[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2022:1037-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-03T20:53:27.442Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":38,"duplicates":39,"related":40,"reserved_at":9,"published_at":53,"modified_at":54,"state":9,"summary":55,"references_raw":57,"kevs":262,"epss":9,"epss_history":263,"metrics":264,"affected":265},"OPENSUSE-SU-2022:1037-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-25636: Fixed an issue which allowed a local users to gain privileges because of a heap out-of-bounds write in nf_dup_netdev.c, related to nf_tables_offload (bsc#1196299).\n- CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could trigger crash the system or corrupt system memory (bsc#1196830).\n- CVE-2022-0487: A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove() in drivers/memstick/host/rtsx_usb_ms.c (bsc#1194516).\n- CVE-2022-24448: Fixed an issue if an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612).\n- CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079)\n- CVE-2022-0644: Fixed a denial of service by a local user. A assertion failure could be triggered in kernel_read_file_from_fd(). (bsc#1196155)\n- CVE-2022-25258: The USB Gadget subsystem lacked certain validation of interface OS descriptor requests, which could have lead to memory corruption (bsc#1196096).\n- CVE-2022-24958: drivers/usb/gadget/legacy/inode.c mishandled dev->buf release (bsc#1195905).\n- CVE-2022-24959: Fixed a memory leak in yam_siocdevprivate() in drivers/net/hamradio/yam.c (bsc#1195897).\n- CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987).\n- CVE-2021-0920: Fixed a local privilege escalation due to a use-after-free vulnerability in unix_scm_to_skb of af_unix (bsc#1193731).\n- CVE-2021-39657: Fixed an information leak in the Universal Flash Storage subsystem (bsc#1193864).\n\nThe following non-security bugs were fixed:\n\n- ALSA: intel_hdmi: Fix reference to PCM buffer address (git-fixes).\n- ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions (git-fixes).\n- ARM: Fix kgdb breakpoint for Thumb2 (git-fixes).\n- ASoC: cs4265: Fix the duplicated control name (git-fixes).\n- ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min (git-fixes).\n- ASoC: rt5668: do not block workqueue if card is unbound (git-fixes).\n- ASoC: rt5682: do not block workqueue if card is unbound (git-fixes).\n- Bluetooth: btusb: Add missing Chicony device for Realtek RTL8723BE (bsc#1196779).\n- EDAC/altera: Fix deferred probing (bsc#1178134).\n- HID: add mapping for KEY_ALL_APPLICATIONS (git-fixes).\n- HID: add mapping for KEY_DICTATE (git-fixes).\n- Hand over the maintainership to SLE15-SP3 maintainers\n- IB/hfi1: Correct guard on eager buffer deallocation (git-fixes).\n- IB/hfi1: Fix early init panic (git-fixes).\n- IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr (git-fixes).\n- IB/hfi1: Insure use of smp_processor_id() is preempt disabled (git-fixes).\n- IB/rdmavt: Validate remote_addr during loopback atomic tests (git-fixes).\n- Input: clear BTN_RIGHT/MIDDLE on buttonpads (git-fixes).\n- Input: elan_i2c - fix regulator enable count imbalance after suspend/resume (git-fixes).\n- Input: elan_i2c - move regulator_[en|dis]able() out of elan_[en|dis]able_power() (git-fixes).\n- RDMA/bnxt_re: Scan the whole bitmap when checking if 'disabling RCFW with pending cmd-bit' (git-fixes).\n- RDMA/cma: Do not change route.addr.src_addr outside state checks (bsc#1181147).\n- RDMA/cma: Let cma_resolve_ib_dev() continue search even after empty entry (git-fixes).\n- RDMA/cma: Remove open coding of overflow checking for private_data_len (git-fixes).\n- RDMA/core: Do not infoleak GRH fields (git-fixes).\n- RDMA/core: Let ib_find_gid() continue search even after empty entry (git-fixes).