Download
| Alert*
oval:org.secpod.oval:def:2003645
There is a use-after-free in kernel versions before 5.5 due to a race condition between the release of ptp_clock and cdev while resource deallocation. When a process allocates a ptp device file and voluntarily goes to sleep. During this time if the underlying device is removed, it can cause an exp ... oval:org.secpod.oval:def:705539 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-kvm: Linux kernel for cloud environments - linux-raspi2: Linux kernel for Raspberry Pi systems - linux-snapdragon: Linux kernel for Qualcomm Snapdragon processors - linux-lts-xenial: Linux hardware enablement ker ... oval:org.secpod.oval:def:89000015 The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it ... oval:org.secpod.oval:def:1506125 [4.1.12-124.68.3.el7uek] - Orabug: 34733462 [4.1.12-124.68.2.el7uek] - ptp: fix the race between the release of ptp_clock and cdev [Orabug: 31350707] {CVE-2020-10690} - ptp: Fix pass zero to ERR_PTR in ptp_clock_register [Orabug: 31350707] - chardev: add helper function to register char devs with ... oval:org.secpod.oval:def:67035 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-kvm: Linux kernel for cloud environments - linux-raspi2: Linux kernel for Raspberry Pi systems - linux-snapdragon: Linux kernel for Qualcomm Snapdragon processors - linux-lts-xenial: Linux hardware enablement ker ... oval:org.secpod.oval:def:1506135 [4.1.12-124.68.3] - Orabug: 34733462 [4.1.12-124.68.2] - ptp: fix the race between the release of ptp_clock and cdev [Orabug: 31350707] {CVE-2020-10690} - ptp: Fix pass zero to ERR_PTR in ptp_clock_register [Orabug: 31350707] - chardev: add helper function to register char devs with a struct devi ... oval:org.secpod.oval:def:89000063 The SUSE Linux Enterprise 12 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-11494: An issue was discovered in slc_bump in drivers/net/can/slcan.c, which allowed attackers to read uninitialized can_frame data, potentially containing ... oval:org.secpod.oval:def:89000107 The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-11494: An issue was discovered in slc_bump in drivers/net/can/slcan.c, which allowed attackers to read uninitialized can_frame data, potentially containing ... oval:org.secpod.oval:def:1502972 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89000395 Kernel-azure package information oval:org.secpod.oval:def:89050225 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it ... oval:org.secpod.oval:def:89000562 kernel package information. oval:org.secpod.oval:def:89000561 kernel package information. oval:org.secpod.oval:def:89043774 The SUSE Linux Enterprise 12 SP4 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which cal ... oval:org.secpod.oval:def:89002963 The SUSE Linux Enterprise 15 kernel was updated receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-0543: Fixed a side channel attack against special registers which could have resulted in leaking of read values to cores other than the one which called it. This ... oval:org.secpod.oval:def:1504006 [3.10.0-1160.OL7] - Oracle Linux certificates - Oracle Linux RHCK Module Signing Key was compiled into kernel - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 [3.10.0-1160] - [kernel] modsign: Add nomokvarconfig kernel parameter [1867857] - [firmware] modsign: Add su ... oval:org.secpod.oval:def:205657 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: use-after-free in sound/core/timer.c * kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c * kernel: race condition in smp_task_timedout and smp ... oval:org.secpod.oval:def:504339 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: use-after-free in sound/core/timer.c * kernel: out of bounds write in function i2c_smbus_xfer_emulated in drivers/i2c/i2c-core-smbus.c * kernel: race condition in smp_task_timedout and smp ... oval:org.secpod.oval:def:69511 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c * kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence * kernel: memory leak in the kernel_read_file ... oval:org.secpod.oval:def:66796 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix: * kernel: use-after-free in __blk_add_trace in kernel/trace/blktrace.c * kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence * kernel: memory leak in the kernel_read_file ... |