Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisorycritical patchimportant update

Oracle Linux 9 ELSA-2022-8453 Critical: Device-Mapper Multipath Update

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-8453 https://linux.oracle.com/errata/ELSA-2022-8453.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: device-mapper-multipath-0.8.7-12.el9_1.1.x86_64.rpm device-mapper-multipath-libs-0.8.7-12.el9_1.1.i686.rpm device-mapper-multipath-libs-0.8.7-12.el9_1.1.x86_64.rpm kpartx-0.8.7-12.el9_1.1.x86_64.rpm device-mapper-multipath-devel-0.8.7-12.el9_1.1.i686.rpm device-mapper-multipath-devel-0.8.7-12.el9_1.1.x86_64.rpm aarch64: device-mapper-multipath-0.8.7-12.el9_1.1.aarch64.rpm device-mapper-multipath-libs-0.8.7-12.el9_1.1.aarch64.rpm kpartx-0.8.7-12.el9_1.1.aarch64.rpm device-mapper-multipath-devel-0.8.7-12.el9_1.1.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol9/SRPMS-updates/device-mapper-multipath-0.8.7-12.el9_1.1.src.rpm Related CVEs: CVE-2022-3787 Description of changes: [0.8.7-12.1] - Add 0062-multipathd-ignore-duplicated-multipathd-command-keys.patch - Resolves: bz #2133998 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . CentOS Server Security Notice CESA-2022-7524 outlines important updates for kernel and associated components.. Oracle Linux Security, Device Mapper Security, Linux Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 24, 2022 Critical Oracle
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisorysoftware updatesecurity fix

Oracle Linux 8 ELSA-2022-7928 Urgent: Device Mapper Multipath Patch

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-7928 https://linux.oracle.com/errata/ELSA-2022-7928.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: device-mapper-multipath-0.8.4-28.el8_7.1.x86_64.rpm device-mapper-multipath-libs-0.8.4-28.el8_7.1.i686.rpm device-mapper-multipath-libs-0.8.4-28.el8_7.1.x86_64.rpm kpartx-0.8.4-28.el8_7.1.x86_64.rpm libdmmp-0.8.4-28.el8_7.1.i686.rpm libdmmp-0.8.4-28.el8_7.1.x86_64.rpm device-mapper-multipath-devel-0.8.4-28.el8_7.1.i686.rpm device-mapper-multipath-devel-0.8.4-28.el8_7.1.x86_64.rpm aarch64: device-mapper-multipath-0.8.4-28.el8_7.1.aarch64.rpm device-mapper-multipath-libs-0.8.4-28.el8_7.1.aarch64.rpm kpartx-0.8.4-28.el8_7.1.aarch64.rpm libdmmp-0.8.4-28.el8_7.1.aarch64.rpm device-mapper-multipath-devel-0.8.4-28.el8_7.1.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates/device-mapper-multipath-0.8.4-28.el8_7.1.src.rpm Related CVEs: CVE-2022-3787 Description of changes: [0.8.4-28.1] - Add 0111-multipathd-ignore-duplicated-multipathd-command-keys.patch - Resolves: bz #2133995 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux Security Announcement ELSA-2022-7928 provides critical enhancements for the device-mapper-multipath component, addressing various security vulnerabilities.. Oracle Linux Updates, Device Mapper, Multipath Security, Security Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 24, 2022 Important Oracle
Banner 3 1028x280 1708121785 1771599793
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisorysecurity issuecritical

Oracle7: ELSA-2022-7186 Critical Update: Device-Mapper-Multipath

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-7186 https://linux.oracle.com/errata/ELSA-2022-7186.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: aarch64: device-mapper-multipath-0.4.9-136.0.1.el7_9.aarch64.rpm device-mapper-multipath-libs-0.4.9-136.0.1.el7_9.aarch64.rpm kpartx-0.4.9-136.0.1.el7_9.aarch64.rpm device-mapper-multipath-devel-0.4.9-136.0.1.el7_9.aarch64.rpm device-mapper-multipath-sysvinit-0.4.9-136.0.1.el7_9.aarch64.rpm libdmmp-0.4.9-136.0.1.el7_9.aarch64.rpm libdmmp-devel-0.4.9-136.0.1.el7_9.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates/device-mapper-multipath-0.4.9-136.0.1.el7_9.src.rpm Related CVEs: CVE-2022-41974 Description of changes: [0.4.9-136.0.1] - mpathpersist: Fix Register and Ignore with 0x00 SARK [Orabug: 32696195] - mpathpersist: update prkeys file on changing registrations [Orabug: 32696195] - Keep upstream patch 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch * fix segfault with disable_changed_wwids for orabug 29469903 (This email address is being protected from spambots. You need JavaScript enabled to view it.) [0.4.9-136] - Add 0274-UP-no-duplicate-command-keys.patch - Resolves: bz #2134905 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . The recent Oracle Linux patch ELSA-2022-7186 concerning device-mapper-multipath resolves significant security vulnerabilities.. Oracle Linux Update, Device Mapper, Security Patch, Multipath. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 27, 2022 Critical Oracle
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisorysecurity issuecritical update

Oracle Linux 9 ELSA-2022-7185 Critical: Device-Mapper Multipath Update

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-7185 https://linux.oracle.com/errata/ELSA-2022-7185.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: device-mapper-multipath-0.8.7-7.el9_0.1.x86_64.rpm device-mapper-multipath-libs-0.8.7-7.el9_0.1.i686.rpm device-mapper-multipath-libs-0.8.7-7.el9_0.1.x86_64.rpm kpartx-0.8.7-7.el9_0.1.x86_64.rpm device-mapper-multipath-devel-0.8.7-7.el9_0.1.i686.rpm device-mapper-multipath-devel-0.8.7-7.el9_0.1.x86_64.rpm aarch64: device-mapper-multipath-0.8.7-7.el9_0.1.aarch64.rpm device-mapper-multipath-libs-0.8.7-7.el9_0.1.aarch64.rpm kpartx-0.8.7-7.el9_0.1.aarch64.rpm device-mapper-multipath-devel-0.8.7-7.el9_0.1.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol9/SRPMS-updates/device-mapper-multipath-0.8.7-7.el9_0.1.src.rpm Related CVEs: CVE-2022-41974 Description of changes: [0.8.7-7.1] - Add 0044-multipathd-ignore-duplicated-multipathd-command-keys.patch - Resolves: bz #2133997 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux 9 has implemented essential security enhancements for the device-mapper multipath module, resolving significant vulnerabilities. Discover further details here.. Oracle Linux, Device Mapper, Security Advisory, Important Update. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 26, 2022 Critical Oracle
Banner 3 1028x280 1708121785 1771599793
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisorycritical patchOracle Linux

Oracle Linux 8 ELSA-2022-7192 Critical: Device Mapper Multipath Update

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-7192 https://linux.oracle.com/errata/ELSA-2022-7192.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: device-mapper-multipath-0.8.4-22.el8_6.2.x86_64.rpm device-mapper-multipath-libs-0.8.4-22.el8_6.2.i686.rpm device-mapper-multipath-libs-0.8.4-22.el8_6.2.x86_64.rpm kpartx-0.8.4-22.el8_6.2.x86_64.rpm libdmmp-0.8.4-22.el8_6.2.i686.rpm libdmmp-0.8.4-22.el8_6.2.x86_64.rpm device-mapper-multipath-devel-0.8.4-22.el8_6.2.i686.rpm device-mapper-multipath-devel-0.8.4-22.el8_6.2.x86_64.rpm aarch64: device-mapper-multipath-0.8.4-22.el8_6.2.aarch64.rpm device-mapper-multipath-libs-0.8.4-22.el8_6.2.aarch64.rpm kpartx-0.8.4-22.el8_6.2.aarch64.rpm libdmmp-0.8.4-22.el8_6.2.aarch64.rpm device-mapper-multipath-devel-0.8.4-22.el8_6.2.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates/device-mapper-multipath-0.8.4-22.el8_6.2.src.rpm Related CVEs: CVE-2022-41974 Description of changes: [0.8.4-22.2] - Add 0092-multipathd-ignore-duplicated-multipathd-command-keys.patch - Resolves: bz #2133994 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . An important security update for Oracle Linux 8 addresses device-mapper-multipath issues with critical patches available.. Oracle Linux Security Advisory, Device Mapper Update, Security Patches. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 26, 2022 Critical Oracle
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hatsystem integrity

