Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 14 articles for you...
100
security advisorymoderateSuSESUSE: rabbitmq-server Moderate Logging Escalation Risk 2025:3809-1
* bsc#1245105 * bsc#1246091 Cross-References: * CVE-2025-50200 . # Security update for rabbitmq-server Announcement ID: SUSE-SU-2025:3809-1 Release Date: 2025-10-27T13:11:35Z Rating: moderate References: * bsc#1245105 * bsc#1246091 Cross-References: * CVE-2025-50200 CVSS scores: * CVE-2025-50200 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-50200 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-50200 ( NVD ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-50200 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for rabbitmq-server fixes the following issues: * CVE-2025-50200: prevented logging of Basic Auth header from HTTP requests (bsc#1245105) * fixed a bad logrotate configuration that allowed escalation from rabbitmq to root, /var/log/rabbitmq ownership is now 750 (bsc#1246091) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP7 zypper in -t patchSUSE-SLE-Module-Server-Applications-15-SP7-2025-3809=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-3809=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3809=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-3809=1 ## Package List: * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * rabbitmq-server-plugins-3.8.11-150300.3.22.2 * erlang-rabbitmq-client-3.8.11-150300.3.22.2 * rabbitmq-server-3.8.11-150300.3.22.2 ## References: * https://www.suse.com/security/cve/CVE-2025-50200.html * https://bugzilla.suse.com/show_bug.cgi?id=1245105 * https://bugzilla.suse.com/show_bug.cgi?id=1246091 . Security update for rabbitmq-server addresses logging issues and escalation risks in SUSE distributions. Update now!. SUSE Linux rabbitmq-server security update. . LinuxSecurity.com Team
Oct 27, 2025
SuSE
100
security advisorysecurity updatesecurity issueSUSE: 2024:1730-1 Important: Kernel Live Patch 47 Remote Exec Risks
* bsc#1210619 * bsc#1223514 Cross-References: * CVE-2022-48651 . # Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:1730-1 Rating: important References: * bsc#1210619 * bsc#1223514 Cross-References: * CVE-2022-48651 * CVE-2023-1829 CVSS scores: * CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1829 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves two vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_188 fixes several issues. The following security issues were fixed: * CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb-> mac_header (bsc#1223514). * CVE-2023-1829: Fixed a use-after-free in tcindex that can lead local privilege escalation (bsc#1210619). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-1730=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP2_Update_47-debugsource-2-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_188-default-2-150200.5.6.1 * kernel-livepatch-5_3_18-150200_24_188-default-debuginfo-2-150200.5.6.1 ## References: * https://www.suse.com/security/cve/CVE-2022-48651.html * https://www.suse.com/security/cve/CVE-2023-1829.html * https://bugzilla.suse.com/show_bug.cgi?id=1210619 *https://bugzilla.suse.com/show_bug.cgi?id=1223514 . Crucial security patches for the Linux Kernel tackling significant vulnerabilities in SUSE. Ensure your system’s safety with the newest updates.. SUSE Linux Kernel Update, Live Patching, Security Advisory, Privilege Escalation Fix. . Severity: Important. LinuxSecurity.com Team
May 21, 2024
•Important
SuSE
172
security advisorymoderatefile overwriteUbuntu: 6434-1 Moderate: PMIx File Overwrite And Escalation Risk
