[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:0364-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":42,"duplicates":43,"related":44,"reserved_at":9,"published_at":59,"modified_at":60,"state":9,"summary":61,"references_raw":63,"kevs":300,"epss":9,"epss_history":301,"metrics":302,"affected":303},"SUSE-SU-2022:0364-1","Security update for the Linux Kernel\n\n\nThe SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254).\n- CVE-2021-3564: Fixed double-free memory corruption in the Linux kernel HCI device initialization subsystem that could have been used by attaching malicious HCI TTY Bluetooth devices. A local user could use this flaw to crash the system (bnc#1186207).\n- CVE-2020-28097: Fixed out-of-bounds read in vgacon subsystem that mishandled software scrollback (bnc#1187723).\n- CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem, that could have occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767).\n- CVE-2022-0322: Fixed SCTP issue with account stream padding length for reconf chunk (bsc#1194985).\n- CVE-2021-4135: Fixed zero-initialize memory inside netdevsim for new map's value in function nsim_bpf_map_alloc (bsc#1193927).\n- CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065).\n- CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864).\n- CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadget_dev_desc_UDC_show of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861).\n- CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880).\n- CVE-2021-4197: Use cgroup open-time credentials for process migraton perm checks (bsc#1194302).\n- CVE-2021-4202: Fixed NFC race condition by adding NCI_UNREG flag (bsc#1194529).\n- CVE-2021-4083: Fixed a read-after-free memory flaw inside the garbage collection for Unix domain socket file handlers when users call close() and fget() simultaneouslyand can potentially trigger a race condition (bnc#1193727).\n- CVE-2021-4149: Fixed btrfs unlock newly allocated extent buffer after error (bsc#1194001).\n\n\nThe following non-security bugs were fixed:\n\n- KVM: remember position in kvm->vcpus array (bsc#1190973).\n- KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1190973).\n- SUNRPC: Add basic load balancing to the transport switch - kabi fix. (bnc#1192729).\n- SUNRPC: Add basic load balancing to the transport switch. (bnc#1192729)\n- SUNRPC: Fix initialisation of struct rpc_xprt_switch (bnc#1192729).\n- SUNRPC: Optimise transport balancing code (bnc#1192729).\n- SUNRPC: Replace division by multiplication in calculation of queue length (bnc#1192729).\n- SUNRPC: Skip zero-refcount transports (bnc#1192729).\n- USB: serial: option: add Telit FN990 compositions (git-fixes).\n- bpf: Verifer, adjust_scalar_min_max_vals to always call update_reg_bounds() (bsc#1194227).\n- crypto: qat - fix undetected PFVF timeout in ACK loop (git-fixes).\n- ext4: set csum seed in tmp inode while migrating to extents (bsc#1195272).\n- fget: clarify and improve __fget_files() implementation (bsc#1193727).\n- hv_netvsc: Set needed_headroom according to VF (bsc#1193507).\n- ibmvnic: Allow extra failures before disabling (bsc#1195073 ltc#195713).\n- ibmvnic: do not spin in tasklet (bsc#1195073 ltc#195713).\n- ibmvnic: init ->running_cap_crqs early (bsc#1195073 ltc#195713).\n- ibmvnic: remove unused ->wait_capability (bsc#1195073 ltc#195713).\n- kABI fixup after adding vcpu_idx to struct kvm_cpu (bsc#1190973).\n- kabi: mask new member 'empty' of struct Qdisc (bsc#1183405).\n- kabi: revert drop of Qdisc::atomic_qlen (bsc#1183405).\n- kprobes: Limit max data_size of the kretprobe instances (bsc#1193669).\n- livepatch: Avoid CPU hogging with cond_resched (bsc#1071995).\n- memstick: rtsx_usb_ms: fix UAF (bsc#1194516).\n- mm/hwpoison: do not lock page again when me_huge_page() successfully recovers (bsc#1194814).\n- moxart: fix potential use-after-free on remove path (bsc#1194516).\n- net, xdp: Introduce xdp_init_buff utility routine (bsc#1193507).\n- net, xdp: Introduce xdp_prepare_buff utility routine (bsc#1193507).\n- net/sched: annotate lockless accesses to qdisc->empty (bsc#1183405).\n- net/sched: fix race between deactivation and dequeue for NOLOCK qdisc (bsc#1183405).\n- net/sched: pfifo_fast: fix wrong dereference in pfifo_fast_enqueue (bsc#1183405).\n- net/sched: pfifo_fast: fix wrong dereference when qdisc is reset (bsc#1183405).\n- net: Using proper atomic helper (bsc#1186222).