Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
202
security advisorykernel patchsystem stabilityopenSUSE 15 SP4 Security Advisory: Kernel Live Patch 23 Critical Fix
An update that solves 31 vulnerabilities and has one security fix can now be installed.. # Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:4234-1 Release Date: 2024-12-06T10:34:29Z Rating: important References: * bsc#1219296 * bsc#1220145 * bsc#1220211 * bsc#1220828 * bsc#1220832 * bsc#1221302 * bsc#1222685 * bsc#1222882 * bsc#1223059 * bsc#1223363 * bsc#1223514 * bsc#1223521 * bsc#1223681 * bsc#1223683 * bsc#1225011 * bsc#1225012 * bsc#1225013 * bsc#1225099 * bsc#1225309 * bsc#1225310 * bsc#1225311 * bsc#1225312 * bsc#1225313 * bsc#1225733 * bsc#1225739 * bsc#1225819 * bsc#1226325 * bsc#1227471 * bsc#1228573 * bsc#1228786 * bsc#1229553 * bsc#1231353 Cross-References: * CVE-2021-47598 * CVE-2022-48651 * CVE-2022-48662 * CVE-2023-52340 * CVE-2023-52502 * CVE-2023-52752 * CVE-2023-52846 * CVE-2023-6546 * CVE-2024-23307 * CVE-2024-26585 * CVE-2024-26610 * CVE-2024-26622 * CVE-2024-26766 * CVE-2024-26828 * CVE-2024-26852 * CVE-2024-26923 * CVE-2024-26930 * CVE-2024-27398 * CVE-2024-35817 * CVE-2024-35861 * CVE-2024-35862 * CVE-2024-35863 * CVE-2024-35864 * CVE-2024-35867 * CVE-2024-35950 * CVE-2024-36899 * CVE-2024-36904 * CVE-2024-36964 * CVE-2024-40954 * CVE-2024-41059 * CVE-2024-43861 CVSS scores: * CVE-2021-47598 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47598 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48662 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2022-48662 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52340 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-52502 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H *CVE-2023-52502 ( NVD ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2023-52752 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52752 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52846 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6546 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-23307 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26585 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-26610 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-26622 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26766 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26828 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26828 ( NVD ): 6.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H * CVE-2024-26852 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26852 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26923 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-26930 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-27398 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35817 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35861 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35862 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35863 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H *CVE-2024-35864 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35867 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-35950 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36899 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36904 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-36964 ( SUSE ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40954 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-40954 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41059 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-41059 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-41059 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-43861 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-43861 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves 31 vulnerabilities and has one security fix can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_108 fixes several issues. The following security issues were fixed: * CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225733). * CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229553). * CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1227471). * CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1225011). * CVE-2023-52752: smb: client: fix use-after-free bugin cifs_debug_data_proc_show() (bsc#1225819). * CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1225311). * CVE-2024-35867: Fixed potential UAF in cifs_stats_proc_show() (bsc#1225012). * CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1225309). * Fixed intermittent nfs mount failures (may be due to SUNRPC over UDP) (bsc#1231353) * CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1225312). * CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1231353). * CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225739). * CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808) * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228573). * CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1226325). * CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225099). * CVE-2022-48662: Fixed a general protection fault (GPF) in i915_perf_open_ioctl (bsc#1223521). * CVE-2024-35817: Set gtt bound flag in amdgpu_ttm_gart_bind (bsc#1225313). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev-> mode_config.mutex (bsc#1225310). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha-> vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145). * CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059). * CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302). * CVE-2022-48651: Fixed an out-of-bound bugin ipvlan caused by unset skb-> mac_header (bsc#1223514). * CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882). * CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832). * CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220211). * CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685). * CVE-2024-26622: Fixed UAF write bug in tomoyo_write_control() (bsc#1220828). * CVE-2023-52340: Fixed a denial of service related to ICMPv6 'Packet Too Big' packets (bsc#1219296). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-4234=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-4234=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_23-debugsource-11-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-debuginfo-11-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-11-150400.9.8.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_23-debugsource-11-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-debuginfo-11-150400.9.8.1 * kernel-livepatch-5_14_21-150400_24_108-default-11-150400.9.8.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47598.html * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2022-48662.html * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2023-52502.html *https://www.suse.com/security/cve/CVE-2023-52752.html * https://www.suse.com/security/cve/CVE-2023-52846.html * https://www.suse.com/security/cve/CVE-2023-6546.html * https://www.suse.com/security/cve/CVE-2024-23307.html * https://www.suse.com/security/cve/CVE-2024-26585.html * https://www.suse.com/security/cve/CVE-2024-26610.html * https://www.suse.com/security/cve/CVE-2024-26622.html * https://www.suse.com/security/cve/CVE-2024-26766.html * https://www.suse.com/security/cve/CVE-2024-26828.html * https://www.suse.com/security/cve/CVE-2024-26852.html * https://www.suse.com/security/cve/CVE-2024-26923.html * https://www.suse.com/security/cve/CVE-2024-26930.html * https://www.suse.com/security/cve/CVE-2024-27398.html * https://www.suse.com/security/cve/CVE-2024-35817.html * https://www.suse.com/security/cve/CVE-2024-35861.html * https://www.suse.com/security/cve/CVE-2024-35862.html * https://www.suse.com/security/cve/CVE-2024-35863.html * https://www.suse.com/security/cve/CVE-2024-35864.html * https://www.suse.com/security/cve/CVE-2024-35867.html * https://www.suse.com/security/cve/CVE-2024-35950.html * https://www.suse.com/security/cve/CVE-2024-36899.html * https://www.suse.com/security/cve/CVE-2024-36904.html * https://www.suse.com/security/cve/CVE-2024-36964.html * https://www.suse.com/security/cve/CVE-2024-40954.html * https://www.suse.com/security/cve/CVE-2024-41059.html * https://www.suse.com/security/cve/CVE-2024-43861.html * https://bugzilla.suse.com/show_bug.cgi?id=1219296 * https://bugzilla.suse.com/show_bug.cgi?id=1220145 * https://bugzilla.suse.com/show_bug.cgi?id=1220211 * https://bugzilla.suse.com/show_bug.cgi?id=1220828 * https://bugzilla.suse.com/show_bug.cgi?id=1220832 * https://bugzilla.suse.com/show_bug.cgi?id=1221302 * https://bugzilla.suse.com/show_bug.cgi?id=1222685 * https://bugzilla.suse.com/show_bug.cgi?id=1222882 * https://bugzilla.suse.com/show_bug.cgi?id=1223059 * https://bugzilla.suse.com/show_bug.cgi?id=1223363 *https://bugzilla.suse.com/show_bug.cgi?id=1223514 * https://bugzilla.suse.com/show_bug.cgi?id=1223521 * https://bugzilla.suse.com/show_bug.cgi?id=1223681 * https://bugzilla.suse.com/show_bug.cgi?id=1223683 * https://bugzilla.suse.com/show_bug.cgi?id=1225011 * https://bugzilla.suse.com/show_bug.cgi?id=1225012 * https://bugzilla.suse.com/show_bug.cgi?id=1225013 * https://bugzilla.suse.com/show_bug.cgi?id=1225099 * https://bugzilla.suse.com/show_bug.cgi?id=1225309 * https://bugzilla.suse.com/show_bug.cgi?id=1225310 * https://bugzilla.suse.com/show_bug.cgi?id=1225311 * https://bugzilla.suse.com/show_bug.cgi?id=1225312 * https://bugzilla.suse.com/show_bug.cgi?id=1225313 * https://bugzilla.suse.com/show_bug.cgi?id=1225733 * https://bugzilla.suse.com/show_bug.cgi?id=1225739 * https://bugzilla.suse.com/show_bug.cgi?id=1225819 * https://bugzilla.suse.com/show_bug.cgi?id=1226325 * https://bugzilla.suse.com/show_bug.cgi?id=1227471 * https://bugzilla.suse.com/show_bug.cgi?id=1228573 * https://bugzilla.suse.com/show_bug.cgi?id=1228786 * https://bugzilla.suse.com/show_bug.cgi?id=1229553 * https://bugzilla.suse.com/show_bug.cgi?id=1231353 . Investigate essential enhancements and resolutions included in Linux kernel Live Patch 23 for SUSE. Maintain safety and reliability with this urgent notice.. openSUSE Kernel Update, Live Patching, System Security Fixes. . Severity: Important. LinuxSecurity.com Team
