Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
98
security advisorykernel updatebug fixRed Hat Enterprise Linux 8 RHSA-2021-5227 Moderate: Security Kernel Update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: kernel security and bug fix update Advisory ID: RHSA-2021:5227-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:5227 Issue date: 2021-12-21 CVE Names: CVE-2021-20321 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: In Overlayfs missing a check for a negative dentry before calling vfs_rename() (CVE-2021-20321) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * panic while breaking a lease/delegation after user mode helper invocation (BZ#2010333) * The ASR driver is causing a system crash in RHEL8.4 compared to RHEL8.3 due to kernel changes (BZ#2016384) * RHEL8: DFS provided SMB shares are not accessible followingunprivileged access (BZ#2017177) * Avoid hitting the rtnl_trylock/restart_syscall logic in net-sysfs when possible (BZ#2021165) * RHEL8: x86/Kconfig: Do not enable AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT (BZ#2024678) * RHEL8.4-[Regression][P10][DD2.0][Rainier/Denali] - system crashed while offlining and onlining cores (BZ#2026450) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2013242 - CVE-2021-20321 kernel: In Overlayfs missing a check for a negative dentry before calling vfs_rename() 6. Package List: Red Hat Enterprise Linux BaseOS (v.8): Source: kernel-4.18.0-348.7.1.el8_5.src.rpm aarch64: bpftool-4.18.0-348.7.1.el8_5.aarch64.rpm bpftool-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-core-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-cross-headers-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debug-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debug-core-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debug-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debug-devel-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debug-modules-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debug-modules-extra-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-devel-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-headers-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-modules-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-modules-extra-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-tools-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-tools-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-tools-libs-4.18.0-348.7.1.el8_5.aarch64.rpm perf-4.18.0-348.7.1.el8_5.aarch64.rpm perf-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm python3-perf-4.18.0-348.7.1.el8_5.aarch64.rpm python3-perf-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm noarch: kernel-abi-stablelists-4.18.0-348.7.1.el8_5.noarch.rpm kernel-doc-4.18.0-348.7.1.el8_5.noarch.rpm ppc64le: bpftool-4.18.0-348.7.1.el8_5.ppc64le.rpm bpftool-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-core-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-cross-headers-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debug-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debug-core-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debug-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debug-devel-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debug-modules-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debug-modules-extra-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-devel-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-headers-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-modules-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-modules-extra-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-tools-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-tools-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-tools-libs-4.18.0-348.7.1.el8_5.ppc64le.rpm perf-4.18.0-348.7.1.el8_5.ppc64le.rpm perf-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm python3-perf-4.18.0-348.7.1.el8_5.ppc64le.rpm python3-perf-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm s390x: bpftool-4.18.0-348.7.1.el8_5.s390x.rpm bpftool-debuginfo-4.18.0-348.7.1.el8_5.s390x.rpm kernel-4.18.0-348.7.1.el8_5.s390x.rpm kernel-core-4.18.0-348.7.1.el8_5.s390x.rpm kernel-cross-headers-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debug-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debug-core-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debug-debuginfo-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debug-devel-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debug-modules-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debug-modules-extra-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debuginfo-4.18.0-348.7.1.el8_5.s390x.rpm kernel-debuginfo-common-s390x-4.18.0-348.7.1.el8_5.s390x.rpm kernel-devel-4.18.0-348.7.1.el8_5.s390x.rpm kernel-headers-4.18.0-348.7.1.el8_5.s390x.rpm kernel-modules-4.18.0-348.7.1.el8_5.s390x.rpm kernel-modules-extra-4.18.0-348.7.1.el8_5.s390x.rpm kernel-tools-4.18.0-348.7.1.el8_5.s390x.rpm kernel-tools-debuginfo-4.18.0-348.7.1.el8_5.s390x.rpm kernel-zfcpdump-4.18.0-348.7.1.el8_5.s390x.rpm kernel-zfcpdump-core-4.18.0-348.7.1.el8_5.s390x.rpm kernel-zfcpdump-debuginfo-4.18.0-348.7.1.el8_5.s390x.rpm kernel-zfcpdump-devel-4.18.0-348.7.1.el8_5.s390x.rpm kernel-zfcpdump-modules-4.18.0-348.7.1.el8_5.s390x.rpm kernel-zfcpdump-modules-extra-4.18.0-348.7.1.el8_5.s390x.rpm perf-4.18.0-348.7.1.el8_5.s390x.rpm perf-debuginfo-4.18.0-348.7.1.el8_5.s390x.rpm python3-perf-4.18.0-348.7.1.el8_5.s390x.rpm python3-perf-debuginfo-4.18.0-348.7.1.el8_5.s390x.rpm x86_64: bpftool-4.18.0-348.7.1.el8_5.x86_64.rpm bpftool-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-core-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-cross-headers-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debug-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debug-core-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debug-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debug-devel-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debug-modules-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debug-modules-extra-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-devel-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-headers-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-modules-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-modules-extra-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-tools-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-tools-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-tools-libs-4.18.0-348.7.1.el8_5.x86_64.rpm perf-4.18.0-348.7.1.el8_5.x86_64.rpm perf-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm python3-perf-4.18.0-348.7.1.el8_5.x86_64.rpm python3-perf-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm Red Hat CodeReady Linux Builder (v.8): aarch64: bpftool-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debug-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-tools-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm kernel-tools-libs-devel-4.18.0-348.7.1.el8_5.aarch64.rpm perf-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm python3-perf-debuginfo-4.18.0-348.7.1.el8_5.aarch64.rpm ppc64le: bpftool-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debug-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-tools-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm kernel-tools-libs-devel-4.18.0-348.7.1.el8_5.ppc64le.rpm perf-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm python3-perf-debuginfo-4.18.0-348.7.1.el8_5.ppc64le.rpm x86_64: bpftool-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debug-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-tools-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm kernel-tools-libs-devel-4.18.0-348.7.1.el8_5.x86_64.rpm perf-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm python3-perf-debuginfo-4.18.0-348.7.1.el8_5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-20321 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYcHa6tzjgjWX9erEAQgT5A/9FLp0+RuC9/znIdJ72FVkp870KSv6gXjH ZzenXWB9lHdTCNUXHvY6f3En5mR12gf9N+x8WA6LtE4EE2geFd3/n/yP4Qzgp5XD TwR+HaE7cmgXZLMCnLVRZbGeEMbqAmOHbUe3cjgYcePby0+WSknedawK3/WClBu/ qAIOyJ0+b8fjkg3EocOxxM3bDHDlvVeq28s6X/vBeYfXV/pyTMjruJev6x2fCBNJ VK5ToUC/R/1kyrBpONdXHiDMqx0qN1N0UwxSHP/hpdpiQy/+FowKMu8qa/B+H17O jfM3nv+7a/Eu7Yx/BS0E8tfi4md4F4KBsMRGP1VXncOqTFFTpFJw/ruiXCggmF4L h2ulxLcgiGqWgJFV7urrgOVYt09NqXxxaSwF83mhpLnz+eZDDoFKzKgG6HZkBLBl nriLWDCMSoXFGXqmTaWr6hsBUDvYct/sGIMgiMWkgUunk5PWwLk/+D2kFLFlQwdD oEnEqiUrQS2OsPjW8YLVOnkd49I0ynahjmVRs/KnFtmBEzfIPpHNJUfPw73OywTZ uZEaSgc2rvTRb8CCYriD5U/K87P5RVmv+7G3ZcCs0K4Ma1kXeH8waRVVELRb7gAS xeOhiONgFjV4TMp5+QEJHKhJQN6BZzHDqBlkZty2Oy50aU8UcGbezAu6B2qZoKid /gQPXu4ZFDM=k/Ts -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Dec 21, 2021
Red Hat
172
security advisoryDoSUbuntuUbuntu 20.04 LTS USN-4367-2: Critical Kernel Regression Fix
USN-4367-1 introduced a regression in the Linux kernel.. =========================================================================Ubuntu Security Notice USN-4367-2 May 28, 2020 linux regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: USN-4367-1 introduced a regression in the Linux kernel. Software Description: - linux: Linux kernel Details: USN-4367-1 fixed vulnerabilities in the 5.4 Linux kernel. Unfortunately, that update introduced a regression in overlayfs. This update corrects the problem. We apologize for the inconvenience. Original advisory details: It was discovered that the btrfs implementation in the Linux kernel did not properly detect that a block was marked dirty in some situations. An attacker could use this to specially craft a file system image that, when unmounted, could cause a denial of service (system crash). (CVE-2019-19377) It was discovered that the linux kernel did not properly validate certain mount options to the tmpfs virtual memory file system. A local attacker with the ability to specify mount options could use this to cause a denial of service (system crash). (CVE-2020-11565) It was discovered that the block layer in the Linux kernel contained a race condition leading to a use-after-free vulnerability. A local attacker could possibly use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2020-12657) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: linux-image-5.4.0-33-generic 5.4.0-33.37 linux-image-5.4.0-33-generic-lpae 5.4.0-33.37 linux-image-5.4.0-33-lowlatency 5.4.0-33.37 linux-image-generic 5.4.0.33.38 linux-image-generic-lpae 5.4.0.33.38 linux-image-lowlatency 5.4.0.33.38 linux-image-oem 5.4.0.33.38 linux-image-oem-osp1 5.4.0.33.38 linux-image-virtual 5.4.0.33.38 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-4367-2 https://ubuntu.com/security/notices/USN-4367-1 https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1879690 Package Information: https://launchpad.net/ubuntu/+source/linux/5.4.0-33.37 . Uncover the kernel flaws in Ubuntu 20.04 LTS following USN-4367-1, which caused significant problems, and learn how these obstacles were addressed successfully.. Linux Kernel Update, Ubuntu Security Notice, Overlayfs Vulnerability. . Severity: Critical. LinuxSecurity.com Team
May 28, 2020
•Critical
Ubuntu
172
security advisoryprivilege escalationubuntuUbuntu 12.04 LTS USN-2642-2: Critical Regression Crash Issue
The system could be made to crash under certain conditions.. =========================================================================Ubuntu Security Notice USN-2642-2 June 21, 2015 linux-lts-trusty regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: The system could be made to crash under certain conditions. Software Description: - linux-lts-trusty: Linux hardware enablement kernel from Trusty Details: The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's overlayfs file system. The removal of a directory that only exists on the lower layer results in a kernel panic. We apologize for the inconvenience. Original advisory details: Philip Pettersson discovered a privilege escalation when using overlayfs mounts inside of user namespaces. A local user could exploit this flaw to gain administrative privileges on the system. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: linux-image-3.13.0-55-generic 3.13.0-55.94~precise1 linux-image-3.13.0-55-generic-lpae 3.13.0-55.94~precise1 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2642-2 https://ubuntu.com/security/notices/USN-2642-1 https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1465998 Package Information: https://launchpad.net/ubuntu/+source/linux-lts-trusty/3.13.0-55.94~precise1 . Ubuntu 12.04 LTS experienced a significant bug leading to system failures; revised guidelines are now available for users to alleviate the issue.. Linux Kernel Regression, Ubuntu Security Update, Crash Mitigation, Overlayfs Fixed. . Severity: Critical. LinuxSecurity.com Team
Jun 21, 2015
•Critical
Ubuntu
172
security advisorycriticalprivilege escalationUbuntu 12.04 LTS: USN-2641-2 Critical: Linux Kernel Overlayfs Regression
The system could be made to crash under certain conditions.. =========================================================================Ubuntu Security Notice USN-2641-2 June 21, 2015 linux-ti-omap4 regression ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: The system could be made to crash under certain conditions. Software Description: - linux-ti-omap4: Linux kernel for OMAP4 Details: The Fix for CVE-2015-1328 introduced a regression into the Linux kernel's overlayfs file system. The removal of a directory that only exists on the lower layer results in a kernel panic. We apologize for the inconvenience. Original advisory details: Philip Pettersson discovered a privilege escalation when using overlayfs mounts inside of user namespaces. A local user could exploit this flaw to gain administrative privileges on the system. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: linux-image-3.2.0-1466-omap4 3.2.0-1466.87 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2641-2 https://ubuntu.com/security/notices/USN-2641-1 https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1465998 Package Information: https://launchpad.net/ubuntu/+source/linux-ti-omap4/3.2.0-1466.87 . This notification underscores a flaw in the linux-ti-omap4 kernel that may result in system failures under specific circumstances.. Ubuntu Security Notice, Linux Kernel Regression, Overlayfs Issue. . Severity: Critical. LinuxSecurity.com Team
Jun 21, 2015
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!