Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 56 articles for you...
89
security advisoryfedorasecurity fixFedora 44 Kernel 7.0.9 Important Security Fixes Vulnern 2026-346fbec5d5
The 7.0.9-102/202 stable kernel builds contain additional mitigations for new code paths in fragnesia, and a couple of other security updates without fancy names or CVEs assigned yet. The 7.0.9 stable kernel update contains a number of important fixes across the tree.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-346fbec5d5 2026-05-19 16:18:59.081731+00:00 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 44 Version : 7.0.9 Release : 202.fc44 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 7.0.9-102/202 stable kernel builds contain additional mitigations for new code paths in fragnesia, and a couple of other security updates without fancy names or CVEs assigned yet. The 7.0.9 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Mon May 18 2026 Justin M. Forbes [7.0.9-0] - net/sched: fix pedit partial COW leading to page cache corruption (Rajat Gupta) - net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim) - Revert fragnesia for so I can replace it with the newer one (Justin M. Forbes) - net/sched: act_pedit: extend the writable skb range per key (Zhang Cen) * Sun May 17 2026 Justin M. Forbes [7.0.9-0] - Turn on XFS_ONLINE_REPAIR for Fedora (Justin M. Forbes) - Enable SND_DESIGNWARE for Fedora x86 (Justin M. Forbes) - Enable HID_SENSOR_PROX for Fedora x86 (Justin M. Forbes) - drm/i915/dp_tunnel: Don't update tunnel state during system resume (Imre Deak) - Linux v7.0.9 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2478149 - xfs metadata repairfacility is not available https://bugzilla.redhat.com/show_bug.cgi?id=2478149 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-346fbec5d5' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 19, 2026
•Important
Fedora
89
security advisoryfedorakernelFedora 42 Kernel 6.19.14-104 Fix keysign-pwn and fragnesia 2026-8b4a8d18d2
The 6.19.14-104 kernel update contains a fix for the keysign-pwn vulnerability CVE-2026-46333 as well as a mitigation for one more code path of fragnesia. The 6.19.14-103 build contains an additional fix for the GRO path with fragnesia.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-8b4a8d18d2 2026-05-15 22:44:59.632858+00:00 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 42 Version : 6.19.14 Release : 104.fc42 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 6.19.14-104 kernel update contains a fix for the keysign-pwn vulnerability CVE-2026-46333 as well as a mitigation for one more code path of fragnesia. The 6.19.14-103 build contains an additional fix for the GRO path with fragnesia. -------------------------------------------------------------------------------- ChangeLog: * Fri May 15 2026 Justin M. Forbes [6.19.14-104] - Revert "redhat/kernel.spec.template: Fix indentation of uki-virt generation code" (Justin M. Forbes) - Revert "redhat/kernel.spec.template: Simplify uki-virt signing" (Justin M. Forbes) - Revert "redhat/kernel.spec.template: Add kernel-uki-dtbloader sub-package" (Justin M. Forbes) - Revert "redhat/kernel.spec.template: Make -uki-dtbloader provide kernel-core-uname-r" (Justin M. Forbes) * Fri May 15 2026 Justin M. Forbes [6.19.14-0] - net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim) - Revert v3 of the fragnesia fix. V4 covers an additional path (Justin M. Forbes) - ptrace: slightly saner 'get_dumpable()' logic (Linus Torvalds) - net: skbuff: propagate shared-frag marker through frag-transfer helpers (Hyunwoo Kim) - Revert old fragnesia fixes in favor of more complete solution (Justin M.Forbes) - Revert old fragnesia fixes in favor of more complete solution (Justin M. Forbes) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8b4a8d18d2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 15, 2026
