suse/kernel-livepatch-SLE15-SP3_Update_24&distro=SUSE Linux Enterprise Live Patching 15 SP3

Vulnerabilities (39)

• CVE-2022-41674Oct 13, 2022
  affected < 3-150300.2.1fixed 3-150300.2.1

  An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.

• CVE-2022-41222Sep 21, 2022
  affected < 3-150300.2.1fixed 3-150300.2.1

  mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move.

• CVE-2022-41218Sep 21, 2022
  affected < 5-150300.2.1fixed 5-150300.2.1

  In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release.

• CVE-2022-2977Sep 14, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  A flaw was found in the Linux kernel implementation of proxied virtualized TPM devices. On a system where virtualized TPM devices are configured (this is not the default) a local attacker can create a use-after-free and create a situation where it may be possible to escalate priv

• CVE-2022-2905Sep 9, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpf_tail_call function with a key larger than the max_entries of the map. This flaw allows a local user to gain unauthorized access to data.

• CVE-2022-39190Sep 2, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  An issue was discovered in net/netfilter/nf_tables_api.c in the Linux kernel before 5.19.6. A denial of service can occur upon binding to an already bound chain.

• CVE-2022-39189Sep 2, 2022
  affected < 3-150300.2.1fixed 3-150300.2.1

  An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations.

• CVE-2022-39188Sep 2, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs.

• CVE-2020-27784Sep 1, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printer_ioctl() printer_ioctl() tries to access of a printer_dev instance. However, use-after-free arises because it had been freed by gprinter_free().

• CVE-2022-2663Sep 1, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured.

• CVE-2022-3028Aug 31, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory

• CVE-2021-4155Aug 24, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  A data leak flaw was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem allowed for size increase of files with unaligned size. A local attacker could use this flaw to leak data on the XFS filesystem otherwise not accessible to them.

• CVE-2022-26373Aug 18, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

• CVE-2022-20368Aug 11, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  Product: AndroidVersions: Android kernelAndroid ID: A-224546354References: Upstream kernel

• CVE-2022-20369Aug 11, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  In v4l2_m2m_querybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An

• CVE-2022-36879Jul 27, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.

• CVE-2021-4203Mar 25, 2022
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information.

• CVE-2021-39698Mar 16, 2022
  affected < 2-150300.2.2fixed 2-150300.2.2

  In aio_poll_complete_work of aio.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android ke

• CVE-2016-3695MedDec 29, 2017
  affected < 1-150300.7.3.1fixed 1-150300.7.3.1

  The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set.