Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 11 articles for you...
172
security advisorykernel updatenetwork flawUbuntu 22.04 LTS: USN-7808-2 Linux Kernel Critical Flaw Update
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7808-2 October 14, 2025 linux-azure-6.8 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-azure-6.8: Linux kernel for Microsoft Azure cloud systems Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - Ext4 file system; - SMB network file system; - Packet sockets; - Network traffic control; - TLS protocol; - VMware vSockets driver; - XFRM subsystem; (CVE-2025-38617, CVE-2025-37756, CVE-2025-38683, CVE-2025-38477, CVE-2025-38500, CVE-2025-37785, CVE-2025-38618, CVE-2025-38244) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS linux-image-6.8.0-1040-azure 6.8.0-1040.46~22.04.1 linux-image-6.8.0-1040-azure-fde 6.8.0-1040.46~22.04.1 linux-image-azure 6.8.0-1040.46~22.04.1 linux-image-azure-6.8 6.8.0-1040.46~22.04.1 linux-image-azure-fde 6.8.0-1040.46~22.04.1 linux-image-azure-fde-6.8 6.8.0-1040.46~22.04.1 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7808-2 https://ubuntu.com/security/notices/USN-7808-1 CVE-2025-37756, CVE-2025-37785, CVE-2025-38244, CVE-2025-38477, CVE-2025-38500, CVE-2025-38617, CVE-2025-38618, CVE-2025-38683 Package Information: . Several security issues fixed in the Linux kernel for Ubuntu 22.04 LTS. Update for linux-azure module recommended now.. Linux Kernel Security Update, Ubuntu 22.04 Kernel Flaw, Azure Security Advisory, Network Drivers Vulnerability, Linux-azure Module Fix. . Severity: Critical. LinuxSecurity.com Team
Oct 14, 2025
•Critical
Ubuntu
100
security advisorynetwork flawcriticalSUSE: 2024:0639-1 Critical: Linux Kernel RT Network Flaw Fix
* bsc#1218733 Cross-References: * CVE-2023-51780 . # Security update for the Linux Kernel RT (Live Patch 8 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:0639-1 Rating: important References: * bsc#1218733 Cross-References: * CVE-2023-51780 CVSS scores: * CVE-2023-51780 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51780 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_13_27 fixes one issue. The following security issue was fixed: * CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-639=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-639=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-livepatch-5_14_21-150500_13_27-rt-3-150500.2.1 * kernel-livepatch-5_14_21-150500_13_27-rt-debuginfo-3-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_8-debugsource-3-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (x86_64) * kernel-livepatch-5_14_21-150500_13_27-rt-3-150500.2.1 * kernel-livepatch-5_14_21-150500_13_27-rt-debuginfo-3-150500.2.1 * kernel-livepatch-SLE15-SP5-RT_Update_8-debugsource-3-150500.2.1 ## References: *https://www.suse.com/security/cve/CVE-2023-51780.html * https://bugzilla.suse.com/show_bug.cgi?id=1218733 . Important security patch released for Linux Kernel resolving critical use-after-free vulnerability, affecting various SUSE versions.. SUSE Kernel Patch, Important Security Update, Use-After-Free Issue. . Severity: Critical. LinuxSecurity.com Team
Feb 27, 2024
•Critical
SuSE
202
security advisorykernel updatenetwork flawopenSUSE 15 SP4: SUSE-SU-2023:3644-1 Important Kernel Security Advisory
This update for the Linux Kernel 5.14.21-150400_24_46 fixes several issues. The following security issues were fixed:. # Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP4) Announcement ID: SUSE-SU-2023:3644-1 Rating: important References: * #1208839 * #1210630 * #1211187 * #1211395 * #1212849 * #1213063 * #1213244 Cross-References: * CVE-2023-1077 * CVE-2023-2156 * CVE-2023-2176 * CVE-2023-3090 * CVE-2023-32233 * CVE-2023-35001 * CVE-2023-3567 CVSS scores: * CVE-2023-1077 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-1077 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-2156 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2156 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-2176 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-2176 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3090 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3090 