Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 2 articles for you...
197
security advisorydenial of servicecriticalDebian 10 Buster DLA-3405-1 Critical: Libxml2 Denial Of Service
Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3405-1
Apr 30, 2023
•Critical
Debian LTS
87
security advisorydenial of servicedebianDebian 11 DSA-5391-1 Critical: libxml2 NULL Pointer Issue
Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. CVE-2023-28484 . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5391-1
Apr 20, 2023
•Critical
Debian
100
security advisorykernel patchinformation disclosureSUSE: 2022:2111-1 Important: Kernel Update Improves Security and Stability
An update that solves 30 vulnerabilities and has 14 fixes is now available. . SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:2111-1 Rating: important References: #1028340 #1055710 #1065729 #1071995 #1084513 #1087082 #1114648 #1158266 #1172456 #1177282 #1182171 #1183723 #1187055 #1191647 #1191958 #1195065 #1195651 #1196018 #1196367 #1196426 #1196999 #1197219 #1197343 #1197663 #1198400 #1198516 #1198577 #1198660 #1198687 #1198742 #1198777 #1198825 #1199012 #1199063 #1199314 #1199399 #1199426 #1199505 #1199507 #1199605 #1199650 #1200143 #1200144 #1200249 Cross-References: CVE-2017-13695 CVE-2018-7755 CVE-2019-19377 CVE-2019-20811 CVE-2020-26541 CVE-2021-20292 CVE-2021-20321 CVE-2021-33061 CVE-2021-38208 CVE-2021-39711 CVE-2021-43389 CVE-2022-1011 CVE-2022-1184 CVE-2022-1353 CVE-2022-1419 CVE-2022-1516 CVE-2022-1652 CVE-2022-1729 CVE-2022-1734 CVE-2022-1974 CVE-2022-1975 CVE-2022-21123 CVE-2022-21125 CVE-2022-21127 CVE-2022-21166 CVE-2022-21180 CVE-2022-21499 CVE-2022-22942 CVE-2022-28748 CVE-2022-30594 CVSS scores: CVE-2017-13695 (NVD) : 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2017-13695 (SUSE): 4 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2018-7755 (NVD) : 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2018-7755 (SUSE): 4 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-19377 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-19377 (SUSE):7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-20811 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2019-20811 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2020-26541 (SUSE): 6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N CVE-2021-20292 (NVD) : 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-20292 (SUSE): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-20321 (NVD) : 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-20321 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-33061 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-33061 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-38208 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-38208 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-39711 (NVD) : 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N CVE-2021-39711 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2021-43389 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-43389 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-1011 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1011 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1184 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-1353 (NVD) : 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2022-1353 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H CVE-2022-1419 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1419 (SUSE): 6.7CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2022-1516 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-1516 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-1652 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1652 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1729 (SUSE): 8.2 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H CVE-2022-1734 (NVD) : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1734 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-1974 (SUSE): 6.8 CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2022-1975 (SUSE): 4.5 CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2022-21123 (SUSE): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N CVE-2022-21125 (SUSE): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2022-21127 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2022-21166 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2022-21180 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2022-21499 (NVD) : 6.5 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H