Dec 06, 2024
•Important
OpenSUSE
217
security advisorysecurity issueJava updateOracle Linux 9 ELSA-2024-4567 Critical: Java Security Update
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-4567 http://linux.oracle.com/errata/ELSA-2024-4567.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: java-11-openjdk-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-demo-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-devel-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-headless-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-javadoc-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-javadoc-zip-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-jmods-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-src-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-static-libs-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-demo-fastdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-demo-slowdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-devel-fastdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-devel-slowdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-fastdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-headless-fastdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-headless-slowdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-jmods-fastdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-jmods-slowdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-slowdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-src-fastdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-src-slowdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-static-libs-fastdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm java-11-openjdk-static-libs-slowdebug-11.0.24.0.8-2.0.1.el9.x86_64.rpm aarch64: java-11-openjdk-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-demo-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-devel-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-headless-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-javadoc-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-javadoc-zip-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-jmods-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-src-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-static-libs-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-demo-fastdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-demo-slowdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-devel-fastdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-devel-slowdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-fastdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-headless-fastdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-headless-slowdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-jmods-fastdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-jmods-slowdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-slowdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-src-fastdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-src-slowdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-static-libs-fastdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm java-11-openjdk-static-libs-slowdebug-11.0.24.0.8-2.0.1.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//java-11-openjdk-11.0.24.0.8-2.0.1.el9.src.rpm Related CVEs: CVE-2024-21131 CVE-2024-21138 CVE-2024-21140 CVE-2024-21144 CVE-2024-21145 CVE-2024-21147 Description of changes: [11.0.24.0.8-2.0.1] - Add Oracle vendor bug URL [Orabug: 34340155] [1:11.0.24.0.8-1] - Update to jdk-11.0.24+8 (GA) - Update release notes to 11.0.24+8 - Adjusted DTLS & RPATH NEWS entries to match OpenJDK 17 & 21 release notes - Switch to GA mode for release - Fix Provides to reflect up to date component versions - Add zlib build required or bundled version (1.3.1), depending on system_libs setting - Resolves: RHEL-45202 _______________________________________________ El-errata mailing list
Jul 19, 2024
•Critical
Oracle
89
security advisoryintrusion detectionFedoraFedora 38: 2023-7e952959f8 Critical: Suricata Security Release
This is a security release, additionally fixing a number of important bugs.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-7e952959f8 2023-06-30 01:21:28.535163 --------------------------------------------------------------------------------Name : suricata Product : Fedora 38 Version : 6.0.13 Release : 1.fc38 URL : Summary : Intrusion Detection System Description : The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Multi-threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP Matching, and GeoIP identification. --------------------------------------------------------------------------------Update Information: This is a security release, additionally fixing a number of important bugs. --------------------------------------------------------------------------------ChangeLog: * Fri Jun 16 2023 Steve Grubb 6.0.13-1 - New security and bugfix release --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-7e952959f8' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jun 30, 2023
•Critical
Fedora
217
security advisorykernel updatesecurity threatsOracle7: ELSA-2023-12255 Critical Kernel Update Security Fix
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-12255 https://linux.oracle.com/errata/ELSA-2023-12255.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-5.4.17-2136.318.7.1.el7uek.x86_64.rpm kernel-uek-debug-5.4.17-2136.318.7.1.el7uek.x86_64.rpm kernel-uek-debug-devel-5.4.17-2136.318.7.1.el7uek.x86_64.rpm kernel-uek-devel-5.4.17-2136.318.7.1.el7uek.x86_64.rpm kernel-uek-doc-5.4.17-2136.318.7.1.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.318.7.1.el7uek.x86_64.rpm aarch64: kernel-uek-5.4.17-2136.318.7.1.el7uek.aarch64.rpm kernel-uek-debug-5.4.17-2136.318.7.1.el7uek.aarch64.rpm kernel-uek-debug-devel-5.4.17-2136.318.7.1.el7uek.aarch64.rpm kernel-uek-devel-5.4.17-2136.318.7.1.el7uek.aarch64.rpm kernel-uek-doc-5.4.17-2136.318.7.1.el7uek.noarch.rpm kernel-uek-tools-5.4.17-2136.318.7.1.el7uek.aarch64.rpm kernel-uek-tools-libs-5.4.17-2136.318.7.1.el7uek.aarch64.rpm perf-5.4.17-2136.318.7.1.el7uek.aarch64.rpm python-perf-5.4.17-2136.318.7.1.el7uek.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates//kernel-uek-5.4.17-2136.318.7.1.el7uek.src.rpm Related CVEs: CVE-2022-2196 CVE-2022-27672 CVE-2022-3108 CVE-2022-4129 CVE-2023-23559 Description of changes: [5.4.17-2136.318.7.1.el7uek] - KVM: arm64: Disabling disabled PMU counters wastes a lot of time (Alexandre Chartre) [Orabug: 33312587] - KVM: arm64: Don't zero the cycle count register when PMCR_EL0.P is set (Alexandru Elisei) [Orabug: 33312587] - KVM: arm64: pmu: Only handle supported event counters (Eric Auger) [Orabug: 33312587] [5.4.17-2136.318.7.el7uek] - mm, compaction: Skip all pinned pages during scan (Khalid Aziz) [Orabug: 35251798] - xfs: add missing cmap-> br_state = XFS_EXT_NORM update (Gao Xiang) [Orabug: 35214060] - rds/ib: Fix the softlock-up in RDS cache GC worker (Arumugam Kolappan) [Orabug: 35146761] - uek-rpm: Update linux-firmware dependency(Somasundaram Krishnasamy) [Orabug: 33755589] [5.4.17-2136.318.6.el7uek] - net/rds: Flip the default value of "rds_wq_strictly_ordered" (Gerd Rausch) [Orabug: 35197635] [5.4.17-2136.318.5.el7uek] - udf: Fix file corruption when appending just after end of preallocated extent (Jan Kara) [Orabug: 35192763] - selftests/ftrace: Fix bash specific "==" operator (Masami Hiramatsu (Google)) [Orabug: 35192763] - arm64: kdump: Increase reserved memory for larger machines (Henry Willard) [Orabug: 35051468] - KVM: x86/pmu: Update AMD PMC sample period to fix guest NMI-watchdog (Like Xu) [Orabug: 34729426] - KVM: x86/pmu: Introduce pmc-> is_paused to reduce the call time of perf interfaces (Like Xu) [Orabug: 34729426] - perf/x86/uncore: Don't WARN_ON_ONCE() for a broken discovery table (Kan Liang) [Orabug: 35053343] - perf/x86/uncore: Add a quirk for UPI on SPR (Kan Liang) [Orabug: 35053343] - perf/x86/uncore: Ignore broken units in discovery table (Kan Liang) [Orabug: 35053343] - perf/x86/uncore: Fix potential NULL pointer in uncore_get_alias_name (Kan Liang) [Orabug: 35053343] - perf/x86/uncore: Factor out uncore_device_to_die() (Kan Liang) [Orabug: 35053343] - Revert "perf/x86/uncore: Factor out uncore_device_to_die()" (Thomas Tai) [Orabug: 35053343] - Revert "perf/x86/uncore: Fix potential NULL pointer in uncore_get_alias_name" (Thomas Tai) [Orabug: 35053343] - Revert "perf/x86/uncore: Ignore broken units in discovery table" (Thomas Tai) [Orabug: 35053343] - Revert "perf/x86/uncore: Add a quirk for UPI on SPR" (Thomas Tai) [Orabug: 35053343] - Revert "perf/x86/uncore: Don't WARN_ON_ONCE() for a broken discovery table" (Thomas Tai) [Orabug: 35053343] - Documentation/hw-vuln: Add documentation for Cross-Thread Return Predictions (Tom Lendacky) [Orabug: 35166671] {CVE-2022-27672} - KVM: x86: Mitigate the cross-thread return address predictions bug (Tom Lendacky) [Orabug: 35166671] {CVE-2022-27672} - x86/speculation: Identify processors vulnerable to SMT RSB predictions (Tom Lendacky) [Orabug:35166671] {CVE-2022-27672} - uek-rpm: aarch64: embedded: Enable CONFIG_RANDOMIZE_BASE to support ksplice