Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
100
security advisorymoderatesystem patchSUSE: 2025:1162-1 moderate: fix for xen deadlock issue resolved
* bsc#1027519 * bsc#1219354 * bsc#1233796 * bsc#1237692 * bsc#1238043 . # Security update for xen Announcement ID: SUSE-SU-2025:1162-1 Release Date: 2025-04-07T16:08:51Z Rating: moderate References: * bsc#1027519 * bsc#1219354 * bsc#1233796 * bsc#1237692 * bsc#1238043 Cross-References: * CVE-2025-1713 CVSS scores: * CVE-2025-1713 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2025-1713 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and has four security fixes can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2025-1713: Fixed potential deadlock with VT-d and legacy PCI device pass-through (bsc#1238043) Other fixes: * Xen channels and domU console (bsc#1219354) * Fixed attempting to start guest vm's libxl fills disk with errors (bsc#1237692) * Xen call trace and APIC Error found after reboot operation on AMD machines (bsc#1233796). * Upstream bug fixes (bsc#1027519). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1162=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-1162=1 openSUSE-SLE-15.6-2025-1162=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-1162=1 ## Package List: * Server ApplicationsModule 15-SP6 (x86_64) * xen-tools-debuginfo-4.18.4_06-150600.3.20.1 * xen-4.18.4_06-150600.3.20.1 * xen-devel-4.18.4_06-150600.3.20.1 * xen-tools-4.18.4_06-150600.3.20.1 * xen-debugsource-4.18.4_06-150600.3.20.1 * Server Applications Module 15-SP6 (noarch) * xen-tools-xendomains-wait-disk-4.18.4_06-150600.3.20.1 * openSUSE Leap 15.6 (aarch64 x86_64 i586) * xen-tools-domU-4.18.4_06-150600.3.20.1 * xen-devel-4.18.4_06-150600.3.20.1 * xen-libs-debuginfo-4.18.4_06-150600.3.20.1 * xen-tools-domU-debuginfo-4.18.4_06-150600.3.20.1 * xen-debugsource-4.18.4_06-150600.3.20.1 * xen-libs-4.18.4_06-150600.3.20.1 * openSUSE Leap 15.6 (x86_64) * xen-libs-32bit-debuginfo-4.18.4_06-150600.3.20.1 * xen-libs-32bit-4.18.4_06-150600.3.20.1 * openSUSE Leap 15.6 (aarch64 x86_64) * xen-tools-debuginfo-4.18.4_06-150600.3.20.1 * xen-4.18.4_06-150600.3.20.1 * xen-tools-4.18.4_06-150600.3.20.1 * xen-doc-html-4.18.4_06-150600.3.20.1 * openSUSE Leap 15.6 (noarch) * xen-tools-xendomains-wait-disk-4.18.4_06-150600.3.20.1 * openSUSE Leap 15.6 (aarch64_ilp32) * xen-libs-64bit-debuginfo-4.18.4_06-150600.3.20.1 * xen-libs-64bit-4.18.4_06-150600.3.20.1 * Basesystem Module 15-SP6 (x86_64) * xen-tools-domU-4.18.4_06-150600.3.20.1 * xen-libs-debuginfo-4.18.4_06-150600.3.20.1 * xen-tools-domU-debuginfo-4.18.4_06-150600.3.20.1 * xen-debugsource-4.18.4_06-150600.3.20.1 * xen-libs-4.18.4_06-150600.3.20.1 ## References: * https://www.suse.com/security/cve/CVE-2025-1713.html * https://bugzilla.suse.com/show_bug.cgi?id=1027519 * https://bugzilla.suse.com/show_bug.cgi?id=1219354 * https://bugzilla.suse.com/show_bug.cgi?id=1233796 * https://bugzilla.suse.com/show_bug.cgi?id=1237692 * https://bugzilla.suse.com/show_bug.cgi?id=1238043 . SUSE has released a vital security patch targeting a severe vulnerability in Xen, incorporating various corrective measures along with detailed installation guidelines.. SUSE Linux,xen securityupdate,system patch,xen issue resolution. . LinuxSecurity.com Team
Apr 07, 2025
SuSE
89
security advisoryFedoraadvisoryFedora 41: FEDORA-2025-20f63c4273 moderate: deadlock potential with VT-d
deadlock potential with VT-d and legacy PCI device pass-through [XSA-467, CVE-2025-1713]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-20f63c4273 2025-03-01 01:22:54.667856+00:00 -------------------------------------------------------------------------------- Name : xen Product : Fedora 41 Version : 4.19.1 Release : 5.fc41 URL : https://xenproject.org/ Summary : Xen is a virtual machine monitor Description : This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor -------------------------------------------------------------------------------- Update Information: deadlock potential with VT-d and legacy PCI device pass-through [XSA-467, CVE-2025-1713] -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 27 2025 Michael Young - 4.19.1-5 - deadlock potential with VT-d and legacy PCI device pass-through [XSA-467, CVE-2025-1713] -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-20f63c4273' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 01, 2025
