[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:0761-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":30,"duplicates":31,"related":32,"reserved_at":9,"published_at":41,"modified_at":42,"state":9,"summary":43,"references_raw":45,"kevs":302,"epss":9,"epss_history":303,"metrics":304,"affected":305},"SUSE-SU-2022:0761-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes.\n\n\n- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).\n- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).\n- CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584).\n- CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079)\n- CVE-2022-0644: Fixed a denial of service by a local user. A assertion failure could be triggered in kernel_read_file_from_fd() (bsc#1196155).\n- CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987).\n- CVE-2022-24959: Fixed a memory leak in yam_siocdevprivate() in drivers/net/hamradio/yam.c (bsc#1195897).\n- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).\n\nThe following non-security bugs were fixed:\n\n- Bluetooth: bfusb: fix division by zero in send path (git-fixes).\n- EDAC/xgene: Fix deferred probing (bsc#1114648).\n- IB/rdmavt: Validate remote_addr during loopback atomic tests (bsc#1114685).\n- NFSv4.x: by default serialize open/close operations (bsc#1114893 bsc#1195934). Make this work-around optional\n- NFSv42: Do not fail clone() unless the OP_CLONE operation failed (git-fixes).\n- NFSv42: Fix pagecache invalidation after COPY/CLONE (git-fixes).\n- NFSv4: Handle case where the lookup of a directory fails (git-fixes).\n- NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes).\n- PCI: Add function 1 DMA alias quirk for Marvell 88SE9125 SATA controller (git-fixes).\n- RDMA/bnxt_re: Fix query SRQ failure (bsc#1050244).\n- RDMA/mlx5: Set user priority for DCT (bsc#1103991).\n- RDMA/netlink: Add __maybe_unused to static inline in C file (bsc#1046306).\n- crypto: af_alg - get_page upon reassignment to TX SGL (bsc#1195840).\n- cxgb4: fix eeprom len when diagnostics not implemented (bsc#1097585 bsc#1097586 bsc#1097587 bsc#1097588 bsc#1097583 bsc#1097584).\n- e1000e: Fix packet loss on Tiger Lake and later (bsc#1158533).\n- ext4: avoid trim error on fs with small groups (bsc#1191271).\n- fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1195795).\n- gve: Add RX context (bsc#1191655).\n- gve: Add a jumbo-frame device option (bsc#1191655).\n- gve: Add consumed counts to ethtool stats (bsc#1191655).\n- gve: Add netif_set_xps_queue call (bsc#1191655).\n- gve: Add optional metadata descriptor type GVE_TXD_MTD (bsc#1191655).\n- gve: Add rx buffer pagecnt bias (bsc#1191655).\n- gve: Allow pageflips on larger pages (bsc#1191655).\n- gve: Avoid freeing NULL pointer (bsc#1191655).\n- gve: Correct available tx qpl check (bsc#1191655).\n- gve: Correct order of processing device options (bsc#1191655).\n- gve: DQO: avoid unused variable warnings (bsc#1191655).\n- gve: Do lazy cleanup in TX path (bsc#1191655).\n- gve: Fix GFP flags when allocing pages (bsc#1191655).\n- gve: Implement packet continuation for RX (bsc#1191655).\n- gve: Implement suspend/resume/shutdown (bsc#1191655).\n- gve: Move the irq db indexes out of the ntfy block struct (bsc#1191655).\n- gve: Properly handle errors in gve_assign_qpl (bsc#1191655).\n- gve: Recording rx queue before sending to napi (bsc#1191655).\n- gve: Switch to use napi_complete_done (bsc#1191655).\n- gve: Track RX buffer allocation failures (bsc#1191655).\n- gve: Update gve_free_queue_page_list signature (bsc#1191655).\n- gve: Use kvcalloc() instead of kvzalloc() (bsc#1191655).\n- gve: fix for null pointer dereference (bsc#1191655).\n- gve: fix gve_get_stats() (bsc#1191655).\n- gve: fix the wrong AdminQ buffer queue index check (bsc#1191655).\n- gve: fix unmatched u64_stats_update_end() (bsc#1191655).\n- gve: remove memory barrier around seqno (bsc#1191655).\n- gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1191655).\n- i40e: Fix changing previously set num_queue_pairs for PFs (bsc#1094978).\n- i40e: Fix correct max_pkt_size on VF RX queue (bsc#1101816 ).\n- i40e: Fix creation of first queue by omitting it if is not power of two (bsc#1101816).\n- i40e: Fix display error code in dmesg (bsc#1109837 bsc#1111981 ).\n- i40e: Fix for displaying message regarding NVM version (jsc#SLE-4797).\n- i40e: Fix freeing of uninitialized misc IRQ vector (bsc#1101816 ).\n- i40e: Fix ping is lost after configuring ADq on VF (bsc#1094978).\n- i40e: Fix pre-set max number of queues for VF (bsc#1111981 ).\n- i40e: Increase delay to 1 s after global EMP reset (bsc#1101816 ).\n- iavf: Fix limit of total number of queues to active queues of VF (bsc#1111981).\n- iavf: prevent accidental free of filter structure (bsc#1111981 ).\n- ibmvnic: Allow queueing resets during probe (bsc#1196516 ltc#196391).\n- ibmvnic: Update driver return codes (bsc#1196516 ltc#196391).\n- ibmvnic: clear fop when retrying probe (bsc#1196516 ltc#196391).\n- ibmvnic: complete init_done on transport events (bsc#1196516 ltc#196391).\n- ibmvnic: define flush_reset_queue helper (bsc#1196516 ltc#196391).\n- ibmvnic: free reset-work-item when flushing (bsc#1196516 ltc#196391).\n- ibmvnic: init init_done_rc earlier (bsc#1196516 ltc#196391).\n- ibmvnic: initialize rc before completing wait (bsc#1196516 ltc#196391).\n- ibmvnic: register netdev after init of adapter (bsc#1196516 ltc#196391).\n- ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815).\n- ice: Delete always true check of PF pointer (bsc#1118661 ).\n- ice: ignore dropped packets during init (bsc#1118661 ).\n- igb: Fix removal of unicast MAC filters of VFs (bsc#1117495).\n- ixgbevf: Require large buffers for build_skb on 82599VF (bsc#1101674).\n- kabi: Hide changes to s390/AP structures (jsc#SLE-20809).\n- lib/iov_iter: initialize 'flags' in new pipe_buffer (bsc#1196584).\n- mqprio: Correct stats in mqprio_dump_class_stats() (bsc#1109837).\n- net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes).\n- net: Prevent infinite while loop in skb_tx_hash() (bsc#1109837).\n- net: ena: Fix error handling when calculating max IO queues number (bsc#1174852).\n- net: ena: Fix undefined state when tx request id is out of bounds (bsc#1174852).\n- net: marvell: mvpp2: Fix the computation of shared CPUs (bsc#1119113).\n- net: phylink: avoid mvneta warning when setting pause parameters (bsc#1119113).\n- net: usb: pegasus: Do not drop long Ethernet frames (git-fixes).\n- nfsd: fix use-after-free due to delegation race (git-fixes).\n- phylib: fix potential use-after-free (bsc#1119113).\n- platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (bsc#1112374).\n- powerpc/64s: Fix debugfs_simple_attr.cocci warnings (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).\n- powerpc/pseries/ddw: Revert 'Extend upper limit for huge DMA window for persistent memory' (bsc#1195995 ltc#196394).\n- powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451).\n- powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).\n- qed: Handle management FW error (git-fixes).\n- qed: rdma - do not wait for resources under hw error recovery flow (bsc#1136460 jsc#SLE-4691 bsc#1136461 jsc#SLE-4692).\n- rndis_host: support Hytera digital radios (git-fixes).\n- s390/AP: support new dynamic AP bus size limit (jsc#SLE-20809).\n- s390/ap: rework crypto config info and default domain code (jsc#SLE-20809).\n- s390/cpumf: Support for CPU Measurement Facility CSVN 7 (bsc#1195080 LTC#196090).\n- s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (bsc#1195080 LTC#196090).\n- s390/hypfs: include z/VM guests with access control group set (bsc#1195638 LTC#196354).\n- scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put() (git-fixes).\n- scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop (bsc#1189126).\n- scsi: lpfc: Terminate string in lpfc_debugfs_nvmeio_trc_write() (git-fixes).\n- scsi: nsp_cs: Check of ioremap return value (git-fixes).\n- scsi: qedf: Fix potential dereference of NULL pointer (git-fixes).\n- scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823).\n- scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823).\n- scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823).\n- scsi: qla2xxx: Add retry for exec firmware (bsc#1195823).\n- scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823).\n- scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823).\n- scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823).\n- scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823).\n- scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823).\n- scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823).\n- scsi: qla2xxx: Fix unmap of already freed sgl (bsc#1195823).\n- scsi: qla2xxx: Fix warning for missing error code (bsc#1195823).\n- scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823).\n- scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823).\n- scsi: qla2xxx: Implement ref count for SRB (bsc#1195823).