rpm package
suse/kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15-LTSS
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS
Vulnerabilities (387)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-36879 | — | < 4.12.14-150000.150.101.1 | 4.12.14-150000.150.101.1 | Jul 27, 2022 | An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice. | ||
| CVE-2022-36946 | — | < 4.12.14-150000.150.98.1 | 4.12.14-150000.150.98.1 | Jul 27, 2022 | nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len. | ||
| CVE-2020-36557 | — | < 4.12.14-150000.150.98.1 | 4.12.14-150000.150.98.1 | Jul 21, 2022 | A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free. | ||
| CVE-2020-36558 | — | < 4.12.14-150000.150.98.1 | 4.12.14-150000.150.98.1 | Jul 21, 2022 | A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault. | ||
| CVE-2021-33655 | — | < 4.12.14-150000.150.98.1 | 4.12.14-150000.150.98.1 | Jul 18, 2022 | When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds. | ||
| CVE-2021-33656 | — | < 4.12.14-150000.150.98.1 | 4.12.14-150000.150.98.1 | Jul 18, 2022 | When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds. | ||
| CVE-2022-29900 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jul 12, 2022 | Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions. | ||
| CVE-2022-29901 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jul 12, 2022 | Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code exe | ||
| CVE-2022-2318 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jul 6, 2022 | There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges. | ||
| CVE-2022-33742 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-33741 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-33740 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-26365 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jul 5, 2022 | Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202 | ||
| CVE-2022-33981 | — | < 4.12.14-150000.150.95.1 | 4.12.14-150000.150.95.1 | Jun 18, 2022 | drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function. | ||
| CVE-2022-21180 | — | < 4.12.14-150000.150.92.2 | 4.12.14-150000.150.92.2 | Jun 15, 2022 | Improper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local access. | ||
| CVE-2022-21166 | — | < 4.12.14-150000.150.92.2 | 4.12.14-150000.150.92.2 | Jun 15, 2022 | Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2022-21127 | — | < 4.12.14-150000.150.92.2 | 4.12.14-150000.150.92.2 | Jun 15, 2022 | Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2022-21125 | — | < 4.12.14-150000.150.92.2 | 4.12.14-150000.150.92.2 | Jun 15, 2022 | Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2022-21123 | — | < 4.12.14-150000.150.92.2 | 4.12.14-150000.150.92.2 | Jun 15, 2022 | Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | ||
| CVE-2022-20166 | — | < 4.12.14-150000.150.98.1 | 4.12.14-150000.150.98.1 | Jun 15, 2022 | In various methods of kernel base drivers, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An |
- CVE-2022-36879Jul 27, 2022affected < 4.12.14-150000.150.101.1fixed 4.12.14-150000.150.101.1
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
- CVE-2022-36946Jul 27, 2022affected < 4.12.14-150000.150.98.1fixed 4.12.14-150000.150.98.1
nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.
- CVE-2020-36557Jul 21, 2022affected < 4.12.14-150000.150.98.1fixed 4.12.14-150000.150.98.1
A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.
- CVE-2020-36558Jul 21, 2022affected < 4.12.14-150000.150.98.1fixed 4.12.14-150000.150.98.1
A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault.
- CVE-2021-33655Jul 18, 2022affected < 4.12.14-150000.150.98.1fixed 4.12.14-150000.150.98.1
When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
- CVE-2021-33656Jul 18, 2022affected < 4.12.14-150000.150.98.1fixed 4.12.14-150000.150.98.1
When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.
- CVE-2022-29900Jul 12, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.
- CVE-2022-29901Jul 12, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code exe
- CVE-2022-2318Jul 6, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
- CVE-2022-33742Jul 5, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-33741Jul 5, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-33740Jul 5, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-26365Jul 5, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
- CVE-2022-33981Jun 18, 2022affected < 4.12.14-150000.150.95.1fixed 4.12.14-150000.150.95.1
drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function.
- CVE-2022-21180Jun 15, 2022affected < 4.12.14-150000.150.92.2fixed 4.12.14-150000.150.92.2
Improper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local access.
- CVE-2022-21166Jun 15, 2022affected < 4.12.14-150000.150.92.2fixed 4.12.14-150000.150.92.2
Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2022-21127Jun 15, 2022affected < 4.12.14-150000.150.92.2fixed 4.12.14-150000.150.92.2
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2022-21125Jun 15, 2022affected < 4.12.14-150000.150.92.2fixed 4.12.14-150000.150.92.2
Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2022-21123Jun 15, 2022affected < 4.12.14-150000.150.92.2fixed 4.12.14-150000.150.92.2
Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
- CVE-2022-20166Jun 15, 2022affected < 4.12.14-150000.150.98.1fixed 4.12.14-150000.150.98.1
In various methods of kernel base drivers, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An
Page 4 of 20