Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
202
security advisorymoderateSSL issueopenSUSE Leap 15.0: openSUSE-SU-2018:4283-1 Moderate: Memory Attack
An update that solves one vulnerability and has one errata is now available.. openSUSE Security Update: Security update for mozilla-nspr and mozilla-nss ______________________________________________________________________________ Announcement ID: openSUSE-SU-2018:4283-1 Rating: moderate References: #1097410 #1119105 Cross-References: CVE-2018-0495 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for mozilla-nss and mozilla-nspr fixes the following issues: Issues fixed in mozilla-nss: - Update to NSS 3.40.1 (bsc#1119105) - CVE-2018-12404: Fixed a cache side-channel variant of the Bleichenbacher attack (bsc#1119069) - CVE-2018-12384: Fixed an issue in the SSL handshake. NSS responded to an SSLv2-compatible ClientHello with a ServerHello that had an all-zero random. (bsc#1106873) - CVE-2018-0495: Fixed a memory-cache side-channel attack with ECDSA signatures (bsc#1097410) - Fixed a decryption failure during FFDHE key exchange - Various security fixes in the ASN.1 code Issues fixed in mozilla-nspr: - Update mozilla-nspr to 4.20 (bsc#1119105) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2018-1618=1 Package List: - openSUSE Leap 15.0 (i586 x86_64): libfreebl3-3.40.1-lp150.2.10.2 libfreebl3-debuginfo-3.40.1-lp150.2.10.2 libsoftokn3-3.40.1-lp150.2.10.2 libsoftokn3-debuginfo-3.40.1-lp150.2.10.2 mozilla-nspr-4.20-lp150.2.3.1 mozilla-nspr-debuginfo-4.20-lp150.2.3.1 mozilla-nspr-debugsource-4.20-lp150.2.3.1 mozilla-nspr-devel-4.20-lp150.2.3.1 mozilla-nss-3.40.1-lp150.2.10.2 mozilla-nss-certs-3.40.1-lp150.2.10.2 mozilla-nss-certs-debuginfo-3.40.1-lp150.2.10.2 mozilla-nss-debuginfo-3.40.1-lp150.2.10.2 mozilla-nss-debugsource-3.40.1-lp150.2.10.2 mozilla-nss-devel-3.40.1-lp150.2.10.2 mozilla-nss-sysinit-3.40.1-lp150.2.10.2 mozilla-nss-sysinit-debuginfo-3.40.1-lp150.2.10.2 mozilla-nss-tools-3.40.1-lp150.2.10.2 mozilla-nss-tools-debuginfo-3.40.1-lp150.2.10.2 - openSUSE Leap 15.0 (x86_64): libfreebl3-32bit-3.40.1-lp150.2.10.2 libfreebl3-32bit-debuginfo-3.40.1-lp150.2.10.2 libsoftokn3-32bit-3.40.1-lp150.2.10.2 libsoftokn3-32bit-debuginfo-3.40.1-lp150.2.10.2 mozilla-nspr-32bit-4.20-lp150.2.3.1 mozilla-nspr-32bit-debuginfo-4.20-lp150.2.3.1 mozilla-nss-32bit-3.40.1-lp150.2.10.2 mozilla-nss-32bit-debuginfo-3.40.1-lp150.2.10.2 mozilla-nss-certs-32bit-3.40.1-lp150.2.10.2 mozilla-nss-certs-32bit-debuginfo-3.40.1-lp150.2.10.2 mozilla-nss-sysinit-32bit-3.40.1-lp150.2.10.2 mozilla-nss-sysinit-32bit-debuginfo-3.40.1-lp150.2.10.2 References: https://www.suse.com/security/cve/CVE-2018-0495.html https://bugzilla.suse.com/1097410 https://bugzilla.suse.com/1119105 -- . Updates released for mozilla-nspr and mozilla-nss in openSUSE to fix severe memory and SSL vulnerabilities.. openSUSE Update, Mozilla NSS, Mozilla NSPR, Security Fixes, Memory Attack. . LinuxSecurity.com Team
Dec 28, 2018
OpenSUSE
200
security advisorycriticalkernelSciLinux: SLSA-2018-2164-1 Critical Kernel Memory Threats
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older v [More...]. Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2018:2164-1 Issue Date: 2018-07-10 CVE Numbers: CVE-2018-3639 CVE-2018-3665 CVE-2018-10675 CVE-2018-10872 -- Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639, x86 AMD) * kernel: Use-after-free vulnerability in mm/mempolicy.c:do_get_mempolicy function allows local denial of service or other unspecified impact (CVE-2018-10675) * Kernel: FPU state information leakage via lazy FPU restore (CVE-2018-3665) * kernel: error in exception handling leads to DoS (CVE-2018-8897 regression) (CVE-2018-10872) Bug Fix(es): * Previously, microcode updates on 32 and 64-bit AMD and Intel architectures were not synchronized. As a consequence, it was not possible to apply the microcode updates. This fix adds the synchronization to the microcode updates so that processors of the stated architecturesreceive updates at the same time. As a result, microcode updates are now synchronized. -- SL6 x86_64 kernel-2.6.32-754.2.1.el6.x86_64.rpm kernel-debug-2.6.32-754.2.1.