\n- scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823).\n- scsi: qla2xxx: Remove a declaration (bsc#1195823).\n- scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823).\n- scsi: qla2xxx: Return -ENOMEM if kzalloc() fails (bsc#1195823).\n- scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823).\n- scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823).\n- scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823).\n- scsi: qla2xxx: edif: Fix clang warning (bsc#1195823).\n- scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823).\n- scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823).\n- scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823).\n- scsi: qla2xxx: edif: Tweak trace message (bsc#1195823).\n- scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select() (git-fixes).\n- scsi: ufs: Fix race conditions related to driver data (git-fixes).\n- scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (bsc#1195377 LTC#196245).\n- sunrpc/auth_gss: support timeout on gss upcalls (bsc#1193857).\n- tracing: Dump stacktrace trigger to the corresponding instance (git-fixes).\n- tracing: Have traceon and traceoff trigger honor the instance (git-fixes).\n- usb: common: ulpi: Fix crash in ulpi_match() (git-fixes).\n- usb: typec: tcpm: Do not disconnect while receiving VBUS off (git-fixes).\n",null,[],[],[],[14,16,18,20,22,24,26,28],{"_key":15},"CVE-2021-44879",{"_key":17},"CVE-2022-0001",{"_key":19},"CVE-2022-0002",{"_key":21},"CVE-2022-0492",{"_key":23},"CVE-2022-0617",{"_key":25},"CVE-2022-0644",{"_key":27},"CVE-2022-0847",{"_key":29},"CVE-2022-24959",[],[],[33,34,35,36,37,38,39,40],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},"2022-03-09T13:27:14Z","2026-02-04T02:14:39.902506Z",{"cisa_kev":44,"cisa_ransomware":44,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[46,52,57,61,65,69,73,77,81,85,89,93,97,101,105,109,113,117,121,125,129,133,137,141,145,149,153,157,161,165,169,173,177,181,185,189,193,197,201,205,209,213,217,221,225,229,233,237,241,245,249,253,257,261,265,269,274,278,282,286,290,294,298],{"url":47,"sources":48,"tags":50},"https://www.suse.com/support/update/announcement/2022/suse-su-20220761-1/",[49],"osv_suse",[51],"Advisory",{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1046306",[49],[56],"REPORT",{"url":58,"sources":59,"tags":60},"https://bugzilla.suse.com/1050244",[49],[56],{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1089644",[49],[56],{"url":66,"sources":67,"tags":68},"https://bugzilla.suse.com/1094978",[49],[56],{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1097583",[49],[56],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1097584",[49],[56],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1097585",[49],[56],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1097586",[49],[56],{"url":86,"sources":87,"tags":88},"https://bugzilla.suse.com/1097587",[49],[56],{"url":90,"sources":91,"tags":92},"https://bugzilla.suse.com/1097588",[49],[56],{"url":94,"sources":95,"tags":96},"https://bugzilla.suse.com/1101674",[49],[56],{"url":98,"sources":99,"tags":100},"https://bugzilla.suse.com/1101816",[49],[56],{"url":102,"sources":103,"tags":104},"https://bugzilla.suse.com/1103991",[49],[56],{"url":106,"sources":107,"tags":108},"https://bugzilla.suse.com/1109837",[49],[56],{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1111981",[49],[56],{"url":114,"sources":115,"tags":116},"https://bugzilla.suse.com/1112374",[49],[56],{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1114648",[49],[56],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1114685",[49],[56],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1114893",[49],[56],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1117495",[49],[56],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1118661",[49],[56],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/1119113",[49],[56],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/1136460",[49],[56],{"url":146,"sources":147,"tags":148},"https://bugzilla.suse.com/1136461",[49],[56],{"url":150,"sources":151,"tags":152},"https://bugzilla.suse.com/1157038",[49],[56],{"url":154,"sources":155,"tags":156},"https://bugzilla.suse.com/1157923",[49],[56],{"url":158,"sources":159,"tags":160},"https://bugzilla.suse.com/1158533",[49],[56],{"url":162,"sources":163,"tags":164},"https://bugzilla.suse.com/1174852",[49],[56],{"url":166,"sources":167,"tags":168},"https://bugzilla.suse.com/1185973",[49],[56],{"url":170,"sources