Linux 7 ELSA-2024-12408 Important: EDK2 Security Fixes Released
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-12408 http://linux.oracle.com/errata/ELSA-2024-12408.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: aarch64: AAVMF-1.7.0-5.el7.noarch.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates//edk2-1.7.0-5.el7.src.rpm Related CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 Description of changes: * Tue Feb 27 2024 Aaron Young - Create new 1.7.0 release for OL7 which includes the following fixed CVEs: {CVE-2023-45229} {CVE-2023-45230} {CVE-2023-45231} {CVE-2023-45232} {CVE-2023-45233} {CVE-2023-45234} {CVE-2023-45235} {CVE-2022-36763} {CVE-2022-36764} {CVE-2022-36765} - Update to OpenSSL 3.0.10 which includes the following fixed CVEs: {CVE-2023-2975} {CVE-2023-1255} {CVE-2023-0401} {CVE-2023-0217} {CVE-2023-0216} {CVE-2023-0215} {CVE-2022-4203} {CVE-2022-3996} {CVE-2022-3602} {CVE-2022-3786} {CVE-2022-3358} {CVE-2022-2274} {CVE-2022-1473} {CVE-2022-1434} {CVE-2022-1343} {CVE-2021-4044} {CVE-2021-23839} * Tue Aug 22 2023 Aaron Young - Create new 1.6.6.cvm release for OL7 * Mon Aug 21 2023 Aaron Young - Create new 1.6.6 release for OL7 which includes the following fixed CVEs: {CVE-2019-14560} - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: {CVE-2023-3817} {CVE-2023-3446} {CVE-2023-2650} {CVE-2023-0465} {CVE-2023-0466} {CVE-2023-0464} {CVE-2023-0286} {CVE-2023-0215} {CVE-2022-4450} {CVE-2022-4304} {CVE-2022-2097} {CVE-2022-2068} {CVE-2022-1292} {CVE-2022-0778} {CVE-2021-4160} {CVE-2021-3712} {CVE-2021-3711} {CVE-2021-3450} {CVE-2021-3449} {CVE-2021-23841} {CVE-2021-23840} {CVE-2020-1971} {CVE-2020-1967} {CVE-2019-1551} {CVE-2019-1563} {CVE-2019-1549} {CVE-2019-1547} {CVE-2019-1552} {CVE-2019-1543} {CVE-2018-0734} {CVE-2018-0735} * Tue Jun 13 2023 Aaron Young - Createnew 1.6.5.cvm release for OL7 * Mon Feb 27 2023 Aaron Young - Create new 1.6.4.cvm release for OL7 which includes the following fixed CVEs: {CVE-2021-38578} * Tue Jun 28 2022 Aaron Young - Create new 1.6.3 release for OL7 * Wed Jun 01 2022 Aaron Young - Create new 1.6.2 release for OL7 * Wed May 11 2022 Aaron Young - Create new 1.6.1 release for OL7 * Wed Apr 06 2022 Aaron Young - Create new 1.6.0 release for OL7 which includes the following fixed CVEs: {CVE-2022-0778} * Tue Nov 23 2021 Aaron Young - Create new 1.5.1 release for OL7 * Wed Jun 16 2021 Aaron Young - Create new 1.5.0 release for OL7 which includes the following fixed CVEs: {CVE-2021-23840} {CVE-2021-23841} {CVE-2021-38575} * Thu Feb 18 2021 Aaron Young - Create new 1.4.3 release for OL7 * Wed Jan 20 2021 Aaron Young - Create new 1.4.2 release for OL7 * Thu Dec 03 2020 Aaron Young - Create new 1.4.1 release for OL7 * Wed Nov 18 2020 Aaron Young - Create new 1.4.0 release for OL7 which includes the following fixed CVEs: {CVE-2019-14584} {CVE-2019-14562} {CVE-2019-11098} {CVE-2019-14559} {CVE-2019-14575} {CVE-2019-14559} {CVE-2019-14587} {CVE-2019-14558} {CVE-2019-14586} {CVE-2019-14563} * Sat Oct 10 2020 Aaron Young - Create new 1.3.4 release for OL7 * Wed Oct 07 2020 Aaron Young - Create new 1.3.3 release for OL7 * Fri Jul 31 2020 Aaron Young - Create new 1.3.2 release for OL7 * Fri May 01 2020 Aaron Young - Create new 1.3.1 release for OL7 * Wed Feb 05 2020 Aaron Young - Create new 1.3 release for OL7 which includes the following fixed CVEs: {CVE-2018-12182} {CVE-2019-13224} {CVE-2019-13225} {CVE-2019-14553} * Fri May 17 2019 Aaron Young - Create new 1.2 release for OL7 which includes the following fixed CVEs: {CVE-2017-5715} {CVE-2017-5731} {CVE-2017-5732} {CVE-2017-5733} {CVE-2017-5734} {CVE-2017-5735} {CVE-2017-5753} {CVE-2018-12178} {CVE-2018-12180} {CVE-2018-12181} {CVE-2018-3630} _______________________________________________ El-errata mailinglist
Jun 05, 2024
•Important
Oracle
217
security advisorysecurity fixcritical threatOracle Linux 7 ELSA-2024-1785 Critical: X.Org Server Security Fixes
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-1785 https://linux.oracle.com/errata/ELSA-2024-1785.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: xorg-x11-server-Xdmx-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-Xephyr-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-Xnest-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-Xorg-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-Xvfb-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-Xwayland-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-common-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-devel-1.20.4-29.el7_9.i686.rpm xorg-x11-server-devel-1.20.4-29.el7_9.x86_64.rpm xorg-x11-server-source-1.20.4-29.el7_9.noarch.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates//xorg-x11-server-1.20.4-29.el7_9.src.rpm Related CVEs: CVE-2024-31080 CVE-2024-31081 CVE-2024-31083 Description of changes: [1.20.4-29] - Fix regression caused by the fix for CVE-2024-31083 [1.20.4-28] - CVE fix for: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082 and CVE-2024-31083 Resolves: Resolves: Resolves: - Add util-linux as a dependency of Xvfb - Fix compilation error on i686 _______________________________________________ El-errata mailing list
