Aggregator | Linuxlookup

6.1.84: longterm

3 weeks 3 days ago

Version:6.1.84 (longterm) Released:2024-04-03 Source:linux-6.1.84.tar.xz PGP Signature:linux-6.1.84.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.1.84

6.7.12: stable

Linux Kernel Releases

3 weeks 3 days ago

Version:6.7.12 (EOL) (stable) Released:2024-04-03 Source:linux-6.7.12.tar.xz PGP Signature:linux-6.7.12.tar.sign Patch:full (incremental) ChangeLog:ChangeLog-6.7.12

LSN-0102-1: Kernel Live Patch Security Notice

Ubuntu Security Advisories

3 weeks 3 days ago

It was discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-1872) Lonial Con discovered that the netfilter subsystem in the Linux kernel contained a memory leak when handling certain element flush operations. A local attacker could use this to expose sensitive information (kernel memory).(CVE-2023-4569) It was discovered that the TLS subsystem in the Linux kernel did not properly perform cryptographic operations in some situations, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-6176) It was discovered that a race condition existed in the AppleTalk networking subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-51781) Jann Horn discovered that the TLS subsystem in the Linux kernel did not properly handle spliced messages, leading to an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2024-0646) Notselwyn discovered that the netfilter subsystem in the Linux kernel did not properly handle verdict parameters in certain cases, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2024-1086)

clojure-1.8.0-3.el7

Fedora Security Advisories

3 weeks 3 days ago

FEDORA-EPEL-2024-d9102d9191 Packages in this update:

clojure-1.8.0-3.el7

Update description:

Security fix for CVE-2024-22871

DSA-5654-1 chromium - security update

Debian Security Advisories

3 weeks 3 days ago

https://security-tracker.debian.org/tracker/DSA-5654-1

DSA-5653-1 gtkwave - security update

Debian Security Advisories

3 weeks 3 days ago

https://security-tracker.debian.org/tracker/DSA-5653-1

next-20240403: linux-next

Linux Kernel Releases

3 weeks 3 days ago

Version:next-20240403 (linux-next) Released:2024-04-03

libdwarf-0.9.2-1.fc40

Fedora Security Advisories

3 weeks 3 days ago

FEDORA-2024-60627905b6 Packages in this update:

libdwarf-0.9.2-1.fc40

Update description:

Update to latest upstream release.

USN-6720-1: Cacti vulnerability

Ubuntu Security Advisories

3 weeks 4 days ago

Kentaro Kawane discovered that Cacti incorrectly handled user provided input sent through request parameters to the graph_view.php script. A remote authenticated attacker could use this issue to perform SQL injection attacks.