1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2022:4611-1

[SUSE-SU-2022:4611-1] Security update for the Linux Kernel

Severity Important
Affected Packages 7
CVEs 31
Info Packages References Vulnerabilities

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2022-3635: Fixed a use-after-free in the tst_timer() of the file drivers/atm/idt77252.c (bsc#1204631).
  • CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166).
  • CVE-2022-41850: Fixed a race condition in roccat_report_event() in drivers/hid/hid-roccat.c (bsc#1203960).
  • CVE-2022-45934: Fixed a integer wraparound via L2CAP_CONF_REQ packets in l2cap_config_req in net/bluetooth/l2cap_core.c (bsc#1205796).
  • CVE-2022-3628: Fixed potential buffer overflow in brcmf_fweh_event_worker() in wifi/brcmfmac (bsc#1204868).
  • CVE-2022-3567: Fixed a to race condition in inet6_stream_ops()/inet6_dgram_ops() (bsc#1204414).
  • CVE-2022-41858: Fixed a denial of service in sl_tx_timeout() in drivers/net/slip (bsc#1205671).
  • CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation (bsc#1205128).
  • CVE-2022-4095: Fixed a use-after-free in rtl8712 driver (bsc#1205514).
  • CVE-2022-3903: Fixed a denial of service with the Infrared Transceiver USB driver (bsc#1205220).
  • CVE-2022-2964: Fixed memory corruption issues in ax88179_178a devices (bsc#1202686).
  • CVE-2021-4037: Fixed function logic vulnerability that allowed local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set (bsc#1198702).
  • CVE-2022-43750: Fixed vulnerability in usbmon that allowed a user-space client to corrupt the monitor's internal memory (bsc#1204653).
  • CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism (bsc#1177282).
  • CVE-2022-3542: Fixed memory leak in bnx2x_tpa_stop() in drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c (bsc#1204402).
  • CVE-2022-3629: Fixed memory leak in vsock_connect() in net/vmw_vsock/af_vsock.c (bsc#1204635).
  • CVE-2022-3646: Fixed memory leak in nilfs_attach_log_writer() in fs/nilfs2/segment.c (bsc#1204646).
  • CVE-2022-3649: Fixed use-after-free in nilfs_new_inode() in fs/nilfs2/inode.c (bsc#1204647).
  • CVE-2022-3621: Fixed null pointer dereference in nilfs_bmap_lookup_at_level() in fs/nilfs2/inode.c (bsc#1204574).
  • CVE-2022-3594: Fixed excessive data logging in intr_callback() in drivers/net/usb/r8152.c (bsc#1204479).
  • CVE-2022-3586: Fixed use-after-free in socket buffer (SKB) that could allow a local unprivileged user to cause a denial of service (bsc#1204439).
  • CVE-2022-3565: Fixed use-after-free in del_timer() in drivers/isdn/mISDN/l1oip_core.c (bsc#1204431).
  • CVE-2022-3524: Fixed memory leak in ipv6_renew_options() in the IPv6 handler (bsc#1204354).
  • CVE-2022-2663: Fixed an issue which allowed a firewall to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured (bsc#1202097).
  • CVE-2022-40768: Fixed information leak in the scsi driver which allowed local users to obtain sensitive information from kernel memory (bsc#1203514).
  • CVE-2022-42703: Fixed use-after-free in mm/rmap.c related to leaf anon_vma double reuse (bsc#1204168).
  • CVE-2022-3169: Fixed an denial of service though request to NVME_IOCTL_RESET and NVME_IOCTL_SUBSYS_RESET (bsc#1203290).
  • CVE-2022-40307: Fixed a race condition that could had been exploited to trigger a use-after-free in the efi firmware capsule-loader.c (bsc#1203322).
  • CVE-2022-41848: Fixed a race condition in drivers/char/pcmcia/synclink_cs.c mgslpc_ioctl and mgslpc_detach (bsc#1203987).