Apr 12, 2024
•Critical
Oracle
219
security advisorykernel updateprivilege escalationRocky Linux SIG Cloud 9 RXSA-2024:1248 Important Kernel Security Fix
Important: kernel security update. {"type": "TYPE_SECURITY", "shortCode": "RX", "name": "RXSA-2024:1248", "synopsis": "Important: kernel security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for kernel.\nThis update affects Rocky Linux SIG Cloud 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The kernel packages contain the Linux kernel, the core of any Linux operating system.\n\nSecurity Fix(es):\n\n* kernel: inactive elements in nft_pipapo_walk (CVE-2023-6817)\n\n* kernel: netfilter: use-after-free in nft_trans_gc_catchall_sync leads to privilege escalation (CVE-2024-0193)\n\n* kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination (CVE-2024-0646)\n\n* kernel: Use-after-free in nft_verdict_dump due to a race between set GC and transaction (CVE-2023-4244)\n\n* kernel: A heap out-of-bounds write when function perf_read_group is called and sibling_list is smaller than its child's sibling_list (CVE-2023-5717)\n\n* kernel: NULL pointer dereference in nvmet_tcp_build_iovec (CVE-2023-6356)\n\n* kernel: NULL pointer dereference in nvmet_tcp_execute_request (CVE-2023-6535)\n\n* kernel: NULL pointer dereference in __nvmet_req_complete (CVE-2023-6536)\n\n* kernel: Out-Of-Bounds Read vulnerability in smbCalcSize (CVE-2023-6606)\n\n* kernel: OOB Access in smb2_dump_detail (CVE-2023-6610)\n\n* kernel: use-after-free in amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c (CVE-2023-51042)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux SIG Cloud 9"], "fixes": [{"ticket": "2235306", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2235306", "description": ""}, {"ticket":"2246945", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2246945", "description": ""}, {"ticket": "2253611", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2253611", "description": ""}, {"ticket": "2253614", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2253614", "description": ""}, {"ticket": "2253908", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2253908", "description": ""}, {"ticket": "2254052", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2254052", "description": ""}, {"ticket": "2254053", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2254053", "description": ""}, {"ticket": "2254054", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2254054", "description": ""}, {"ticket": "2255139", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2255139", "description": ""}, {"ticket": "2255653", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2255653", "description": ""}, {"ticket": "2259866", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2259866", "description": ""}], "cves": [{"name": "CVE-2023-4244", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-4244", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-51042", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-51042", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-5717", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-5717", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-6356", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-6356","cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-6535", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-6535", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-6536", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-6536", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-6606", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-6606", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-6610", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-6610", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2023-6817", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2023-6817", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2024-0193", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-0193", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}, {"name": "CVE-2024-0646", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-0646", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2024-03-27T04:37:19.422545Z", "rpms": {"Rocky Linux SIG Cloud 9": {"nvras": ["bpftool-0:7.2.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "bpftool-0:7.2.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "bpftool-debuginfo-0:7.2.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "bpftool-debuginfo-0:7.2.