Download
| Alert*
oval:org.secpod.oval:def:608638
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2021-4197 Eric Biederman reported that incorrect permission checks in the cgroup process migration implementation can allow a local attacker to escala ... oval:org.secpod.oval:def:88371 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2021-4197 Eric Biederman reported that incorrect permission checks in the cgroup process migration implementation can allow a local attacker to escala ... oval:org.secpod.oval:def:1505808 [4.18.0-372.13.1.0.1.el8_6.OL8] - Update Oracle Linux certificates - Disable signing for aarch64 - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 lt;= 15-11.0.5.el8 - ... oval:org.secpod.oval:def:507024 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: Small table perturb size in the TCP source port generation algorithm can lead to information leak * kernel: race condition in perf_event_open leads to privilege escalation * kernel: a use- ... oval:org.secpod.oval:def:80414 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-kvm: Linux kernel for cloud environments - linux-snapdragon: Linux kernel for Qualcomm Snap ... oval:org.secpod.oval:def:80415 linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-aws-hwe: Linux kernel for Amazon Web Services systems The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:1601529 A buffer overflow flaw was found in the Linux kernel's NFC protocol functionality. This flaw allows a local user to crash or escalate their privileges on the system. A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a loca ... oval:org.secpod.oval:def:1505613 [4.14.35-2047.513.2.el7uek] - Revert rds/ib: recover rds connection from stuck tx path [Orabug: 34124234] - Revert rds/ib: reap tx completions during connection shutdown [Orabug: 34124234] - Revert rds/ib: handle posted ACK during connection shutdown [Orabug: 34124234] [4.14.35-2047.513.1.el7uek] ... oval:org.secpod.oval:def:2500696 The kernel packages contain the Linux kernel, the core of any Linux operating system. oval:org.secpod.oval:def:2600105 The kernel packages contain the Linux kernel, the core of any Linux operating system. oval:org.secpod.oval:def:507070 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: buffer overflow in IPsec ESP transformation code * kernel: out-of-bounds read in fbcon_get_font function For more details about the security issue, including the impact, a CVSS score, ackn ... oval:org.secpod.oval:def:706378 linux-oem-5.14: Linux kernel for OEM systems The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:2600026 The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. oval:org.secpod.oval:def:706371 linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-aws-hwe: Linux kernel for Amazon Web Services systems The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:4500935 The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fix: * kernel: buffer overflow in IPsec ESP transformation code * kernel: out-of-bounds read in fbcon_get_font function For more details about the ... oval:org.secpod.oval:def:607379 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2021-4197 Eric Biederman reported that incorrect permission checks in the cgroup process migration implementation can allow a local attacker to escala ... oval:org.secpod.oval:def:1505629 [4.14.35-2047.513.2.el7] - Revert "rds/ib: recover rds connection from stuck tx path" [Orabug: 34124234] [4.14.35-2047.513.1.el7] - mm/page-writeback: Fix performance when BDI"s share of ratio is 0. oval:org.secpod.oval:def:1700881 A buffer overflow flaw was found in the Linux kernel's NFC protocol functionality. This flaw allows a local user to crash or escalate their privileges on the system. A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a loca ... oval:org.secpod.oval:def:86388 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2021-4197 Eric Biederman reported that incorrect permission checks in the cgroup process migration implementation can allow a local attacker to escala ... oval:org.secpod.oval:def:1700880 A buffer overflow flaw was found in the Linux kernel's NFC protocol functionality. This flaw allows a local user to crash or escalate their privileges on the system. A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a loca ... oval:org.secpod.oval:def:1700878 A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_api.c of the netfilter subsystem. This flaw allows a local user to cause an out-of-bounds write issue. A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This iss ... oval:org.secpod.oval:def:4501097 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: buffer overflow in IPsec ESP transformation code * kernel: out-of-bounds read in fbcon_get_font function For more details about the security issue, including the impact, a CVSS score, ackn ... oval:org.secpod.oval:def:706394 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems - linux-dell300x: Linux kernel for Dell 300x platforms - linux-kvm: Linux kernel for cloud environments - linux-snapdragon: Linux kernel for Qualcomm Snap ... oval:org.secpod.oval:def:507016 This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix: * kernel: buffer overflow in IPsec ESP transformation code