Fedora
98
security advisorysecurity fixRed Hat Enterprise LinuxRed Hat Enterprise Linux 9: RHSA-2023:0954-01 Moderate: Systemd Concerns
An update for systemd is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: systemd security update Advisory ID: RHSA-2023:0954-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:0954 Issue date: 2023-02-28 CVE Names: CVE-2022-4415 CVE-2022-45873 ==================================================================== 1. Summary: An update for systemd is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 9) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd: local information leak due to systemd-coredump notrespecting fs.suid_dumpable kernel setting (CVE-2022-4415) * systemd: deadlock in systemd-coredump via a crash with a long backtrace (CVE-2022-45873) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2149063 - CVE-2022-45873 systemd: deadlock in systemd-coredump via a crash with a long backtrace 2155515 - CVE-2022-4415 systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 6. Package List: Red Hat Enterprise Linux AppStream (v.9): aarch64: systemd-container-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-debugsource-250-12.el9_1.3.aarch64.rpm systemd-devel-250-12.el9_1.3.aarch64.rpm systemd-devel-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-journal-remote-250-12.el9_1.3.aarch64.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-libs-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-oomd-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-pam-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-resolved-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-udev-debuginfo-250-12.el9_1.3.aarch64.rpm ppc64le: systemd-container-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-debugsource-250-12.el9_1.3.ppc64le.rpm systemd-devel-250-12.el9_1.3.ppc64le.rpm systemd-devel-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-journal-remote-250-12.el9_1.3.ppc64le.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-libs-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-oomd-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-pam-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-resolved-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-udev-debuginfo-250-12.el9_1.3.ppc64le.rpm s390x: systemd-container-debuginfo-250-12.el9_1.3.s390x.rpm systemd-debuginfo-250-12.el9_1.3.s390x.rpm systemd-debugsource-250-12.el9_1.3.s390x.rpm systemd-devel-250-12.el9_1.3.s390x.rpm systemd-devel-debuginfo-250-12.el9_1.3.s390x.rpm systemd-journal-remote-250-12.el9_1.3.s390x.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.s390x.rpm systemd-libs-debuginfo-250-12.el9_1.3.s390x.rpm systemd-oomd-debuginfo-250-12.el9_1.3.s390x.rpm systemd-pam-debuginfo-250-12.el9_1.3.s390x.rpm systemd-resolved-debuginfo-250-12.el9_1.3.s390x.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.s390x.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.s390x.rpm systemd-udev-debuginfo-250-12.el9_1.3.s390x.rpm x86_64: systemd-container-debuginfo-250-12.el9_1.3.i686.rpm systemd-container-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-debuginfo-250-12.el9_1.3.i686.rpm systemd-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-debugsource-250-12.el9_1.3.i686.rpm systemd-debugsource-250-12.el9_1.3.x86_64.rpm systemd-devel-250-12.el9_1.3.i686.rpm systemd-devel-250-12.el9_1.3.x86_64.rpm systemd-devel-debuginfo-250-12.el9_1.3.i686.rpm systemd-devel-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-journal-remote-250-12.el9_1.3.x86_64.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.i686.