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-754.2.1.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.2.1.el6.x86_64.rpm kernel-debug-devel-2.6.32-754.2.1.el6.i686.rpm kernel-debug-devel-2.6.32-754.2.1.el6.x86_64.rpm kernel-debuginfo-2.6.32-754.2.1.el6.i686.rpm kernel-debuginfo-2.6.32-754.2.1.el6.x86_64.rpm kernel-debuginfo-common-i686-2.6.32-754.2.1.el6.i686.rpm kernel-debuginfo-common-x86_64-2.6.32-754.2.1.el6.x86_64.rpm kernel-devel-2.6.32-754.2.1.el6.x86_64.rpm kernel-headers-2.6.32-754.2.1.el6.x86_64.rpm perf-2.6.32-754.2.1.el6.x86_64.rpm perf-debuginfo-2.6.32-754.2.1.el6.i686.rpm perf-debuginfo-2.6.32-754.2.1.el6.x86_64.rpm python-perf-debuginfo-2.6.32-754.2.1.el6.i686.rpm python-perf-debuginfo-2.6.32-754.2.1.el6.x86_64.rpm python-perf-2.6.32-754.2.1.el6.x86_64.rpm i386 kernel-2.6.32-754.2.1.el6.i686.rpm kernel-debug-2.6.32-754.2.1.el6.i686.rpm kernel-debug-debuginfo-2.6.32-754.2.1.el6.i686.rpm kernel-debug-devel-2.6.32-754.2.1.el6.i686.rpm kernel-debuginfo-2.6.32-754.2.1.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-754.2.1.el6.i686.rpm kernel-devel-2.6.32-754.2.1.el6.i686.rpm kernel-headers-2.6.32-754.2.1.el6.i686.rpm perf-2.6.32-754.2.1.el6.i686.rpm perf-debuginfo-2.6.32-754.2.1.el6.i686.rpm python-perf-debuginfo-2.6.32-754.2.1.el6.i686.rpm python-perf-2.6.32-754.2.1.el6.i686.rpm noarch kernel-abi-whitelists-2.6.32-754.2.1.el6.noarch.rpm kernel-doc-2.6.32-754.2.1.el6.noarch.rpm kernel-firmware-2.6.32-754.2.1.el6.noarch.rpm - Scientific Linux Development Team . Kernel security patches for SL6.x address severe memory management, denial-of-service attacks, and speculative execution flaws.. Kernel Security Updates, Memory Attack Risks, SL6 Performance Fixes. . Severity: Critical. LinuxSecurity.com Team
Jul 10, 2018
•Critical
Scientific Linux
100
security advisorycode executionimportantSUSE: 2018:1872-1 Important: Git Memory Attack and Code Execution
An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for git ______________________________________________________________________________ Announcement ID: SUSE-SU-2018:1872-1 Rating: important References: #1095218 #1095219 Cross-References: CVE-2018-11233 CVE-2018-11235 Affected Products: SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Basesystem 15 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for git to version 2.16.4 fixes several issues. These security issues were fixed: - CVE-2018-11233: Path sanity-checks on NTFS allowed attackers to read arbitrary memory (bsc#1095218) - CVE-2018-11235: Arbitrary code execution when recursively cloning a malicious repository (bsc#1095219) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Development Tools 15: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-2018-1267=1 - SUSE Linux Enterprise Module for Basesystem 15: zypper in -t patch SUSE-SLE-Module-Basesystem-15-2018-1267=1 Package List: - SUSE Linux Enterprise Module for Development Tools 15 (aarch64 ppc64le s390x x86_64): git-2.16.4-3.3.2 git-arch-2.16.4-3.3.2 git-cvs-2.16.4-3.3.2 git-daemon-2.16.4-3.3.2 git-daemon-debuginfo-2.16.4-3.3.2 git-debuginfo-2.16.4-3.3.2 git-debugsource-2.16.4-3.3.2 git-email-2.16.4-3.3.2 git-gui-2.16.4-3.3.2 git-svn-2.16.4-3.3.2 git-svn-debuginfo-2.16.4-3.3.2 git-web-2.16.4-3.3.2 gitk-2.16.4-3.3.2 - SUSE Linux Enterprise