Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
217
security advisorymemory leakkernelOracle6: ELSA-2025-20007 critical: kernel memory leak fix
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2025-20007 http://linux.oracle.com/errata/ELSA-2025-20007.html The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-doc-4.1.12-124.93.1.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-124.93.1.el6uek.noarch.rpm kernel-uek-4.1.12-124.93.1.el6uek.x86_64.rpm kernel-uek-devel-4.1.12-124.93.1.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-124.93.1.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.93.1.el6uek.x86_64.rpm Related CVEs: CVE-2024-26840 Description of changes: [4.1.12-124.93.1.el6uek] - cachefiles: fix memory leak in cachefiles_add_cache() (Baokun Li) [Orabug: 36544657] {CVE-2024-26840} _______________________________________________ El-errata mailing list
Jan 11, 2025
•Critical
Oracle
217
security advisorycritical issuekernel updateOracle Linux 6 ELSA-2023-1822 Important: Kernel Update for Critical Issues
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-1822 https://linux.oracle.com/errata/ELSA-2023-1822.html The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: kernel-2.6.32-754.35.1.0.10.el6.i686.rpm kernel-debug-2.6.32-754.35.1.0.10.el6.i686.rpm kernel-debug-devel-2.6.32-754.35.1.0.10.el6.i686.rpm kernel-devel-2.6.32-754.35.1.0.10.el6.i686.rpm kernel-headers-2.6.32-754.35.1.0.10.el6.i686.rpm perf-2.6.32-754.35.1.0.10.el6.i686.rpm python-perf-2.6.32-754.35.1.0.10.el6.i686.rpm kernel-abi-whitelists-2.6.32-754.35.1.0.10.el6.noarch.rpm kernel-doc-2.6.32-754.35.1.0.10.el6.noarch.rpm kernel-firmware-2.6.32-754.35.1.0.10.el6.noarch.rpm x86_64: kernel-2.6.32-754.35.1.0.10.el6.x86_64.rpm kernel-debug-2.6.32-754.35.1.0.10.el6.x86_64.rpm kernel-debug-devel-2.6.32-754.35.1.0.10.el6.x86_64.rpm kernel-devel-2.6.32-754.35.1.0.10.el6.x86_64.rpm kernel-headers-2.6.32-754.35.1.0.10.el6.x86_64.rpm perf-2.6.32-754.35.1.0.10.el6.x86_64.rpm python-perf-2.6.32-754.35.1.0.10.el6.x86_64.rpm kernel-abi-whitelists-2.6.32-754.35.1.0.10.el6.noarch.rpm kernel-doc-2.6.32-754.35.1.0.10.el6.noarch.rpm kernel-firmware-2.6.32-754.35.1.0.10.el6.noarch.rpm kernel-debug-devel-2.6.32-754.35.1.0.10.el6.i686.rpm Related CVEs: CVE-2022-4378 Description of changes: [2.6.32-754.35.1.0.10.el6.OL6] - proc: proc_skip_spaces() shouldn't think it is working on C strings (Linus Torvalds) {CVE-2022-4378} [Orabug: 35304147] - proc: avoid integer type confusion in get_proc_long (Linus Torvalds) {CVE-2022-4378} [Orabug: 35304147] _______________________________________________ El-errata mailing list
Aug 24, 2023
•Important
Oracle
217
security advisorykernel updatesecurity fixOracle Linux 6 ELSA-2023-12232 Moderate Kernel Update Advisory
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-12232 https://linux.oracle.com/errata/ELSA-2023-12232.html The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-doc-4.1.12-124.73.2.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-124.73.2.el6uek.noarch.rpm kernel-uek-4.1.12-124.73.2.el6uek.x86_64.rpm kernel-uek-devel-4.1.12-124.73.2.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-124.73.2.