[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:2393-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":56,"duplicates":57,"related":58,"reserved_at":9,"published_at":80,"modified_at":81,"state":9,"summary":82,"references_raw":84,"kevs":285,"epss":9,"epss_history":286,"metrics":287,"affected":288},"SUSE-SU-2022:2393-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657).\n- CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487).\n- CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619).\n- CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692)\n- CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604).\n- CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013).\n- CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599).\n- CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251).\n- CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762).\n- CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050).\n- CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bsc#1177282)\n- CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space (bsc#1200144).\n- CVE-2022-1975: Fixed a bug that allows an attacker to crash the linux kernel by simulating nfc device from user-space (bsc#1200143).\n- CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507).\n- CVE-2022-1184: Fixed a use-after-free and memory errors in ext4 when mounting and operating on a corrupted image (bsc#1198577).\n- CVE-2022-21499: Lock down kgdb to prohibit secure-boot bypass (bsc#1199426).\n- CVE-2019-19377: Fixed a user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image (bsc#1158266).\n\nThe following non-security bugs were fixed:\n\n- btrfs: tree-checker: fix incorrect printk format (bsc#1200249).\n- exec: Force single empty string when argv is empty (bsc#1200571).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54],{"_key":15},"CVE-2019-19377",{"_key":17},"CVE-2020-26541",{"_key":19},"CVE-2021-26341",{"_key":21},"CVE-2021-4157",{"_key":23},"CVE-2022-1184",{"_key":25},"CVE-2022-1679",{"_key":27},"CVE-2022-1729",{"_key":29},"CVE-2022-1974",{"_key":31},"CVE-2022-1975",{"_key":33},"CVE-2022-20132",{"_key":35},"CVE-2022-20141",{"_key":37},"CVE-2022-20154",{"_key":39},"CVE-2022-21499",{"_key":41},"CVE-2022-2318",{"_key":43},"CVE-2022-26365",{"_key":45},"CVE-2022-29900",{"_key":47},"CVE-2022-29901",{"_key":49},"CVE-2022-33740",{"_key":51},"CVE-2022-33741",{"_key":53},"CVE-2022-33742",{"_key":55},"CVE-2022-33981",[],[],[59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},"2022-07-14T07:27:37Z","2026-02-04T03:05:03.323551Z",{"cisa_kev":83,"cisa_ransomware":83,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[85,91,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,156,160,164,168,172,176,180,184,188,192,196,200,205,209,213,217,221,225,229,233,237,241,245,249,253,257,261,265,269,273,277,281],{"url":86,"sources":87,"tags":89},"https://www.suse.com/support/update/announcement/2022/suse-su-20222393-1/",[88],"osv_suse",[90],"Advisory",{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/1158266",[88],[95],"REPORT",{"url":97,"sources":98,"tags":99},"https://bugzilla.suse.com/1162338",[88],[95],{"url":101,"sources":102,"tags":103},"https://bugzilla.suse.com/1162369",[88],[95],{"url":105,"sources":106,"tags":107},"https://bugzilla.suse.com/1173871",[88],[95],{"url":109,"sources":110,"tags":111},"https://bugzilla.suse.com/1177282",[88],[95],{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/1194013",[88],[95],{"url":117,"sources":118,"tags":119},"https://bugzilla.suse.com/1196901",[88],[95],{"url":121,"sources":122,"tags":123},"https://bugzilla.suse.com/1198577",[88],[95],{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/1199426",[88],[95],{"url":129,"sources":130,"tags":131},"https://bugzilla.suse.com/1199487",[88],[95],{"url":133,"sources":134,"tags":135},"https://bugzilla.suse.com/1199507",[88],[95],{"url":137,"sources":138,"tags":139},"https://bugzilla.suse.com/1199657",[88],[95],{"url":141,"sources":142,"tags":143},"https://bugzilla.suse.com/1200059",[88],[95],{"url":145,"sources":146,"tags":147},"https://bugzilla.suse.com/1200143",[88],[95],{"url":149,"sources":150,"tags":151},"https://bugzilla.suse.com/1200144",[88],[95],{"url":153,"sources":154,"tags":155},"https://bugzilla.suse.com/1200249",[88],[95],{"url":157,"sources":158,"tags":159},"https://bugzilla.suse.com/1200571",[88],[95],{"url":161,"sources":162,"tags":163},"https://bugzilla.suse.com/1200599",[88],[95],{"url":165,"sources":166,"tags":167},"https://bugzilla.suse.com/1200604",[88],[95],{"url":169,"sources":170,"tags":171},"https://bugzilla.suse.com/1200605",[88],[95],{"url":173,"sources":174,"tags":175},"https://bugzilla.suse.com/1200608",[88],[95],{"url":177,"sources":178,"tags":179},"https://bugzilla.suse.com/1200619",[88],[95],{"url":181,"sources":182,"tags":183},"https://bugzilla.suse.com/1200692",[88],[95],{"url":185,"sources":186,"tags":187},"https://bugzilla.suse.com/1200762",[88],[95],{"url":189,"sources":190,"tags":191},"https://bugzilla.suse.com/1201050",[88],[95],{"url":193,"sources":194,"tags":195},"https://bugzilla.suse.com/1201080",[88],[95],{"url":197,"sources":198,"tags":199},"https://bugzilla.suse.com/1201251",[88],[95],{"url":201,"sources":202,"tags":203},"https://www.suse.com/security/cve/CVE-2019-19377",[88],[204],"WEB",{"url":206,"sources":207,"tags":208},"https://www.suse.com/security/cve/CVE-2020-26541",[88],[204],{"url":210,"sources":211,"tags":212},"https://www.suse.com/security/cve/CVE-2021-26341",[88],[204],{"url":214,"sources":215,"tags":216},"https://www.suse.com/security/cve/CVE-2021-4157",[88],[204],{"url":218,"sources":219,"tags":220},"