1.Penguin Landscape Esm W900

Several security issues were found in the Linux kernel, including an out-of-bounds write vulnerability in the Flower classifier implementation in the kernel (CVE-2023-35788). It was also discovered that for some Intel processors the INVLPG instruction implementation did not properly flush global TLB entries when PCIDs are enabled. With a low attack complexity and a high confidentiality, integrity and availability impact, these flaws have received a National Vulnerability Database severity rating of 7.8 out of 10 (“High” severity).

These problems could lead to system crashes resulting in denial of service (DoS), the execution of arbitrary code, or the exposure of sensitive information (kernel memory).

Important updates for the kernel that mitigate these issues have been released. We urge all impacted users to apply the Linux kernel updates issued by their distro(s) immediately to protect the confidentiality, integrity and availability of your systems and your sensitive data.

To stay on top of important updates released by the open-source programs and applications you use, be sure to register as a LinuxSecurity user, then subscribe to our Linux Advisory Watch newsletter and customize your advisories for the distro(s) you use. This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems.

Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s).