Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Stay Secure with the Latest Linux Advisories

Opensuse Large Esm H800
openSUSE

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H800
openSUSE

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

Calendar White Jun 08, 2026
moderate
Opensuse Large Esm H900
openSUSE

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Calendar White Jun 08, 2026
moderate
Ubuntu Large Esm H900
Ubuntu

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

Calendar White Jun 08, 2026
Critical
Opensuse Large Esm H800
openSUSE

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Calendar White Jun 08, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Calendar White Jun 08, 2026
Critical
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryvulnerabilitysystem update

Ubuntu 22.04 LTS: USN-7513-4 Critical: Linux Kernel Security Update

Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7513-4 May 28, 2025 linux-hwe-6.8 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-hwe-6.8: Linux hardware enablement (HWE) kernel Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - ACPI drivers; - Drivers core; - Ublk userspace block driver; - Virtio block driver; - DMA engine subsystem; - GPU drivers; - Microsoft Hyper-V drivers; - Hardware monitoring drivers; - IIO ADC drivers; - IIO subsystem; - InfiniBand drivers; - Multiple devices driver; - Media drivers; - Microchip PCI driver; - Network drivers; - Mellanox network drivers; - STMicroelectronics network drivers; - PCI subsystem; - Pin controllers subsystem; - x86 platform drivers; - Power supply drivers; - SCSI subsystem; - USB Gadget drivers; - TDX Guest driver; - AFS file system; - BTRFS file system; - Ceph distributed file system; - EROFS file system; - File systems infrastructure; - Network file systems library; - NILFS2 file system; - Overlay file system; - SMB network file system; - VLANs driver; - Memory management; - LAPB network protocol; - io_uring subsystem; - BPF subsystem; - Control group (cgroup); - Tracing infrastructure; - Workqueue subsystem; - Bluetooth subsystem; - Networking core; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Multipath TCP; - Netfilter; - NET/ROM layer; - Packet sockets; - RDS protocol; - Network traffic control; - SCTP protocol; - SMC sockets; - Wireless networking; - SELinux security module; - ALSA framework; - SOF