Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -5 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryupdatebug fix

Moderate Security Issues in Microcode_ctl for Red Hat Enterprise Linux 8.0

An update for microcode_ctl is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: microcode_ctl security, bug fix and enhancement update Advisory ID: RHSA-2020:2757-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2757 Issue date: 2020-06-29 CVE Names: CVE-2020-0543 CVE-2020-0548 CVE-2020-0549 ==================================================================== 1. Summary: An update for microcode_ctl is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS E4S (v. 8.0) - x86_64 3. Description: Security Fix(es): * hw: Special Register Buffer Data Sampling (SRBDS) (CVE-2020-0543) * hw: L1D Cache Eviction Sampling (CVE-2020-0549) * hw: Vector Register Data Sampling (CVE-2020-0548) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fixes: * Update Intel CPU microcode to microcode-20200609 release: - Addition of 06-4d-08/0x01 (AVN B0/C0) microcode at revision 0x12d; - Addition of 06-55-06/0xbf (CLX-SP B0) microcode at revision 0x4002f01; - Addition of 06-7a-08/0x01 (GLK R0) microcode at revision 0x16; - Update of 06-2d-06/0x6d (SNB-E/EN/EP C1/M0)microcode from revision 0x61f up to 0x621; - Update of 06-2d-07/0x6d (SNB-E/EN/EP C2/M1) microcode (in intel-06-2d-07/intel-ucode/06-2d-07) from revision 0x718 up to 0x71a; - Update of 06-3c-03/0x32 (HSW C0) microcode from revision 0x27 up to 0x28; - Update of 06-3d-04/0xc0 (BDW-U/Y E0/F0) microcode from revision 0x2e up to 0x2f; - Update of 06-45-01/0x72 (HSW-U C0/D0) microcode from revision 0x25 up to 0x26; - Update of 06-46-01/0x32 (HSW-H C0) microcode from revision 0x1b up to 0x1c; - Update of 06-47-01/0x22 (BDW-H/Xeon E3 E0/G0) microcode from revision 0x21 up to 0x22; - Update of 06-4e-03/0xc0 (SKL-U/Y D0) microcode from revision 0xd4 up to 0xdc; - Update of 06-55-03/0x97 (SKX-SP B1) microcode from revision 0x1000150 up to 0x1000157; - Update of 06-55-04/0xb7 (SKX-SP H0/M0/U0, SKX-D M1) microcode (in intel-06-55-04/intel-ucode/06-55-04) from revision 0x2000064 up to 0x2006906; - Update of 06-55-07/0xbf (CLX-SP B1) microcode from revision 0x500002b up to 0x5002f01; - Update of 06-5e-03/0x36 (SKL-H/S R0/N0) microcode from revision 0xd4 up to 0xdc; - Update of 06-7a-01/0x01 (GLK B0) microcode from revision 0x2e up to 0x32; - Update of 06-7e-05/0x80 (ICL-U/Y D1) microcode from revision 0x46 up to 0x78; - Update of 06-8e-09/0x10 (AML-Y22 H0) microcode from revision 0xc6 up to 0xd6; - Update of 06-8e-09/0xc0 (KBL-U/Y H0) microcode from revision 0xc6 up to 0xd6; - Update of 06-8e-0a/0xc0 (CFL-U43e D0) microcode from revision 0xc6 up to 0xd6; - Update of 06-8e-0b/0xd0 (WHL-U W0) microcode from revision 0xc6 up to 0xd6; - Update of 06-8e-0c/0x94 (AML-Y42 V0, CML-Y42 V0, WHL-U V0) microcode from revision 0xc6 up to 0xd6; - Update of 06-9e-09/0x2a (KBL-G/H/S/X/Xeon E3 B0) microcode from revision 0xc6 up to 0xd6; - Update of 06-9e-0a/0x22 (CFL-H/S/Xeon E3 U0) microcode from revision 