SUSE-SU-2022:4561-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-3635: Fixed a use-after-free in the tst_timer() of the file drivers/atm/idt77252.c (bsc#1204631). - CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166). - CVE-2022-41850: Fixed a race condition in roccat_report_event() in drivers/hid/hid-roccat.c (bsc#1203960). - CVE-2022-45934: Fixed a integer wraparound via L2CAP_CONF_REQ packets in l2cap_config_req in net/bluetooth/l2cap_core.c (bsc#1205796). - CVE-2022-3628: Fixed potential buffer overflow in brcmf_fweh_event_worker() in wifi/brcmfmac (bsc#1204868). - CVE-2022-3567: Fixed a to race condition in inet6_stream_ops()/inet6_dgram_ops() (bsc#1204414). - CVE-2022-41858: Fixed a denial of service in sl_tx_timeout() in drivers/net/slip (bsc#1205671). - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation (bsc#1205128). - CVE-2022-4095: Fixed a use-after-free in rtl8712 driver (bsc#1205514). - CVE-2022-3903: Fixed a denial of service with the Infrared Transceiver USB driver (bsc#1205220). - CVE-2022-2964: Fixed memory corruption issues in ax88179_178a devices (bsc#1202686). - CVE-2021-4037: Fixed function logic vulnerability that allowed local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set (bsc#1198702). - CVE-2022-43750: Fixed vulnerability in usbmon that allowed a user-space client to corrupt the monitor's internal memory (bsc#1204653). - CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism (bsc#1177282). - CVE-2022-3542: Fixed memory leak in bnx2x_tpa_stop() in drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c (bsc#1204402). - CVE-2022-3629: Fixed memory leak in vsock_connect() in net/vmw_vsock/af_vsock.c (bsc#1204635). - CVE-2022-3646: Fixed memory leak in nilfs_attach_log_writer() in fs/nilfs2/segment.c (bsc#1204646). - CVE-2022-3649: Fixed use-after-free in nilfs_new_inode() in fs/nilfs2/inode.c (bsc#1204647). - CVE-2022-3621: Fixed null pointer dereference in nilfs_bmap_lookup_at_level() in fs/nilfs2/inode.c (bsc#1204574). - CVE-2022-3594: Fixed excessive data logging in intr_callback() in drivers/net/usb/r8152.c (bsc#1204479). - CVE-2022-3586: Fixed use-after-free in socket buffer (SKB) that could allow a local unprivileged user to cause a denial of service (bsc#1204439). - CVE-2022-3565: Fixed use-after-free in del_timer() in drivers/isdn/mISDN/l1oip_core.c (bsc#1204431). - CVE-2022-3524: Fixed memory leak in ipv6_renew_options() in the IPv6 handler (bsc#1204354). - CVE-2022-2663: Fixed an issue which allowed a firewall to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured (bsc#1202097). - CVE-2022-40768: Fixed information leak in the scsi driver which allowed local users to obtain sensitive information from kernel memory (bsc#1203514). - CVE-2022-42703: Fixed use-after-free in mm/rmap.c related to leaf anon_vma double reuse (bsc#1204168). - CVE-2022-3169: Fixed an denial of service though request to NVME_IOCTL_RESET and NVME_IOCTL_SUBSYS_RESET (bsc#1203290). - CVE-2022-40307: Fixed a race condition that could had been exploited to trigger a use-after-free in the efi firmware capsule-loader.c (bsc#1203322). - CVE-2022-41848: Fixed a race condition in drivers/char/pcmcia/synclink_cs.c mgslpc_ioctl and mgslpc_detach (bsc#1203987). The following non-security bugs were fixed: - x86/build/64: Force the linker to use 2MB page size (bnc#1012382, bsc#1206091).
