Stay Vigilant with Timely Linux Security Advisories

Loading...

security advisoryDebianmoderate severity

Debian 10: DLA-3512-1 Low: xserver-xorg-core Vulnerability Advisory

Tavis Ormandy discovered that under specific microarchitectural circumstances, a vector register in "Zen 2" CPUs may not be written to 0 correctly. This flaw allows an attacker to leak register contents across concurrent processes, hyper threads and virtualized guests. . ------------------------------------------------------------------------- Debian LTS Advisory DLA-3511-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Jochen Sprickerhof July 31, 2023 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : amd64-microcode Version : 3.20230719.1+deb10u1 CVE ID : CVE-2023-20593 Debian Bug : 1041863 Tavis Ormandy discovered that under specific microarchitectural circumstances, a vector register in "Zen 2" CPUs may not be written to 0 correctly. This flaw allows an attacker to leak register contents across concurrent processes, hyper threads and virtualized guests. For details please refer to https://lock.cmpxchg8b.com/zenbleed.html https://github.com/google/security-research/security/advisories/GHSA-v6wh-rxpg-cmm8 The initial microcode release by AMD only provides updates for second generation EPYC CPUs: Various Ryzen CPUs are also affected, but no updates are available yet. Fixes will be provided in a later update once they are released. For more specific details and target dates please refer to the AMD advisory at https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7008.html For Debian 10 buster, this problem has been fixed in version 3.20230719.1+deb10u1. Additionally the update contains a fix for CVE-2019-9836. We recommend that you upgrade your amd64-microcode packages. For the detailed security status of amd64-microcode please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/amd64-microcode Further information about Debian LTS security advisories, how to apply these updatesto your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Enhance amd64-microcode to mitigate vulnerabilities and safeguard against data breaches on Debian LTS environments.. Debian Security Advisory, amd64-microcode Update, Microarchitectural Flaw. . Severity: Low. LinuxSecurity.com Team

Jul 31, 2023 •Low Debian LTS

security advisoryimportantinformation disclosure

RedHat: RHSA-2019-1209-01 Critical Security Concern for Virtualization Host

An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4.2 for Red Hat Enterprise Linux 7.6 EUS. Red Hat Product Security has rated this update as having a security impact. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: redhat-virtualization-host security update Advisory ID: RHSA-2019:1209-01 Product: Red Hat Virtualization Advisory URL: https://access.redhat.com/errata/RHSA-2019:1209 Issue date: 2019-05-14 CVE Names: CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 ==================================================================== 1. Summary: An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4.2 for Red Hat Enterprise Linux 7.6 EUS. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Virtualization 4.2 Hypervisor for RHEL 7.6 EUS - noarch, x86_64 3. Description: The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) areinstalled using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Security Fix(es): * A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer while the data is fetched from higher level caches. This response time can be measured to infer data in the fill buffer. (CVE-2018-12130) * Modern Intel microprocessors implement hardware-level micro-optimizations to improve the performance of writing data back to CPU caches. The write operation is split into STA (STore Address) and STD (STore Data) sub-operations. These sub-operations allow the processor to hand-off address generation logic into these sub-operations for optimized writes. Both of these sub-operations write to a shared distributed processor structure called the 'processor store buffer'. As a result, an unprivileged attacker could use this flaw to read private data resident within the CPU's processor store buffer. (CVE-2018-12126) * Microprocessors use a ‘load port’ subcomponent to perform load operations from memory or IO. During a load operation, the load port receives data from the memory or IO subsystem and then provides the data to the CPU registers and operations in the CPU’s pipelines. Stale load operations results are stored in the 'load port' table until overwritten by newer operations. Certain load-port operations triggered by an attacker can be used to reveal data about previous stale requests leaking data back to the attacker via a timing side-channel. (CVE-2018-12127) * Uncacheable memory on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channelwith local access. (CVE-2019-11091) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/2974891 5. Bugs fixed (https://bugzilla.redhat.com/): 1646781 - CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS) 1646784 - CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS) 1667782 - CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS) 1705312 - CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) 6. Package List: Red Hat Virtualization 4.2 Hypervisor for RHEL 7.6 EUS: Source: redhat-release-virtualization-host-4.2-8.6.el7.src.rpm redhat-virtualization-host-4.2-20190512.0.el7_6.src.rpm noarch: redhat-virtualization-host-image-update-4.2-20190512.0.el7_6.noarch.rpm redhat-virtualization-host-image-update-placeholder-4.2-8.6.el7.noarch.rpm x86_64: redhat-release-virtualization-host-4.2-8.6.el7.x86_64.rpm redhat-release-virtualization-host-content-4.2-8.6.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-12126 https://access.redhat.com/security/cve/CVE-2018-12127 https://access.redhat.com/security/cve/CVE-2018-12130 https://access.redhat.com/security/cve/CVE-2019-11091 https://access.redhat.com/security/vulnerabilities/mds https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXNsvP9zjgjWX9erEAQii8w//fttdu7db/vYBdADLtVvIWBl4nlB/8tHd Jm4/OJtZbnZNHJ2ws9CvCAN8U18gdvghVZBzeQB/f0avIqrTjIkn32MLN9JV6ebN FhpdogKa/WnZADe8q5pvplTwrz69VwEAgEOEj5r9Cr7NXY7SkSDXvnbrUv6aYIUr AxNjIylHvRJqQfzZWUtO8jUhD+c5lp+B0zuJFiSapDRH0khl+hp3nElk4A2qNoty w/eRM8Dh4aQQLJhizlyLY+/hds9YIh16oILJLJPzx95q1iwM3hK0ejEdCR+yv1RL tvGbNjcJEdcBAUGGXEzWrtxftx8wOd+HP7qcrsQWpAzRJC/0LkvUbal0aCYGf1OJ ZT0Yw4HOwxJu4aeZ5XKUQpsxzlOC6hfr31G2Iha+NWy87efXPwBXxpN6oISaE38c Dc1jchpc7v3aNXh++zZ01J3vnmPQZxzKPgOm5xt2ENhpz6Zjh//wTCAPjtvaV7RX gNo3aQVKxwhsdTSFji03vc4T2l88jqgMqCuT+WZ6oy9D0gugLp7e/AFYz4kgvddA oOP+pD/Yy0SVAJ/+iLEJ/8MI+n4Rkj0j/mB/ZsNCqpPc6DHwZt8zbdaAeQJ1UH7b 0XSbMBGtXZpU8qVp00ZWOpwHftumVXi4l7E87/Ae/mifCDS8dXXgyAvT2AzbZWHA cPDmXnnPuCI=OZ5V -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Canonical issued an urgent security notice regarding its cloud infrastructure software to address significant vulnerabilities affecting data integrity.. security advisory, virtualization host, Red Hat, information disclosure. . Severity: Important. LinuxSecurity.com Team