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.73.2.el6uek.x86_64.rpm Related CVEs: CVE-2023-0394 CVE-2019-5489 CVE-2020-0404 CVE-2023-1073 CVE-2023-1074 CVE-2023-1095 Description of changes: [4.1.12-124.73.2.el6uek] - netfilter: nf_tables: fix null deref due to zeroed list head (Florian Westphal) [Orabug: 35181628] {CVE-2023-1095} - sctp: fail if no bound addresses can be used for a given scope (Marcelo Ricardo Leitner) [Orabug: 35181461] {CVE-2023-1074} - HID: check empty report_list in hid_validate_values() (Pietro Borrello) [Orabug: 35181168] {CVE-2023-1073} - media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors (Will Deacon) [Orabug: 35180270] {CVE-2020-0404} [4.1.12-124.73.1.el6uek] - mm/mincore.c: make mincore() more conservative (Jiri Kosina) [Orabug: 35133279] {CVE-2019-5489} - mm: introduce vma_is_anonymous(vma) helper (Oleg Nesterov) [Orabug: 35133279] - Revert "Change mincore() to count "mapped" pages rather than "cached" pages" (Linus Torvalds) [Orabug: 35124616] - ipv6: raw: Deduct extension header length in rawv6_push_pending_frames (Herbert Xu) [Orabug: 35005831] {CVE-2023-0394} _______________________________________________ El-errata mailing list
Apr 04, 2023
•Important
Oracle
217
security advisorykernel securitycritical updateOracle Linux 7 ELSA-2022-9375 High: Kernel Security Enhancement
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-9348 https://linux.oracle.com/errata/ELSA-2022-9348.html The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: x86_64: kernel-uek-doc-4.1.12-124.62.3.el6uek.noarch.rpm kernel-uek-firmware-4.1.12-124.62.3.el6uek.noarch.rpm kernel-uek-4.1.12-124.62.3.el6uek.x86_64.rpm kernel-uek-devel-4.1.12-124.62.3.el6uek.x86_64.rpm kernel-uek-debug-4.1.12-124.62.3.el6uek.x86_64.rpm kernel-uek-debug-devel-4.1.12-124.62.3.el6uek.x86_64.rpm Related CVEs: CVE-2021-0920 CVE-2021-3573 CVE-2021-4002 CVE-2021-4149 CVE-2021-4157 CVE-2021-4203 CVE-2021-45095 CVE-2021-45868 CVE-2022-0617 CVE-2022-1016 Description of changes: [4.1.12-124.62.3.el6uek] - fget: check that the fd still exists after getting a ref to it (Linus Torvalds) [Orabug: 33679806] {CVE-2021-0920} - fs: add fget_many() and fput_many() (Jens Axboe) [Orabug: 33679806] - af_unix: fix garbage collect vs MSG_PEEK (Miklos Szeredi) [Orabug: 33679806] {CVE-2021-0920} - net: split out functions related to registering inflight socket files (Jens Axboe) [Orabug: 33679806] [4.1.12-124.62.2.el6uek] - netfilter: nf_tables: initialize registers in nft_do_chain() (Pablo Neira Ayuso) [Orabug: 34012926] {CVE-2022-1016} - pNFS/flexfiles: fix incorrect size check in decode_nfs_fh() (Nikola Livic) [Orabug: 34020970] {CVE-2021-4157} [4.1.12-124.62.1.el6uek] - Bluetooth: use correct lock to prevent UAF of hdev object (Lin Ma) [Orabug: 33014054] {CVE-2021-3573} - hugetlbfs: flush TLBs correctly after huge_pmd_unshare (Nadav Amit) [Orabug: 33617221] {CVE-2021-4002} - udf: Restore i_lenAlloc when inode expansion fails (Jan Kara) [Orabug: 33870269] {CVE-2022-0617} - udf: Fix NULL ptr deref when converting from inline format (Jan Kara) [Orabug: 33870269] {CVE-2022-0617} - phonet: refcount leak in pep_sock_accep(Hangyu Hua) [Orabug: 33962762] {CVE-2021-45095} - btrfs: unlock newly allocated extent buffer after error (Qu Wenruo) [Orabug: 33997139] {CVE-2021-4149} - quota: correct error number in free_dqentry() (Zhang Yi) [Orabug: 33997256] {CVE-2021-45868} - quota: check block number when reading the block in quota file (Zhang Yi) [Orabug: 33997256] {CVE-2021-45868} - af_unix: fix races in sk_peer_pid and sk_peer_cred accesses (Eric Dumazet) [Orabug: 34006847] {CVE-2021-4203} _______________________________________________ El-errata mailing list
May 04, 2022
Oracle
217
security advisoryprivilege escalationlocal escalationOracle Linux 6 ELSA-2022-9073 Important: Local Privilege Escalation
