[SUSE-SU-2022:1246-1] Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3)
Severity
Important
CVEs
3
Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-59_16 fixes several issues.
The following security issues were fixed:
- CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation. (bnc#1197462)
- CVE-2021-39698: Fixed a possible memory corruption due to a use after free in aio_poll_complete_work. This could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1196956)
- CVE-2022-22942: Fixed stale file descriptors on failed usercopy. (bsc#1195065)
- ID
- SUSE-SU-2022:1246-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20221246-1/
- Published
-
2022-04-15T16:34:04
(2 years ago) - Modified
-
2022-04-15T16:34:04
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2022-1581
-
ALAS2-2022-1774
-
ALSA-2022:0825
-
ALSA-2022:5249
-
ALSA-2022:5316
-
ASB-A-185125206
-
DSA-5092-1
-
DSA-5096-1
-
DSA-5127-1
-
DSA-5173-1
-
ELSA-2022-0620
-
ELSA-2022-0825
-
ELSA-2022-5249
-
ELSA-2022-5316
-
ELSA-2022-9273
-
ELSA-2022-9274
-
ELSA-2022-9313
-
ELSA-2022-9314
-
ELSA-2022-9365
-
ELSA-2022-9366
-
ELSA-2022-9367
-
ELSA-2022-9368
-
MS:CVE-2022-27666
-
openSUSE-SU-2022:0363-1
-
openSUSE-SU-2022:0370-1
-
openSUSE-SU-2022:1039-1
-
RHSA-2022:0592
-
RHSA-2022:0620
-
RHSA-2022:0622
-
RHSA-2022:0819
-
RHSA-2022:0825
-
RHSA-2022:0849
-
RHSA-2022:5214
-
RHSA-2022:5219
-
RHSA-2022:5249
-
RHSA-2022:5267
-
RHSA-2022:5316
-
RHSA-2022:5344
-
RLSA-2022:5316
-
SSA:2022-129-01
-
SUSE-SU-2022:0363-1
-
SUSE-SU-2022:0364-1
-
SUSE-SU-2022:0365-1
-
SUSE-SU-2022:0370-1
-
SUSE-SU-2022:0372-1
-
SUSE-SU-2022:0543-1
-
SUSE-SU-2022:0544-1
-
SUSE-SU-2022:0555-1
-
SUSE-SU-2022:1038-1
-
SUSE-SU-2022:1039-1
-
SUSE-SU-2022:1163-1
-
SUSE-SU-2022:1172-1
-
SUSE-SU-2022:1182-1
-
SUSE-SU-2022:1183-1
-
SUSE-SU-2022:1189-1
-
SUSE-SU-2022:1192-1
-
SUSE-SU-2022:1193-1
-
SUSE-SU-2022:1194-1
-
SUSE-SU-2022:1196-1
-
SUSE-SU-2022:1197-1
-
SUSE-SU-2022:1212-1
-
SUSE-SU-2022:1215-1
-
SUSE-SU-2022:1223-1
-
SUSE-SU-2022:1224-1
-
SUSE-SU-2022:1230-1
-
SUSE-SU-2022:1242-1
-
SUSE-SU-2022:1248-1
-
SUSE-SU-2022:1257-1
-
SUSE-SU-2022:1261-1
-
SUSE-SU-2022:1266-1
-
SUSE-SU-2022:1267-1
-
SUSE-SU-2022:1268-1
-
SUSE-SU-2022:1269-1
-
SUSE-SU-2022:1278-1
-
SUSE-SU-2022:1303-1
-
SUSE-SU-2022:1402-1
-
SUSE-SU-2022:1407-1
-
SUSE-SU-2022:1573-1
-
SUSE-SU-2022:1593-1
-
SUSE-SU-2022:1634-1
-
SUSE-SU-2022:1989-1
-
SUSE-SU-2022:2111-1
-
SUSE-SU-2022:2237-1
-
SUSE-SU-2022:2268-1
-
SUSE-SU-2022:2515-1
-
SUSE-SU-2022:2516-1
-
SUSE-SU-2022:2761-1
-
SUSE-SU-2022:3072-1
-
SUSE-SU-2022:3123-1
-
SUSE-SU-2022:3411-1
-
SUSE-SU-2022:3415-1
-
SUSE-SU-2022:3465-1
-
SUSE-SU-2022:3607-1
-
SUSE-SU-2022:4036-1
-
SUSE-SU-2022:4038-1
-
SUSE-SU-2022:4542-1
-
SUSE-SU-2024:2008-1
-
SUSE-SU-2024:2010-1
-
SUSE-SU-2024:2019-1
-
SUSE-SU-2024:2183-1
-
SUSE-SU-2024:2185-1
-
SUSE-SU-2024:2189-1
-
SUSE-SU-2024:2360-1
-
SUSE-SU-2024:2362-1
-
SUSE-SU-2024:2365-1
-
SUSE-SU-2024:2561-1
-
USN-5278-1
-
USN-5294-1
-
USN-5294-2
-
USN-5295-1
-
USN-5295-2
-
USN-5297-1
-
USN-5298-1
-
USN-5337-1
-
USN-5353-1
-
USN-5357-1
-
USN-5357-2
-
USN-5358-1
-
USN-5358-2
-
USN-5362-1
-
USN-5368-1
-
USN-5377-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2022:1246-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2022:1246-1 |
|
|
| Bugzilla | SUSE Bug 1195951 |
|
|
| Bugzilla | SUSE Bug 1196959 |
|
|
| Bugzilla | SUSE Bug 1197133 |
|
|
| CVE | SUSE CVE CVE-2021-39698 page |
|
|
| CVE | SUSE CVE CVE-2022-22942 page |
|
|
| CVE | SUSE CVE CVE-2022-27666 page |
|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |