logo
DATABASE RESOURCES PRICING ABOUT US

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2022:2803-1)

Description

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2803-1 advisory. - When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds. (CVE-2021-33655) - Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions. (CVE-2022-29581) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.


Related