Module for Development Tools 15 (noarch): git-doc-2.16.4-3.3.2 - SUSE Linux Enterprise Module for Basesystem 15 (aarch64 ppc64le s390x x86_64): git-core-2.16.4-3.3.2 git-core-debuginfo-2.16.4-3.3.2 git-debuginfo-2.16.4-3.3.2 git-debugsource-2.16.4-3.3.2 References: https://www.suse.com/security/cve/CVE-2018-11233.html https://www.suse.com/security/cve/CVE-2018-11235.html https://bugzilla.suse.com/1095218 https://bugzilla.suse.com/1095219 . SUSE Security Patch for curl addresses severe flaws related to unauthorized command execution and memory corruption risks.. SUSE Security Update, git Patch, Development Tools, Software Security. . Severity: Important. LinuxSecurity.com Team
Jul 04, 2018
•Important
SuSE
98
security advisoryupdatered hatRed Hat 7.2 RHSA-2018-1637-01 Important Kernel Security Update
An update for kernel is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support, Red Hat Enterprise Linux 7.2 Telco Extended Update Support, and Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2018:1637-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2018:1637 Issue date: 2018-05-29 CVE Names: CVE-2018-3639 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support, Red Hat Enterprise Linux 7.2 Telco Extended Update Support, and Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 7.2) - noarch, x86_64 Red Hat Enterprise Linux Server E4S (v. 7.2) - noarch, ppc64le, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.2) - x86_64 Red Hat Enterprise Linux Server Optional E4S (v. 7.2) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional TUS (v. 7.2) - x86_64 Red Hat Enterprise Linux Server TUS (v. 7.2) - noarch, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instructionsequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639) Note: This issue is present in hardware and cannot be fully fixed via software update. The updated kernel packages provide software side of the mitigation for this hardware issue. To be fully functional, up-to-date CPU microcode applied on the system is required. Please refer to References section for further information about this issue, CPU microcode requirements and the potential performance impact. In this update mitigations for x86-64 architecture are provided. Red Hat would like to thank Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting this issue. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1566890 - CVE-2018-3639 hw: cpu: speculative store bypass 6. Package List: Red Hat Enterprise Linux Server AUS (v.7.2): Source: kernel-3.10.0-327.66.5.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-327.66.5.el7.noarch.rpm kernel-doc-3.10.0-327.66.5.el7.noarch.rpm x86_64: kernel-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-devel-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-327.66.5.el7.x86_64.rpm kernel-devel-3.10.0-327.66.5.el7.x86_64.rpm kernel-headers-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-libs-3.10.0-327.66.5.el7.x86_64.rpm perf-3.10.0-327.66.5.el7.x86_64.rpm perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm python-perf-3.10.0-327.66.5.el7.x86_64.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm Red Hat Enterprise Linux Server E4S (v.7.2): Source: kernel-3.10.0-327.66.5.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-327.66.5.el7.noarch.rpm kernel-doc-3.10.0-327.66.5.el7.noarch.rpm ppc64le: kernel-3.10.0-327.66.5.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-327.66.5.el7.ppc64le.rpm kernel-debug-3.10.0-327.66.5.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm kernel-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-327.66.5.el7.ppc64le.rpm kernel-devel-3.10.0-327.66.5.el7.ppc64le.rpm kernel-headers-3.10.0-327.66.5.el7.ppc64le.rpm kernel-tools-3.10.0-327.66.5.