Описание
Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-150300_59_98 fixes several issues.
The following security issues were fixed:
- CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation (bsc#1205128).
- CVE-2022-4378: Fixed stack overflow in __do_proc_dointvec (bsc#1206207).
- CVE-2022-4139: Fixed an issue with the i915 driver that allowed the GPU to access any physical memory (bsc#1205700).
- CVE-2022-3640: Fixed a use-after-free in l2cap_conn_del of the file net/bluetooth/l2cap_core.c (bsc#1204619).
- CVE-2022-3586: Fixed use-after-free in socket buffer (SKB) that could allow a local unprivileged user to cause a denial of service (bsc#1204439).
- CVE-2022-3545: Fixed a use-after-free in area_cache_get() of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c (bsc#1204415).
Список пакетов
SUSE Linux Enterprise Live Patching 15 SP3
Ссылки
- Link for SUSE-SU-2022:4517-1
- E-Mail link for SUSE-SU-2022:4517-1
- SUSE Security Ratings
- SUSE Bug 1204424
- SUSE Bug 1204576
- SUSE Bug 1204624
- SUSE Bug 1205130
- SUSE Bug 1205815
- SUSE Bug 1206228
- SUSE CVE CVE-2022-3545 page
- SUSE CVE CVE-2022-3586 page
- SUSE CVE CVE-2022-3640 page
- SUSE CVE CVE-2022-4139 page
- SUSE CVE CVE-2022-4378 page
- SUSE CVE CVE-2022-43945 page
Описание
A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier VDB-211045 was assigned to this vulnerability.
Затронутые продукты
Ссылки
- CVE-2022-3545
- SUSE Bug 1204415
- SUSE Bug 1204424
- SUSE Bug 1209225
- SUSE Bug 1217531
Описание
A flaw was found in the Linux kernel's networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer (SKB) cb field after the same SKB had been enqueued (and freed) into a child qdisc. This flaw allows a local, unprivileged user to crash the system, causing a denial of service.
Затронутые продукты
Ссылки
- CVE-2022-3586
- SUSE Bug 1204439
- SUSE Bug 1204576
- SUSE Bug 1208044
- SUSE Bug 1209225
- SUSE Bug 1212294
Описание
A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211944.
Затронутые продукты
Ссылки
- CVE-2022-3640
- SUSE Bug 1204619
- SUSE Bug 1204624
- SUSE Bug 1209225
Описание
An incorrect TLB flush issue was found in the Linux kernel's GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system.
Затронутые продукты
Ссылки
- CVE-2022-4139
- SUSE Bug 1205700
- SUSE Bug 1205815
- SUSE Bug 1209225
Описание
A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.
Затронутые продукты
Ссылки
- CVE-2022-4378
- SUSE Bug 1206207
- SUSE Bug 1206228
- SUSE Bug 1208030
- SUSE Bug 1208085
- SUSE Bug 1209225
- SUSE Bug 1211118
- SUSE Bug 1214268
- SUSE Bug 1218483
- SUSE Bug 1218966
Описание
The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client can force the send buffer to shrink by sending an RPC message over TCP with garbage data added at the end of the message. The RPC message with garbage data is still correctly formed according to the specification and is passed forward to handlers. Vulnerable code in NFSD is not expecting the oversized request and writes beyond the allocated buffer space. CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Затронутые продукты
Ссылки
- CVE-2022-43945
- SUSE Bug 1205128
- SUSE Bug 1205130
- SUSE Bug 1208030
- SUSE Bug 1208085
- SUSE Bug 1209225
- SUSE Bug 1210124