This kernel update is based on upstream 5.15.50 and fixes at least the following security issues: Incomplete cleanup of multi-core shared buffers for some Intel Processors may allow an authenticated user to potentially enable information disclosure via local access (CVE-2022-21123). Incomplete cleanup of microarchitectural fill buffers on some Intel Processors may allow an authenticated user to potentially enable information disclosure via local access (CVE-2022-21125). Incomplete cleanup in specific special register read operations for some Intel Processors may allow an authenticated user to potentially enable information disclosure via local access (CVE-2022-21127, CVE-2022-21166). For other upstream fixes, see the referenced changelogs.

OSVersionArchitecturePackageVersionFilename
Mageia8noarchkernel< 5.15.50-1kernel-5.15.50-1.mga8
Mageia8noarchkmod-virtualbox< 6.1.34-1.20kmod-virtualbox-6.1.34-1.20.mga8
Mageia8noarchkmod-xtables-addons< 3.20-1.20kmod-xtables-addons-3.20-1.20.mga8

OS	Version	Architecture	Package	Version	Filename
Mageia	8	noarch	kernel	< 5.15.50-1	kernel-5.15.50-1.mga8
Mageia	8	noarch	kmod-virtualbox	< 6.1.34-1.20	kmod-virtualbox-6.1.34-1.20.mga8
Mageia	8	noarch	kmod-xtables-addons	< 3.20-1.20	kmod-xtables-addons-3.20-1.20.mga8

References

bugs.mageia.org/show_bug.cgi?id=30563

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.47

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.48

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.49

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.50

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00615.html

oraclelinux 11

nessus 44

intel 1

malwarebytes 1

mageia 1

mscve 5

openvas 40

hp 1

citrix 1

fedora 4

rocky 3

almalinux 2

xen 1

vmware 1

osv 9

f5 2

redhat 20

debian 2

ubuntu 1

ibm 4

centos 1

debiancve 4

prion 4

redhatcve 4

alpinelinux 1

cve 4

veracode 4

cvelist 4

ubuntucve 4

cloudfoundry 1

suse 1

amazon 3

mskb 7

qualysblog 1

ics 1

kaspersky 1

oraclelinux

microcode_ctl security update

2022-06-15 00:00:00

microcode_ctl security update

2022-06-14 00:00:00

microcode_ctl security update

2022-06-23 00:00:00

nessus

Oracle Linux 7 : microcode_ctl (ELSA-2022-9507)

2022-06-24 00:00:00

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9482)

2022-06-14 00:00:00

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2022-9483)

2022-06-14 00:00:00

intel

Intel® Processors MMIO Stale Data Advisory

2022-10-19 00:00:00

malwarebytes

Intel CPU vulnerabilities fixed. But should you update?

2023-03-06 07:00:00

mageia

Updated kernel-linus packages fix security vulnerabilities

2022-06-29 19:18:17

mscve

Microsoft Guidance on Intel Processor MMIO Stale Data Vulnerabilities

2022-06-14 07:00:00

Intel: CVE-2022-21127 Special Register Buffer Data Sampling Update (SRBDS Update)

2022-06-14 07:00:00

Intel: CVE-2022-21123 Shared Buffers Data Read (SBDR)

2022-06-14 07:00:00

openvas

Mageia: Security Advisory (MGASA-2022-0243)

2022-06-30 00:00:00

Mageia: Security Advisory (MGASA-2022-0242)

2022-06-30 00:00:00

Debian: Security Advisory (DSA-5178-1)

2022-07-08 00:00:00

Intel® Processors June 2022 Security Update

2022-06-14 00:00:00

citrix

Citrix Hypervisor Security Update

2022-06-23 20:06:39

fedora

[SECURITY] Fedora 36 Update: xen-4.16.1-4.fc36

2022-07-01 01:09:33

[SECURITY] Fedora 36 Update: kernel-5.18.5-200.fc36

2022-06-17 01:16:22

[SECURITY] Fedora 35 Update: kernel-5.18.5-100.fc35

2022-06-18 01:45:12

rocky

kernel-rt security and bug fix update

2022-09-13 07:36:33

kernel security, bug fix, and enhancement update

2022-09-13 07:37:13

microcode_ctl bug fix and enhancement update

2022-11-02 13:51:49

almalinux

Moderate: kernel-rt security and bug fix update

2022-09-13 00:00:00

Moderate: kernel security, bug fix, and enhancement update

2022-09-13 00:00:00

xen

x86: MMIO Stale Data vulnerabilities

2022-06-14 18:21:00

vmware

VMware ESXi addresses DirectPath I/O (PCI-Passthrough) Information Leak vulnerabilities (CVE-2022-21123, CVE-2022-21125, CVE-2022-21166)