\n- net: allow retransmitting a TCP packet if original is still in queue (bsc#1188605 bsc#1187428).\n- net: caif: avoid using qdisc_qlen() (bsc#1183405).\n- net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero (git-fixes).\n- net: dev: introduce support for sch BYPASS for lockless qdisc (bsc#1183405).\n- net: mana: Add RX fencing (bsc#1193507).\n- net: mana: Add XDP support (bsc#1193507).\n- net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc (bsc#1183405).\n- net: sched: Avoid using yield() in a busy waiting loop (bsc#1183405).\n- net: sched: add barrier to ensure correct ordering for lockless qdisc (bsc#1183405).\n- net: sched: add empty status flag for NOLOCK qdisc (bsc#1183405).\n- net: sched: always do stats accounting according to TCQ_F_CPUSTATS (bsc#1183405).\n- net: sched: avoid unnecessary seqcount operation for lockless qdisc (bsc#1183405).\n- net: sched: fix packet stuck problem for lockless qdisc (bsc#1183405).\n- net: sched: fix tx action reschedule issue with stopped queue (bsc#1183405).\n- net: sched: fix tx action rescheduling issue during deactivation (bsc#1183405).\n- net: sched: prefer qdisc_is_empty() over direct qlen access (bsc#1183405).\n- net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1183405).\n- net: sched: when clearing NOLOCK, clear TCQ_F_CPUSTATS, too (bsc#1183405).\n- net: tipc: validate domain record count on input (bsc#1195254).\n- net: usb: lan78xx: add Allied Telesis AT29M2-AF (git-fixes).\n- net_sched: avoid resetting active qdisc for multiple times (bsc#1183405).\n- net_sched: get rid of unnecessary dev_qdisc_reset() (bsc#1183405).\n- net_sched: use qdisc_reset() in qdisc_destroy() (bsc#1183405).\n- nfs: do not dirty kernel pages read by direct-io (bsc#1194410).\n- nvme: add 'iopolicy' module parameter (bsc#1177599 bsc#1193096).\n- nvme: return BLK_STS_TRANSPORT unless DNR for NVME_SC_NS_NOT_READY (bsc#1163405).\n- of: Add cpu node iterator for_each_of_cpu_node() (bsc#1065729).\n- of: Add device_type access helper functions (bsc#1065729).\n- of: Fix cpu node iterator to not ignore disabled cpu nodes (bsc#1065729).\n- of: Fix property name in of_node_get_device_type (bsc#1065729).\n- of: add node name compare helper functions (bsc#1065729).\n- powerpc/perf: Fix data source encodings for L2.1 and L3.1 accesses (bsc#1065729).\n- powerpc/prom_init: Fix improper check of prom_getprop() (bsc#1065729).\n- powerpc/pseries/cpuhp: cache node corrections (bsc#1065729).\n- powerpc/pseries/cpuhp: delete add/remove_by_count code (bsc#1065729).\n- powerpc/pseries/mobility: ignore ibm, platform-facilities updates (bsc#1065729).\n- powerpc/traps: do not enable irqs in _exception (bsc#1065729).\n- powerpc: add interrupt_cond_local_irq_enable helper (bsc#1065729).\n- s390/cio: make ccw_device_dma_* more robust (bsc#1193242).\n- s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193234).\n- s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194965).\n- select: Fix indefinitely sleeping task in poll_schedule_timeout() (bsc#1194027).\n- tpm: Check for integer overflow in tpm2_map_response_body() (bsc#1082555).\n- tpm: add request_locality before write TPM_INT_ENABLE (bsc#1082555).\n- tpm: fix potential NULL pointer access in tpm_del_char_device (bsc#1184209 ltc#190917 git-fixes bsc#1193660 ltc#195634).\n- tracing/kprobes: 'nmissed' not showed correctly for kretprobe (git-fixes).\n- tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (git-fixes).\n- ucsi_ccg: Check DEV_INT bit only when starting CCG4 (git-fixes).\n- usb: core: config: fix validation of wMaxPacketValue entries (git-fixes).\n- usbnet: fix error return code in usbnet_probe() (git-fixes).\n- usbnet: sanity check for maxpacket (git-fixes).\n- vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888).\n- virtio: write back F_VERSION_1 before validate (bsc#1193235).\n- x86/platform/uv: Add more to secondary CPU kdump info (bsc#1194493).