Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise Linuximportant

Red Hat Enterprise Linux 7.6: RHSA-2021-2355-01 Important Kernel Update

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2021:2355-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:2355 Issue date: 2021-06-09 CVE Names: CVE-2019-19532 CVE-2020-12362 CVE-2020-25211 CVE-2020-25705 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 7.6) - noarch, x86_64 Red Hat Enterprise Linux Server E4S (v. 7.6) - noarch, ppc64le, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server Optional E4S (v. 7.6) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional TUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server TUS (v. 7.6) - noarch, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Integer overflow in Intel(R) Graphics Drivers (CVE-2020-12362) * kernel: Local buffer overflow in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c(CVE-2020-25211) * kernel: malicious USB devices can lead to multiple out-of-bounds write (CVE-2019-19532) * kernel: ICMP rate limiting can be used for DNS poisoning attack (CVE-2020-25705) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * memcg: mem_cgroup_idr can be updated in an uncoordinated manner which can lead to corruption (BZ#1931901) * Kernel experiences panic in update_group_power() due to division error even with Bug 1701115 fix (BZ#1961624) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1781821 - CVE-2019-19532 kernel: malicious USB devices can lead to multiple out-of-bounds write 1877571 - CVE-2020-25211 kernel: Local buffer overflow in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c 1894579 - CVE-2020-25705 kernel: ICMP rate limiting can be used for DNS poisoning attack 1930246 - CVE-2020-12362 kernel: Integer overflow in Intel(R) Graphics Drivers 6. Package List: Red Hat Enterprise Linux Server AUS (v.7.6): Source: kernel-3.10.0-957.76.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-957.76.1.el7.noarch.rpm kernel-doc-3.10.0-957.76.1.el7.noarch.rpm x86_64: bpftool-3.10.0-957.76.1.el7.x86_64.rpm kernel-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.76.1.el7.x86_64.rpm kernel-devel-3.10.0-957.76.1.el7.x86_64.rpm kernel-headers-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.76.1.el7.x86_64.rpm perf-3.10.0-957.76.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm python-perf-3.10.0-957.76.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm Red Hat Enterprise Linux Server E4S (v.7.6): Source: kernel-3.10.0-957.76.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-957.76.1.el7.noarch.rpm kernel-doc-3.10.0-957.76.1.el7.noarch.rpm ppc64le: kernel-3.10.0-957.76.1.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debug-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debug-devel-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.76.1.el7.ppc64le.rpm kernel-devel-3.10.0-957.76.1.el7.ppc64le.rpm kernel-headers-3.10.0-957.76.1.el7.ppc64le.rpm kernel-tools-3.10.0-957.76.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm kernel-tools-libs-3.10.0-957.76.1.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-957.76.1.el7.ppc64le.rpm perf-3.10.0-957.76.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm python-perf-3.10.0-957.76.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm x86_64: bpftool-3.10.0-957.76.1.el7.x86_64.rpm kernel-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.76.1.el7.x86_64.rpm kernel-devel-3.10.0-957.76.1.el7.x86_64.rpm kernel-headers-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.76.1.el7.x86_64.rpm perf-3.10.0-957.76.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm python-perf-3.10.0-957.76.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm Red Hat Enterprise Linux Server TUS (v.7.6): Source: kernel-3.10.0-957.76.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-957.76.1.el7.noarch.rpm kernel-doc-3.10.0-957.76.1.el7.noarch.rpm x86_64: bpftool-3.10.0-957.76.1.el7.x86_64.rpm kernel-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.76.1.el7.x86_64.rpm kernel-devel-3.10.0-957.76.1.el7.x86_64.rpm kernel-headers-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.76.1.el7.x86_64.rpm perf-3.10.0-957.76.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm python-perf-3.10.0-957.76.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 7.6): x86_64: kernel-debug-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.76.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional E4S (v.7.6): ppc64le: kernel-debug-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debug-devel-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.76.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-957.76.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.ppc64le.rpm x86_64: kernel-debug-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.76.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional TUS (v. 7.6): x86_64: kernel-debug-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.76.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.76.1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-19532 https://access.redhat.com/security/cve/CVE-2020-12362 https://access.redhat.com/security/cve/CVE-2020-25211 https://access.redhat.com/security/cve/CVE-2020-25705 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYMCKC9zjgjWX9erEAQh/hQ/9G8VQKD/k3cMuAmkYURsGrjGnUayDyRLm l9pT/wc46hjuvERZA/3rQP7ZQKSEzKZKJ9RVkM/3fvNNaotdVKwcqHWUzal99r/t 5HGvD/yYbhSTe8XB34iU1SVoIQkDjSR+lyJUwabx/W4hbNsEubUg8tdTRkjwBOWE e1kvONgdpll6FnKWLiq215igcVoonwsldjuSwzz66nKBRdjSAQQMXMHiOiRcfIN8 qIZuI6AxFKu2zY0iZQe0HiqTonoOyAsBdvpA+abOLdzqC/irmE8O9PG3K3e+vcnP z3QRSu78E+S8WJ8OgH9hNSfuvmSGb946zbYz1EmAwEiygwBsP7BnzmNccbzQHufQ 2Pulm9MSTaOA/Z8TArpoDF5txsBrN0Wc9oD+0em6f73RQsl1tEvCZx3cnd79UzJc sFMBq9ikAj/egbDfpqj1ZSL8rcBWk7XPwyT/pUbnfqbbl6sveYnCgl5Ji0QdHI2q ZgE99yk2gDMCAa0MSS9WnmmImEChHZpMz0snb38cgpDM0qyL9BgNvrA09Xrpq60l 8miN5r/T1Lojn17sx+igmDTLspcBzN1NB/ptH+3mWYKLt8+xs6MtF+KFMBnEiMuH YYriUeiEBHUI33CspLblaEccgll8NuNy81YMjH1xIFdihjlDyStAvcGf87tgWJMT pbqFj/FQyII=NLS/ -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://listman.redhat.com/mailman/listinfo/rhsa-announce . The kernel upgrade for Red Hat Enterprise Linux 7.6 incorporates essential security patches along with significant bug fixes.. Red Hat Enterprise Linux, Kernel Update, Security Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 09, 2021 Important Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity issue

Red Hat 7.6 RHSA-2020:5656-01 Moderate: Kernel Denial Of Service

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: kernel security update Advisory ID: RHSA-2020:5656-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:5656 Issue date: 2020-12-22 CVE Names: CVE-2017-18551 CVE-2018-20836 CVE-2019-9454 CVE-2019-19046 CVE-2019-19447 CVE-2019-20636 CVE-2020-12770 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux ComputeNode EUS (v. 7.6) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server EUS (v. 7.6) - noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 7.6) - ppc64, ppc64le, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c (CVE-2017-18551) * kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free (CVE-2018-20836) * kernel: out of bounds write in i2c driver leads to localescalation of privilege (CVE-2019-9454) * kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c (CVE-2019-19046) * kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c (CVE-2019-19447) * kernel: out-of-bounds write via crafted keycode table (CVE-2019-20636) * kernel: sg_write function lacks an sg_remove_request call in a certain failure case (CVE-2020-12770) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1707796 - CVE-2018-20836 kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free 1757368 - CVE-2017-18551 kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c 1774988 - CVE-2019-19046 kernel: Denial Of Service in the __ipmi_bmc_register() function in drivers/char/ipmi/ipmi_msghandler.c 1781679 - CVE-2019-19447 kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c 1818818 - CVE-2019-9454 kernel: out of bounds write in i2c driver leads to local escalation of privilege 1824059 - CVE-2019-20636 kernel: out-of-bounds write via crafted keycode table 1834845 - CVE-2020-12770 kernel: sg_write function lacks an sg_remove_request call in a certain failure case 6. Package List: Red Hat Enterprise Linux ComputeNode EUS (v.7.6): Source: kernel-3.10.0-957.65.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-957.65.1.el7.noarch.rpm kernel-doc-3.10.0-957.65.1.el7.noarch.rpm x86_64: bpftool-3.10.0-957.65.1.el7.x86_64.rpm kernel-3.10.0-957.65.1.el7.x86_64.rpm kernel-debug-3.10.0-957.65.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.65.1.el7.x86_64.rpm kernel-devel-3.10.0-957.65.1.el7.x86_64.rpm kernel-headers-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.65.1.el7.x86_64.rpm perf-3.10.0-957.65.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm python-perf-3.10.0-957.65.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6): x86_64: kernel-debug-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.65.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm Red Hat Enterprise Linux Server EUS (v.7.6): Source: kernel-3.10.0-957.65.1.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-957.65.1.el7.noarch.rpm kernel-doc-3.10.0-957.65.1.el7.noarch.rpm ppc64: kernel-3.10.0-957.65.1.el7.ppc64.rpm kernel-bootwrapper-3.10.0-957.65.1.el7.ppc64.rpm kernel-debug-3.10.0-957.65.1.el7.ppc64.rpm kernel-debug-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm kernel-debug-devel-3.10.0-957.65.1.el7.ppc64.rpm kernel-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-957.65.1.el7.ppc64.rpm kernel-devel-3.10.0-957.65.1.el7.ppc64.rpm kernel-headers-3.10.0-957.65.1.el7.ppc64.rpm kernel-tools-3.10.0-957.65.1.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm kernel-tools-libs-3.10.0-957.65.1.el7.ppc64.rpm perf-3.10.0-957.65.1.el7.ppc64.rpm perf-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm python-perf-3.10.0-957.65.1.el7.ppc64.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm ppc64le: kernel-3.10.0-957.65.1.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-957.65.1.el7.ppc64le.rpm kernel-debug-3.10.0-957.65.1.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.65.1.el7.ppc64le.rpm kernel-devel-3.10.0-957.65.1.el7.ppc64le.rpm kernel-headers-3.10.0-957.65.1.el7.ppc64le.rpm kernel-tools-3.10.0-957.65.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm kernel-tools-libs-3.10.0-957.65.1.el7.ppc64le.rpm perf-3.10.0-957.65.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm python-perf-3.10.0-957.65.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm s390x: kernel-3.10.0-957.65.1.el7.s390x.rpm kernel-debug-3.10.0-957.65.1.el7.s390x.rpm kernel-debug-debuginfo-3.10.0-957.65.1.el7.s390x.rpm kernel-debug-devel-3.10.0-957.65.1.el7.s390x.rpm kernel-debuginfo-3.10.0-957.65.1.el7.s390x.rpm kernel-debuginfo-common-s390x-3.10.0-957.65.1.el7.s390x.rpm kernel-devel-3.10.0-957.65.1.el7.s390x.rpm kernel-headers-3.10.0-957.65.1.el7.s390x.rpm kernel-kdump-3.10.0-957.65.1.el7.s390x.rpm kernel-kdump-debuginfo-3.10.0-957.65.1.el7.s390x.rpm kernel-kdump-devel-3.10.0-957.65.1.el7.s390x.rpm perf-3.10.0-957.65.1.el7.s390x.rpm perf-debuginfo-3.10.0-957.65.1.el7.s390x.rpm python-perf-3.10.0-957.65.1.el7.s390x.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.s390x.rpm x86_64: bpftool-3.10.0-957.65.1.el7.x86_64.rpm kernel-3.10.0-957.65.1.el7.x86_64.rpm kernel-debug-3.10.0-957.65.1.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.65.1.el7.x86_64.rpm kernel-devel-3.10.0-957.65.1.el7.x86_64.rpm kernel-headers-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.65.1.el7.x86_64.rpm perf-3.10.0-957.65.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm python-perf-3.10.0-957.65.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional EUS (v.7.6): ppc64: kernel-debug-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm kernel-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm kernel-debuginfo-common-ppc64-3.10.0-957.65.1.el7.ppc64.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm kernel-tools-libs-devel-3.10.0-957.65.1.el7.ppc64.rpm perf-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.ppc64.rpm ppc64le: kernel-debug-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm kernel-debug-devel-3.10.0-957.65.1.