SUSE-SU-2023:0320-1 Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-150400155 fixes one issue. The following security issue was fixed: - CVE-2022-4379: Fixed a use-after-free vulnerability in nfs4file.c:nfs42sscopen bsc1206209...

SUSE-SU-2023:0250-1 Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122124 fixes several issues. The following security issues were fixed: - CVE-2022-3424: Fixed use-after-free in grusetcontextoption, grufault and gruhandleusercallos that could lead to kernel panic bsc1204167. - CVE-2022-3565: Fixed use-after-free in...

GSD-2023-1001312 clk: st: Fix memory leak in st_of_quadfs_setup()

clk: st: Fix memory leak in stofquadfssetup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

PT-2023-33957 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue concerns the ext4 file system. It involves checking and asserting if marking a no delete evicting inode dirty can lead to potential security vulnerabilities. The actual impact and...

OESA-2022-2147 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In l2capchanput of l2capcore, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

SUSE-SU-2022:4580-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024112 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation bsc1205128. - CVE-2022-4378: Fixed stack overflow in doprocdointvec bsc1206207. - CVE-2022-4139: Fixed an issue...

SUSE-SU-2022:4533-1 Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197120 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation bsc1205128. - CVE-2022-4378: Fixed stack overflow in doprocdointvec bsc1206207. - CVE-2022-3586: Fixed...

PT-2022-36135 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 5.15.13 through 5.15.79 Description: The issue concerns a potential security vulnerability related to the leaking of a platform device on module removal in the i8042 component. The actual impact and attack plausibility...

PT-2022-36322 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.155 Description: A slab-out-of-bounds write bug was found in the udf find entry function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prio...

PT-2022-36355 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.154 Description: A potential security issue has been identified in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...

PT-2022-36002 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue concerns error handling in the ata tport add function. It was introduced in version v2.6.37 and fixed in version v6.0.10. The actual impact and attack plausibility have not yet bee...

GSD-2022-1006944 drm/amdkfd: Fix memory leak in kfd_mem_dmamap_userptr()

drm/amdkfd: Fix memory leak in kfdmemdmamapuserptr This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.77 by commit...

SUSE-SU-2022:3810-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel rt was updated. The following security bugs were fixed: - CVE-2022-40768: Fixed information leak in the scsi driver which allowed local users to obtain sensitive information from kernel memory. bnc1203514 - CVE-2022-3169: Fixed a denial of service flaw whic...

SUSE-SU-2022:3411-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002421 fixes one issue. The following security issue was fixed: - CVE-2021-39698: Fixed a memory corruption due to a use after free that could lead to local escalation of privilege with no additional execution privileges needed bsc1196959...

SUSE-SU-2022:3370-1 Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040022 fixes several issues. The following security issues were fixed: - CVE-2022-29581: Fixed an improper Update of Reference Count vulnerability in net/sched that causes privilege escalation to root bsc1199695. - CVE-2022-39188: Fixed a race condition...

GSD-2022-1004998 drm/amd/pm: Fix a potential gpu_metrics_table memory leak

drm/amd/pm: Fix a potential gpumetricstable memory leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.7 by commit...

Exploit for Incorrect Conversion between Numeric Types in Linux Linux_Kernel

CVE-2022-2639 using pipe primitive CVE-2022-2639https://...

CVE-2022-1016

A flaw was found in the Linux kernel in net/netfilter/nftablescore.c:nftdochain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker...

SUSE-SU-2022:2779-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024112 fixes several issues. The following security issues were fixed: - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages bsc1199487. -...

SUSE-SU-2022:2761-1 Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005987 fixes several issues. The following security issues were fixed: - CVE-2022-1116: Fixed a integer overflow vulnerability in iouring which allowed a local attacker to cause memory corruption and escalate privileges to root bnc1199647. -...