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-libs-debuginfo-250-12.el9_1.3.i686.rpm systemd-libs-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-oomd-debuginfo-250-12.el9_1.3.i686.rpm systemd-oomd-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-pam-debuginfo-250-12.el9_1.3.i686.rpm systemd-pam-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-resolved-debuginfo-250-12.el9_1.3.i686.rpm systemd-resolved-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.i686.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.i686.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-udev-debuginfo-250-12.el9_1.3.i686.rpm systemd-udev-debuginfo-250-12.el9_1.3.x86_64.rpm Red Hat Enterprise Linux BaseOS (v.9): Source: systemd-250-12.el9_1.3.src.rpm aarch64: systemd-250-12.el9_1.3.aarch64.rpm systemd-container-250-12.el9_1.3.aarch64.rpm systemd-container-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-debugsource-250-12.el9_1.3.aarch64.rpm systemd-devel-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-libs-250-12.el9_1.3.aarch64.rpm systemd-libs-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-oomd-250-12.el9_1.3.aarch64.rpm systemd-oomd-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-pam-250-12.el9_1.3.aarch64.rpm systemd-pam-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-resolved-250-12.el9_1.3.aarch64.rpm systemd-resolved-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.aarch64.rpm systemd-udev-250-12.el9_1.3.aarch64.rpm systemd-udev-debuginfo-250-12.el9_1.3.aarch64.rpm noarch: systemd-rpm-macros-250-12.el9_1.3.noarch.rpm ppc64le: systemd-250-12.el9_1.3.ppc64le.rpm systemd-container-250-12.el9_1.3.ppc64le.rpm systemd-container-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-debugsource-250-12.el9_1.3.ppc64le.rpm systemd-devel-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-libs-250-12.el9_1.3.ppc64le.rpm systemd-libs-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-oomd-250-12.el9_1.3.ppc64le.rpm systemd-oomd-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-pam-250-12.el9_1.3.ppc64le.rpm systemd-pam-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-resolved-250-12.el9_1.3.ppc64le.rpm systemd-resolved-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.ppc64le.rpm systemd-udev-250-12.el9_1.3.ppc64le.rpm systemd-udev-debuginfo-250-12.el9_1.3.ppc64le.rpm s390x: systemd-250-12.el9_1.3.s390x.rpm systemd-container-250-12.el9_1.3.s390x.rpm systemd-container-debuginfo-250-12.el9_1.3.s390x.rpm systemd-debuginfo-250-12.el9_1.3.s390x.rpm systemd-debugsource-250-12.el9_1.3.s390x.rpm systemd-devel-debuginfo-250-12.el9_1.3.s390x.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.s390x.rpm systemd-libs-250-12.el9_1.3.s390x.rpm systemd-libs-debuginfo-250-12.el9_1.3.s390x.rpm systemd-oomd-250-12.el9_1.3.s390x.rpm systemd-oomd-debuginfo-250-12.el9_1.3.s390x.rpm systemd-pam-250-12.el9_1.3.s390x.rpm systemd-pam-debuginfo-250-12.el9_1.3.s390x.rpm systemd-resolved-250-12.el9_1.3.s390x.rpm systemd-resolved-debuginfo-250-12.el9_1.3.s390x.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.s390x.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.s390x.rpm systemd-udev-250-12.el9_1.3.s390x.rpm systemd-udev-debuginfo-250-12.el9_1.3.s390x.rpm x86_64: systemd-250-12.el9_1.3.i686.rpm systemd-250-12.el9_1.3.x86_64.rpm systemd-container-250-12.el9_1.3.i686.rpm systemd-container-250-12.el9_1.3.x86_64.rpm systemd-container-debuginfo-250-12.el9_1.3.i686.rpm systemd-container-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-debuginfo-250-12.el9_1.3.i686.rpm systemd-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-debugsource-250-12.el9_1.3.i686.rpm systemd-debugsource-250-12.el9_1.3.x86_64.rpm systemd-devel-debuginfo-250-12.el9_1.3.i686.rpm systemd-devel-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.i686.rpm systemd-journal-remote-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-libs-250-12.el9_1.3.i686.rpm systemd-libs-250-12.el9_1.3.x86_64.rpm systemd-libs-debuginfo-250-12.el9_1.3.i686.rpm systemd-libs-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-oomd-250-12.el9_1.3.x86_64.rpm systemd-oomd-debuginfo-250-12.el9_1.3.i686.rpm systemd-oomd-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-pam-250-12.el9_1.3.x86_64.rpm systemd-pam-debuginfo-250-12.el9_1.3.i686.rpm systemd-pam-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-resolved-250-12.el9_1.3.x86_64.rpm systemd-resolved-debuginfo-250-12.el9_1.3.i686.rpm systemd-resolved-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.i686.rpm systemd-standalone-sysusers-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.i686.rpm systemd-standalone-tmpfiles-debuginfo-250-12.el9_1.3.x86_64.rpm systemd-udev-250-12.el9_1.3.x86_64.rpm systemd-udev-debuginfo-250-12.el9_1.3.i686.rpm systemd-udev-debuginfo-250-12.el9_1.3.