drivers; (CVE-2024-57895, CVE-2024-57801, CVE-2025-21653, CVE-2025-21664, CVE-2024-57911, CVE-2024-57890, CVE-2024-56372, CVE-2024-57931, CVE-2024-57841, CVE-2024-56758, CVE-2024-57946, CVE-2024-54460, CVE-2024-55639, CVE-2025-21636, CVE-2025-21656, CVE-2024-57917, CVE-2024-53685, CVE-2024-55881, CVE-2024-57910, CVE-2024-56369, CVE-2024-57929, CVE-2024-57940, CVE-2024-54455, CVE-2025-21631, CVE-2024-56656, CVE-2025-21643, CVE-2024-57807, CVE-2024-47736, CVE-2024-56670, CVE-2025-21660, CVE-2024-56667, CVE-2024-41013, CVE-2024-56710, CVE-2025-21659, CVE-2024-57792, CVE-2024-57893, CVE-2024-57913, CVE-2024-57897, CVE-2024-57907, CVE-2024-57916, CVE-2025-21647, CVE-2024-56665, CVE-2025-21649, CVE-2024-57938, CVE-2024-56709, CVE-2024-57945, CVE-2025-21654, CVE-2024-56657, CVE-2024-49571, CVE-2024-54683, CVE-2024-56664, CVE-2024-58087, CVE-2024-54193, CVE-2024-57802, CVE-2025-21637, CVE-2024-56761, CVE-2024-57892, CVE-2024-56675, CVE-2025-21645, CVE-2024-57908, CVE-2024-58237, CVE-2024-57887, CVE-2024-53687, CVE-2025-21650, CVE-2024-57888, CVE-2024-57902, CVE-2024-57906, CVE-2024-56764, CVE-2024-57882, CVE-2024-56652, CVE-2025-21652, CVE-2025-21662, CVE-2024-57879, CVE-2024-56662, CVE-2024-56660, CVE-2025-21632, CVE-2024-47408, CVE-2025-21642, CVE-2025-21655, CVE-2025-21640, CVE-2025-21663, CVE-2024-57933, CVE-2024-57899, CVE-2024-57884, CVE-2024-56654, CVE-2024-57806, CVE-2024-57901, CVE-2024-57926, CVE-2024-39282, CVE-2024-56770, CVE-2024-57889, CVE-2024-56769, CVE-2024-53690, CVE-2024-57904, CVE-2025-21971, CVE-2024-57885, CVE-2024-56718, CVE-2024-56767, CVE-2024-38608, CVE-2024-56760, CVE-2024-56763, CVE-2024-57912, CVE-2024-36476, CVE-2024-57793, CVE-2025-21638, CVE-2024-56716, CVE-2024-57804, CVE-2024-57932, CVE-2024-57900, CVE-2025-21651, CVE-2024-57925, CVE-2024-53125, CVE-2024-56717, CVE-2025-21938, CVE-2025-21639, CVE-2024-57883, CVE-2024-56715,CVE-2024-57805, CVE-2024-55916, CVE-2024-53179, CVE-2024-56759, CVE-2024-57939, CVE-2025-21646, CVE-2024-57898, CVE-2024-57791, CVE-2025-21634, CVE-2025-21635, CVE-2024-56659, CVE-2024-57903, CVE-2025-21648, CVE-2024-57896, CVE-2024-49568, CVE-2025-21658) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS linux-image-6.8.0-60-generic 6.8.0-60.63~22.04.1 linux-image-6.8.0-60-generic-64k 6.8.0-60.63~22.04.1 linux-image-generic-64k-hwe-22.04 6.8.0-60.63~22.04.1 linux-image-generic-hwe-22.04 6.8.0-60.63~22.04.1 linux-image-oem-22.04 6.8.0-60.63~22.04.1 linux-image-oem-22.04a 6.8.0-60.63~22.04.1 linux-image-oem-22.04b 6.8.0-60.63~22.04.1 linux-image-oem-22.04c 6.8.0-60.63~22.04.1 linux-image-oem-22.04d 6.8.0-60.63~22.04.1 linux-image-virtual-hwe-22.04 6.8.0-60.63~22.04.1 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7513-4 https://ubuntu.com/security/notices/USN-7513-3 https://ubuntu.com/security/notices/USN-7513-2 https://ubuntu.com/security/notices/USN-7513-1 CVE-2024-36476, CVE-2024-38608, CVE-2024-39282, CVE-2024-41013, CVE-2024-47408, CVE-2024-47736, CVE-2024-49568, CVE-2024-49571, CVE-2024-53125, CVE-2024-53179, CVE-2024-53685, CVE-2024-53687, CVE-2024-53690, CVE-2024-54193, CVE-2024-54455, CVE-2024-54460, CVE-2024-54683, CVE-2024-55639, CVE-2024-55881, CVE-2024-55916, CVE-2024-56369, CVE-2024-56372, CVE-2024-56652,CVE-2024-56654, CVE-2024-56656, CVE-2024-56657, CVE-2024-56659, CVE-2024-56660, CVE-2024-56662, CVE-2024-56664, CVE-2024-56665, CVE-2024-56667, CVE-2024-56670, CVE-2024-56675, CVE-2024-56709, CVE-2024-56710, CVE-2024-56715, CVE-2024-56716, CVE-2024-56717, CVE-2024-56718, CVE-2024-56758, CVE-2024-56759, CVE-2024-56760, CVE-2024-56761, CVE-2024-56763, CVE-2024-56764, CVE-2024-56767, CVE-2024-56769, CVE-2024-56770, CVE-2024-57791, CVE-2024-57792, CVE-2024-57793, CVE-2024-57801, CVE-2024-57802, CVE-2024-57804, CVE-2024-57805, CVE-2024-57806, CVE-2024-57807, CVE-2024-57841, CVE-2024-57879, CVE-2024-57882, CVE-2024-57883, CVE-2024-57884, CVE-2024-57885, CVE-2024-57887, CVE-2024-57888, CVE-2024-57889, CVE-2024-57890, CVE-2024-57892, CVE-2024-57893, CVE-2024-57895, CVE-2024-57896, CVE-2024-57897, CVE-2024-57898, CVE-2024-57899, CVE-2024-57900, CVE-2024-57901, CVE-2024-57902, CVE-2024-57903, CVE-2024-57904, CVE-2024-57906, CVE-2024-57907, CVE-2024-57908, CVE-2024-57910, CVE-2024-57911, CVE-2024-57912, CVE-2024-57913, CVE-2024-57916, CVE-2024-57917, CVE-2024-57925, CVE-2024-57926, CVE-2024-57929, CVE-2024-57931, CVE-2024-57932, CVE-2024-57933, CVE-2024-57938, CVE-2024-57939, CVE-2024-57940, CVE-2024-57945, CVE-2024-57946, CVE-2024-58087, CVE-2024-58237, CVE-2025-21631, CVE-2025-21632, CVE-2025-21634, CVE-2025-21635, CVE-2025-21636, CVE-2025-21637, CVE-2025-21638, CVE-2025-21639, CVE-2025-21640, CVE-2025-21642, CVE-2025-21643, CVE-2025-21645, CVE-2025-21646, CVE-2025-21647, CVE-2025-21648, CVE-2025-21649, CVE-2025-21650, CVE-2025-21651, CVE-2025-21652, CVE-2025-21653, CVE-2025-21654, CVE-2025-21655, CVE-2025-21656, CVE-2025-21658, CVE-2025-21659, CVE-2025-21660, CVE-2025-21662, CVE-2025-21663, CVE-2025-21664, CVE-2025-21938, CVE-2025-21971 Package Information: https://launchpad.net/ubuntu/+source/linux-hwe-6.8/6.8.0-60.63~22.04.1 . Multiple vulnerabilities addressed in Ubuntu 22.04 LTS kernel upgrade. Crucial for maintaining system stability and protection..Linux Kernel Update, Ubuntu Security, Kernel Vulnerabilities, System Security, Hardware Enablement. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 28, 2025 Critical Ubuntu
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorymoderatedenial of service