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm kernel-tools-libs-3.10.0-327.66.5.el7.ppc64le.rpm perf-3.10.0-327.66.5.el7.ppc64le.rpm perf-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm python-perf-3.10.0-327.66.5.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm x86_64: kernel-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-devel-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-327.66.5.el7.x86_64.rpm kernel-devel-3.10.0-327.66.5.el7.x86_64.rpm kernel-headers-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-libs-3.10.0-327.66.5.el7.x86_64.rpm perf-3.10.0-327.66.5.el7.x86_64.rpm perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm python-perf-3.10.0-327.66.5.el7.x86_64.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm Red Hat Enterprise Linux Server TUS (v.7.2): Source: kernel-3.10.0-327.66.5.el7.src.rpm noarch: kernel-abi-whitelists-3.10.0-327.66.5.el7.noarch.rpm kernel-doc-3.10.0-327.66.5.el7.noarch.rpm x86_64: kernel-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debug-devel-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-327.66.5.el7.x86_64.rpm kernel-devel-3.10.0-327.66.5.el7.x86_64.rpm kernel-headers-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-libs-3.10.0-327.66.5.el7.x86_64.rpm perf-3.10.0-327.66.5.el7.x86_64.rpm perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm python-perf-3.10.0-327.66.5.el7.x86_64.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 7.2): x86_64: kernel-debug-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-327.66.5.el7.x86_64.rpm perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional E4S (v.7.2): ppc64le: kernel-debug-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm kernel-debug-devel-3.10.0-327.66.5.el7.ppc64le.rpm kernel-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-327.66.5.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-327.66.5.el7.ppc64le.rpm perf-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.ppc64le.rpm x86_64: kernel-debug-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-327.66.5.el7.x86_64.rpm perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional TUS (v. 7.2): x86_64: kernel-debug-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-327.66.5.el7.x86_64.rpm perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm python-perf-debuginfo-3.10.0-327.66.5.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-3639 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/ssbd 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBWw2BANzjgjWX9erEAQhF0w//fF6L71SjAmFvVMGdxUVNxWSXTDvAYGQd HSNMuvjQ3smc3SJaPZZQR1bBMvpibi5+xNq+lXLAnlmbSdHAiCaFozEOdW/NI+VM uVTqg7JUDO/sPa2CcfMOY4HNwEOw23BkNLgbrSVSapiDBKQPdQzcDBHn0iqQ8zwo Sx6q+RI288WBzDi8RtK26y1j+ggCNlqFuI4T35efkxsY2YD1o2GWdLAT0vTOovJS bSRxk6UowD4z+UQGx6QhPYQZnAfeqq264EBxH5EhkbEPXaxrMtHVslcT5pzknbjZ 61NFikhNl2T2rA7j9VnHwNXbhvUur6hrNvdgO8f+TJKOWQU5cd2NKMI1Tk7mLg+q ppUrHz6U6LfW/XzOf6vbjUgwovEGks2Dge4v9KA2NaCQyMQqbvUScjCBnFgE7MlR tUwj2Y8i98BSplwnrPsVO7ur8ngNUKJ/E0Zv+JCaeOEANJTDymAdVu3cUZjSy+rE GSxktqIiskzf4lEeq43SkhzUY3z/W9ePRG9hQx61GWf1EKHYj7gxo1+ZVoCig5sO KNT0mcsBzzxdN4FuaXv/Ckptd0pWJ3HOt3DPSEK7iYpNzqTPlrSPqBMMRdy98+us 4hPqJGKU4rEbM8Gr/KEqKqmUc46Au6uGJDUuDOyy/AeKrhMG+irhKlZKOK2OkzrO kcpTK3t5OFU=Pgol -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 29, 2018
•Important
Red Hat
98
security advisoryRed HatupdateRed Hat 6.6: RHSA-2018-1658-01 Critical: kvm Memory Access Attack