PMIx could be made to overwrite files.. ========================================================================== Ubuntu Security Notice USN-6434-1 October 17, 2023 pmix vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS (Available with Ubuntu Pro) - Ubuntu 20.04 LTS (Available with Ubuntu Pro) - Ubuntu 18.04 LTS (Available with Ubuntu Pro) Summary: PMIx could be made to overwrite files. Software Description: - pmix: Process Management Interface (Exascale) library - tools Details: Francois Diakhate discovered that PMIx did not properly handle race conditions in the pmix library, which could lead to unwanted privilege escalation. An attacker could possibly use this issue to obtain ownership of an arbitrary file on the filesystem, under the default configuration of the application. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS (Available with Ubuntu Pro): libpmix-bin 4.1.2-2ubuntu1+esm1 libpmix2 4.1.2-2ubuntu1+esm1 python3-pmix 4.1.2-2ubuntu1+esm1 Ubuntu 20.04 LTS (Available with Ubuntu Pro): libpmi1-pmix 3.1.5-1ubuntu0.1~esm1 libpmi2-pmix 3.1.5-1ubuntu0.1~esm1 libpmix2 3.1.5-1ubuntu0.1~esm1 Ubuntu 18.04 LTS (Available with Ubuntu Pro): libpmi1-pmix 2.1.1~rc1-1ubuntu0.1~esm1 libpmi2-pmix 2.1.1~rc1-1ubuntu0.1~esm1 libpmix2 2.1.1~rc1-1ubuntu0.1~esm1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6434-1 CVE-2023-41915 . A vulnerability in PMIx may allow for unintended file overwrites and potential escalation of privileges on Ubuntu platforms due toa race condition. Please ensure you update immediately.. PMIx, Ubuntu Security, File Overwrite, Escalation Risk, Update Instructions. . LinuxSecurity.com Team
Oct 18, 2023
Ubuntu
91
security advisoryhigh severitygentooGentoo Linux: GLSA-202210-27 High: Open-VM-Tools Local Escalation
A vulnerability has been discovered in open-vm-tools which could allow for local privilege escalation.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202210-27 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: open-vm-tools: Local Privilege Escalation Date: October 31, 2022 Bugs: #866227 ID: 202210-27 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= A vulnerability has been discovered in open-vm-tools which could allow for local privilege escalation. Background ========= open-vm-tools contains tools for VMware guests. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-emulation/open-vm-tools < 12.1.0 > = 12.1.0 Description ========== A pipe accessible to unprivileged users in the VMWare guest does not sufficiently sanitize input. Impact ===== An unprivileged guest user could achieve root privileges within the guest. Workaround ========= There is no known workaround at this time. Resolution ========= All open-vm-tools users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =app-emulation/open-vm-tools-12.1.0" References ========= [ 1 ] CVE-2022-31676 https://nvd.nist.gov/vuln/detail/CVE-2022-31676 [ 2 ] VMSA-2022-0024.1 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202210-27 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of ourusers' machines is of utmost importance to us. Any security concerns should be addressed to
Oct 30, 2022
Gentoo
98
security advisoryred hatbug fixRed Hat Enterprise Linux 8.4 RHSA-2022:1413-01 Critical Kernel-Rt Alert
An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel-rt security and bug fix update Advisory ID: RHSA-2022:1413-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:1413 Issue date: 2022-04-19 CVE Names: CVE-2021-4083 CVE-2022-0492 CVE-2022-25636 ==================================================================== 1. Summary: An update for kernel-rt is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Real Time EUS (v.8.4) - x86_64 Red Hat Enterprise Linux Real Time for NFV EUS (v.8.4) - x86_64 3. Description: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix(es): * kernel: fget: check that the fd still exists after getting a ref to it (CVE-2021-4083) * kernel: cgroups v1 release_agent feature may allow privilege escalation (CVE-2022-0492) * kernel: heap out of bounds write in nf_dup_netdev.c (CVE-2022-25636) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * kernel-rt: update RT source tree to the RHEL-8.4.z8 sourcetree (BZ#2059334) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2029923 - CVE-2021-4083 kernel: fget: check that the fd still exists after getting a ref to it 2051505 - CVE-2022-0492 kernel: cgroups v1 release_agent feature may allow privilege escalation 2056830 - CVE-2022-25636 kernel: heap out of bounds write in nf_dup_netdev.c 6. Package List: Red Hat Enterprise Linux Real Time for NFV EUS (v.8.4): Source: kernel-rt-4.18.0-305.45.1.rt7.117.el8_4.src.rpm