{"id":"MGASA-2019-0220","summary":"Updated kernel packages fix security vulnerabilities","details":"This kernel update provides an update to the kernel 5.2 series, currently\nbased on 5.2.7 adding support for newer hardware and other new features.\nIt also fixes at least the following security issues:\n\nA Spectre SWAPGS gadget was found in the Linux kernel's implementation of\nsystem interrupts. An attacker with local access could use this information\nto reveal private data through a Spectre like side channel (CVE-2019-1125).\n\nA flaw was found in the Linux kernel’s Bluetooth implementation of UART.\nAn attacker with local access and write permissions to the Bluetooth\nhardware could use this flaw to issue a specially crafted ioctl function\ncall and cause the system to crash (CVE-2019-10207).\n\nIt also fixes an issue with newer Intel Wireless cards having firmware\ncrashes with newer iwlwifi firmwares (mga#25143)\n\nFor other uptstream features, changes and fixes in this update, see the\nreferenced changelogs.\n","modified":"2026-02-04T02:47:23.423674Z","published":"2019-08-12T21:08:18Z","related":["CVE-2019-10207","CVE-2019-1125"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0220.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=25240"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=25143"},{"type":"REPORT","url":"https://kernelnewbies.org/Linux_5.2"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-5.2.1"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-5.2.2"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-5.2.3"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-5.2.4"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-5.2.5"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-5.2.6"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-5.2.7"}],"affected":[{"package":{"name":"kernel","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kernel?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.2.7-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0220.json"}},{"package":{"name":"kernel-userspace-headers","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kernel-userspace-headers?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.2.7-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0220.json"}},{"package":{"name":"kmod-virtualbox","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kmod-virtualbox?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.0.10-3.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0220.json"}},{"package":{"name":"kmod-xtables-addons","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/kmod-xtables-addons?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.3-57.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0220.json"}},{"package":{"name":"xtables-addons","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/xtables-addons?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.3-2.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0220.json"}},{"package":{"name":"ldetect-lst","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/ldetect-lst?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.6.3-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0220.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}