Описание
Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-150400_22 fixes several issues.
The following security issues were fixed:
- CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015)
- CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019)
- CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505).
- CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in drivers/gpu/drm/drm_lease.c (bnc#1197914).
- CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in drivers/gpu/drm/drm_lease.c (bnc#1197914).
- CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227)
- CVE-2021-39698: Fixed a possible memory corruption due to a use after free in aio_poll_complete_work. This could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1196956)
Список пакетов
SUSE Linux Enterprise Live Patching 15 SP4
Ссылки
- Link for SUSE-SU-2022:2268-1
- E-Mail link for SUSE-SU-2022:2268-1
- SUSE Security Ratings
- SUSE Bug 1196959
- SUSE Bug 1197335
- SUSE Bug 1198590
- SUSE Bug 1199602
- SUSE Bug 1200266
- SUSE Bug 1200268
- SUSE CVE CVE-2021-39698 page
- SUSE CVE CVE-2022-1016 page
- SUSE CVE CVE-2022-1280 page
- SUSE CVE CVE-2022-1966 page
- SUSE CVE CVE-2022-1972 page
- SUSE CVE CVE-2022-30594 page
- SUSE CVE CVE-2022-32250 page
Описание
In aio_poll_complete_work of aio.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-185125206References: Upstream kernel
Затронутые продукты
Ссылки
- CVE-2021-39698
- SUSE Bug 1196956
- SUSE Bug 1196959
- SUSE Bug 1209225
Описание
A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.
Затронутые продукты
Ссылки
- CVE-2022-1016
- SUSE Bug 1197335
Описание
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak.
Затронутые продукты
Ссылки
- CVE-2022-1280
- SUSE Bug 1197914
- SUSE Bug 1198590
Описание
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-32250. Reason: This candidate is a duplicate of CVE-2022-32250. Notes: All CVE users should reference CVE-2022-32250 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
Затронутые продукты
Ссылки
- CVE-2022-1966
- SUSE Bug 1200015
- SUSE Bug 1200268
- SUSE Bug 1200494
- SUSE Bug 1200529
Описание
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-2078. Reason: This candidate is a reservation duplicate of CVE-2022-2078. Notes: All CVE users should reference CVE-2022-2078 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
Затронутые продукты
Ссылки
- CVE-2022-1972
- SUSE Bug 1200019
- SUSE Bug 1200266
Описание
The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.
Затронутые продукты
Ссылки
- CVE-2022-30594
- SUSE Bug 1199505
- SUSE Bug 1199602
- SUSE Bug 1201549
- SUSE Bug 1204132
Описание
net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.
Затронутые продукты
Ссылки
- CVE-2022-32250
- SUSE Bug 1200015
- SUSE Bug 1200268
- SUSE Bug 1200494
- SUSE Bug 1202992
- SUSE Bug 1202993
- SUSE Bug 1203002