2022-06-14 00:00:00

osv

Moderate: kernel-rt security and bug fix update

2022-09-13 00:00:00

Moderate: kernel-rt security and bug fix update

2022-09-13 07:36:33

Moderate: kernel security, bug fix, and enhancement update

2022-09-13 00:00:00

K04808933 : Intel Processors MMIO Stale Data Advisory vulnerabilities CVE-2022-21123, CVE-2022-21125, and CVE-2022-21127

2022-07-18 00:00:00

K08152433 : Intel processors MMIO stale data vulnerability CVE-2022-21166

2022-07-22 00:00:00

redhat

(RHSA-2022:6437) Moderate: kernel-rt security and bug fix update

2022-09-13 07:36:33

(RHSA-2022:6460) Moderate: kernel security, bug fix, and enhancement update

2022-09-13 07:37:13

(RHSA-2022:7280) Important: kernel-rt security and bug fix update

2022-11-01 14:04:44

debian

[SECURITY] [DSA 5178-1] intel-microcode security update

2022-07-06 13:12:52

[SECURITY] [DSA 5184-1] xen security update

2022-07-15 18:05:47

ubuntu

Linux kernel (OEM) vulnerabilities

2022-07-01 00:00:00

ibm

Security Bulletin: Multiple vulnerabilities in Intel Processors affect IBM Cloud Pak System

2023-03-31 15:06:36

Security Bulletin: IBM DataPower Gateway potentially affected by CPU side-channel (CVE-2022-21166)

2022-12-16 18:59:39

Security Bulletin: IBM QRadar SIEM includes multiple components with known vulnerabilities

2023-02-13 13:10:25

centos

bpftool, kernel, perf, python security update

2022-08-15 17:35:43

debiancve

CVE-2022-21127

2022-06-15 20:15:00

CVE-2022-21125

2022-06-15 20:15:00

CVE-2022-21123

2022-06-15 20:15:00

prion

Information disclosure

2022-06-15 20:15:00

Information disclosure

2022-06-15 21:15:00

Design/Logic Flaw

2022-06-15 20:15:00

redhatcve

CVE-2022-21127

2022-06-14 19:29:18

CVE-2022-21125

2022-06-14 19:29:16

CVE-2022-21166

2022-06-14 19:29:19

alpinelinux

CVE-2022-21127

2022-06-15 20:15:00

cve

CVE-2022-21127

2022-06-15 20:15:00

CVE-2022-21166

2022-06-15 21:15:00

CVE-2022-21125

2022-06-15 20:15:00

veracode

Information Disclosure

2022-06-16 21:03:37

Information Disclosure

2022-06-16 21:06:02

Information Disclosure

2022-06-16 21:03:37

cvelist

CVE-2022-21127

2022-06-15 20:02:28

CVE-2022-21125

2022-06-15 20:01:10

CVE-2022-21166

2022-06-15 20:03:42

ubuntucve

CVE-2022-21127

2022-06-15 00:00:00

CVE-2022-21123

2022-06-15 00:00:00

CVE-2022-21125

2022-06-15 00:00:00

cloudfoundry

USN-5486-1: Intel Microcode vulnerabilities | Cloud Foundry

2022-06-30 00:00:00

suse

Security update for xen (important)

2022-09-01 00:00:00

amazon

Medium: microcode_ctl

2022-05-31 23:50:00

Important: kernel

2022-07-06 03:13:00

Medium: microcode_ctl

2022-06-30 23:38:00

mskb

June 14, 2022—KB5014743 (Security-only update)

2022-06-14 07:00:00

June 14, 2022—KB5014752 (Monthly Rollup)

2022-06-14 07:00:00

June 14, 2022—KB5014742 (Security-only update)

2022-06-14 07:00:00

qualysblog

June 2022 Patch Tuesday | Microsoft Releases 55 Vulnerabilities with 3 Critical; Adobe Releases 6 Advisories, 46 Vulnerabilities with 40 Critical.

2022-06-14 20:00:00

ics

Siemens SIMATIC MV500 Devices

2023-07-13 12:00:00

kaspersky

KLA12568 Multiple vulnerabilities in Microsoft Products (ESU)

2022-06-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.001 Low

EPSS

Percentile

25.0%

JSON

Related for MGASA-2022-0242