rpm package
opensuse/kernel-vanilla&distro=openSUSE Leap 15.4
pkg:rpm/opensuse/kernel-vanilla&distro=openSUSE%20Leap%2015.4
Vulnerabilities (213)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-36280 | — | < 4.12.14-150100.197.137.2 | 4.12.14-150100.197.137.2 | Sep 9, 2022 | An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privi | ||
| CVE-2022-40307 | — | < 4.12.14-150100.197.131.1 | 4.12.14-150100.197.131.1 | Sep 9, 2022 | An issue was discovered in the Linux kernel through 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free. | ||
| CVE-2022-3169 | — | < 4.12.14-150100.197.131.1 | 4.12.14-150100.197.131.1 | Sep 9, 2022 | A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET through the device file of the driver, resulting in a PCIe link disconnect. | ||
| CVE-2022-2964 | — | < 4.12.14-150100.197.131.1 | 4.12.14-150100.197.131.1 | Sep 9, 2022 | A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds reads and possible out-of-bounds writes. | ||
| CVE-2022-39188 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Sep 2, 2022 | An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs. | ||
| CVE-2022-2639 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Sep 1, 2022 | An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an | ||
| CVE-2022-2663 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Sep 1, 2022 | An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured. | ||
| CVE-2022-1729 | — | < 4.12.14-150100.197.114.2 | 4.12.14-150100.197.114.2 | Sep 1, 2022 | A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc. | ||
| CVE-2022-1975 | — | < 4.12.14-150100.197.114.2 | 4.12.14-150100.197.114.2 | Aug 31, 2022 | There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space. | ||
| CVE-2022-1974 | — | < 4.12.14-150100.197.114.2 | 4.12.14-150100.197.114.2 | Aug 31, 2022 | A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN privilege to leak kernel information. | ||
| CVE-2022-3028 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Aug 31, 2022 | A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory | ||
| CVE-2022-2153 | — | < 4.12.14-150100.197.131.1 | 4.12.14-150100.197.131.1 | Aug 31, 2022 | A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VMM to write to SYNIC/STIMER MSRs, causing a NULL pointer dereference. This flaw allows an unprivileged local attacker on the host to issue specific ioctl | ||
| CVE-2022-21385 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Aug 29, 2022 | A flaw in net_rds_alloc_sgs() in Oracle Linux kernels allows unprivileged local users to crash the machine. CVSS 3.1 Base Score 6.2 (Availability impacts). CVSS Vector (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) | ||
| CVE-2022-1184 | — | < 4.12.14-150100.197.114.2 | 4.12.14-150100.197.114.2 | Aug 29, 2022 | A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service. | ||
| CVE-2022-2991 | — | < 4.12.14-150100.197.137.2 | 4.12.14-150100.197.137.2 | Aug 25, 2022 | A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalat | ||
| CVE-2021-4037 | — | < 4.12.14-150100.197.131.1 | 4.12.14-150100.197.131.1 | Aug 24, 2022 | A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a direct | ||
| CVE-2022-26373 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Aug 18, 2022 | Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | ||
| CVE-2022-2503 | — | < 4.12.14-150100.197.126.1 | 4.12.14-150100.197.126.1 | Aug 12, 2022 | Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equiva | ||
| CVE-2022-20368 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Aug 11, 2022 | Product: AndroidVersions: Android kernelAndroid ID: A-224546354References: Upstream kernel | ||
| CVE-2022-20369 | — | < 4.12.14-150100.197.123.1 | 4.12.14-150100.197.123.1 | Aug 11, 2022 | In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An |
- CVE-2022-36280Sep 9, 2022affected < 4.12.14-150100.197.137.2fixed 4.12.14-150100.197.137.2
An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privi
- CVE-2022-40307Sep 9, 2022affected < 4.12.14-150100.197.131.1fixed 4.12.14-150100.197.131.1
An issue was discovered in the Linux kernel through 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free.
- CVE-2022-3169Sep 9, 2022affected < 4.12.14-150100.197.131.1fixed 4.12.14-150100.197.131.1
A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the NVME_IOCTL_SUBSYS_RESET through the device file of the driver, resulting in a PCIe link disconnect.
- CVE-2022-2964Sep 9, 2022affected < 4.12.14-150100.197.131.1fixed 4.12.14-150100.197.131.1
A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds reads and possible out-of-bounds writes.
- CVE-2022-39188Sep 2, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs.
- CVE-2022-2639Sep 1, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an
- CVE-2022-2663Sep 1, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured.
- CVE-2022-1729Sep 1, 2022affected < 4.12.14-150100.197.114.2fixed 4.12.14-150100.197.114.2
A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.
- CVE-2022-1975Aug 31, 2022affected < 4.12.14-150100.197.114.2fixed 4.12.14-150100.197.114.2
There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space.
- CVE-2022-1974Aug 31, 2022affected < 4.12.14-150100.197.114.2fixed 4.12.14-150100.197.114.2
A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN privilege to leak kernel information.
- CVE-2022-3028Aug 31, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory
- CVE-2022-2153Aug 31, 2022affected < 4.12.14-150100.197.131.1fixed 4.12.14-150100.197.131.1
A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VMM to write to SYNIC/STIMER MSRs, causing a NULL pointer dereference. This flaw allows an unprivileged local attacker on the host to issue specific ioctl
- CVE-2022-21385Aug 29, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
A flaw in net_rds_alloc_sgs() in Oracle Linux kernels allows unprivileged local users to crash the machine. CVSS 3.1 Base Score 6.2 (Availability impacts). CVSS Vector (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
- CVE-2022-1184Aug 29, 2022affected < 4.12.14-150100.197.114.2fixed 4.12.14-150100.197.114.2
A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service.
- CVE-2022-2991Aug 25, 2022affected < 4.12.14-150100.197.137.2fixed 4.12.14-150100.197.137.2
A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalat
- CVE-2021-4037Aug 24, 2022affected < 4.12.14-150100.197.131.1fixed 4.12.14-150100.197.131.1
A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a direct
- CVE-2022-26373Aug 18, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- CVE-2022-2503Aug 12, 2022affected < 4.12.14-150100.197.126.1fixed 4.12.14-150100.197.126.1
Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equiva
- CVE-2022-20368Aug 11, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
Product: AndroidVersions: Android kernelAndroid ID: A-224546354References: Upstream kernel
- CVE-2022-20369Aug 11, 2022affected < 4.12.14-150100.197.123.1fixed 4.12.14-150100.197.123.1
In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An
Page 8 of 11