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-0:5.14.0-362.24.1.el9_3.cloud.0.6.src.rpm", "kernel-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-abi-stablelists-0:5.14.0-362.24.1.el9_3.cloud.0.6.noarch.rpm","kernel-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-cross-headers-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-cross-headers-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-devel-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-devel-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-devel-matched-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-devel-matched-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-modules-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-modules-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-modules-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-modules-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-debug-modules-extra-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-debug-modules-extra-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-devel-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-devel-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-devel-matched-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-devel-matched-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-doc-0:5.14.0-362.24.1.el9_3.cloud.0.6.noarch.rpm", "kernel-headers-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-headers-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-modules-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm","kernel-modules-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-modules-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-modules-core-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-modules-extra-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-modules-extra-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-tools-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-tools-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-tools-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-tools-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-tools-libs-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-tools-libs-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "kernel-tools-libs-devel-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "kernel-tools-libs-devel-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "perf-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "perf-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "perf-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "perf-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "python3-perf-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "python3-perf-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "python3-perf-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "python3-perf-debuginfo-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm", "rtla-0:5.14.0-362.24.1.el9_3.cloud.0.6.aarch64.rpm", "rtla-0:5.14.0-362.24.1.el9_3.cloud.0.6.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Essential kernel enhancement is crucial for Rocky Linux SIG Cloud 9. This update safeguards systems against various known vulnerabilities.. Rocky Linux Kernel Update,Kernal Security Patch,Cloud 9 Advisory,Important CVEs,Kernel Memory Issues. . Severity: Important. LinuxSecurity.com Team
Mar 27, 2024
•Important
Rocky Linux
172
security advisorydenial of servicecritical issueUbuntu 23.10 USN-6696-1 critical: OpenJDK 8 security fix overview
Several security issues were fixed in OpenJDK 8.. ========================================================================== Ubuntu Security Notice USN-6696-1 March 18, 2024 openjdk-8 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS (Available with Ubuntu Pro) Summary: Several security issues were fixed in OpenJDK 8. Software Description: - openjdk-8: Open Source Java implementation Details: Yi Yang discovered that the Hotspot component of OpenJDK 8 incorrectly handled array accesses in the C1 compiler. An attacker could possibly use this issue to cause a denial of service, execute arbitrary code or bypass Java sandbox restrictions. (CVE-2024-20918) It was discovered that the Hotspot component of OpenJDK 8 did not properly verify bytecode in certain situations. An attacker could possibly use this issue to bypass Java sandbox restrictions. (CVE-2024-20919) It was discovered that the Hotspot component of OpenJDK 8 had an optimization flaw when generating range check loop predicates. An attacker could possibly use this issue to cause a denial of service, execute arbitrary code or bypass Java sandbox restrictions. (CVE-2024-20921) Valentin Eudeline discovered that OpenJDK 8 incorrectly handled certain options in the Nashorn JavaScript subcomponent. An attacker could possibly use this issue to execute arbitrary code. (CVE-2024-20926) It was discovered that OpenJDK 8 could produce debug logs that contained private keys used for digital signatures. An attacker could possibly use this issue to obtain sensitive information. (CVE-2024-20945) Hubert Kario discovered that the TLS implementation in OpenJDK 8 had a timing side-channel and incorrectly handled RSA padding. A remote attacker could possibly use this issue to recover sensitive information. (CVE-2024-20952) Updateinstructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.10: openjdk-8-jdk 8u402-ga-2ubuntu1~23.10.1 openjdk-8-jdk-headless 8u402-ga-2ubuntu1~23.10.1 openjdk-8-jre 8u402-ga-2ubuntu1~23.10.1 openjdk-8-jre-headless 8u402-ga-2ubuntu1~23.10.1 