For more details about the security issue, including the impact, a CVSS score, acknowledgm ... oval:org.secpod.oval:def:507014 This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fix: * kernel: Small table perturb size in the TCP source port generation algorithm can lead to information leak * kernel: a use-after-free write in the n ... oval:org.secpod.oval:def:1505960 [5.14.0-70.17.1.0.1_0.OL9] - lockdown: also lock down previous kgdb use [Orabug: 34290418] {CVE-2022-21499} [5.14.0-70.17.1_0.OL9] - Update Oracle Linux certificates - Disable signing for aarch64 - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list [Orabug: 29539237] ... oval:org.secpod.oval:def:1505764 [5.4.17-2136.308.7.el8] - uek-rpm: Update OL7/8 Secureboot certificate and shim versions. oval:org.secpod.oval:def:88509 linux-oem-5.14: Linux kernel for OEM systems The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:1505768 [5.4.17-2136.308.7.el7] - uek-rpm: Update OL7/8 Secureboot certificate and shim versions. oval:org.secpod.oval:def:2500788 The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. oval:org.secpod.oval:def:706389 linux-azure-5.13: Linux kernel for Microsoft Azure cloud systems - linux-oracle-5.13: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:1505609 [5.4.17-2136.307.3.1.el8uek] - Revert rds/ib: recover rds connection from stuck tx path [Orabug: 34124233] - Revert rds/ib: reap tx completions during connection shutdown [Orabug: 34124233] - Revert rds/ib: handle posted ACK during connection shutdown [Orabug: 34124233] [5.4.17-2136.307.3.el8uek] ... oval:org.secpod.oval:def:1505610 [5.4.17-2136.307.3.1.el7uek] - Revert rds/ib: recover rds connection from stuck tx path [Orabug: 34124233] - Revert rds/ib: reap tx completions during connection shutdown [Orabug: 34124233] - Revert rds/ib: handle posted ACK during connection shutdown [Orabug: 34124233] [5.4.17-2136.307.3.el7uek] ... oval:org.secpod.oval:def:1505612 [5.4.17-2136.307.3.1.el7] - Revert rds/ib: recover rds connection from stuck tx path [Orabug: 34124233] [5.4.17-2136.307.3.el7] - kvm: debugfs: fix memory leak in kvm_create_vm_debugfs [Orabug: 33099019] - KVM: debugfs: Reuse binary stats descriptors [Orabug: 33099019] - KVM: selftests: Add selft ... oval:org.secpod.oval:def:1505611 [5.4.17-2136.307.3.1.el8] - Revert rds/ib: recover rds connection from stuck tx path [Orabug: 34124233] [5.4.17-2136.307.3.el8] - kvm: debugfs: fix memory leak in kvm_create_vm_debugfs [Orabug: 33099019] - KVM: debugfs: Reuse binary stats descriptors [Orabug: 33099019] - KVM: selftests: Add selft ... oval:org.secpod.oval:def:706426 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gcp-5.13: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container E ... oval:org.secpod.oval:def:706410 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-azure: Linux kernel for Microsoft Azure Cloud sys ... oval:org.secpod.oval:def:706365 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88513 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gcp-5.13: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container E ... oval:org.secpod.oval:def:88512 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-azure: Linux kernel for Microsoft Azure Cloud sys ... oval:org.secpod.oval:def:86452 linux-azure-5.13: Linux kernel for Microsoft Azure cloud systems - linux-oracle-5.13: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:80423 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89046238 The SUSE Linux Enterprise 15 SP2 kernel was updated. The following security bugs were fixed: - CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file. - CVE-2022-27666: Fixed a buffer overflow vulnerability in ... oval:org.secpod.oval:def:89046235 The SUSE Linux Enterprise 12 SP5 kernel was updated. The following security bugs were fixed: - CVE-2022-28356: Fixed a refcount bug in llc_ui_bind and llc_ui_autobind which could allow an unprivileged user to execute a DoS. - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the ne ... oval:org.secpod.oval:def:89046234 The SUSE Linux Enterprise 12 SP4 kernel was updated. The following security bugs were fixed: - CVE-2022-0812: Fixed an incorrect header size calculations which could lead to a memory leak. - CVE-2021-39713: Fixed a race condition in the network scheduling subsystem which could lead to a use-after-f ... oval:org.secpod.oval:def:1507165 [5.4.17-2136.325.5.el7] - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext [Orabug: 35905508] - char: misc: Increase the maximum number of dynamic misc devices to 1048448 [Orabug: 35905508] - perf/arm-cmn: Fix invalid pointer when access dtc object sharing the same ... oval:org.secpod.oval:def:89047547 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-0854: Fixed a memory leak flaw was found in the Linux kernels DMA subsystem. This flaw allowed a local user to read random memory from the kernel space. - CVE-2022-1016: Fixed a vulnerability in ... oval:org.secpod.oval:def:3300816 SUSE Security Update: Security update for the Linux Kernel oval:org.secpod.oval:def:89046227 The SUSE Linux Enterprise 12 SP5 kernel was updated. The following security bugs were fixed: - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relativ ... |