\n- RDMA/cxgb4: Set queue pair state when being queried (git-fixes).\n- RDMA/hns: Validate the pkey index (git-fixes).\n- RDMA/ib_srp: Fix a deadlock (git-fixes).\n- RDMA/mlx4: Do not continue event handler after memory allocation failure (git-fixes).\n- RDMA/rtrs-clt: Fix possible double free in error case (jsc#SLE-15176).\n- RDMA/rxe: Fix a typo in opcode name (git-fixes).\n- RDMA/siw: Fix broken RDMA Read Fence/Resume logic (git-fixes).\n- RDMA/uverbs: Check for null return of kmalloc_array (git-fixes).\n- RDMA/uverbs: Remove the unnecessary assignment (git-fixes).\n- Revert 'USB: serial: ch341: add new Product ID for CH341A' (git-fixes).\n- SUNRPC: avoid race between mod_timer() and del_timer_sync() (bnc#1195403).\n- USB: gadget: validate endpoint index for xilinx udc (git-fixes).\n- USB: gadget: validate interface OS descriptor requests (git-fixes).\n- USB: hub: Clean up use of port initialization schemes and retries (git-fixes).\n- USB: serial: option: add Telit LE910R1 compositions (git-fixes).\n- USB: serial: option: add support for DW5829e (git-fixes).\n- USB: zaurus: support another broken Zaurus (git-fixes).\n- arm64: dts: rockchip: Switch RK3399-Gru DP to SPDIF output (git-fixes).\n- asix: fix uninit-value in asix_mdio_read() (git-fixes).\n- ata: pata_hpt37x: disable primary channel on HPT371 (git-fixes).\n- batman-adv: Do not expect inter-netns unique iflink indices (git-fixes).\n- batman-adv: Request iflink once in batadv-on-batadv check (git-fixes).\n- batman-adv: Request iflink once in batadv_get_real_netdevice (git-fixes).\n- blk-mq: do not free tags if the tag_set is used by other device in queue initialztion (bsc#1193787).\n- bnxt_en: Fix active FEC reporting to ethtool (jsc#SLE-16649).\n- bnxt_en: Fix incorrect multicast rx mask setting when not requested (git-fixes).\n- bnxt_en: Fix occasional ethtool -t loopback test failures (git-fixes).\n- bnxt_en: Fix offline ethtool selftest with RDMA enabled (git-fixes).\n- bonding: force carrier update when releasing slave (git-fixes).\n- can: gs_usb: change active_channels's type from atomic_t to u8 (git-fixes).\n- cgroup-v1: Correct privileges check in release_agent writes (bsc#1196723).\n- cgroup/cpuset: Fix 'suspicious RCU usage' lockdep warning (bsc#1196868).\n- clk: jz4725b: fix mmc0 clock gating (git-fixes).\n- cpufreq: schedutil: Use kobject release() method to free (git-fixes)\n- cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (bsc#1196866).\n- cputime, cpuacct: Include guest time in user time in (git-fixes)\n- dma-direct: Fix potential NULL pointer dereference (bsc#1196472 ltc#192278).\n- dma-mapping: Allow mixing bypass and mapped DMA operation (bsc#1196472 ltc#192278).\n- dmaengine: shdma: Fix runtime PM imbalance on error (git-fixes).\n- drm/amdgpu: disable MMHUB PG for Picasso (git-fixes).\n- drm/edid: Always set RGB444 (git-fixes).\n- drm/i915/dg1: Wait for pcode/uncore handshake at startup (bsc#1195211).\n- drm/i915/gen11+: Only load DRAM information from pcode (bsc#1195211).\n- drm/i915: Nuke not needed members of dram_info (bsc#1195211).\n- drm/i915: Remove memory frequency calculation (bsc#1195211).\n- drm/i915: Rename is_16gb_dimm to wm_lv_0_adjust_needed (bsc#1195211).\n- efivars: Respect 'block' flag in efivar_entry_set_safe() (git-fixes).\n- exfat: fix i_blocks for files truncated over 4 GiB (git-fixes).\n- exfat: fix incorrect loading of i_blocks for large files (git-fixes).\n- firmware: arm_scmi: Remove space in MODULE_ALIAS name (git-fixes).\n- gpio: rockchip: Reset int_bothedge when changing trigger (git-fixes).\n- gpio: tegra186: Fix chip_data type confusion (git-fixes).\n- gtp: remove useless rcu_read_lock() (git-fixes).\n- hamradio: fix macro redefine warning (git-fixes).\n- i2c: bcm2835: Avoid clock stretching timeouts (git-fixes).\n- iavf: Fix missing check for running netdev (git-fixes).\n- ice: initialize local variable 'tlv' (jsc#SLE-12878).\n- igc: igc_read_phy_reg_gpy: drop premature return (git-fixes).\n- igc: igc_write_phy_reg_gpy: drop premature return (git-fixes).\n- iio: Fix error handling for PM (git-fixes).\n- iio: adc: ad7124: fix mask used for setting AIN_BUFP & AIN_BUFM bits (git-fixes).\n- iio: adc: men_z188_adc: Fix a resource leak in an error handling path (git-fixes).\n- ixgbe: xsk: change !netif_carrier_ok() handling in ixgbe_xmit_zc() (git-fixes).\n- mac80211: fix forwarded mesh frames AC & queue selection (git-fixes).\n- mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work (git-fixes).\n- mac80211_hwsim: report NOACK frames in tx_status (git-fixes).\n- mask out added spinlock in rndis_params (git-fixes).\n- net/mlx5: Fix possible deadlock on rule deletion (git-fixes).\n- net/mlx5: Fix wrong limitation of metadata match on ecpf (git-fixes).\n- net/mlx5: Update the list of the PCI supported devices (git-fixes).\n- net/mlx5: Update the list of the PCI supported devices (git-fixes).\n- net/mlx5e: Fix modify header actions memory leak (git-fixes).\n- net/mlx5e: Fix page DMA map/unmap attributes (bsc#1196468).\n- net/mlx5e: Fix wrong return value on ioctl EEPROM query failure (git-fixes).\n- net/mlx5e: TC, Reject rules with drop and modify hdr action (git-fixes).\n- net/mlx5e: TC, Reject rules with forward and drop actions (git-fixes).\n- net/mlx5e: kTLS, Use CHECKSUM_UNNECESSARY for device-offloaded packets (jsc#SLE-15172).\n- net/sched: act_ct: Fix flow table lookup after ct clear or switching zones (jsc#SLE-15172).\n- net: dsa: mv88e6xxx: MV88E6097 does not support jumbo configuration (git-fixes).\n- net: ethernet: ti: cpsw: disable PTPv1 hw timestamping advertisement (git-fixes).\n- net: fix up skbs delta_truesize in UDP GRO frag_list (bsc#1176447).\n- net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes).\n- net: sfc: Replace in_interrupt() usage (git-fixes).\n- net: tipc: validate domain record count on input (bsc#1195254).\n- net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (git-fixes).\n- netfilter: nf_tables: fix memory leak during stateful obj update (bsc#1176447).\n- netsec: ignore 'phy-mode' device property on ACPI systems (git-fixes).\n- nfp: flower: Fix a potential leak in nfp_tunnel_add_shared_mac() (git-fixes).\n- nl80211: Handle nla_memdup failures in handle_nan_filter (git-fixes).\n- ntb: intel: fix port config status offset for SPR (git-fixes).\n- nvme-multipath: use vmalloc for ANA log buffer (bsc#1193787).\n- nvme-rdma: fix possible use-after-free in transport error_recovery work (git-fixes).\n- nvme-tcp: fix possible use-after-free in transport error_recovery work (git-fixes).\n- nvme: fix a possible use-after-free in controller reset during load (git-fixes).\n- powerpc/dma: Fallback to dma_ops when persistent memory present (bsc#1196472 ltc#192278). Update config files.\n- powerpc/fadump: register for fadump as early as possible (bsc#1179439 ltc#190038).\n- powerpc/mm: Remove dcache flush from memory remove (bsc#1196433 ltc#196449).\n- powerpc/powernv/memtrace: Fix dcache flushing (bsc#1196433 ltc#196449).\n- powerpc/pseries/iommu: Fix window size for direct mapping with pmem (bsc#1196472 ltc#192278).\n- sched/core: Mitigate race (git-fixes)\n- scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (git-fixes).\n- scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (git-fixes).\n- scsi: lpfc: Terminate string in lpfc_debugfs_nvmeio_trc_write() (git-fixes).\n- scsi: nsp_cs: Check of ioremap return value (git-fixes).\n- scsi: qedf: Fix potential dereference of NULL pointer (git-fixes).\n- scsi: smartpqi: Add PCI IDs (bsc#1196627).\n- scsi: ufs: Fix race conditions related to driver data (git-fixes).