An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support and Red Hat Enterprise Linux 6.6 Telco Extended Update Support. Red Hat Product Security has rated this update as having a security impact. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: qemu-kvm security update Advisory ID: RHSA-2018:1658-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2018:1658 Issue date: 2018-05-21 CVE Names: CVE-2018-3639 ==================================================================== 1. Summary: An update for qemu-kvm is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support and Red Hat Enterprise Linux 6.6 Telco Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 6.6) - x86_64 Red Hat Enterprise Linux Server TUS (v. 6.6) - x86_64 3. Description: Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cacheeven for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639) Note: This is the qemu-kvm side of the CVE-2018-3639 mitigation. Red Hat would like to thank Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting this issue. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1566890 - CVE-2018-3639 hw: cpu: speculative store bypass 6. Package List: Red Hat Enterprise Linux Server AUS (v. 6.6): Source: qemu-kvm-0.12.1.2-2.448.el6_6.6.src.rpm x86_64: qemu-guest-agent-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-img-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-kvm-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-kvm-tools-0.12.1.2-2.448.el6_6.6.x86_64.rpm Red Hat Enterprise Linux Server TUS (v. 6.6): Source: qemu-kvm-0.12.1.2-2.448.el6_6.6.src.rpm x86_64: qemu-guest-agent-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-img-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-kvm-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-kvm-debuginfo-0.12.1.2-2.448.el6_6.6.x86_64.rpm qemu-kvm-tools-0.12.1.2-2.448.el6_6.6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-3639 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/security/vulnerabilities/ssbd 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact/ Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBWwQwS9zjgjWX9erEAQgB6RAAoAoZvcJTo5OQMCqptpRU4a+ZPmlB3C9C 2Z3vFhGS+sgF1FUkqMfy8JcFpVaDjFKK+TUAVFKTEz0Hhawd+0xYRuUKNku7DXHI r5PK/2ex3AoJezXxkyuGwODKYjX0siG3nuIdGw+qD3VnIF1jaAVNpK+fnqzTVKrsAdOMGv18xJw4joxDNZNUCi3jDfgAVLwAdLGyWzhYnmIT14BfOnuSo3YDmxoeV45X Kmnj7rF4DQQPzPIejHf5stJu55iJM0cOWO51bmBakybIizFKdDKiCiGuVTsHkFXg gHHxA7VwdrrSC2MofyBEP0jsd9LhFskZdi4+ZdmQT7tPbf59k6Nms+RoBgUGaNJv zLAX9b2OusjR3deoe1KIdNF7KYG6B9YWuV7vnykT4Wofg/GUesFYr3SZpXxVtud8 fbCUh2OiYXROtXXIHj+D7E3TbR5HSMtbrVrPF4vyE3GQ5VyNBL82lFYl0vhh+IzW HefX9XJEVYXT4dBZUEA1ombB2zn8lvYyXiQHThOF1BswlZmELEX72gxbrPWsGUr5 VXuufoLcUd9VLcrsloHDS6IqyWodKYczZSQL5rEnGxGL5osjSWcXq9WvS2MUzTTM wVgjskHPLaozCO7/GitjRGNwKGiFAWbkb9IxeQV+e8hrAq2JD0X2RvW8fZtPd5o2 9eWpfBsNk3w=1FPw -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 22, 2018
•Important
Red Hat
98
security advisoryRed Hat Enterprise Linuxmemory attackRed Hat Enterprise Linux 7 Important: RHSA-2018-1686-01 Memory Threat
An update for qemu-kvm-rhev is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: qemu-kvm-rhev security update Advisory ID: RHSA-2018:1686-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2018:1686 Issue date: 2018-05-21 CVE Names: CVE-2018-3639 ==================================================================== 1. Summary: An update for qemu-kvm-rhev is now available for Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7 - x86_64 3. Description: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value andsubsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639) Red Hat would like to thank Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting this issue. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1566890 - CVE-2018-3639 hw: cpu: speculative store bypass 6. Package List: Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) for RHEL 7: Source: qemu-kvm-rhev-2.9.0-16.el7_4.17.src.rpm x86_64: qemu-img-rhev-2.9.0-16.el7_4.17.x86_64.rpm qemu-kvm-common-rhev-2.9.0-16.el7_4.17.x86_64.rpm qemu-kvm-rhev-2.9.0-16.el7_4.17.x86_64.rpm qemu-kvm-rhev-debuginfo-2.9.0-16.el7_4.17.x86_64.rpm qemu-kvm-tools-rhev-2.9.0-16.el7_4.17.