x86_64: kernel-rt-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-core-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-core-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-devel-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-kvm-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-modules-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debuginfo-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-devel-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-kvm-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-modules-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-modules-extra-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm Red Hat Enterprise Linux Real Time EUS(v.8.4): Source: kernel-rt-4.18.0-305.45.1.rt7.117.el8_4.src.rpm x86_64: kernel-rt-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-core-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-core-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-devel-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-modules-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debuginfo-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-devel-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-modules-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm kernel-rt-modules-extra-4.18.0-305.45.1.rt7.117.el8_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-4083 https://access.redhat.com/security/cve/CVE-2022-0492 https://access.redhat.com/security/cve/CVE-2022-25636 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYl7uhdzjgjWX9erEAQi8YBAAkUdFptawoGEINw+0aLnAKXIUQiVFCOLE k1X+OM2CJBevwLdfCbqwSFLWgzZRzZoMio9ONvyfvCSU5b5oDoRdywUk37x0jtaR NtGAcFIgaZlRKU5onM7cL59n0Qo5So4S+eG9SUbDWWcht6DgKLcaVN+8d657vOK9 bggwA6QSGWQdRqHdaLf2rV9SYlflMHTcg2SEgU2aFXKmWZnnj9dDfIGgMwhu6eY5 BCCVdC/8/SkaKZW9i6sgmxYFAniL8opDx0C3mkd3a7LYx+RQfM9N3wTL8FubV2Do zdITckAwYdpTgIzlgP1tWoUUihaXz/WujkHHVuSCG6gTAIal0bHGfAngdEreBQPz xq7jM2Oa/t/eXpmCSfYstfQkFSK6W28sKxvR/oRbJMH08BH5cIvaQorpUsin28g3 IZ4lDOFvDqS1BfnKBaZ13p2dMYfqUL/Q+PLvL46NWZ2mAHNQjEBqIyn6vL5+o3QQ UBBY+TJflaYmP82rr/hFV6L4ewF0cJJ9Cth8HXxT1fABzFCb5uHRCnyTDhDxGzey SlyJU3tOUw1CBWkSoXdqyUF6iv9pnzkiOTMIwTCNUU3dVzSJwYASgpT9LwI2z9C5 Wyw6ckHw7b6FDfyVC+4ZPiPEwc+tmpFdUdugbX0kTFB+6GpEOewcDyg3QQg9ZV1/ vfctWBLq3kQ=zsvE -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Apr 19, 2022
•Important
Red Hat
87
security advisoryphpdebianDebian: DSA-4993-1 Moderate: PHP 7.3 Privilege Escalation Vulnerability
An out-of-bounds read and write flaw was discovered in the PHP-FPM code, which could result in escalation of privileges from local unprivileged user to the root user. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-4993-1
Oct 25, 2021
Debian
100
security advisoryprivilege escalationimportant updateSUSE: 2021:2433-1 Important Kernel Update for Privilege Escalation
An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2433-1 Rating: important References: #1187597 #1187687 Cross-References: CVE-2021-0512 CVE-2021-0605 CVSS scores: CVE-2021-0512 (SUSE): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-0605 (NVD) : 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N CVE-2021-0605 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server 12-SP3-LTSS ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for the Linux Kernel 4.4.180-94_130 fixes several issues. The following security issues were fixed: - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187687) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187597) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2021-2429=1 SUSE-SLE-SAP-12-SP3-2021-2430=1 SUSE-SLE-SAP-12-SP3-2021-2431=1 SUSE-SLE-SAP-12-SP3-2021-2432=1 SUSE-SLE-SAP-12-SP3-2021-2433=1 SUSE-SLE-SAP-12-SP3-2021-2434=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patchSUSE-SLE-SERVER-12-SP3-2021-2429=1 SUSE-SLE-SERVER-12-SP3-2021-2430=1 SUSE-SLE-SERVER-12-SP3-2021-2431=1 SUSE-SLE-SERVER-12-SP3-2021-2432=1 SUSE-SLE-SERVER-12-SP3-2021-2433=1 SUSE-SLE-SERVER-12-SP3-2021-2434=1 Package List: - SUSE Linux Enterprise Server for SAP 12-SP3 (ppc64le x86_64): kgraft-patch-4_4_180-94_127-default-12-2.2 kgraft-patch-4_4_180-94_127-default-debuginfo-12-2.2 kgraft-patch-4_4_180-94_130-default-11-2.2 kgraft-patch-4_4_180-94_130-default-debuginfo-11-2.2 kgraft-patch-4_4_180-94_135-default-9-2.2 kgraft-patch-4_4_180-94_135-default-debuginfo-9-2.2 kgraft-patch-4_4_180-94_138-default-7-2.2 kgraft-patch-4_4_180-94_138-default-debuginfo-7-2.2 kgraft-patch-4_4_180-94_141-default-6-2.2 kgraft-patch-4_4_180-94_141-default-debuginfo-6-2.2 kgraft-patch-4_4_180-94_144-default-3-2.1 kgraft-patch-4_4_180-94_144-default-debuginfo-3-2.