[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2022:3291-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":40,"duplicates":41,"related":42,"reserved_at":9,"published_at":56,"modified_at":57,"state":9,"summary":58,"references_raw":60,"kevs":213,"epss":9,"epss_history":214,"metrics":215,"affected":216},"SUSE-SU-2022:3291-1","Security update for the Linux Kernel\n\n\nThe SUSE Linux Enterprise 15 LTSS kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2020-36516: Fixed an issue in the mixed IPID assignment method where an attacker was able to inject data into or terminate a victim's TCP session (bnc#1196616).\n- CVE-2021-4203: Fixed use-after-free read flaw that was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (bnc#1194535).\n- CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg() (bsc#1202346).\n- CVE-2022-20369: Fixed possible out of bounds write due to improper input validation in v4l2_m2m_querybuf of v4l2-mem2mem.c (bnc#1202347).\n- CVE-2022-21385: Fixed a flaw in net_rds_alloc_sgs() that allowed unprivileged local users to crash the machine (bnc#1202897).\n- CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096).\n- CVE-2022-26373: Fixed non-transparent sharing of return predictor targets between contexts in some Intel Processors (bnc#1201726).\n- CVE-2022-2639: Fixed an integer coercion error that was found in the openvswitch kernel module (bnc#1202154).\n- CVE-2022-2663: Fixed an issue that was found in nf_conntrack_irc where the message handling could be confused and incorrectly matches the message (bnc#1202097).\n- CVE-2022-2977: Fixed reference counting for struct tpm_chip (bsc#1202672).\n- CVE-2022-3028: Fixed race condition that was found in the IP framework for transforming packets (XFRM subsystem) (bnc#1202898).\n- CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/xfrm_policy.c where a refcount could be dropped twice (bnc#1201948).\n- CVE-2022-39188: Fixed race condition in include/asm-generic/tlb.h where a device driver can free a page while it still has stale TLB entries (bnc#1203107).\n\nThe following non-security bugs were fixed:\n\n- cifs: fix error paths in cifs_tree_connect() (bsc#1177440).\n- cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1188944).\n- cifs: report error instead of invalid when revalidating a dentry fails (bsc#1177440).\n- cifs: skip trailing separators of prefix paths (bsc#1188944).\n- kernel-obs-build: include qemu_fw_cfg (boo#1201705)\n- lightnvm: Remove lightnvm implemenation (bsc#1191881 bsc#1201420 ZDI-CAN-17325).\n- mm/rmap.c: do not reuse anon_vma if we just want a copy (git-fixes, bsc#1203098).\n- mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (git-fixes, bsc#1203098).\n- net_sched: cls_route: disallow handle of 0 (bsc#1202393).\n- objtool: Add --backtrace support (bsc#1202396).\n- objtool: Add relocation check for alternative sections (bsc#1202396).\n- objtool: Add support for intra-function calls (bsc#1202396).\n- objtool: Allow no-op CFI ops in alternatives (bsc#1202396).\n- objtool: Clean instruction state before each function validation (bsc#1169514).\n- objtool: Convert insn type to enum (bsc#1202396).\n- objtool: Do not use ignore flag for fake jumps (bsc#1202396).\n- objtool: Fix !CFI insn_state propagation (bsc#1202396).\n- objtool: Fix ORC vs alternatives (bsc#1202396).\n- objtool: Fix sibling call detection (bsc#1202396).\n- objtool: Fix switch table detection in .text.unlikely (bsc#1202396).\n- objtool: Ignore empty alternatives (bsc#1169514).\n- objtool: Make BP scratch register warning more robust (bsc#1202396).\n- objtool: Make handle_insn_ops() unconditional (bsc#1202396).\n- objtool: Remove INSN_STACK (bsc#1202396).\n- objtool: Remove check preventing branches within alternative (bsc#1202396).\n- objtool: Rename elf_open() to prevent conflict with libelf from elftoolchain (bsc#1202396).\n- objtool: Rename struct cfi_state (bsc#1202396).\n- objtool: Rework allocating stack_ops on decode (bsc#1202396).\n- objtool: Rewrite alt->skip_orig (bsc#1202396).\n- objtool: Set insn->func for alternatives (bsc#1202396).\n- objtool: Support conditional retpolines (bsc#1202396).\n- objtool: Support multiple stack_op per instruction (bsc#1202396).\n- objtool: Track original function across branches (bsc#1202396).\n- objtool: Uniquely identify alternative instruction groups (bsc#1202396).\n- objtool: Use Elf_Scn typedef instead of assuming struct name (bsc#1202396).\n- rpm: Fix parsing of rpm/macros.kernel-source on SLE12 (bsc#1201019).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38],{"_key":15},"CVE-2020-36516",{"_key":17},"CVE-2021-4203",{"_key":19},"CVE-2022-20368",{"_key":21},"CVE-2022-20369",{"_key":23},"CVE-2022-21385",{"_key":25},"CVE-2022-2588",{"_key":27},"CVE-2022-26373",{"_key":29},"CVE-2022-2639",{"_key":31},"CVE-2022-2663",{"_key":33},"CVE-2022-2977",{"_key":35},"CVE-2022-3028",{"_key":37},"CVE-2022-36879",{"_key":39},"CVE-2022-39188",[],[],[43,44,45,46,47,48,49,50,51,52,53,54,55],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},"2022-09-16T14:57:33Z","2026-02-04T03:41:16.733103Z",{"cisa_kev":59,"cisa_ransomware":59,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[61,67,72,76,80,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,156,160,165,169,173,177,181,185,189,193,197,201,205,209],{"url":62,"sources":63,"tags":65},"https://www.suse.com/support/update/announcement/2022/suse-su-20223291-1/",[64],"osv_suse",[66],"Advisory",{"url":68,"sources":69,"tags":70},"https://bugzilla.suse.com/1169514",[64],[71],"REPORT",{"url":73,"sources":74,"tags":75},"https://bugzilla.suse.com/1177440",[64],[71],{"url":77,"sources":78,"tags":79},"https://bugzilla.suse.com/1188944",[64],[71],{"url":81,"sources":82,"tags":83},"https://bugzilla.suse.com/1191881",[64],[71],{"url":85,"sources":86,"tags":87},"https://bugzilla.suse.com/1194535",[64],[71],{"url":89,"sources":90,"tags":91},"https://bugzilla.suse.com/1196616",[64],[71],{"url":93,"sources":94,"tags":95},"https://bugzilla.suse.com/1201019",[64],[71],{"url":97,"sources":98,"tags":99},"https://bugzilla.suse.com/1201420",[64],[71],{"url":101,"sources":102,"tags":103},"https://bugzilla.suse.com/1201705",[64],[71],{"url":105,"sources":106,"tags":107},"https://bugzilla.suse.com/1201726",[64],[71],{"url":109,"sources":110,"tags":111},"https://bugzilla.suse.com/1201948",[64],[71],{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/1202096",[64],[71],{"url":117,"sources":118,"tags":119},"https://bugzilla.suse.com/1202097",[64],[71],{"url":121,"sources":122,"tags":123},"https://bugzilla.suse.com/1202154",[64],[71],{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/1202346",[64],[71],{"url":129,"sources":130,"tags":131},"https://bugzilla.suse.com/1202347",[64],[71],{"url":133,"sources":134,"tags":135},"https://bugzilla.suse.com/1202393",[64],[71],{"url":137,"sources":138,"tags":139},"https://bugzilla.suse.com/1202396",[64],[71],{"url":141,"sources":142,"tags":143},"https://bugzilla.suse.com/1202672",[64],[71],{"url":145,"sources":146,"tags":147},"https://bugzilla.suse.com/1202897",[64],[71],{"url":149,"sources":150,"tags":151},"https://bugzilla.suse.com/1202898",[64],[71],{"url":153,"sources":154,"tags":155},"https://bugzilla.suse.com/1203098",[64],[71],{"url":157,"sources":158,"tags":159},"https://bugzilla.suse.com/1203107",[64],[71],{"url":161,"sources":162,"tags":163},"https://www.suse.com/security/cve/CVE-2020-36516",[64],[164],"WEB",{"url":166,"sources":167,"tags":168},"https://www.suse.com/security/cve/CVE-2021-4203",[64],[164],{"url":170,"sources":171,"tags":172},"https://www.suse.com/security/cve/CVE-2022-20368",[64],[164],{"url":174,"sources":175,"tags":176},"https://www.suse.com/security/cve/CVE-2022-20369",[64],[164],{"url":178,"sources":179,"tags":180},"https://www.suse.com/security/cve/CVE-2022-21385",[64],[164],{"url":182,"sources":183,"tags":184},"https://www.suse.com/security/cve/CVE-2022-2588",[64],[164],{"url":186,"sources":187,"tags":188},"https://www.suse.com/security/cve/CVE-2022-26373",[64],[164],{"url":190,"sources":191,"tags":192},"https://www.suse.com/security/cve/CVE-2022-2639",[64],[164],{"url":194,"sources":195,"tags":196},"https://www.suse.com/security/cve/CVE-2022-2663",[64],[164],{"url":198,"sources":199,"tags":200},"https://www.suse.com/security/cve/CVE-2022-2977",[64],[164],{"url":202,"sources":203,"tags":204},"https://www.suse.com/security/cve/CVE-2022-3028",[64],[164],{"url":206,"sources":207,"tags":208},"https://www.suse.com/security/cve/CVE-2022-36879",[64],[164],{"url":210,"sources":211,"tags":212},"https://www.suse.com/security/cve/CVE-2022-39188",[64],[164],[],[],[],[217,230,234,238,242,246,250,255,259,263,267,274,279,283,287,291,296,300,304,308,313,317,321,325,330,334,338,342],{"ecosystem":218,"name":219,"vendor":220,"product":221,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":221,"source":9,"versions":223},"SUSE Linux Enterprise","kernel-default","suse","kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15","rpm",[224],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},"lt4_12_14_150000_150_101_1",true,"ecosystem","4.12.14-150000.150.101.1","excluding",{"ecosystem":218,"name":219,"vendor":220,"product":231,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":231,"source":9,"versions":232},"kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS",[233],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":219,"vendor":220,"product":235,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":235,"source":9,"versions":236},"kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS",[237],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":219,"vendor":220,"product":239,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":239,"source":9,"versions":240},"kernel-default&distro=SUSE Linux Enterprise Live Patching 15",[241],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":219,"vendor":220,"product":243,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":243,"source":9,"versions":244},"kernel-default&distro=SUSE Linux Enterprise Server 15-LTSS",[245],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":219,"vendor":220,"product":247,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":247,"source":9,"versions":248},"kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 15",[249],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":251,"vendor":220,"product":252,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":252,"source":9,"versions":253},"kernel-docs","kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS",[254],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":251,"vendor":220,"product":256,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":256,"source":9,"versions":257},"kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS",[258],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":251,"vendor":220,"product":260,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":260,"source":9,"versions":261},"kernel-docs&distro=SUSE