The following non-security bugs were fixed:

  • net: mana: Add rmb after checking owner bits (git-fixes).
  • net: mana: Add the Linux MANA PF driver (bug#1201309, jsc#PED-529).
  • x86/hyperv: Output host build info as normal Windows version number (git-fixes).
  • x86/hyperv: Set pv_info.name to 'Hyper-V' (git-fixes).
Package Affected Version
pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=3 < 4.4.180-94.182.1
pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=3 < 4.4.180-94.182.1
pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=3 < 4.4.180-94.182.1
pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=3 < 4.4.180-94.182.1
pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=3 < 4.4.180-94.182.1
pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=3 < 4.4.180-94.182.1
pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=3 < 4.4.180-94.182.1
ID
SUSE-SU-2022:4611-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2022/suse-su-20224611-1/
Published
2022-12-23T08:35:56
(21 months ago)
Modified
2022-12-23T08:35:56
(21 months ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Source # ID Name URL
Suse SUSE ratings https://www.suse.com/support/security/rating/
Suse URL of this CSAF notice https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_4611-1.json
Suse URL for SUSE-SU-2022:4611-1 https://www.suse.com/support/update/announcement/2022/suse-su-20224611-1/
Suse E-Mail link for SUSE-SU-2022:4611-1 https://lists.suse.com/pipermail/sle-security-updates/2022-December/013341.html
Bugzilla SUSE Bug 1129898 https://bugzilla.suse.com/1129898
Bugzilla SUSE Bug 1177282 https://bugzilla.suse.com/1177282
Bugzilla SUSE Bug 1196018 https://bugzilla.suse.com/1196018
Bugzilla SUSE Bug 1198702 https://bugzilla.suse.com/1198702
Bugzilla SUSE Bug 1201309 https://bugzilla.suse.com/1201309
Bugzilla SUSE Bug 1202097 https://bugzilla.suse.com/1202097
Bugzilla SUSE Bug 1202686 https://bugzilla.suse.com/1202686
Bugzilla SUSE Bug 1203008 https://bugzilla.suse.com/1203008
Bugzilla SUSE Bug 1203290 https://bugzilla.suse.com/1203290
Bugzilla SUSE Bug 1203322 https://bugzilla.suse.com/1203322
Bugzilla SUSE Bug 1203514 https://bugzilla.suse.com/1203514
Bugzilla SUSE Bug 1203960 https://bugzilla.suse.com/1203960
Bugzilla SUSE Bug 1203987 https://bugzilla.suse.com/1203987
Bugzilla SUSE Bug 1204166 https://bugzilla.suse.com/1204166
Bugzilla SUSE Bug 1204168 https://bugzilla.suse.com/1204168
Bugzilla SUSE Bug 1204170 https://bugzilla.suse.com/1204170
Bugzilla SUSE Bug 1204354 https://bugzilla.suse.com/1204354
Bugzilla SUSE Bug 1204402 https://bugzilla.suse.com/1204402
Bugzilla SUSE Bug 1204414 https://bugzilla.suse.com/1204414
Bugzilla SUSE Bug 1204431 https://bugzilla.suse.com/1204431
Bugzilla SUSE Bug 1204432 https://bugzilla.suse.com/1204432
Bugzilla SUSE Bug 1204439 https://bugzilla.suse.com/1204439
Bugzilla SUSE Bug 1204479 https://bugzilla.suse.com/1204479
Bugzilla SUSE Bug 1204574 https://bugzilla.suse.com/1204574
Bugzilla SUSE Bug 1204576 https://bugzilla.suse.com/1204576
Bugzilla SUSE Bug 1204631 https://bugzilla.suse.com/1204631
Bugzilla SUSE Bug 1204635 https://bugzilla.suse.com/1204635
Bugzilla SUSE Bug 1204636 https://bugzilla.suse.com/1204636
Bugzilla SUSE Bug 1204646 https://bugzilla.suse.com/1204646
Bugzilla SUSE Bug 1204647 https://bugzilla.suse.com/1204647
Bugzilla SUSE Bug 1204653 https://bugzilla.suse.com/1204653
Bugzilla SUSE Bug 1204868 https://bugzilla.suse.com/1204868
Bugzilla SUSE Bug 1205128 https://bugzilla.suse.com/1205128
Bugzilla SUSE Bug 1205130 https://bugzilla.suse.com/1205130
Bugzilla SUSE Bug 1205220 https://bugzilla.suse.com/1205220
Bugzilla SUSE Bug 1205514 https://bugzilla.suse.com/1205514