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (ppc64le x86_64): kgraft-patch-4_4_180-94_127-default-12-2.2 kgraft-patch-4_4_180-94_127-default-debuginfo-12-2.2 kgraft-patch-4_4_180-94_130-default-11-2.2 kgraft-patch-4_4_180-94_130-default-debuginfo-11-2.2 kgraft-patch-4_4_180-94_135-default-9-2.2 kgraft-patch-4_4_180-94_135-default-debuginfo-9-2.2 kgraft-patch-4_4_180-94_138-default-7-2.2 kgraft-patch-4_4_180-94_138-default-debuginfo-7-2.2 kgraft-patch-4_4_180-94_141-default-6-2.2 kgraft-patch-4_4_180-94_141-default-debuginfo-6-2.2 kgraft-patch-4_4_180-94_144-default-3-2.1 kgraft-patch-4_4_180-94_144-default-debuginfo-3-2.1 References: https://www.suse.com/security/cve/CVE-2021-0512.html https://www.suse.com/security/cve/CVE-2021-0605.html https://bugzilla.suse.com/1187597 https://bugzilla.suse.com/1187687 . SUSE Linux Kernel Live Patch 37 for SLE 12 SP5 resolves vulnerabilities such as potential buffer overflow threats.. SUSE Linux Kernel, Security Update, Live Patch 35, Privilege Escalation, SystemSecurity. . Severity: Important. LinuxSecurity.com Team
Jul 21, 2021
•Important
SuSE
100
security advisorymemory corruptionkernel patchSUSE 12-SP3: 2021:2026-1 Critical: Linux Kernel Memory Bugs
An update that solves three vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2026-1 Rating: important References: #1176931 #1182294 #1186235 #1186285 Cross-References: CVE-2020-0429 CVE-2021-28688 CVE-2021-33034 CVSS scores: CVE-2020-0429 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-28688 (NVD) : 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2021-28688 (SUSE): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2021-33034 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-33034 (SUSE): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H Affected Products: SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server 12-SP3-LTSS ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for the Linux Kernel 4.4.180-94_144 fixes several issues. The following issues were fixed: - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values (bsc#1186111). - CVE-2021-28688: Fixed an issue introduced by XSA-365, leaving around zombie domains after xen guest has died (bsc#1183646). - CVE-2020-0429: In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with system execution privileges needed. (bsc#1176724). - Fixed a regression with the last livepatch which caused a kernel warning during sysfs read (bsc#1186235). PatchInstructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2021-2026=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2021-2026=1 Package List: - SUSE Linux Enterprise Server for SAP 12-SP3 (ppc64le x86_64): kgraft-patch-4_4_180-94_144-default-2-2.1 kgraft-patch-4_4_180-94_144-default-debuginfo-2-2.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (ppc64le x86_64): kgraft-patch-4_4_180-94_144-default-2-2.1 kgraft-patch-4_4_180-94_144-default-debuginfo-2-2.1 References: https://www.suse.com/security/cve/CVE-2020-0429.html https://www.suse.com/security/cve/CVE-2021-28688.html https://www.suse.com/security/cve/CVE-2021-33034.html https://bugzilla.suse.com/1176931 https://bugzilla.suse.com/1182294 https://bugzilla.suse.com/1186235 https://bugzilla.suse.com/1186285 . SUSE has released a critical update for the Linux Kernel addressing various vulnerabilities, such as memory corruption and user privilege escalation concerns.. SUSE Kernel Patch, Live Patch Security, Linux Kernel Update, Memory Issue Fixes, Kernel Escalation Risks. . Severity: Critical. LinuxSecurity.com Team
Jun 18, 2021
•Critical
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!