MGASA-2019-0306

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2019-0306.html
Import Source
https://advisories.mageia.org/MGASA-2019-0306.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2019-0306
Related
Published
2019-10-29T14:54:30Z
Modified
2022-02-17T18:21:47Z
Summary
Updated kernel packages fix security vulnerabilities
Details

This kernel update is based on the upstream 5.3.7 and fixes several issues: * various security issues in the usb subsystem * rtlp2pnoa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow (CVE-2019-17666)

Other issues fixed by this update:

  • Xorg displays a black screen with kernel > 5.2.x on some Intel GPUs (mga#25546)
  • Firmware crash with Intel(R) Dual Band Wireless AC 3168 (mga#25609)
  • a fix for an MTRR bug for intel-lpss-pci causing at least some Ice Lake laptops to not boot

For other upstream fixes in this update, see the referenced changelog.

References
Credits

Affected packages

Mageia:7 / kernel

Package

Name
kernel
Purl
pkg:rpm/mageia/kernel?distro=mageia-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.7-4.mga7

Ecosystem specific 

{
    "section": "core"
}

Mageia:7 / kmod-virtualbox

Package

Name
kmod-virtualbox
Purl
pkg:rpm/mageia/kmod-virtualbox?distro=mageia-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.0.14-4.mga7

Ecosystem specific 

{
    "section": "core"
}

Mageia:7 / kmod-xtables-addons

Package

Name
kmod-xtables-addons
Purl
pkg:rpm/mageia/kmod-xtables-addons?distro=mageia-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.5-6.mga7

Ecosystem specific 

{
    "section": "core"
}