SUSE-SU-2022:0762-1

Advisory lineage Upstream: 7 Downstream: 0
Published: 08 Mar 2022, 18:07
Last modified:04 Feb 2026, 04:16

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

08 Mar 2022, 18:07
Published
Vulnerability first disclosed
04 Feb 2026, 04:16
Last Modified
Vulnerability information updated

Description

Security update for the Linux Kernel The SUSE Linux Enterprise 12 SP3 kernel was updated to receive various security and bugfixes. Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated. The following security bugs were fixed: - CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580). - CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580). - CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079) - CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543). - CVE-2022-24448: Fixed an issue in fs/nfs/dir.c. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612). - CVE-2021-0920: Fixed a local privilege escalation due to a use-after-free bug in unix_gc (bsc#1193731). - CVE-2016-10905: Fixed a use-after-free is gfs2_clear_rgrpd() and read_rindex_entry() (bsc#1146312).

Affected Systems

  • susekernel-default&distro=HPE Helion OpenStack 8

    < 4.4.180-94.156.1

  • susekernel-default&distro=SUSE Linux Enterprise High Availability Extension 12 SP3

    < 4.4.180-94.156.1

  • susekernel-default&distro=SUSE Linux Enterprise Server 12 SP3-BCL

    < 4.4.180-94.156.1

  • susekernel-default&distro=SUSE Linux Enterprise Server 12 SP3-LTSS

    < 4.4.180-94.156.1

  • susekernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 4.4.180-94.156.1

  • susekernel-default&distro=SUSE OpenStack Cloud 8

    < 4.4.180-94.156.1

  • susekernel-default&distro=SUSE OpenStack Cloud Crowbar 8

    < 4.4.180-94.156.1

  • susekernel-source&distro=HPE Helion OpenStack 8

    < 4.4.180-94.156.1

  • susekernel-source&distro=SUSE Linux Enterprise Server 12 SP3-BCL

    < 4.4.180-94.156.1

  • susekernel-source&distro=SUSE Linux Enterprise Server 12 SP3-LTSS

    < 4.4.180-94.156.1

  • susekernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 4.4.180-94.156.1

  • susekernel-source&distro=SUSE OpenStack Cloud 8

    < 4.4.180-94.156.1

  • susekernel-source&distro=SUSE OpenStack Cloud Crowbar 8

    < 4.4.180-94.156.1

  • susekernel-syms&distro=HPE Helion OpenStack 8

    < 4.4.180-94.156.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server 12 SP3-BCL

    < 4.4.180-94.156.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server 12 SP3-LTSS

    < 4.4.180-94.156.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 4.4.180-94.156.1

  • susekernel-syms&distro=SUSE OpenStack Cloud 8

    < 4.4.180-94.156.1

  • susekernel-syms&distro=SUSE OpenStack Cloud Crowbar 8

    < 4.4.180-94.156.1

  • susekgraft-patch-SLE12-SP3_Update_43&distro=HPE Helion OpenStack 8

    < 1-4.3.1

  • susekgraft-patch-SLE12-SP3_Update_43&distro=SUSE Linux Enterprise Server 12 SP3-LTSS

    < 1-4.3.1

  • susekgraft-patch-SLE12-SP3_Update_43&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3

    < 1-4.3.1

  • susekgraft-patch-SLE12-SP3_Update_43&distro=SUSE OpenStack Cloud 8

    < 1-4.3.1

  • susekgraft-patch-SLE12-SP3_Update_43&distro=SUSE OpenStack Cloud Crowbar 8

    < 1-4.3.1

References (20)