Lucene search
OracleLinuxELSA-2022-9761HistorySep 06, 2022 - 12:00 a.m.
Unbreakable Enterprise kernel security update
2022-09-0600:00:00
linux.oracle.com
25
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
[4.1.12-124.66.3]
- fuse: fix pipe buffer lifetime for direct_io (Miklos Szeredi) [Orabug: 33981149] {CVE-2022-1011}
- vt: drop old FONT ioctls (Jiri Slaby) [Orabug: 34408794] {CVE-2021-33656}
- video: of_display_timing.h: include errno.h (Hsin-Yi Wang) [Orabug: 34408910] {CVE-2021-33655}
- fbcon: Disallow setting font bigger than screen size (Helge Deller) [Orabug: 34408910] {CVE-2021-33655}
- scsi: target: Fix WRITE_SAME No Data Buffer crash (Mike Christie) [Orabug: 34419974] {CVE-2022-21546}
- scsi/eh: fix hang adding ehandler wakeups after decrementing host_busy (Gulam Mohamed) [Orabug: 33349684] [Orabug: 34492498]
[4.1.12-124.66.2] - mm: enforce min addr even if capable() in expand_downwards() (Jann Horn) [Orabug: 29501997] {CVE-2019-9213}
- ACPICA: Reference Counts: increase max to 0x4000 for large servers (Erik Schmauss)
- ipv4: tcp: send zero IPID in SYNACK messages (Eric Dumazet) [Orabug: 33917058] {CVE-2020-36516}
- ipv4: Cache net in ip_build_and_send_pkt and ip_queue_xmit (Eric W. Biederman) [Orabug: 33917058] {CVE-2020-36516}
- ipv4: igmp: guard against silly MTU values (Eric Dumazet) [Orabug: 33917058] {CVE-2020-36516}
- inet: constify ip_dont_fragment() arguments (Eric Dumazet) [Orabug: 33917058] {CVE-2020-36516}
- ip: constify ip_build_and_send_pkt() socket argument (Eric Dumazet) [Orabug: 33917058] {CVE-2020-36516}
- vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console (Eric Biggers) [Orabug: 34433461] {CVE-2020-36557}
- vt: vt_ioctl: fix race in VT_RESIZEX (Eric Dumazet) [Orabug: 34433476] {CVE-2020-36558}
- VT_RESIZEX: get rid of field-by-field copyin (Al Viro) [Orabug: 34433476]
- net_sched: cls_route: remove from list when handle is 0 (Thadeu Lima de Souza Cascardo) [Orabug: 34460939] [Orabug: 34484730] {CVE-2022-2588}
[4.1.12-124.66.1] - net: fix uninit-value in __hw_addr_add_ex() (Eric Dumazet) [Orabug: 34395887]
- mac80211: silence an uninitialized variable warning (Dan Carpenter) [Orabug: 34396283]
Related
nessus
nessus
OracleVM 3.4 : kernel-uek (OVMSA-2022-0024)
2022-09-07 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2022-9761)
2022-09-07 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2022-08-16 00:00:00
Security update for the Linux Kernel (important)
2022-09-01 00:00:00
Security update for the Linux Kernel (important)
2022-08-23 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2712)
2022-11-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2827-1)
2022-08-17 00:00:00
openSUSE: Security Advisory for the (SUSE-SU-2022:2827-1)
2022-08-17 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2022-09-16 00:00:00
Unbreakable Enterprise kernel security update
2022-09-16 00:00:00
Unbreakable Enterprise kernel-container security update
2022-09-21 00:00:00
ubuntu
ubuntu
Linux kernel (AWS) vulnerabilities
2022-08-24 00:00:00
Linux kernel vulnerability
2022-08-31 00:00:00
Linux kernel (Oracle) vulnerability
2022-09-05 00:00:00
osv
osv
linux-aws vulnerabilities
2022-08-24 15:49:43
linux-oracle vulnerability
2022-09-05 22:10:47
linux-oracle vulnerability
2022-09-05 21:45:43
cve
cve
ubuntucve
ubuntucve
cve0day
cve0day
Linux Kernel CVE-2019-9213 NULL Dereferences
2019-03-06 13:41:31
veracode
veracode
Use-after-free
2023-01-31 13:33:53
Spoofing Attack
2023-01-28 00:46:14
Denial Of Service (DoS)
2023-01-28 00:46:29
broadcom
broadcom
debiancve
debiancve
prion
prion
Race condition
2022-07-21 04:15:00
Design/Logic Flaw
2022-02-26 04:15:00
Null pointer dereference
2019-03-05 22:29:00
redhatcve
redhatcve
zdt
zdt
cnvd
cnvd
Linux kernel has unspecified vulnerabilities (CNVD-2022-17770)
2022-03-01 00:00:00
Linux Kernel FUSE filesystem elevation of privilege vulnerability
2022-03-22 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-headers-4.20.14-200.fc29
2019-03-10 18:25:36
mageia
mageia
Updated kernel packages fix security vulnerability
2019-03-29 18:51:06
cbl_mariner
cbl_mariner
CVE-2021-33656 affecting package kernel 5.10.123.1-1
2022-08-12 16:45:24
CVE-2021-33655 affecting package kernel 5.10.134.1-2
2022-10-04 07:51:40
CVE-2021-33655 affecting package kernel 5.15.57.1-3
2022-10-05 23:34:27
githubexploit
githubexploit
Exploit for Use After Free in Linux Linux Kernel
2023-06-16 03:02:38
Exploit for Double Free in Linux Linux Kernel
2023-03-09 21:29:56
Exploit for Double Free in Linux Linux Kernel
2022-12-04 22:10:57
f5
f5
K32615023 : Linux kernel vulnerability CVE-2022-2588
2022-10-20 00:00:00
redhat
redhat
(RHSA-2023:4023) Important: kpatch-patch security update
2023-07-11 07:39:10
(RHSA-2022:7171) Important: kernel security and bug fix update
2022-10-25 12:36:50
(RHSA-2022:7137) Important: kpatch-patch security update
2022-10-25 07:52:27
zdi
zdi
amazon
amazon
Important: kernel
2019-03-20 22:39:00
redos
redos
ROS-20220908-01
2022-09-08 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
Related for ELSA-2022-9761