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-3639 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/security/vulnerabilities/ssbd 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBWwQwWtzjgjWX9erEAQhbzA//apHiQlcFqNmk3M1MMX1sugpfD/+92bhH PGXxWvu+mV7De2BGkoTGEqX2cAo7ZOAJAdMW4zZg/IRSHXtCE9YxlyixxOna/OEt lPqW+fht68dcoXZoBnEsoY6XuNtIwWzHDjRS2s0sexNLRT3t/YQnp0HnIFAd6F/E GoEv4buQ+xfdGZYNpCd6Vg9jrT/w+9/hWy5PShKjScktHmBR/tvcqluS1SaluVFy rwTgwrZVmifregn37T9GRIH/Vb628V4LGrwGN4VDGLKOSlNri1Dm2UlxYDBD3EaD Q6JIGCV3XtB0+r1X9v+16AU3MokdA+d9JNY6DcYQtscINJ4Q0/krPZnU5+7tI7pq LFjaTCPqPdNZmiyaxoKBk9a66v2eYSGVeFrx9S+Ej9DlYCwF/gksJlvYyKCasyRc f6ytfF0Xpl5f2xLIRPBhoi25UCkh6k5khSJpri3rJ5gJTo+yQ6ZP+Y3upB9tmswr wooA78mXLB1EsUToNgUgJxvQVRW/OUodrCxLiirGnJF6aZgYp5N+Q3FHH25khPBe VjOOs20QiGNBqJoj1nlnilDI2qeGyM8b5G8cbhe3qDCCXC+1nqaaKYKDDPfyFK3H W4rqM5j+0RuhpzG770I94a96IhC/gcstWVn/gsbif1tlwbNTeUMTFLaYmG4AxdVH l/RkK5Q8/3Q=Gde/ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 22, 2018
•Important
Red Hat
89
security advisorysubversionupdateFedora 26: 2017-704c201dbb Moderate: Subversion Memory Collision Attack
This update includes the latest stable release of _Apache Subversion_, version **1.9.6**. ### User-visible changes: #### Client-side bugfixes: * cp/mv: improve error message when target is an unversioned dir * merge: reduce memory usage with large amounts of mergeinfo ([issue 4667](https://issues.apache.org/jira/browse/SVN-4667)) #### Server-side. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-704c201dbb 2017-07-25 15:01:20.602424 --------------------------------------------------------------------------------Name : subversion Product : Fedora 26 Version : 1.9.6 Release : 2.fc26 URL : https://subversion.apache.org/ Summary : A Modern Concurrent Version Control System Description : Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. Subversion only stores the differences between versions, instead of every complete file. Subversion is intended to be a compelling replacement for CVS. --------------------------------------------------------------------------------Update Information: This update includes the latest stable release of _Apache Subversion_, version **1.9.6**. ### User-visible changes: #### Client-side bugfixes: * cp/mv: improve error message when target is an unversioned dir * merge: reduce memory usage with large amounts of mergeinfo ([issue 4667]()) #### Server-side bugfixes: * 'svnadmin freeze': document the purpose more clearly * dump: fix segfault when a revision has no revprops * fsfs: improve error message upon failure to open rep-cache * fsfs: never attempt to share directory representations * fsfs: make consistency independent of hash algorithms This change makes Subversion resilient to collision attacks, including SHA-1 collision attacks such as See also our documentation athttps://subversion.apache.org/faq#shattered-sha1 and https://subversion.apache.org/docs/release-notes/1.9#shattered-sha1. #### Client-side and server-side bugfixes: * work around an APR bug related to file truncation #### Bindings bugfixes: * javahl: follow redirects when opening a connection --------------------------------------------------------------------------------References: [ 1 ] Bug #1429939 - subversion: SHA-1 collision causes repository breakage [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1429939 [ 2 ] Bug #1467890 - subversion-1.9.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1467890 [ 3 ] Bug #1469158 - subversion-javahl libraries are missing https://bugzilla.redhat.com/show_bug.cgi?id=1469158 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade subversion' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Jul 25, 2017