•Critical
Fedora
89
security advisoryfedoraimportantFedora 43: kernel-headers Important VMSCAPE Mitigation CVE-2025-40300
The 6.17 rc6 kernel build contains a number of important fixes across the tree. It also includes mitigations for the VMSCAPE vulnerability on x86 CPUs. This has been assigned CVE-2025-40300.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-22c5cc654d 2025-09-18 00:16:07.326046+00:00 -------------------------------------------------------------------------------- Name : kernel-headers Product : Fedora 43 Version : 6.17.0 Release : 0.rc6.49.fc43 URL : http://www.kernel.org/ Summary : Header files for the Linux kernel for use by glibc Description : Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. -------------------------------------------------------------------------------- Update Information: The 6.17 rc6 kernel build contains a number of important fixes across the tree. It also includes mitigations for the VMSCAPE vulnerability on x86 CPUs. This has been assigned CVE-2025-40300. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 15 2025 Justin M. Forbes - 6.17.0-6 - Linux v6.17-rc6 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-22c5cc654d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Sep 18, 2025
•Important
Fedora
89
security advisoryfedoracriticalFedora 42: kernel 6.16.7 Critical VMSCAPE Mitigation FEDORA-2025-4c1d09a51b
The 6.16.7 stable kernel updates contain mitigation for the VMSCAPE vulnerability on x86 CPUs. This has been assigned CVE-2025-40300 The 6.16.6 stable kernel update contains a number of important fixes across the tree.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-4c1d09a51b 2025-09-12 02:06:02.138659+00:00 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 42 Version : 6.16.7 Release : 200.fc42 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 6.16.7 stable kernel updates contain mitigation for the VMSCAPE vulnerability on x86 CPUs. This has been assigned CVE-2025-40300 The 6.16.6 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2025 Justin M. Forbes [6.16.7-0] - Turn on vmscape mitigation for x86 (Justin M. Forbes) - Linux v6.16.7 * Tue Sep 9 2025 Augusto Caringi [6.16.6-0] - Add another bug fix staged for 6.16 (Justin M. Forbes) - Turn on PHY_ROCKCHIP_SAMSUNG_DCPHY for Fedora (Justin M. Forbes) - Linux v6.16.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2392922 - Gkrellm no longer detects nor displays network monitor information https://bugzilla.redhat.com/show_bug.cgi?id=2392922 [ 2 ] Bug #2393407 - Fedora kernel does not include PHY_ROCKCHIP_SAMSUNG_DCPHY driver https://bugzilla.redhat.com/show_bug.cgi?id=2393407 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-4c1d09a51b' at the command line. Formore information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Sep 12, 2025
•Critical
Fedora
100
security advisoryupdatethreatSUSE: 2024:1540-1 Moderate: Xen Security Advisory for Updates
* bsc#1221984 * bsc#1222302 * bsc#1222453 Cross-References: . # Security update for xen Announcement ID: SUSE-SU-2024:1540-1 Rating: moderate References: * bsc#1221984 * bsc#1222302 * bsc#1222453 Cross-References: * CVE-2023-46842 * CVE-2024-2201 * CVE-2024-31142 CVSS scores: * CVE-2023-46842 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2024-2201 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-31142 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves three vulnerabilities can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-2201: Mitigation for Native Branch History Injection (XSA-456, bsc#1222453) * CVE-2023-46842: HVM hypercalls may trigger Xen bug check (XSA-454, bsc#1221984) * CVE-2024-31142: Fixed incorrect logic for BTC/SRSO mitigations (XSA-455, bsc#1222302) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-1540=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-1540=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1540=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1540=1 ## Package List: * openSUSE Leap 15.3 (aarch64 x86_64 i586) * xen-debugsource-4.14.6_14-150300.3.72.1 * xen-tools-domU-4.14.6_14-150300.3.72.1 * xen-libs-debuginfo-4.14.6_14-150300.3.72.1 * xen-devel-4.14.6_14-150300.3.72.1 *xen-tools-domU-debuginfo-4.14.6_14-150300.3.72.1 * xen-libs-4.14.6_14-150300.3.72.1 * openSUSE Leap 15.3 (x86_64) * xen-libs-32bit-4.14.6_14-150300.3.72.1 * xen-libs-32bit-debuginfo-4.14.6_14-150300.3.72.1 * openSUSE Leap 15.3 (aarch64 x86_64) * xen-tools-debuginfo-4.14.6_14-150300.3.72.1 * xen-doc-html-4.14.6_14-150300.3.72.1 * xen-tools-4.14.6_14-150300.3.72.1 * xen-4.14.6_14-150300.3.72.1 * openSUSE Leap 15.3 (noarch) * xen-tools-xendomains-wait-disk-4.14.6_14-150300.3.72.1 * openSUSE Leap 15.3 (aarch64_ilp32) * xen-libs-64bit-debuginfo-4.14.6_14-150300.3.72.1 * xen-libs-64bit-4.14.6_14-150300.3.72.1 * SUSE Linux Enterprise Micro 5.1 (x86_64) * xen-debugsource-4.14.6_14-150300.3.72.1 * xen-libs-debuginfo-4.14.6_14-150300.3.72.1 * xen-libs-4.14.6_14-150300.3.72.1 * SUSE Linux Enterprise Micro 5.2 (x86_64) * xen-debugsource-4.14.6_14-150300.3.72.1 * xen-libs-debuginfo-4.14.6_14-150300.3.72.1 * xen-libs-4.14.6_14-150300.3.72.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64) * xen-debugsource-4.14.6_14-150300.3.72.1 * xen-libs-debuginfo-4.14.6_14-150300.3.72.1 * xen-libs-4.14.6_14-150300.3.72.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46842.html * https://www.suse.com/security/cve/CVE-2024-2201.html * https://www.suse.com/security/cve/CVE-2024-31142.html * https://bugzilla.suse.com/show_bug.cgi?id=1221984 * https://bugzilla.suse.com/show_bug.cgi?id=1222302 * https://bugzilla.suse.com/show_bug.cgi?id=1222453 . SUSE has released security updates for xen to address moderate vulnerabilities. Reboot is advised after installation.. SUSE Linux, Xen Security, Software Update, Bug Fix, Threat Mitigation. . LinuxSecurity.com Team
May 07, 2024
SuSE
217
security advisoryupdateDoSOracle Linux 9 ELSA-2024-1691 Important Varnish Update for DoS
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-1691 https://linux.oracle.com/errata/ELSA-2024-1691.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: varnish-6.6.2-4.el9_3.1.i686.rpm varnish-6.6.2-4.el9_3.1.x86_64.rpm varnish-docs-6.6.2-4.el9_3.1.x86_64.rpm varnish-devel-6.6.2-4.el9_3.1.i686.rpm varnish-devel-6.6.2-4.el9_3.1.x86_64.rpm aarch64: varnish-6.6.2-4.el9_3.1.aarch64.rpm varnish-docs-6.6.2-4.el9_3.1.aarch64.rpm varnish-devel-6.6.2-4.el9_3.1.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol9/SRPMS-updates//varnish-6.6.2-4.el9_3.1.src.rpm Related CVEs: CVE-2024-30156 Description of changes: [6.6.2-4.1] - Resolves: RHEL-30387 - varnish: HTTP/2 Broken Window Attack may result in denial of service (CVE-2024-30156) [6.6.2-4] - Add parameters h2_rst_allowance and h2_rst_allowance_period to mitigate CVE-2023-44487 - Resolves: RHEL-12817 _______________________________________________ El-errata mailing list
Apr 10, 2024
•Important
Oracle
89
security advisoryfedoracriticalFedora 39 Bluez Update FEDORA-2023-6a3fe615d3 critical: Bluetooth backdoor
* Install default input.conf/network.conf * Add mitigation for CVE-2023-45866. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-6a3fe615d3 2023-12-09 02:40:11.746910 -------------------------------------------------------------------------------- Name : bluez Product : Fedora 39 Version : 5.70 Release : 5.fc39 URL : Summary : Bluetooth utilities Description : Utilities for use in Bluetooth applications: - avinfo - bluemoon - bluetoothctl - bluetoothd - btattach - btmon - hex2hcd - l2ping - l2test - mpris-proxy - rctest The BLUETOOTH trademarks are owned by Bluetooth SIG, Inc., U.S.A. -------------------------------------------------------------------------------- Update Information: * Install default input.conf/network.conf * Add