SUSE-SU-2022:1261-1 Security update for the Linux Kernel (Live Patch 27 for SLE 15)

This update for the Linux Kernel 4.12.14-15083 fixes one issue. The following security issue was fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and ma...

SUSE-SU-2022:1256-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-28356: Fixed a refcount leak bug in net/llc/afllc.c bnc1197391. - CVE-2022-1016: Fixed a vulnerability in the nftables component of the netfilter...

SUSE-SU-2022:1223-1 Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005946 fixes several issues. The following security issues were fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap...

SUSE-SU-2022:1215-1 Security update for the Linux Kernel (Live Patch 28 for SLE 15)

This update for the Linux Kernel 4.12.14-15086 fixes one issue. The following security issue was fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and ma...

SUSE-SU-2022:1212-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-19799 fixes several issues. The following security issues were fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects...

SUSE-SU-2022:1192-1 Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122113 fixes one issue. The following security issue was fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and m...

SUSE-SU-2022:1172-1 Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-197108 fixes several issues. The following security issues were fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap object...

OPENSUSE-SU-2022:1037-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-25636: Fixed an issue which allowed a local users to gain privileges because of a heap out-of-bounds write in nfdupnetdev.c, related to nftablesoffload...

SUSE-SU-2022:0984-1 Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-5937 fixes several issues. The following security issues were fixed: - CVE-2022-25636: Fixed an issue which allowed a local users to gain privileges because of a heap out-of-bounds write in nfdupnetdev.c, related to nftablesoffload bsc1196299. -...

SUSE-SU-2022:0761-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes. - CVE-2022-0001: Fixed Branch History Injection vulnerability bsc1191580. - CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability bsc1191580. - CVE-2022-0847: Fixed a vulnerability wer...

SUSE-SU-2022:0759-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. Transient execution side-channel attacks attacking the Branch History Buffer BHB, named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated. The following security bugs...

SUSE-SU-2022:0463-1 Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-5927 fixes several issues. The following security issues were fixed: - CVE-2021-4202: Fixed NFC race condition by adding NCIUNREG flag bsc1194533. - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input...

SUSE-SU-2022:0429-1 Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005946 fixes one issue. The following security issue was fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input bsc1195308...

SUSE: Security Advisory (SUSE-SU-2022:0372-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:0364-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input bsc1195254. - CVE-2021-3564: Fixed double-free memory...

SUSE-SU-2022:0295-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-5913 fixes several issues. The following security issues were fixed: - CVE-2022-0185: Incorrect param length parsing in legacyparseparam which could have led to a local privilege escalation bsc1194517. - CVE-2021-4154: Fixed option parsing with cgroups...

SUSE-SU-2022:0292-1 Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-2464 fixes several issues. The following security issues were fixed: - CVE-2022-0185: Incorrect param length parsing in legacyparseparam which could have led to a local privilege escalation bsc1194517. - CVE-2021-4154: Fixed option parsing with cgroups...

SUSE-SU-2022:0288-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-4083: Fixed race condition in Unix domain socket garbage collection that could lead to read memory after free bsc1193727. - CVE-2021-4135: Fixed an...

SUSE-SU-2021:4052-1 Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3)

This update for the Linux Kernel 4.4.180-94150 fixes several issues. The following security issues were fixed: - CVE-2021-0935: In ip6xmit of ip6output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution...

OPENSUSE-SU-2021:3876-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past jscSLE-22573 You can reenable v...