Red Hat Enterprise Linux 7: RHSA-2022:7186 Important: Authorization Bypass

An update for device-mapper-multipath is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: device-mapper-multipath security update Advisory ID: RHSA-2022:7186-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:7186 Issue date: 2022-10-25 CVE Names: CVE-2022-41974 ==================================================================== 1. Summary: An update for device-mapper-multipath is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The device-mapper-multipath packages provide tools that use the device-mapper multipath kernel module to manage multipath devices. Security Fix(es): * device-mapper-multipath: Authorization bypass, multipathd daemon listens for client connections on an abstract Unix socket (CVE-2022-41974) For more details about the security issue(s), including the impact, a CVSS score,acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2133988 - CVE-2022-41974 device-mapper-multipath: Authorization bypass, multipathd daemon listens for client connections on an abstract Unix socket 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: device-mapper-multipath-0.4.9-136.el7_9.src.rpm x86_64: device-mapper-multipath-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.x86_64.rpm kpartx-0.4.9-136.el7_9.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-sysvinit-0.4.9-136.el7_9.x86_64.rpm libdmmp-0.4.9-136.el7_9.i686.rpm libdmmp-0.4.9-136.el7_9.x86_64.rpm libdmmp-devel-0.4.9-136.el7_9.i686.rpm libdmmp-devel-0.4.9-136.el7_9.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: device-mapper-multipath-0.4.9-136.el7_9.src.rpm x86_64: device-mapper-multipath-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.x86_64.rpm kpartx-0.4.9-136.el7_9.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v.7): x86_64: device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-sysvinit-0.4.9-136.el7_9.x86_64.rpm libdmmp-0.4.9-136.el7_9.i686.rpm libdmmp-0.4.9-136.el7_9.x86_64.rpm libdmmp-devel-0.4.9-136.el7_9.i686.rpm libdmmp-devel-0.4.9-136.el7_9.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: device-mapper-multipath-0.4.9-136.el7_9.src.rpm ppc64: device-mapper-multipath-0.4.9-136.el7_9.ppc64.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.ppc.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.ppc64.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.ppc.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.ppc64.rpm kpartx-0.4.9-136.el7_9.ppc64.rpm ppc64le: device-mapper-multipath-0.4.9-136.el7_9.ppc64le.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.ppc64le.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.ppc64le.rpm kpartx-0.4.9-136.el7_9.ppc64le.rpm s390x: device-mapper-multipath-0.4.9-136.el7_9.s390x.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.s390.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.s390x.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.s390.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.s390x.rpm kpartx-0.4.9-136.el7_9.s390x.rpm x86_64: device-mapper-multipath-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.x86_64.rpm kpartx-0.4.9-136.el7_9.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.7): ppc64: device-mapper-multipath-debuginfo-0.4.9-136.el7_9.ppc.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.ppc64.