Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check. This affects MSI Package Builder for Windows 9.1.4 and Remote Installer for Windows 6.0.13 and Ping Monitor for Windows 8.0.18 and Remote Shutdown for Windows 7.2.2 and WakeOnLan 2.0.8 and Network Inventory for Windows 5.8.22 and Network Software Scanner for Windows 2.0.8 and UnLock IT for Windows 6.1.1. The impact is: execute arbitrary code (remote). The component is: Updater. The attack vector is: To exploit this vulnerability, a user must trigger an update of an affected installation of EMCO Software. ¶¶ Multiple products from EMCO Software are affected by a remote code execution vulnerability during the update process.

**Quality Products. Quality Warranties.**

At Andersen, we pride ourselves in crafting durable, long-lasting products. That resilience allows us to offer some of the best warranties in the industry. They're even transferable should you sell your home. With our exclusive Owner-to-Owner® limited warranties, you get peace of mind, plus real added value.

Warranty documents, including our exclusive Owner-2-Owner® limited warranty, are provided for Andersen® windows, doors, hardware and other accessories.

*   A-Series Windows, Doors and Accessories
*   E-Series Windows and Doors
*   400 Series Windows, Doors and Accessories
*   200 Series Windows, Doors and Accessories
*   100 Series Windows, Doors and Accessories
*   Storm Doors Available at Dealer Locations
*   MultiGlide Doors
*   MultiGlide Doors (Spanish)
*   Folding Outswing Doors
*   Liftslide, Pivot, Beefy Bifold, Swing Doors
*   Entry Doors
*   Entry Doors (Spanish)

  

**Warranties For Other Andersen Family Brands**

**Warranty Registration**

Registering your Andersen windows and doors is simple. All you need is the product type, quantity and installation date.

*   Register your windows or patio doors
*   Register your Andersen/EMCO storm doors

CVE-2022-28944: Window & Door Warranty | Andersen Windows

By Deeba Ahmed
ESET assigned the vulnerability a CVSS score of 8.1 and tracked it as CVE-2022-4020.
This is a post from HackRead.com Read the original post: Acer Laptop Vulnerability Allows Malware Infection During Secure Boot

Cybersecurity firm ESET’s researchers have identified a vulnerability affecting Acer laptops. The bug isn’t new, as ESET already discovered it affecting Lenovo models, whereas this time, it is impacting several models of **Acer laptops**.

Lenovo fixed the issue and **published** a technical advisory. However, the bug allows attackers to install malware on the device by letting them disable Secure Boot and bypass security mechanisms.

**Vulnerability Details**

ESET assigned the vulnerability a CVSS score of 8.1 and tracked it as **CVE-2022-4020**. It was discovered in the HQSwSmiDxe DXE driver that checks the ‘BootOrderSecureBootDisable’ NVRAM variable for deactivating UEFI (Unified Extensible Firmware Interface) Secure Boot.

> In addition to #Lenovo vulnerabilities we disclosed earlier this month, we discovered another similar vulnerability in #Acer laptops. Same as in Lenovo case, it allows deactivating UEFI Secure Boot by creating NVRAM variable directly from OS. @smolar\_mhttps://t.co/zsDjKGIAjQ 1/3
> 
> — ESET research (@ESETresearch) November 28, 2022

Disabling this feature lets the attacker load their “own unsigned malicious bootloader” so as to gain complete control over the OS loading procedure. Moreover, they can bypass or disable protections to discreetly install malicious payloads, ESET **advisory** read.

“Vulnerability in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying an NVRAM variable,” researchers explained. NVRAM refers to non-volatile random-access memory variables.

**Acer’s Explanation**

For your information, UEFI is responsible for kickstarting a computer’s hardware while the OS loads. The Secure Boot process has to ensure that malicious code doesn’t get loaded when the device is booting.

On November 23rd, 2022, Acer **explained** that the bug lets the attacker tamper with this mechanism’s settings by creating NVRAM variables. This happens because the firmware driver just checks for the variables’ presence and not their actual value.

At least five models of Acer computers are impacted by this bug, including A315-22, A115-21, A315-22G, Extensa EX215-21, and EX215-21G. Acer is currently trying to resolve the issue with a BIOS update, which will be posted on its **Support site** soon and will be included as a **Critical Windows Update**. The company recommends users update to the latest BIOS version.

Acer Laptop Vulnerability Allows Malware Infection During Secure Boot

A background check service called MC2 Data has leaked information of over 100 million US citizens in an unprotected online database.

A background check left a huge database unprotected online containing 2.2TB of people’s data, according to research by Cybernews.

The database was left passwordless and easily accessible to anyone on the internet by background check firm MC2 Data. MC2 Data gathers publicly available data to provide decision makers with information whether someone can rent a house, work at their firm, or be granted a loan.

The data is usually gathered from online sources like criminal records, employment history, family data, and contact details.

Just like the huge National Public Data breach, this is another example of companies that most of us have never heard having extensive databases with an enormous amount of personal data. In this case, the researchers found 106,316,633 records containing private information about US citizens.

Cybernews estimates that at least 100 million individuals are affected, meaning approximately one in three US citizens can expect to find their data in the data set.

The websites that MC2 Data operates include:

*   PrivateRecords
*   PrivateReports
*   PeopleSearcher
*   ThePeopleSearchers
*   PeopleSearchUSA

And the leaked data included:

*   Names
*   Emails
*   IP addresses
*   User agents
*   Encrypted passwords
*   Partial payment information
*   Home addresses
*   Dates of birth
*   Phone numbers
*   Property records
*   Legal records
*   Property records
*   Family, relatives, neighbors data
*   Employment history

To make things even worse, the data of 2,319,873 users who subscribed to MC2 Data services were leaked as well.

It is incomprehensible that services like these are allowed to exist without any kind of control or sense of responsibility. Regardless of all the regulations and laws these companies need to abide by, we find time and again that their security measures are below par.

As the researchers put it:

> “While background-check services keep trying to prevent such cases, they haven’t been able to stop such use of their services completely. Such a leak is a goldmine for cybercriminals as it eases access and reduces risk for them, allowing them to misuse these detailed reports more effectively.”

**Protecting yourself after a data breach**

There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

*   **Check the vendor’s advice.** Every breach is different, so check with the vendor to find out what’s happened, and follow any specific advice they offer.
*   **Change your password.** You can make a stolen password useless to thieves by changing it. Choose a strong password that you don’t use for anything else. Better yet, let a password manager choose one for you.
*   **Enable two-factor authentication (2FA).** If you can, use a FIDO2-compliant hardware key, laptop or phone as your second factor. Some forms of two-factor authentication (2FA) can be phished just as easily as a password. 2FA that relies on a FIDO2 device can’t be phished.
*   **Watch out for fake vendors.** The thieves may contact you posing as the vendor. Check the vendor website to see if they are contacting victims, and verify the identity of anyone who contacts you using a different communication channel.
*   **Take your time.** Phishing attacks often impersonate people or brands you know, and use themes that require urgent attention, such as missed deliveries, account suspensions, and security alerts.
*   **Consider not storing your card details**. It’s definitely more convenient to get sites to remember your card details for you, but we highly recommend not storing that information on websites.
*   **Set up identity monitoring.** Identity monitoring alerts you if your personal information is found being traded illegally online, and helps you recover after.

If you want to find out what personal data of yours has been exposed online, you can use our free Digital Footprint scan. Fill in the email address you’re curious about (it’s best to submit the one you most frequently use) and we’ll send you a free report.

**We don’t just report on threats – we help safeguard your entire digital identity**

Cybersecurity risks should never spread beyond a headline. Protect your—and your family’s—personal information by using identity protection.

 100 million+ US citizens have records leaked by background check service 

A privilege escalation vulnerability was reported in Lenovo Drivers Management Lenovo Driver Manager that could allow a local user to execute code with elevated privileges.

CVE-2023-25496

The bargain T95 Android TV device was delivered with preinstalled malware, adding to a trend of Droid devices coming out-of-the-box tainted.

At $39.99 with a $3 coupon option for Amazon Prime members, the T95 Android 10.0 TV box might seem like a good value. But when an unsuspecting but cybersecurity-savvy customer ordered one up, he said it came "festooned" with malware — no extra charge.

Daniel Milisic warned consumers in Reddit and GitHub posts that he just happened to have bought the box to run Pi-hole tracker blocking — and that he immediately made a startling discovery. His first clue something was funky with the device's security was that it was signed with Android 10 test keys.

"If test keys weren't enough of a bad omen, I also found ADB wide open over the Ethernet port — right out of the box," Milisic added.

Then he let Pi-hole go to work.

