Download
| Alert*
oval:org.secpod.oval:def:205845
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: Local buffer overflow in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c * kernel: SCSI target write to any block on ILO backstore * kernel: locking issue in drivers/ ... oval:org.secpod.oval:def:505972 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: Local buffer overflow in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c * kernel: SCSI target write to any block on ILO backstore * kernel: locking issue in drivers/ ... oval:org.secpod.oval:def:1504775 [3.10.0-1160.21.1.el7.OL7] - Oracle Linux certificates - Oracle Linux RHCK Module Signing Key was compiled into kernel - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 = 15-2.0.3.el7 [3.10.0-1160.21.1.el7] - [pinctrl] devicetree: Avoid taking direct reference to device ... oval:org.secpod.oval:def:89003400 The SUSE Linux Enterprise 12 SP 3 LTSS kernel was updated to receive various security and bugfixes. oval:org.secpod.oval:def:89000511 The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-10942: In get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via ... oval:org.secpod.oval:def:89000558 kernel package information. oval:org.secpod.oval:def:89043701 The SUSE Linux Enterprise 12 SP4 kernel-azure was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-19051: There was a memory leak in the i2400m_op_rfkill_sw_toggle function in drivers/net/wimax/i2400m/op-rfkill.c in the Linux kernel allowed attacke ... oval:org.secpod.oval:def:61679 In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c, drivers/hid/hi ... oval:org.secpod.oval:def:705319 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:89050863 The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-19767: Fixed ext4_expand_extra_isize mishandles, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ ... oval:org.secpod.oval:def:89050406 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-8992: An issue was discovered in ext4_protect_reserved_inode in fs/ext4/block_validity.c that allowed attackers to cause a soft lockup via a crafted journa ... oval:org.secpod.oval:def:69511 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c * kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence * kernel: memory leak in the kernel_read_file ... oval:org.secpod.oval:def:1502927 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502907 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:97549 [CLSA-2021:1632261812] Fixed CVEs in kernel: CVE-2020-29661, CVE-2020-25211, CVE-2019-19532, CVE-2020-25656 oval:org.secpod.oval:def:89003259 The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. oval:org.secpod.oval:def:89000107 The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-11494: An issue was discovered in slc_bump in drivers/net/can/slcan.c, which allowed attackers to read uninitialized can_frame data, potentially containing ... oval:org.secpod.oval:def:97550 [CLSA-2021:1632261839] Fix of CVE: CVE-2020-29661, CVE-2019-19532, CVE-2020-25656, CVE-2020-25211 oval:org.secpod.oval:def:89000615 kernel package information. oval:org.secpod.oval:def:1502894 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502895 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:61521 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:89050936 The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-19767: Fixed ext4_expand_extra_isize mishandles, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ ... oval:org.secpod.oval:def:1502898 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:66796 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c * kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence * kernel: memory leak in the kernel_read_file ... oval:org.secpod.oval:def:1502899 The advisory is missing the security advisory description. For more information please visit the reference link |