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.ppc.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.ppc64.rpm device-mapper-multipath-sysvinit-0.4.9-136.el7_9.ppc64.rpm libdmmp-0.4.9-136.el7_9.ppc.rpm libdmmp-0.4.9-136.el7_9.ppc64.rpm libdmmp-devel-0.4.9-136.el7_9.ppc.rpm libdmmp-devel-0.4.9-136.el7_9.ppc64.rpm ppc64le: device-mapper-multipath-debuginfo-0.4.9-136.el7_9.ppc64le.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.ppc64le.rpm device-mapper-multipath-sysvinit-0.4.9-136.el7_9.ppc64le.rpm libdmmp-0.4.9-136.el7_9.ppc64le.rpm libdmmp-devel-0.4.9-136.el7_9.ppc64le.rpm s390x: device-mapper-multipath-debuginfo-0.4.9-136.el7_9.s390.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.s390x.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.s390.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.s390x.rpm device-mapper-multipath-sysvinit-0.4.9-136.el7_9.s390x.rpm libdmmp-0.4.9-136.el7_9.s390.rpm libdmmp-0.4.9-136.el7_9.s390x.rpm libdmmp-devel-0.4.9-136.el7_9.s390.rpm libdmmp-devel-0.4.9-136.el7_9.s390x.rpm x86_64: device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-sysvinit-0.4.9-136.el7_9.x86_64.rpm libdmmp-0.4.9-136.el7_9.i686.rpm libdmmp-0.4.9-136.el7_9.x86_64.rpm libdmmp-devel-0.4.9-136.el7_9.i686.rpm libdmmp-devel-0.4.9-136.el7_9.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: device-mapper-multipath-0.4.9-136.el7_9.src.rpm x86_64: device-mapper-multipath-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-libs-0.4.9-136.el7_9.x86_64.rpm kpartx-0.4.9-136.el7_9.x86_64.rpm Red HatEnterprise Linux Workstation Optional (v. 7): x86_64: device-mapper-multipath-debuginfo-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-debuginfo-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.i686.rpm device-mapper-multipath-devel-0.4.9-136.el7_9.x86_64.rpm device-mapper-multipath-sysvinit-0.4.9-136.el7_9.x86_64.rpm libdmmp-0.4.9-136.el7_9.i686.rpm libdmmp-0.4.9-136.el7_9.x86_64.rpm libdmmp-devel-0.4.9-136.el7_9.i686.rpm libdmmp-devel-0.4.9-136.el7_9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-41974 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY1gpG9zjgjWX9erEAQgMzQ//Q/iLVKSzeXypnL500ie7uo9YyHTlaeIt wu7iWluFzMRtEVgO9EUC23D6Ts31WTtpF96DPdp3O0wfKtZaAgGnyieQ9Krj8hsW 6QpKBNm77p/IkOH9VtQD8CxJujQDbm2UAxL82N7tJooq8rXHhXrbt6qY6v0eZwx3 WJcoOMjBeU6BCEQqTRuiPxcZxhWllWVZtmCE7wdxiGMktRKswb5YFMdbJh+JbwHT fHDbPAU+MBm4htDC+7U2et3SKjsZPhjPb89F6O3kKw6hrVj/dVpbcO1MzMQ3EKOu ZKLb/UBmlgQvuzjzK+W/dh3yeRgJMyFTG57+79eEkMZTCR+q3sAAp+AqREQR8Zeg LNxrVHjScknMY2reBGa0BGMkna6D/jsYcCJjijpf1qi987NIZLcotHRPBIqNvXoL BtAlXCVVb3J1cvPXRrkVQLs8kN2NLpw8WC6TEYAhL2EZs68iPVHbvJz1NoCENNfa 06FkN0L89UDhBa3JQkb36qvv3IVGBIgKQRBCJwMQX9WXvbR2RWCnE5IIP4+H5jW2 l9QV3QYK6jqucGSqinAXOKpbzr+aUXd5wNdKJOhR3GFIO+SPc/kWrLJPbxomZAaU 2XA599Gp03n1k6rd1L3BYpAGzcR28M9LqU5KKpbrjFvxi+kkGx/p2uVgYyigd6ar dihUETdfe2w=J3Nl -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The significant update to device-mapper-multipath by Red Hat tackles a critical authorization bypass vulnerability within the Linux system.. Red Hat Security, Device Mapper, Linux Update, Authorization Bypass, SecurityImpact. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 25, 2022 Important Red Hat
Banner 3 1028x280 1708121785 1771599793
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatered hat