mitigation for CVE-2023-45866 -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 7 2023 Peter Robinson - 5.70-5 - Install default input.conf/network.conf * Thu Dec 7 2023 Peter Robinson - 5.70-4 - Add mitigation for CVE-2023-45866 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2247548 - Unable to connect Dualshock4 v2 via Bluetooth (immediately disconnects after pairing) https://bugzilla.redhat.com/show_bug.cgi?id=2247548 [ 2 ] Bug #2253392 - TRIAGE CVE-2023-45866 bluez: unauthorized HID device connections allows keystroke injection and arbitrary commands execution [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2253392 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-6a3fe615d3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages aresigned with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Dec 09, 2023
•Critical
Fedora
217
security advisorysoftware updatelow severityOracle Linux 9 ELSA-2023-12788 Low Severity: GCC Update Mitigations
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-12788 https://linux.oracle.com/errata/ELSA-2023-12788.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: libatomic-11.3.1-4.3.0.4.el9.i686.rpm libatomic-11.3.1-4.3.0.4.el9.x86_64.rpm libgcc-11.3.1-4.3.0.4.el9.i686.rpm libgcc-11.3.1-4.3.0.4.el9.x86_64.rpm libgfortran-11.3.1-4.3.0.4.el9.i686.rpm libgfortran-11.3.1-4.3.0.4.el9.x86_64.rpm libgomp-11.3.1-4.3.0.4.el9.i686.rpm libgomp-11.3.1-4.3.0.4.el9.x86_64.rpm libquadmath-11.3.1-4.3.0.4.el9.i686.rpm libquadmath-11.3.1-4.3.0.4.el9.x86_64.rpm libstdc++-11.3.1-4.3.0.4.el9.i686.rpm libstdc++-11.3.1-4.3.0.4.el9.x86_64.rpm cpp-11.3.1-4.3.0.4.el9.x86_64.rpm gcc-11.3.1-4.3.0.4.el9.x86_64.rpm gcc-c++-11.3.1-4.3.0.4.el9.x86_64.rpm gcc-gfortran-11.3.1-4.3.0.4.el9.x86_64.rpm gcc-offload-nvptx-11.3.1-4.3.0.4.el9.x86_64.rpm gcc-plugin-annobin-11.3.1-4.3.0.4.el9.x86_64.rpm libasan-11.3.1-4.3.0.4.el9.i686.rpm libasan-11.3.1-4.3.0.4.el9.x86_64.rpm libgccjit-11.3.1-4.3.0.4.el9.i686.rpm libgccjit-11.3.1-4.3.0.4.el9.x86_64.rpm libgccjit-devel-11.3.1-4.3.0.4.el9.i686.rpm libgccjit-devel-11.3.1-4.3.0.4.el9.x86_64.rpm libgomp-offload-nvptx-11.3.1-4.3.0.4.el9.x86_64.rpm libitm-11.3.1-4.3.0.4.el9.i686.rpm libitm-11.3.1-4.3.0.4.el9.x86_64.rpm libitm-devel-11.3.1-4.3.0.4.el9.i686.rpm libitm-devel-11.3.1-4.3.0.4.el9.x86_64.rpm liblsan-11.3.1-4.3.0.4.el9.x86_64.rpm libquadmath-devel-11.3.1-4.3.0.4.el9.i686.rpm libquadmath-devel-11.3.1-4.3.0.4.el9.x86_64.rpm libstdc++-devel-11.3.1-4.3.0.4.el9.i686.rpm libstdc++-devel-11.3.1-4.3.0.4.el9.x86_64.rpm libstdc++-docs-11.3.1-4.3.0.4.el9.x86_64.rpm libtsan-11.3.1-4.3.0.4.el9.x86_64.rpm libubsan-11.3.1-4.3.0.4.el9.i686.rpm libubsan-11.3.1-4.3.0.4.el9.x86_64.rpm gcc-plugin-devel-11.3.1-4.3.0.4.el9.i686.rpm gcc-plugin-devel-11.3.1-4.3.0.4.el9.x86_64.rpm libstdc++-static-11.3.1-4.3.0.4.el9.i686.rpm libstdc++-static-11.3.1-4.3.0.4.el9.x86_64.rpm gcc-toolset-12-gcc-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-gcc-c++-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-gcc-gfortran-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-gcc-plugin-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-gcc-plugin-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libasan-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libasan-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libatomic-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libatomic-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libgccjit-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libgccjit-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libgccjit-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libgccjit-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libgccjit-docs-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libitm-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libitm-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-liblsan-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libquadmath-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libquadmath-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libstdc++-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libstdc++-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libstdc++-docs-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libtsan-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-libubsan-devel-12.2.1-7.4.0.2.el9.i686.rpm