Ubuntu 22.04 USN-7029-1 Moderate: Kernel Flaws and Denial of Service

Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7029-1 September 23, 2024 linux-hwe-6.8 ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-hwe-6.8: Linux hardware enablement (HWE) kernel Details: Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2024-23848) It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-40902) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PA-RISC architecture; - PowerPC architecture; - RISC-V architecture; - User-Mode Linux (UML); - x86 architecture; - Block layer subsystem; - ACPI drivers; - Drivers core; - Null block device driver; - Character device driver; - TPM device driver; - Clock framework and drivers; - CPU frequency scaling framework; - Hardware crypto device drivers; - CXL (Compute Express Link) drivers; - Buffer Sharing and Synchronization framework; - DMA engine subsystem; - EFI core; - FPGA Framework; - GPU drivers; - Greybus drivers; - HID subsystem; - HW tracing; - I2C subsystem; - IIO subsystem; - InfiniBand drivers; - Input Device (Mouse) drivers; - Mailbox framework; - Media drivers; - Microchip PCI driver; - VMware VMCI Driver; - MMC subsystem; - Networkdrivers; - PCI subsystem; - x86 platform drivers; - PTP clock framework; - S/390 drivers; - SCSI drivers; - SoundWire subsystem; - Sonic Silicon Backplane drivers; - Greybus lights staging drivers; - Thermal drivers; - TTY drivers; - USB subsystem; - VFIO drivers; - Framebuffer layer; - Watchdog drivers; - 9P distributed file system; - BTRFS file system; - File systems infrastructure; - Ext4 file system; - F2FS file system; - JFS file system; - Network file system server daemon; - NILFS2 file system; - NTFS3 file system; - SMB network file system; - Tracing file system; - IOMMU subsystem; - Tracing infrastructure; - io_uring subsystem; - Core kernel; - BPF subsystem; - Kernel debugger infrastructure; - DMA mapping infrastructure; - IRQ subsystem; - Memory management; - 9P file system network protocol; - Amateur Radio drivers; - B.A.T.M.A.N. meshing protocol; - Ethernet bridge; - Networking core; - Ethtool driver; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - Multipath TCP; - Netfilter; - NET/ROM layer; - NFC subsystem; - Network traffic control; - Sun RPC protocol; - TIPC protocol; - TLS protocol; - Unix domain sockets; - Wireless networking; - XFRM subsystem; - AppArmor security module; - Integrity Measurement Architecture(IMA) framework; - Landlock security; - Linux Security Modules (LSM) Framework; - SELinux security module; - Simplified Mandatory Access Control Kernel framework; - ALSA framework; - HD-audio driver; - SOF drivers; - KVM