Download
| Alert*
oval:org.secpod.oval:def:1601475
A flaw was found in the Linux kernel. When reusing a socket with an attached dccps_hc_tx_ccid as a listener, the socket will be used after being released leading to denial of service or a potential code execution. The highest threat from this vulnerability is to data confidentiality and integrity a ... oval:org.secpod.oval:def:706188 linux: Linux kernel - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-kvm: Linux kernel for cloud environments - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems - linux-hwe-5.4: Linux hardware enablement kernel Several security issues were fixed in the Linux kern ... oval:org.secpod.oval:def:706184 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for clo ... oval:org.secpod.oval:def:75940 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:1505150 [5.4.17-2136.300.7.el7] - KVM: SVM: Fix mismerge in svm_update_pi_irte [Orabug: 33446526] - Revert KVM: x86: hyperv: Remove duplicate definitions of Reference TSC Page [Orabug: 33450675] - Revert scsi: core: Cap scsi_host cmd_per_lun at can_queue [Orabug: 33441404] [5.4.17-2136.300.5.el7] - dccp: ... oval:org.secpod.oval:def:1700709 A flaw was found in the KVM"s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB provided by the L1 guest to spawn/handle a nested guest . Due to improper validation of the "int_ctl" field, this issue could allow a malicious L1 to enable AVIC support for th ... oval:org.secpod.oval:def:89045817 The SUSE Linux Enterprise 12 SP2 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past You can reenable via systemctl se ... oval:org.secpod.oval:def:1700829 A flaw was found in the Linux kernel. This flaw allows attackers to cause a denial of service by triggering the destruction of a large SEV VM, which requires unregistering many encrypted regions. The highest threat from this vulnerability is to system availability. A flaw was found in the Linux ker ... oval:org.secpod.oval:def:75992 linux: Linux kernel - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-kvm: Linux kernel for cloud environments - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems - linux-hwe-5.4: Linux hardware enablement kernel Several security issues were fixed in the Linux kern ... oval:org.secpod.oval:def:75990 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for clo ... oval:org.secpod.oval:def:1505152 [5.4.17-2136.300.7.el7uek] - KVM: SVM: Fix mismerge in svm_update_pi_irte [Orabug: 33446526] - Revert KVM: x86: hyperv: Remove duplicate definitions of Reference TSC Page [Orabug: 33450675] [5.4.17-2136.300.6.el7uek] - Revert scsi: core: Cap scsi_host cmd_per_lun at can_queue [Orabug: 33441404] [ ... oval:org.secpod.oval:def:1701803 A flaw was found in the Linux kernel's implementation of wireless drivers using the Atheros chipsets. An attacker within wireless range could send crafted traffic leading to information disclosure. A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when ... oval:org.secpod.oval:def:89045642 This update for the Linux Kernel 4.4.180-94_147 fixes several issues. The following security issues were fixed: - CVE-2021-3653: Fixed missing validation of the KVM `int_ctl` VMCB field that would have allowed a malicious L1 guest to enable AVIC support for the L2 guest . - CVE-2021-38198: Fixed KVM ... oval:org.secpod.oval:def:1505137 [5.4.17-2102.206.1.el7uek] - Revert scsi: core: Cap scsi_host cmd_per_lun at can_queue [Orabug: 33403144] [5.4.17-2102.206.0.el7uek] - Revert uek-rpm: Don"t recompute build-ids for kernel-uek-debuginfo [Orabug: 33245043] - integrity: Load mokx variables into the blacklist keyring [Orabug: 3341849 ... oval:org.secpod.oval:def:76582 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-oracle: Linux kernel for Oracle Cloud systems ... oval:org.secpod.oval:def:1505136 [5.4.17-2102.206.1.el7] - Revert scsi: core: Cap scsi_host cmd_per_lun at can_queue [Orabug: 33403144] [5.4.17-2102.206.0.el7] - Revert uek-rpm: Don"t recompute build-ids for kernel-uek-debuginfo [Orabug: 33245043] - integrity: Load mokx variables into the blacklist keyring [Orabug: 33418496] - p ... oval:org.secpod.oval:def:89045643 The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-9517: Fixed possible memory corruption due to a use after free in pppol2tp_connect . - CVE-2019-3874: Fixed possible denial of service attack via SCT ... oval:org.secpod.oval:def:1701800 A flaw was found in the Linux kernel's implementation of wireless drivers using the Atheros chipsets. An attacker within wireless range could send crafted traffic leading to information disclosure. A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when ... oval:org.secpod.oval:def:89045863 The SUSE Linux Enterprise 12 SP3 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past You can reenable via systemctl se ... oval:org.secpod.oval:def:89047127 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg in the bluetooth stack . - CVE-2021-3653: Missing validation of the `int_ctl` VMCB ... oval:org.secpod.oval:def:89049468 The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks . - CVE-2021-38160: Data corruption or loss could be ... oval:org.secpod.oval:def:89045681 The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-9517: Fixed possible memory corruption due to a use after free in pppol2tp_connect . - CVE-2019-3874: Fixed possible denial of service attack via SCTP sock ... oval:org.secpod.oval:def:1505139 [5.4.17-2102.206.1.el8uek] - Revert scsi: core: Cap scsi_host cmd_per_lun at can_queue [Orabug: 33403144] [5.4.17-2102.206.0.el8uek] - Revert uek-rpm: Don"t recompute build-ids for kernel-uek-debuginfo [Orabug: 33245043] - integrity: Load mokx variables into the blacklist keyring [Orabug: 3341849 ... oval:org.secpod.oval:def:1505138 [5.4.17-2102.206.1.el8] - Revert scsi: core: Cap scsi_host cmd_per_lun at can_queue [Orabug: 33403144] [5.4.17-2102.206.0.el8] - Revert uek-rpm: Don"t recompute build-ids for kernel-uek-debuginfo [Orabug: 33245043] - integrity: Load mokx variables into the blacklist keyring [Orabug: 33418496] - p ... oval:org.secpod.oval:def:89045829 The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past You can reenable via systemctl se ... oval:org.secpod.oval:def:706131 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:706191 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-oracle: Linux kernel for Oracle Cloud systems ... oval:org.secpod.oval:def:89045869 The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past You can reenable via systemctl setting ... oval:org.secpod.oval:def:89045855 The SUSE Linux Enterprise 11 SP4 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after- ... oval:org.secpod.oval:def:89045876 The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past You can reenable via systemctl setting /proc ... oval:org.secpod.oval:def:1505148 [5.4.17-2136.300.7.el8] - KVM: SVM: Fix mismerge in svm_update_pi_irte [Orabug: 33446526] - Revert KVM: x86: hyperv: Remove duplicate definitions of Reference TSC Page [Orabug: 33450675] [5.4.17-2136.300.6.el8] - Revert scsi: core: Cap scsi_host cmd_per_lun at can_queue [Orabug: 33441404] [5.4.17 ... oval:org.secpod.oval:def:1505147 [5.4.17-2136.300.7.el8uek] - KVM: SVM: Fix mismerge in svm_update_pi_irte [Orabug: 33446526] - Revert KVM: x86: hyperv: Remove duplicate definitions of Reference TSC Page [Orabug: 33450675] oval:org.secpod.oval:def:1507165 [5.4.17-2136.325.5.el7] - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext [Orabug: 35905508] - char: misc: Increase the maximum number of dynamic misc devices to 1048448 [Orabug: 35905508] - perf/arm-cmn: Fix invalid pointer when access dtc object sharing the same ... |