Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:1783-1

Опубликовано: 21 мая 2022
Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-59_40 fixes one issue.

The following security issue was fixed:

  • CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in drivers/gpu/drm/drm_lease.c. This flaw allowed a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak (bsc#1198590).

Список пакетов

SUSE Linux Enterprise Live Patching 12 SP5
kgraft-patch-4_12_14-122_74-default-15-2.1
kgraft-patch-4_12_14-122_80-default-14-2.1
kgraft-patch-4_12_14-122_83-default-13-2.1
kgraft-patch-4_12_14-122_88-default-11-2.1
kgraft-patch-4_12_14-122_91-default-11-2.1
kgraft-patch-4_12_14-122_103-default-9-2.1
kgraft-patch-4_12_14-122_106-default-7-2.1
SUSE Linux Enterprise Live Patching 15 SP2
kernel-livepatch-5_3_18-24_53_4-default-15-150200.2.1
kernel-livepatch-5_3_18-24_70-default-15-150200.2.1
kernel-livepatch-5_3_18-24_75-default-14-150200.2.1
kernel-livepatch-5_3_18-24_86-default-11-150200.2.1
kernel-livepatch-5_3_18-24_78-default-13-150200.2.1
SUSE Linux Enterprise Live Patching 15 SP3
kernel-livepatch-5_3_18-59_19-default-13-150300.2.1
kernel-livepatch-5_3_18-59_37-default-9-150300.2.1
kernel-livepatch-5_3_18-59_40-default-9-150300.2.1

Ссылки

Описание

A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak.

Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_103-default-9-2.1
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_106-default-7-2.1
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_74-default-15-2.1
SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_80-default-14-2.1
Ссылки