Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
100
security advisorymoderateSUSESUSE: 2025:1344-1 moderate: docker-stable credential leak fix
* bsc#1239765 * jsc#PED-12534 * jsc#PED-8905 Cross-References: . # Security update for docker-stable Announcement ID: SUSE-SU-2025:1344-1 Release Date: 2025-04-17T15:14:06Z Rating: moderate References: * bsc#1239765 * jsc#PED-12534 * jsc#PED-8905 Cross-References: * CVE-2025-0495 CVSS scores: * CVE-2025-0495 ( SUSE ): 4.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N * CVE-2025-0495 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N * CVE-2025-0495 ( NVD ): 4.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability and contains two features can now be installed. ## Description: This update for docker-stable fixes the following issues: * CVE-2025-0495: buildx: Fixed credential leakage to telemetry endpoints when credentials allowed to be set as attribute values in cache-to/cache-from configuration (bsc#1239765) Other fixes: * Update to docker-buildx v0.22.0. * Disable transparent SUSEConnect support for SLE-16. (jsc#PED-12534) * Now that the only blocker for docker-buildx support was removed for SLE-16, enable docker-buildx for SLE-16 as well. (jsc#PED-8905) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-1344=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * docker-stable-debuginfo-24.0.9_ce-1.14.1 *docker-stable-24.0.9_ce-1.14.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (noarch) * docker-stable-bash-completion-24.0.9_ce-1.14.1 ## References: * https://www.suse.com/security/cve/CVE-2025-0495.html * https://bugzilla.suse.com/show_bug.cgi?id=1239765 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-12534&page_caps=&user_role= * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=%2Fbrowse%2FPED-8905&page_caps=&user_role= . Docker-stable has deployed a patch that tackles a security vulnerability related to credential exposure on SUSE platforms.. docker security update, SUSE advisory, container security, docker vulnerabilities. . LinuxSecurity.com Team
Apr 17, 2025
SuSE
98
security advisoryprivilege escalationkernel patchRedHat: RHSA-2023-1681-01 Important: kpatch-patch Privilege Escalation
An update for kpatch-patch is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kpatch-patch security update Advisory ID: RHSA-2023:1681-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:1681 Issue date: 2023-04-10 CVE Names: CVE-2023-0386 ==================================================================== 1. Summary: An update for kpatch-patch is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS (v. 9) - ppc64le, x86_64 3. Description: This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix(es): * kernel: FUSE filesystem low-privileged user privileges escalation (CVE-2023-0386) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2159505 - CVE-2023-0386 kernel: FUSE filesystem low-privileged user privileges escalation 6. Package List: Red Hat EnterpriseLinux BaseOS (v. 9): Source: kpatch-patch-5_14_0-162_12_1-1-3.el9_1.src.rpm kpatch-patch-5_14_0-162_18_1-1-2.el9_1.src.rpm kpatch-patch-5_14_0-162_22_2-1-1.el9_1.src.rpm kpatch-patch-5_14_0-162_6_1-1-4.el9_1.src.rpm ppc64le: kpatch-patch-5_14_0-162_12_1-1-3.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_12_1-debuginfo-1-3.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_12_1-debugsource-1-3.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_18_1-1-2.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_18_1-debuginfo-1-2.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_18_1-debugsource-1-2.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_22_2-1-1.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_22_2-debuginfo-1-1.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_22_2-debugsource-1-1.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_6_1-1-4.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_6_1-debuginfo-1-4.el9_1.ppc64le.rpm kpatch-patch-5_14_0-162_6_1-debugsource-1-4.el9_1.ppc64le.rpm x86_64: kpatch-patch-5_14_0-162_12_1-1-3.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_12_1-debuginfo-1-3.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_12_1-debugsource-1-3.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_18_1-1-2.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_18_1-debuginfo-1-2.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_18_1-debugsource-1-2.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_22_2-1-1.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_22_2-debuginfo-1-1.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_22_2-debugsource-1-1.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_6_1-1-4.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_6_1-debuginfo-1-4.el9_1.x86_64.rpm kpatch-patch-5_14_0-162_6_1-debugsource-1-4.el9_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-0386 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBZDVu/tzjgjWX9erEAQisnA//cyreFN0rj2a1IzcOPWmoE76J35nPAHAw LQRmfpthCvpUlQc9m9atDWCl/BKWjnW7sVhaP3jFfO+zdLMusNxM4wp6QlOCX8Ev 017ZzgvsfLfRsAPVJumg/iSL96peEO6aeYIJrA6FsqKfZMk+sfQ2+OExfCMYUVHU UuvEZog7qM9OSPoLqZ6uH49Aaw8jZXH1LNqvRF+TTlXCfqDTyQOSXGGHlRioxKDc YvFzO/O+4Tho6OmuyMCe3fQ2mFu7bzSe+Wy4QvgOyfGQtM1PiLQw5tySkHGPDX77 yXGBewCrtZ9CE2D/kK4BOl6fzk+HYAj5MMU+rpyt9Qwy6anyM9KxNLx/okEpU6ne eWKSvcaJ3XkOu0mHFMTMriR9CYX27rlaz6ZbKyWEzFiTUKJegum3FsE8mALuyroy AVAiD/0TGoKNf41T31afIWOXsZF3obeZ9BtsHejGPDYaJSOH5x9SJK97hRPd6D8u 0FLOxalbubx7eYLzkRM+XIkZdf28WdcxIZUR33Wc/nq4EPvU5GJyW5zM867PUT1k gqnlvXe1G+NrfWCOyUsFzlOKo62OtP2q/XiOBGiith2pSOocCFflsppzY1TA2VLh rVwe5Jdv75YWNCUbUjfc2GkJ03W7IIbcc4vpSVKplqRZ5bD58v3UZcKMoZOBZCIh Z70N0pTXAe0=BFYZ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Apr 11, 2023
•Important
Red Hat
172
security advisorycriticalkernel fixUbuntu 14.04 LTS: USN-3146-2 Critical Kernel Update for Local Attacks
Several security issues were fixed in the kernel.. =========================================================================Ubuntu Security Notice USN-3146-2 November 30, 2016 linux-lts-xenial vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS Summary: Several security issues were fixed in the kernel. Software Description: - linux-lts-xenial: Linux hardware enablement kernel from Xenial for Trusty Details: USN-3146-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. It was discovered that the __get_user_asm_ex implementation in the Linux kernel for x86/x86_64 contained extended asm statements that were incompatible with the exception table. A local attacker could use this to gain administrative privileges. (CVE-2016-9644) Andreas Gruenbacher and Jan Kara discovered that the filesystem implementation in the Linux kernel did not clear the setgid bit during a setxattr call. A local attacker could use this to possibly elevate group privileges. (CVE-2016-7097) Marco Grassi discovered that the driver for Areca RAID Controllers in the Linux kernel did not properly validate control messages. A local attacker could use this to cause a denial of service (system crash) or possibly gain privileges. (CVE-2016-7425) Daxing Guo discovered a stack-based buffer overflow in the Broadcom IEEE802.11n FullMAC driver in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly gain privileges. (CVE-2016-8658) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: linux-image-4.4.0-51-generic 4.4.0-51.72~14.04.1 linux-image-4.4.0-51-generic-lpae 4.4.0-51.72~14.04.1 linux-image-4.4.0-51-lowlatency 4.4.0-51.72~14.04.1 linux-image-4.4.0-51-powerpc-e500mc 4.4.0-51.72~14.04.1 linux-image-4.4.0-51-powerpc-smp 4.4.0-51.72~14.04.1 linux-image-4.4.0-51-powerpc64-emb 4.4.0-51.72~14.04.1 linux-image-4.4.0-51-powerpc64-smp 4.4.0-51.72~14.04.1 linux-image-generic-lpae-lts-xenial 4.4.0.51.38 linux-image-generic-lts-xenial 4.4.0.51.38 linux-image-lowlatency-lts-xenial 4.4.0.51.38 linux-image-powerpc-e500mc-lts-xenial 4.4.0.51.38 linux-image-powerpc-smp-lts-xenial 4.4.0.51.38 linux-image-powerpc64-emb-lts-xenial 4.4.0.51.38 linux-image-powerpc64-smp-lts-xenial 4.4.0.51.38 linux-image-virtual-lts-xenial 4.4.0.51.38 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-3146-2 https://ubuntu.com/security/notices/USN-3146-1 CVE-2016-7097, CVE-2016-7425, CVE-2016-8658, CVE-2016-9644 Package Information: https://launchpad.net/ubuntu/+source/linux-lts-xenial/4.4.0-51.72~14.04.1 . Patches for kernel weaknesses in Ubuntu 14.04 LTS have been issued under USN-3146-2. Immediate updating is advised to counter potential local exploits and enhance security.. Ubuntu Security Updates, Kernel Fixes, HWE Threats. . Severity: Critical. LinuxSecurity.com Team
Nov 30, 2016
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!