rpm package
suse/kernel-docs&distro=SUSE Linux Enterprise Software Development Kit 12 SP5
pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
Vulnerabilities (1,486)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-21385 | — | < 4.12.14-122.133.2 | 4.12.14-122.133.2 | Aug 29, 2022 | A flaw in net_rds_alloc_sgs() in Oracle Linux kernels allows unprivileged local users to crash the machine. CVSS 3.1 Base Score 6.2 (Availability impacts). CVSS Vector (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) | ||
| CVE-2022-1016 | — | < 4.12.14-122.116.1 | 4.12.14-122.116.1 | Aug 29, 2022 | A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker. | ||
| CVE-2022-0850 | — | < 4.12.14-122.116.1 | 4.12.14-122.116.1 | Aug 29, 2022 | A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace. | ||
| CVE-2022-0812 | — | < 4.12.14-122.116.1 | 4.12.14-122.116.1 | Aug 29, 2022 | An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpc_rdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information. | ||
| CVE-2022-1184 | — | < 4.12.14-122.124.2 | 4.12.14-122.124.2 | Aug 29, 2022 | A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service. | ||
| CVE-2022-2991 | — | < 4.12.14-122.150.1 | 4.12.14-122.150.1 | Aug 25, 2022 | A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalat | ||
| CVE-2021-4037 | — | < 4.12.14-122.139.1 | 4.12.14-122.139.1 | Aug 24, 2022 | A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a direct | ||
| CVE-2021-3764 | — | < 4.12.14-122.91.2 | 4.12.14-122.91.2 | Aug 23, 2022 | A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability. | ||
| CVE-2021-3759 | — | < 4.12.14-122.88.1 | 4.12.14-122.88.1 | Aug 23, 2022 | A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highe | ||
| CVE-2021-3659 | — | < 4.12.14-122.83.1 | 4.12.14-122.83.1 | Aug 22, 2022 | A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user closes the LR-WPAN connection. This flaw allows a local user to crash the system. The highest threat from this vulnerability is to system availability. | ||
| CVE-2022-26373 | — | < 4.12.14-122.133.2 | 4.12.14-122.133.2 | Aug 18, 2022 | Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | ||
| CVE-2022-2503 | — | < 4.12.14-122.136.1 | 4.12.14-122.136.1 | Aug 12, 2022 | Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equiva | ||
| CVE-2022-20368 | — | < 4.12.14-122.133.2 | 4.12.14-122.133.2 | Aug 11, 2022 | Product: AndroidVersions: Android kernelAndroid ID: A-224546354References: Upstream kernel | ||
| CVE-2022-20369 | — | < 4.12.14-122.133.2 | 4.12.14-122.133.2 | Aug 11, 2022 | In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An | ||
| CVE-2022-1012 | — | < 4.12.14-122.127.1 | 4.12.14-122.127.1 | Aug 5, 2022 | A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem. | ||
| CVE-2022-36879 | — | < 4.12.14-122.133.2 | 4.12.14-122.133.2 | Jul 27, 2022 | An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice. | ||
| CVE-2022-36946 | — | < 4.12.14-122.130.2 | 4.12.14-122.130.2 | Jul 27, 2022 | nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len. | ||
| CVE-2020-36557 | — | < 4.12.14-122.130.2 | 4.12.14-122.130.2 | Jul 21, 2022 | A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free. | ||
| CVE-2020-36558 | — | < 4.12.14-122.130.2 | 4.12.14-122.130.2 | Jul 21, 2022 | A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault. | ||
| CVE-2021-33655 | — | < 4.12.14-122.130.2 | 4.12.14-122.130.2 | Jul 18, 2022 | When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds. |
- CVE-2022-21385Aug 29, 2022affected < 4.12.14-122.133.2fixed 4.12.14-122.133.2
A flaw in net_rds_alloc_sgs() in Oracle Linux kernels allows unprivileged local users to crash the machine. CVSS 3.1 Base Score 6.2 (Availability impacts). CVSS Vector (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
- CVE-2022-1016Aug 29, 2022affected < 4.12.14-122.116.1fixed 4.12.14-122.116.1
A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.
- CVE-2022-0850Aug 29, 2022affected < 4.12.14-122.116.1fixed 4.12.14-122.116.1
A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace.
- CVE-2022-0812Aug 29, 2022affected < 4.12.14-122.116.1fixed 4.12.14-122.116.1
An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpc_rdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information.
- CVE-2022-1184Aug 29, 2022affected < 4.12.14-122.124.2fixed 4.12.14-122.124.2
A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service.
- CVE-2022-2991Aug 25, 2022affected < 4.12.14-122.150.1fixed 4.12.14-122.150.1
A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalat
- CVE-2021-4037Aug 24, 2022affected < 4.12.14-122.139.1fixed 4.12.14-122.139.1
A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a direct
- CVE-2021-3764Aug 23, 2022affected < 4.12.14-122.91.2fixed 4.12.14-122.91.2
A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.
- CVE-2021-3759Aug 23, 2022affected < 4.12.14-122.88.1fixed 4.12.14-122.88.1
A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highe
- CVE-2021-3659Aug 22, 2022affected < 4.12.14-122.83.1fixed 4.12.14-122.83.1
A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user closes the LR-WPAN connection. This flaw allows a local user to crash the system. The highest threat from this vulnerability is to system availability.
- CVE-2022-26373Aug 18, 2022affected < 4.12.14-122.133.2fixed 4.12.14-122.133.2
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- CVE-2022-2503Aug 12, 2022affected < 4.12.14-122.136.1fixed 4.12.14-122.136.1
Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equiva
- CVE-2022-20368Aug 11, 2022affected < 4.12.14-122.133.2fixed 4.12.14-122.133.2
Product: AndroidVersions: Android kernelAndroid ID: A-224546354References: Upstream kernel
- CVE-2022-20369Aug 11, 2022affected < 4.12.14-122.133.2fixed 4.12.14-122.133.2
In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An
- CVE-2022-1012Aug 5, 2022affected < 4.12.14-122.127.1fixed 4.12.14-122.127.1
A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem.
- CVE-2022-36879Jul 27, 2022affected < 4.12.14-122.133.2fixed 4.12.14-122.133.2
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
- CVE-2022-36946Jul 27, 2022affected < 4.12.14-122.130.2fixed 4.12.14-122.130.2
nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.
- CVE-2020-36557Jul 21, 2022affected < 4.12.14-122.130.2fixed 4.12.14-122.130.2
A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.
- CVE-2020-36558Jul 21, 2022affected < 4.12.14-122.130.2fixed 4.12.14-122.130.2
A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault.
- CVE-2021-33655Jul 18, 2022affected < 4.12.14-122.130.2fixed 4.12.14-122.130.2
When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
Page 54 of 75