Red Hat: RHSA-2009-0411 Moderate: Device-Mapper-Multipath Access Issue

Updated device-mapper-multipath packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: device-mapper-multipath security update Advisory ID: RHSA-2009:0411-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2009:0411.html Issue date: 2009-04-07 CVE Names: CVE-2009-0115 ==================================================================== 1. Summary: Updated device-mapper-multipath packages that fix a security issue are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Description: The device-mapper multipath packages provide tools to manage multipath devices by issuing instructions to the device-mapper multipath kernel module, and by managing the creation and removal of partitions for device-mapper devices. It was discovered that the multipathd daemon set incorrect permissions on the socket used to communicate with command line clients. An unprivileged, local user could use this flaw to send commands to multipathd, resulting in access disruptions to storage devices accessible via multiple paths and, possibly, file system corruption on these devices. (CVE-2009-0115) Users ofdevice-mapper-multipath are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue. The multipathd service must be restarted for the changes to take effect. Important: the version of the multipathd daemon in Red Hat Enterprise Linux 5 has a known issue which may cause a machine to become unresponsive when the multipathd service is stopped. This issue is tracked in the Bugzilla bug #494582; a link is provided in the References section of this erratum. Until this issue is resolved, we recommend restarting the multipathd service by issuing the following commands in sequence: # killall -KILL multipathd # service multipathd restart 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 493330 - CVE-2009-0115 device-mapper-multipath: insecure permissions on multipathd.sock 6. Package List: Red Hat Enterprise Linux AS version 4: Source: i386: device-mapper-multipath-0.4.5-31.el4_7.1.i386.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.i386.rpm ia64: device-mapper-multipath-0.4.5-31.el4_7.1.ia64.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.ia64.rpm ppc: device-mapper-multipath-0.4.5-31.el4_7.1.ppc.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.ppc.rpm s390: device-mapper-multipath-0.4.5-31.el4_7.1.s390.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.s390.rpm s390x: device-mapper-multipath-0.4.5-31.el4_7.1.s390x.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.s390x.rpm x86_64: device-mapper-multipath-0.4.5-31.el4_7.1.x86_64.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.x86_64.rpm Red Hat Enterprise Linux Desktop version4: Source: i386: device-mapper-multipath-0.4.5-31.el4_7.1.i386.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.i386.rpm x86_64: device-mapper-multipath-0.4.5-31.el4_7.1.x86_64.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.x86_64.rpm Red Hat Enterprise Linux ES version 4: Source: i386: device-mapper-multipath-0.4.5-31.el4_7.1.i386.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.i386.rpm ia64: device-mapper-multipath-0.4.5-31.el4_7.1.ia64.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.ia64.rpm x86_64: device-mapper-multipath-0.4.5-31.el4_7.1.x86_64.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.x86_64.rpm Red Hat Enterprise Linux WS version 4: Source: i386: device-mapper-multipath-0.4.5-31.el4_7.1.i386.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.i386.rpm ia64: device-mapper-multipath-0.4.5-31.el4_7.1.ia64.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.ia64.rpm x86_64: device-mapper-multipath-0.4.5-31.el4_7.1.x86_64.rpm device-mapper-multipath-debuginfo-0.4.5-31.el4_7.1.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: device-mapper-multipath-0.4.7-23.el5_3.2.i386.rpm device-mapper-multipath-debuginfo-0.4.7-23.el5_3.2.i386.rpm kpartx-0.4.7-23.el5_3.2.i386.rpm x86_64: device-mapper-multipath-0.4.7-23.el5_3.2.x86_64.rpm device-mapper-multipath-debuginfo-0.4.7-23.el5_3.2.x86_64.rpm kpartx-0.4.7-23.el5_3.2.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: i386: device-mapper-multipath-0.4.7-23.el5_3.2.i386.rpm device-mapper-multipath-debuginfo-0.4.7-23.el5_3.2.i386.rpm kpartx-0.4.7-23.el5_3.2.i386.rpm ia64: device-mapper-multipath-0.4.7-23.el5_3.2.ia64.rpm device-mapper-multipath-debuginfo-0.4.7-23.el5_3.2.ia64.rpm kpartx-0.4.7-23.el5_3.2.ia64.rpm ppc: device-mapper-multipath-0.4.7-23.el5_3.2.ppc.rpm device-mapper-multipath-debuginfo-0.4.7-23.el5_3.2.ppc.rpm kpartx-0.4.7-23.el5_3.2.ppc.rpm s390x: device-mapper-multipath-0.4.7-23.el5_3.2.s390x.rpm device-mapper-multipath-debuginfo-0.4.7-23.el5_3.2.s390x.rpm kpartx-0.4.7-23.el5_3.2.s390x.rpm x86_64: device-mapper-multipath-0.4.7-23.el5_3.2.x86_64.rpm device-mapper-multipath-debuginfo-0.4.7-23.el5_3.2.x86_64.rpm kpartx-0.4.7-23.el5_3.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2009-0115 https://access.redhat.com/security/updates/classification#moderate https://bugzilla.redhat.com/show_bug.cgi?id=494582 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2009 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFJ26TjXlSAg2UNWIIRAnW7AJ4tUnBrI4MY67KDkm1s/8otbCkBIgCeIG5L k0Qd+xIu8PF3oLGHw61yKbE=AdN9 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A significant security patch resolves socket access concerns in device-mapper-multipath for CentOS Stream.. device-mapper,multipath,security,red hat. . LinuxSecurity.com Team

Calendar 2 Apr 07, 2009 Red Hat
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here