CVE-2022-21499 (SUSE): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-22942 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-28748 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-30594 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-30594 (SUSE): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Linux Enterprise High Availability 15-SP1 SUSE Linux Enterprise High Performance Computing 15-SP1 SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise Module for Live Patching 15-SP1 SUSE Linux Enterprise Server 15-SP1 SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server for SAP 15-SP1 SUSE Linux Enterprise Server for SAP Applications 15-SP1 SUSE Manager Proxy 4.0 SUSE Manager Retail Branch Server 4.0 SUSE Manager Server 4.0 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that solves 30 vulnerabilities and has 14 fixes is now available. Description: The SUSE Linux Enterprise 15 SP1 kernel was updated. The following security bugs were fixed: - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2019-19377: Fixedan user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266) - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2017-13695: Fixed a bug that caused a stack dump allowing local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted ACPI table. (bnc#1055710) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2021-39711: In bpf_prog_test_run_skb of test_run.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1197219). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). - CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect (bsc#1199012). - CVE-2021-20321: Fixed a race condition accessing file object in the OverlayFS subsystem in the way users do rename in specific way with OverlayFS. A local user could have used this flaw to crash the system (bnc#1191647). - CVE-2019-20811: Fixed issue in rx_queue_add_kobject() and netdev_queue_add_kobject() in net/core/net-sysfs.c, where a reference count is mishandled (bnc#1172456). - CVE-2022-28748: Fixed memory lead over the network by ax88179_178a devices (bsc#1196018). - CVE-2018-7755: Fixed an issue in the fd_locked_ioctl function in drivers/block/floppy.c. The floppy driver will copy a kernel pointer to user memory in response to the FDGETPRM ioctl. An attacker can send the FDGETPRM ioctl and use the obtained kernel pointer to discover the location of kernel code and data and bypass kernel security protections such as KASLR (bnc#1084513). - CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065). - CVE-2022-1419: Fixed a concurrency use-after-free in vgem_gem_dumb_create (bsc#1198742). - CVE-2021-43389: Fixed an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958). - CVE-2021-38208: Fixed a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call (bnc#1187055). - CVE-2022-1353: Fixed access controll to kernel memory in the pfkey_register function in net/key/af_key.c (bnc#1198516). - CVE-2021-20292: Fixed object validation prior to performing operations on the object in nouveau_sgdma_create_ttm in Nouveau DRM subsystem (bnc#1183723). - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bnc#1197343) - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144). - CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282) - CVE-2022-1975: Fixed a bug that allows an attacker to crash the linux kernel by simulating nfc device from user-space. (bsc#1200143) - CVE-2022-21499: Reinforce the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb. (bsc#1199426) - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware downloadroutine. (bnc#1199605). The following non-security bugs were fixed: - btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized (bsc#1199399). - btrfs: tree-checker: fix incorrect printk format (bsc#1200249). - net: ena: A typo fix in the file ena_com.h (bsc#1198777). - net: ena: Add capabilities field with support for ENI stats capability (bsc#1198777). - net: ena: Add debug prints for invalid req_id resets (bsc#1198777). - net: ena: add device distinct log prefix to files (bsc#1198777). - net: ena: add jiffies of last napi call to stats (bsc#1198777). - net: ena: aggregate doorbell common operations into a function (bsc#1198777). - net: ena: aggregate stats increase into a function (bsc#1198777). - net: ena: Change ENI stats support check to use capabilities field (bsc#1198777). - net: ena: Change return value of ena_calc_io_queue_size() to void (bsc#1198777). - net: ena: Change the name of bad_csum