Download
| Alert*
oval:org.secpod.oval:def:1801949
Please bump linux to 5.10.37 to address at least CVE-2021-23133. oval:org.secpod.oval:def:119769 This package contains the tools/ directory from the kernel source and the supporting documentation. oval:org.secpod.oval:def:119768 The kernel meta package oval:org.secpod.oval:def:119767 This package contains the tools/ directory from the kernel source and the supporting documentation. oval:org.secpod.oval:def:119766 Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. oval:org.secpod.oval:def:119764 The kernel meta package oval:org.secpod.oval:def:119763 Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. oval:org.secpod.oval:def:120072 The kernel meta package oval:org.secpod.oval:def:120074 Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. oval:org.secpod.oval:def:120081 This package contains the tools/ directory from the kernel source and the supporting documentation. oval:org.secpod.oval:def:1505012 [4.14.35-2047.505.4.el7uek] - rds/ib: move rds_ib_clear_irq_miss to .h file [Orabug: 33044345] - rds/ib: recover rds connection from interrupt loss scenario [Orabug: 32804265] - rds/ib: handle posted ACK during connection shutdown [Orabug: 32863569] - rds/ib: reap tx completions during connection ... oval:org.secpod.oval:def:89044458 The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel ... oval:org.secpod.oval:def:74540 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for ... oval:org.secpod.oval:def:1505016 [5.4.17-2102.203.5.el7uek] - rds/ib: move rds_ib_clear_irq_miss to .h file [Orabug: 33044344] [5.4.17-2102.203.4.el7uek] - rds/ib: recover rds connection from interrupt loss scenario [Orabug: 32974199] - Revert Allow mce to reset instead of panic on UE [Orabug: 32820275] - bpf: Fix masking negati ... oval:org.secpod.oval:def:1505015 [5.4.17-2102.203.5.el8] - rds/ib: move rds_ib_clear_irq_miss to .h file [Orabug: 33044344] [5.4.17-2102.203.4.el8] - rds/ib: recover rds connection from interrupt loss scenario [Orabug: 32974199] - Revert Allow mce to reset instead of panic on UE [Orabug: 32820275] - bpf: Fix masking negation logi ... oval:org.secpod.oval:def:1505014 [5.4.17-2102.203.5.el8uek] - rds/ib: move rds_ib_clear_irq_miss to .h file [Orabug: 33044344] [5.4.17-2102.203.4.el8uek] - rds/ib: recover rds connection from interrupt loss scenario [Orabug: 32974199] - Revert Allow mce to reset instead of panic on UE [Orabug: 32820275] - bpf: Fix masking negati ... oval:org.secpod.oval:def:1505013 [5.4.17-2102.203.5.el7] - rds/ib: move rds_ib_clear_irq_miss to .h file [Orabug: 33044344] [5.4.17-2102.203.4.el7] - rds/ib: recover rds connection from interrupt loss scenario [Orabug: 32974199] - Revert Allow mce to reset instead of panic on UE [Orabug: 32820275] - bpf: Fix masking negation logi ... oval:org.secpod.oval:def:706059 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for ... oval:org.secpod.oval:def:89044435 The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in ... oval:org.secpod.oval:def:89044355 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel ... oval:org.secpod.oval:def:1505038 [4.14.35-2047.505.4.el7] - rds/ib: move rds_ib_clear_irq_miss to .h file [Orabug: 33044345] - rds/ib: recover rds connection from interrupt loss scenario [Orabug: 32804265] - rds/ib: handle posted ACK during connection shutdown [Orabug: 32863569] - rds/ib: reap tx completions during connection sh ... oval:org.secpod.oval:def:1504982 [5.4.17-2102.202.5.el7] - sctp: delay auto_asconf init until binding the first addr [Orabug: 32907967] {CVE-2021-23133} - dm ioctl: fix out of bounds array access when no devices [Orabug: 32860491] {CVE-2021-31916} - uek-rpm: update kABI lists for the new symbols [Orabug: 32883836] - md/raid1: pr ... oval:org.secpod.oval:def:1504981 [5.4.17-2102.202.5.el8] - sctp: delay auto_asconf init until binding the first addr [Orabug: 32907967] {CVE-2021-23133} - dm ioctl: fix out of bounds array access when no devices [Orabug: 32860491] {CVE-2021-31916} - uek-rpm: update kABI lists for the new symbols [Orabug: 32883836] - md/raid1: pr ... oval:org.secpod.oval:def:1504987 [5.4.17-2102.202.5.el7uek] - sctp: delay auto_asconf init until binding the first addr [Orabug: 32907967] {CVE-2021-23133} {CVE-2021-23133} - dm ioctl: fix out of bounds array access when no devices [Orabug: 32860491] {CVE-2021-31916} - uek-rpm: update kABI lists for the new symbols [Orabug: 3288 ... oval:org.secpod.oval:def:1504985 [5.4.17-2102.202.5.el8uek] - sctp: delay auto_asconf init until binding the first addr [Orabug: 32907967] {CVE-2021-23133} {CVE-2021-23133} - dm ioctl: fix out of bounds array access when no devices [Orabug: 32860491] {CVE-2021-31916} - uek-rpm: update kABI lists for the new symbols [Orabug: 3288 ... oval:org.secpod.oval:def:89044396 The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel ... oval:org.secpod.oval:def:706067 linux-kvm: Linux kernel for cloud environments Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:74538 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:74536 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:74537 linux-kvm: Linux kernel for cloud environments Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:706062 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:74535 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:706064 linux-kvm: Linux kernel for cloud environments Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:706061 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:706060 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-raspi: Linux kernel for Raspberry Pi ... oval:org.secpod.oval:def:1505219 [4.18.0-348.OL8] - Update Oracle Linux certificates - Disable signing for aarch64 - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 [4.18.0-348] - drm/nouveau/fifo/ga10 ... oval:org.secpod.oval:def:706057 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:2500322 The kernel packages contain the Linux kernel, the core of any Linux operating system. oval:org.secpod.oval:def:89045118 The SUSE Linux Enterprise 15 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: A heap out-of-bounds write was discovered in net/netfilter/x_tables.c . - CVE-2021-33909: Extremely large seq buffer allocations in seq_file could ... oval:org.secpod.oval:def:506525 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: out-of-bounds reads in pinctrl subsystem * kernel: Improper input validation in some Intel Ethernet E810 Adapter drivers * kernel: Insufficient access control in some Intel Ethernet E810 A ... oval:org.secpod.oval:def:1601440 kernel: refcount leak in llcp_sock_bind kernel: refcount leak in llcp_sock_connect kernel: memory leak in llcp_sock_connect An issue was discovered in the Linux kernel related to mm/gup.c and mm/huge_memory.c. The get_user_pages implementation, when used for a copy-on-write page, does not properly ... oval:org.secpod.oval:def:1700621 An issue was discovered in the Linux kernel related to mm/gup.c and mm/huge_memory.c. The get_user_pages implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access. A use-after-free flaw was found i ... oval:org.secpod.oval:def:1700822 A use-after-free flaw was found in the Linux kernel's NFC LLCP protocol implementation in the way the user performs manipulation with an unknown input for the llcp_sock_bind function. This flaw allows a local user to crash or escalate their privileges on the system. A use-after-free flaw was found i ... oval:org.secpod.oval:def:1700836 A use-after-free flaw was found in the Linux kernel's NFC LLCP protocol implementation in the way the user performs manipulation with an unknown input for the llcp_sock_bind function. This flaw allows a local user to crash or escalate their privileges on the system. A use-after-free flaw was found i ... oval:org.secpod.oval:def:1507165 [5.4.17-2136.325.5.el7] - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext [Orabug: 35905508] - char: misc: Increase the maximum number of dynamic misc devices to 1048448 [Orabug: 35905508] - perf/arm-cmn: Fix invalid pointer when access dtc object sharing the same ... |