for T93 (Thomas Tai) [Orabug: 35180981] - drm/amdkfd: Check for null pointer after calling kmemdup (Jiasheng Jiang) [Orabug: 34951503] {CVE-2022-3108} - mm: use padata for copying page ranges in vma_dup() (Anthony Yznaga) [Orabug: 35054622] - mm: parallelize unmap_page_range() for some large VMAs (Anthony Yznaga) [Orabug: 35054622] - net/rds: serialize up+down-work to relax strict ordering (Gerd Rausch) [Orabug: 35094723] - rds: ib: Fix non-parenthetical mutex/semaphore use (HÃ¥kon Bugge) [Orabug: 35155114] - Revert "btrfs: free device in btrfs_close_devices for a single device filesystem" (Vijayendra Suman) [Orabug: 35161536] [5.4.17-2136.318.4.el7uek] - ipc: update semtimedop() to use hrtimer (Prakash Sangappa) [Orabug: 35069807] - rds: ib: Destroy fastreg resources correctly (HÃ¥kon Bugge) [Orabug: 35140658] - rds: ib: Use one-bit booleans in struct rds_ib_device and keep them adjacent (HÃ¥kon Bugge) [Orabug: 35140648] - mips64: drivers/watchdog: Add IRQF_NOBALANCING when requesting irq (Thomas Tai) [Orabug: 35159790] - net: mana: Fix IRQ name - add PCI and queue number (Haiyang Zhang) [Orabug: 35084730] - uek-rpm: Add opbmc to nano rpm (Somasundaram Krishnasamy) [Orabug: 35145857] [5.4.17-2136.318.3.el7uek] - vc_screen: don't clobber return value in vcs_read (Thomas WeiÃschuh) - LTS tag: v5.4.233 (Sherry Yang) - bpf: add missing header file include (Linus Torvalds) - Revert "net/sched: taprio: make qdisc_leaf() see the per-netdev-queue pfifo child qdiscs" (Vladimir Oltean) - ext4: Fix function prototype mismatch for ext4_feat_ktype (Kees Cook) - wifi: mwifiex: Add missing compatible string for SD8787 (Lukas Wunner) - uaccess: Add speculation barrier to copy_from_user() (Dave Hansen) - mac80211: mesh: embedd mesh_paths and mpp_paths into ieee80211_if_mesh (Pavel Skripkin) - drm/i915/gvt: fix double free bug in split_2MB_gtt_entry (Zheng Wang) - alarmtimer: Preventstarvation by small intervals and SIG_IGN (Thomas Gleixner) - powerpc: dts: t208x: Disable 10G on MAC1 and MAC2 (Sean Anderson) - can: kvaser_usb: hydra: help gcc-13 to figure out cmd_len (Marc Kleine-Budde) - KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS (Jim Mattson) [Orabug: 34982694] {CVE-2022-2196} - KVM: x86: Fail emulation during EMULTYPE_SKIP on any exception (Sean Christopherson) - random: always mix cycle counter in add_latent_entropy() (Jason A. Donenfeld) - powerpc: dts: t208x: Mark MAC1 and MAC2 as 10G (Sean Anderson) - wifi: rtl8xxxu: gen2: Turn on the rate control (Bitterblue Smith) - drm/etnaviv: don't truncate physical page address (Lucas Stach) - drm: etnaviv: fix common struct sg_table related issues (Marek Szyprowski) - scatterlist: add generic wrappers for iterating over sgtable objects (Marek Szyprowski) - dma-mapping: add generic helpers for mapping sgtable objects (Marek Szyprowski) - LTS tag: v5.4.232 (Sherry Yang) - net: sched: sch: Fix off by one in htb_activate_prios() (Dan Carpenter) - ASoC: SOF: Intel: hda-dai: fix possible stream_tag leak (Pierre-Louis Bossart) - nilfs2: fix underflow in second superblock position calculations (Ryusuke Konishi) - kvm: initialize all of the kvm_debugregs structure before sending it to userspace (Greg Kroah-Hartman) - i40e: Add checking for null for nlmsg_find_attr() (Natalia Petrova) - ipv6: Fix tcp socket connection with DSCP. (Guillaume Nault) - ipv6: Fix datagram socket connection with DSCP. (Guillaume Nault) - ixgbe: add double of VLAN header when computing the max MTU (Jason Xing) - net: mpls: fix stale pointer if allocation fails during device rename (Jakub Kicinski) - net: stmmac: Restrict warning on disabling DMA store and fwd mode (Cristian Ciocaltea) - bnxt_en: Fix mqprio and XDP ring checking logic (Michael Chan) - net: stmmac: fix order of dwmac5 FlexPPS parametrization sequence (Johannes Zink) - net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path (Miko Larsson) - dccp/tcp: Avoidnegative sk_forward_alloc by ipv6_pinfo.pktoptions. (Kuniyuki Iwashima) - sctp: sctp_sock_filter(): avoid list_entry() on possibly empty list (Pietro Borrello) - net: bgmac: fix BCM5358 support by setting correct flags (RafaÅ MiÅecki) - i40e: add double of VLAN header when computing the max MTU (Jason Xing) - ixgbe: allow to increase MTU to 3K with XDP enabled (Jason Xing) - revert "squashfs: harden sanity check in squashfs_read_xattr_id_table" (Andrew Morton) - net: Fix unwanted sign extension in netdev_stats_to_stats64() (Felix Riemann) - Revert "mm: Always release pages to the buddy allocator in memblock_free_late()." (Aaron Thompson) - hugetlb: check for undefined shift on 32 bit architectures (Mike Kravetz) - sched/psi: Fix use-after-free in ep_remove_wait_queue() (Munehisa Kamata) - ALSA: hda/realtek - fixed wrong gpio assigned (Kailang Yang) - ALSA: hda/conexant: add a new hda codec SN6180 (Bo Liu) - mmc: mmc_spi: fix error handling in mmc_spi_probe() (Yang Yingliang) - mmc: sdio: fix possible resource leaks in some error paths (Yang Yingliang) - ipv4: Fix incorrect route flushing when source address is deleted (Ido Schimmel) - Revert "ipv4: Fix incorrect route flushing when source address is deleted" (Shaoying Xu) - xfs: sync lazy sb accounting on quiesce of read-only mounts (Brian Foster) - xfs: fix the forward progress assertion in xfs_iwalk_run_callbacks (Darrick J. Wong) - xfs: ensure inobt record walks always make forward progress (Darrick J. Wong) - xfs: fix missing CoW blocks writeback conversion retry (Darrick J. Wong) - xfs: fix finobt btree block recovery ordering (Dave Chinner) - xfs: remove the xfs_inode_log_item_t typedef (Christoph Hellwig) - xfs: remove the xfs_efd_log_item_t typedef (Christoph Hellwig) - xfs: remove the xfs_efi_log_item_t typedef (Christoph Hellwig) - netfilter: nft_tproxy: restrict to prerouting hook (Florian Westphal) - btrfs: free device in btrfs_close_devices for a single device filesystem (Anand Jain) - aio: fix mremap after forknull-deref (Seth Jenkins) - nvme-fc: fix a missing queue put in nvmet_fc_ls_create_association (Amit Engel) - s390/decompressor: specify __decompress() buf len to avoid overflow (Vasily Gorbik) - net: sched: sch: Bounds check priority (Kees Cook) - net: stmmac: do not stop RX_CLK in Rx LPI state for qcs404 SoC (Andrey Konovalov) - net/rose: Fix to not accept on connected socket (Hyunwoo Kim) - tools/virtio: fix the vringh test for virtio ring changes (Shunsuke Mie) - ASoC: cs42l56: fix DT probe (Arnd Bergmann) - selftests/bpf: Verify copy_register_state() preserves parent/live fields (Eduard Zingerman) - migrate: hugetlb: check for hugetlb shared PMD in node migration (Mike Kravetz) - bpf: Always return target ifindex in bpf_fib_lookup (Toke Høiland-Jørgensen) - nvme-pci: Move enumeration by class to be last in the table (Andy Shevchenko) - arm64: dts: meson-axg: Make mmc host controller interrupts level-sensitive (Heiner Kallweit) - arm64: dts: meson-g12-common: Make mmc host controller interrupts level-sensitive (Heiner Kallweit) - arm64: dts: meson-gx: Make mmc host controller interrupts level-sensitive (Heiner Kallweit) - riscv: Fixup race condition on PG_dcache_clean in flush_icache_pte (Guo Ren) - ceph: flush cap releases when the session is flushed (Xiubo Li) - usb: typec: altmodes/displayport: Fix probe pin assign check (Prashant Malani) - usb: core: add quirk for Alcor Link AK9563 smartcard reader (Mark Pearson) - net: USB: Fix wrong-direction WARNING in plusb.c (Alan Stern) - pinctrl: intel: Restore the pins that used to be in Direct IRQ mode (Andy Shevchenko) - pinctrl: single: fix potential NULL dereference (Maxim Korotkov) - pinctrl: aspeed: Fix confusing types in return value (Joel Stanley) - ALSA: pci: lx6464es: fix a debug loop (Dan Carpenter) - selftests: forwarding: lib: quote the sysctl values (Hangbin Liu) - ice: Do not use WQ_MEM_RECLAIM flag for workqueue (Anirudh Venkataramanan) - net: phy: meson-gxl: use MMD access dummy stubs for GXL, internal PHY (HeinerKallweit) - bonding: fix error checking in bond_debug_reregister() (Qi Zheng) - xfrm: fix bug with DSCP copy to v6 from v4 tunnel (Christian Hopps) - IB/IPoIB: Fix legacy IPoIB due to wrong number of queues (Dragos Tatulea) - IB/hfi1: Restore allocated resources on failed copyout (Dean Luick) - can: j1939: do not wait 250 ms if the same addr was already claimed (Devid Antonio Filoni) - tracing: Fix poll() and select() do not work on per_cpu trace_pipe and trace_pipe_raw (Shiju Jose) - ALSA: emux: Avoid potential array out-of-bound in snd_emux_xg_control() (Artemii Karasev) - btrfs: zlib: zero-initialize zlib workspace (Alexander Potapenko) - btrfs: limit device extents to the device size (Josef Bacik) - iio:adc:twl6030: Enable measurement of VAC (Andreas Kemnade) - wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads (Minsuk Kang) - f2fs: fix to do sanity check on i_extra_isize in is_alive() (Chao Yu) - fbdev: smscufx: fix error handling code in ufx_usb_probe (Dongliang Mu) - powerpc/imc-pmu: Revert nest_init_lock to being a mutex (Michael Ellerman) - serial: 8250_dma: Fix DMA Rx rearm race (Ilpo Järvinen) - serial: 8250_dma: Fix DMA Rx completion race (Ilpo Järvinen) - xprtrdma: Fix regbuf data not freed in rpcrdma_req_create() (Zhang Xiaoxu) - mm: swap: properly update readahead statistics in unuse_pte_range() (Andrea Righi) - nvmem: core: fix cell removal on error (Michael Walle) - Squashfs: fix handling and sanity checking of xattr_ids count (Phillip Lougher) - mm/swapfile: add cond_resched() in get_swap_pages() (Longlong Xia) - fpga: stratix10-soc: Fix return value check in s10_ops_write_init() (Zheng Yongjun) - mm: hugetlb: proc: check for hugetlb shared PMD in /proc/PID/smaps (Mike Kravetz) - riscv: disable generation of unwind tables (Andreas Schwab) - parisc: Wire up