variable (bsc#1198777). - net: ena: Extract recurring driver reset code into a function (bsc#1198777). - net: ena: fix coding style nits (bsc#1198777). - net: ena: fix DMA mapping function issues in XDP (bsc#1198777). - net: ena: Fix error handling when calculating max IO queues number (bsc#1198777). - net: ena: fix inaccurate print type (bsc#1198777). - net: ena: Fix undefined state when tx request id is out of bounds (bsc#1198777). - net: ena: Fix wrong rx request id by resetting device (bsc#1198777). - net: ena: Improve error logging in driver (bsc#1198777). - net: ena: introduce ndo_xdp_xmit() function for XDP_REDIRECT (bsc#1198777). - net: ena: introduce XDP redirect implementation (bsc#1198777). - net: ena: make symbol 'ena_alloc_map_page' static (bsc#1198777). - net: ena: Move reset completion print to the reset function (bsc#1198777). - net: ena: optimize data access in fast-path code (bsc#1198777). - net: ena: re-organize code to improve readability(bsc#1198777). - net: ena: Remove ena_calc_queue_size_ctx struct (bsc#1198777). - net: ena: remove extra words from comments (bsc#1198777). - net: ena: Remove module param and change message severity (bsc#1198777). - net: ena: Remove rcu_read_lock() around XDP program invocation (bsc#1198777). - net: ena: Remove redundant return code check (bsc#1198777). - net: ena: Remove unused code (bsc#1198777). - net: ena: store values in their appropriate variables types (bsc#1198777). - net: ena: Update XDP verdict upon failure (bsc#1198777). - net: ena: use build_skb() in RX path (bsc#1198777). - net: ena: use constant value for net_device allocation (bsc#1198777). - net: ena: Use dev_alloc() in RX buffer allocation (bsc#1198777). - net: ena: Use pci_sriov_configure_simple() to enable VFs (bsc#1198777). - net: ena: use xdp_frame in XDP TX flow (bsc#1198777). - net: ena: use xdp_return_frame() to free xdp frames (bsc#1198777). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - powerpc/64: Fix kernel stack 16-byte alignment (bsc#1196999 ltc#196609S git-fixes). - powerpc/64: Interrupts save PPR on stack rather than thread_struct (bsc#1196999 ltc#196609). - powerpc/pseries: extract host bridge from pci_bus prior to bus removal (bsc#1182171 ltc#190900 bsc#1198660 ltc#197803). - powerpc/pseries: Fix use after free in remove_phb_dynamic() (bsc#1065729 bsc#1198660 ltc#197803). - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() (bsc#1028340 bsc#1198825). - SUNRPC:change locking for xs_swap_enable/disable (bsc#1196367). - x86/pm: Save the MSR validity status at context setup (bsc#1114648). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1114648). Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-2111=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-2111=1 - SUSE Linux Enterprise Server for SAP 15-SP1: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2022-2111=1 - SUSE Linux Enterprise Server 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-2111=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2022-2111=1 - SUSE Linux Enterprise Module for Live Patching 15-SP1: zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP1-2022-2111=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-2111=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-2111=1 - SUSE Linux Enterprise High Availability 15-SP1: zypper in -t patch SUSE-SLE-Product-HA-15-SP1-2022-2111=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2022-2111=1 - SUSE CaaS Platform 4.0: To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-4.12.14-150100.197.114.2 kernel-vanilla-base-4.12.14-150100.197.114.2 kernel-vanilla-base-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-debugsource-4.12.14-150100.197.114.2 kernel-vanilla-devel-4.12.14-150100.197.114.2 kernel-vanilla-devel-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2 - openSUSE Leap 15.4 (ppc64le x86_64): kernel-debug-base-4.12.14-150100.197.114.2 kernel-debug-base-debuginfo-4.12.14-150100.197.114.2 - openSUSE Leap 15.4 (x86_64): kernel-kvmsmall-base-4.12.14-150100.197.114.2 kernel-kvmsmall-base-debuginfo-4.12.14-150100.197.114.2 - openSUSE Leap 15.4 (s390x): kernel-default-man-4.12.14-150100.197.114.2 kernel-zfcpdump-man-4.12.14-150100.197.114.2 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-4.12.14-150100.197.114.2 kernel-vanilla-base-4.12.14-150100.197.114.2 kernel-vanilla-base-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-debugsource-4.12.14-150100.197.114.2 kernel-vanilla-devel-4.12.14-150100.197.114.2 kernel-vanilla-devel-debuginfo-4.12.14-150100.197.114.2 kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2 - openSUSE Leap 15.3 (ppc64le x86_64): kernel-debug-base-4.12.14-150100.197.114.2 kernel-debug-base-debuginfo-4.12.14-150100.197.114.2 - openSUSE Leap 15.3 (x86_64): kernel-kvmsmall-base-4.12.14-150100.197.114.2 kernel-kvmsmall-base-debuginfo-4.12.14-150100.197.114.2 - openSUSE Leap 15.3 (s390x): kernel-default-man-4.12.14-150100.197.114.2 kernel-zfcpdump-man-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64): kernel-default-4.12.14-150100.197.114.2 kernel-default-base-4.12.14-150100.197.114.2 kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-devel-4.12.14-150100.197.114.2 kernel-default-devel-debuginfo-4.12.14-150100.197.114.2 kernel-obs-build-4.12.14-150100.197.114.2 kernel-obs-build-debugsource-4.12.14-150100.197.114.2 kernel-syms-4.12.14-150100.197.114.2 reiserfs-kmp-default-4.12.14-150100.197.114.2 reiserfs-kmp-default-debuginfo-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Server for SAP 15-SP1 (noarch): kernel-devel-4.12.14-150100.197.114.2 kernel-docs-4.12.14-150100.197.114.2 kernel-macros-4.12.14-150100.197.114.2 kernel-source-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64): kernel-default-4.12.14-150100.197.114.2 kernel-default-base-4.12.14-150100.197.114.2 kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-devel-4.12.14-150100.197.114.2 kernel-default-devel-debuginfo-4.12.14-150100.197.114.2 kernel-obs-build-4.12.14-150100.197.114.2 kernel-obs-build-debugsource-4.12.14-150100.197.114.2 kernel-syms-4.12.14-150100.197.114.2 reiserfs-kmp-default-4.12.14-150100.197.114.2 reiserfs-kmp-default-debuginfo-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Server 15-SP1-LTSS (noarch): kernel-devel-4.12.14-150100.197.114.2 kernel-docs-4.12.14-150100.197.114.2 kernel-macros-4.12.14-150100.197.114.2 kernel-source-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Server 15-SP1-LTSS (s390x): kernel-default-man-4.12.14-150100.197.114.2 kernel-zfcpdump-debuginfo-4.12.14-150100.197.114.2 kernel-zfcpdump-debugsource-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): kernel-default-4.12.14-150100.197.114.2 kernel-default-base-4.12.14-150100.197.114.2 kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-devel-4.12.14-150100.197.114.2 kernel-default-devel-debuginfo-4.12.14-150100.197.114.2 kernel-obs-build-4.12.14-150100.197.114.2 kernel-obs-build-debugsource-4.12.14-150100.197.114.2 kernel-syms-4.12.14-150100.197.114.2 reiserfs-kmp-default-4.12.14-150100.197.114.2 reiserfs-kmp-default-debuginfo-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Server 15-SP1-BCL (noarch): kernel-devel-4.12.14-150100.197.114.2 kernel-docs-4.12.14-150100.197.114.2 kernel-macros-4.12.14-150100.197.114.2 kernel-source-4.12.14-150100.197.114.2 - SUSE Linux Enterprise Module for Live Patching 15-SP1 (ppc64le x86_64): kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-livepatch-4.12.14-150100.197.114.2 kernel-default-livepatch-devel-4.12.14-150100.197.114.2 kernel-livepatch-4_12_14-150100_197_114-default-1-150100.3.3.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): kernel-default-4.12.14-150100.197.114.2 kernel-default-base-4.12.14-150100.197.114.2 kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-devel-4.12.14-150100.197.114.2 kernel-default-devel-debuginfo-4.12.14-150100.197.114.2 kernel-obs-build-4.12.14-150100.197.114.2 kernel-obs-build-debugsource-4.12.14-150100.197.114.2 kernel-syms-4.12.14-150100.197.114.2 - SUSE Linux Enterprise High PerformanceComputing 15-SP1-LTSS (noarch): kernel-devel-4.12.14-150100.197.114.2 kernel-docs-4.12.14-150100.197.114.2 kernel-macros-4.12.14-150100.197.114.2 kernel-source-4.12.14-150100.197.114.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): kernel-default-4.12.14-150100.197.114.2 kernel-default-base-4.12.14-150100.197.114.2 kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-devel-4.12.14-150100.197.114.2 kernel-default-devel-debuginfo-4.12.14-150100.197.114.2 kernel-obs-build-4.12.14-150100.197.114.2 kernel-obs-build-debugsource-4.12.14-150100.197.114.2 kernel-syms-4.12.14-150100.197.114.