"After running the Pi-hole install I set the box's DNS1 and DNS2 to 127.0.0.1 and got a hell of a surprise,” Milisic wrote. “The box was reaching out to many known, active malware addresses.”

Milisic explained he discovered traffic-monitoring malware, and an additional type of malware he said operates similarly to Android mobile malware CopyCat, but he wasn't able to identify it as a known variant. 

To boot, the malicious code is unremovable: Ultimately, Milisic was unable to strip the malware from the device, so it's currently unplugged, he said.

**Preinstalled Malware Isn't New**

Hardware being sold with preinstalled and often unremovable malware is an ongoing issue for consumers. Researchers at Check Point, for instance, warned consumers back in 2017 that a telecom company was distributing more than 36 different Android devices preloaded with adware.

In 2018 Chinese PC maker Lenovo was ordered to pay millions in a class-action lawsuit over its laptops coming with preinstalled adware, in the well-publicized "Superfish" incident. More recently, in April 2022, security researchers with ESET reported they had found and disclosed firmware-level vulnerabilities in millions of Lenovo consumer laptops that could allow attackers to escalate device privileges and drop malware undetected.

And in July 2020, researchers at Malwarebytes raised the alarm that government-funded Android phones for low-income households came out of the box with preinstalled Chinese malware that was deemed incapable of being removed.

The trend indicates that security teams and end users alike should source their devices using a bit of extra caution, from phones to laptops to TV boxes and more. 

"The main take-away here: Don't trust cheap Android boxes on AliExpress or Amazon that have firmware signed with test keys," Milisic warned. "They are stealing your data and (unless you can watch DNS logs) do so without a trace!"

Malware Comes Standard With This Android TV Box on Amazon

Malwarebytes now protects ARM-based Windows devices, such as Microsoft’s Surface Pro X and Lenovo’s Yoga laptops.

For the last four years, Malwarebytes has been protecting ARM-based machines running on Apple’s M-series processors. Now, we’ve expanded our protection range to include ARM-based Windows machines such as Copilot+ PCs, including Microsoft Surface Pro, Lenovo Yoga Slim and ThinkPad, and Dell Inspiron, among others. 

ARM-based chips offer advantages such as improved performance, longer battery life, lower costs, and advanced features like on-device AI processing. 

And with ARM processors gaining popularity in the PC market—projections suggest that they could have 25% market share by 2027—there is no doubt that malware creators will expand their reach into this area. 

Malwarebytes helps you get ahead of these threats. With active protection layers that defend against system vulnerabilities, malicious links, and more, Malwarebytes has you covered across your devices. 

**Where can I get it?** 

Go to the Malwarebytes website and hit the Free Download button to try it yourself, or click the button below. Our installer will automatically detect if you have an ARM device.

We recommend Windows 11 or higher for this installation, because Windows 11 has been optimized to run on ARM processors.

 Malwarebytes introduces native ARM support for Windows devices  

Researchers have found several weaknesses in the fingerprint authentication for Windows Hello on popular laptops.

Researchers have found several weaknesses in Windows Hello fingerprint authentication on Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft Surface Pro X laptops.

Microsoft’s Offensive Research and Security Engineering (MORSE) asked the researchers to evaluate the security of the top three fingerprint sensors embedded in laptops. They found vulnerabilities that allowed them to completely bypass Windows Hello authentication on all three.

If you like to read the full technical details, we happily refer you to the Blackwing researcher’s blog: A TOUCH OF PWN – PART I. For a less technical summary, carry on.

First but foremost, it’s important to know that for these vulnerabilities to be exploitable, fingerprint authentication needs to be set up on the target laptop. Imagine the type of disaster if that wasn’t true.

The three sensors the researchers looked at were all of the “match on chip” type. This means that a separate chip stores the biometric credentials (in this case the fingerprints), making it almost impossible to hack into.

The communication between the sensor and the laptop is done over a secure channel, set up through the Secure Device Connection Protocol (SDCP) created by Microsoft.

SDCP aims to answer three questions about the sensor:

1.  How can the laptop be certain it’s talking to a trusted sensor and not a malicious one?
2.  How can the lapop be certain the sensor hasn’t been compromised?
3.  How is the raw input from the sensor protected?
    *   The input has to be authenticated.
    *   The input is fresh and can’t be re-playable.

So, what could go wrong?

