Download
| Alert*
oval:org.secpod.oval:def:89044209
This update for the Linux Kernel 4.4.180-94_141 fixes one issue. The following security issue was fixed: - CVE-2021-28688: Fixed an issue introduced by XSA-365 . oval:org.secpod.oval:def:89045821 This update for the Linux Kernel 4.4.180-94_150 fixes several issues. The following security issues were fixed: - CVE-2021-0935: In ip6_xmit of ip6_output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privil ... oval:org.secpod.oval:def:89046160 This update for the Linux Kernel 4.4.180-94_156 fixes one issue. The following security issue was fixed: - CVE-2021-28688: Fixed an issue introduced by XSA-365 . oval:org.secpod.oval:def:89044245 This update for the Linux Kernel 4.4.180-94_135 fixes one issue. The following security issues were fixed: - CVE-2021-28688: Fixed an issue introduced by XSA-365 . - CVE-2021-26930: Fixed an improper error handling in blkback"s grant mapping . - CVE-2021-26931: Fixed an issue where Linux kernel was ... oval:org.secpod.oval:def:1504866 [5.4.17-2102.201.3.el7uek] - locking/qrwlock: Fix ordering in queued_write_lock_slowpath [Orabug: 32805544] [5.4.17-2102.201.2.el7uek] - md/bitmap: wait for external bitmap writes to complete during tear down [Orabug: 32764237] - ocfs2: fix deadlock between setattr and dio_end_io_write [Orabug: 3 ... oval:org.secpod.oval:def:1504864 [5.4.17-2102.201.3.el8uek] - locking/qrwlock: Fix ordering in queued_write_lock_slowpath [Orabug: 32805544] [5.4.17-2102.201.2.el8uek] - md/bitmap: wait for external bitmap writes to complete during tear down [Orabug: 32764237] - ocfs2: fix deadlock between setattr and dio_end_io_write [Orabug: 3 ... oval:org.secpod.oval:def:89046295 This update for the Linux Kernel 4.4.180-94_161 fixes several issues. The following security issues were fixed: - CVE-2022-1011: A use-after-free flaw was found in the FUSE filesystem in the way a user triggers write. This flaw allowed a local user to gain unauthorized access to data from the FUSE f ... oval:org.secpod.oval:def:1504867 [5.4.17-2102.201.3.el7] - locking/qrwlock: Fix ordering in queued_write_lock_slowpath [Orabug: 32805544] [5.4.17-2102.201.2.el7] - md/bitmap: wait for external bitmap writes to complete during tear down [Orabug: 32764237] - ocfs2: fix deadlock between setattr and dio_end_io_write [Orabug: 3276384 ... oval:org.secpod.oval:def:89046006 This update for the Linux Kernel 4.4.180-94_153 fixes several issues. The following security issues were fixed: - CVE-2021-0920: Fixed a local privilege escalation due to an use after free bug in unix_gc . - CVE-2021-28688: Fixed XSA-365 that includes initialization of pointers such that subsequent ... oval:org.secpod.oval:def:1504896 [5.4.17-2102.201.3.el8] - locking/qrwlock: Fix ordering in queued_write_lock_slowpath [Orabug: 32805544] [5.4.17-2102.201.2.el8] - md/bitmap: wait for external bitmap writes to complete during tear down [Orabug: 32764237] - ocfs2: fix deadlock between setattr and dio_end_io_write [Orabug: 3276384 ... oval:org.secpod.oval:def:89049481 The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 l ... oval:org.secpod.oval:def:706001 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for clo ... oval:org.secpod.oval:def:706003 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:706041 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:73443 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:89044307 The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36312: Fixed an issue in virt/kvm/kvm_main.c that had a kvm_io_bus_unregister_dev memory leak upon a kmalloc failure . - CVE-2021-29650: Fixed an issue inside ... oval:org.secpod.oval:def:73441 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:89044316 The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36312: Fixed an issue in virt/kvm/kvm_main.c that had a kvm_io_bus_unregister_dev memory leak upon a kmalloc failure . - CVE-2021-29650: Fixed an issu ... oval:org.secpod.oval:def:73073 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:73071 