Bugzilla SUSE Bug 1205671 https://bugzilla.suse.com/1205671
Bugzilla SUSE Bug 1205796 https://bugzilla.suse.com/1205796
Bugzilla SUSE Bug 1206164 https://bugzilla.suse.com/1206164
CVE SUSE CVE CVE-2019-3874 page https://www.suse.com/security/cve/CVE-2019-3874/
CVE SUSE CVE CVE-2020-26541 page https://www.suse.com/security/cve/CVE-2020-26541/
CVE SUSE CVE CVE-2021-4037 page https://www.suse.com/security/cve/CVE-2021-4037/
CVE SUSE CVE CVE-2022-2663 page https://www.suse.com/security/cve/CVE-2022-2663/
CVE SUSE CVE CVE-2022-28748 page https://www.suse.com/security/cve/CVE-2022-28748/
CVE SUSE CVE CVE-2022-2964 page https://www.suse.com/security/cve/CVE-2022-2964/
CVE SUSE CVE CVE-2022-3169 page https://www.suse.com/security/cve/CVE-2022-3169/
CVE SUSE CVE CVE-2022-3424 page https://www.suse.com/security/cve/CVE-2022-3424/
CVE SUSE CVE CVE-2022-3524 page https://www.suse.com/security/cve/CVE-2022-3524/
CVE SUSE CVE CVE-2022-3542 page https://www.suse.com/security/cve/CVE-2022-3542/
CVE SUSE CVE CVE-2022-3565 page https://www.suse.com/security/cve/CVE-2022-3565/
CVE SUSE CVE CVE-2022-3567 page https://www.suse.com/security/cve/CVE-2022-3567/
CVE SUSE CVE CVE-2022-3586 page https://www.suse.com/security/cve/CVE-2022-3586/
CVE SUSE CVE CVE-2022-3594 page https://www.suse.com/security/cve/CVE-2022-3594/
CVE SUSE CVE CVE-2022-3621 page https://www.suse.com/security/cve/CVE-2022-3621/
CVE SUSE CVE CVE-2022-3628 page https://www.suse.com/security/cve/CVE-2022-3628/
CVE SUSE CVE CVE-2022-3629 page https://www.suse.com/security/cve/CVE-2022-3629/
CVE SUSE CVE CVE-2022-3635 page https://www.suse.com/security/cve/CVE-2022-3635/
CVE SUSE CVE CVE-2022-3646 page https://www.suse.com/security/cve/CVE-2022-3646/
CVE SUSE CVE CVE-2022-3649 page https://www.suse.com/security/cve/CVE-2022-3649/
CVE SUSE CVE CVE-2022-3903 page https://www.suse.com/security/cve/CVE-2022-3903/
CVE SUSE CVE CVE-2022-40307 page https://www.suse.com/security/cve/CVE-2022-40307/
CVE SUSE CVE CVE-2022-40768 page https://www.suse.com/security/cve/CVE-2022-40768/
CVE SUSE CVE CVE-2022-4095 page https://www.suse.com/security/cve/CVE-2022-4095/
CVE SUSE CVE CVE-2022-41848 page https://www.suse.com/security/cve/CVE-2022-41848/
CVE SUSE CVE CVE-2022-41850 page https://www.suse.com/security/cve/CVE-2022-41850/
CVE SUSE CVE CVE-2022-41858 page https://www.suse.com/security/cve/CVE-2022-41858/
CVE SUSE CVE CVE-2022-42703 page https://www.suse.com/security/cve/CVE-2022-42703/
CVE SUSE CVE CVE-2022-43750 page https://www.suse.com/security/cve/CVE-2022-43750/
CVE SUSE CVE CVE-2022-43945 page https://www.suse.com/security/cve/CVE-2022-43945/
CVE SUSE CVE CVE-2022-45934 page https://www.suse.com/security/cve/CVE-2022-45934/
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/kernel-syms?arch=x86_64&distro=sles-12&sp=3 suse kernel-syms < 4.4.180-94.182.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-source?arch=noarch&distro=sles-12&sp=3 suse kernel-source < 4.4.180-94.182.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-macros?arch=noarch&distro=sles-12&sp=3 suse kernel-macros < 4.4.180-94.182.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-devel?arch=noarch&distro=sles-12&sp=3 suse kernel-devel < 4.4.180-94.182.1 sles-12 noarch
Affected pkg:rpm/suse/kernel-default?arch=x86_64&distro=sles-12&sp=3 suse kernel-default < 4.4.180-94.182.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-devel?arch=x86_64&distro=sles-12&sp=3 suse kernel-default-devel < 4.4.180-94.182.1 sles-12 x86_64
Affected pkg:rpm/suse/kernel-default-base?arch=x86_64&distro=sles-12&sp=3 suse kernel-default-base < 4.4.180-94.182.1 sles-12 x86_64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date