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.65.1.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-957.65.1.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.ppc64le.rpm x86_64: kernel-debug-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.65.1.el7.x86_64.rpm perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.65.1.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2017-18551 https://access.redhat.com/security/cve/CVE-2018-20836 https://access.redhat.com/security/cve/CVE-2019-9454 https://access.redhat.com/security/cve/CVE-2019-19046 https://access.redhat.com/security/cve/CVE-2019-19447 https://access.redhat.com/security/cve/CVE-2019-20636 https://access.redhat.com/security/cve/CVE-2020-12770 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBX+G9XtzjgjWX9erEAQjr3Q//TSxI6WEF/uNVfArwmJuygzlkL63Qgtic Hp/U86JJn4rvXrnGfxiJepAp1Yb5mc0HjYVQwNg1W3MVSsXICd2ZailEQnUrvvKu n3VG8XtGHaAIbdZXGbKxuMhuDBjyrI3XJKRGketoQa96JKx7AFexhoupJoJ4mrSf mB8ZYw4O8be32CmuoNj1EWEHxUkVVzjba06C5r+PpFQEM+g6OMWnoEGh96PlpAfG 7itoBVntcinoTXO5bDqF1siuIDOOmk1daDF1ZU3CGDjd9nTSv6+gWdJ8zY7xg/MP FtfXixr/TFP6U6Gs8mg1SXwjPshTasoBsVPNvc7TbkH2IclbTGQIf/hpBMlGQmrW eiVSu5PR7f9mw1GWSfhAHa7NzoA50WnNnV5w2AoKrh+oQspY7z1DJy9DVpGc8qFX o9mWWHfzDs4I7TEj7S7xmJSYijfeoVORbocoFN3Cu9kJxmITu7ypeT+aDkz4+Iq6 WWC3iZYu9o1dYW+aY6zeBaXwAJ3k8JNKEkXYd4b7x1Z8GMahmb1PCa0JrKwlzkwp s6fNuUqx+4O8tWyTeEtNxHL8lTwS9RMQeYVDq5WzVhz2Sm5M6UeDiNLx39RmKXCK ag7+e36kcGcbqKjx+0gaxuz5JE0Wfd4PNaCc9ZLUNfhv5ceoDudtCG7Ivo0iI1Aw Yob5FjzZGNo=4HNP -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A critical kernel patch for RHEL 7.6 has been released to mitigate potential vulnerabilities, necessitating a system restart.. Kernel Update, Red Hat Security, Moderate Risk, Denial of Service, Privilege Escalation. . LinuxSecurity.com Team

Calendar 2 Dec 22, 2020 Red Hat
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorydenial of servicememory leak

SUSE Linux Enterprise 10 SP3: 2011-015 Moderate: Kernel Memory Leak

This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes several This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes several security issues and bugs. security issues and bugs. Following security issues were fixed: CVE-2010-4655: A memory leak in the ethtool ioctl was fixed that could disclose kernel memory to local attackers with CAP_NET_ADMIN privileges.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ______________________________________________________________________________ SUSE Security Announcement Package: kernel Announcement ID: SUSE-SA:2011:015 Date: Thu, 24 Mar 2011 16:00:00 +0000 Affected Products: SLE SDK 10 SP3 SUSE Linux Enterprise Desktop 10 SP3 SUSE Linux Enterprise Server 10 SP3 Vulnerability Type: remote denial of service CVSS v2 Base Score: 7.1 (AV:N/AC:M/Au:N/C:N/I:N/A:C) SUSE Default Package: yes Cross-References: CVE-2010-1173, CVE-2010-3875, CVE-2010-3876 CVE-2010-3877, CVE-2010-4075, CVE-2010-4076 CVE-2010-4077, CVE-2010-4163, CVE-2010-4242 CVE-2010-4248, CVE-2010-4342, CVE-2010-4526 CVE-2010-4527, CVE-2010-4529, CVE-2010-4655 CVE-2010-4668, CVE-2011-0521, CVE-2011-0710 CVE-2011-0711 Content of This Advisory: 1) Security Vulnerability Resolved: Linux kernel security update Problem Description 2) Solution or Work-Around 3) Special Instructions and Notes 4) Package Location and Checksums 5) Pending Vulnerabilities, Solutions, and Work-Arounds: See SUSE Security Summary Report. 6) Authenticity Verification and AdditionalInformation ______________________________________________________________________________ 1) Problem Description and Brief Discussion This kernel update for the SUSE Linux Enterprise 10 SP3 kernel fixes several security issues and bugs. Following security issues were fixed: CVE-2010-4655: A memory leak in the ethtool ioctl was fixed that could disclose kernel memory to local attackers with CAP_NET_ADMIN privileges. CVE-2011-0521: The dvb_ca_ioctl function in drivers/media/dvb/ttpci/av7110_ca.c in the Linux kernel did not check the sign of a certain integer field, which allowed local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a negative value. CVE-2010-3875: The ax25_getname function in net/ax25/af_ax25.c in the Linux kernel did not initialize a certain structure, which allowed local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure. CVE-2010-3876: net/packet/af_packet.c in the Linux kernel did not properly initialize certain structure members, which allowed local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAP_NET_RAW capability to read copies of the applicable structures. CVE-2010-3877: The get_name function in net/tipc/socket.c in the Linux kernel did not initialize a certain structure, which allowed local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure. CVE-2011-0711: A stack memory information leak in the xfs FSGEOMETRY_V1 ioctl was fixed. CVE-2011-0710: The task_show_regs function in arch/s390/kernel/traps.c in the Linux kernel on the s390 platform allowed local users to obtain the values of the registers of an arbitrary process by reading a status file under /proc/. CVE-2010-1173: The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel, when SCTP isenabled, allowed remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data. CVE-2010-4075: The uart_get_count function in drivers/serial/serial_core.c in the Linux kernel did not properly initialize a certain structure member, which allowed local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call. CVE-2010-4076: The rs_ioctl function in drivers/char/amiserial.c in the Linux kernel did not properly initialize a certain structure member, which allowed local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call. CVE-2010-4077: The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in the Linux kernel did not properly initialize a certain structure member, which allowed local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call. CVE-2010-4527: The load_mixer_volumes function in sound/oss/soundcard.c in the OSS sound subsystem in the Linux kernel incorrectly expected that a certain name field ends with a '0' character, which allowed local users to conduct buffer overflow attacks and gain privileges, or possibly obtain sensitive information from kernel memory, via a SOUND_MIXER_SETLEVELS ioctl call. CVE-2010-4248: Race condition in the __exit_signal function in kernel/exit.c in the Linux kernel allowed local users to cause a denial of service via vectors related to multi threaded exec, the use of a thread group leader in kernel/posix-cpu-timers.c, and the selection of a new thread group leader in the de_thread function in fs/exec.c. CVE-2010-4668: The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel allowed local users to cause a denial of service (panic) via a zero-length I/O request in a device ioctl to a SCSI device, related to anunaligned map. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4163. CVE-2010-4242: The hci_uart_tty_open function in the HCI UART driver (drivers/bluetooth/hci_ldisc.c) in the Linux kernel did not verify whether the tty has a write operation, which allowed local users to cause a denial of service (NULL pointer dereference) via vectors related to the Bluetooth driver. CVE-2010-4529: Integer underflow in the irda_getsockopt function in net/irda/af_irda.c in the Linux kernel on platforms other than x86 allowed local users to obtain potentially sensitive information from kernel heap memory via an IRLMP_ENUMDEVICES getsockopt call. CVE-2010-4342: The aun_incoming function in net/econet/af_econet.c in the Linux kernel, when Econet is enabled, allowed remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by sending an Acorn Universal Networking (AUN) packet over UDP. CVE-2010-4526: Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel allowed remote attackers to cause a denial of service (panic) via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and triggers list corruption, related to the sctp_wait_for_connect function. 2) Solution or Work-Around There is no known workaround, please install the update packages. 3) Special Instructions and Notes Please reboot the machine after installing the update. 