rpm package
opensuse/kernel-default&distro=openSUSE Leap 15.4
pkg:rpm/opensuse/kernel-default&distro=openSUSE%20Leap%2015.4
Vulnerabilities (357)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-41218 | — | < 4.12.14-150100.197.126.1 | 4.12.14-150100.197.126.1 | Sep 21, 2022 | In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release. | ||
| CVE-2022-3239 | — | < 4.12.14-150100.197.126.1 | 4.12.14-150100.197.126.1 | Sep 19, 2022 | A flaw use after free in the Linux kernel video4linux driver was found in the way user triggers em28xx_usb_probe() for the Empia 28xx based TV cards. A local user could use this flaw to crash the system or potentially escalate their privileges on the system. | ||
| CVE-2022-40768 | — | < 5.14.21-150400.24.33.2 | 5.14.21-150400.24.33.2 | Sep 18, 2022 | drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stex_queuecommand_lck lacks a memset for the PASSTHRU_CMD case. | ||
| CVE-2022-36402 | — | < 4.12.14-150100.197.157.1 | 4.12.14-150100.197.157.1 | Sep 16, 2022 | An integer overflow vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a | ||
| CVE-2022-3176 | — | < 5.14.21-150400.24.38.1 | 5.14.21-150400.24.38.1 | Sep 16, 2022 | There exists a use-after-free in io_uring in the Linux kernel. Signalfd_poll() and binder_poll() use a waitqueue whose lifetime is the current task. It will send a POLLFREE notification to all waiters before the queue is freed. Unfortunately, the io_uring poll doesn't handle POLL | ||
| CVE-2022-40476 | — | < 5.14.21-150400.24.33.2 | 5.14.21-150400.24.33.2 | Sep 14, 2022 | A null pointer dereference issue was discovered in fs/io_uring.c in the Linux kernel before 5.15.62. A local user could use this flaw to crash the system or potentially cause a denial of service. | ||
| CVE-2022-3202 | — | < 5.14.21-150400.24.28.1 | 5.14.21-150400.24.28.1 | Sep 14, 2022 | A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information. | ||
| CVE-2022-2977 | — | < 5.14.21-150400.24.21.2 | 5.14.21-150400.24.21.2 | Sep 14, 2022 | A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized TPM devices are configured (this is not the default) a local attacker can create a use-after-free and create a situation where it may be possible to escalate priv | ||
| CVE-2022-38096 | Med | 6.3 | < 4.12.14-150100.197.137.2 | 4.12.14-150100.197.137.2 | Sep 9, 2022 | A NULL pointer dereference vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, cau | |
| CVE-2022-36280 | — | < 4.12.14-150100.197.137.2 | 4.12.14-150100.197.137.2 | Sep 9, 2022 | An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privi | ||
| CVE-2022-40307 | — | < 4.12.14-150100.197.131.1 | 4.12.14-150100.197.131.1 | Sep 9, 2022 | An issue was discovered in the Linux kernel through 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free. | ||
| CVE-2022-3169 | — | < 5.14.21-150400.24.33.2 | 5.14.21-150400.24.33.2 | Sep 9, 2022 | A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET through the device file of the driver, resulting in a PCIe link disconnect. | ||
| CVE-2022-2964 | — | < 5.14.21-150400.24.33.2 | 5.14.21-150400.24.33.2 | Sep 9, 2022 | A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds reads and possible out-of-bounds writes. | ||
| CVE-2022-2905 | — | < 5.14.21-150400.24.21.2 | 5.14.21-150400.24.21.2 | Sep 9, 2022 | An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpf_tail_call function with a key larger than the max_entries of the map. This flaw allows a local user to gain unauthorized access to data. | ||
| CVE-2022-39190 | — | < 5.14.21-150400.24.21.2 | 5.14.21-150400.24.21.2 | Sep 2, 2022 | An issue was discovered in net/netfilter/nf_tables_api.c in the Linux kernel before 5.19.6. A denial of service can occur upon binding to an already bound chain. | ||
| CVE-2022-39189 | — | < 5.14.21-150400.24.28.1 | 5.14.21-150400.24.28.1 | Sep 2, 2022 | An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations. | ||
| CVE-2022-39188 | — | < 5.14.21-150400.24.21.2 | 5.14.21-150400.24.21.2 | Sep 2, 2022 | An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs. | ||
| CVE-2022-3078 | — | < 5.14.21-150400.24.21.2 | 5.14.21-150400.24.21.2 | Sep 1, 2022 | An issue was discovered in the Linux kernel through 5.16-rc6. There is a lack of check after calling vzalloc() and lack of free after allocation in drivers/media/test-drivers/vidtv/vidtv_s302m.c. | ||
| CVE-2022-2639 | — | < 5.14.21-150400.24.21.2 | 5.14.21-150400.24.21.2 | Sep 1, 2022 | An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an | ||
| CVE-2022-2663 | — | < 5.14.21-150400.24.21.2 | 5.14.21-150400.24.21.2 | Sep 1, 2022 | An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured. |
- CVE-2022-41218Sep 21, 2022affected < 4.12.14-150100.197.126.1fixed 4.12.14-150100.197.126.1
In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release.