core; (CVE-2024-39498, CVE-2024-33847, CVE-2024-39510, CVE-2024-39462, CVE-2024-40930, CVE-2024-38634, CVE-2024-40962, CVE-2024-37078, CVE-2024-39371, CVE-2024-40972, CVE-2024-41002, CVE-2024-40920, CVE-2024-40982, CVE-2024-40915, CVE-2024-40942, CVE-2024-42154, CVE-2024-40937, CVE-2024-40967, CVE-2024-40909, CVE-2024-36244, CVE-2024-33619, CVE-2024-39277, CVE-2024-40900, CVE-2024-38661, CVE-2024-40974, CVE-2024-38618, CVE-2024-32936,CVE-2024-40906, CVE-2024-40919, CVE-2024-39470, CVE-2024-38390, CVE-2024-40966, CVE-2024-39467, CVE-2024-40938, CVE-2024-39471, CVE-2024-39485, CVE-2024-39495, CVE-2024-39492, CVE-2024-39475, CVE-2024-40953, CVE-2024-40939, CVE-2024-39493, CVE-2024-38637, CVE-2024-40945, CVE-2024-41006, CVE-2024-39461, CVE-2024-40948, CVE-2024-40916, CVE-2024-40925, CVE-2024-40956, CVE-2024-40970, CVE-2024-40912, CVE-2024-33621, CVE-2024-40989, CVE-2024-36489, CVE-2024-37354, CVE-2024-34027, CVE-2024-39506, CVE-2024-39296, CVE-2024-40977, CVE-2024-38624, CVE-2024-40983, CVE-2024-40911, CVE-2024-36477, CVE-2024-38384, CVE-2024-39507, CVE-2024-38659, CVE-2024-40987, CVE-2024-40922, CVE-2024-36978, CVE-2024-38629, CVE-2024-38622, CVE-2024-40921, CVE-2024-40903, CVE-2024-38306, CVE-2024-40926, CVE-2024-39291, CVE-2024-36286, CVE-2024-40910, CVE-2024-40943, CVE-2024-40899, CVE-2024-37356, CVE-2024-40961, CVE-2024-39468, CVE-2024-40940, CVE-2024-40931, CVE-2024-38381, CVE-2024-40998, CVE-2024-34030, CVE-2024-41000, CVE-2024-40986, CVE-2024-38663, CVE-2024-40914, CVE-2024-31076, CVE-2024-42228, CVE-2024-40978, CVE-2024-40975, CVE-2024-39494, CVE-2024-40905, CVE-2024-40908, CVE-2024-38625, CVE-2024-38388, CVE-2024-40965, CVE-2024-41004, CVE-2023-52884, CVE-2024-39484, CVE-2024-40951, CVE-2024-40988, CVE-2024-40929, CVE-2024-39491, CVE-2024-40992, CVE-2024-41009, CVE-2024-40976, CVE-2024-40917, CVE-2024-39502, CVE-2024-40999, CVE-2024-39479, CVE-2024-39505, CVE-2024-40981, CVE-2024-38662, CVE-2024-38636, CVE-2024-39496, CVE-2024-39276, CVE-2024-41003, CVE-2024-37021, CVE-2024-36972, CVE-2024-38780, CVE-2024-40954, CVE-2024-40963, CVE-2024-36478, CVE-2024-39465, CVE-2024-39474, CVE-2024-39490, CVE-2024-36484, CVE-2024-36974, CVE-2024-38628, CVE-2024-36479, CVE-2024-42078, CVE-2024-40936, CVE-2024-38385, CVE-2024-40996, CVE-2024-40901, CVE-2024-40969, CVE-2024-39483, CVE-2024-40990, CVE-2024-40947, CVE-2024-40980, CVE-2024-39464, CVE-2024-40923, CVE-2024-40933, CVE-2024-39481, CVE-2024-40927, CVE-2024-38667, CVE-2024-42159, CVE-2024-38635,CVE-2024-38627, CVE-2024-38630, CVE-2024-39504, CVE-2024-34777, CVE-2024-40944, CVE-2024-37026, CVE-2024-38633, CVE-2024-40941, CVE-2024-39499, CVE-2024-36270, CVE-2024-35247, CVE-2024-40924, CVE-2024-40984, CVE-2024-40968, CVE-2024-39489, CVE-2024-39298, CVE-2024-40949, CVE-2024-39508, CVE-2024-41001, CVE-2