{"id":"MGASA-2020-0156","summary":"Updated kernel packages fix security vulnerabilities","details":"This update is based on upstream 5.5.14 and fixes at least the following\nsecurity vulnerabilities:\n\nIn the Linux kernel 5.3.10, there is a use-after-free (read) in the\nperf_trace_lock_acquire function (related to include/trace/events/lock.h)\n(CVE-2019-19769).\n\nManfred Paul discovered that the bpf verifier in the Linux kernel did not\nproperly calculate register bounds for certain operations. A local attacker\ncould use this to expose sensitive information (kernel memory) or gain\nadministrative privileges (CVE-2020-8835).\n\nSecurity fixes and hardenings to the mac00211 layer to prevent leaking keys\nand frames.\n\nOther notable changes in this update:\n- WireGuard kernel module has been updated to v1.0.20200330 and the tools\n  to v1.0.20200319.\n- exfat-utils has been rebuilt in core (was previously in tainted) as we\n  now also ship the official upstream exfat driver.\n\nFor other upstream fixes in this update, see the referenced changelogs.\n","modified":"2026-04-16T00:12:26.661482225Z","published":"2020-04-02T22:48:49Z","upstream":["CVE-2019-19769","CVE-2020-8835"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2020-0156.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=26420"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.10"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.11"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.12"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.13"},{"type":"WEB","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.5.14"}],"affected":[{"package":{"name":"kernel","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kernel?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.5.14-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0156.json"}},{"package":{"name":"kmod-virtualbox","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kmod-virtualbox?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.0.18-8.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0156.json"}},{"package":{"name":"kmod-xtables-addons","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kmod-xtables-addons?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.8-8.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0156.json"}},{"package":{"name":"wireguard-tools","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/wireguard-tools?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.20200319-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0156.json"}},{"package":{"name":"exfat-utils","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/exfat-utils?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3.0-2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0156.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}