•Important
Fedora
172
security advisorydenial of servicesecurity issueUbuntu 10.04 LTS USN-1203-1 Critical: Kernel Denial Of Service Fixes
Multiple kernel flaws have been fixed.. =========================================================================Ubuntu Security Notice USN-1203-1 September 13, 2011 linux-mvl-dove vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 10.04 LTS Summary: Multiple kernel flaws have been fixed. Software Description: - linux-mvl-dove: Linux kernel for DOVE Details: Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. (CVE-2010-4076, CVE-2010-4077) Alex Shi and Eric Dumazet discovered that the network stack did not correctly handle packet backlogs. A remote attacker could exploit this by sending a large amount of network traffic to cause the system to run out of memory, leading to a denial of service. (CVE-2010-4251, CVE-2010-4805) It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities. (CVE-2011-1020) Dan Rosenberg discovered that the X.25 Rose network stack did not correctly handle certain fields. If a system was running with Rose enabled, a remote attacker could send specially crafted traffic to gain root privileges. (CVE-2011-1493) Timo Warns discovered that the GUID partition parsing routines did not correctly validate certain structures. A local attacker with physical access could plug in a specially crafted block device to crash the system, leading to a denial of service. (CVE-2011-1577) Dan Rosenberg discovered that the IPv4 diagnostic routines did not correctly validate certain requests. A local attacker could exploit this to consume CPU resources, leading to a denial of service.(CVE-2011-2213) Vasiliy Kulikov discovered that taskstats listeners were not correctly handled. A local attacker could expoit this to exhaust memory and CPU resources, leading to a denial of service. (CVE-2011-2484) It was discovered that Bluetooth l2cap and rfcomm did not correctly initialize structures. A local attacker could exploit this to read portions of the kernel stack, leading to a loss of privacy. (CVE-2011-2492) Mauro Carvalho Chehab discovered that the si4713 radio driver did not correctly check the length of memory copies. If this hardware was available, a local attacker could exploit this to crash the system or gain root privileges. (CVE-2011-2700) Herbert Xu discovered that certain fields were incorrectly handled when Generic Receive Offload (GRO) is enabled. If a system was running with GRO enabled, a remote attacker could send specially crafted traffic to crash the system, leading to a denial of service. (CVE-2011-2723) The performance counter subsystem did not correctly handle certain counters. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-2918) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 10.04 LTS: linux-image-2.6.32-218-dove 2.6.32-218.36 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-1203-1 CVE-2010-4076, CVE-2010-4077, CVE-2010-4251,CVE-2010-4805, CVE-2011-1020, CVE-2011-1493, CVE-2011-1577, CVE-2011-2213, CVE-2011-2484, CVE-2011-2492, CVE-2011-2700, CVE-2011-2723, CVE-2011-2918 Package Information: https://launchpad.net/ubuntu/+source/linux-mvl-dove/2.6.32-218.36 . Numerous kernel vulnerabilities in Ubuntu resolved to strengthen security and mitigate memory exploitation and service interruption threats.. Linux Kernel Issues, Ubuntu Security Updates, Memory Exploits, Denial Of Service. . Severity: Critical. LinuxSecurity.com Team
Sep 13, 2011
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!