SUSE-SU-2022:3108-1

Опубликовано: 06 сент. 2022

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-150400_22 fixes several issues.

The following security issues were fixed:

CVE-2020-36516: Fixed an off-path attack via mixed IPID assignment method with the hash-based IPID assignment policy to inject data into a victim's TCP session or terminate that session (bsc#1196867).
CVE-2022-2585: Fixed use-after-free in POSIX CPU timer (bsc#1202163).
CVE-2022-36946: Fixed a remote denial of service attack inside nfqnl_mangle in net/netfilter/nfnetlink_queue.c, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative length (bsc#1201941).

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP4

kernel-livepatch-5_14_21-150400_22-default-5-150400.4.12.3

Ссылки

https://www.suse.com/support/update/announcement/2022/suse-su-20223108-1/
Link for SUSE-SU-2022:3108-1
https://lists.suse.com/pipermail/sle-security-updates/2022-September/012107.html
E-Mail link for SUSE-SU-2022:3108-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1196867
SUSE Bug 1196867
https://bugzilla.suse.com/1201941
SUSE Bug 1201941
https://bugzilla.suse.com/1202163
SUSE Bug 1202163
https://www.suse.com/security/cve/CVE-2020-36516/
SUSE CVE CVE-2020-36516 page
https://www.suse.com/security/cve/CVE-2022-2585/
SUSE CVE CVE-2022-2585 page
https://www.suse.com/security/cve/CVE-2022-36946/
SUSE CVE CVE-2022-36946 page

Описание

An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_22-default-5-150400.4.12.3

Ссылки

https://www.suse.com/security/cve/CVE-2020-36516.html
CVE-2020-36516
https://bugzilla.suse.com/1196616
SUSE Bug 1196616
https://bugzilla.suse.com/1196867
SUSE Bug 1196867
https://bugzilla.suse.com/1204092
SUSE Bug 1204092
https://bugzilla.suse.com/1204183
SUSE Bug 1204183

Описание

It was discovered that when exec'ing from a non-leader thread, armed POSIX CPU timers would be left on a list but freed, leading to a use-after-free.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_22-default-5-150400.4.12.3

Ссылки

https://www.suse.com/security/cve/CVE-2022-2585.html
CVE-2022-2585
https://bugzilla.suse.com/1202094
SUSE Bug 1202094
https://bugzilla.suse.com/1202163
SUSE Bug 1202163

Описание

nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_22-default-5-150400.4.12.3

Ссылки

https://www.suse.com/security/cve/CVE-2022-36946.html
CVE-2022-36946
https://bugzilla.suse.com/1201940
SUSE Bug 1201940
https://bugzilla.suse.com/1201941
SUSE Bug 1201941
https://bugzilla.suse.com/1202312
SUSE Bug 1202312
https://bugzilla.suse.com/1202874
SUSE Bug 1202874
https://bugzilla.suse.com/1203208
SUSE Bug 1203208
https://bugzilla.suse.com/1204132
SUSE Bug 1204132
https://bugzilla.suse.com/1205313
SUSE Bug 1205313
https://bugzilla.suse.com/1212310
SUSE Bug 1212310

SUSE-SU-2022:3108-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP4

Ссылки

Уязвимость: CVE-2020-36516

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2022-2585

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2022-36946

Описание

Затронутые продукты

Ссылки