PTRACE_GETREGS/PTRACE_SETREGS for compat case (Helge Deller) - parisc: Fix return code of pdc_iodc_print() (Helge Deller) - iio:adc:twl6030: Enable measurements of VUSB, VBATand others (Andreas Kemnade) - iio: adc: berlin2-adc: Add missing of_node_put() in error path (Xiongfeng Wang) - iio: hid: fix the retval in accel_3d_capture_sample (Dmitry Perchanov) - efi: Accept version 2 of memory attributes table (Ard Biesheuvel) - watchdog: diag288_wdt: fix __diag288() inline assembly (Alexander Egorenkov) - watchdog: diag288_wdt: do not use stack buffers for hardware data (Alexander Egorenkov) - fbcon: Check font dimension limits (Samuel Thibault) - Input: i8042 - add Clevo PCX0DX to i8042 quirk table (Werner Sembach) - Input: i8042 - add TUXEDO devices to i8042 quirk tables (Werner Sembach) - Input: i8042 - merge quirk tables (Werner Sembach) - Input: i8042 - move __initconst to fix code styling warning (Werner Sembach) - vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF (George Kennedy) - usb: gadget: f_fs: Fix unbalanced spinlock in __ffs_ep0_queue_wait (Udipto Goswami) - usb: dwc3: qcom: enable vbus override when in OTG dr-mode (Neil Armstrong) - usb: dwc3: dwc3-qcom: Fix typo in the dwc3 vbus override API (Wesley Cheng) - iio: adc: stm32-dfsdm: fill module aliases (Olivier Moysan) - net/x25: Fix to not accept on connected socket (Hyunwoo Kim) - i2c: rk3x: fix a bunch of kernel-doc warnings (Randy Dunlap) - scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress (Mike Christie) - scsi: target: core: Fix warning on RT kernels (Maurizio Lombardi) - efi: fix potential NULL deref in efi_mem_reserve_persistent (Anton Gusev) - net: openvswitch: fix flow memory leak in ovs_flow_cmd_new (Fedor Pchelkin) - virtio-net: Keep stop() to follow mirror sequence of open() (Parav Pandit) - selftests: net: udpgso_bench_tx: Cater for pending datagrams zerocopy benchmarking (Andrei Gherzan) - selftests: net: udpgso_bench: Fix racing bug between the rx/tx programs (Andrei Gherzan) - selftests: net: udpgso_bench_rx/tx: Stop when wrong CLI args are provided (Andrei Gherzan) - selftests: net: udpgso_bench_rx: Fix 'used uninitialized' compilerwarning (Andrei Gherzan) - ata: libata: Fix sata_down_spd_limit() when no link speed is reported (Damien Le Moal) - can: j1939: fix errant WARN_ON_ONCE in j1939_session_deactivate (Ziyang Xuan) - net: phy: meson-gxl: Add generic dummy stubs for MMD register access (Chris Healy) - squashfs: harden sanity check in squashfs_read_xattr_id_table (Fedor Pchelkin) - netfilter: br_netfilter: disable sabotage_in hook after first suppression (Florian Westphal) - netrom: Fix use-after-free caused by accept on already connected socket (Hyunwoo Kim) - fix "direction" argument of iov_iter_kvec() (Al Viro) - fix iov_iter_bvec() "direction" argument (Al Viro) - WRITE is "data source", not destination... (Al Viro) - scsi: Revert "scsi: core: map PQ=1, PDT=other values to SCSI_SCAN_TARGET_PRESENT" (Martin K. Petersen) - arm64: dts: imx8mm: Fix pad control for UART1_DTE_RX (Pierluigi Passaro) - ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path() (Artemii Karasev) - ASoC: Intel: bytcr_rt5651: Drop reference count of ACPI device after use (Andy Shevchenko) - bus: sunxi-rsb: Fix error handling in sunxi_rsb_init() (Yuan Can) - firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region (Takashi Sakamoto) - LTS tag: v5.4.231 (Sherry Yang) - usb: host: xhci-plat: add wakeup entry at sysfs (Peter Chen) - Bluetooth: fix null ptr deref on hci_sync_conn_complete_evt (Soenke Huster) - ipv6: ensure sane device mtu in tunnels (Eric Dumazet) - exit: Use READ_ONCE() for all oops/warn limit reads (Kees Cook) - docs: Fix path paste-o for /sys/kernel/warn_count (Kees Cook) - panic: Expose "warn_count" to sysfs (Kees Cook) - panic: Introduce warn_limit (Kees Cook) - panic: Consolidate open-coded panic_on_warn checks (Kees Cook) - exit: Allow oops_limit to be disabled (Kees Cook) - exit: Expose "oops_count" to sysfs (Kees Cook) - exit: Put an upper limit on how often we can oops (Jann Horn) - ia64: make IA64_MCA_RECOVERY bool instead of tristate (Randy Dunlap) - csky: Fixfunction name in csky_alignment() and die() (Nathan Chancellor) - h8300: Fix build errors from do_exit() to make_task_dead() transition (Nathan Chancellor) - hexagon: Fix function name in die() (Nathan Chancellor) - objtool: Add a missing comma to avoid string concatenation (Eric W. Biederman) - exit: Add and use make_task_dead. (Eric W. Biederman) - mm: kasan: do not panic if both panic_on_warn and kasan_multishot set (David Gow) - panic: unset panic_on_warn inside panic() (Tiezhu Yang) - sysctl: add a new register_sysctl_init() interface (Xiaoming Ni) - dmaengine: imx-sdma: Fix a possible memory leak in sdma_transfer_init (Hui Wang) - blk-cgroup: fix missing pd_online_fn() while activating policy (Yu Kuai) - bpf: Skip task with pid=1 in send_signal_common() (Hao Sun) - ARM: dts: imx: Fix pca9547 i2c-mux node name (Geert Uytterhoeven) - x86/asm: Fix an assembler warning with current binutils (Mikulas Patocka) - clk: Fix pointer casting to prevent oops in devm_clk_release() (Uwe Kleine-König) - perf/x86/amd: fix potential integer overflow on shift of a int (Colin Ian King) - netfilter: conntrack: unify established states for SCTP paths (Sriram Yagnaraman) - x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL (Thomas Gleixner) - block: fix and cleanup bio_check_ro (Christoph Hellwig) - nfsd: Ensure knfsd shuts down when the "nfsd" pseudofs is unmounted (Trond Myklebust) - Revert "Input: synaptics - switch touchpad on HP Laptop 15-da3001TU to RMI mode" (Dmitry Torokhov) - net: mdio-mux-meson-g12a: force internal PHY off on mux switch (Jerome Brunet) - net: xgene: Move shared header file into include/linux (Andrew Lunn) - net/phy/mdio-i2c: Move header file to include/linux/mdio (Andrew Lunn) - net/tg3: resolve deadlock in tg3_reset_task() during EEH (David Christensen) - thermal: intel: int340x: Add locking to int340x_thermal_get_trip_type() (Rafael J. Wysocki) - net: ravb: Fix possible hang if RIS2_QFF1 happen (Yoshihiro Shimoda) - sctp: fail if no bound addresses can be used for agiven scope (Marcelo Ricardo Leitner) - net/sched: sch_taprio: do not schedule in taprio_reset() (Eric Dumazet) - netrom: Fix use-after-free of a listening socket. (Kuniyuki Iwashima) - netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE (Sriram Yagnaraman) - ipv4: prevent potential spectre v1 gadget in fib_metrics_match() (Eric Dumazet) - ipv4: prevent potential spectre v1 gadget in ip_metrics_convert() (Eric Dumazet) - netlink: annotate data races around sk_state (Eric Dumazet) - netlink: annotate data races around dst_portid and dst_group (Eric Dumazet) - netlink: annotate data races around nlk-> portid (Eric Dumazet) - netfilter: nft_set_rbtree: skip elements in transaction from garbage collection (Pablo Neira Ayuso) - net: fix UaF in netns ops registration error path (Paolo Abeni) - netlink: prevent potential spectre v1 gadgets (Eric Dumazet) - EDAC/qcom: Do not pass llcc_driv_data as edac_device_ctl_info's pvt_info (Manivannan Sadhasivam) - EDAC/device: Respect any driver-supplied workqueue polling value (Manivannan Sadhasivam) - ARM: 9280/1: mm: fix warning on phys_addr_t to void pointer assignment (Giulio Benetti) - thermal: intel: int340x: Protect trip temperature from concurrent updates (Srinivas Pandruvada) - KVM: x86/vmx: Do not skip segment attributes if unusable bit is set (Hendrik Borghorst) - cifs: Fix oops due to uncleared server-> smbd_conn in reconnect (David Howells) - ftrace/scripts: Update the instructions for ftrace-bisect.sh (Steven Rostedt (Google)) - trace_events_hist: add check for return value of 'create_hist_field' (Natalia Petrova) - tracing: Make sure trace_printk() can output as soon as it can be used (Steven Rostedt (Google)) - module: Don't wait for GOING modules (Petr Pavlu) - scsi: hpsa: Fix allocation size for scsi_host_alloc() (Alexey V. Vissarionov) - Bluetooth: hci_sync: cancel cmd_timer if hci_open failed (Archie Pusaka) - Revert "Revert "xhci: Set HCD flag to defer primary roothub registration"" (Sasha Levin) - fs: reiserfs: removeuseless new_opts in reiserfs_remount (Dongliang Mu) - mmc: sdhci-esdhc-imx: correct the tuning start tap and step setting (Haibo Chen) - mmc: sdhci-esdhc-imx: disable the CMD CRC check for standard tuning (Haibo Chen) - mmc: sdhci-esdhc-imx: clear pending interrupt and halt cqhci (Haibo Chen) - lockref: stop doing cpu_relax in the cmpxchg loop (Mateusz Guzik) - platform/x86: asus-nb-wmi: Add alternate mapping for KEY_SCREENLOCK (Hans de Goede) - platform/x86: touchscreen_dmi: Add info for the CSL Panther Tab HD (Michael Klein) - scsi: hisi_sas: Set a port invalid only if there are no devices attached when refreshing port id (Yihang Li) - KVM: s390: interrupt: use READ_ONCE() before cmpxchg() (Heiko Carstens) - spi: spidev: remove debug messages that access spidev-> spi without locking (Bartosz Golaszewski) - ASoC: fsl-asoc-card: Fix naming of AC'97 CODEC widgets (Mark Brown) - ASoC: fsl_ssi: Rename AC'97 streams to avoid collisions with AC'97 CODEC (Mark Brown) - cpufreq: armada-37xx: stop using 0 as NULL pointer (Miles Chen) - s390/debug: add _ASM_S390_ prefix to header guard (Niklas Schnelle) - drm: Add orientation quirk for Lenovo ideapad D330-10IGL (Patrick Thompson) - ASoC: fsl_micfil: Correct the number of steps on SX controls (Chancel Liu) - cpufreq: Add Tegra234 to cpufreq-dt-platdev blocklist (Sumit Gupta) - tcp: fix rate_app_limited to default to 1 (David Morley) - net: dsa: microchip: ksz9477: port map correction in ALU table entry register (Rakesh Sankaranarayanan) - driver core: Fix test_async_probe_init saves device in wrong array (Chen Zhongjin) - w1: fix WARNING after calling w1_process() (Yang Yingliang) - w1: fix deadloop in __w1_remove_master_device() (Yang Yingliang) - tcp: avoid the lookup process failing to get sk in ehash table (Jason Xing) - dmaengine: xilinx_dma: call of_node_put() when breaking out of for_each_child_of_node() (Liu Shixin) - dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling (Swati Agarwal) - dmaengine: xilinx_dma: usedevm_platform_ioremap_resource() (Radhey Shyam Pandey) - HID: betop: check shape of output reports (Pietro Borrello) - net: macb: fix PTP TX timestamp failure due to packet padding (Robert Hancock) - dmaengine: Fix double increment of client_count in dma_chan_get() (Koba Ko) - drm/panfrost: fix GENERIC_ATOMIC64 dependency (Arnd Bergmann) - net: mlx5: eliminate anonymous module_init & module_exit (Randy Dunlap) - usb: gadget: f_fs: Ensure ep0req is dequeued before free_request (Udipto Goswami) - usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait (Udipto Goswami) - HID: revert CHERRY_MOUSE_000C quirk (Jiri Kosina) - net: stmmac: fix invalid call to mdiobus_get_phy() (Heiner Kallweit) - HID: check empty report_list in bigben_probe() (Pietro Borrello) - HID: check empty report_list in hid_validate_values() (Pietro Borrello) - net: mdio: validate parameter addr in mdiobus_get_phy() (Heiner Kallweit) - net: usb: sr9700: Handle negative len (Szymon Heidrich) - l2tp: Don't sleep and disable BH under writer-side sk_callback_lock (Jakub Sitnicki) - l2tp: Serialize access to sk_user_data with sk_callback_lock (Jakub Sitnicki) [Orabug: 34951575] {CVE-2022-4129} - net: fix a concurrency bug in l2tp_tunnel_register() (Gong, Sishuai) - net/sched: sch_taprio: fix possible use-after-free (Eric Dumazet) - wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid (Szymon Heidrich) [Orabug: 35037713] {CVE-2023-23559} - gpio: mxc: Always set GPIOs used as interrupt source to INPUT mode (Marek Vasut) - net: wan: Add checks for NULL for utdm in undo_uhdlc_init and unmap_si_regs (Esina Ekaterina) - net: nfc: Fix use-after-free in local_cleanup() (Jisoo Jang) - phy: rockchip-inno-usb2: Fix missing clk_disable_unprepare() in rockchip_usb2phy_power_on() (Shang XiaoJing) - bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (Luis Gerhorst) - amd-xgbe: Delay AN timeout during KR training (Raju Rangoju) - amd-xgbe: TX Flow Ctrl Registers are h/w ver dependent (Raju Rangoju) - affs:initialize fsdata in affs_truncate() (Alexander Potapenko) - IB/hfi1: Fix expected receive setup error exit issues (Dean Luick) - IB/hfi1: Reserve user expected TIDs (Dean Luick) - IB/hfi1: Reject a zero-length user expected buffer (Dean Luick) - RDMA/core: Fix ib block iterator counter overflow (Yonatan Nachum) - tomoyo: fix broken dependency on *.conf.default (Masahiro Yamada) - EDAC/highbank: Fix memory leak in highbank_mc_probe() (Miaoqian Lin) - HID: intel_ish-hid: Add check for ishtp_dma_tx_map (Jiasheng Jiang) - ARM: imx: add missing of_node_put() (Dario Binacchi) - ARM: imx35: Retrieve the IIM base address from devicetree (Fabio Estevam) - ARM: imx31: Retrieve the IIM base address from devicetree (Fabio Estevam) - ARM: imx27: Retrieve the SYSCTRL base address from devicetree (Fabio Estevam) - ARM: dts: imx6qdl-gw560x: Remove incorrect 'uart-has-rtscts' (Fabio Estevam) - memory: mvebu-devbus: Fix missing clk_disable_unprepare in mvebu_devbus_probe() (Gaosheng Cui) - memory: atmel-sdramc: Fix missing clk_disable_unprepare in atmel_ramc_probe() (Gaosheng Cui) - clk: Provide new devm_clk helpers for prepared and enabled clocks (Uwe Kleine-König) - clk: generalize devm_clk_get() a bit (Uwe Kleine-König) [5.4.17-2136.318.2.el7uek] - iommu/amd: Increase kdump command sync timeout to 2secs (Joao Martins) [Orabug: 35117313] [5.4.17-2136.318.1.el7uek] - uek-rpm: aarch64: embedded: Clean up T93 config file v2 (Henry Willard) [Orabug: 35029259] - uek-rpm: aarch64 embedded: make some modules built-in (Dave Kleikamp) [Orabug: 35029259] - uek-rpm: aarch64: pensando: config file update for January 2023 update (Dave Kleikamp) [Orabug: 35089950] - drivers/mtd/spi-nor: Winbond w25q02nw flash support. (Hiren Mehta) [Orabug: 35089950] - drivers/i2c: Reset Lattice RD1173 master for i2c_busy set. (Hiren Mehta) [Orabug: 35089950] - drivers/soc/pensando: boot_count to sysfs for kdump.log (Hiren Mehta) [Orabug: 35089950] - drivers/soc/pensando sbus driver (Hiren Mehta) [Orabug: 35089950] -drivers/reset: Add emmc hardware reset (Hiren Mehta) [Orabug: 35089950] - uek-rpm: Add missing dax_pmem_compat.ko to nano rpm (Somasundaram Krishnasamy) [Orabug: 35094871] _______________________________________________ El-errata mailing list
Apr 18, 2023
•Critical
Oracle
217
security advisorykernel updatesecurity patchOracle Linux 7 ELSA-2023-12007 Critical: Kernel Security Update
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-12007 https://linux.oracle.com/errata/ELSA-2023-12007.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-4.14.35-2047.521.4.el7uek.x86_64.rpm kernel-uek-debug-4.14.35-2047.521.4.el7uek.x86_64.rpm kernel-uek-debug-devel-4.14.35-2047.521.4.el7uek.x86_64.rpm kernel-uek-devel-4.14.35-2047.521.4.el7uek.x86_64.rpm kernel-uek-tools-4.14.35-2047.521.4.el7uek.x86_64.rpm kernel-uek-doc-4.14.35-2047.521.4.el7uek.noarch.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates/kernel-uek-4.14.35-2047.521.4.el7uek.src.rpm Related CVEs: CVE-2022-4378 Description of changes: [4.14.35-2047.521.4.el7uek] - tcp: Tunables for TCP delayed ack (min and max) timers (Venkat Venkatsubra) [Orabug: 34883100] [4.14.35-2047.521.3.el7uek] - Revert "random: use expired timer rather than wq for mixing fast pool" (Saeed Mirzamohammadi) [Orabug: 34918228] [4.14.35-2047.521.2.el7uek] - RDS/IB: Fix the misplaced counter update rdma dto path (Devesh Sharma) [Orabug: 34865849] - IB/ipoib: Do not warn if IPoIB debugfs doesn't exist (Alaa Hleihel) [Orabug: 34780038] - proc: proc_skip_spaces() shouldn't think it is working on C strings (Linus Torvalds) [Orabug: 34882780] {CVE-2022-4378} - proc: avoid integer type confusion in get_proc_long (Linus Torvalds) [Orabug: 34882780] {CVE-2022-4378} [4.14.35-2047.521.1.el7uek] - net/mlx5: Use debug message instead of warn (Yishai Hadas) [Orabug: 34834553] - hugetlbfs: don't delete error page from pagecache (James Houghton) [Orabug: 34772618] - mm: shmem: don't truncate page if memory failure happens (Yang Shi) [Orabug: 34772618] - mm: hwpoison: refactor refcount check handling (Yang Shi) [Orabug: 34772618] - kvm: x86: limit the maximum number of vPMU fixed counters to 3 (Like Xu) [Orabug: 34756992] - LTS version: v4.14.298 (Saeed Mirzamohammadi) - can: rcar_canfd:rcar_canfd_handle_global_receive(): fix IRQ storm on global FIFO receive (Biju Das) - net: ehea: fix possible memory leak in ehea_register_port() (Yang Yingliang) - openvswitch: switch from WARN to pr_warn (Aaron Conole) - ALSA: aoa: Fix I2S device accounting (Takashi Iwai) - ALSA: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev() (Yang Yingliang) - PM: domains: Fix handling of unavailable/disabled idle states (Sudeep Holla) - net: ksz884x: fix missing pci_disable_device() on error in pcidev_init() (Yang Yingliang) - i40e: Fix flow-type by setting GL_HASH_INSET registers (Slawomir Laba) - i40e: Fix ethtool rx-flow-hash setting for X722 (Slawomir Laba) - media: videodev2.h: V4L2_DV_BT_BLANKING_HEIGHT should check 'interlaced' (Hans Verkuil) - media: v4l2-dv-timings: add sanity checks for blanking values (Hans Verkuil) - media: vivid: dev-> bitmap_cap wasn't freed in all cases (Hans Verkuil) - media: vivid: s_fbuf: add more sanity checks (Hans Verkuil) - PM: hibernate: Allow hybrid sleep to work with s2idle (Mario Limonciello) - can: mscan: mpc5xxx: mpc5xxx_can_probe(): add missing put_clock() in error path (Dongliang Mu) - tcp: fix indefinite deferral of RTO with SACK reneging (Neal Cardwell) - net: lantiq_etop: don't free skb when returning NETDEV_TX_BUSY (Zhang Changzhong) - kcm: annotate data-races around kcm-> rx_wait (Eric Dumazet) - kcm: annotate data-races around kcm-> rx_psock (Eric Dumazet) - amd-xgbe: add the bit rate quirk for Molex cables (Raju Rangoju) - amd-xgbe: fix the SFP compliance codes check for DAC cables (Raju Rangoju) - x86/unwind/orc: Fix unreliable stack dump with gcov (Chen Zhongjin) - ALSA: ac97: fix possible memory leak in snd_ac97_dev_register() (Yang Yingliang) - arc: iounmap() arg is volatile (Randy Dunlap) - drm/msm: Fix return type of mdp4_lvds_connector_mode_valid (Nathan Huckleberry) - net: ieee802154: fix error return code in dgram_bind() (Wei Yongjun) - mm,hugetlb: take hugetlb_lock before decrementing h-> resv_huge_pages (Rik van Riel) -xen/gntdev: Prevent leaking grants (M. Vefa Bicakci) - Xen/gntdev: don't ignore kernel unmapping error (Jan Beulich) - s390/futex: add missing EX_TABLE entry to __futex_atomic_op() (Heiko Carstens) - kernfs: fix use-after-free in __kernfs_remove (Christian A. Ehrhardt) - mmc: core: Fix kernel panic when remove non-standard SDIO card (Matthew Ma) - drm/msm/hdmi: fix memory corruption with too many bridges (Johan Hovold) - mac802154: Fix LQI recording (Miquel Raynal) - fbdev: smscufx: Fix several use-after-free bugs (Hyunwoo Kim) - iio: light: tsl2583: Fix module unloading (Shreeya Patel) - tools: iio: iio_utils: fix digit calculation (Matti Vaittinen) - xhci: Remove device endpoints from bandwidth list when freeing the device (Mathias Nyman) - usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being a V0.96 controller (Jens Glathe) - usb: bdc: change state when port disconnected (Justin Chen) - usb: dwc3: gadget: Don't set IMI for no_interrupt (Thinh Nguyen) - USB: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM (Hannu Hartikainen) - ALSA: au88x0: use explicitly