SECURITY

No Image

USN-3549-1: Linux kernel (KVM) vulnerabilities

2018-01-30 KENNETH 0

USN-3549-1: Linux kernel (KVM) vulnerabilities Ubuntu Security Notice USN-3549-1 29th January, 2018 linux-kvm vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary Several security issues were fixed in the Linux kernel. Software description linux-kvm – Linux kernel for cloud environments Details Jann Horn discovered that microprocessors utilizing speculativeexecution and branch prediction may allow unauthorized memoryreads via sidechannel attacks. This flaw is known as Spectre. Alocal attacker could use this to expose sensitive information,including kernel memory. (CVE-2017-5715, CVE-2017-5753) Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: linux-image-4.4.0-1017-kvm 4.4.0-1017.22 linux-image-kvm 4.4.0.1017.16 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. Please note that fully mitigating CVE-2017-5715 (Spectre Variant 2)requires corresponding processor microcode/firmware updates or,in virtual environments, hypervisor updates. On i386 and amd64architectures, the IBRS [ more… ]

No Image

RHEA-2018:0232-1: tzdata enhancement update

2018-01-30 KENNETH 0

RHEA-2018:0232-1: tzdata enhancement update Red Hat Enterprise Linux: Updated tzdata packages that add various enhancements are now available for Red Hat Enterprise Linux 5.9 Advanced Update Support, Red Hat Enterprise Linux 5 Extended Life Cycle Support, Red Hat Enterprise Linux 6.2 Advanced Update Support, Red Hat Enterprise Linux 6.4 Advanced Update Support, Red Hat Enterprise Linux 6.5 Advanced Update Support, Red Hat Enterprise Linux 6.6 Advanced Update Support, Red Hat Enterprise Linux 6.6 Telco Extended Update Support, Red Hat Enterprise Linux 6.7 Extended Update Support, Red Hat Enterprise Linux 6, Red Hat Enterprise Linux 7.2 Advanced Update Support, Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions, Red Hat Enterprise Linux 7.2 Telco Extended Update Support, Red Hat Enterprise Linux 7.3 Extended Update Support, and Red Hat Enterprise Linux 7. Source: RHEA-2018:0232-1: tzdata enhancement update

No Image

RHBA-2018:0137-1: Red Hat Network Tools bug fix update

2018-01-29 KENNETH 0

RHBA-2018:0137-1: Red Hat Network Tools bug fix update Red Hat Enterprise Linux: Updated osad, rhncfg and spacewalk-proxy-installer packages that fixes several bugs are now available for Red Hat Network Tools. Source: RHBA-2018:0137-1: Red Hat Network Tools bug fix update

No Image

USN-3548-1: Linux kernel vulnerability

2018-01-26 KENNETH 0

USN-3548-1: Linux kernel vulnerability Ubuntu Security Notice USN-3548-1 26th January, 2018 linux vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.10 Summary The system could be made to crash or run programs as an administrator. Software description linux – Linux kernel Details Jay Vosburgh discovered a logic error in the x86-64 syscall entryimplementation in the Linux kernel, introduced as part of themitigations for the Spectre vulnerability. A local attacker could usethis to cause a denial of service or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.10: linux-image-4.13.0-32-lowlatency 4.13.0-32.35 linux-image-generic 4.13.0.32.34 linux-image-4.13.0-32-generic 4.13.0-32.35 linux-image-lowlatency 4.13.0.32.34 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need to reboot your computer to makeall the necessary changes. ATTENTION: Due [ more… ]