[SUSE-SU-2022:0254-1] Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP2)
Severity
Important
CVEs
4
Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP2)
This update for the Linux Kernel 5.3.18-24_61 fixes several issues.
The following security issues were fixed:
- CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517).
- CVE-2021-4154: Fixed option parsing with cgroups version 1 (bsc#1193842).
- CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bsc#1191193)
- CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673).
- ID
- SUSE-SU-2022:0254-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20220254-1/
- Published
-
2022-02-01T09:51:46
(2 years ago) - Modified
-
2022-02-01T09:51:46
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALSA-2022:0188
-
ALSA-2022:0825
-
ALSA-2022:1988
-
ASB-A-218836280
-
CISA-2024:0821
-
DSA-4978-1
-
DSA-5050-1
-
DSA-5096-1
-
ELSA-2022-0063
-
ELSA-2022-0188
-
ELSA-2022-0825
-
ELSA-2022-1988
-
ELSA-2022-9028
-
ELSA-2022-9029
-
ELSA-2022-9147
-
ELSA-2022-9148
-
ELSA-2022-9969
-
FEDORA-2021-7de33b7016
-
FEDORA-2021-8364530ebf
-
FEDORA-2021-fdef34e26f
-
FEDORA-2022-6352c313b7
-
FEDORA-2022-6d4082d590
-
MS:CVE-2021-4154
-
MS:CVE-2021-42739
-
MS:CVE-2022-0185
-
openSUSE-SU-2021:1357-1
-
openSUSE-SU-2021:1365-1
-
openSUSE-SU-2021:1477-1
-
openSUSE-SU-2021:3338-1
-
openSUSE-SU-2021:3387-1
-
openSUSE-SU-2021:3447-1
-
openSUSE-SU-2021:3641-1
-
openSUSE-SU-2021:3675-1
-
openSUSE-SU-2021:3876-1
-
openSUSE-SU-2022:0169-1
-
openSUSE-SU-2022:0198-1
-
RHSA-2022:0063
-
RHSA-2022:0065
-
RHSA-2022:0176
-
RHSA-2022:0188
-
RHSA-2022:0232
-
RHSA-2022:0819
-
RHSA-2022:0825
-
RHSA-2022:0849
-
RHSA-2022:1975
-
RHSA-2022:1988
-
RLSA-2022:176
-
RLSA-2022:1988
-
SSA:2022-031-01
-
SUSE-SU-2021:3337-1
-
SUSE-SU-2021:3338-1
-
SUSE-SU-2021:3339-1
-
SUSE-SU-2021:3386-1
-
SUSE-SU-2021:3387-1
-
SUSE-SU-2021:3388-1
-
SUSE-SU-2021:3389-1
-
SUSE-SU-2021:3415-1
-
SUSE-SU-2021:3447-1
-
SUSE-SU-2021:3640-1
-
SUSE-SU-2021:3641-1
-
SUSE-SU-2021:3642-1
-
SUSE-SU-2021:3658-1
-
SUSE-SU-2021:3675-1
-
SUSE-SU-2021:3723-1
-
SUSE-SU-2021:3748-1
-
SUSE-SU-2021:3754-1
-
SUSE-SU-2021:3876-1
-
SUSE-SU-2021:3929-1
-
SUSE-SU-2021:3935-1
-
SUSE-SU-2021:3969-1
-
SUSE-SU-2021:3972-1
-
SUSE-SU-2022:0169-1
-
SUSE-SU-2022:0197-1
-
SUSE-SU-2022:0198-1
-
SUSE-SU-2022:0234-1
-
SUSE-SU-2022:0237-1
-
SUSE-SU-2022:0238-1
-
SUSE-SU-2022:0239-1
-
SUSE-SU-2022:0241-1
-
SUSE-SU-2022:0242-1
-
SUSE-SU-2022:0243-1
-
SUSE-SU-2022:0246-1
-
SUSE-SU-2022:0255-1
-
SUSE-SU-2022:0257-1
-
SUSE-SU-2022:0262-1
-
SUSE-SU-2022:0263-1
-
SUSE-SU-2022:0267-1
-
SUSE-SU-2022:0270-1
-
SUSE-SU-2022:0288-1
-
SUSE-SU-2022:0289-1
-
SUSE-SU-2022:0291-1
-
SUSE-SU-2022:0292-1
-
SUSE-SU-2022:0293-1
-
SUSE-SU-2022:0295-1
-
SUSE-SU-2022:0296-1
-
SUSE-SU-2022:0298-1
-
SUSE-SU-2022:0325-1
-
SUSE-SU-2022:0327-1
-
SUSE-SU-2022:0328-1
-
SUSE-SU-2022:1669-1
-
SUSE-SU-2022:1676-1
-
SUSE-SU-2022:1687-1
-
USN-5113-1
-
USN-5114-1
-
USN-5115-1
-
USN-5116-1
-
USN-5116-2
-
USN-5165-1
-
USN-5207-1
-
USN-5240-1
-
USN-5265-1
-
USN-5266-1
-
USN-5267-1
-
USN-5267-3
-
USN-5268-1
-
USN-5361-1
-
USN-5362-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2022:0254-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2022:0254-1 |
|
|
| Bugzilla | SUSE Bug 1191529 |
|
|
| Bugzilla | SUSE Bug 1192036 |
|
|
| Bugzilla | SUSE Bug 1194461 |
|
|
| Bugzilla | SUSE Bug 1194737 |
|
|
| CVE | SUSE CVE CVE-2020-3702 page |
|
|
| CVE | SUSE CVE CVE-2021-4154 page |
|
|
| CVE | SUSE CVE CVE-2021-42739 page |
|
|
| CVE | SUSE CVE CVE-2022-0185 page |
|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |