Oct 24th, 2019
The system could crash or be made to run programs as an administrator.
Package(s) : linux-image-ql-generic, qlustar-module-core-xenial-amd64-10.1.1, qlustar-module-core-bionic-amd64-11.0.0, qlustar-module-core-centos7-amd64-11.0.0 Qlustar releases : 10.1, 11.0 Affected versions: All versions prior to this update Vulnerability : privilege escalation/denial of service Problem type : local Qlustar-specific : no CVE Id(s) : Not documented
A number of vulnerabilities and bugs have been discovered in the 4.19.x Linux kernel series since the last Qlustar 11.0 release based on 4.19.73. They may lead to a denial of service or privilege escalation. Please check the following web pages that contain details of the fixes in each release after 4.19.73 up to the current Qlustar kernel 4.19.80:
Linux kernel 4.19.80 Linux kernel 4.19.79 Linux kernel 4.19.78 Linux kernel 4.19.77 Linux kernel 4.19.76 Linux kernel 4.19.75 Linux kernel 4.19.74
A number of vulnerabilities and bugs have been discovered in the 4.14.x Linux kernel series since the last Qlustar 10.1 release based on 4.14.144. They may lead to a denial of service or privilege escalation. Please check the following web pages that contain details of the fixes in each release after 4.14.144 up to the current Qlustar kernel 4.14.150:
Linux kernel 4.14.150 Linux kernel 4.14.149 Linux kernel 4.14.148 Linux kernel 4.14.147 Linux kernel 4.14.146 Linux kernel 4.14.145
The problem can be corrected by updating your system to the following or more recent package versions (follow the Qlustar Update Instructions and for this update also perform the manual step '10. Adjust root bash shell initialization' as described in the Release Notes):
linux-image-ql-generic 4.19.80-ql-generic-11.0-11 qlustar-module-core-bionic-amd64-11.0.0 11.0.0.4-b515f1270 qlustar-module-core-centos7-amd64-11.0.0 11.0.0.4-b515f1270
linux-image-ql-generic 4.14.150-ql-generic-10.1-22 qlustar-module-core-xenial-amd64-10.1.1 10.1.1.8-b509f1268