Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
100
security advisoryupdateimportantSUSE: 2024:2943-1 Important: Kernel Access Issues Critical Risk
* bsc#1229069 Cross-References: * CVE-2023-31315 . # Security update for kernel-firmware Announcement ID: SUSE-SU-2024:2943-1 Rating: important References: * bsc#1229069 Cross-References: * CVE-2023-31315 CVSS scores: * CVE-2023-31315 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for kernel-firmware fixes the following issues: * CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-2943=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2943=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2943=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2943=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-2943=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patchSUSE-SUSE-MicroOS-5.1-2024-2943=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2943=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2943=1 ## Package List: * openSUSE Leap 15.3 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 * kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 *SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * kernel-firmware-brcm-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * kernel-firmware-brcm-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Enterprise Storage 7.1 (noarch) * kernel-firmware-brcm-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-20210208-150300.4.22.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 *kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 * kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 * SUSE Linux Enterprise Micro 5.2 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 * kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 *kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (noarch) * kernel-firmware-iwlwifi-20210208-150300.4.22.1 * kernel-firmware-usb-network-20210208-150300.4.22.1 * kernel-firmware-intel-20210208-150300.4.22.1 * kernel-firmware-ath11k-20210208-150300.4.22.1 * kernel-firmware-ath10k-20210208-150300.4.22.1 * kernel-firmware-atheros-20210208-150300.4.22.1 * kernel-firmware-nfp-20210208-150300.4.22.1 * ucode-amd-20210208-150300.4.22.1 * kernel-firmware-platform-20210208-150300.4.22.1 * kernel-firmware-prestera-20210208-150300.4.22.1 * kernel-firmware-bluetooth-20210208-150300.4.22.1 * kernel-firmware-radeon-20210208-150300.4.22.1 * kernel-firmware-mediatek-20210208-150300.4.22.1 * kernel-firmware-serial-20210208-150300.4.22.1 * kernel-firmware-ueagle-20210208-150300.4.22.1 * kernel-firmware-bnx2-20210208-150300.4.22.1 * kernel-firmware-dpaa2-20210208-150300.4.22.1 * kernel-firmware-sound-20210208-150300.4.22.1 * kernel-firmware-mwifiex-20210208-150300.4.22.1 * kernel-firmware-nvidia-20210208-150300.4.22.1 * kernel-firmware-realtek-20210208-150300.4.22.1 * kernel-firmware-liquidio-20210208-150300.4.22.1 * kernel-firmware-marvell-20210208-150300.4.22.1 * kernel-firmware-i915-20210208-150300.4.22.1 * kernel-firmware-mellanox-20210208-150300.4.22.1 * kernel-firmware-brcm-20210208-150300.4.22.1 * kernel-firmware-ti-20210208-150300.4.22.1 * kernel-firmware-media-20210208-150300.4.22.1 * kernel-firmware-chelsio-20210208-150300.4.22.1 * kernel-firmware-qlogic-20210208-150300.4.22.1 * kernel-firmware-all-20210208-150300.4.22.1 * kernel-firmware-amdgpu-20210208-150300.4.22.1 * kernel-firmware-network-20210208-150300.4.22.1 ## References: * https://www.suse.com/security/cve/CVE-2023-31315.html *https://bugzilla.suse.com/show_bug.cgi?id=1229069 . SUSE-SU-2024:2943-1 delivers a vital kernel-firmware security patch that rectifies serious exploit vulnerabilities, requiring a system restart for full implementation.. Kernel Firmware Update, SUSE Security Advisory, Patch Instructions. . Severity: Important. LinuxSecurity.com Team
Aug 16, 2024
•Important
SuSE
172
security advisoryhigh severityUbuntuUbuntu: USN-4713-2 High Severity: Linux Kernel Data Exposure