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40],{"_key":15},"CVE-2020-28097",{"_key":17},"CVE-2021-3564",{"_key":19},"CVE-2021-39648",{"_key":21},"CVE-2021-39657",{"_key":23},"CVE-2021-4083",{"_key":25},"CVE-2021-4135",{"_key":27},"CVE-2021-4149",{"_key":29},"CVE-2021-4197",{"_key":31},"CVE-2021-4202",{"_key":33},"CVE-2021-44733",{"_key":35},"CVE-2022-0322",{"_key":37},"CVE-2022-0330",{"_key":39},"CVE-2022-0435",{"_key":41},"CVE-2022-22942",[],[],[45,46,47,48,49,50,51,52,53,54,55,56,57,58],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},"2022-02-10T16:03:37Z","2026-02-04T04:36:50.293028Z",{"cisa_kev":62,"cisa_ransomware":62,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[64,70,75,79,83,87,91,95,99,103,107,111,115,119,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187,191,195,199,203,207,211,215,219,223,227,231,235,239,243,248,252,256,260,264,268,272,276,280,284,288,292,296],{"url":65,"sources":66,"tags":68},"https://www.suse.com/support/update/announcement/2022/suse-su-20220364-1/",[67],"osv_suse",[69],"Advisory",{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1065729",[67],[74],"REPORT",{"url":76,"sources":77,"tags":78},"https://bugzilla.suse.com/1071995",[67],[74],{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/1082555",[67],[74],{"url":84,"sources":85,"tags":86},"https://bugzilla.suse.com/1163405",[67],[74],{"url":88,"sources":89,"tags":90},"https://bugzilla.suse.com/1177599",[67],[74],{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/1183405",[67],[74],{"url":96,"sources":97,"tags":98},"https://bugzilla.suse.com/1184209",[67],[74],{"url":100,"sources":101,"tags":102},"https://bugzilla.suse.com/1186207",[67],[74],{"url":104,"sources":105,"tags":106},"https://bugzilla.suse.com/1186222",[67],[74],{"url":108,"sources":109,"tags":110},"https://bugzilla.suse.com/1187428",[67],[74],{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/1187723",[67],[74],{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/1188605",[67],[74],{"url":120,"sources":121,"tags":122},"https://bugzilla.suse.com/1190973",[67],[74],{"url":124,"sources":125,"tags":126},"https://bugzilla.suse.com/1192729",[67],[74],{"url":128,"sources":129,"tags":130},"https://bugzilla.suse.com/1193096",[67],[74],{"url":132,"sources":133,"tags":134},"https://bugzilla.suse.com/1193234",[67],[74],{"url":136,"sources":137,"tags":138},"https://bugzilla.suse.com/1193235",[67],[74],{"url":140,"sources":141,"tags":142},"https://bugzilla.suse.com/1193242",[67],[74],{"url":144,"sources":145,"tags":146},"https://bugzilla.suse.com/1193507",[67],[74],{"url":148,"sources":149,"tags":150},"https://bugzilla.suse.com/1193660",[67],[74],{"url":152,"sources":153,"tags":154},"https://bugzilla.suse.com/1193669",[67],[74],{"url":156,"sources":157,"tags":158},"https://bugzilla.suse.com/1193727",[67],[74],{"url":160,"sources":161,"tags":162},"https://bugzilla.suse.com/1193767",[67],[74],{"url":164,"sources":165,"tags":166},"https://bugzilla.suse.com/1193861",[67],[74],{"url":168,"sources":169,"tags":170},"https://bugzilla.suse.com/1193864",[67],[74],{"url":172,"sources":173,"tags":174},"https://bugzilla.suse.com/1193927",[67],[74],{"url":176,"sources":177,"tags":178},"https://bugzilla.suse.com/1194001",[67],[74],{"url":180,"sources":181,"tags":182},"https://bugzilla.suse.com/1194027",[67],[74],{"url":184,"sources":185,"tags":186},"https://bugzilla.suse.com/1194227",[67],[74],{"url":188,"sources":189,"tags":190},"https://bugzilla.suse.com/1194302",[67],[74],{"url":192,"sources":193,"tags":194},"https://bugzilla.suse.com/1194410",[67],[74],{"url":196,"sources":197,"tags":198},"https://bugzilla.suse.com/1194493",[67],[74],{"url":200,"sources":201,"tags":202},"https://bugzilla.suse.com/1194516",[67],[74],{"url":204,"sources":205,"tags":206},"https://bugzilla.suse.com/1194529",[67],[74],{"url":208,"sources":209,"tags":210},"https://bugzilla.suse.com/1194814",[67],[74],{"url":212,"sources":213,"tags":214},"https://bugzilla.suse.com/1194880",[67],[74],{"url":216,"sources":217,"tags":218},"https://bugzilla.suse.com/1194888",[67],[74],{"url":220,"sources":221,"tags":222},"https://bugzilla.suse.com/1194965",[67],[74],{"url":224,"sources":225,"tags":226},"https://bugzilla.suse.com/1194985",[67],[74],{"url":228,"sources":229,"tags":230},"https://bugzilla.suse.com/1195065",[67],[74],{"url":232,"sources":233,"tags":234},"https://bugzilla.suse.com/1195073",[67],[74],{"url":236,"sources":237,"tags":238},"https://bugzilla.suse.com/1195254",[67],[74],{"url":240,"sources":241,"tags":242},"https://bugzilla.suse.com/1195272",[67],[74],{"url":244,"sources":245,"tags":246},"https://www.suse.com/security/cve/CVE-2020-28097",[67],[247],"WEB",{"url":249,"sources":250,"tags":251},"https://www.suse.com/security/cve/CVE-2021-3564",[67],[247],{"url":253,"sources":254,"tags":255},"https://www.suse.com/security/cve/CVE-2021-39648",[67],[247],{"url":257,"sources":258,"tags":259},"https://www.suse.com/security/cve/CVE-2021-39657",[67],[247],{"url":261,"sources":262,"tags":263},"https://www.suse.com/security