suse/kernel-livepatch-SLE15-SP2_Update_24&distro=SUSE Linux Enterprise Live Patching 15 SP2

Vulnerabilities (54)

• CVE-2022-2602Jan 8, 2024
  affected < 17-150200.2.2fixed 17-150200.2.2

  io_uring UAF, Unix SCM garbage collection

• CVE-2022-2588Jan 8, 2024
  affected < 15-150200.2.2fixed 15-150200.2.2

  It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.

• CVE-2022-22942Dec 13, 2023
  affected < 1-5.3.1fixed 1-5.3.1

  The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.

• CVE-2022-3424Mar 6, 2023
  affected < 17-150200.2.2fixed 17-150200.2.2

  A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate

• CVE-2022-4139Jan 27, 2023
  affected < 16-150200.2.2fixed 16-150200.2.2

  An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system.

• CVE-2022-4378Jan 5, 2023
  affected < 16-150200.2.2fixed 16-150200.2.2

  A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.

• CVE-2022-43945HigNov 4, 2022
  affected < 16-150200.2.2fixed 16-150200.2.2

  The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a single array of pages. A client c

• CVE-2022-3577Oct 20, 2022
  affected < 16-150200.2.2fixed 16-150200.2.2

  An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller driver. This flaw allows a local user to crash or potentially escalate their privileges on the system. It is in bigben_probe of drivers/hid/hid-bigbenff.c. The reason is incorrect ass

• CVE-2022-3586Oct 19, 2022
  affected < 16-150200.2.2fixed 16-150200.2.2

  A flaw was found in the Linux kernel’s networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer (SKB) cb field after the same SKB had been enqueued (and freed) into a child qdisc. This flaw allows a local, unprivileged user to cra

• CVE-2022-3545Oct 17, 2022
  affected < 16-150200.2.2fixed 16-150200.2.2

  A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c of the component IPsec. The manipulation leads to use after free. It is re

• CVE-2022-42721Oct 13, 2022
  affected < 14-150200.2.2fixed 14-150200.2.2

  A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to corrupt a linked list and, in turn, potentially execute code.

• CVE-2022-42720Oct 13, 2022
  affected < 14-150200.2.2fixed 14-150200.2.2

  Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute code.

• CVE-2022-42719Oct 13, 2022
  affected < 14-150200.2.2fixed 14-150200.2.2

  A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be used by attackers (able to inject WLAN frames) to crash the kernel and potentially execute code.

• CVE-2022-41674Oct 13, 2022
  affected < 14-150200.2.2fixed 14-150200.2.2

  An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.

• CVE-2022-42703Oct 9, 2022
  affected < 15-150200.2.2fixed 15-150200.2.2

  mm/rmap.c in the Linux kernel before 5.19.7 has a use-after-free related to leaf anon_vma double reuse.

• CVE-2022-41222Sep 21, 2022
  affected < 14-150200.2.2fixed 14-150200.2.2

  mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move.

• CVE-2022-41218Sep 21, 2022
  affected < 16-150200.2.2fixed 16-150200.2.2

  In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release.

• CVE-2022-2964Sep 9, 2022
  affected < 16-150200.2.2fixed 16-150200.2.2

  A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds reads and possible out-of-bounds writes.

• CVE-2022-39189Sep 2, 2022
  affected < 14-150200.2.2fixed 14-150200.2.2

  An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations.

• CVE-2022-39188Sep 2, 2022
  affected < 13-150200.2.2fixed 13-150200.2.2

  An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs.