Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
202
security advisorymoderatesystem updateopenSUSE 15.5: 2025:01860-1 moderate: xen security update
An update that solves three vulnerabilities can now be installed.. # Security update for xen Announcement ID: SUSE-SU-2025:01860-1 Release Date: 2025-06-10T08:11:58Z Rating: moderate References: * bsc#1234282 * bsc#1238043 * bsc#1243117 Cross-References: * CVE-2024-28956 * CVE-2024-53241 * CVE-2025-1713 CVSS scores: * CVE-2024-28956 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-28956 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-28956 ( NVD ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2024-28956 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-53241 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-53241 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-1713 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2025-1713 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise Micro 5.5 An update that solves three vulnerabilities can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection (ITS) (XSA-469) (bsc#1243117) * CVE-2024-53241: Fixed Xen hypercall page unsafe against speculative attacks (XSA-466) (bsc#1234282) * CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through (XSA-467) (bsc#1238043) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSELeap 15.5 zypper in -t patch SUSE-2025-1860=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-1860=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64 i586) * xen-libs-debuginfo-4.17.5_08-150500.3.45.1 * xen-devel-4.17.5_08-150500.3.45.1 * xen-debugsource-4.17.5_08-150500.3.45.1 * xen-libs-4.17.5_08-150500.3.45.1 * xen-tools-domU-4.17.5_08-150500.3.45.1 * xen-tools-domU-debuginfo-4.17.5_08-150500.3.45.1 * openSUSE Leap 15.5 (x86_64) * xen-libs-32bit-debuginfo-4.17.5_08-150500.3.45.1 * xen-libs-32bit-4.17.5_08-150500.3.45.1 * openSUSE Leap 15.5 (aarch64 x86_64) * xen-tools-4.17.5_08-150500.3.45.1 * xen-doc-html-4.17.5_08-150500.3.45.1 * xen-4.17.5_08-150500.3.45.1 * xen-tools-debuginfo-4.17.5_08-150500.3.45.1 * openSUSE Leap 15.5 (noarch) * xen-tools-xendomains-wait-disk-4.17.5_08-150500.3.45.1 * openSUSE Leap 15.5 (aarch64_ilp32) * xen-libs-64bit-debuginfo-4.17.5_08-150500.3.45.1 * xen-libs-64bit-4.17.5_08-150500.3.45.1 * SUSE Linux Enterprise Micro 5.5 (x86_64) * xen-libs-4.17.5_08-150500.3.45.1 * xen-libs-debuginfo-4.17.5_08-150500.3.45.1 * xen-debugsource-4.17.5_08-150500.3.45.1 ## References: * https://www.suse.com/security/cve/CVE-2024-28956.html * https://www.suse.com/security/cve/CVE-2024-53241.html * https://www.suse.com/security/cve/CVE-2025-1713.html * https://bugzilla.suse.com/show_bug.cgi?id=1234282 * https://bugzilla.suse.com/show_bug.cgi?id=1238043 * https://bugzilla.suse.com/show_bug.cgi?id=1243117 . The recent openSUSE update addresses several security threats, bolstering system resilience against potential exploits.. openSUSE Security, xen Update, Security Fixes, System Integrity, Update Instructions. . LinuxSecurity.com Team
Jun 10, 2025
OpenSUSE
100
security advisorymoderate severitySUSESUSE: 2025:01850-1 moderate: xen fixes for three issues
* bsc#1234282 * bsc#1238043 * bsc#1243117 Cross-References: . # Security update for xen Announcement ID: SUSE-SU-2025:01850-1 Release Date: 2025-06-10T01:33:37Z Rating: moderate References: * bsc#1234282 * bsc#1238043 * bsc#1243117 Cross-References: * CVE-2024-28956 * CVE-2024-53241 * CVE-2025-1713 CVSS scores: * CVE-2024-28956 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-28956 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-28956 ( NVD ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2024-28956 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N * CVE-2024-53241 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-53241 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-1713 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2025-1713 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 An update that solves three vulnerabilities can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection (ITS) (XSA-469) (bsc#1243117) * CVE-2024-53241: Fixed Xen hypercall page unsafe against speculative attacks (XSA-466) (bsc#1234282) * CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through (XSA-467) (bsc#1238043) ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-1850=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-1850=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1850=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1850=1 ## Package List: * openSUSE Leap 15.3 (aarch64 x86_64 i586) * xen-libs-debuginfo-4.14.6_24-150300.3.87.1 * xen-devel-4.14.6_24-150300.3.87.1 * xen-debugsource-4.14.6_24-150300.3.87.1 * xen-tools-domU-4.14.6_24-150300.3.87.1 * xen-tools-domU-debuginfo-4.14.6_24-150300.3.87.1 * xen-libs-4.14.6_24-150300.3.87.1 * openSUSE Leap 15.3 (x86_64) * xen-libs-32bit-4.14.6_24-150300.3.87.1 * xen-libs-32bit-debuginfo-4.14.6_24-150300.3.87.1 * openSUSE Leap 15.3 (aarch64 x86_64) * xen-tools-4.14.6_24-150300.3.87.1 * xen-4.14.6_24-150300.3.87.1 * xen-tools-debuginfo-4.14.6_24-150300.3.87.1 * xen-doc-html-4.14.6_24-150300.3.87.1 * openSUSE Leap 15.3 (noarch) * xen-tools-xendomains-wait-disk-4.14.6_24-150300.3.87.1 * openSUSE Leap 15.3 (aarch64_ilp32) * xen-libs-64bit-debuginfo-4.14.6_24-150300.3.87.1 * xen-libs-64bit-4.14.6_24-150300.3.87.1 * SUSE Linux Enterprise Micro 5.1 (x86_64) * xen-debugsource-4.14.6_24-150300.3.87.1 * xen-libs-debuginfo-4.14.6_24-150300.3.87.1 * xen-libs-4.14.6_24-150300.3.87.1 * SUSE Linux Enterprise Micro 5.2 (x86_64) * xen-debugsource-4.14.6_24-150300.3.87.1 * xen-libs-debuginfo-4.14.6_24-150300.3.87.1 * xen-libs-4.14.6_24-150300.3.87.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64) * xen-debugsource-4.14.6_24-150300.3.87.1 * xen-libs-debuginfo-4.14.6_24-150300.3.87.1 * xen-libs-4.14.6_24-150300.3.87.1 ## References: * https://www.suse.com/security/cve/CVE-2024-28956.html * https://www.suse.com/security/cve/CVE-2024-53241.html *https://www.suse.com/security/cve/CVE-2025-1713.html * https://bugzilla.suse.com/show_bug.cgi?id=1234282 * https://bugzilla.suse.com/show_bug.cgi?id=1238043 * https://bugzilla.suse.com/show_bug.cgi?id=1243117 . Keep informed about the latest SUSE security bulletin addressing flaws in the Xen hypervisor and viable remediation strategies.. SUSE security advisory,xen vulnerabilities,moderate severity updates,openSUSE security. . LinuxSecurity.com Team
Jun 10, 2025
SuSE
202
security advisorymoderatesystem updateopenSUSE Leap 15.6: SUSE-SU-2025:0142-1 moderate: xen speculative attacks
An update that solves one vulnerability and has one security fix can now be installed.. # Security update for xen Announcement ID: SUSE-SU-2025:0142-1 Release Date: 2025-01-16T13:20:15Z Rating: moderate References: * bsc#1027519 * bsc#1234282 Cross-References: * CVE-2024-53241 CVSS scores: * CVE-2024-53241 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-53241 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-53241: Xen hypercall page unsafe against speculative attacks (bsc#1234282). Bug fixes: * Update to Xen 4.18.4 security bug fix release (bsc#1027519) * x86: Prefer ACPI reboot over UEFI ResetSystem() run time service call * No other changes mentioned in upstream changelog, sources, or webpage ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-142=1 openSUSE-SLE-15.6-2025-142=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-142=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-142=1 ## Package List: * openSUSE Leap 15.6 (aarch64 x86_64 i586) * xen-tools-domU-4.18.4_02-150600.3.15.2 *xen-debugsource-4.18.4_02-150600.3.15.2 * xen-tools-domU-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-debuginfo-4.18.4_02-150600.3.15.2 * xen-devel-4.18.4_02-150600.3.15.2 * xen-libs-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (x86_64) * xen-libs-32bit-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-32bit-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (aarch64 x86_64) * xen-tools-debuginfo-4.18.4_02-150600.3.15.2 * xen-tools-4.18.4_02-150600.3.15.2 * xen-doc-html-4.18.4_02-150600.3.15.2 * xen-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (noarch) * xen-tools-xendomains-wait-disk-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (aarch64_ilp32) * xen-libs-64bit-4.18.4_02-150600.3.15.2 * xen-libs-64bit-debuginfo-4.18.4_02-150600.3.15.2 * Basesystem Module 15-SP6 (x86_64) * xen-tools-domU-4.18.4_02-150600.3.15.2 * xen-debugsource-4.18.4_02-150600.3.15.2 * xen-tools-domU-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-4.18.4_02-150600.3.15.2 * Server Applications Module 15-SP6 (x86_64) * xen-tools-debuginfo-4.18.4_02-150600.3.15.2 * xen-debugsource-4.18.4_02-150600.3.15.2 * xen-tools-4.18.4_02-150600.3.15.2 * xen-4.18.4_02-150600.3.15.2 * xen-devel-4.18.4_02-150600.3.15.2 * Server Applications Module 15-SP6 (noarch) * xen-tools-xendomains-wait-disk-4.18.4_02-150600.3.15.2 ## References: * https://www.suse.com/security/cve/CVE-2024-53241.html * https://bugzilla.suse.com/show_bug.cgi?id=1027519 * https://bugzilla.suse.com/show_bug.cgi?id=1234282 . A security notice for openSUSE highlights vulnerabilities linked to speculative attack methods present in xen, along with guidelines for applying the necessary updates.. openSUSE Security Update, xen vulnerabilities, moderate security fixes, SUSE 2025, system vulnerabilities. . LinuxSecurity.com Team
Jan 16, 2025
OpenSUSE
100
security advisorymoderatesecurity issueSUSE: 2025:0142-1 moderate: xen CVE-2024-53241 speculative attack
* bsc#1027519 * bsc#1234282 Cross-References: * CVE-2024-53241 . # Security update for xen Announcement ID: SUSE-SU-2025:0142-1 Release Date: 2025-01-16T13:20:15Z Rating: moderate References: * bsc#1027519 * bsc#1234282 Cross-References: * CVE-2024-53241 CVSS scores: * CVE-2024-53241 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-53241 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for xen fixes the following issues: * CVE-2024-53241: Xen hypercall page unsafe against speculative attacks (bsc#1234282). Bug fixes: * Update to Xen 4.18.4 security bug fix release (bsc#1027519) * x86: Prefer ACPI reboot over UEFI ResetSystem() run time service call * No other changes mentioned in upstream changelog, sources, or webpage ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-142=1 openSUSE-SLE-15.6-2025-142=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-142=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-142=1 ## Package List: * openSUSE Leap 15.6 (aarch64 x86_64 i586) * xen-tools-domU-4.18.4_02-150600.3.15.2 * xen-debugsource-4.18.4_02-150600.3.15.2 *xen-tools-domU-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-debuginfo-4.18.4_02-150600.3.15.2 * xen-devel-4.18.4_02-150600.3.15.2 * xen-libs-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (x86_64) * xen-libs-32bit-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-32bit-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (aarch64 x86_64) * xen-tools-debuginfo-4.18.4_02-150600.3.15.2 * xen-tools-4.18.4_02-150600.3.15.2 * xen-doc-html-4.18.4_02-150600.3.15.2 * xen-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (noarch) * xen-tools-xendomains-wait-disk-4.18.4_02-150600.3.15.2 * openSUSE Leap 15.6 (aarch64_ilp32) * xen-libs-64bit-4.18.4_02-150600.3.15.2 * xen-libs-64bit-debuginfo-4.18.4_02-150600.3.15.2 * Basesystem Module 15-SP6 (x86_64) * xen-tools-domU-4.18.4_02-150600.3.15.2 * xen-debugsource-4.18.4_02-150600.3.15.2 * xen-tools-domU-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-debuginfo-4.18.4_02-150600.3.15.2 * xen-libs-4.18.4_02-150600.3.15.2 * Server Applications Module 15-SP6 (x86_64) * xen-tools-debuginfo-4.18.4_02-150600.3.15.2 * xen-debugsource-4.18.4_02-150600.3.15.2 * xen-tools-4.18.4_02-150600.3.15.2 * xen-4.18.4_02-150600.3.15.2 * xen-devel-4.18.4_02-150600.3.15.2 * Server Applications Module 15-SP6 (noarch) * xen-tools-xendomains-wait-disk-4.18.4_02-150600.3.15.2 ## References: * https://www.suse.com/security/cve/CVE-2024-53241.html * https://bugzilla.suse.com/show_bug.cgi?id=1027519 * https://bugzilla.suse.com/show_bug.cgi?id=1234282 . New patch released for Xen addressing speculative attack flaw CVE-2024-53241. Please perform installation and restart procedures.. SUSE Update, xen security, openSUSE installation, security patch. . LinuxSecurity.com Team
Jan 16, 2025
SuSE
87
security advisoryDebiancritical updateDebian DSA-5475-1 Critical: Intel GDS and AMD SRSO Issues
CVE-2022-40982 Daniel Moghimi discovered Gather Data Sampling (GDS), a hardware vulnerability for Intel CPUs which allows unprivileged speculative . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5475-1
Aug 11, 2023
•Critical
Debian
98
security advisorysecurity updatekernel securityRed Hat OpenStack 10.0 RHSA-2018:1644-01 Important Qemu-KVM-RHEV Update
An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 10.0 (Newton). Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: qemu-kvm-rhev security update Advisory ID: RHSA-2018:1644-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2018:1644 Issue date: 2018-05-21 CVE Names: CVE-2018-3639 ==================================================================== 1. Summary: An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 10.0 (Newton). Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 10.0 - x86_64 3. Description: KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that neveractually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639) Note: This is the qemu-kvm-rhev side of the CVE-2018-3639 mitigation. Red Hat would like to thank Ken Johnson (Microsoft Security Response Center) and Jann Horn (Google Project Zero) for reporting this issue. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing this update, shut down all running virtual machines. Once all virtual machines have shut down, start them again for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1566890 - CVE-2018-3639 hw: cpu: speculative store bypass 6. Package List: Red Hat OpenStack Platform 10.0: Source: qemu-kvm-rhev-2.10.0-21.el7_5.3.src.rpm x86_64: qemu-img-rhev-2.10.0-21.el7_5.3.x86_64.rpm qemu-kvm-common-rhev-2.10.0-21.el7_5.3.x86_64.rpm qemu-kvm-rhev-2.10.0-21.el7_5.3.x86_64.rpm qemu-kvm-rhev-debuginfo-2.10.0-21.el7_5.3.x86_64.rpm qemu-kvm-tools-rhev-2.10.0-21.el7_5.3.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-3639 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/security/vulnerabilities/ssbd 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBWwQqKdzjgjWX9erEAQhJqQ/9GcSmF+rGkARprUAQ2dadNz1lqbhOomlS 25PvF7/IeCjuzQwrOm84lFo76sqFD5Ta1+4Negecpp2X4jDtmf9IisAWMfvsXBnq 672GJ0adzeTVAcpDc27Vuv3Boq9rwvC3AHWPyQ7ZciDe0taBvPano/Toe6z3c2cE +yUGjMaC1qleBCm5FY1I7a8OKagHT7gKl+DWIIQzM4lg2C44wYZzJQMq/pxTAnUn HzTW3y++jKa1KiPfZf45XTil81SMjHt1tBBNeNGH44K6lekPCNaqZUqjlBZFcQZi Eh1PfATLs5qiK9XGE0r8UJLtkFFaDCuDdwWL6ivtaEJlhZPq6g2x9AdtoFpvkRC/ RDRXIRhIuZk45fe7hV+GQmLh74ZdpOGS8wbij5Mjq2EeQtgjH4Va3lJJcYEbuhZ1 JxSYqSCjpV9J1AVeQSwYrQIOsgdY3tqkvH3UarSisUKSqA99nxz1jhnRnMRYQ1wI TZQ7xSD/klOiJMtXN14SkWncr6Yy7uEGf9Su0ESYQtPz026qio9snEc4hpkaQf4u t9CB0dPXjw3UHYvB7O69Pl3OCY0k+DtJ6STTAyCsHON+3drSMfL+LAlo2JCSxnAo L7C272zH6KAn5ov2Bv6kZVPwVoMggxVBvRfw+EMqJB0aaZL1RL//8NR70SXLSLDs ZFoQJPCuzYU=B/Vi -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 22, 2018
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!