0xc6 up to 0xd6; - Update of 06-9e-0b/0x02 (CFL-S B0) microcode from revision 0xc6 up to 0xd6; - Update of 06-9e-0c/0x22(CFL-H/S P0) microcode from revision 0xae up to 0xd6; - Update of 06-9e-0d/0x22 (CFL-H R0) microcode from revision 0xc6 up to 0xd6. - Update of 06-a6-00/0x80 (CML-U 6+2 A0) from revision 0xc6 up to 0xca. * Do not update 06-4e-03 (SKL-U/Y) and 06-5e-03 (SKL-H/S/Xeon E3 v5) to revision 0xdc, use 0xd6 by default. * Enable 06-2d-07 (SNB-E/EN/EP) caveat by default. * Add 06-55-04 (SKL-X/W) caveat, enable it by default. * Update stale posttrans dependency, add triggers for proper handling of the debug kernel flavour along with kernel-rt. * Avoid find being SIGPIPE'd on early "grep -q" exit in the dracut script. * Re-generate initramfs not only for the currently running kernel, but for several recently installed kernels as well. * Change the URL to point to the GitHub repository since the microcode download section at Intel Download Center does not exist anymore. * Avoid temporary file creation, used for here-documents in check_caveats. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1788786 - CVE-2020-0548 hw: Vector Register Data Sampling 1788788 - CVE-2020-0549 hw: L1D Cache Eviction Sampling 1827165 - CVE-2020-0543 hw: Special Register Buffer Data Sampling (SRBDS) 1848438 - [rhel-8.0.0] skylake (06-4e-03) microcode update hangs 1848501 - [rhel-8.0.0] Package microcode-20200609 release 6. Package List: Red Hat Enterprise Linux BaseOS E4S (v. 8.0): Source: microcode_ctl-20180807a-2.20200609.1.el8_0.src.rpm x86_64: microcode_ctl-20180807a-2.20200609.1.el8_0.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2020-0543 https://access.redhat.com/security/cve/CVE-2020-0548 https://access.redhat.com/security/cve/CVE-2020-0549 https://access.redhat.com/security/updates/classification#moderate https://access.redhat.com/solutions/5142691 https://access.redhat.com/solutions/l1d-cache-eviction-and-vector-register-sampling 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXvmchtzjgjWX9erEAQhpSg/+ID0RjbWf8T2Y73wrULmADARhxV4taH3B AS27Psqo6eBLEDyCFWFdARN+yWJT551sN4LHHqc4ixa0fCVtAbk7ZeugNOqtHIgx nhwmr/T9/TQi+AjvNhcQWnExOnDLPb+xyqQtQl4+nDHMljnxPuxzeu7yKigXgRX1 szUP0PdzC8uzJvZZ+IplGBPcgiEUdnTFMBbbdttaDzzdCeBy5J+myzQ6wdBJBTgM 03nWspMPWObgFwm1QBoBphTkL21X+vUSTy116TwAgCp1laZ0cd3giG/dEKzzGFKQ ZOvcmnDKRN5WNNJBlb4CnJBkU4MRV6WC4iEU+ur4EIsMnJmTcjTj/oH6bltjVbur eD05wgeejS7gUBdIMNpr158QkMTgORyfOk3EesNlDdG4gpKoUG+Ckfs0KhcjFM+z LHlk8PAM0GjcUKDYlZ+07mOi8e0yHFAG9KQOOwBWDNTXJ7U++UcxvrGFAbNatnnJ OfTm6C3dUbsTzeebyTvM1kHqcYexD9CYLMI2A0nsifDzLjqwqj3xYqMDqKFTcsx/ 3SLUhXC6isrmNJeWvxUU4/VFUPhddAfE3Q1zJBzM4oDCcGdVvq+7KEFzxj1rVydX xU5XRD4M8YWFmhMJxH+dH5mgsErdGT80Rw5fgv21oPbNpsqrsvZUHg83Nd+IqjEu D/8HdxJn3Pw=D815 -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Significant update from Red Hat regarding microcode_ctl addresses various security vulnerabilities and improves functionality. Discover further details here!. microcode_ctl, Red Hat update, security impact, moderate severity, enterprise solutions. . LinuxSecurity.com Team