openjdk-8-jre-zero 8u402-ga-2ubuntu1~23.10.1 Ubuntu 22.04 LTS: openjdk-8-jdk 8u402-ga-2ubuntu1~22.04 openjdk-8-jdk-headless 8u402-ga-2ubuntu1~22.04 openjdk-8-jre 8u402-ga-2ubuntu1~22.04 openjdk-8-jre-headless 8u402-ga-2ubuntu1~22.04 openjdk-8-jre-zero 8u402-ga-2ubuntu1~22.04 Ubuntu 20.04 LTS: openjdk-8-jdk 8u402-ga-2ubuntu1~20.04 openjdk-8-jdk-headless 8u402-ga-2ubuntu1~20.04 openjdk-8-jre 8u402-ga-2ubuntu1~20.04 openjdk-8-jre-headless 8u402-ga-2ubuntu1~20.04 openjdk-8-jre-zero 8u402-ga-2ubuntu1~20.04 Ubuntu 18.04 LTS (Available with Ubuntu Pro): openjdk-8-jdk 8u402-ga-2ubuntu1~18.04 openjdk-8-jdk-headless 8u402-ga-2ubuntu1~18.04 openjdk-8-jre 8u402-ga-2ubuntu1~18.04 openjdk-8-jre-headless 8u402-ga-2ubuntu1~18.04 openjdk-8-jre-zero 8u402-ga-2ubuntu1~18.04 This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart any Java applications to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6696-1 CVE-2024-20918, CVE-2024-20919, CVE-2024-20921, CVE-2024-20926, CVE-2024-20945, CVE-2024-20952 Package Information: https://launchpad.net/ubuntu/+source/openjdk-8/8u402-ga-2ubuntu1~22.04 https://launchpad.net/ubuntu/+source/openjdk-8/8u402-ga-2ubuntu1~20.04 . Numerous vulnerabilities have been discovered in OpenJDK 8 on Ubuntu.Understand the essential patches and possible repercussions for your setup.. OpenJDK Security, Ubuntu Update, Java Security, System Vulnerabilities. . Severity: Critical. LinuxSecurity.com Team
Mar 18, 2024
•Critical
Ubuntu
217
security advisorysecurity updateserver patchOracle Linux 7 ELSA-2024-0320 Critical: Xorg Server Security Fix
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-0320 https://linux.oracle.com/errata/ELSA-2024-0320.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: aarch64: xorg-x11-server-common-1.20.4-27.el7_9.aarch64.rpm xorg-x11-server-Xephyr-1.20.4-27.el7_9.aarch64.rpm xorg-x11-server-Xorg-1.20.4-27.el7_9.aarch64.rpm xorg-x11-server-devel-1.20.4-27.el7_9.aarch64.rpm xorg-x11-server-source-1.20.4-27.el7_9.noarch.rpm xorg-x11-server-Xdmx-1.20.4-27.el7_9.aarch64.rpm xorg-x11-server-Xnest-1.20.4-27.el7_9.aarch64.rpm xorg-x11-server-Xvfb-1.20.4-27.el7_9.aarch64.rpm xorg-x11-server-Xwayland-1.20.4-27.el7_9.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates//xorg-x11-server-1.20.4-27.el7_9.src.rpm Related CVEs: CVE-2023-6816 CVE-2024-0229 CVE-2024-0408 CVE-2024-0409 CVE-2024-21885 CVE-2024-21886 Description of changes: [1.20.4-27] - Fix use after free related to CVE-2024-21886 [1.20.4-26] - CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0408 and CVE-2024-0409 Resolves: https://issues.redhat.com/plugins/servlet/samlsso Resolves: https://issues.redhat.com/plugins/servlet/samlsso Resolves: https://issues.redhat.com/plugins/servlet/samlsso Resolves: https://issues.redhat.com/plugins/servlet/samlsso Resolves: https://issues.redhat.com/plugins/servlet/samlsso Resolves: https://issues.redhat.com/plugins/servlet/samlsso _______________________________________________ El-errata mailing list
Jan 23, 2024
•Critical
Oracle
89
security advisorysoftware updateFedoraFedora 39: FEDORA-2023-8g1k2f25xs urgent: xwayland security patches applied
xwayland 23.2.3, fixes CVE-2023-6377, CVE-2023-6478. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-93940b58fd 2023-12-19 01:11:13.012605 -------------------------------------------------------------------------------- Name : xorg-x11-server-Xwayland Product : Fedora 39 Version : 23.2.3 Release : 1.fc39 URL : https://www.x.org/wiki/ Summary : Xwayland Description : Xwayland is an X server for running X clients under Wayland. -------------------------------------------------------------------------------- Update Information: xwayland 23.2.3, fixes CVE-2023-6377, CVE-2023-6478 -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 13 2023 Peter Hutterer - 23.2.3-1 - xwayland 23.2.3 CVE fix for: CVE-2023-6377, CVE-2023-6478 * Fri Nov 24 2023 Olivier Fourdan - 23.2.2-2 - Drop dependency on xorg-x11-server-common -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-93940b58fd' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Dec 19, 2023
•Critical
Fedora
217
security advisorysecurity issuesFirefox updateOracle Linux 9 ELSA-2022-4873 Critical Firefox Update and Threats
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-4873 https://linux.oracle.com/errata/ELSA-2022-4873.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: firefox-91.10.0-1.0.1.el9_0.x86_64.rpm aarch64: firefox-91.10.0-1.0.1.el9_0.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol9/SRPMS-updates/firefox-91.10.0-1.0.1.el9_0.src.rpm Related CVEs: CVE-2022-31736 CVE-2022-31737 CVE-2022-31738 CVE-2022-31740 CVE-2022-31741 CVE-2022-31742 CVE-2022-31747 Description of changes: [91.10.0-1.0.1] - Replaced upstream package with oracle-indexhtml [Orabug: 33802044] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Removed Upstream references [91.10.0-1] - Update to 91.10.0 build1 _______________________________________________ El-errata mailing list
Jul 01, 2022
•Critical
Oracle
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!