024-40934, CVE-2024-40957, CVE-2024-39292, CVE-2024-40979, CVE-2024-39488, CVE-2024-40995, CVE-2024-39500, CVE-2024-40918, CVE-2024-36015, CVE-2024-39503, CVE-2024-39301, CVE-2024-39466, CVE-2024-42224, CVE-2024-39478, CVE-2024-40902, CVE-2024-39509, CVE-2024-39463, CVE-2024-40971, CVE-2024-40928, CVE-2024-38664, CVE-2024-39473, CVE-2024-39501, CVE-2024-36288, CVE-2024-42148, CVE-2024-38621, CVE-2024-38632, CVE-2024-41005, CVE-2024-38619, CVE-2024-36973, CVE-2024-40994, CVE-2024-42160, CVE-2024-40960, CVE-2024-40958, CVE-2024-39469, CVE-2022-48772, CVE-2024-40964, CVE-2024-40913, CVE-2024-36481, CVE-2024-40932, CVE-2024-36971, CVE-2024-40935, CVE-2024-38623, CVE-2024-40997, CVE-2024-40952, CVE-2024-40955, CVE-2024-36281, CVE-2024-39480, CVE-2024-40904, CVE-2024-40985, CVE-2024-39497, CVE-2024-40973, CVE-2024-40959) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS linux-image-6.8.0-45-generic 6.8.0-45.45~22.04.1 linux-image-6.8.0-45-generic-64k 6.8.0-45.45~22.04.1 linux-image-generic-64k-hwe-22.04 6.8.0-45.45~22.04.1 linux-image-generic-hwe-22.04 6.8.0-45.45~22.04.1 linux-image-oem-22.04 6.8.0-45.45~22.04.1 linux-image-oem-22.04a 6.8.0-45.45~22.04.1 linux-image-oem-22.04b 6.8.0-45.45~22.04.1 linux-image-oem-22.04c 6.8.0-45.45~22.04.1 linux-image-oem-22.04d 6.8.0-45.45~22.04.1 linux-image-virtual-hwe-22.04 6.8.0-45.45~22.04.1 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompileand reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7029-1 CVE-2022-48772, CVE-2023-52884, CVE-2024-23848, CVE-2024-31076, CVE-2024-32936, CVE-2024-33619, CVE-2024-33621, CVE-2024-33847, CVE-2024-34027, CVE-2024-34030, CVE-2024-34777, CVE-2024-35247, CVE-2024-36015, CVE-2024-36244, CVE-2024-36270, CVE-2024-36281, CVE-2024-36286, CVE-2024-36288, CVE-2024-36477, CVE-2024-36478, CVE-2024-36479, CVE-2024-36481, CVE-2024-36484, CVE-2024-36489, CVE-2024-36971, CVE-2024-36972, CVE-2024-36973, CVE-2024-36974, CVE-2024-36978, CVE-2024-37021, CVE-2024-37026, CVE-2024-37078, CVE-2024-37354, CVE-2024-37356, CVE-2024-38306, CVE-2024-38381, CVE-2024-38384, CVE-2024-38385, CVE-2024-38388, CVE-2024-38390, CVE-2024-38618, CVE-2024-38619, CVE-2024-38621, CVE-2024-38622, CVE-2024-38623, CVE-2024-38624, CVE-2024-38625, CVE-2024-38627, CVE-2024-38628, CVE-2024-38629, CVE-2024-38630, CVE-2024-38632, CVE-2024-38633, CVE-2024-38634, CVE-2024-38635, CVE-2024-38636, CVE-2024-38637, CVE-2024-38659, CVE-2024-38661, CVE-2024-38662, CVE-2024-38663, CVE-2024-38664, CVE-2024-38667, CVE-2024-38780, CVE-2024-39276, CVE-2024-39277, CVE-2024-39291, CVE-2024-39292, CVE-2024-39296, CVE-2024-39298, CVE-2024-39301, CVE-2024-39371, CVE-2024-39461, CVE-2024-39462, CVE-2024-39463, CVE-2024-39464, CVE-2024-39465, CVE-2024-39466, CVE-2024-39