signed char (Jason A. Donenfeld) - ALSA: Use del_timer_sync() before freeing timer (Steven Rostedt (Google)) - ACPI: video: Force backlight native for more TongFang devices (Werner Sembach) - media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP buffers across ioctls (Chen-Yu Tsai) - iommu/vt-d: Clean up si_domain in the init_dmars() error path (Jerry Snitselaar) - net: hns: fix possible memory leak in hnae_ae_register() (Yang Yingliang) - net/atm: fix proc_mpc_write incorrect return value (Xiaobo Liu) - HID: magicmouse: Do not set BTN_MOUSE on double report (José Expósito) - ACPI: extlog: Handle multiple records (Tony Luck) - btrfs: fix processing of delayed data refs during backref walking (Filipe Manana) - r8152: add PID for the Lenovo OneLink+ Dock (Jean-Francois Le Fillatre) - arm64: errata: Remove AES hwcap for COMPAT tasks (James Morse) - KVM: arm64: vgic: Fix exit condition in scan_its_table() (EricRen) - ata: ahci: Match EM_MAX_SLOTS with SATA_PMP_MAX_PORTS (Kai-Heng Feng) - ata: ahci-imx: Fix MODULE_ALIAS (Alexander Stein) - x86/microcode/AMD: Apply the patch early on every logical thread (Borislav Petkov) - ocfs2: fix BUG when iput after ocfs2_mknod fails (Joseph Qi) - ocfs2: clear dinode links count in case of error (Joseph Qi) - LTS version: v4.14.297 is skipped (Saeed Mirzamohammadi) - LTS version: v4.14.296 (Saeed Mirzamohammadi) - thermal: intel_powerclamp: Use first online CPU as control_cpu (Rafael J. Wysocki) - inet: fully convert sk-> sk_rx_dst to RCU rules (Eric Dumazet) - efi: libstub: drop pointless get_memory_map() call (Ard Biesheuvel) - md: Replace snprintf with scnprintf (Saurabh Sengar) - ext4: continue to expand file system when the target size doesn't reach (Jerry Lee æ修賢) - net/ieee802154: don't warn zero-sized raw_sendmsg() (Tetsuo Handa) - net: ieee802154: return -EINVAL for unknown addr type (Alexander Aring) - perf intel-pt: Fix segfault in intel_pt_print_info() with uClibc (Adrian Hunter) - usb: idmouse: fix an uninit-value in idmouse_open (Dongliang Mu) - Revert "usb: storage: Add quirk for Samsung Fit flash" (sunghwan jung) - usb: musb: Fix musb_gadget.c rxstate overflow bug (Robin Guo) - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (Jianglei Nie) - md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d (Logan Gunthorpe) - HID: roccat: Fix use-after-free in roccat_read() (Hyunwoo Kim) - nbd: Fix hung when signal interrupts nbd_start_device_ioctl() (Shigeru Yoshida) - scsi: 3w-9xxx: Avoid disabling device if failing to enable it (Letu Ren) - media: cx88: Fix a null-ptr-deref bug in buffer_prepare() (Zheyu Ma) - ARM: dts: imx6sl: add missing properties for sram (Alexander Stein) - ARM: dts: imx6qp: add missing properties for sram (Alexander Stein) - ARM: dts: imx6dl: add missing properties for sram (Alexander Stein) - ARM: dts: imx6q: add missing properties for sram (Alexander Stein) - ARM: dts: imx7d-sdb: configthe max pressure for tsc2046 (Haibo Chen) - drm/amdgpu: fix initial connector audio value (hongao) - platform/x86: msi-laptop: Change DMI match / alias strings to fix module autoloading (Hans de Goede) - drm/vc4: vec: Fix timings for VEC modes (Mateusz Kwiatkowski) - drm: Prevent drm_copy_field() to attempt copying a NULL pointer (Javier Martinez Canillas) - drm: Use size_t type for len variable in drm_copy_field() (Javier Martinez Canillas) - r8152: Rate limit overflow messages (Andrew Gaul) - Bluetooth: L2CAP: Fix user-after-free (Luiz Augusto von Dentz) - net: If sock is dead don't access sock's sk_wq in sk_stream_wait_memory (Liu Jian) - wifi: rt2x00: correctly set BBP register 86 for MT7620 (Daniel Golle) - wifi: rt2x00: set SoC wmac clock register (Daniel Golle) - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620 (Daniel Golle) - wifi: rt2x00: don't run Rt5592 IQ calibration on MT7620 (Daniel Golle) - can: bcm: check the result of can_send() in bcm_can_tx() (Ziyang Xuan) - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times (Luiz Augusto von Dentz) - Bluetooth: L2CAP: initialize delayed works at l2cap_chan_create() (Tetsuo Handa) - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() (Alexander Coffin) - xfrm: Update ipcomp_scratches with NULL when freed (Khalid Masum) - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() (Tetsuo Handa) - tcp: annotate data-race around tcp_md5sig_pool_populated (Eric Dumazet) - openvswitch: Fix overreporting of drops in dropwatch (Mike Pattrick) - openvswitch: Fix double reporting of drops in dropwatch (Mike Pattrick) - wifi: brcmfmac: fix invalid address access when enabling SCAN log level (Wright Feng) - NFSD: Return nfserr_serverfault if splice_ok but buf-> pages have data (Anna Schumaker) - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to avoid crash (Srinivas Pandruvada) - powercap: intel_rapl: fix UBSAN shift-out-of-bounds issue (Chao Qin) - MIPS: BCM47XX: Castmemcmp() of function to (void *) (Kees Cook) - ACPI: video: Add Toshiba Satellite/Portege Z830 quirk (Arvid Norlander) - f2fs: fix race condition on setting FI_NO_EXTENT flag (Zhang Qilong) - iommu/iova: Fix module config properly (Robin Murphy) - iommu/omap: Fix buffer overflow in debugfs (Dan Carpenter) - powerpc: Fix SPE Power ISA properties for e500v1 platforms (Pali Rohár) - powerpc/powernv: add missing of_node_put() in opal_export_attrs() (Zheng Yongjun) - powerpc/pci_dn: Add missing of_node_put() (Liang He) - powerpc/sysdev/fsl_msi: Add missing of_node_put() (Liang He) - powerpc/math_emu/efp: Include module.h (Nathan Chancellor) - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg (Jack Wang) - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe (Miaoqian Lin) - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration (Stefan Wahren) - spmi: pmic-arb: correct duplicate APID to PPID mapping logic (David Collins) - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in __cleanup() (Dave Jiang) - mfd: sm501: Add check for platform_driver_register() (Jiasheng Jiang) - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and lp8788_irq_init() (Christophe JAILLET) - mfd: lp8788: Fix an error handling path in lp8788_probe() (Christophe JAILLET) - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq() (Christophe JAILLET) - mfd: intel_soc_pmic: Fix an error handling path in intel_soc_pmic_i2c_probe() (Christophe JAILLET) - fsi: core: Check error number after calling ida_simple_get (Jiasheng Jiang) - serial: 8250: Fix restoring termios speed after suspend (Pali Rohár) - firmware: google: Test spinlock on panic path to avoid lockups (Guilherme G. Piccoli) - phy: qualcomm: call clk_disable_unprepare in the error handling (Dongliang Mu) - drivers: serial: jsm: fix some leaks in probe (Dan Carpenter) - usb: gadget: function: fix dangling pnp_string in f_printer.c (Albert Briscoe) - xhci: Don't show warning for reinit on knownbroken suspend (Mario Limonciello) - md/raid5: Ensure stripe_fill happens on non-read IO with journal (Logan Gunthorpe) - ata: fix ata_id_has_dipm() (Niklas Cassel) - ata: fix ata_id_has_ncq_autosense() (Niklas Cassel) - ata: fix ata_id_has_devslp() (Niklas Cassel) - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting() (Niklas Cassel) - dyndbg: let query-modname override actual module name (Jim Cromie) - dyndbg: fix module.dyndbg handling (Jim Cromie) - RDMA/rxe: Fix the error caused by qp-> sk (Zhu Yanjun) - RDMA/rxe: Fix "kernel NULL pointer dereference" error (Zhu Yanjun) - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init (Miaoqian Lin) - tty: xilinx_uartps: Fix the ignore_status (Shubhrajyoti Datta) - media: exynos4-is: fimc-is: Add of_node_put() when breaking out of loop (Liang He) - HSI: omap_ssi_port: Fix dma_map_sg error check (Jack Wang) - HSI: omap_ssi: Fix refcount leak in ssi_probe (Miaoqian Lin) - clk: tegra20: Fix refcount leak in tegra20_clock_init (Miaoqian Lin) - clk: tegra: Fix refcount leak in tegra114_clock_init (Miaoqian Lin) - clk: tegra: Fix refcount leak in tegra210_clock_init (Miaoqian Lin) - clk: oxnas: Hold reference returned by of_get_parent() (Liang He) - iio: ABI: Fix wrong format of differential capacitance channel ABI. (Jonathan Cameron) - iio: inkern: only release the device node when done with it (Nuno Sá) - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX (Claudiu Beznea) - ARM: dts: exynos: fix polarity of VBUS GPIO of Origen (Dmitry Torokhov) - ARM: Drop CMDLINE_* dependency on ATAGS (Geert Uytterhoeven) - ARM: dts: kirkwood: lsxl: remove first ethernet port (Michael Walle) - ARM: dts: kirkwood: lsxl: fix serial line (Michael Walle) - ARM: dts: turris-omnia: Fix mpp26 pin name and comment (Marek Behún) - soc: qcom: smem_state: Add refcounting for the 'state-> of_node' (Liang He) - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() (Liang He) - memory: of: Fix refcount leak bug inof_get_ddr_timings() (Liang He) - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe() (Christophe JAILLET) - ALSA: dmaengine: increment buffer pointer atomically (Andreas Pape) - ASoC: eureka-tlv320: Hold reference returned from of_find_xxx API (Liang He) - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe() (Christophe JAILLET) - drm/bridge: megachips: Fix a null pointer dereference bug (Zheyu Ma) - platform/x86: msi-laptop: Fix resource cleanup (Hans de Goede) - platform/x86: msi-laptop: Fix old-ec check for backlight registering (Hans de Goede) - drm/mipi-dsi: Detach devices when removing the host (Maxime Ripard) - bnx2x: fix potential memory leak in bnx2x_tpa_stop() (Jianglei Nie) - tcp: fix tcp_cwnd_validate() to not forget is_cwnd_limited (Neal Cardwell) - vhost/vsock: Use kvmalloc/kvfree for larger packets. (Junichi Uekawa) - spi: s3c64xx: Fix large transfers with DMA (Vincent Whitchurch) - netfilter: nft_fib: Fix