Calendar 2 Jun 29, 2020 Red Hat
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedorakernel update

Fedora 29: FEDORA-2019-7a3fc17778 Critical: Kernel Update for Security

The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12. ---- The 5.3.9 update contains a number of important fixes across the tree ---- Update to upstream 2.1-22. 20190618. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-7a3fc17778 2019-11-13 06:47:08.913545 --------------------------------------------------------------------------------Name : kernel-headers Product : Fedora 29 Version : 5.3.11 Release : 100.fc29 URL : https://www.kernel.org/ Summary : Header files for the Linux kernel for use by glibc Description : Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. --------------------------------------------------------------------------------Update Information: The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12. ---- The 5.3.9 update contains a number of important fixes across the tree ---- Update to upstream 2.1-22. 20190618 --------------------------------------------------------------------------------ChangeLog: * Tue Nov 12 2019 Justin M. Forbes - 5.3.11-100 - Linux v5.3.11 * Mon Oct 14 2019 Laura Abbott - 5.3.6-100 - Linux v5.3.6 * Tue Oct 8 2019 Justin M. Forbes - 5.2.20-100 - Linux v5.2.20 * Tue Oct 1 2019 Justin M. Forbes - 5.2.18-100 - Linux v5.2.18 * Mon Sep 23 2019 Justin M. Forbes - 5.2.17-100 - Linux v5.2.17 * Thu Sep 19 2019 Justin M. Forbes - 5.2.16-100 - Linux v5.2.16 * Mon Sep 16 2019 Justin M. Forbes - 5.2.15-100 - Linux v5.2.15 * Tue Sep 10 2019 Justin M.Forbes - 5.2.14-100 - Linux v5.2.14 * Fri Sep 6 2019 Justin M. Forbes - 5.2.13-100 - Linux v5.2.13 * Thu Aug 29 2019 Justin M. Forbes - 5.2.11-100 - Linux v5.2.11 * Mon Aug 26 2019 Justin M. Forbes - 5.2.10-100 - Linux v5.2.10 * Fri Aug 16 2019 Justin M. Forbes - 5.2.9-100 - Linux v5.2.9 * Sat Aug 10 2019 Justin M. Forbes - 5.2.8-100 - Linux v5.2.8 * Thu Aug 8 2019 Justin M. Forbes - 5.2.7-100 - Linux v5.2.7 * Mon Aug 5 2019 Justin M. Forbes - 5.2.6-100 - Linux v5.2.6 * Mon Jul 29 2019 Jeremy Cline - 5.1.21-200 - Linux v5.1.21 * Fri Jul 26 2019 Jeremy Cline - 5.1.20-200 - Linux v5.1.20 * Mon Jul 22 2019 Jeremy Cline - 5.1.19-200 - Linux v5.1.19 * Mon Jul 15 2019 Jeremy Cline - 5.1.18-200 - Linux v5.1.18 * Wed Jul 10 2019 Jeremy Cline - 5.1.17-200 - Linux v5.1.17 * Wed Jul 3 2019 Jeremy Cline - 5.1.16-200 - Linux v5.1.16 * Tue Jun 25 2019 Jeremy Cline - 5.1.15-200 - Linux v5.1.15 * Mon Jun 24 2019 Jeremy Cline - 5.1.14-200 - Linux v5.1.14 * Wed Jun 19 2019 Jeremy Cline - 5.1.12-200 - Linux v5.1.12 * Mon Jun 17 2019 Jeremy Cline - 5.1.11-200 - Linux v5.1.11 * Mon Jun 17 2019 Jeremy Cline - 5.1.10-200 - Linux v5.1.10 * Tue Jun 11 2019 Jeremy Cline - 5.1.9-200 - Linux v5.1.9 * Sun Jun 9 2019 Jeremy Cline - 5.1.8-200 - Linux v5.1.8 * Tue Jun 4 2019 Jeremy Cline - 5.1.7-200 - Linux v5.1.7 * Mon Jun 3 2019 Jeremy Cline - 5.1.6-200 - Linux v5.1.6 * Tue May 28 2019 Laura Abbott - 5.0.19-200 - Linux v5.0.19 * Thu May 23 2019 Justin M. Forbes - 5.0.18-200 - Linux v5.0.18 * Wed May 15 2019 Justin M. Forbes - 5.0.16-200 - Linux v5.0.16 * Mon Apr 22 2019 Laura Abbott - 5.0.9-200 - Linux v5.0.9 * Mon Apr 8 2019 Laura Abbott - 5.0.7-200 - Linux v5.0.7 * Wed Apr 3 2019 Laura Abbott - 5.0.6-200 - Linux v5.0.6 * Wed Mar 27 2019 Laura Abbott - 5.0.5-200 - Linux v5.0.5 * Mon Mar 25 2019 Laura Abbott - 5.0.4-200 - Linux v5.0.4 * Tue Mar 19 2019 Laura Abbott - 5.0.3-200 - Linux v5.0.3 * Thu Mar 142019 Justin M. Forbes - 4.20.16-200 - Linux v4.20.16 * Mon Mar 11 2019 Justin M. Forbes - 4.20.15-200 - Linux v4.20.15 * Tue Mar 5 2019 Justin M. Forbes - 4.20.14-200 - Linux v4.20.14 * Wed Feb 27 2019 Justin M. Forbes - 4.20.13-200 - Linux v4.20.13 * Mon Feb 25 2019 Justin M. Forbes - 4.20.12-200 - Linux v4.20.12 * Wed Feb 20 2019 Justin M. Forbes - 4.20.11-200 - Linux v4.20.11 * Fri Feb 15 2019 Justin M. Forbes - 4.20.10-200 - Linux v4.20.10 * Tue Feb 12 2019 Justin M. Forbes - 4.20.8-200 - Linux v4.20.8 * Wed Feb 6 2019 Justin M. Forbes - 4.20.7-200 - Linux v4.20.7 * Thu Jan 31 2019 Justin M. Forbes - 4.20.6-200 - Linux v4.20.6 * Mon Jan 28 2019 Justin M. Forbes - 4.20.5-200 - Linux v4.20.5 * Wed Jan 23 2019 Justin M. Forbes - 4.20.4-200 - Linux v4.20.4 * Thu Jan 17 2019 Justin M. Forbes - 4.20.3-200 - Linux v4.20.3 * Mon Jan 14 2019 Jeremy Cline - 4.19.15-300 - Linux v4.19.15 * Wed Jan 9 2019 Jeremy Cline - 4.19.14-300 - Linux v4.19.14 * Sat Dec 29 2018 Jeremy Cline - 4.19.13-300 - Linux v4.19.13 * Fri Dec 28 2018 Jeremy Cline - 4.19.12-301 - Linux v4.19.12 * Thu Dec 20 2018 Jeremy Cline - 4.19.11-300 - Linux v4.19.11 * Mon Dec 17 2018 Jeremy Cline - 4.19.10-300 - Linux v4.19.10 * Thu Dec 13 2018 Jeremy Cline - 4.19.9-300 - Linux v4.19.9 * Mon Dec 10 2018 Jeremy Cline - 4.19.8-300 - Linux v4.19.8 * Wed Dec 5 2018 Jeremy Cline - 4.19.7-300 - Linux v4.19.7 * Sun Dec 2 2018 Jeremy Cline - 4.19.6-300 - Linux v4.19.6 * Tue Nov 27 2018 Jeremy Cline - 4.19.5-300 - Linux v4.19.5 * Wed Nov 21 2018 Jeremy Cline - 4.19.5-300 - Linux v4.19.3 * Wed Nov 14 2018 Jeremy Cline - 4.19.2-300 - Linux v4.19.2 * Mon Nov 12 2018 Laura Abbott - 4.18.18-300 - Linux v4.18.18 * Mon Nov 5 2018 Laura Abbott - 4.18.17-300 - Linux v4.18.17 --------------------------------------------------------------------------------References: [ 1 ] Bug #1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) https://bugzilla.redhat.com/show_bug.cgi?id=1753062 [ 2 ] Bug #1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) https://bugzilla.redhat.com/show_bug.cgi?id=1646768 [ 3 ] Bug #1724393 - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower power state https://bugzilla.redhat.com/show_bug.cgi?id=1724393 [ 4 ] Bug #1724398 - CVE-2019-0155 hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write https://bugzilla.redhat.com/show_bug.cgi?id=1724398 [ 5 ] Bug #1758414 - CVE-2019-0117 hw: Intel SGX information leak https://bugzilla.redhat.com/show_bug.cgi?id=1758414 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-7a3fc17778' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Vital patches for Fedora 29 tackle major hardware vulnerabilities. Keep informed with the newest solutions!. Fedora Kernel Update, Security Issues, Hardware Mitigations. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 13, 2019 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorykernel updateFedora

