Gentoo FoundationMGASA-2019-0388Updated kernel packages fix security vulnerability
5.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:P/A:C
6.1 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
0.001 Low
EPSS
Percentile
28.8%
This update provides an update to 5.4 series kernels, currently based on upstream 5.4.2, adding support for new hardware and features, and fixing at least the following security issue: KVM: x86: fix out-of-bounds write in KVM_GET_EMULATED_CPUID (CVE-2019-19332) WireGuard has been updated to 0.0.20191205. xtables-addons have been updated to 3.7 for kernel 5.4 support. For other fixes and features in this update, see the referenced changelogs.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | kernel | < 5.4.2-1 | kernel-5.4.2-1.mga7 |
| Mageia | 7 | noarch | wireguard-tools | < 0.0.20191205-1 | wireguard-tools-0.0.20191205-1.mga7 |
| Mageia | 7 | noarch | kmod-virtualbox | < 6.0.14-10 | kmod-virtualbox-6.0.14-10.mga7 |
| Mageia | 7 | noarch | xtables-addons | < 3.7-1 | xtables-addons-3.7-1.mga7 |
| Mageia | 7 | noarch | kmod-xtables-addons | < 3.7-1 | kmod-xtables-addons-3.7-1.mga7 |
| Mageia | 7 | noarch | ldetect-lst | < 0.6.7-1 | ldetect-lst-0.6.7-1.mga7 |
Related
5.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:P/A:C
6.1 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
0.001 Low
EPSS
Percentile
28.8%