Affected Systems
- suse•kernel-default&distro=SUSE Linux Enterprise Server 12 SP2-BCL
< 4.4.121-92.196.2
- suse•kernel-source&distro=SUSE Linux Enterprise Server 12 SP2-BCL
< 4.4.121-92.196.2
- suse•kernel-syms&distro=SUSE Linux Enterprise Server 12 SP2-BCL
< 4.4.121-92.196.2
References (71)
- https://www.suse.com/support/update/announcement/2022/suse-su-20224561-1/
- https://bugzilla.suse.com/1012382
- https://bugzilla.suse.com/1129898
- https://bugzilla.suse.com/1177282
- https://bugzilla.suse.com/1196018
- https://bugzilla.suse.com/1198702
- https://bugzilla.suse.com/1202097
- https://bugzilla.suse.com/1202686
- https://bugzilla.suse.com/1203008
- https://bugzilla.suse.com/1203290
- https://bugzilla.suse.com/1203322
- https://bugzilla.suse.com/1203514
- https://bugzilla.suse.com/1203960
- https://bugzilla.suse.com/1203987
- https://bugzilla.suse.com/1204166
- https://bugzilla.suse.com/1204168
- https://bugzilla.suse.com/1204170
- https://bugzilla.suse.com/1204354
- https://bugzilla.suse.com/1204402
- https://bugzilla.suse.com/1204414
- https://bugzilla.suse.com/1204431
- https://bugzilla.suse.com/1204432
- https://bugzilla.suse.com/1204439
- https://bugzilla.suse.com/1204479
- https://bugzilla.suse.com/1204574
- https://bugzilla.suse.com/1204576
- https://bugzilla.suse.com/1204631
- https://bugzilla.suse.com/1204635
- https://bugzilla.suse.com/1204636
- https://bugzilla.suse.com/1204646
- https://bugzilla.suse.com/1204647
- https://bugzilla.suse.com/1204653
- https://bugzilla.suse.com/1204868
- https://bugzilla.suse.com/1205128
- https://bugzilla.suse.com/1205130
- https://bugzilla.suse.com/1205220
- https://bugzilla.suse.com/1205514
- https://bugzilla.suse.com/1205671
- https://bugzilla.suse.com/1205796
- https://bugzilla.suse.com/1206091
- https://www.suse.com/security/cve/CVE-2019-3874
- https://www.suse.com/security/cve/CVE-2020-26541
- https://www.suse.com/security/cve/CVE-2021-4037
- https://www.suse.com/security/cve/CVE-2022-2663
- https://www.suse.com/security/cve/CVE-2022-28748
- https://www.suse.com/security/cve/CVE-2022-2964
- https://www.suse.com/security/cve/CVE-2022-3169
- https://www.suse.com/security/cve/CVE-2022-3424
- https://www.suse.com/security/cve/CVE-2022-3524
- https://www.suse.com/security/cve/CVE-2022-3542
- https://www.suse.com/security/cve/CVE-2022-3565
- https://www.suse.com/security/cve/CVE-2022-3567
- https://www.suse.com/security/cve/CVE-2022-3586
- https://www.suse.com/security/cve/CVE-2022-3594
- https://www.suse.com/security/cve/CVE-2022-3621
- https://www.suse.com/security/cve/CVE-2022-3628
- https://www.suse.com/security/cve/CVE-2022-3629
- https://www.suse.com/security/cve/CVE-2022-3635
- https://www.suse.com/security/cve/CVE-2022-3646
- https://www.suse.com/security/cve/CVE-2022-3649
- https://www.suse.com/security/cve/CVE-2022-3903
- https://www.suse.com/security/cve/CVE-2022-40307
- https://www.suse.com/security/cve/CVE-2022-40768
- https://www.suse.com/security/cve/CVE-2022-4095
- https://www.suse.com/security/cve/CVE-2022-41848
- https://www.suse.com/security/cve/CVE-2022-41850
- https://www.suse.com/security/cve/CVE-2022-41858
- https://www.suse.com/security/cve/CVE-2022-42703
- https://www.suse.com/security/cve/CVE-2022-43750
- https://www.suse.com/security/cve/CVE-2022-43945
- https://www.suse.com/security/cve/CVE-2022-45934