Fedora 31 Kernel Headers Security Advisory: Critical DoS and Memory Leak

The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-68d7f68507 2019-11-13 06:35:24.660460 --------------------------------------------------------------------------------Name : kernel-headers Product : Fedora 31 Version : 5.3.11 Release : 300.fc31 URL : https://www.kernel.org/ Summary : Header files for the Linux kernel for use by glibc Description : Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. --------------------------------------------------------------------------------Update Information: The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12. --------------------------------------------------------------------------------ChangeLog: * Tue Nov 12 2019 Justin M. Forbes - 5.3.11-300 - Linux v5.3.11 --------------------------------------------------------------------------------References: [ 1 ] Bug #1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) https://bugzilla.redhat.com/show_bug.cgi?id=1753062 [ 2 ] Bug #1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) https://bugzilla.redhat.com/show_bug.cgi?id=1646768 [ 3 ] Bug #1724393 - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower power state https://bugzilla.redhat.com/show_bug.cgi?id=1724393 [ 4 ] Bug #1724398 - CVE-2019-0155 hw: Intel GPU blitter manipulation can allow for arbitrary kernelmemory write https://bugzilla.redhat.com/show_bug.cgi?id=1724398 [ 5 ] Bug #1758414 - CVE-2019-0117 hw: Intel SGX information leak https://bugzilla.redhat.com/show_bug.cgi?id=1758414 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-68d7f68507' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . A series of kernel-headers revisions for Fedora 31 tackles multiple critical vulnerabilities pertaining to hardware security and their corresponding countermeasures.. Kernel Updates, Fedora Security, Hardware Issues, Security Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Nov 13, 2019 Critical Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 30: FEDORA-2019-1689d3fe07 moderate: microcode_ctl DoS Mitigations

The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-1689d3fe07 2019-11-13 06:27:19.559766 --------------------------------------------------------------------------------Name : microcode_ctl Product : Fedora 30 Version : 2.1 Release : 33.fc30 URL : https://pagure.io/microcode_ctl Summary : Tool to transform and deploy CPU microcode update for x86 Description : The microcode_ctl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode. --------------------------------------------------------------------------------Update Information: The 5.3.11 stable kernel update contains a number of important security updates across the tree, including mitigations for the most recent hardware issues disclosed on Nov 12. --------------------------------------------------------------------------------ChangeLog: * Tue Nov 12 2019 Justin Forbes 2:2.1-33 - Update to microcode-20191112 for CVE fixes * Wed Oct 2 2019 Anton Arapov 2:2.1-32 - Update to upstream 2.1-23. 20190918 * Thu Jul 25 2019 Fedora Release Engineering - 2:2.1-31 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild * Thu Jun 20 2019 Anton Arapov 2:2.1-30 - Update to upstream 2.1-22. 20190618 * Wed May 15 2019 Anton Arapov 2:2.1-29 - Update to upstream 2.1-21. 20190514 * Thu May 9 2019 Anton Arapov 2:2.1-28 - Update to upstream 2.1-20. 20190312 --------------------------------------------------------------------------------References: [ 1 ] Bug #1753062 - CVE-2019-11135 hw: TSX Transaction Asynchronous Abort (TAA) https://bugzilla.redhat.com/show_bug.cgi?id=1753062 [ 2 ] Bug #1646768 - CVE-2018-12207 hw: Machine Check Error on Page Size Change (IPU) https://bugzilla.redhat.com/show_bug.cgi?id=1646768 [ 3 ] Bug #1724393 - CVE-2019-0154 hw: Intel GPU Denial Of Service while accessing MMIO in lower power state https://bugzilla.redhat.com/show_bug.cgi?id=1724393 [ 4 ] Bug #1724398 - CVE-2019-0155 hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write https://bugzilla.redhat.com/show_bug.cgi?id=1724398 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-1689d3fe07' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The latest update for microcode_ctl on Fedora 30 introduces critical security enhancements addressing recent vulnerabilities identified in hardware.. Fedora Update, microcode_ctl, kernel updates, hardware security. . LinuxSecurity.com Team

Calendar 2 Nov 13, 2019 Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here