The system could allow unintended access to data in some environments.. =========================================================================Ubuntu Security Notice USN-4713-2 February 10, 2021 linux, linux-gke-5.0, linux-gke-5.3, linux-hwe, linux-raspi2-5.3 vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 14.04 ESM Summary: The system could allow unintended access to data in some environments. Software Description: - linux-gke-5.0: Linux kernel for Google Container Engine (GKE) systems - linux-gke-5.3: Linux kernel for Google Container Engine (GKE) systems - linux-hwe: Linux hardware enablement (HWE) kernel - linux-raspi2-5.3: Linux kernel for Raspberry Pi (V8) systems - linux: Linux kernel Details: It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: linux-image-5.0.0-1051-gke 5.0.0-1051.53 linux-image-5.3.0-1037-raspi2 5.3.0-1037.39 linux-image-5.3.0-1040-gke 5.3.0-1040.43 linux-image-5.3.0-70-generic 5.3.0-70.66 linux-image-5.3.0-70-lowlatency 5.3.0-70.66 linux-image-gke-5.0 5.0.0.1051.35 linux-image-gke-5.3 5.3.0.1040.23 linux-image-gkeop-5.3 5.3.0.70.127 linux-image-raspi2-hwe-18.04 5.3.0.1037.26 Ubuntu 14.04 ESM: linux-image-3.13.0-184-generic 3.13.0-184.235 linux-image-3.13.0-184-generic-lpae 3.13.0-184.235 linux-image-3.13.0-184-lowlatency 3.13.0-184.235 linux-image-3.13.0-184-powerpc-e500 3.13.0-184.235 linux-image-3.13.0-184-powerpc-e500mc 3.13.0-184.235 linux-image-3.13.0-184-powerpc-smp 3.13.0-184.235 linux-image-3.13.0-184-powerpc64-emb 3.13.0-184.235 linux-image-3.13.0-184-powerpc64-smp 3.13.0-184.235 linux-image-generic 3.13.0.184.193 linux-image-generic-lpae 3.13.0.184.193 linux-image-generic-pae 3.13.0.184.193 linux-image-highbank 3.13.0.184.193 linux-image-lowlatency 3.13.0.184.193 linux-image-lowlatency-pae 3.13.0.184.193 linux-image-omap 3.13.0.184.193 linux-image-powerpc-e500 3.13.0.184.193 linux-image-powerpc-e500mc 3.13.0.184.193 linux-image-powerpc-smp 3.13.0.184.193 linux-image-powerpc64-emb 3.13.0.184.193 linux-image-powerpc64-smp 3.13.0.184.193 linux-image-server 3.13.0.184.193 linux-image-virtual 3.13.0.184.193 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-4713-2 https://ubuntu.com/security/notices/USN-4713-1 CVE-2020-28374 Package Information: https://launchpad.net/ubuntu/+source/linux-gke-5.0/5.0.0-1051.53 https://launchpad.net/ubuntu/+source/linux-gke-5.3/5.3.0-1040.43 https://launchpad.net/ubuntu/+source/linux-hwe/5.3.0-70.66 https://launchpad.net/ubuntu/+source/linux-raspi2-5.3/5.3.0-1037.39 . A critical vulnerability identified in the Linux kernel affecting various Ubuntu releases. Prompt update advised.. Linux Kernel Vulnerability, Ubuntu Notice, Data Risk. . LinuxSecurity.com Team
Feb 09, 2021
Ubuntu
172
security advisorydenial of servicecriticalUbuntu 14.04 LTS USN-2544-1 Critical: Kernel Access Issues
Several security issues were fixed in the kernel.. =========================================================================Ubuntu Security Notice USN-2544-1 March 24, 2015 linux vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS Summary: Several security issues were fixed in the kernel. Software Description: - linux: Linux kernel Details: Eric Windisch discovered flaw in how the Linux kernel's XFS file system replaces remote attributes. A local access with access to an XFS file system could exploit this flaw to escalate their privileges. (CVE-2015-0274) A flaw was discovered in the automatic loading of modules in the crypto subsystem of the Linux kernel. A local user could exploit this flaw to load installed kernel modules, increasing the attack surface and potentially using this to gain administrative privileges. (CVE-2013-7421) The Linux kernel's splice system call did not correctly validate its parameters. A local, unprivileged user could exploit this flaw to cause a denial of service (system crash). (CVE-2014-7822) A flaw was discovered in the crypto subsystem when screening module names for automatic module loading if the name contained a valid crypto module name, eg. vfat(aes). A local user could exploit this flaw to load installed kernel modules, increasing the attack surface and potentially using this to gain administrative privileges. (CVE-2014-9644) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: linux-image-3.13.0-48-generic 3.13.0-48.80 linux-image-3.13.0-48-generic-lpae 3.13.0-48.80 linux-image-3.13.0-48-lowlatency 3.13.0-48.80 linux-image-3.13.0-48-powerpc-e500 3.13.0-48.80 linux-image-3.13.0-48-powerpc-e500mc 3.13.0-48.80 linux-image-3.13.0-48-powerpc-smp 3.13.0-48.80 linux-image-3.13.0-48-powerpc64-emb 3.13.0-48.80 linux-image-3.13.0-48-powerpc64-smp 3.13.0-48.80 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-2544-1 CVE-2013-7421, CVE-2014-7822, CVE-2014-9644, CVE-2015-0274 Package Information: https://launchpad.net/ubuntu/+source/linux/3.13.0-48.80 . Critical patches addressing kernel vulnerabilities in Ubuntu 14.04 LTS enhance defense mechanisms against attacks and maintain overall system stability.. Ubuntu Kernel Security, Access Control Issues, Privilege Escalation Fixes. . Severity: Critical. LinuxSecurity.com Team
Mar 24, 2015
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!