Количество 69
Количество 69
GHSA-qv7j-3q84-2q98
A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has 'TSX' enabled. Confidentiality of data is the highest threat associated with this vulnerability.

openSUSE-SU-2019:2444-1
Security update for the Linux Kernel

SUSE-SU-2020:0093-1
Security update for the Linux Kernel

SUSE-SU-2019:1768-1
Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP3)
GHSA-vrxc-79fp-6683
The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests.
ELSA-2020-4182
ELSA-2020-4182: kernel security and bug fix update (IMPORTANT)

BDU:2019-02763
Уязвимость в файлах fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, mm/hugetlb.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации

SUSE-SU-2019:2879-1
Security update for the Linux Kernel
ELSA-2020-5533
ELSA-2020-5533: Unbreakable Enterprise kernel security update (IMPORTANT)

SUSE-SU-2019:2952-1
Security update for the Linux Kernel

SUSE-SU-2019:2947-1
Security update for the Linux Kernel

SUSE-SU-2019:2953-1
Security update for the Linux Kernel

SUSE-SU-2019:2951-1
Security update for the Linux Kernel

SUSE-SU-2019:2946-1
Security update for the Linux Kernel

SUSE-SU-2019:1767-1
Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2)

SUSE-SU-2019:3294-1
Security update for the Linux Kernel

SUSE-SU-2019:1671-1
Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP2)

SUSE-SU-2019:1668-1
Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP1)

SUSE-SU-2019:1588-1
Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1)

SUSE-SU-2019:1674-1
Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP4)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
---|---|---|---|---|
GHSA-qv7j-3q84-2q98 A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has 'TSX' enabled. Confidentiality of data is the highest threat associated with this vulnerability. | 0% Низкий | около 3 лет назад | ||
![]() | openSUSE-SU-2019:2444-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2020:0093-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2019:1768-1 Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP3) | 0% Низкий | около 6 лет назад | |
GHSA-vrxc-79fp-6683 The Linux kernel before 5.1-rc5 allows page->_refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, and mm/hugetlb.c. It can occur with FUSE requests. | CVSS3: 7.8 | 0% Низкий | около 3 лет назад | |
ELSA-2020-4182 ELSA-2020-4182: kernel security and bug fix update (IMPORTANT) | почти 5 лет назад | |||
![]() | BDU:2019-02763 Уязвимость в файлах fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipe_fs_i.h, kernel/trace/trace.c, mm/gup.c, mm/hugetlb.c ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации | CVSS3: 7.8 | 0% Низкий | больше 6 лет назад |
![]() | SUSE-SU-2019:2879-1 Security update for the Linux Kernel | почти 6 лет назад | ||
ELSA-2020-5533 ELSA-2020-5533: Unbreakable Enterprise kernel security update (IMPORTANT) | больше 5 лет назад | |||
![]() | SUSE-SU-2019:2952-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2019:2947-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2019:2953-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2019:2951-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2019:2946-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2019:1767-1 Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2) | около 6 лет назад | ||
![]() | SUSE-SU-2019:3294-1 Security update for the Linux Kernel | больше 5 лет назад | ||
![]() | SUSE-SU-2019:1671-1 Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP2) | около 6 лет назад | ||
![]() | SUSE-SU-2019:1668-1 Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP1) | около 6 лет назад | ||
![]() | SUSE-SU-2019:1588-1 Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1) | около 6 лет назад | ||
![]() | SUSE-SU-2019:1674-1 Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP4) | около 6 лет назад |
Уязвимостей на страницу