The researchers were still able to spoof the communication between sensor and laptops. They were able to fool the the laptops using a USB device which pretended to be its sensor, and sent a signal that an authorized user had logged in.

The bypasses are possible because the device manufacturers did not use SDCP to its full potential:

*   The ELAN sensor commonly used in Dell and Microsoft Surface laptops lacks SDCP support and transmits security identifiers in cleartext.
*   Synaptics sensors, used by both Lenovo and Dell, had turned SDCP off by default and used a flawed custom Transport Layer Security (TLS) stack to secure USB communications.
*   The Goodix sensors, also used by both Lenovo and Dell, could be bypassed because they are suitable for Windows and Linux, which does not support SDCP. The host driver sends an unauthenticated configuration packet to the sensor to specify what database to use during sensor initialization.

The recommendation of the researchers to the manufacturers is clear: SDCP is a powerful protocol, but it doesn’t help if it isn’t enabled or when it can be bypassed by using other weak links in your setup.

The fact that three manufacturers were mentioned by name doesn’t mean by any stretch that others have done a better job. It just means the researchers didn’t get round to testing them.

If you, as a user, are worried about anyone being able to get near your laptop with a USB device, you shouldn’t be using fingerprints as an authentication method and disabled.

1.  Type and search **\[Sign-in options\]** in the Windows search bar, then click **\[Open\]**.
2.  Select **\[Fingerprint recognition (Windows Hello)**, then click **\[Remove\]**, and the fingerprint sign-in option will be removed.

Until the manufacturers have dealt with the weaknesses in their setups, we can’t assume that this is a secure method of authentication.

**We don’t just report on threats—we remove them**

Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by downloading Malwarebytes today.

 Windows Hello fingerprint authentication can be bypassed on popular laptops 

Acer has released a firmware update to address a security vulnerability that could be potentially weaponized to turn off UEFI Secure Boot on affected machines.

Tracked as **CVE-2022-4020**, the high-severity vulnerability affects five different models that consist of Aspire A315-22, A115-21, and A315-22G, and Extensa EX215-21 and EX215-21G.

The PC maker described the vulnerability as an issue that "may allow changes to Secure Boot settings by creating NVRAM variables." Credited with discovering the flaw is ESET researcher Martin Smolár, who previously disclosed similar bugs in Lenovo computers.

Disabling Secure Boot, an integrity mechanism that guarantees that only trusted software is loaded during system startup, enables a malicious actor to tamper with boot loaders, leading to severe consequences.

This includes granting the attacker complete control over the operating system loading process as well as "disable or bypass protections to silently deploy their own payloads with the system privileges."

Per the Slovak cybersecurity company, the flaw resides in a DXE driver called HQSwSmiDxe.

The BIOS update is expected to be released as part of a critical Windows update. Alternatively, users can download the fixes from Acer's Support portal.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection

FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. If a user does not have direct access to the elevation feature through group policies, they are prompted to enter a PIN code in a challenge-response manner upon attempting to elevate privileges. The challenge's response uses a simple algorithm that can be easily emulated via data (customer ID and device name) available to all users, and thus any user can elevate to Administrator privilege.

Improsec’s goal is to help improve security in widely used IT systems, including hard- and software products, operating systems, (web) applications, firmware, APIs etc.

The work is carried out to the extent that it will not compromise trust nor confidentiality between Improsec and our customers.

When we identify security issues or vulnerabilities in IT systems, security researchers at Improsec follow the Responsible Disclosure policy below.

In the following document you find our Responsible Disclosure Policy (UK).

**Responsible disclosure findings**

**Multiple vulnerabilities in SonicWall SMA 100**

During a customer engagement we identified multiple vulnerabilities in SonicWall’s Mobile Access web interface (SMA) allowing unauthenticated user enumeration and unauthenticated read/delete access to several endpoints of the management API

*   Issue #1
    
    *   CVE-2021-20049
        
    *   CVE-2021-20050  
        

**Privilege escalation vulnerability in NinjaRMM Agent introduced in EXEMSI MSI Wrapper**

We found a vulnerability in EXEMSI MSI Wrapper, which affected multiple third-party software vendors. Read more about our finding and the responsible disclosure here:

*   Issue #1
    
    *   CVE-2021-26273
        
    *   CVE-2021-26274
        

**Privilege escalation in Microsoft Windows 7/8.1/10,** **Windows Server 2008/2012/2016/2019**

We found a vulnerability in Windows 7/8.1/10/Server 2008/2012/2016/2019, which affected a range of different third-party products. Read more about our finding and the responsible disclosure here:

*   Issue #1
    
    *   CVE-2021-1661
        

**Privilege escalation vulnerability in Lenovo System Update**

We found a vulnerability in Lenovo System Update that allows any user to redirect the application flow in unintended ways, which allows low privileged users to access high privileged functions. Read more about our finding and the responsible disclosure here:

*   Issue #1
    
    *   CVE-2020-8342
        

**Unpatched privilege escalation vulnerability in Intel Driver & Support Assistant**

We have found a trivial privilege escalation vulnerability in Intel Driver & Support Assistant. Read more about our finding and the responsible disclosure here:

*   Issue #1
    
    *   CVE-2020-13386
        

**Local Privilege Escalation in SmartDraw 2020**

We have performed an analysis of SmartDraw 2020, and found a local privilege escalation vulnerability using the built-in update functionality of the product as well as the general folder permissions set on the installation path of the product. Read more about our finding and the responsible disclosure thereof here:

*   Issue #1
    
    *   CVE-2020-13386
        

**Privilege Escalation vulnerability in Splashtop Streamer**

We have found bugs in installed software Splashtop Streamer while doing vulnerability research. Read more about our finding here:

*   Issue #1
    
    *   CVE-2020-12431
        

**Remote Code Execution by reverse engineering an Askey Wifi-Extender**

We have performed an analysis of the Askey WiFi-extender in close collaboration with TDC. Read more about our finding here:

*   Issue #1
    
    *   CVE-2020-8614
        

**Local privilege escalation via Pronestor HealthMonitor**

During a Windows security analysis, we found a privilege escalation vulnerability in the Pronestor HealthMonitor service (part of the “Outlook add-in for Pronestor” product). Read more about our finding here:

*   Issue #1
    
    *   CVE-2019-17390
        

**Multiple vulnerabilities in EasyInstall RMM and deployment software**

We have performed an analysis of EasyInstall RMM and deployment software and have found six privilege escalation vulnerabilities:

*   Issue #1
    
    *   CVE-2019-19893
        
    *   CVE-2019-19894
        
    *   CVE-2019-19895
        
    *   CVE-2019-19896
        
    *   CVE-2019-19897
        
    *   CVE-2019-19898
        

**Local privilege escalation in FastTrack AdminByRequest**

We have performed an analysis of the product “AdminByRequest” (version 6.1.0.0) by FastTrack Software and have found two local privilege escalation vulnerabilities, allowing a regular user to become local administrator. The first CVE allows a local user to communicate directly with the underlying service Audckq32.exe by a named pipe to force elevation to admin, and the second CVE allows a user to become local administrator by reversing the proprietary PIN-code algorithm:

*   CVE-2019-17201
    
*   CVE-2019-17202
    

**Privilege escalation in Lenovo Dynamic Power Reduction Utility**

We have performed an analysis of Lenovo Dynamic Power Reduction Utility and have found a privilege escalation vulnerability. Read more about our finding here: 

*   Issue #1
    
    *   CVE-2019-6149
        

  
**Privilege escalations in CapMon Access Manager**

We have performed an analysis of Access Manager by CapMon, and found interesting security vulnerabilities by means of direct communication with their privilege managing service. Read more about our findings and the responsible disclosures thereof here:

*   Issue #1
    
    *   CVE-2018-18252
        
    *   CVE-2018-18253
        
    *   CVE-2018-18254
        
    *   CVE-2018-18255
        
    *   CVE-2018-18256
        

**Privilege escalations in Heimdal Security**

We have performed an analysis of Heimdal Security and found interesting security vulnerabilities by means of DLL hijacking and executable overwriting. Read more about our findings and the responsible disclosures thereof here:

*   Issue #1
    
    *   CVE-2018-5349
        
*   Issue #2
    
    *   CVE-2018-5731
        

**Client side remote code execution in IBM notes**

We have performed an analysis of IBM Notes and found interesting security vulnerabilities by means of DLL hijacking. Read more about our findings and the responsible disclosure thereof here:

*   Issue #1
    
    *   CVE-2018-1435
        

**Privilege escalation in IBM Notes Diagnostics**

We have performed an analysis of IBM Notes Diagnostics and found interesting security vulnerabilities by means of DLL and internal file hijacking. Read more about our findings and the responsible disclosure thereof here:

*   Issue #1
    
    *   CVE-2017-1714
        
*   Issue #2
    
    *   CVE-2017-1720
        
*   Issues #3-5
    
    *   CVE-2018-1409
        
    *   CVE-2018-1410
        
    *   CVE-2018-1411
        
*   Issue #6
    
    *   CVE-2018-1437
        

**Privilege escalation in IBM Notes Smart Update Service**

We have performed an analysis of IBM Notes Smart Update Service, and found an interesting security vulnerability by means of DLL hijacking. Read more about our finding and the responsible disclosure thereof here:

*   Issue #1
    
    *   CVE-2017-1711
        

**Local information disclosure vulnerability in IBM Tivoli Storage Manager and IBM Spectrum Protect**

We have performed an analysis of IBM Tivoli Storage Manager and have found a local information disclosure vulnerability. Read more about our finding here:

*   Issue #1
    
    *   CVE-2016-8939

CVE-2019-17202: Responsible Disclosure — Improsec | improving security

Red Hat Security Advisory 2024-1881-03 - An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include null pointer and use-after-free vulnerabilities.

The following advisory data is extracted from:

https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_1881.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Moderate: kernel security and bug fix update  
Advisory ID:        RHSA-2024:1881-03  
Product:            Red Hat Enterprise Linux  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:1881  
Issue date:         2024-04-18  
Revision:           03  
CVE Names:          CVE-2023-6240  
====================================================================

Summary: 

An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description:

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

* kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation (CVE-2023-6240)

* kernel: tls: use-after-free with partial reads and async decrypt (CVE-2024-26582)

* kernel: tls: handle backlogging of crypto requests (CVE-2024-26584)

* kernel: mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)

Bug Fix(es):

* [Lenovo RHEL9] Realtek patch for P1 G6 Audio (BZ#2208068)

* Please integrate commit b949ee6801f4 (\"powerpc/fadump: invoke ibm,os-term with rtas_call_unlocked()\") (JIRA:RHEL-17106)

* PVT:1050:XM:Nimitz Linux EEH Nimitz - After FATAL Injection BIT 13 on D10 Register, unable to see the htx traffic status after long time (JIRA:RHEL-22413)

* RHEL9.2 - Performance Degradation in the Case of Asymmetric Scheduler Domains in Linux (JIRA:RHEL-24862)

* kernel: mlxsw: spectrum_acl_tcam: Fix stack corruption (JIRA:RHEL-29186)

*  kernel NULL pointer dereference from nvme_fc_io_getuuid+0xc/0x30 [nvme_fc] (JIRA:RHEL-29221)

* sched_setaffinity(2) returns undocumented error ENODEV (JIRA:RHEL-21140)

* kernel: tls: use-after-free with partial reads and async decrypt (JIRA:RHEL-26396)

* kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation (JIRA:RHEL-27840)

* sched_setaffinity(2) doesn't return -1 for an empty mask (JIRA:RHEL-29540)

* [EMR] [TBOOT OS] SUT could not go to S3 state with RHEL 9.2 Tboot OS One CPU return -16 running BUSY (JIRA:RHEL-29665)

* ipoib mcast lockup fix (JIRA:RHEL-29923)

* ice 0000:6f:00.0: PTP failed to get time (JIRA:RHEL-30108)

* blk-mq: don't schedule blk-mq kworkers on isolated CPUs (JIRA:RHEL-30418)

* kernel: tls: handle backlogging of crypto requests (JIRA:RHEL-30450)

* Kernel panic in skb_segment (JIRA:RHEL-30561)

* [IBM 9.4 FEAT] Update IBM vNIC Driver (ibmvnic) (JIRA:RHEL-28648)

* SCTP OOTB scenario in OVS/Netfilter where the SCTP connection can not be recovered by HB_REQ/HB_ACK (JIRA:RHEL-29949)

Solution:

https://access.redhat.com/articles/11258

CVEs:

CVE-2023-6240

References:

https://access.redhat.com/security/updates/classification/#moderate  
https://bugzilla.redhat.com/show_bug.cgi?id=2250843  
https://bugzilla.redhat.com/show_bug.cgi?id=2265518  
https://bugzilla.redhat.com/show_bug.cgi?id=2265519  
https://bugzilla.redhat.com/show_bug.cgi?id=2265645

Search

lenovo warranty check/lookup | check warranty status | lenovo support us