/cve/CVE-2021-4083",[67],[247],{"url":265,"sources":266,"tags":267},"https://www.suse.com/security/cve/CVE-2021-4135",[67],[247],{"url":269,"sources":270,"tags":271},"https://www.suse.com/security/cve/CVE-2021-4149",[67],[247],{"url":273,"sources":274,"tags":275},"https://www.suse.com/security/cve/CVE-2021-4197",[67],[247],{"url":277,"sources":278,"tags":279},"https://www.suse.com/security/cve/CVE-2021-4202",[67],[247],{"url":281,"sources":282,"tags":283},"https://www.suse.com/security/cve/CVE-2021-44733",[67],[247],{"url":285,"sources":286,"tags":287},"https://www.suse.com/security/cve/CVE-2022-0322",[67],[247],{"url":289,"sources":290,"tags":291},"https://www.suse.com/security/cve/CVE-2022-0330",[67],[247],{"url":293,"sources":294,"tags":295},"https://www.suse.com/security/cve/CVE-2022-0435",[67],[247],{"url":297,"sources":298,"tags":299},"https://www.suse.com/security/cve/CVE-2022-22942",[67],[247],[],[],[],[304,317,321,325,329,333,340,345,350,354,359,363],{"ecosystem":305,"name":306,"vendor":307,"product":308,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":308,"source":9,"versions":310},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise High Availability Extension 12 SP5","rpm",[311],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},"lt4_12_14_122_110_1",true,"ecosystem","4.12.14-122.110.1","excluding",{"ecosystem":305,"name":306,"vendor":307,"product":318,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":318,"source":9,"versions":319},"kernel-default&distro=SUSE Linux Enterprise Live Patching 12 SP5",[320],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":306,"vendor":307,"product":322,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":322,"source":9,"versions":323},"kernel-default&distro=SUSE Linux Enterprise Server 12 SP5",[324],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":306,"vendor":307,"product":326,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":326,"source":9,"versions":327},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[328],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":306,"vendor":307,"product":330,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":330,"source":9,"versions":331},"kernel-default&distro=SUSE Linux Enterprise Workstation Extension 12 SP5",[332],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":334,"vendor":307,"product":335,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":335,"source":9,"versions":336},"kernel-docs","kernel-docs&distro=SUSE Linux Enterprise Software Development Kit 12 SP5",[337],{"version":338,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":339,"version_end_type":316,"fixed_in":9},"lt4_12_14_122_110_2","4.12.14-122.110.2",{"ecosystem":305,"name":341,"vendor":307,"product":342,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":342,"source":9,"versions":343},"kernel-obs-build","kernel-obs-build&distro=SUSE Linux Enterprise Software Development Kit 12 SP5",[344],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":346,"vendor":307,"product":347,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":347,"source":9,"versions":348},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Server 12 SP5",[349],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":346,"vendor":307,"product":351,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":351,"source":9,"versions":352},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[353],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":355,"vendor":307,"product":356,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":356,"source":9,"versions":357},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Server 12 SP5",[358],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":355,"vendor":307,"product":360,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":360,"source":9,"versions":361},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5",[362],{"version":312,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":315,"version_end_type":316,"fixed_in":9},{"ecosystem":305,"name":364,"vendor":307,"product":365,"cpe_part":9,"purl_type":309,"purl_namespace":307,"purl_name":365,"source":9,"versions":366},"kgraft-patch-SLE12-SP5_Update_28","kgraft-patch-SLE12-SP5_Update_28&distro=SUSE Linux Enterprise Live Patching 12 SP5",[367],{"version":368,"is_range":313,"range_type":314,"version_start":9,"version_start_type":9,"version_end":369,"version_end_type":316,"fixed_in":9},"lt1_8_3_2","1-8.3.2"]