467, CVE-2024-39468, CVE-2024-39469, CVE-2024-39470, CVE-2024-39471, CVE-2024-39473, CVE-2024-39474, CVE-2024-39475, CVE-2024-39478, CVE-2024-39479, CVE-2024-39480, CVE-2024-39481, CVE-2024-39483, CVE-2024-39484, CVE-2024-39485, CVE-2024-39488, CVE-2024-39489, CVE-2024-39490, CVE-2024-39491, CVE-2024-39492, CVE-2024-39493, CVE-2024-39494, CVE-2024-39495, CVE-2024-39496, CVE-2024-39497,CVE-2024-39498, CVE-2024-39499, CVE-2024-39500, CVE-2024-39501, CVE-2024-39502, CVE-2024-39503, CVE-2024-39504, CVE-2024-39505, CVE-2024-39506, CVE-2024-39507, CVE-2024-39508, CVE-2024-39509, CVE-2024-39510, CVE-2024-40899, CVE-2024-40900, CVE-2024-40901, CVE-2024-40902, CVE-2024-40903, CVE-2024-40904, CVE-2024-40905, CVE-2024-40906, CVE-2024-40908, CVE-2024-40909, CVE-2024-40910, CVE-2024-40911, CVE-2024-40912, CVE-2024-40913, CVE-2024-40914, CVE-2024-40915, CVE-2024-40916, CVE-2024-40917, CVE-2024-40918, CVE-2024-40919, CVE-2024-40920, CVE-2024-40921, CVE-2024-40922, CVE-2024-40923, CVE-2024-40924, CVE-2024-40925, CVE-2024-40926, CVE-2024-40927, CVE-2024-40928, CVE-2024-40929, CVE-2024-40930, CVE-2024-40931, CVE-2024-40932, CVE-2024-40933, CVE-2024-40934, CVE-2024-40935, CVE-2024-40936, CVE-2024-40937, CVE-2024-40938, CVE-2024-40939, CVE-2024-40940, CVE-2024-40941, CVE-2024-40942, CVE-2024-40943, CVE-2024-40944, CVE-2024-40945, CVE-2024-40947, CVE-2024-40948, CVE-2024-40949, CVE-2024-40951, CVE-2024-40952, CVE-2024-40953, CVE-2024-40954, CVE-2024-40955, CVE-2024-40956, CVE-2024-40957, CVE-2024-40958, CVE-2024-40959, CVE-2024-40960, CVE-2024-40961, CVE-2024-40962, CVE-2024-40963, CVE-2024-40964, CVE-2024-40965, CVE-2024-40966, CVE-2024-40967, CVE-2024-40968, CVE-2024-40969, CVE-2024-40970, CVE-2024-40971, CVE-2024-40972, CVE-2024-40973, CVE-2024-40974, CVE-2024-40975, CVE-2024-40976, CVE-2024-40977, CVE-2024-40978, CVE-2024-40979, CVE-2024-40980, CVE-2024-40981, CVE-2024-40982, CVE-2024-40983, CVE-2024-40984, CVE-2024-40985, CVE-2024-40986, CVE-2024-40987, CVE-2024-40988, CVE-2024-40989, CVE-2024-40990, CVE-2024-40992, CVE-2024-40994, CVE-2024-40995, CVE-2024-40996, CVE-2024-40997, CVE-2024-40998, CVE-2024-40999, CVE-2024-41000, CVE-2024-41001, CVE-2024-41002, CVE-2024-41003, CVE-2024-41004, CVE-2024-41005, CVE-2024-41006, CVE-2024-41009, CVE-2024-42078, CVE-2024-42148, CVE-2024-42154, CVE-2024-42159, CVE-2024-42160, CVE-2024-42224,CVE-2024-42228 Package Information: https://launchpad.net/ubuntu/+source/linux-hwe-6.8/6.8.0-45.45~22.04.1 . The latest Ubuntu security advisories highlight urgent kernel vulnerabilities affecting various architectures, necessitating prompt remediation.. Ubuntu Kernel Security, Linux Security Flaw, Denial of Service Fixes, Kernel Update Instructions. . LinuxSecurity.com Team