for rpath check with VRF devices (Phil Sutter) - spi/omap100k:Fix PM disable depth imbalance in omap1_spi100k_probe (Zhang Qilong) - net: fs_enet: Fix wrong check in do_pd_setup (Zheng Yongjun) - wifi: rtl8xxxu: gen2: Fix mistake in path B IQ calibration (Bitterblue Smith) - wifi: rtl8xxxu: Fix skb misuse in TX queue selection (Bitterblue Smith) - spi: qup: add missing clk_disable_unprepare on error in spi_qup_pm_resume_runtime() (Xu Qiang) - spi: qup: add missing clk_disable_unprepare on error in spi_qup_resume() (Xu Qiang) - wifi: rtl8xxxu: tighten bounds checking in rtl8xxxu_read_efuse() (Dan Carpenter) - wifi: mac80211: allow bw change during channel switch in mesh (Hari Chandrakanthan) - wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state() (Wen Gong) - sh: machvec: Use char[] for section boundaries (Kees Cook) - selinux: use "grep -E" instead of "egrep" (Greg Kroah-Hartman) - gcov: support GCC 12.1 and newer compilers (Martin Liska) - KVM: x86/emulator: Fix handing of POP SS to correctly set interruptibility (Michal Luczaj) -ring-buffer: Fix race between reset page and reading page (Steven Rostedt (Google)) - ring-buffer: Check pending waiters when doing wake ups as well (Steven Rostedt (Google)) - ring-buffer: Allow splice to read previous partially read pages (Steven Rostedt (Google)) - ftrace: Properly unset FTRACE_HASH_FL_MOD (Zheng Yejian) - livepatch: fix race between fork and KLP transition (Rik van Riel) - ext4: place buffer head allocation before handle start (Jinke Han) - ext4: make ext4_lazyinit_thread freezable (Lalith Rajendran) - ext4: fix null-ptr-deref in ext4_write_info (Baokun Li) - ext4: avoid crash when inline data creation follows DIO write (Jan Kara) - nilfs2: fix lockdep warnings during disk space reclamation (Ryusuke Konishi) - nilfs2: fix lockdep warnings in page operations for btree nodes (Ryusuke Konishi) - nilfs2: fix use-after-free bug of struct nilfs_root (Ryusuke Konishi) - fbdev: smscufx: Fix use-after-free in ufx_ops_open() (Hyunwoo Kim) - PCI: Sanitise firmware BAR assignments behind a PCI-PCI bridge (Maciej W. Rozycki) - UM: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK (Huacai Chen) - parisc: fbdev/stifb: Align graphics memory size to 4MB (Helge Deller) - Revert "fs: check FMODE_LSEEK to control internal pipe splicing" (Sasha Levin) - regulator: qcom_rpm: Fix circular deferral regression (Linus Walleij) - quota: Check next/prev free block number after reading from quota file (Zhihao Cheng) - HID: multitouch: Add memory barriers (Andri Yngvason) - fs: dlm: handle -EBUSY first in lock arg validation (Alexander Aring) - fs: dlm: fix race between test_bit() and queue_work() (Alexander Aring) - iio: dac: ad5593r: Fix i2c read protocol requirements (Michael Hennerich) - ALSA: usb-audio: Fix NULL dererence at error path (Takashi Iwai) - ALSA: usb-audio: Fix potential memory leaks (Takashi Iwai) - ALSA: rawmidi: Drop register_mutex in snd_rawmidi_free() (Takashi Iwai) - ALSA: oss: Fix potential deadlock at unregistration (Takashi Iwai) - random: use expired timer ratherthan wq for mixing fast pool (Jason A. Donenfeld) - Input: xpad - fix wireless 360 controller breaking after suspend (Cameron Gutman) - Input: xpad - add supported devices as contributed on github (Pavel Rojtberg) - wifi: mac80211_hwsim: avoid mac80211 warning on bad rate (Johannes Berg) - random: avoid reading two cache lines on irq randomness (Jason A. Donenfeld) - random: restore O_NONBLOCK support (Jason A. Donenfeld) - USB: serial: qcserial: add new usb-id for Dell branded EM7455 (Frank Wunderlich) - ALSA: hda: Fix position reporting on Poulsbo (Takashi Iwai) - random: clamp credited irq bits to maximum mixed (Jason A. Donenfeld) - ceph: don't truncate file in atomic_open (Hu Weiwen) - nilfs2: replace WARN_ONs by nilfs_error for checkpoint acquisition failure (Ryusuke Konishi) - nilfs2: fix leak of nilfs_root in case of writer thread creation failure (Ryusuke Konishi) - nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level() (Ryusuke Konishi) - netfilter: nf_queue: fix socket leak (Vimal Agrawal) - rpmsg: qcom: glink: replace strncpy() with strscpy_pad() (Krzysztof Kozlowski) - mmc: core: Terminate infinite loop in SD-UHS voltage switch (Brian Norris) - mmc: core: Replace with already defined values for readability (ChanWoo Lee) - USB: serial: ftdi_sio: fix 300 bps rate for SIO (Johan Hovold) - usb: mon: make mmapped memory read only (Tadeusz Struk) - um: Cleanup compiler warning in arch/x86/um/tls_32.c (Lukas Straub) - um: Cleanup syscall_handler_t cast in syscalls_32.h (Lukas Straub) - net/ieee802154: fix uninit value bug in dgram_sendmsg (Haimin Zhang) - ARM: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer (Sergei Antonov) - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API failure (Swati Agarwal) - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property (Swati Agarwal) - fs: fix UAF/GPF bug in nilfs_mdt_destroy (Dongliang Mu) - ARM: fix function graph tracer and unwinder dependencies (Russell King) - i2c: dev:prevent ZERO_SIZE_PTR deref in i2cdev_ioctl_rdwr() (Alexander Popov) - Makefile.extrawarn: Move -Wcast-function-type-strict to W=1 (Sami Tolvanen) - clk: iproc: Do not rely on node name for correct PLL setup (Florian Fainelli) - clk: iproc: Minor tidy up of iproc pll data structures (Lori Hikichi) - selftests: Fix the if conditions of in test_extra_filter() (Wang Yufen) - nvme: Fix IOC_PR_CLEAR and IOC_PR_RELEASE ioctls for nvme devices (Michael Kelley) - nvme: add new line after variable declatation (Chaitanya Kulkarni) - usbnet: Fix memory leak in usbnet_disconnect() (Peilin Ye) - Input: melfas_mip4 - fix return value check in mip4_probe() (Yang Yingliang) - Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in suspend/resume time" (Brian Norris) - soc: sunxi: sram: Fix debugfs info for A64 SRAM C (Samuel Holland) - soc: sunxi: sram: Actually claim SRAM regions (Samuel Holland) - mm/migrate_device.c: flush TLB while holding PTL (Alistair Popple) - mm: prevent page_frag_alloc() from corrupting the memory (Maurizio Lombardi) - mm/page_alloc: fix race condition between build_all_zonelists and page allocation (Mel Gorman) - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width (Sergei Antonov) - ntfs: fix BUG_ON in ntfs_lookup_inode_by_name() (ChenXiaoSong) - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (Frank Wunderlich) - uas: ignore UAS for Thinkplus chips (Hongling Zeng) - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (Hongling Zeng) - uas: add no-uas quirk for Hiksemi usb_disk (Hongling Zeng) _______________________________________________ El-errata mailing list
Jan 09, 2023
•Critical
Oracle
100
security advisoryarbitrary code executionimportantSUSE: 2022:1440-1 Important: Kernel Issues Fixed for SLE 12 SP3
An update that fixes three vulnerabilities is now available. . SUSE Security Update: Security update for the Linux Kernel (Live Patch 43 for SLE 12 SP3) ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1440-1 Rating: important References: #1197211 #1197335 #1197344 Cross-References: CVE-2021-39713 CVE-2022-1011 CVE-2022-1016 CVSS scores: CVE-2021-39713 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-39713 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-1011 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1011 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1016 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: SUSE Linux Enterprise Server 12-SP3-LTSS SUSE Linux Enterprise Server for SAP 12-SP3 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for the Linux Kernel 4.4.180-94_156 fixes several issues. The following security issues were fixed: - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197335) - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bsc#1197344) - CVE-2021-39713: Fixed a race condition in the network scheduling subsystem which could lead to a use-after-free (bsc#1197211). Patch Instructions: To install this SUSESecurity Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2022-1440=1 SUSE-SLE-SAP-12-SP3-2022-1441=1 SUSE-SLE-SAP-12-SP3-2022-1442=1 SUSE-SLE-SAP-12-SP3-2022-1443=1 SUSE-SLE-SAP-12-SP3-2022-1444=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2022-1440=1 SUSE-SLE-SERVER-12-SP3-2022-1441=1 SUSE-SLE-SERVER-12-SP3-2022-1442=1 SUSE-SLE-SERVER-12-SP3-2022-1443=1 SUSE-SLE-SERVER-12-SP3-2022-1444=1 Package List: - SUSE Linux Enterprise Server for SAP 12-SP3 (ppc64le x86_64): kgraft-patch-4_4_180-94_144-default-14-2.1 kgraft-patch-4_4_180-94_144-default-debuginfo-14-2.1 kgraft-patch-4_4_180-94_147-default-11-2.1 kgraft-patch-4_4_180-94_147-default-debuginfo-11-2.1 kgraft-patch-4_4_180-94_150-default-7-2.1 kgraft-patch-4_4_180-94_150-default-debuginfo-7-2.1 kgraft-patch-4_4_180-94_153-default-4-2.1 kgraft-patch-4_4_180-94_153-default-debuginfo-4-2.1 kgraft-patch-4_4_180-94_156-default-3-2.1 kgraft-patch-4_4_180-94_156-default-debuginfo-3-2.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (ppc64le x86_64): kgraft-patch-4_4_180-94_144-default-14-2.1 kgraft-patch-4_4_180-94_144-default-debuginfo-14-2.1 kgraft-patch-4_4_180-94_147-default-11-2.1 kgraft-patch-4_4_180-94_147-default-debuginfo-11-2.1 kgraft-patch-4_4_180-94_150-default-7-2.1 kgraft-patch-4_4_180-94_150-default-debuginfo-7-2.1 kgraft-patch-4_4_180-94_153-default-4-2.1 kgraft-patch-4_4_180-94_153-default-debuginfo-4-2.1 kgraft-patch-4_4_180-94_156-default-3-2.1 kgraft-patch-4_4_180-94_156-default-debuginfo-3-2.1 References: https://www.suse.com/security/cve/CVE-2021-39713.html https://www.suse.com/security/cve/CVE-2022-1011.html https://www.suse.com/security/cve/CVE-2022-1016.html https://bugzilla.suse.com/1197211 https://bugzilla.suse.com/1197335 https://bugzilla.suse.com/1197344 . This update from SUSE tackles various concerns within the Linux Kernel, enhancing both stability and security for its users.. Linux Kernel, SUSE Update, Kernel Security, Patch Management, Security Fixes. . Severity: Important. LinuxSecurity.com Team
