[SUSE-SU-2022:1269-1] Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP3)
Severity
Important
CVEs
2
Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-150300_59_54 fixes several issues.
The following security issues were fixed:
- CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation. (bnc#1197462)
- CVE-2021-39698: Fixed a possible memory corruption due to a use after free in aio_poll_complete_work. This could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1196956)
- ID
- SUSE-SU-2022:1269-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20221269-1/
- Published
-
2022-04-20T05:17:24
(2 years ago) - Modified
-
2022-04-20T05:17:24
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2022-1581
- ALAS2-2022-1774
- ALSA-2022:5249
- ALSA-2022:5316
- ASB-A-185125206
- DSA-5096-1
- DSA-5127-1
- DSA-5173-1
- ELSA-2022-5249
- ELSA-2022-5316
- ELSA-2022-9365
- ELSA-2022-9366
- ELSA-2022-9367
- ELSA-2022-9368
- MS:CVE-2022-27666
- openSUSE-SU-2022:1039-1
- RHSA-2022:5214
- RHSA-2022:5219
- RHSA-2022:5249
- RHSA-2022:5267
- RHSA-2022:5316
- RHSA-2022:5344
- RLSA-2022:5316
- SSA:2022-129-01
- SUSE-SU-2022:1038-1
- SUSE-SU-2022:1039-1
- SUSE-SU-2022:1163-1
- SUSE-SU-2022:1172-1
- SUSE-SU-2022:1182-1
- SUSE-SU-2022:1183-1
- SUSE-SU-2022:1189-1
- SUSE-SU-2022:1192-1
- SUSE-SU-2022:1193-1
- SUSE-SU-2022:1194-1
- SUSE-SU-2022:1196-1
- SUSE-SU-2022:1197-1
- SUSE-SU-2022:1212-1
- SUSE-SU-2022:1215-1
- SUSE-SU-2022:1223-1
- SUSE-SU-2022:1224-1
- SUSE-SU-2022:1230-1
- SUSE-SU-2022:1242-1
- SUSE-SU-2022:1246-1
- SUSE-SU-2022:1248-1
- SUSE-SU-2022:1257-1
- SUSE-SU-2022:1261-1
- SUSE-SU-2022:1266-1
- SUSE-SU-2022:1267-1
- SUSE-SU-2022:1268-1
- SUSE-SU-2022:1278-1
- SUSE-SU-2022:1303-1
- SUSE-SU-2022:1402-1
- SUSE-SU-2022:1407-1
- SUSE-SU-2022:1573-1
- SUSE-SU-2022:1634-1
- SUSE-SU-2022:1989-1
- SUSE-SU-2022:2237-1
- SUSE-SU-2022:2268-1
- SUSE-SU-2022:2515-1
- SUSE-SU-2022:2516-1
- SUSE-SU-2022:2761-1
- SUSE-SU-2022:3072-1
- SUSE-SU-2022:3123-1
- SUSE-SU-2022:3411-1
- SUSE-SU-2022:3415-1
- SUSE-SU-2022:3465-1
- SUSE-SU-2022:3607-1
- SUSE-SU-2022:4036-1
- SUSE-SU-2022:4038-1
- SUSE-SU-2022:4542-1
- SUSE-SU-2024:2008-1
- SUSE-SU-2024:2010-1
- SUSE-SU-2024:2019-1
- SUSE-SU-2024:2183-1
- SUSE-SU-2024:2185-1
- SUSE-SU-2024:2189-1
- USN-5337-1
- USN-5353-1
- USN-5357-1
- USN-5357-2
- USN-5358-1
- USN-5358-2
- USN-5368-1
- USN-5377-1
Source | # ID | Name | URL |
---|---|---|---|
Suse | SUSE ratings | https://www.suse.com/support/security/rating/ | |
Suse | URL of this CSAF notice | https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1269-1.json | |
Suse | URL for SUSE-SU-2022:1269-1 | https://www.suse.com/support/update/announcement/2022/suse-su-20221269-1/ | |
Suse | E-Mail link for SUSE-SU-2022:1269-1 | https://lists.suse.com/pipermail/sle-security-updates/2022-April/010774.html | |
Bugzilla | SUSE Bug 1196959 | https://bugzilla.suse.com/1196959 | |
Bugzilla | SUSE Bug 1197133 | https://bugzilla.suse.com/1197133 | |
CVE | SUSE CVE CVE-2021-39698 page | https://www.suse.com/security/cve/CVE-2021-39698/ | |
CVE | SUSE CVE CVE-2022-27666 page | https://www.suse.com/security/cve/CVE-2022-27666/ |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |