[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:3274-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":44,"duplicates":45,"related":46,"reserved_at":9,"published_at":62,"modified_at":63,"state":9,"summary":64,"references_raw":66,"kevs":239,"epss":9,"epss_history":240,"metrics":241,"affected":242},"SUSE-SU-2022:3274-1","Security update for the Linux Kernel\n\n\nThe SUSE Linux Enterprise 12 SP4 LTSS kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-36946: Fixed a denial of service (panic) inside nfqnl_mangle in net/netfilter/nfnetlink_queue.c (bnc#1201940).\n- CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/xfrm_policy.c where a refcount could be dropped twice (bnc#1201948).\n- CVE-2022-3028: Fixed race condition that was found in the IP framework for transforming packets (XFRM subsystem) (bnc#1202898).\n- CVE-2022-2977: Fixed reference counting for struct tpm_chip (bsc#1202672).\n- CVE-2022-2639: Fixed an integer coercion error that was found in the openvswitch kernel module (bnc#1202154).\n- CVE-2022-26373: Fixed non-transparent sharing of return predictor targets between contexts in some Intel Processors (bnc#1201726).\n- CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096).\n- CVE-2022-21385: Fixed a flaw in net_rds_alloc_sgs() that allowed unprivileged local users to crash the machine (bnc#1202897).\n- CVE-2022-20369: Fixed out of bounds write in v4l2_m2m_querybuf of v4l2-mem2mem.c (bnc#1202347).\n- CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg() (bsc#1202346).\n- CVE-2022-20166: Fixed possible out of bounds write due to a heap buffer overflow in various methods of kernel base drivers (bnc#1200598).\n- CVE-2021-4203: Fixed use-after-free read flaw that was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (bnc#1194535).\n- CVE-2020-36558: Fixed a race condition involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault (bnc#1200910).\n- CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could have led to a use-after-free (bnc#1201429).\n- CVE-2020-36516: Fixed an issue in the mixed IPID assignment method where an attacker was able to inject data into or terminate a victim's TCP session (bnc#1196616).\n\nThe following non-security bugs were fixed:\n\n- cifs: fix error paths in cifs_tree_connect() (bsc#1177440).\n- cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1188944).\n- cifs: report error instead of invalid when revalidating a dentry fails (bsc#1177440).\n- cifs: skip trailing separators of prefix paths (bsc#1188944).\n- kernel-obs-build: include qemu_fw_cfg (boo#1201705)\n- lightnvm: Remove lightnvm implemenation (bsc#1191881 bsc#1201420 ZDI-CAN-17325).\n- mm/rmap.c: do not reuse anon_vma if we just want a copy (git-fixes, bsc#1203098).\n- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (git-fixes, bsc#1203098).\n- net_sched: cls_route: disallow handle of 0 (bsc#1202393).\n- objtool: Add --backtrace support (bsc#1202396).\n- objtool: Add support for intra-function calls (bsc#1202396).\n- objtool: Allow no-op CFI ops in alternatives (bsc#1202396).\n- objtool: Convert insn type to enum (bsc#1202396).\n- objtool: Do not use ignore flag for fake jumps (bsc#1202396).\n- objtool: Fix !CFI insn_state propagation (bsc#1202396).\n- objtool: Fix ORC vs alternatives (bsc#1202396).\n- objtool: Fix sibling call detection (bsc#1202396).\n- objtool: Make handle_insn_ops() unconditional (bsc#1202396).\n- objtool: Remove INSN_STACK (bsc#1202396).\n- objtool: Remove check preventing branches within alternative (bsc#1202396).\n- objtool: Rename elf_open() to prevent conflict with libelf from elftoolchain (bsc#1202396).\n- objtool: Rename struct cfi_state (bsc#1202396).\n- objtool: Rework allocating stack_ops on decode (bsc#1202396).\n- objtool: Rewrite alt->skip_orig (bsc#1202396).\n- objtool: Set insn->func for alternatives (bsc#1202396).\n- objtool: Support conditional retpolines (bsc#1202396).\n- objtool: Support multiple stack_op per instruction (bsc#1202396).\n- objtool: Track original function across branches (bsc#1202396).\n- objtool: Uniquely identify alternative instruction groups (bsc#1202396).\n- objtool: Use Elf_Scn typedef instead of assuming struct name (bsc#1202396).\n- powerpc/pci: Fix broken INTx configuration via OF (bsc#1172145 ltc#184630 bsc#1200770 ltc#198666).\n- powerpc/pci: Remove LSI mappings on device teardown (bsc#1172145 ltc#184630 bsc#1200770 ltc#198666).\n- powerpc/pci: Use of_irq_parse_and_map_pci() helper (bsc#1172145 ltc#184630 bsc#1200770 ltc#198666).\n- rpm: Fix parsing of rpm/macros.kernel-source on SLE12 (bsc#1201019).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42],{"_key":15},"CVE-2020-36516",{"_key":17},"CVE-2020-36557",{"_key":19},"CVE-2020-36558",{"_key":21},"CVE-2021-4203",{"_key":23},"CVE-2022-20166",{"_key":25},"CVE-2022-20368",{"_key":27},"CVE-2022-20369",{"_key":29},"CVE-2022-21385",{"_key":31},"CVE-2022-2588",{"_key":33},"CVE-2022-26373",{"_key":35},"CVE-2022-2639",{"_key":37},"CVE-2022-2977",{"_key":39},"CVE-2022-3028",{"_key":41},"CVE-2022-36879",{"_key":43},"CVE-2022-36946",[],[],[47,48,49,50,51,52,53,54,55,56,57,58,59,60,61],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},"2022-09-14T07:59:26Z","2026-02-04T03:37:31.430703Z",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[67,73,78,82,86,90,94,98,102,106,110,114,118,122,126,130,134,138,142,146,150,154,158,162,166,170,174,178,183,187,191,195,199,203,207,211,215,219,223,227,231,235],{"url":68,"sources":69,"tags":71},"https://www.suse.com/support/update/announcement/2022/suse-su-20223274-1/",[70],"osv_suse",[72],"Advisory",{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1172145",[70],[77],"REPORT",{"url":79,"sources":80,"tags":81},"https://bugzilla.suse.com/1177440",[70],[77],{"url":83,"sources":84,"tags":85},"https://bugzilla.suse.com/1188944",[70],[77],{"url":87,"sources":88,"tags":89},"https://bugzilla.suse.com/1191881",[70],[77],{"url":91,"sources":92,"tags":93},"https://bugzilla.suse.com/1194535",[70],[77],{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1196616",[70],[77],{"url":99,"sources":100,"tags":101},"https://bugzilla.suse.com/1200598",[70],[77],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/1200770",[70],[77],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1200910",[70],[77],{"url":111,"sources":112,"tags":113},"https://bugzilla.suse.com/1201019",[70],[77],{"url":115,"sources":116,"tags":117},"https://bugzilla.suse.com/1201420",[70],[77],{"url":119,"sources":120,"tags":121},"https://bugzilla.suse.com/1201429",[70],[77],{"url":123,"sources":124,"tags":125},"https://bugzilla.suse.com/1201705",[70],[77],{"url":127,"sources":128,"tags":129},"https://bugzilla.suse.com/1201726",[70],[77],{"url":131,"sources":132,"tags":133},"https://bugzilla.suse.com/1201940",[70],[77],{"url":135,"sources":136,"tags":137},"https://bugzilla.suse.com/1201948",[70],[77],{"url":139,"sources":140,"tags":141},"https://bugzilla.suse.com/1202096",[70],[77],{"url":143,"sources":144,"tags":145},"https://bugzilla.suse.com/1202154",[70],[77],{"url":147,"sources":148,"tags":149},"https://bugzilla.suse.com/1202346",[70],[77],{"url":151,"sources":152,"tags":153},"https://bugzilla.suse.com/1202347",[70],[77],{"url":155,"sources":156,"tags":157},"https://bugzilla.suse.com/1202393",[70],[77],{"url":159,"sources":160,"tags":161},"https://bugzilla.suse.com/1202396",[70],[77],{"url":163,"sources":164,"tags":165},"https://bugzilla.suse.com/1202672",[70],[77],{"url":167,"sources":168,"tags":169},"https://bugzilla.suse.com/1202897",[70],[77],{"url":171,"sources":172,"tags":173},"https://bugzilla.suse.com/1202898",[70],[77],{"url":175,"sources":176,"tags":177},"https://bugzilla.suse.com/1203098",[70],[77],{"url":179,"sources":180,"tags":181},"https://www.suse.com/security/cve/CVE-2020-36516",[70],[182],"WEB",{"url":184,"sources":185,"tags":186},"https://www.suse.com/security/cve/CVE-2020-36557",[70],[182],{"url":188,"sources":189,"tags":190},"https://www.suse.com/security/cve/CVE-2020-36558",[70],[182],{"url":192,"sources":193,"tags":194},"https://www.suse.com/security/cve/CVE-2021-4203",[70],[182],{"url":196,"sources":197,"tags":198},"https://www.suse.com/security/cve/CVE-2022-20166",[70],[182],{"url":200,"sources":201,"tags":202},"https://www.suse.com/security/cve/CVE-2022-20368",[70],[182],{"url":204,"sources":205,"tags":206},"https://www.suse.com/security/cve/CVE-2022-20369",[70],[182],{"url":208,"sources":209,"tags":210},"https://www.suse.com/security/cve/CVE-2022-21385",[70],[182],{"url":212,"sources":213,"tags":214},"https://www.suse.com/security/cve/CVE-2022-2588",[70],[182],{"url":216,"sources":217,"tags":218},"https://www.suse.com/security/cve/CVE-2022-26373",[70],[182],{"url":220,"sources":221,"tags":222},"https://www.suse.com/security/cve/CVE-2022-2639",[70],[182],{"url":224,"sources":225,"tags":226},"https://www.suse.com/security/cve/CVE-2022-2977",[70],[182],{"url":228,"sources":229,"tags":230},"https://www.suse.com/security/cve/CVE-2022-3028",[70],[182],{"url":232,"sources":233,"tags":234},"https://www.suse.com/security/cve/CVE-2022-36879",[70],[182],{"url":236,"sources":237,"tags":238},"https://www.suse.com/security/cve/CVE-2022-36946",[70],[182],[],[],[],[243,256,260,264,268,272,276,281,285,289,293,298,302,306,310],{"ecosystem":244,"name":245,"vendor":246,"product":247,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":247,"source":9,"versions":249},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise High Availability Extension 12 SP4","rpm",[250],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},"lt4_12_14_95_108_1",true,"ecosystem","4.12.14-95.108.1","excluding",{"ecosystem":244,"name":245,"vendor":246,"product":257,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":257,"source":9,"versions":258},"kernel-default&distro=SUSE Linux Enterprise Live Patching 12 SP4",[259],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":245,"vendor":246,"product":261,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":261,"source":9,"versions":262},"kernel-default&distro=SUSE Linux Enterprise Server 12 SP4-LTSS",[263],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":245,"vendor":246,"product":265,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":265,"source":9,"versions":266},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4",[267],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":245,"vendor":246,"product":269,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":269,"source":9,"versions":270},"kernel-default&distro=SUSE OpenStack Cloud 9",[271],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":245,"vendor":246,"product":273,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":273,"source":9,"versions":274},"kernel-default&distro=SUSE OpenStack Cloud Crowbar 9",[275],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":277,"vendor":246,"product":278,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":278,"source":9,"versions":279},"kernel-source","kernel-source&distro=SUSE Linux Enterprise Server 12 SP4-LTSS",[280],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":277,"vendor":246,"product":282,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":282,"source":9,"versions":283},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4",[284],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":277,"vendor":246,"product":286,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":286,"source":9,"versions":287},"kernel-source&distro=SUSE OpenStack Cloud 9",[288],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":277,"vendor":246,"product":290,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":290,"source":9,"versions":291},"kernel-source&distro=SUSE OpenStack Cloud Crowbar 9",[292],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":294,"vendor":246,"product":295,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":295,"source":9,"versions":296},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise Server 12 SP4-LTSS",[297],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":294,"vendor":246,"product":299,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":299,"source":9,"versions":300},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4",[301],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":294,"vendor":246,"product":303,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":303,"source":9,"versions":304},"kernel-syms&distro=SUSE OpenStack Cloud 9",[305],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":294,"vendor":246,"product":307,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":307,"source":9,"versions":308},"kernel-syms&distro=SUSE OpenStack Cloud Crowbar 9",[309],{"version":251,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":254,"version_end_type":255,"fixed_in":9},{"ecosystem":244,"name":311,"vendor":246,"product":312,"cpe_part":9,"purl_type":248,"purl_namespace":246,"purl_name":312,"source":9,"versions":313},"kgraft-patch-SLE12-SP4_Update_30","kgraft-patch-SLE12-SP4_Update_30&distro=SUSE Linux Enterprise Live Patching 12 SP4",[314],{"version":315,"is_range":252,"range_type":253,"version_start":9,"version_start_type":9,"version_end":316,"version_end_type":255,"fixed_in":9},"lt1_6_3_1","1-6.3.1"]