rpm package

suse/kernel-livepatch-SLE15-SP2_Update_29&distro=SUSE Linux Enterprise Live Patching 15 SP2

pkg:rpm/suse/kernel-livepatch-SLE15-SP2_Update_29&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2

Vulnerabilities (67)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2022-39189	—	< 4-150200.2.1	4-150200.2.1	Sep 2, 2022	An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations.
CVE-2022-39188	—	< 3-150200.2.2	3-150200.2.2	Sep 2, 2022	An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs.
CVE-2022-2991	—	< 10-150200.2.2	10-150200.2.2	Aug 25, 2022	A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalat
CVE-2022-36946	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 27, 2022	nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.
CVE-2020-36557	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 21, 2022	A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.
CVE-2020-36558	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 21, 2022	A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault.
CVE-2021-33655	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 18, 2022	When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
CVE-2021-33656	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 18, 2022	When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.
CVE-2022-29900	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 12, 2022	Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.
CVE-2022-29901	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 12, 2022	Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code exe
CVE-2022-2318	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 6, 2022	There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
CVE-2022-33742	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 5, 2022	Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-33741	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 5, 2022	Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-33740	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 5, 2022	Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-26365	—	< 1-150200.5.5.1	1-150200.5.5.1	Jul 5, 2022	Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-33981	—	< 1-150200.5.5.1	1-150200.5.5.1	Jun 18, 2022	drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function.
CVE-2022-20154	—	< 1-150200.5.5.1	1-150200.5.5.1	Jun 15, 2022	In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:
CVE-2022-20141	—	< 1-150200.5.5.1	1-150200.5.5.1	Jun 15, 2022	In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not needed for exploitation.Product
CVE-2022-20132	—	< 1-150200.5.5.1	1-150200.5.5.1	Jun 15, 2022	In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges n
CVE-2022-1462	—	< 1-150200.5.5.1	1-150200.5.5.1	May 31, 2022	An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local u

CVE-2022-39189Sep 2, 2022
affected < 4-150200.2.1fixed 4-150200.2.1
An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations.
CVE-2022-39188Sep 2, 2022
affected < 3-150200.2.2fixed 3-150200.2.2
An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs.
CVE-2022-2991Aug 25, 2022
affected < 10-150200.2.2fixed 10-150200.2.2
A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalat
CVE-2022-36946Jul 27, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb->len.
CVE-2020-36557Jul 21, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
A race condition in the Linux kernel before 5.6.2 between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free.
CVE-2020-36558Jul 21, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
A race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX could lead to a NULL pointer dereference and general protection fault.
CVE-2021-33655Jul 18, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
CVE-2021-33656Jul 18, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.
CVE-2022-29900Jul 12, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.
CVE-2022-29901Jul 12, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code exe
CVE-2022-2318Jul 6, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
CVE-2022-33742Jul 5, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-33741Jul 5, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-33740Jul 5, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-26365Jul 5, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-202
CVE-2022-33981Jun 18, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function.
CVE-2022-20154Jun 15, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:
CVE-2022-20141Jun 15, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not needed for exploitation.Product
CVE-2022-20132Jun 15, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges n
CVE-2022-1462May 31, 2022
affected < 1-150200.5.5.1fixed 1-150200.5.5.1
An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local u

Page 3 of 4