Branch sisyphus update bulletin.

Package glusterfs7 updated to version 7.1-alt1 for branch sisyphus in task 242761.

Не обновляется с файловым конфликтом

Package kernel-image-std-def updated to version 4.19.97-alt1 for branch sisyphus in task 244479.

Published: 2019-03-21

BDU:2020-00361

Уязвимость функции i915_ppgtt_close (drivers/gpu/drm/i915/i915_gem_gtt.c) ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (7.8) Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2020-7053

Published: 2020-01-15
Modified: 2024-11-21

CVE-2020-7053

In the Linux kernel 4.14 longterm through 4.14.165 and 4.19 longterm through 4.19.96 (and 5.x before 5.2), there is a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c. This is related to i915_gem_context_destroy_ioctl in drivers/gpu/drm/i915/i915_gem_context.c.

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

Branch sisyphus update on 2020-01-19

ALT-BU-2020-3605-1

ALT-PU-2020-1068-1

Closed bugs

Bug #37603

ALT-PU-2020-1069-1

Closed vulnerabilities

BDU:2020-00361

CVE-2020-7053