- CVE-2022-3239Sep 19, 2022affected < 4.12.14-150100.197.126.1fixed 4.12.14-150100.197.126.1
A flaw use after free in the Linux kernel video4linux driver was found in the way user triggers em28xx_usb_probe() for the Empia 28xx based TV cards. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.
- CVE-2022-40768Sep 18, 2022affected < 5.14.21-150400.24.33.2fixed 5.14.21-150400.24.33.2
drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stex_queuecommand_lck lacks a memset for the PASSTHRU_CMD case.
- CVE-2022-36402Sep 16, 2022affected < 4.12.14-150100.197.157.1fixed 4.12.14-150100.197.157.1
An integer overflow vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a
- CVE-2022-3176Sep 16, 2022affected < 5.14.21-150400.24.38.1fixed 5.14.21-150400.24.38.1
There exists a use-after-free in io_uring in the Linux kernel. Signalfd_poll() and binder_poll() use a waitqueue whose lifetime is the current task. It will send a POLLFREE notification to all waiters before the queue is freed. Unfortunately, the io_uring poll doesn't handle POLL
- CVE-2022-40476Sep 14, 2022affected < 5.14.21-150400.24.33.2fixed 5.14.21-150400.24.33.2
A null pointer dereference issue was discovered in fs/io_uring.c in the Linux kernel before 5.15.62. A local user could use this flaw to crash the system or potentially cause a denial of service.
- CVE-2022-3202Sep 14, 2022affected < 5.14.21-150400.24.28.1fixed 5.14.21-150400.24.28.1
A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information.
- CVE-2022-2977Sep 14, 2022affected < 5.14.21-150400.24.21.2fixed 5.14.21-150400.24.21.2
A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized TPM devices are configured (this is not the default) a local attacker can create a use-after-free and create a situation where it may be possible to escalate priv
- affected < 4.12.14-150100.197.137.2fixed 4.12.14-150100.197.137.2
A NULL pointer dereference vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, cau
- CVE-2022-36280Sep 9, 2022affected < 4.12.14-150100.197.137.2fixed 4.12.14-150100.197.137.2
An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privi
- CVE-2022-40307Sep 9, 2022affected < 4.12.14-150100.197.131.1fixed 4.12.14-150100.197.131.1
An issue was discovered in the Linux kernel through 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free.
- CVE-2022-3169Sep 9, 2022affected < 5.14.21-150400.24.33.2fixed 5.14.21-150400.24.33.2
A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET through the device file of the driver, resulting in a PCIe link disconnect.
- CVE-2022-2964Sep 9, 2022affected < 5.14.21-150400.24.33.2fixed 5.14.21-150400.24.33.2
A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds reads and possible out-of-bounds writes.
- CVE-2022-2905Sep 9, 2022affected < 5.14.21-150400.24.21.2fixed 5.14.21-150400.24.21.2
An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpf_tail_call function with a key larger than the max_entries of the map. This flaw allows a local user to gain unauthorized access to data.
- CVE-2022-39190Sep 2, 2022affected < 5.14.21-150400.24.21.2fixed 5.14.21-150400.24.21.2
An issue was discovered in net/netfilter/nf_tables_api.c in the Linux kernel before 5.19.6. A denial of service can occur upon binding to an already bound chain.
- CVE-2022-39189Sep 2, 2022affected < 5.14.21-150400.24.28.1fixed 5.14.21-150400.24.28.1
An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations.
- CVE-2022-39188Sep 2, 2022affected < 5.14.21-150400.24.21.2fixed 5.14.21-150400.24.21.2
An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs.
- CVE-2022-3078Sep 1, 2022affected < 5.14.21-150400.24.21.2fixed 5.14.21-150400.24.21.2
An issue was discovered in the Linux kernel through 5.16-rc6. There is a lack of check after calling vzalloc() and lack of free after allocation in drivers/media/test-drivers/vidtv/vidtv_s302m.c.
- CVE-2022-2639Sep 1, 2022affected < 5.14.21-150400.24.21.2fixed 5.14.21-150400.24.21.2
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an
- CVE-2022-2663Sep 1, 2022affected < 5.14.21-150400.24.21.2fixed 5.14.21-150400.24.21.2
An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured.
Page 13 of 18