":171,"tags":172},"https://bugzilla.suse.com/1187716",[49],[56],{"url":174,"sources":175,"tags":176},"https://bugzilla.suse.com/1189126",[49],[56],{"url":178,"sources":179,"tags":180},"https://bugzilla.suse.com/1191271",[49],[56],{"url":182,"sources":183,"tags":184},"https://bugzilla.suse.com/1191580",[49],[56],{"url":186,"sources":187,"tags":188},"https://bugzilla.suse.com/1191655",[49],[56],{"url":190,"sources":191,"tags":192},"https://bugzilla.suse.com/1193857",[49],[56],{"url":194,"sources":195,"tags":196},"https://bugzilla.suse.com/1195080",[49],[56],{"url":198,"sources":199,"tags":200},"https://bugzilla.suse.com/1195377",[49],[56],{"url":202,"sources":203,"tags":204},"https://bugzilla.suse.com/1195536",[49],[56],{"url":206,"sources":207,"tags":208},"https://bugzilla.suse.com/1195543",[49],[56],{"url":210,"sources":211,"tags":212},"https://bugzilla.suse.com/1195638",[49],[56],{"url":214,"sources":215,"tags":216},"https://bugzilla.suse.com/1195795",[49],[56],{"url":218,"sources":219,"tags":220},"https://bugzilla.suse.com/1195823",[49],[56],{"url":222,"sources":223,"tags":224},"https://bugzilla.suse.com/1195840",[49],[56],{"url":226,"sources":227,"tags":228},"https://bugzilla.suse.com/1195897",[49],[56],{"url":230,"sources":231,"tags":232},"https://bugzilla.suse.com/1195908",[49],[56],{"url":234,"sources":235,"tags":236},"https://bugzilla.suse.com/1195934",[49],[56],{"url":238,"sources":239,"tags":240},"https://bugzilla.suse.com/1195987",[49],[56],{"url":242,"sources":243,"tags":244},"https://bugzilla.suse.com/1195995",[49],[56],{"url":246,"sources":247,"tags":248},"https://bugzilla.suse.com/1196079",[49],[56],{"url":250,"sources":251,"tags":252},"https://bugzilla.suse.com/1196155",[49],[56],{"url":254,"sources":255,"tags":256},"https://bugzilla.suse.com/1196400",[49],[56],{"url":258,"sources":259,"tags":260},"https://bugzilla.suse.com/1196516",[49],[56],{"url":262,"sources":263,"tags":264},"https://bugzilla.suse.com/1196584",[49],[56],{"url":266,"sources":267,"tags":268},"https://bugzilla.suse.com/1196612",[49],[56],{"url":270,"sources":271,"tags":272},"https://www.suse.com/security/cve/CVE-2021-44879",[49],[273],"WEB",{"url":275,"sources":276,"tags":277},"https://www.suse.com/security/cve/CVE-2022-0001",[49],[273],{"url":279,"sources":280,"tags":281},"https://www.suse.com/security/cve/CVE-2022-0002",[49],[273],{"url":283,"sources":284,"tags":285},"https://www.suse.com/security/cve/CVE-2022-0492",[49],[273],{"url":287,"sources":288,"tags":289},"https://www.suse.com/security/cve/CVE-2022-0617",[49],[273],{"url":291,"sources":292,"tags":293},"https://www.suse.com/security/cve/CVE-2022-0644",[49],[273],{"url":295,"sources":296,"tags":297},"https://www.suse.com/security/cve/CVE-2022-0847",[49],[273],{"url":299,"sources":300,"tags":301},"https://www.suse.com/security/cve/CVE-2022-24959",[49],[273],[],[],[],[306,319,324,329],{"ecosystem":307,"name":308,"vendor":309,"product":310,"cpe_part":9,"purl_type":311,"purl_namespace":309,"purl_name":310,"source":9,"versions":312},"SUSE Linux Enterprise","kernel-rt_debug","suse","kernel-rt_debug&distro=SUSE Linux Enterprise Real Time 12 SP5","rpm",[313],{"version":314,"is_range":315,"range_type":316,"version_start":9,"version_start_type":9,"version_end":317,"version_end_type":318,"fixed_in":9},"lt4_12_14_10_81_1",true,"ecosystem","4.12.14-10.81.1","excluding",{"ecosystem":307,"name":320,"vendor":309,"product":321,"cpe_part":9,"purl_type":311,"purl_namespace":309,"purl_name":321,"source":9,"versions":322},"kernel-rt","kernel-rt&distro=SUSE Linux Enterprise Real Time 12 SP5",[323],{"version":314,"is_range":315,"range_type":316,"version_start":9,"version_start_type":9,"version_end":317,"version_end_type":318,"fixed_in":9},{"ecosystem":307,"name":325,"vendor":309,"product":326,"cpe_part":9,"purl_type":311,"purl_namespace":309,"purl_name":326,"source":9,"versions":327},"kernel-source-rt","kernel-source-rt&distro=SUSE Linux Enterprise Real Time 12 SP5",[328],{"version":314,"is_range":315,"range_type":316,"version_start":9,"version_start_type":9,"version_end":317,"version_end_type":318,"fixed_in":9},{"ecosystem":307,"name":330,"vendor":309,"product":331,"cpe_part":9,"purl_type":311,"purl_namespace":309,"purl_name":331,"source":9,"versions":332},"kernel-syms-rt","kernel-syms-rt&distro=SUSE Linux Enterprise Real Time 12 SP5",[333],{"version":314,"is_range":315,"range_type":316,"version_start":9,"version_start_type":9,"version_end":317,"version_end_type":318,"fixed_in":9}]