gcc-toolset-12-libubsan-devel-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-offload-nvptx-12.2.1-7.4.0.2.el9.x86_64.rpm libasan8-12.2.1-7.4.0.2.el9.i686.rpm libasan8-12.2.1-7.4.0.2.el9.x86_64.rpm libtsan2-12.2.1-7.4.0.2.el9.x86_64.rpm gcc-toolset-12-gcc-plugin-annobin-12.2.1-7.4.0.2.el9.x86_64.rpm aarch64: libatomic-11.3.1-4.3.0.4.el9.aarch64.rpm libgcc-11.3.1-4.3.0.4.el9.aarch64.rpm libgfortran-11.3.1-4.3.0.4.el9.aarch64.rpm libgomp-11.3.1-4.3.0.4.el9.aarch64.rpm libstdc++-11.3.1-4.3.0.4.el9.aarch64.rpm cpp-11.3.1-4.3.0.4.el9.aarch64.rpm gcc-11.3.1-4.3.0.4.el9.aarch64.rpm gcc-c++-11.3.1-4.3.0.4.el9.aarch64.rpm gcc-gfortran-11.3.1-4.3.0.4.el9.aarch64.rpm gcc-plugin-annobin-11.3.1-4.3.0.4.el9.aarch64.rpm libasan-11.3.1-4.3.0.4.el9.aarch64.rpm libgccjit-11.3.1-4.3.0.4.el9.aarch64.rpm libgccjit-devel-11.3.1-4.3.0.4.el9.aarch64.rpm libitm-11.3.1-4.3.0.4.el9.aarch64.rpm libitm-devel-11.3.1-4.3.0.4.el9.aarch64.rpm liblsan-11.3.1-4.3.0.4.el9.aarch64.rpm libstdc++-devel-11.3.1-4.3.0.4.el9.aarch64.rpm libstdc++-docs-11.3.1-4.3.0.4.el9.aarch64.rpm libtsan-11.3.1-4.3.0.4.el9.aarch64.rpm libubsan-11.3.1-4.3.0.4.el9.aarch64.rpm gcc-plugin-devel-11.3.1-4.3.0.4.el9.aarch64.rpm libstdc++-static-11.3.1-4.3.0.4.el9.aarch64.rpm gcc-toolset-12-gcc-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-gcc-c++-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-gcc-gfortran-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-gcc-plugin-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libasan-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libatomic-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libgccjit-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libgccjit-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libgccjit-docs-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libitm-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-liblsan-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libstdc++-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libstdc++-docs-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libtsan-devel-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-libubsan-devel-12.2.1-7.4.0.2.el9.aarch64.rpm libasan8-12.2.1-7.4.0.2.el9.aarch64.rpm libtsan2-12.2.1-7.4.0.2.el9.aarch64.rpm gcc-toolset-12-gcc-plugin-annobin-12.2.1-7.4.0.2.el9.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol9/SRPMS-updates//gcc-11.3.1-4.3.0.4.el9.src.rpm https://oss.oracle.com:443/ol9/SRPMS-updates//gcc-toolset-12-gcc-12.2.1-7.4.0.2.el9.src.rpm Related CVEs: CVE-2023-4039 CVE-2022-40982 Description of changes: gcc [11.3.1-4.3.0.4] - CVE-2023-4039 GCC mitigation. Orabug 35751837. - CVE-2022-40982 "Intel Downfall" mitigation. Orabug 35751842. Add two patches originally from GCC upstream releases/gcc-11 branch. gcc11-downfall-disable-gather-in-vec.patch gcc11-downfall-support-mno-gather.patch Reviewed-by: Jose E. Marchesi gcc-toolset-12-gcc [12.2.1-7.4.0.2] - CVE-2023-4039 GCC mitigation. Orabug 35751965. - CVE-2022-40982 "Intel Downfall" mitigation. Orabug 35751972. Add two patches originally from GCC upstream releases/gcc-11 branch. gcc12-downfall-disable-gather-in-vec.patch gcc12-downfall-support-mno-gather.patch - Introduce 'oracle_release' into .spec file. Echo it to gcc/DEV-PHASE. _______________________________________________ El-errata mailing list
Sep 14, 2023
•Low
Oracle
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!