rpm package
opensuse/kernel-default-base&distro=openSUSE Leap Micro 5.2
pkg:rpm/opensuse/kernel-default-base&distro=openSUSE%20Leap%20Micro%205.2
Vulnerabilities (124)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-33742 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-33741 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-33740 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-26365 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-34918 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | Jul 4, 2022 | An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. (The attacker can obtain root access, but | ||
| CVE-2022-33981 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | Jun 18, 2022 | drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function. | ||
| CVE-2022-20166 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | Jun 15, 2022 | In various methods of kernel base drivers, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An | ||
| CVE-2022-20154 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | Jun 15, 2022 | In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: | ||
| CVE-2022-20141 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | Jun 15, 2022 | In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not needed for exploitation.Product | ||
| CVE-2022-20132 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | Jun 15, 2022 | In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges n | ||
| CVE-2022-32250 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | Jun 2, 2022 | net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free. | ||
| CVE-2022-1462 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | May 31, 2022 | An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local u | ||
| CVE-2022-29581 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | May 17, 2022 | Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions. | ||
| CVE-2022-1116 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | May 17, 2022 | Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to cause memory corruption and escalate privileges to root. This issue affects: Linux Kernel versions prior to 5.4.189; version 5.4.24 and later versions. | ||
| CVE-2022-1679 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | May 16, 2022 | A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the system. | ||
| CVE-2022-20008 | — | < 5.3.18-150300.59.98.1.150300.18.56.3 | 5.3.18-150300.59.98.1.150300.18.56.3 | May 10, 2022 | In mmc_blk_read_single of block.c, there is a possible way to read kernel heap memory due to uninitialized data. This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. User interaction is no | ||
| CVE-2021-4157 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | Mar 25, 2022 | An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). A user, having access to the NFS mount, could potentially use this flaw to crash the system or escalate privileg | ||
| CVE-2021-4203 | — | < 5.3.18-150300.59.93.1.150300.18.54.1 | 5.3.18-150300.59.93.1.150300.18.54.1 | Mar 25, 2022 | A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information. | ||
| CVE-2021-26341 | — | < 5.3.18-150300.59.87.1.150300.18.50.2 | 5.3.18-150300.59.87.1.150300.18.50.2 | Mar 11, 2022 | Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage. | ||
| CVE-2020-36516 | — | < 5.3.18-150300.59.90.1.150300.18.52.1 | 5.3.18-150300.59.90.1.150300.18.52.1 | Feb 26, 2022 | An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session. |
- CVE-2022-33742Jul 5, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-33741Jul 5, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-33740Jul 5, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-26365Jul 5, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-34918Jul 4, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. (The attacker can obtain root access, but
- CVE-2022-33981Jun 18, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function.
- CVE-2022-20166Jun 15, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
In various methods of kernel base drivers, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An
- CVE-2022-20154Jun 15, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:
- CVE-2022-20141Jun 15, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not needed for exploitation.Product
- CVE-2022-20132Jun 15, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges n
- CVE-2022-32250Jun 2, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.
- CVE-2022-1462May 31, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local u
- CVE-2022-29581May 17, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions.
- CVE-2022-1116May 17, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to cause memory corruption and escalate privileges to root. This issue affects: Linux Kernel versions prior to 5.4.189; version 5.4.24 and later versions.
- CVE-2022-1679May 16, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the system.
- CVE-2022-20008May 10, 2022affected < 5.3.18-150300.59.98.1.150300.18.56.3fixed 5.3.18-150300.59.98.1.150300.18.56.3
In mmc_blk_read_single of block.c, there is a possible way to read kernel heap memory due to uninitialized data. This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. User interaction is no
- CVE-2021-4157Mar 25, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). A user, having access to the NFS mount, could potentially use this flaw to crash the system or escalate privileg
- CVE-2021-4203Mar 25, 2022affected < 5.3.18-150300.59.93.1.150300.18.54.1fixed 5.3.18-150300.59.93.1.150300.18.54.1
A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information.
- CVE-2021-26341Mar 11, 2022affected < 5.3.18-150300.59.87.1.150300.18.50.2fixed 5.3.18-150300.59.87.1.150300.18.50.2
Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.
- CVE-2020-36516Feb 26, 2022affected < 5.3.18-150300.59.90.1.150300.18.52.1fixed 5.3.18-150300.59.90.1.150300.18.52.1
An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.
Page 6 of 7