Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:4112-1

Опубликовано: 18 нояб. 2022
Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-150200_24_115 fixes several issues.

The following security issues were fixed:

  • CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635).

  • CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096).

  • CVE-2022-42703: Fixed use-after-free in mm/rmap.c related to leaf anon_vma double reuse (bnc#1204168).

  • Fixed incorrect handling of empty arguments array in execve() (bsc#1200571).

Список пакетов

SUSE Linux Enterprise Live Patching 12 SP4
kgraft-patch-4_12_14-95_83-default-15-2.2
kgraft-patch-4_12_14-95_88-default-11-2.2
kgraft-patch-4_12_14-95_93-default-10-2.2
kgraft-patch-4_12_14-95_96-default-9-2.2
kgraft-patch-4_12_14-95_99-default-6-2.1
SUSE Linux Enterprise Live Patching 12 SP5
kgraft-patch-4_12_14-122_116-default-9-2.2
kgraft-patch-4_12_14-122_113-default-11-2.2
kgraft-patch-4_12_14-122_121-default-7-2.2
kgraft-patch-4_12_14-122_98-default-16-2.2
kgraft-patch-4_12_14-122_103-default-16-2.2
kgraft-patch-4_12_14-122_106-default-14-2.2
kgraft-patch-4_12_14-122_110-default-12-2.2
kgraft-patch-4_12_14-122_124-default-6-2.1
SUSE Linux Enterprise Live Patching 15 SP1
kernel-livepatch-4_12_14-197_102-default-15-150100.2.2
kernel-livepatch-4_12_14-197_105-default-11-150100.2.2
kernel-livepatch-4_12_14-197_108-default-10-150100.2.2
kernel-livepatch-4_12_14-150100_197_111-default-9-150100.2.2
kernel-livepatch-4_12_14-150100_197_114-default-6-150100.2.1
SUSE Linux Enterprise Live Patching 15 SP2
kernel-livepatch-5_3_18-24_93-default-18-150200.2.2
kernel-livepatch-5_3_18-24_96-default-17-150200.2.2
kernel-livepatch-5_3_18-24_99-default-16-150200.2.2
kernel-livepatch-5_3_18-24_102-default-15-150200.2.2
kernel-livepatch-5_3_18-24_107-default-14-150200.2.2
kernel-livepatch-5_3_18-150200_24_112-default-10-150200.2.2
kernel-livepatch-5_3_18-150200_24_115-default-8-150200.2.1

Ссылки

Описание

When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.

Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_83-default-15-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_88-default-11-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_93-default-10-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_96-default-9-2.2
Ссылки

Описание

It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.

Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_83-default-15-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_88-default-11-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_93-default-10-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_96-default-9-2.2
Ссылки

Описание

mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anon_vma double reuse.

Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_83-default-15-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_88-default-11-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_93-default-10-2.2
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_96-default-9-2.2
Ссылки
Уязвимость SUSE-SU-2022:4112-1