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2022-9073 https://linux.oracle.com/errata/ELSA-2022-9073.html The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network: i386: polkit-0.96-11.0.1.el6_10.1.i686.rpm polkit-desktop-policy-0.96-11.0.1.el6_10.1.noarch.rpm polkit-devel-0.96-11.0.1.el6_10.1.i686.rpm polkit-docs-0.96-11.0.1.el6_10.1.i686.rpm x86_64: polkit-0.96-11.0.1.el6_10.1.i686.rpm polkit-0.96-11.0.1.el6_10.1.x86_64.rpm polkit-desktop-policy-0.96-11.0.1.el6_10.1.noarch.rpm polkit-devel-0.96-11.0.1.el6_10.1.i686.rpm polkit-devel-0.96-11.0.1.el6_10.1.x86_64.rpm polkit-docs-0.96-11.0.1.el6_10.1.x86_64.rpm Related CVEs: CVE-2021-4034 Description of changes: [0.96-11.0.1.el6_10.1] - pkexec: local privilege escalation [Orabug: 33789506][CVE-2021-4034] _______________________________________________ El-errata mailing list
Jan 28, 2022
•Important
Oracle
98
security advisoryRed Hat Enterprise LinuxLow severityRed Hat: RHSA-2013:1482-01 Low Impact: EL3 Support Retirement Alert
This is the 3-month notification for the retirement of Red Hat Enterprise Linux 3 Extended Lifecycle Support (ELS). 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (v. 3 ELS) - i386. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Low: Red Hat Enterprise Linux 3 Extended Lifecycle Support 3-month Notice Advisory ID: RHSA-2013:1482-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2013:1482.html Issue date: 2013-10-30 ==================================================================== 1. Summary: This is the 3-month notification for the retirement of Red Hat Enterprise Linux 3 Extended Lifecycle Support (ELS). 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (v. 3 ELS) - i386 Red Hat Enterprise Linux ES (v. 3 ELS) - i386 3. Description: In accordance with the Red Hat Enterprise Linux Errata Support Policy, Extended Lifecycle Support (ELS) for Red Hat Enterprise Linux 3 will be retired as of January 30, 2014, and support will no longer be provided. Accordingly, Red Hat will no longer provide updated packages, including critical impact security patches or urgent priority bug fixes, for Red Hat Enterprise Linux 3 ELS after that date. In addition, technical support through Red Hat's Global Support Services will no longer be provided after January 30, 2014. Note: This notification applies only to those customers subscribed to the Extended Lifecycle Support (ELS) channel for Red Hat Enterprise Linux 3. We encourage customers to plan their migration from Red Hat Enterprise Linux 3 to a more recent version of Red Hat Enterprise Linux 5 or 6. As a benefit of the Red Hat subscription model, customers can use their active subscriptions to entitle any system on a currently supported Red Hat Enterprise Linux 5 release or Red Hat Enterprise Linux 6 release. Details of the Red HatEnterprise Linux life cycle can be found here: https://access.redhat.com/support/policy/updates/errata 4. Solution: This erratum contains an updated redhat-release package, that provides a copy of this retirement notice in the "/usr/share/doc/" directory. 5. Package List: Red Hat Enterprise Linux AS (v. 3 ELS): Source: redhat-release-3AS-13.9.16.src.rpm i386: redhat-release-3AS-13.9.16.i386.rpm redhat-release-debuginfo-3AS-13.9.16.i386.rpm Red Hat Enterprise Linux ES (v. 3 ELS): Source: redhat-release-3ES-13.9.16.src.rpm i386: redhat-release-3ES-13.9.16.i386.rpm redhat-release-debuginfo-3ES-13.9.16.i386.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 6. References: https://access.redhat.com/security/updates/classification#low https://access.redhat.com/support/policy/updates/errata 7. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFScTVqXlSAg2UNWIIRAm6rAKCkTs/p15CIWHxwR7hvMSmRCggMKACaAhMr t9fiQCHQO9hTs6wSTXgKP/g=M7SY -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Oct 30, 2013
•Low
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!