Download
| Alert*
oval:org.secpod.oval:def:89000067
kernel package information. oval:org.secpod.oval:def:89000296 kernel package information. oval:org.secpod.oval:def:505242 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: metadata validator in XFS may cause an inode with a valid, user-creatable extended attribute to be flagged as corrupt * kernel: The flow_dissector feature allows device tracking * kernel: ... oval:org.secpod.oval:def:89002978 The SUSE Linux Enterprise 15 GA LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-0305: In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with Syst ... oval:org.secpod.oval:def:89000531 The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-10773: Fixed a memory leak on s390/s390x, in the cmm_timeout_hander in file arch/s390/mm/cmm.c . - CVE-2020-14416: Fixed a race condition in tty-gt;disc_da ... oval:org.secpod.oval:def:89000684 kernel package information. oval:org.secpod.oval:def:89050519 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-15780: A lockdown bypass for loading unsigned modules using ACPI table injection was fixed. - CVE-2020-15393: Fixed a memory leak in usbtest_disconnect . ... oval:org.secpod.oval:def:1503132 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:205720 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: metadata validator in XFS may cause an inode with a valid, user-creatable extended attribute to be flagged as corrupt * kernel: The flow_dissector feature allows device tracking * kernel: ... oval:org.secpod.oval:def:1503133 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1503149 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89050329 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-15780: A lockdown bypass for loading unsigned modules using ACPI table injection was fixed. - CVE-2020-15393: Fixed a memory leak in usbtest_disconnect . ... oval:org.secpod.oval:def:2004127 A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm"s module, authenc. When a payload longer than 4 bytes, and is not following 4-byte alignment boundary guidelines, it causes a buffer over-read thr ... oval:org.secpod.oval:def:1504229 [2.6.39-400.328.1] - crypto: authenc - fix parsing key with misaligned rta_len [Orabug: 31535531] {CVE-2020-10769} - crypto: authenc - Export key parsing helper function [Orabug: 31535531] {CVE-2020-10769} oval:org.secpod.oval:def:1503051 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1503052 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89046389 The SUSE Linux Enterprise 12 SP3 kernel was updated to 3.12.31 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. - C ... oval:org.secpod.oval:def:89046396 The SUSE Linux Enterprise 12 SP2 kernel was updated. The following security bugs were fixed: - CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel . - CVE-2022-28388: Fixed a double free in drivers/net/can/usb/usb_8dev.c vulnerability in the Linux k ... oval:org.secpod.oval:def:1503041 The advisory is missing the security advisory description. For more information please visit the reference link |