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (noarch): kernel-devel-4.12.14-150100.197.114.2 kernel-docs-4.12.14-150100.197.114.2 kernel-macros-4.12.14-150100.197.114.2 kernel-source-4.12.14-150100.197.114.2 - SUSE Linux Enterprise High Availability 15-SP1 (aarch64 ppc64le s390x x86_64): cluster-md-kmp-default-4.12.14-150100.197.114.2 cluster-md-kmp-default-debuginfo-4.12.14-150100.197.114.2 dlm-kmp-default-4.12.14-150100.197.114.2 dlm-kmp-default-debuginfo-4.12.14-150100.197.114.2 gfs2-kmp-default-4.12.14-150100.197.114.2 gfs2-kmp-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 ocfs2-kmp-default-4.12.14-150100.197.114.2 ocfs2-kmp-default-debuginfo-4.12.14-150100.197.114.2 - SUSE Enterprise Storage 6 (aarch64 x86_64): kernel-default-4.12.14-150100.197.114.2 kernel-default-base-4.12.14-150100.197.114.2 kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-devel-4.12.14-150100.197.114.2 kernel-default-devel-debuginfo-4.12.14-150100.197.114.2 kernel-obs-build-4.12.14-150100.197.114.2 kernel-obs-build-debugsource-4.12.14-150100.197.114.2 kernel-syms-4.12.14-150100.197.114.2 reiserfs-kmp-default-4.12.14-150100.197.114.2 reiserfs-kmp-default-debuginfo-4.12.14-150100.197.114.2 - SUSE Enterprise Storage 6 (noarch): kernel-devel-4.12.14-150100.197.114.2 kernel-docs-4.12.14-150100.197.114.2 kernel-macros-4.12.14-150100.197.114.2 kernel-source-4.12.14-150100.197.114.2 - SUSE CaaS Platform 4.0 (x86_64): kernel-default-4.12.14-150100.197.114.2 kernel-default-base-4.12.14-150100.197.114.2 kernel-default-base-debuginfo-4.12.14-150100.197.114.2 kernel-default-debuginfo-4.12.14-150100.197.114.2 kernel-default-debugsource-4.12.14-150100.197.114.2 kernel-default-devel-4.12.14-150100.197.114.2 kernel-default-devel-debuginfo-4.12.14-150100.197.114.2 kernel-obs-build-4.12.14-150100.197.114.2 kernel-obs-build-debugsource-4.12.14-150100.197.114.2 kernel-syms-4.12.14-150100.197.114.2 reiserfs-kmp-default-4.12.14-150100.197.114.2 reiserfs-kmp-default-debuginfo-4.12.14-150100.197.114.2 - SUSE CaaS Platform 4.0 (noarch): kernel-devel-4.12.14-150100.197.114.2 kernel-docs-4.12.14-150100.197.114.2 kernel-macros-4.12.14-150100.197.114.2 kernel-source-4.12.14-150100.197.114.2 References: https://www.suse.com/security/cve/CVE-2017-13695.html https://www.suse.com/security/cve/CVE-2018-7755.html https://www.suse.com/security/cve/CVE-2019-19377.html https://www.suse.com/security/cve/CVE-2019-20811.html https://www.suse.com/security/cve/CVE-2020-26541.html https://www.suse.com/security/cve/CVE-2021-20292.html https://www.suse.com/security/cve/CVE-2021-20321.html https://www.suse.com/security/cve/CVE-2021-33061.html https://www.suse.com/security/cve/CVE-2021-38208.html https://www.suse.com/security/cve/CVE-2021-39711.html https://www.suse.com/security/cve/CVE-2021-43389.html https://www.suse.com/security/cve/CVE-2022-1011.html https://www.suse.com/security/cve/CVE-2022-1184.html https://www.suse.com/security/cve/CVE-2022-1353.html https://www.suse.com/security/cve/CVE-2022-1419.html https://www.suse.com/security/cve/CVE-2022-1516.html https://www.suse.com/security/cve/CVE-2022-1652.html https://www.suse.com/security/cve/CVE-2022-1729.html https://www.suse.com/security/cve/CVE-2022-1734.html https://www.suse.com/security/cve/CVE-2022-1974.html https://www.suse.com/security/cve/CVE-2022-1975.html https://www.suse.com/security/cve/CVE-2022-21123.html https://www.suse.com/security/cve/CVE-2022-21125.html https://www.suse.com/security/cve/CVE-2022-21127.html https://www.suse.com/security/cve/CVE-2022-21166.html https://www.suse.com/security/cve/CVE-2022-21180.html https://www.suse.com/security/cve/CVE-2022-21499.html https://www.suse.com/security/cve/CVE-2022-22942.html https://www.suse.com/security/cve/CVE-2022-28748.html https://www.suse.com/security/cve/CVE-2022-30594.html https://bugzilla.suse.com/1028340 https://bugzilla.suse.com/1055710 https://bugzilla.suse.com/1065729 https://bugzilla.suse.com/1071995 https://bugzilla.suse.com/1084513 https://bugzilla.suse.com/1087082 https://bugzilla.suse.com/1114648 https://bugzilla.suse.com/1158266 https://bugzilla.suse.com/1172456 https://bugzilla.suse.com/1177282 https://bugzilla.suse.com/1182171 https://bugzilla.suse.com/1183723 https://bugzilla.suse.com/1187055 https://bugzilla.suse.com/1191647 https://bugzilla.suse.com/1191958 https://bugzilla.suse.com/1195065 https://bugzilla.suse.com/1195651 https://bugzilla.suse.com/1196018 https://bugzilla.suse.com/1196367 https://bugzilla.suse.com/1196426 https://bugzilla.suse.com/1196999 https://bugzilla.suse.com/1197219 https://bugzilla.suse.com/1197343 https://bugzilla.suse.com/1197663 https://bugzilla.suse.com/1198400 https://bugzilla.suse.com/1198516 https://bugzilla.suse.com/1198577 https://bugzilla.suse.com/1198660 https://bugzilla.suse.com/1198687 https://bugzilla.suse.com/1198742 https://bugzilla.suse.com/1198777 https://bugzilla.suse.com/1198825 https://bugzilla.suse.com/1199012 https://bugzilla.suse.com/1199063 https://bugzilla.suse.com/1199314 https://bugzilla.suse.com/1199399 https://bugzilla.suse.com/1199426 https://bugzilla.suse.com/1199505 https://bugzilla.suse.com/1199507 https://bugzilla.suse.com/1199605 https://bugzilla.suse.com/1199650 https://bugzilla.suse.com/1200143 https://bugzilla.suse.com/1200144 https://bugzilla.suse.com/1200249 . Important SUSE kernel patch resolves multiple issues and enhances system security and stability efficiently.. SUSE Linux Kernel Patch, Security Update Management, Kernel Vulnerability Fixes. . Severity: Important. LinuxSecurity.com Team