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-32233 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-32233 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-35001 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-35001 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3567 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3567 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves seven vulnerabilities can now beinstalled. ## Description: This update for the Linux Kernel 5.14.21-150400_24_46 fixes several issues. The following security issues were fixed: * CVE-2023-32233: Fixed a use-after-free in Netfilter nf_tables when processing batch requests (bsc#1211187). * CVE-2023-2156: Fixed a flaw in the networking subsystem within the handling of the RPL protocol (bsc#1211395). * CVE-2023-3567: Fixed a use-after-free in vcs_read in drivers/tty/vt/vc_screen.c (bsc#1213244). * CVE-2023-35001: Fixed an out-of-bounds memory access flaw in nft_byteorder that could allow a local attacker to escalate their privilege (bsc#1213063). * CVE-2023-1077: Fixed a type confusion in pick_next_rt_entity(), that could cause memory corruption (bsc#1208839). * CVE-2023-2176: Fixed an out-of-boundary read in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA (bsc#1210630). * CVE-2023-3090: Fixed a heap out-of-bounds write in the ipvlan network driver (bsc#1212849). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2023-3646=1 SUSE-SLE- Module-Live-Patching-15-SP4-2023-3650=1 SUSE-SLE-Module-Live- Patching-15-SP4-2023-3651=1 SUSE-SLE-Module-Live-Patching-15-SP4-2023-3644=1 SUSE-SLE-Module-Live-Patching-15-SP4-2023-3642=1 SUSE-SLE-Module-Live- Patching-15-SP4-2023-3643=1 SUSE-SLE-Module-Live-Patching-15-SP4-2023-3645=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2023-3650=1 SUSE-2023-3651=1 SUSE-2023-3644=1 SUSE-2023-3642=1 SUSE-2023-3643=1 SUSE-2023-3645=1 SUSE-2023-3646=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_4-debugsource-11-150400.2.2 * kernel-livepatch-5_14_21-150400_24_21-default-13-150400.2.2 *kernel-livepatch-5_14_21-150400_24_38-default-debuginfo-9-150400.2.2 * kernel-livepatch-5_14_21-150400_24_38-default-9-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_6-debugsource-9-150400.2.2 * kernel-livepatch-5_14_21-150400_24_28-default-11-150400.2.2 * kernel-livepatch-5_14_21-150400_24_18-default-debuginfo-14-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_3-debugsource-13-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_7-debugsource-8-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_5-debugsource-10-150400.2.2 * kernel-livepatch-5_14_21-150400_24_41-default-8-150400.2.2 * kernel-livepatch-5_14_21-150400_24_21-default-debuginfo-13-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_2-debugsource-14-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_8-debugsource-7-150400.2.2 * kernel-livepatch-5_14_21-150400_24_18-default-14-150400.2.2 * kernel-livepatch-5_14_21-150400_24_28-default-debuginfo-11-150400.2.2 * kernel-livepatch-5_14_21-150400_24_46-default-7-150400.2.2 * kernel-livepatch-5_14_21-150400_24_46-default-debuginfo-7-150400.2.2 * kernel-livepatch-5_14_21-150400_24_33-default-10-150400.2.2 * kernel-livepatch-5_14_21-150400_24_33-default-debuginfo-10-150400.2.2 * kernel-livepatch-5_14_21-150400_24_41-default-debuginfo-8-150400.2.2 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP4_Update_4-debugsource-11-150400.2.2 * kernel-livepatch-5_14_21-150400_24_21-default-13-150400.2.2 * kernel-livepatch-5_14_21-150400_24_38-default-debuginfo-9-150400.2.2 * kernel-livepatch-5_14_21-150400_24_38-default-9-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_6-debugsource-9-150400.2.2 * kernel-livepatch-5_14_21-150400_24_28-default-11-150400.2.2 * kernel-livepatch-5_14_21-150400_24_18-default-debuginfo-14-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_3-debugsource-13-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_7-debugsource-8-150400.2.2 *kernel-livepatch-SLE15-SP4_Update_5-debugsource-10-150400.2.2 * kernel-livepatch-5_14_21-150400_24_41-default-8-150400.2.2 * kernel-livepatch-5_14_21-150400_24_21-default-debuginfo-13-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_2-debugsource-14-150400.2.2 * kernel-livepatch-SLE15-SP4_Update_8-debugsource-7-150400.2.2 * kernel-livepatch-5_14_21-150400_24_18-default-14-150400.2.2 * kernel-livepatch-5_14_21-150400_24_28-default-debuginfo-11-150400.2.2 * kernel-livepatch-5_14_21-150400_24_46-default-7-150400.2.2 * kernel-livepatch-5_14_21-150400_24_46-default-debuginfo-7-150400.2.2 * kernel-livepatch-5_14_21-150400_24_33-default-10-150400.2.2 * kernel-livepatch-5_14_21-150400_24_33-default-debuginfo-10-150400.2.2 * kernel-livepatch-5_14_21-150400_24_41-default-debuginfo-8-150400.2.2 ## References: * https://www.suse.com/security/cve/CVE-2023-1077.html * https://www.suse.com/security/cve/CVE-2023-2156.html * https://www.suse.com/security/cve/CVE-2023-2176.html * https://www.suse.com/security/cve/CVE-2023-3090.html * https://www.suse.com/security/cve/CVE-2023-32233.html * https://www.suse.com/security/cve/CVE-2023-35001.html * https://www.suse.com/security/cve/CVE-2023-3567.html * https://bugzilla.suse.com/show_bug.cgi?id=1208839 * https://bugzilla.suse.com/show_bug.cgi?id=1210630 * https://bugzilla.suse.com/show_bug.cgi?id=1211187 * https://bugzilla.suse.com/show_bug.cgi?id=1211395 * https://bugzilla.suse.com/show_bug.cgi?id=1212849 * https://bugzilla.suse.com/show_bug.cgi?id=1213063 * https://bugzilla.suse.com/show_bug.cgi?id=1213244 . Apply essential security patches for the Linux Kernel that tackle multiple security flaws impacting openSUSE and SLE 15 SP4.. Linux Kernel Updates, SUSE Security Advisory, Live Patching. . Severity: Important. LinuxSecurity.com Team
Sep 18, 2023
•Important
OpenSUSE
91
security advisoryGentoonetwork flawGentoo: GLSA-201611-02 Normal: OpenVPN Threats To Encrypted Traffic
Multiple vulnerabilities have been found in OpenVPN, the worst of which allows remote attackers to read encrypted traffic.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 201611-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: OpenVPN: Multiple vulnerabilities Date: November 01, 2016 Bugs: #582902, #592070 ID: 201611-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Multiple vulnerabilities have been found in OpenVPN, the worst of which allows remote attackers to read encrypted traffic. Background ========= OpenVPN is a multi-platform, full-featured SSL VPN solution. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/openvpn < 2.3.12 > = 2.3.12 Description ========== Multiple vulnerabilities have been discovered in OpenVPN. Please review the CVE identifiers referenced below for details. Impact ===== A remote attacker may be able to recover plaintext from encrypted communications. Workaround ========= There is no known workaround at this time. Resolution ========= All OpenVPN users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =net-misc/openvpn-2.3.12" References ========= [ 1 ] CVE-2016-6329 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-6329 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201611-02 Concerns? ======== Security is a primary focus of Gentoo Linux andensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to
Nov 01, 2016
Gentoo
98
security advisoryRed Hatnetwork flawRed Hat: RHSA-2016:0621 Important: Samba Security Flaws Report
An update for samba is now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: samba security update Advisory ID: RHSA-2016:0621-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:0621.html Issue date: 2016-04-12 CVE Names: CVE-2016-2110 CVE-2016-2111 CVE-2016-2112 CVE-2016-2115 CVE-2016-2118 ==================================================================== 1. Summary: An update for samba is now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop Workstation (v. 5 client) - i386, x86_64 3. Description: Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix(es): * A protocol flaw, publicly referred to as Badlock, was found in the Security Account Manager Remote Protocol (MS-SAMR) and the Local Security Authority (Domain Policy) Remote Protocol (MS-LSAD). Any authenticated DCE/RPC connection that a client initiates against a server could be used by a man-in-the-middleattacker to impersonate the authenticated user against the SAMR or LSA service on the server. As a result, the attacker would be able to get read/write access to the Security Account Manager database, and use this to reveal all passwords or any other potentially sensitive information in that database. (CVE-2016-2118) * Several flaws were found in Samba's implementation of NTLMSSP authentication. An unauthenticated, man-in-the-middle attacker could use this flaw to clear the encryption and integrity flags of a connection, causing data to be transmitted in plain text. The attacker could also force the client or server into sending data in plain text even if encryption was explicitly requested for that connection. (CVE-2016-2110) * It was discovered that Samba configured as a Domain Controller would establish a secure communication channel with a machine using a spoofed computer name. A remote attacker able to observe network traffic could use this flaw to obtain session-related information about the spoofed machine. (CVE-2016-2111) * It was found that Samba's LDAP implementation did not enforce integrity protection for LDAP connections. A man-in-the-middle attacker could use this flaw to downgrade LDAP connections to use no integrity protection, allowing them to hijack such connections. (CVE-2016-2112) * It was found that Samba did not enable integrity protection for IPC traffic by default. A man-in-the-middle attacker could use this flaw to view and modify the data sent between a Samba server and a client. (CVE-2016-2115) Red Hat would like to thank the Samba project for reporting these issues. Upstream acknowledges Stefan Metzmacher (SerNet) as the original reporter of CVE-2016-2118, CVE-2016-2110, CVE-2016-2112, and CVE-2016-2115. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing this update, the smb service will be restarted automatically. 5. Bugs fixed(https://bugzilla.redhat.com/): 1311893 - CVE-2016-2110 samba: Man-in-the-middle attacks possible with NTLMSSP authentication 1311902 - CVE-2016-2111 samba: Spoofing vulnerability when domain controller is configured 1311903 - CVE-2016-2112 samba: Missing downgrade detection 1312084 - CVE-2016-2115 samba: Smb signing not required by default when smb client connection is used for ipc usage 1317990 - CVE-2016-2118 samba: SAMR and LSA man in the middle attacks 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: samba-3.0.33-3.41.el5_11.src.rpm i386: libsmbclient-3.0.33-3.41.el5_11.i386.rpm samba-3.0.33-3.41.el5_11.i386.rpm samba-client-3.0.33-3.41.el5_11.i386.rpm samba-common-3.0.33-3.41.el5_11.i386.rpm samba-debuginfo-3.0.33-3.41.el5_11.i386.rpm samba-swat-3.0.33-3.41.el5_11.i386.rpm x86_64: libsmbclient-3.0.33-3.41.el5_11.i386.rpm libsmbclient-3.0.33-3.41.el5_11.x86_64.rpm samba-3.0.33-3.41.el5_11.x86_64.rpm samba-client-3.0.33-3.41.el5_11.x86_64.rpm samba-common-3.0.33-3.41.el5_11.i386.rpm samba-common-3.0.33-3.41.el5_11.x86_64.rpm samba-debuginfo-3.0.33-3.41.el5_11.i386.rpm samba-debuginfo-3.0.33-3.41.el5_11.x86_64.rpm samba-swat-3.0.33-3.41.el5_11.x86_64.rpm Red Hat Enterprise Linux Desktop Workstation (v. 5 client): Source: samba-3.0.33-3.41.el5_11.src.rpm i386: libsmbclient-devel-3.0.33-3.41.el5_11.i386.rpm samba-debuginfo-3.0.33-3.41.el5_11.i386.rpm x86_64: libsmbclient-devel-3.0.33-3.41.el5_11.i386.rpm libsmbclient-devel-3.0.33-3.41.el5_11.x86_64.rpm samba-debuginfo-3.0.33-3.41.el5_11.i386.rpm samba-debuginfo-3.0.33-3.41.el5_11.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: samba-3.0.33-3.41.el5_11.src.rpm i386: libsmbclient-3.0.33-3.41.el5_11.i386.rpm libsmbclient-devel-3.0.33-3.41.el5_11.i386.rpm samba-3.0.33-3.41.el5_11.i386.rpm samba-client-3.0.33-3.41.el5_11.i386.rpm samba-common-3.0.33-3.41.el5_11.i386.rpm samba-debuginfo-3.0.33-3.41.el5_11.i386.rpm samba-swat-3.0.33-3.41.el5_11.i386.rpm ia64: libsmbclient-3.0.33-3.41.el5_11.ia64.rpm libsmbclient-devel-3.0.33-3.41.el5_11.ia64.rpm samba-3.0.33-3.41.el5_11.ia64.rpm samba-client-3.0.33-3.41.el5_11.ia64.rpm samba-common-3.0.33-3.41.el5_11.ia64.rpm samba-debuginfo-3.0.33-3.41.el5_11.ia64.rpm samba-swat-3.0.33-3.41.el5_11.ia64.rpm ppc: libsmbclient-3.0.33-3.41.el5_11.ppc.rpm libsmbclient-3.0.33-3.41.el5_11.ppc64.rpm libsmbclient-devel-3.0.33-3.41.el5_11.ppc.rpm libsmbclient-devel-3.0.33-3.41.el5_11.ppc64.rpm samba-3.0.33-3.41.el5_11.ppc.rpm samba-client-3.0.33-3.41.el5_11.ppc.rpm samba-common-3.0.33-3.41.el5_11.ppc.rpm