[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2022-0155":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":36,"duplicates":37,"related":38,"reserved_at":9,"published_at":50,"modified_at":51,"state":9,"summary":52,"references_raw":54,"kevs":79,"epss":9,"epss_history":80,"metrics":81,"affected":82},"MGASA-2022-0155","Updated kernel-linus packages fix security vulnerabilities\n\nThis kernel-linus update is based on upstream 5.15.35 and fixes at least the\nfollowing security issues:\n\nA denial of service (DOS) issue was found in the Linux kernel \nsmb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet\nFile System (CIFS) due to an incorrect return from the memdup_user function.\nThis flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the\nsystem (CVE-2022-0168).\n\nx86/kvm: cmpxchg_gpte can write to pfns outside the userspace region\n(CVE-2022-1158).\n\nA use-after-free vulnerabilities in drivers/net/hamradio/6pack.c allow\nattacker to crash linux kernel by simulating Amateur Radio from user-space\n(CVE-2022-1198).\n\nA use-after-free flaw was found in the Linux kernel’s Amateur Radio AX.25\nprotocol functionality in the way a user connects with the protocol. This\nflaw allows a local user to crash the system (CVE-2022-1204).\n\nA NULL pointer dereference flaw was found in the Linux kernel’s Amateur\nRadio AX.25 protocol functionality in the way a user connects with the\nprotocol. This flaw allows a local user to crash the system\n(CVE-2022-1205).\n\nA null pointer dereference was found in the kvm module which can lead to\ndenial of service (CVE-2022-1263).\n\nA vulnerability was found in the pfkey_register function in net/key/af_key.c\nin the Linux kernel. This flaw allows a local, unprivileged user to gain\naccess to kernel memory, leading to a system crash or a leak of internal\nkernel information (CVE-2022-1353).\n\nusb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel\nthrough 5.17.1 has a double free (CVE-2022-28388).\n\nmcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel\nthrough 5.17.1 has a double free (CVE-2022-28389).\n\nems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel\nthrough 5.17.1 has a double free (CVE-2022-28390).\n\nIn the Linux kernel before 5.17.3, fs/io_uring.c has a use-after-free due\nto a race condition in io_uring timeouts. This can be triggered by a local\nuser who has no access to any user namespace (CVE-2022-29582).\n\nFor other upstream fixes, see the referenced changelogs.\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34],{"_key":15},"CVE-2022-0168",{"_key":17},"CVE-2022-1158",{"_key":19},"CVE-2022-1198",{"_key":21},"CVE-2022-1204",{"_key":23},"CVE-2022-1205",{"_key":25},"CVE-2022-1263",{"_key":27},"CVE-2022-1353",{"_key":29},"CVE-2022-28388",{"_key":31},"CVE-2022-28389",{"_key":33},"CVE-2022-28390",{"_key":35},"CVE-2022-29582",[],[],[39,40,41,42,43,44,45,46,47,48,49],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},"2022-04-28T15:51:51Z","2026-04-16T04:44:48.490956114Z",{"cisa_kev":53,"cisa_ransomware":53,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[55,61,66,71,75],{"url":56,"sources":57,"tags":59},"https://advisories.mageia.org/MGASA-2022-0155.html",[58],"osv_mageia",[60],"Advisory",{"url":62,"sources":63,"tags":64},"https://bugs.mageia.org/show_bug.cgi?id=30331",[58],[65],"REPORT",{"url":67,"sources":68,"tags":69},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.33",[58],[65,70],"WEB",{"url":72,"sources":73,"tags":74},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.34",[58],[65,70],{"url":76,"sources":77,"tags":78},"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.35",[58],[65,70],[],[],[],[83],{"ecosystem":84,"name":85,"vendor":86,"product":85,"cpe_part":9,"purl_type":87,"purl_namespace":86,"purl_name":85,"source":9,"versions":88},"Mageia","kernel-linus","mageia","rpm",[89],{"version":90,"is_range":91,"range_type":92,"version_start":9,"version_start_type":9,"version_end":93,"version_end_type":94,"fixed_in":9},"lt5_15_35_1_mga8",true,"ecosystem","5.15.35-1.mga8","excluding"]