Linux Enterprise Server 15-LTSS",[262],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":251,"vendor":220,"product":264,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":264,"source":9,"versions":265},"kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15",[266],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":268,"vendor":220,"product":269,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":269,"source":9,"versions":270},"kernel-livepatch-SLE15_Update_33","kernel-livepatch-SLE15_Update_33&distro=SUSE Linux Enterprise Live Patching 15",[271],{"version":272,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":273,"version_end_type":229,"fixed_in":9},"lt1_150000_1_3_1","1-150000.1.3.1",{"ecosystem":218,"name":275,"vendor":220,"product":276,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":276,"source":9,"versions":277},"kernel-obs-build","kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS",[278],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":275,"vendor":220,"product":280,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":280,"source":9,"versions":281},"kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS",[282],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":275,"vendor":220,"product":284,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":284,"source":9,"versions":285},"kernel-obs-build&distro=SUSE Linux Enterprise Server 15-LTSS",[286],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":275,"vendor":220,"product":288,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":288,"source":9,"versions":289},"kernel-obs-build&distro=SUSE Linux Enterprise Server for SAP Applications 15",[290],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":292,"vendor":220,"product":293,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":293,"source":9,"versions":294},"kernel-source","kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS",[295],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":292,"vendor":220,"product":297,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":297,"source":9,"versions":298},"kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS",[299],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":292,"vendor":220,"product":301,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":301,"source":9,"versions":302},"kernel-source&distro=SUSE Linux Enterprise Server 15-LTSS",[303],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":292,"vendor":220,"product":305,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":305,"source":9,"versions":306},"kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 15",[307],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":309,"vendor":220,"product":310,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":310,"source":9,"versions":311},"kernel-syms","kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS",[312],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":309,"vendor":220,"product":314,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":314,"source":9,"versions":315},"kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS",[316],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":309,"vendor":220,"product":318,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":318,"source":9,"versions":319},"kernel-syms&distro=SUSE Linux Enterprise Server 15-LTSS",[320],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":309,"vendor":220,"product":322,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":322,"source":9,"versions":323},"kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 15",[324],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":326,"vendor":220,"product":327,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":327,"source":9,"versions":328},"kernel-vanilla","kernel-vanilla&distro=SUSE Linux Enterprise High Performance Computing 15-ESPOS",[329],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":326,"vendor":220,"product":331,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":331,"source":9,"versions":332},"kernel-vanilla&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS",[333],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":326,"vendor":220,"product":335,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":335,"source":9,"versions":336},"kernel-vanilla&distro=SUSE Linux Enterprise Server 15-LTSS",[337],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":326,"vendor":220,"product":339,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":339,"source":9,"versions":340},"kernel-vanilla&distro=SUSE Linux Enterprise Server for SAP Applications 15",[341],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9},{"ecosystem":218,"name":343,"vendor":220,"product":344,"cpe_part":9,"purl_type":222,"purl_namespace":220,"purl_name":344,"source":9,"versions":345},"kernel-zfcpdump","kernel-zfcpdump&distro=SUSE Linux Enterprise Server 15-LTSS",[346],{"version":225,"is_range":226,"range_type":227,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":229,"fixed_in":9}]