Apr 27, 2022
•Important
SuSE
89
security advisoryFedorasoftware patchFedora 34: FEDORA-2021-074725882f Critical: PHP 7.4.23 Updates
**PHP version 7.4.23** (26 Aug 2021) **Core:** * Fixed bug php#72595 (php_output_handler_append illegal write access). (cmb) * Fixed bug php#66719 (Weird behaviour when using get_called_class() with call_user_func()). (Nikita) * Fixed bug php#81305 (Built-in Webserver Drops Requests With "Upgrade" Header). (cmb) **BCMath:** * Fixed bug php#78238 (BCMath returns "-0"). (cmb) **CGI:**. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-074725882f 2021-09-02 23:45:36.565559 --------------------------------------------------------------------------------Name : php Product : Fedora 34 Version : 7.4.23 Release : 1.fc34 URL : https://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. --------------------------------------------------------------------------------Update Information: **PHP version 7.4.23** (26 Aug 2021) **Core:** * Fixed bug php#72595 (php_output_handler_append illegal write access). (cmb) * Fixed bug php#66719 (Weird behaviour when using get_called_class() with call_user_func()). (Nikita) * Fixed bug php#81305 (Built-in Webserver Drops Requests With "Upgrade" Header). (cmb) **BCMath:** * Fixed bug php#78238 (BCMath returns "-0"). (cmb) **CGI:** * Fixed bug php#80849 (HTTP Status header truncation). (cmb) **GD:** * Fixed bug php#51498 (imagefilledellipse does not work for large circles). (cmb) **MySQLi:** * Fixed bug php#74544 (Integer overflow in mysqli_real_escape_string()). (cmb, johannes) **OpenSSL:** * Fixed bug php#81327 (Error buildopenssl extension on php 7.4.22). (cmb) **PDO_ODBC:** * Fixed bug php#81252 (PDO_ODBC doesn't account for SQL_NO_TOTAL). (cmb) **Phar:** * Fixed bug php#81211: Symlinks are followed when creating PHAR archive.(cmb) **Shmop:** * Fixed bug php#81283 (shmop can't read beyond 2147483647 bytes). (cmb, Nikita) **Standard:** * Fixed bug php#72146 (Integer overflow on substr_replace). (cmb) * Fixed bug php#81265 (getimagesize returns 0 for 256px ICO images). (George Dietrich) * Fixed bug php#74960 (Heap buffer overflow via str_repeat). (cmb, Dmitry) **Streams:** * Fixed bug php#81294 (Segfault when removing a filter). (cmb) --------------------------------------------------------------------------------ChangeLog: * Thu Aug 26 2021 Remi Collet - 7.4.23-1 - Update to 7.4.23 - https://www.php.net/releases/7_4_23.php --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-074725882f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Sep 02, 2021
•Critical
Fedora
89
security advisoryFedorabug fixesFedora 26: Critical Update for WindowMaker Addressing Memory Flaws
Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagick/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-8f27031c8f 2017-09-19 02:41:35.415951 --------------------------------------------------------------------------------Name : WindowMaker Product : Fedora 26 Version : 0.95.8 Release : 3.fc26 URL : http://www.windowmaker.org Summary : A fast, feature rich Window Manager Description : Window Maker is an X11 window manager designed to give additional integration support to the GNUstep Desktop Environment. In every way possible, it reproduces the elegant look and feel of the NEXTSTEP GUI. It is fast, feature rich, easy to configure, and easy to use. In addition, Window Maker works with GNOME and KDE, making it one of the most useful and universal window managers available. --------------------------------------------------------------------------------Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagick/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. --------------------------------------------------------------------------------References: [ 1 ] Bug #1471837 - CVE-2017-11352 ImageMagick: Improper EOF handling in coders/rle.c can trigger crash (Incomplete fix for CVE-2017-9144) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1471837 [ 2 ] Bug #1471122 - CVE-2017-10995 ImageMagick: Out-of-bounds heap read in mng_get_long function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1471122 [ 3 ] Bug #1470670 - CVE-2017-11170 ImageMagick: Memory leak in ReadTGAImage function when processing TGA or VST file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1470670 [ 4 ] Bug #1465064 - CVE-2017-7941 CVE-2017-7942 CVE-2017-7943 CVE-2017-8352 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1465064 [ 5 ] Bug #1455602 - CVE-2017-9141 CVE-2017-9142 CVE-2017-9143 CVE-2017-9144 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1455602 [ 6 ] Bug #1453125 - CVE-2017-9098 ImageMagick: use of uninitialized memory in RLE decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1453125 [ 7 ] Bug #1413898 - CVE-2016-9556 CVE-2016-9559 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1413898 [ 8 ] Bug #1408404 - CVE-2016-8707 ImageMagick: OOB write in convert utility when deflating TIFF files [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1408404 [ 9 ] Bug #1483575 - CVE-2017-12587 ImageMagick: Resource exhaustion in ReadPWPImage function in coders\pwp.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1483575 [ 10 ] Bug #1299275 - ImageMagick-7.0.6-9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1299275 [ 11 ] Bug #1483132 - CVE-2017-12433 CVE-2017-12434 CVE-2017-12435 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1483132 [ 12 ] Bug #1483117 - CVE-2017-12640 CVE-2017-12641 CVE-2017-12642 CVE-2017-12643 CVE-2017-12644 CVE-2017-12654 CVE-2017-12662 CVE-2017-12663 CVE-2017-12664 CVE-2017-12665 CVE-2017-12666 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1483117 [ 13 ] Bug #1482655 - CVE-2017-12427 CVE-2017-12428 CVE-2017-12429 CVE-2017-12430 CVE-2017-12432 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1482655 [ 14 ] Bug #1482626 - CVE-2017-12418 ImageMagick: Memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1482626 [ 15 ] Bug #1350462 - CVE-2016-5841 CVE-2016-5842 imagemagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1350462 [ 16 ] Bug #1361494 - CVE-2016-6491 ImageMagick: Out-of-bounds read in CopyMagickMemory [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1361494 [ 17 ] Bug #1378790 - CVE-2014-9907 CVE-2015-8957 CVE-2015-8958 CVE-2015-8959 CVE-2016-6823 CVE-2016-7101 CVE-2016-7513 CVE-2016-7514 CVE-2016-7515 CVE-2016-7516 CVE-2016-7517 CVE-2016-7518 CVE-2016-7519 CVE-2016-7520 CVE-2016-7521 ... ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1378790 [ 18 ] Bug #1361578 - CVE-2016-5010 ImageMagick: Out-of-bounds read when processing crafted tiff file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1361578 [ 19 ] Bug #1477566 - CVE-2017-12140 ImageMagick: integer signedness error in ReadDCMImage function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1477566 [ 20 ] Bug #1477070 - CVE-2017-11724 CVE-2017-11750 CVE-2017-11751 CVE-2017-11752 CVE-2017-11753 CVE-2017-11754 CVE-2017-11755 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1477070 [ 21 ] Bug #1475486 - CVE-2017-11644 ImageMagick: Memory-Leak in ReadMATImage() coders/mat.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1475486 [ 22 ] Bug #1475471 - CVE-2017-11639 ImageMagick: heap-based buffer over-read in the WriteCIPImage() function in coders/cip.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1475471 [ 23 ] Bug #1475464 - CVE-2017-11640 ImageMagick: NULL pointer dereference in WritePTIFImage() in coders/tiff.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1475464 [ 24 ] Bug #1474846 - CVE-2017-11523 ImageMagick: Endless loop in ReadTXTImage function in coders/txt.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1474846 [ 25 ] Bug #1474420 - CVE-2017-11446 CVE-2017-11478 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1474420 [ 26 ] Bug #1473848 - CVE-2017-11360 ImageMagick: Resource exhaustion in ReadRLEImage function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473848 [ 27 ] Bug #1473825 - CVE-2017-11188 ImageMagick: Resource exhaustion in ReadDPXImage function in coders\dpx.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473825 [ 28 ] Bug #1473802 - CVE-2017-11448 ImageMagick: Info leak from from uninitialized memory in ReadJPEGImage function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473802 [ 29 ] Bug #1473799 - CVE-2017-11447 ImageMagick: Memory leak in ReadSCREENSHOTImage function in coders/screenshot.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473799 [ 30 ] Bug #1473797 - CVE-2017-11449 ImageMagick: coders/mpc.c don't validade blob sizes of stdin image input [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473797 [ 31 ] Bug #1473775 - CVE-2017-11450 ImageMagick: Too short JPEG data causes denial of service in coders/jpeg.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473775 [ 32 ] Bug #1473758 - CVE-2017-11141 ImageMagick: Memory exhaustion in ReadMATImage function in coders\mat.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473758 [ 33 ] Bug #1473719 - CVE-2017-10928 ImageMagick: heap-based buffer over-read in the GetNextToken function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473719 [ 34 ] Bug #1410515 - ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1410515 [ 35 ] Bug #1479313 - synfigstudio doesn't start https://bugzilla.redhat.com/show_bug.cgi?id=1479313 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade WindowMaker' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Sep 19, 2017
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!