\n- selftests: mlxsw: tc_police_scale: Make test more robust (bsc#1176774).\n- soc: fsl: Correct MAINTAINERS database (QUICC ENGINE LIBRARY) (git-fixes).\n- soc: fsl: Correct MAINTAINERS database (SOC) (git-fixes).\n- soc: fsl: qe: Check of ioremap return value (git-fixes).\n- spi: spi-zynq-qspi: Fix a NULL pointer dereference in zynq_qspi_exec_mem_op() (git-fixes).\n- sr9700: sanity check for packet length (bsc#1196836).\n- tracing: Fix return value of __setup handlers (git-fixes).\n- tty: n_gsm: fix encoding of control signal octet bit DV (git-fixes).\n- tty: n_gsm: fix proper link termination after failed open (git-fixes).\n- usb: dwc2: use well defined macros for power_down (git-fixes).\n- usb: dwc3: gadget: Let the interrupt handler disable bottom halves (git-fixes).\n- usb: dwc3: pci: Fix Bay Trail phy GPIO mappings (git-fixes).\n- usb: gadget: rndis: add spinlock for rndis response list (git-fixes).\n- usb: hub: Fix usb enumeration issue due to address0 race (git-fixes).\n- vrf: Fix fast path output packet handling with async Netfilter rules (git-fixes).\n- xhci: Prevent futile URB re-submissions due to incorrect return value (git-fixes).\n- xhci: re-initialize the HC during resume if HCE was set (git-fixes).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36],{"_key":15},"CVE-2021-0920",{"_key":17},"CVE-2021-39657",{"_key":19},"CVE-2021-44879",{"_key":21},"CVE-2022-0487",{"_key":23},"CVE-2022-0617",{"_key":25},"CVE-2022-0644",{"_key":27},"CVE-2022-24448",{"_key":29},"CVE-2022-24958",{"_key":31},"CVE-2022-24959",{"_key":33},"CVE-2022-25258",{"_key":35},"CVE-2022-25636",{"_key":37},"CVE-2022-26490",[],[],[41,42,43,44,45,46,47,48,49,50,51,52],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},"2022-03-30T07:37:00Z","2026-02-04T04:10:14.840919Z",{"cisa_kev":56,"cisa_ransomware":56,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[58,64,69,73,77,81,85,89,93,97,101,105,109,113,117,121,125,129,133,137,141,145,149,153,157,161,165,169,173,177,181,185,189,193,197,201,205,209,213,218,222,226,230,234,238,242,246,250,254,258],{"url":59,"sources":60,"tags":62},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YVOKHN5NCU57OGTEBU36WJRTWHRBUST7/",[61],"osv_opensuse",[63],"Advisory",{"url":65,"sources":66,"tags":67},"https://bugzilla.suse.com/1176447",[61],[68],"REPORT",{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1176774",[61],[68],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1178134",[61],[68],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1179439",[61],[68],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1181147",[61],[68],{"url":86,"sources":87,"tags":88},"https://bugzilla.suse.com/1191428",[61],[68],{"url":90,"sources":91,"tags":92},"https://bugzilla.suse.com/1192273",[61],[68],{"url":94,"sources":95,"tags":96},"https://bugzilla.suse.com/1193731",[61],[68],{"url":98,"sources":99,"tags":100},"https://bugzilla.suse.com/1193787",[61],[68],{"url":102,"sources":103,"tags":104},"https://bugzilla.suse.com/1193864",[61],[68],{"url":106,"sources":107,"tags":108},"https://bugzilla.suse.com/1194463",[61],[68],{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1194516",[61],[68],{"url":114,"sources":115,"tags":116},"https://bugzilla.suse.com/1195211",[61],[68],{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1195254",[61],[68],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1195403",[61],[68],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1195612",[61],[68],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1195897",[61],[68],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1195905",[61],[68],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/1195939",[61],[68],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/1195949",[61],[68],{"url":146,"sources":147,"tags":148},"https://bugzilla.suse.com/1195987",[61],[68],{"url":150,"sources":151,"tags":152},"https://bugzilla.suse.com/1196079",[61],[68],{"url":154,"sources":155,"tags":156},"https://bugzilla.suse.com/1196095",[61],[68],{"url":158,"sources":159,"tags":160},"https://bugzilla.suse.com/1196132",[61],[68],{"url":162,"sources":163,"tags":164},"https://bugzilla.suse.com/1196155",[61],[68],{"url":166,"sources":167,"tags":168},"https://bugzilla.suse.com/1196299",[61],[68],{"url":170,"sources":171,"tags":172},"https://bugzilla.suse.com/1196301",[61],[68],{"url":174,"sources":175,"tags":176},"https://bugzilla.suse.com/1196433",[61],[68],{"url":178,"sources":179,"tags":180},"https://bugzilla.suse.com/1196468",[61],[68],{"url":182,"sources":183,"tags":184},"https://bugzilla.suse.com/1196472",[61],[68],{"url":186,"sources":187,"tags":188},"https://bugzilla.suse.com/1196627",[61],[68],{"url":190,"sources":191,"tags":192},"https://bugzilla.suse.com/1196723",[61],[68],{"url":194,"sources":195,"tags":196},"https://bugzilla.suse.com/1196779",[61],[68],{"url":198,"sources":199,"tags":200},"https://bugzilla.suse.com/1196830",[61],[68],{"url":202,"sources":203,"tags":204},"https://bugzilla.suse.com/1196836",[61],[68],{"url":206,"sources":207,"tags":208},"https://bugzilla.suse.com/1196866",[61],[68],{"url":210,"sources":211,"tags":212},"https://bugzilla.suse.com/1196868",[61],[68],{"url":214,"sources":215,"tags":216},"https://www.suse.com/security/cve/CVE-2021-0920",[61],[217],"WEB",{"url":219,"sources":220,"tags":221},"https://www.suse.com/security/cve/CVE-2021-39657",[61],[217],{"url":223,"sources":224,"tags":225},"https://www.suse.com/security/cve/CVE-2021-44879",[61],[217],{"url":227,"sources":228,"tags":229},"https://www.suse.com/security/cve/CVE-2022-0487",[61],[217],{"url":231,"sources":232,"tags":233},"https://www.suse.com/security/cve/CVE-2022-0617",[61],[217],{"url":235,"sources":236,"tags":237},"https://www.suse.com/security/cve/CVE-2022-0644",[61],[217],{"url":239,"sources":240,"tags":241},"https://www.suse.com/security/cve/CVE-2022-24448",[61],[217],{"url":243,"sources":244,"tags":245},"https://www.suse.com/security/cve/CVE-2022-24958",[61],[217],{"url":247,"sources":248,"tags":249},"https://www.suse.com/security/cve/CVE-2022-24959",[61],[217],{"url":251,"sources":252,"tags":253},"https://www.suse.com/security/cve/CVE-2022-25258",[61],[217],{"url":255,"sources":256,"tags":257},"https://www.suse.com/security/cve/CVE-2022-25636",[61],[217],{"url":259,"sources":260,"tags":261},"https://www.suse.com/security/cve/CVE-2022-26490",[61],[217],[],[],[],[266,279,284],{"ecosystem":267,"name":268,"vendor":269,"product":270,"cpe_part":9,"purl_type":271,"purl_namespace":269,"purl_name":270,"source":9,"versions":272},"openSUSE","kernel-azure","opensuse","kernel-azure&distro=openSUSE Leap 15.3","rpm",[273],{"version":274,"is_range":275,"range_type":276,"version_start":9,"version_start_type":9,"version_end":277,"version_end_type":278,"fixed_in":9},"lt5_3_18_150300_38_50_1",true,"ecosystem","5.3.18-150300.38.50.1","excluding",{"ecosystem":267,"name":280,"vendor":269,"product":281,"cpe_part":9,"purl_type":271,"purl_namespace":269,"purl_name":281,"source":9,"versions":282},"kernel-source-azure","kernel-source-azure&distro=openSUSE Leap 15.3",[283],{"version":274,"is_range":275,"range_type":276,"version_start":9,"version_start_type":9,"version_end":277,"version_end_type":278,"fixed_in":9},{"ecosystem":267,"name":285,"vendor":269,"product":286,"cpe_part":9,"purl_type":271,"purl_namespace":269,"purl_name":286,"source":9,"versions":287},"kernel-syms-azure","kernel-syms-azure&distro=openSUSE Leap 15.3",[288],{"version":274,"is_range":275,"range_type":276,"version_start":9,"version_start_type":9,"version_end":277,"version_end_type":278,"fixed_in":9}]