rpm package
suse/kernel-docs&distro=SUSE Manager Server 4.1
pkg:rpm/suse/kernel-docs&distro=SUSE%20Manager%20Server%204.1
Vulnerabilities (183)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-28693 | Med | 4.7 | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Feb 14, 2025 | Unprotected alternative channel of return branch target prediction in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | |
| CVE-2022-21505 | — | < 5.3.18-150200.24.126.1 | 5.3.18-150200.24.126.1 | Dec 24, 2024 | In the linux kernel, if IMA appraisal is used with the "ima_appraise=log" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavailable. IMA prevents setting "ima_appraise=log" from the boot param when Secure Boot is enabled, but this | ||
| CVE-2022-2602 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Jan 8, 2024 | io_uring UAF, Unix SCM garbage collection | ||
| CVE-2022-2588 | — | < 5.3.18-150200.24.129.1 | 5.3.18-150200.24.129.1 | Jan 8, 2024 | It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0. | ||
| CVE-2022-2586 | — | KEV | < 5.3.18-150200.24.134.1 | 5.3.18-150200.24.134.1 | Jan 8, 2024 | It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted. | |
| CVE-2022-22942 | — | < 5.3.18-24.102.1 | 5.3.18-24.102.1 | Dec 13, 2023 | The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer. | ||
| CVE-2022-4095 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Mar 22, 2023 | A use-after-free flaw was found in Linux kernel before 5.19.2. This issue occurs in cmd_hdl_filter in drivers/staging/rtl8712/rtl8712_cmd.c, allowing an attacker to launch a local denial of service attack and gain escalation of privileges. | ||
| CVE-2022-3707 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Mar 6, 2023 | A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intel_gvt_dma_map_guest_page function. This issue could allow a local user to crash the system. | ||
| CVE-2022-3424 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Mar 6, 2023 | A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate | ||
| CVE-2022-4139 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Jan 27, 2023 | An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system. | ||
| CVE-2022-41858 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Jan 17, 2023 | A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information. | ||
| CVE-2022-3628 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Jan 12, 2023 | A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges. | ||
| CVE-2022-4378 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Jan 5, 2023 | A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system. | ||
| CVE-2022-4129 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Nov 28, 2022 | A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing sk_user_data can lead to a race condition and NULL pointer dereference. A local user could use this flaw to potentially crash the system causing a denial of service. | ||
| CVE-2022-45934 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Nov 27, 2022 | An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets. | ||
| CVE-2022-42896 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Nov 23, 2022 | There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which may allow code execution and leaking kernel memory (respectively) remotely via Bluetooth. A remote attacker could execute code leakin | ||
| CVE-2022-42895 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Nov 23, 2022 | There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_parse_conf_req function which can be used to leak kernel pointers remotely. We recommend upgrading past commit https://github.com/torvalds/linux/commit/b1a2cd50c0357f243b7435a732b4e62ba31 | ||
| CVE-2022-3903 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Nov 14, 2022 | An incorrect read request flaw was found in the Infrared Transceiver USB driver in the Linux kernel. This issue occurs when a user attaches a malicious USB device. A local user could use this flaw to starve the resources, causing denial of service or potentially crashing the syst | ||
| CVE-2022-43945 | Hig | 7.5 | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Nov 4, 2022 | The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client c | |
| CVE-2022-43750 | — | < 5.3.18-150200.24.139.1 | 5.3.18-150200.24.139.1 | Oct 26, 2022 | drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor's internal memory. |
- affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
Unprotected alternative channel of return branch target prediction in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
- CVE-2022-21505Dec 24, 2024affected < 5.3.18-150200.24.126.1fixed 5.3.18-150200.24.126.1
In the linux kernel, if IMA appraisal is used with the "ima_appraise=log" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavailable. IMA prevents setting "ima_appraise=log" from the boot param when Secure Boot is enabled, but this
- CVE-2022-2602Jan 8, 2024affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
io_uring UAF, Unix SCM garbage collection
- CVE-2022-2588Jan 8, 2024affected < 5.3.18-150200.24.129.1fixed 5.3.18-150200.24.129.1
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
- affected < 5.3.18-150200.24.134.1fixed 5.3.18-150200.24.134.1
It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.
- CVE-2022-22942Dec 13, 2023affected < 5.3.18-24.102.1fixed 5.3.18-24.102.1
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
- CVE-2022-4095Mar 22, 2023affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
A use-after-free flaw was found in Linux kernel before 5.19.2. This issue occurs in cmd_hdl_filter in drivers/staging/rtl8712/rtl8712_cmd.c, allowing an attacker to launch a local denial of service attack and gain escalation of privileges.
- CVE-2022-3707Mar 6, 2023affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intel_gvt_dma_map_guest_page function. This issue could allow a local user to crash the system.
- CVE-2022-3424Mar 6, 2023affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate
- CVE-2022-4139Jan 27, 2023affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system.
- CVE-2022-41858Jan 17, 2023affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information.
- CVE-2022-3628Jan 12, 2023affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.
- CVE-2022-4378Jan 5, 2023affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.
- CVE-2022-4129Nov 28, 2022affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing sk_user_data can lead to a race condition and NULL pointer dereference. A local user could use this flaw to potentially crash the system causing a denial of service.
- CVE-2022-45934Nov 27, 2022affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
- CVE-2022-42896Nov 23, 2022affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which may allow code execution and leaking kernel memory (respectively) remotely via Bluetooth. A remote attacker could execute code leakin
- CVE-2022-42895Nov 23, 2022affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_parse_conf_req function which can be used to leak kernel pointers remotely. We recommend upgrading past commit https://github.com/torvalds/linux/commit/b1a2cd50c0357f243b7435a732b4e62ba31
- CVE-2022-3903Nov 14, 2022affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
An incorrect read request flaw was found in the Infrared Transceiver USB driver in the Linux kernel. This issue occurs when a user attaches a malicious USB device. A local user could use this flaw to starve the resources, causing denial of service or potentially crashing the syst
- affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client c
- CVE-2022-43750Oct 26, 2022affected < 5.3.18-150200.24.139.1fixed 5.3.18-150200.24.139.1
drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor's internal memory.
Page 1 of 10