4) Package Location and Checksums The preferred method for installing security updates is to use the YaST "Online Update" module or the "zypper" commandline tool. The package and patch management stack will detect which updates are required and automatically perform the necessary steps to verify and install them. Alternatively, download the update packages for your distribution manually and verify their integrity by the methods listed in Section 6 of this announcement. Theninstall the packages using the command rpm -Fhv to apply the update, replacing with the filename of the downloaded RPM package. Our maintenance customers are notified individually. The packages are offered for installation from the maintenance web: SUSE Linux Enterprise Desktop 10 SP3 for AMD64 and Intel EM64T SUSE Linux Enterprise Server 10 SP3 SLE SDK 10 SP3 SUSE Linux Enterprise Desktop 10 SP3 SUSE Linux Enterprise Desktop 10 SP3 for x86 ______________________________________________________________________________ 5) Pending Vulnerabilities, Solutions, and Work-Arounds: See SUSE Security Summary Report. ______________________________________________________________________________ 6) Authenticity Verification and Additional Information - Announcement authenticity verification: SUSE security announcements are published via mailing lists and on Web sites. The authenticity and integrity of a SUSE security announcement is guaranteed by a cryptographic signature in each announcement. All SUSE security announcements are published with a valid signature. To verify the signature of the announcement, save it as text into a file and run the command gpg --verify replacing with the name of the file where you saved the announcement. The output for a valid signature looks like: gpg: Signature made using RSA key ID 3D25D3D9 gpg: Good signature from "SuSE Security Team " where is replaced by the date the document was signed. If the security team's key is not contained in your key ring, you can import it from the first installation CD. To import the key, use the command gpg --import gpg-pubkey-3d25d3d9-36e12d04.asc - Package authenticity verification: SUSE update packages are available on many mirror FTP servers all over the world. While this service is considered valuable and important to thefree and open source software community, the authenticity and the integrity of a package needs to be verified to ensure that it has not been tampered with. The internal rpm package signatures provide an easy way to verify the authenticity of an RPM package. Use the command rpm -v --checksig to verify the signature of the package, replacing with the filename of the RPM package downloaded. The package is unmodified if it contains a valid signature from This email address is being protected from spambots. You need JavaScript enabled to view it. with the key ID 9C800ACA. This key is automatically imported into the RPM database (on RPMv4-based distributions) and the gpg key ring of 'root' during installation. You can also find it on the first installation CD and at the end of this announcement. - SUSE runs two security mailing lists to which any interested party may subscribe: This email address is being protected from spambots. You need JavaScript enabled to view it. - General Linux and SUSE security discussion. All SUSE security announcements are sent to this list. To subscribe, send an e-mail to . This email address is being protected from spambots. You need JavaScript enabled to view it. - SUSE's announce-only mailing list. Only SUSE's security announcements are sent to this list. To subscribe, send an e-mail to . ==================================================================== SUSE's security contact is or . The public key is listed below. ==================================================================== . The recent patch release improves security vulnerabilities and boosts performance across SUSE Linux Enterprise 10 SP3 platforms. Important update!. Linux Kernel Update, SUSE Security Update, Memory Leak Fix. . LinuxSecurity.com Team

Calendar 2 Mar 24, 2011 SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here