https://www.suse.com/security/cve/CVE-2022-1184",[88],[204],{"url":222,"sources":223,"tags":224},"https://www.suse.com/security/cve/CVE-2022-1679",[88],[204],{"url":226,"sources":227,"tags":228},"https://www.suse.com/security/cve/CVE-2022-1729",[88],[204],{"url":230,"sources":231,"tags":232},"https://www.suse.com/security/cve/CVE-2022-1974",[88],[204],{"url":234,"sources":235,"tags":236},"https://www.suse.com/security/cve/CVE-2022-1975",[88],[204],{"url":238,"sources":239,"tags":240},"https://www.suse.com/security/cve/CVE-2022-20132",[88],[204],{"url":242,"sources":243,"tags":244},"https://www.suse.com/security/cve/CVE-2022-20141",[88],[204],{"url":246,"sources":247,"tags":248},"https://www.suse.com/security/cve/CVE-2022-20154",[88],[204],{"url":250,"sources":251,"tags":252},"https://www.suse.com/security/cve/CVE-2022-21499",[88],[204],{"url":254,"sources":255,"tags":256},"https://www.suse.com/security/cve/CVE-2022-2318",[88],[204],{"url":258,"sources":259,"tags":260},"https://www.suse.com/security/cve/CVE-2022-26365",[88],[204],{"url":262,"sources":263,"tags":264},"https://www.suse.com/security/cve/CVE-2022-29900",[88],[204],{"url":266,"sources":267,"tags":268},"https://www.suse.com/security/cve/CVE-2022-29901",[88],[204],{"url":270,"sources":271,"tags":272},"https://www.suse.com/security/cve/CVE-2022-33740",[88],[204],{"url":274,"sources":275,"tags":276},"https://www.suse.com/security/cve/CVE-2022-33741",[88],[204],{"url":278,"sources":279,"tags":280},"https://www.suse.com/security/cve/CVE-2022-33742",[88],[204],{"url":282,"sources":283,"tags":284},"https://www.suse.com/security/cve/CVE-2022-33981",[88],[204],[],[],[],[289,302,306,310,314,318,322,327,331,335,339,344,348,352,356],{"ecosystem":290,"name":291,"vendor":292,"product":293,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":293,"source":9,"versions":295},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise High Availability Extension 12 SP4","rpm",[296],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},"lt4_12_14_95_102_1",true,"ecosystem","4.12.14-95.102.1","excluding",{"ecosystem":290,"name":291,"vendor":292,"product":303,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":303,"source":9,"versions":304},"kernel-default&distro=SUSE Linux Enterprise Live Patching 12 SP4",[305],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":291,"vendor":292,"product":307,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":307,"source":9,"versions":308},"kernel-default&distro=SUSE Linux Enterprise Server 12 SP4-LTSS",[309],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":291,"vendor":292,"product":311,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":311,"source":9,"versions":312},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4",[313],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":291,"vendor":292,"product":315,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":315,"source":9,"versions":316},"kernel-default&distro=SUSE OpenStack Cloud 9",[317],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":291,"vendor":292,"product":319,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":319,"source":9,"versions":320},"kernel-default&distro=SUSE OpenStack Cloud Crowbar 9",[321],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":323,"vendor":292,"product":324,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":324,"source":9,"versions":325},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Server 12 SP4-LTSS",[326],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":323,"vendor":292,"product":328,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":328,"source":9,"versions":329},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4",[330],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":323,"vendor":292,"product":332,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":332,"source":9,"versions":333},"kernel-source&distro=SUSE OpenStack Cloud 9",[334],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":323,"vendor":292,"product":336,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":336,"source":9,"versions":337},"kernel-source&distro=SUSE OpenStack Cloud Crowbar 9",[338],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":340,"vendor":292,"product":341,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":341,"source":9,"versions":342},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Server 12 SP4-LTSS",[343],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":340,"vendor":292,"product":345,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":345,"source":9,"versions":346},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4",[347],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":340,"vendor":292,"product":349,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":349,"source":9,"versions":350},"kernel-syms&distro=SUSE OpenStack Cloud 9",[351],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":340,"vendor":292,"product":353,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":353,"source":9,"versions":354},"kernel-syms&distro=SUSE OpenStack Cloud Crowbar 9",[355],{"version":297,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":300,"version_end_type":301,"fixed_in":9},{"ecosystem":290,"name":357,"vendor":292,"product":358,"cpe_part":9,"purl_type":294,"purl_namespace":292,"purl_name":358,"source":9,"versions":359},"kgraft-patch-SLE12-SP4_Update_28","kgraft-patch-SLE12-SP4_Update_28&distro=SUSE Linux Enterprise Live Patching 12 SP4",[360],{"version":361,"is_range":298,"range_type":299,"version_start":9,"version_start_type":9,"version_end":362,"version_end_type":301,"fixed_in":9},"lt1_6_3_1","1-6.3.1"]