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2022-4415 https://access.redhat.com/security/cve/CVE-2022-45873 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY/3zmtzjgjWX9erEAQjVQQ//T3ainOMg7qjaxA1Q91lW4nhLqsyoVSzX kYjdIOJ3Dn8+yEmhZWq73oNZLqWpSzRpDG6LmNHAGYZwnbVa6+bPeMMxvcI2ys89 tYYDIXwDJiNd2NFFzdanN5UnY2qO+NrkHz6MUHb60ZLfecHQLJXmCMZsoYKSDfC/ 4J8wzo4nHoUKGeWQP/0+DkGFS91ZFveJ+xDx6iCh7rY795NKcEbI8ss3yEMrEeKP BznZycfH+wScZrXIaZFvov2h6gExdznqLkBRNHyA0Sfc2e2P1NkbEc5Thx9X6jFH xCNbArQa1TGnyQjkxElgugqb/CUvFFbi/3KnB3hzcwk7jdg8hN9eIvyXuUdN0tVK AL01JjzJP2cSJmxPKyq/5bn6WPPTZIu9fmhsrKMWjUS7yurJECzpUVbFtjagt3YK B6qFITCU/DMe9q+eX2A5elo71Cu1sIbPtve+w3kbmodZ0zsOX+gsImg7hCirxuBT xWKSgmbfdCQiHcDDvHSj6u6xp31+yeMfpho5TN0W655jOwhh7taPwh48CIGPxUWB Rgc4hy268Ur09UkomIJ52KsUJScnqMHPW4X5cLkkFdtWYC0HUaw1b72u4FKFQRPV 48a9iz9LRBG1NBUifWjr9BqRC/pagSasyfIu2WnJmtWTIreBwHh3p5aRsdEUAOFF x94o/J1EsVM=P/XD -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Feb 28, 2023
Red Hat
203
security advisorybuffer overflowkernel updateMageia: 2019-0414 Moderate: Kernel Buffer Overflow and Input Validation Fix
This update is based on upstream 5.4.6 and fixes various potential security issues related to buffer overflows, double frees, NUll pointer dereferences, improper / missing input validations and so on. It also adds other bugfixes all over the kernel. . MGASA-2019-0414 - Updated kernel packages fix security vulnerabilities Publication date: 25 Dec 2019 URL: https://advisories.mageia.org/MGASA-2019-0414.html Type: security Affected Mageia releases: 7 This update is based on upstream 5.4.6 and fixes various potential security issues related to buffer overflows, double frees, NUll pointer dereferences, improper / missing input validations and so on. It also adds other bugfixes all over the kernel. Other fixes added in this update: - x86/MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure(), fixing an deadlock issue. - x86/mm: Split vmalloc_sync_all(), fixing up big performance regressions in some x86_64 workloads (example: reaim.jobs_per_min -79.7% regression) - The Intel cpu/gpu specific security fixes in upstream 5.3.11 broke RC6 and that prevents CPUs from entering C-states, causing higher power consumption. This update adds upstream fixes to restore RC6 to a working state (fdo#112315) - radeon changes in upstream 5.4 to remove the 'need_dma32 flag' has been reverted as it caused radeon to malfunction on 32bit kernels - iwlwifi fixes for firmware crashes (mga#25926), failures on warm reboot, and performance fixes WireGuard has been updated to 0.0.20191219. For other fixes in this update, see the referenced changelogs. References: - https://bugs.mageia.org/show_bug.cgi?id=25897 - https://bugs.mageia.org/show_bug.cgi?id=25926 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.3 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.4 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.5 - https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.6 SRPMS: - 7/core/kernel-5.4.6-2.mga7 - 7/core/kmod-virtualbox-6.0.14-16.mga7 -7/core/kmod-xtables-addons-3.7-6.mga7 - 7/core/wireguard-tools-0.0.20191219-1.mga7 . Critical vulnerabilities in the Mageia kernel have been patched in a security update, resolving significant buffer overflow risks and enhancing overall performance stability.. Mageia Kernel Update, Security Fix, Buffer Overflow, Input Validation Issues. . LinuxSecurity.com Team
Dec 25, 2019
Mageia
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!