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for clo ... oval:org.secpod.oval:def:89044334 The SUSE Linux Enterprise 12 SP4 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36312: Fixed an issue in virt/kvm/kvm_main.c that had a kvm_io_bus_unregister_dev memory leak upon a kmalloc failure . - CVE-2021-29650: Fixed an issu ... oval:org.secpod.oval:def:89045544 This update for the Linux Kernel 4.4.180-94_147 fixes several issues. The following security issues were fixed: - CVE-2021-37576: On the powerpc platform KVM guest OS users could cause host OS memory corruption via rtas_args.nargs . - CVE-2021-28688: The fix for XSA-365 includes initialization of po ... oval:org.secpod.oval:def:89044153 The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to ... oval:org.secpod.oval:def:706038 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:89044143 The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 l ... oval:org.secpod.oval:def:89045073 This update for the Linux Kernel 4.4.180-94_144 fixes several issues. The following issues were fixed: - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values . - CVE-2021-28688: Fixed an issue introduced by XSA-365, leaving around zombie ... oval:org.secpod.oval:def:1504865 [4.14.35-2047.503.1.el7uek] - bpf, x86: Validate computation of branch displacements for x86-64 [Orabug: 32759961] {CVE-2021-29154} - uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. [Orabug: 32781585] - ext4: handle error of ext4_setup_system_zone on remount [Orabug: 32656590] {CV ... oval:org.secpod.oval:def:1504869 [4.1.12-124.50.2] - btrfs: fix race when cloning extent buffer during rewind of an old root [Orabug: 32669454] {CVE-2021-28964} - xen-blkback: don"t leak persistent grants from xen_blkbk_map [Orabug: 32697855] {CVE-2021-28688} - netfilter: x_tables: Use correct memory barriers. [Orabug: 32709125] ... oval:org.secpod.oval:def:1504870 [4.14.35-2047.503.1.el7] - bpf, x86: Validate computation of branch displacements for x86-64 [Orabug: 32759961] {CVE-2021-29154} - uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. [Orabug: 32781585] - ext4: handle error of ext4_setup_system_zone on remount [Orabug: 32656590] {CVE-2 ... oval:org.secpod.oval:def:89047308 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel ... oval:org.secpod.oval:def:1601440 kernel: refcount leak in llcp_sock_bind kernel: refcount leak in llcp_sock_connect kernel: memory leak in llcp_sock_connect An issue was discovered in the Linux kernel related to mm/gup.c and mm/huge_memory.c. The get_user_pages implementation, when used for a copy-on-write page, does not properly ... oval:org.secpod.oval:def:1700610 A memory leak in the adis_update_scan_mode function in drivers/iio/imu/adis_buffer.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service , aka CID-ab612b1daf41. A bypass was found for the Spectre v1 hardening in the eBPF engine of the Linux kernel. The code in the kernel/b ... oval:org.secpod.oval:def:1700834 An issue was discovered in the Linux kernel. Fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages. This is a related issue to CVE-2019-2308. A flaw was found in the Linux kernel. The rtw_wx_set_scan driver allows writing beyond the end ... oval:org.secpod.oval:def:1507165 [5.4.17-2136.325.5.el7] - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext [Orabug: 35905508] - char: misc: Increase the maximum number of dynamic misc devices to 1048448 [Orabug: 35905508] - perf/arm-cmn: Fix invalid pointer when access dtc object sharing the same ... oval:org.secpod.oval:def:89046396 The SUSE Linux Enterprise 12 SP2 kernel was updated. The following security bugs were fixed: - CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel . - CVE-2022-28388: Fixed a double free in drivers/net/can/usb/usb_8dev.c vulnerability in the Linux k ... oval:org.secpod.oval:def:89046389 The SUSE Linux Enterprise 12 SP3 kernel was updated to 3.12.31 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. - C ... |