Jun 17, 2022
•Important
SuSE
89
security advisorysecurity updatecriticalFedora 27: Glibc Security Update 2018-1cbdc8cbb8 Critical Memory Fix
This update fixes two minor security vulnerabilities in `malloc` (CVE-2018-6485, CVE-2018-6551, RHBZ#1542102, RHBZ#1542119), and provides a C++ version of `iseqsig`.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-1cbdc8cbb8 2018-03-06 17:17:51.858805 --------------------------------------------------------------------------------Name : glibc Product : Fedora 27 Version : 2.26 Release : 26.fc27 URL : https://www.gnu.org/software/libc/ Summary : The GNU libc libraries Description : The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important sets of shared libraries: the standard C library and the standard math library. Without these two libraries, a Linux system will not function. --------------------------------------------------------------------------------Update Information: This update fixes two minor security vulnerabilities in `malloc` (CVE-2018-6485, CVE-2018-6551, RHBZ#1542102, RHBZ#1542119), and provides a C++ version of `iseqsig`. --------------------------------------------------------------------------------References: [ 1 ] Bug #1542102 - CVE-2018-6485 glibc: Integer overflow in posix_memalign in memalign functions https://bugzilla.redhat.com/show_bug.cgi?id=1542102 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade glibc' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Mar 06, 2018
•Critical
Fedora
197
security advisoryDebianbrowserDebian Wheezy: DLA-1172-1 Critical Firefox-ESR Denial of Service Fix
Several security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, use-after-frees and other implementation errors may lead to the execution of arbitrary code, denial of service or bypass of the same origin policy. . Hash: SHA256 Package : firefox-esr Version : 52.5.0esr-1~deb7u1 CVE ID : CVE-2017-7826 CVE-2017-7828 CVE-2017-7830 Several security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, use-after-frees and other implementation errors may lead to the execution of arbitrary code, denial of service or bypass of the same origin policy. For Debian 7 "Wheezy", these problems have been fixed in version 52.5.0esr-1~deb7u1. We recommend that you upgrade your firefox-esr packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . A recent security update for Firefox ESR on Debian LTS has been released to fix critical vulnerabilities, improving user data protection and browser security. Debian LTS, Firefox-ESR, Security Update, Browser Issues, Memory Errors. . Severity: Critical. LinuxSecurity.com Team
Nov 16, 2017
•Critical
Debian LTS
87
security advisorydenial of servicecode executionDebian: DSA-3930-1 Urgent: Firefox ESR Buffer Overflows and Exploit Risks
Several security issues have been found in the Mozilla Firefox web browser: Multiple memory safety errors, use-after-frees, buffer overflows and other implementation errors may lead to the execution of arbitrary code, denial of service, bypass of the same-origin policy or . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3928-1
Aug 10, 2017
•Important
Debian
87
security advisoryupdatedenial serviceDebian 8: DSA-3690-1 Critical: Icedove DoS Risk from Memory Errors
Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail client: Multiple memory safety errors may lead to the execution of arbitrary code or denial of service. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3690-1
Oct 10, 2016
•Critical
Debian
87
security advisorydenial of servicecriticalDebian Jessie DSA-3647-1 Critical: Icedove Memory Safety Threats
Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail client: Multiple memory safety errors may lead to the execution of arbitrary code or denial of service. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3647-1
Aug 11, 2016
•Critical
Debian
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!