samba-common-3.0.33-3.41.el5_11.ppc64.rpm samba-debuginfo-3.0.33-3.41.el5_11.ppc.rpm samba-debuginfo-3.0.33-3.41.el5_11.ppc64.rpm samba-swat-3.0.33-3.41.el5_11.ppc.rpm s390x: libsmbclient-3.0.33-3.41.el5_11.s390.rpm libsmbclient-3.0.33-3.41.el5_11.s390x.rpm libsmbclient-devel-3.0.33-3.41.el5_11.s390.rpm libsmbclient-devel-3.0.33-3.41.el5_11.s390x.rpm samba-3.0.33-3.41.el5_11.s390x.rpm samba-client-3.0.33-3.41.el5_11.s390x.rpm samba-common-3.0.33-3.41.el5_11.s390.rpm samba-common-3.0.33-3.41.el5_11.s390x.rpm samba-debuginfo-3.0.33-3.41.el5_11.s390.rpm samba-debuginfo-3.0.33-3.41.el5_11.s390x.rpm samba-swat-3.0.33-3.41.el5_11.s390x.rpm x86_64: libsmbclient-3.0.33-3.41.el5_11.i386.rpm libsmbclient-3.0.33-3.41.el5_11.x86_64.rpm libsmbclient-devel-3.0.33-3.41.el5_11.i386.rpm libsmbclient-devel-3.0.33-3.41.el5_11.x86_64.rpm samba-3.0.33-3.41.el5_11.x86_64.rpm samba-client-3.0.33-3.41.el5_11.x86_64.rpm samba-common-3.0.33-3.41.el5_11.i386.rpm samba-common-3.0.33-3.41.el5_11.x86_64.rpm samba-debuginfo-3.0.33-3.41.el5_11.i386.rpm samba-debuginfo-3.0.33-3.41.el5_11.x86_64.rpm samba-swat-3.0.33-3.41.el5_11.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2016-2110 https://access.redhat.com/security/cve/CVE-2016-2111 https://access.redhat.com/security/cve/CVE-2016-2112 https://access.redhat.com/security/cve/CVE-2016-2115 https://access.redhat.com/security/cve/CVE-2016-2118 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/security/vulnerabilities/badlock https://access.redhat.com/articles/2253041 https://samba.plus https://access.redhat.com/articles/2243351 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFXDVrHXlSAg2UNWIIRAtKmAJ9bMCR9cm7julHd1h965ev7RS3DzwCfRpUg 4PBUcK28sYTv0h5qOcoCxK0=hV3B -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Apr 12, 2016
•Important
Red Hat
98
security advisorynetwork flawbug fixRed Hat: RHSA-2016:0013-01 Moderate: nova Network Security Flaw
Updated openstack-nova packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux OpenStack Platform 6.0. Red Hat Product Security has rated this update as having Moderate . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-nova security and bug fix advisory Advisory ID: RHSA-2016:0013-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2016:0013.html Issue date: 2016-01-07 CVE Names: CVE-2015-7713 ==================================================================== 1. Summary: Updated openstack-nova packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux OpenStack Platform 6.0. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux OpenStack Platform 6.0 for RHEL 7 - noarch 3. Description: OpenStack Compute (nova) launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing platform. Compute provides the software, control panels, and APIs required to orchestrate a cloud, including running virtual machine instances and controlling access through users and projects. A vulnerability was discovered in the way OpenStack Compute (nova) networking handled security group updates; changes were not applied to already running VM instances. A remote attacker could use this flaw to access running VM instances. (CVE-2015-7713) Additional bug fixes include: * Suspending an instance with a pre-created port that uses binding:vnic_type='direct' previously failed; this has been fixed with anupdate to the API.(BZ#1196054) * When using multipath-backed volumes using Object Storage (cinder), attach attempts failed without error. The handling of device identifiers has been updated and volumes can now be attached. (BZ#1206699) * Previously, OpenStack Compute did not conform to PEP8 conventions; this has been fixed. (BZ#1278411) * With a faulty lun in a multipath device, Compute tried to use the wrong device. Compute now uses the correct device, and instances can boot normally. (BZ#1280359) * When using a FCoE adapter instead of a FC adapter, volumes previously failed to attach to the VM. This issue has been fixed. (BZ#1284033) All openstack-nova users are advised to upgrade to these updated packages, which correct these issues and add these enhancements. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1196054 - Suspending an instance fails when using vnic_type=direct 1206699 - FC volume fails to attach to instance on RHEL 7 1269119 - CVE-2015-7713 openstack-nova: network security group changes are not applied to running instances 1278411 - RHOS 6 needs to be PEP8 valid 1280359 - nova searches for wrong device unexpectedly when multipath device has faulty lun 1284033 - When using a FCoE adapter instead of a FC adapter, volumes will fail to attach to the VM 6. Package List: Red Hat Enterprise Linux OpenStack Platform 6.0 for RHEL7: Source: openstack-nova-2014.2.3-42.el7ost.src.rpm noarch: openstack-nova-2014.2.3-42.el7ost.noarch.rpm openstack-nova-api-2014.2.3-42.el7ost.noarch.rpm openstack-nova-cells-2014.2.3-42.el7ost.noarch.rpm openstack-nova-cert-2014.2.3-42.el7ost.noarch.rpm openstack-nova-common-2014.2.3-42.el7ost.noarch.rpm openstack-nova-compute-2014.2.3-42.el7ost.noarch.rpm openstack-nova-conductor-2014.2.3-42.el7ost.noarch.rpm openstack-nova-console-2014.2.3-42.el7ost.noarch.rpm openstack-nova-doc-2014.2.3-42.el7ost.noarch.rpm openstack-nova-network-2014.2.3-42.el7ost.noarch.rpm openstack-nova-novncproxy-2014.2.3-42.el7ost.noarch.rpm openstack-nova-objectstore-2014.2.3-42.el7ost.noarch.rpm openstack-nova-scheduler-2014.2.3-42.el7ost.noarch.rpm openstack-nova-serialproxy-2014.2.3-42.el7ost.noarch.rpm python-nova-2014.2.3-42.el7ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2015-7713 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFWjs99XlSAg2UNWIIRAg6eAJ41hBMR71Ig55P7X9ErsAJrdIRB7ACeJg20 +YjKzR2Yc9hbnag0lXO6wJg=b4X6 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Jan 07, 2016
Red Hat
98
security advisoryRed Hatkernel updateRed Hat 6.5: RHSA-2015-1583-02 Moderate Network Threat Mitigation
Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6.5 Extended Update Support. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: kernel security and bug fix update Advisory ID: RHSA-2015:1583-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:1583.html Issue date: 2015-08-11 CVE Names: CVE-2015-3636 ==================================================================== 1. Summary: Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6.5 Extended Update Support. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5) - x86_64 Red Hat Enterprise Linux HPC Node EUS (v. 6.5) - noarch, x86_64 Red Hat Enterprise Linux Server EUS (v. 6.5) - i386, noarch, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 6.5) - i386, ppc64, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. * It was found that the Linux kernel's ping socket implementation did not properly handle socket unhashing during spurious disconnects, which could lead to a use-after-free flaw. On x86-64 architecture systems, a local user able to create ping sockets could use this flaw to crash the system. On non-x86-64 architecture systems, a local user able to create ping sockets could use this flaw to escalatetheir privileges on the system. (CVE-2015-3636, Moderate) This update also fixes the following bugs: * Previously, the bridge device did not propagate VLAN information to its ports and Generic Receive Offload (GRO) information to devices that sit on top. This resulted in lower receive performance of VLANs over bridge devices because GRO was not enabled. An attempt to resolve this problem was made with BZ#858198 by introducing a patch that allows VLANs to be registered with the participating bridge ports and adds GRO to the bridge device feature set, however, that attempt introduced a number of regressions, which broke the vast majority of stacked setups involving bridge devices and VLANs. This update reverts the patch provided by BZ#858198 and removes support for this capability. (BZ#1131697) * The backlog data could previously not be consumed when the audit_log_start() function was running even if audit_log_start() called the wait_for_auditd() function to consume it. As only auditd could consume the backlog data, audit_log_start() terminated unexpectedly. Consequently, the system became unresponsive until the backlog timeout was up again. With this update, audit_log_start() no longer terminates and the system shuts down and reboots gracefully in a timely manner. (BZ#1140490) * This update introduces a set of patches with a new VLAN model to conform to upstream standards. In addition, this set of patches fixes other issues such as transmission of Internet Control Message Protocol (ICMP) fragments. (BZ#1173560) * Due to a bug in the audit code, a kernel panic occurred in the tasklist_lock variable if SELinux was in permissive or enforcing mode. A patch has been applied to fix this bug, and the operating system now continues to work normally. (BZ#1236103) * If a server returned an empty or malformed READDIR response, the NFS client could previously terminate unexpectedly while attempting to decode that response. This update uses the response size to determine if existing pages of data are available fordecoding, and the client only decodes the responses if they exist. As a result, the NFS client no longer attempts to decode pages of data that may not exist, and the aforementioned crash is thus avoided. (BZ#1232133) * Previously, if a slave device had a receive handler registered, then an error unwind of bonding device enslave function became broken, which led to a kernel oops. This update detaches the slave in the unwind path, and the aforementioned oops no longer occurs. (BZ#1222482) * Due to bad memory or memory corruption, an isolated BUG_ON(mm-> nr_ptes) was sometimes reported, indicating that not all the page tables allocated could be found and freed when the exit_mmap() function cleared the user address space. As a consequence, a kernel panic occurred. To fix this bug, the BUG_ON() function has been replaced by WARN_ON(), which prevents the kernel from panicking in the aforementioned situation. (BZ#1235930) All kernel users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. The system must be rebooted for this update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1218074 - CVE-2015-3636 kernel: ping sockets: use-after-free leading to local privilege escalation 6. Package List: Red Hat Enterprise Linux HPC Node EUS (v.6.5): Source: kernel-2.6.32-431.61.2.el6.src.rpm noarch: kernel-abi-whitelists-2.6.32-431.61.2.el6.noarch.rpm kernel-doc-2.6.32-431.61.2.el6.noarch.rpm kernel-firmware-2.6.32-431.61.2.el6.noarch.rpm x86_64: kernel-2.6.32-431.61.2.el6.x86_64.rpm kernel-debug-2.6.32-431.61.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-431.61.2.el6.x86_64.rpm kernel-devel-2.6.32-431.61.2.el6.x86_64.rpm kernel-headers-2.6.32-431.61.2.el6.x86_64.rpm perf-2.6.32-431.61.2.el6.x86_64.rpm perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm Red Hat Enterprise Linux Compute Node Optional EUS (v. 6.5): Source: kernel-2.6.32-431.61.2.el6.src.rpm x86_64: kernel-debug-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-431.61.2.el6.x86_64.rpm perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm python-perf-2.6.32-431.61.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm Red Hat Enterprise Linux Server EUS (v.6.5): Source: kernel-2.6.32-431.61.2.el6.src.rpm i386: kernel-2.6.32-431.61.2.el6.i686.rpm kernel-debug-2.6.32-431.61.2.el6.i686.rpm kernel-debug-debuginfo-2.6.32-431.61.2.el6.i686.rpm kernel-debug-devel-2.6.32-431.61.2.el6.i686.rpm kernel-debuginfo-2.6.32-431.61.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-431.61.2.el6.i686.rpm kernel-devel-2.6.32-431.61.2.el6.i686.rpm kernel-headers-2.6.32-431.61.2.el6.i686.rpm perf-2.6.32-431.61.2.el6.i686.rpm perf-debuginfo-2.6.32-431.61.2.el6.i686.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.i686.rpm noarch: kernel-abi-whitelists-2.6.32-431.61.2.el6.noarch.rpm kernel-doc-2.6.32-431.61.2.el6.noarch.rpm kernel-firmware-2.6.32-431.61.2.el6.noarch.rpm ppc64: kernel-2.6.32-431.61.2.el6.ppc64.rpm kernel-bootwrapper-2.6.32-431.61.2.el6.ppc64.rpm kernel-debug-2.6.32-431.61.2.el6.ppc64.rpm kernel-debug-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm kernel-debug-devel-2.6.32-431.61.2.el6.ppc64.rpm kernel-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm kernel-debuginfo-common-ppc64-2.6.32-431.61.2.el6.ppc64.rpm kernel-devel-2.6.32-431.61.2.el6.ppc64.rpm kernel-headers-2.6.32-431.61.2.el6.ppc64.rpm perf-2.6.32-431.61.2.el6.ppc64.rpm perf-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm s390x: kernel-2.6.32-431.61.2.el6.s390x.rpm kernel-debug-2.6.32-431.61.2.el6.s390x.rpm kernel-debug-debuginfo-2.6.32-431.61.2.el6.s390x.rpm kernel-debug-devel-2.6.32-431.61.2.el6.s390x.rpm kernel-debuginfo-2.6.32-431.61.2.el6.s390x.rpm kernel-debuginfo-common-s390x-2.6.32-431.61.2.el6.s390x.rpm kernel-devel-2.6.32-431.61.2.el6.s390x.rpm kernel-headers-2.6.32-431.61.2.el6.s390x.rpm kernel-kdump-2.6.32-431.61.2.el6.s390x.rpm kernel-kdump-debuginfo-2.6.32-431.61.2.el6.s390x.rpm kernel-kdump-devel-2.6.32-431.61.2.el6.s390x.rpm perf-2.6.32-431.61.2.el6.s390x.rpm perf-debuginfo-2.6.32-431.61.2.el6.s390x.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.s390x.rpm x86_64: kernel-2.6.32-431.61.2.el6.x86_64.rpm kernel-debug-2.6.32-431.61.2.el6.x86_64.rpm kernel-debug-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debug-devel-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-431.61.2.el6.x86_64.rpm kernel-devel-2.6.32-431.61.2.el6.x86_64.rpm kernel-headers-2.6.32-431.61.2.el6.x86_64.rpm perf-2.6.32-431.61.2.el6.x86_64.rpm perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm Red Hat Enterprise Linux Server Optional EUS (v. 6.5): Source: kernel-2.6.32-431.61.2.el6.src.rpm i386: kernel-debug-debuginfo-2.6.32-431.61.2.el6.i686.rpm kernel-debuginfo-2.6.32-431.61.2.el6.i686.rpm kernel-debuginfo-common-i686-2.6.32-431.61.2.el6.i686.rpm perf-debuginfo-2.6.32-431.61.2.el6.i686.rpm python-perf-2.6.32-431.61.2.el6.i686.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.i686.rpm ppc64: kernel-debug-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm kernel-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm kernel-debuginfo-common-ppc64-2.6.32-431.61.2.el6.ppc64.rpm perf-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm python-perf-2.6.32-431.61.2.el6.ppc64.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.ppc64.rpm s390x: kernel-debug-debuginfo-2.6.32-431.61.2.el6.s390x.rpm kernel-debuginfo-2.6.32-431.61.2.el6.s390x.rpm kernel-debuginfo-common-s390x-2.6.32-431.61.2.el6.s390x.rpm kernel-kdump-debuginfo-2.6.32-431.61.2.el6.s390x.rpm perf-debuginfo-2.6.32-431.61.2.el6.s390x.rpm python-perf-2.6.32-431.61.2.el6.s390x.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.s390x.rpm x86_64: kernel-debug-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm kernel-debuginfo-common-x86_64-2.6.32-431.61.2.el6.x86_64.rpm perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm python-perf-2.6.32-431.61.2.el6.x86_64.rpm python-perf-debuginfo-2.6.32-431.61.2.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2015-3636 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFVyg3MXlSAg2UNWIIRApHOAKCQLSI7H+SCy1hQSQ/3zKH1kUqoiACaAwoX gAcx0r9Pffm+qmcpxeP4ehc=rMCo -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Aug 11, 2015
Red Hat
172
security advisorydenial of servicenetwork flawUbuntu 12.04 LTS USN-2585-1: Critical Kernel Denial of Service
The system could be made to run programs as an administrator.. =========================================================================Ubuntu Security Notice USN-2585-1 April 30, 2015 linux vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: The system could be made to run programs as an administrator. Software Description: - linux: Linux kernel Details: It was discovered that the Linux kernel's IPv6 networking stack has a flaw that allows using route advertisement (RA) messages to set the 'hop_limit' to values that are too low. An unprivileged attacker on a local network could exploit this flaw to cause a denial of service (IPv6 messages dropped). Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: linux-image-3.2.0-82-generic 3.2.0-82.119 linux-image-3.2.0-82-generic-pae 3.2.0-82.119 linux-image-3.2.0-82-highbank 3.2.0-82.119 linux-image-3.2.0-82-omap 3.2.0-82.119 linux-image-3.2.0-82-powerpc-smp 3.2.0-82.119 linux-image-3.2.0-82-powerpc64-smp 3.2.0-82.119 linux-image-3.2.0-82-virtual 3.2.0-82.119 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-2585-1 CVE-2015-2922 Package Information: https://launchpad.net/ubuntu/+source/linux/3.2.0-82.119 . Tackling a vulnerability in the Ubuntu kernel that enables local adversaries to take advantage of system weaknesses and run applications.. Ubuntu Security, Kernel Denial, Linux Network Flaw. . Severity: Critical. LinuxSecurity.com Team
Apr 30, 2015
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!