Calendar 2 Sep 23, 2024 Ubuntu
Banner 2 1028x280 1708121730 1 1771599631
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceubuntu

Ubuntu 16.04 LTS: USN-3981-2 Moderate: Linux Kernel Memory Exposure

Several security issues were fixed in the Linux kernel.. =========================================================================Ubuntu Security Notice USN-3981-2 May 15, 2019 linux-hwe, linux-azure, linux-gcp, linux-oracle vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS - Ubuntu 14.04 ESM Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems - linux-hwe: Linux hardware enablement (HWE) kernel - linux-oracle: Linux kernel for Oracle Cloud systems Details: USN-3981-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 18.04 LTS for Ubuntu 16.04 LTS and for the Linux Azure kernel for Ubuntu 14.04 LTS. Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Giorgi Maisuradze, Dan Horea Lutas, Andrei Lutas, Volodymyr Pikhur, Stephan van Schaik, Alyssa Milburn, Sebastian Österlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida, Moritz Lipp, Michael Schwarz, and Daniel Gruss discovered that memory previously stored in microarchitectural fill buffers of an Intel CPU core may be exposed to a malicious process that is executing on the same CPU core. A local attacker could use this to expose sensitive information. (CVE-2018-12130) Brandon Falk, Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Stephan van Schaik, Alyssa Milburn, Sebastian Österlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, and Cristiano Giuffrida discovered that memory previously stored in microarchitectural load ports of an Intel CPU core may be exposed to a malicious process that is executing on the same CPU core. A local attacker could use this to expose sensitiveinformation. (CVE-2018-12127) Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Marina Minkin, Daniel Moghimi, Moritz Lipp, Michael Schwarz, Jo Van Bulck, Daniel Genkin, Daniel Gruss, Berk Sunar, Frank Piessens, and Yuval Yarom discovered that memory previously stored in microarchitectural store buffers of an Intel CPU core may be exposed to a malicious process that is executing on the same CPU core. A local attacker could use this to expose sensitive information. (CVE-2018-12126) Vasily Averin and Evgenii Shatokhin discovered that a use-after-free vulnerability existed in the NFS41+ subsystem when multiple network namespaces are in use. A local attacker in a container could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-16884) Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Volodrmyr Pikhur, Moritz Lipp, Michael Schwarz, Daniel Gruss, Stephan van Schaik, Alyssa Milburn, Sebastian Österlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, and Cristiano Giuffrida discovered that uncacheable memory previously stored in microarchitectural buffers of an Intel CPU core may be exposed to a malicious process that is executing on the same CPU core. A local attacker could use this to expose sensitive information. (CVE-2019-11091) Matteo Croce, Natale Vinto, and Andrea Spagnolo discovered that the cgroups subsystem of the Linux kernel did not properly account for SCTP socket buffers. A local attacker could use this to cause a denial of service (system crash). (CVE-2019-3874) Alex Williamson discovered that the vfio subsystem of the Linux kernel did not properly limit DMA mappings. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2019-3882) Hugues Anguelkov discovered that the Broadcom Wifi driver in the Linux kernel contained a heap buffer overflow. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2019-9500) Hugues Anguelkov discovered that the Broadcom Wifi driver in the Linux kernel did not properly prevent remote firmware events from being processed for USB Wifi devices. A physically proximate attacker could use this to send firmware events to the device. (CVE-2019-9503) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS: linux-image-4.15.0-1013-oracle 4.15.0-1013.15~16.04.1 linux-image-4.15.0-1032-gcp 4.15.0-1032.34~16.04.1 linux-image-4.15.0-1045-azure 4.15.0-1045.49 linux-image-4.15.0-50-generic 4.15.0-50.54~16.04.1 linux-image-4.15.0-50-generic-lpae 4.15.0-50.54~16.04.1 linux-image-4.15.0-50-lowlatency 4.15.0-50.54~16.04.1 linux-image-azure 4.15.0.1045.49 linux-image-gcp 4.15.0.1032.46 linux-image-generic-hwe-16.04 4.15.0.50.71 linux-image-generic-lpae-hwe-16.04 4.15.0.50.71 linux-image-gke 4.15.0.1032.46 linux-image-lowlatency-hwe-16.04 4.15.0.50.71 linux-image-oem 4.15.0.50.71 linux-image-oracle 4.15.0.1013.7 linux-image-virtual-hwe-16.04 4.15.0.50.71 Ubuntu 14.04 ESM: linux-image-4.15.0-1045-azure 4.15.0-1045.49~14.04.1 linux-image-azure 4.15.0.1045.32 After a standard system update you need to reboot your computer to make all the necessary changes. Please note that fully mitigating the Microarchitectural Data Sampling (MDS) issues (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091) requires corresponding processor microcode/firmware updates or, in virtual environments, hypervisor updates. References: https://ubuntu.com/security/notices/USN-3981-2 https://ubuntu.com/security/notices/USN-3981-1 CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2018-16884, CVE-2019-11091, CVE-2019-3874, CVE-2019-3882, CVE-2019-9500, CVE-2019-9503, https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/MDS PackageInformation: https://launchpad.net/ubuntu/+source/linux-azure/4.15.0-1045.49 https://launchpad.net/ubuntu/+source/linux-gcp/4.15.0-1032.34~16.04.1 https://launchpad.net/ubuntu/+source/linux-hwe/4.15.0-50.54~16.04.1 https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1013.15~16.04.1 . A range of vulnerabilities addressed in the Ubuntu Linux kernel impacting various platforms. All users are advised to perform an update.. LinuxKernelUpdates, UbuntuSecurityAdvisory, LinuxHWE, MemoryExploitation, DenialOfService. . LinuxSecurity.com Team

Calendar 2 May 15, 2019 Ubuntu
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here