rpm package

suse/kernel-livepatch-SLE15-SP4-RT_Update_1&distro=SUSE Linux Enterprise Live Patching 15 SP4

pkg:rpm/suse/kernel-livepatch-SLE15-SP4-RT_Update_1&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4

Vulnerabilities (130)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2022-43750	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 26, 2022	drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor's internal memory.
CVE-2022-3649	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 21, 2022	A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the attack remotely. It is recommended
CVE-2022-3646	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 21, 2022	A vulnerability, which was classified as problematic, has been found in Linux Kernel. This issue affects the function nilfs_attach_log_writer of the file fs/nilfs2/segment.c of the component BPF. The manipulation leads to memory leak. The attack may be initiated remotely. It is r
CVE-2022-3640	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 21, 2022	A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue.
CVE-2022-3635	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 21, 2022	A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function tst_timer of the file drivers/atm/idt77252.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix this
CVE-2022-3633	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 21, 2022	A vulnerability classified as problematic has been found in Linux Kernel. Affected is the function j1939_session_destroy of the file net/can/j1939/transport.c. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of this vuln
CVE-2022-3629	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 21, 2022	A vulnerability was found in Linux Kernel. It has been declared as problematic. This vulnerability affects the function vsock_connect of the file net/vmw_vsock/af_vsock.c. The manipulation leads to memory leak. The complexity of an attack is rather high. The exploitation appears
CVE-2022-3625	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 21, 2022	A vulnerability was found in Linux Kernel. It has been classified as critical. This affects the function devlink_param_set/devlink_param_get of the file net/core/devlink.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix
CVE-2022-3621	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 20, 2022	A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_bmap_lookup_at_level of the file fs/nilfs2/inode.c of the component nilfs2. The manipulation leads to null pointer dereference. It is possible to launch the attack rem
CVE-2022-3619	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 20, 2022	A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function l2cap_recv_acldata of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to memory leak. It is recommended to apply a patch to
CVE-2022-3577	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 20, 2022	An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller driver. This flaw allows a local user to crash or potentially escalate their privileges on the system. It is in bigben_probe of drivers/hid/hid-bigbenff.c. The reason is incorrect ass
CVE-2022-3586	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 19, 2022	A flaw was found in the Linux kernel’s networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer (SKB) cb field after the same SKB had been enqueued (and freed) into a child qdisc. This flaw allows a local, unprivileged user to cra
CVE-2022-3594	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 18, 2022	A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intr_callback of the file drivers/net/usb/r8152.c of the component BPF. The manipulation leads to logging of excessive data. The attack can be launched r
CVE-2022-3567	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 17, 2022	A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function inet6_stream_ops/inet6_dgram_ops of the component IPv6 Handler. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. VD
CVE-2022-3566	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 17, 2022	A vulnerability, which was classified as problematic, was found in Linux Kernel. This affects the function tcp_getsockopt/tcp_setsockopt of the component TCP Handler. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. The identifier VD
CVE-2022-3565	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 17, 2022	A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function del_timer of the file drivers/isdn/mISDN/l1oip_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch
CVE-2022-3545	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 17, 2022	A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c of the component IPsec. The manipulation leads to use after free. It is re
CVE-2022-3526	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 16, 2022	A vulnerability classified as problematic was found in Linux Kernel. This vulnerability affects the function macvlan_handle_frame of the file drivers/net/macvlan.c of the component skb. The manipulation leads to memory leak. The attack can be initiated remotely. It is recommended
CVE-2022-3524	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 16, 2022	A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6_renew_options of the component IPv6 Handler. The manipulation leads to memory leak. The attack can be launched remotely. It is recommended to apply
CVE-2022-3521	—	< 1-150400.1.3.1	1-150400.1.3.1	Oct 16, 2022	A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function kcm_tx_work of the file net/kcm/kcmsock.c of the component kcm. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. VD

CVE-2022-43750Oct 26, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor's internal memory.
CVE-2022-3649Oct 21, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the attack remotely. It is recommended
CVE-2022-3646Oct 21, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability, which was classified as problematic, has been found in Linux Kernel. This issue affects the function nilfs_attach_log_writer of the file fs/nilfs2/segment.c of the component BPF. The manipulation leads to memory leak. The attack may be initiated remotely. It is r
CVE-2022-3640Oct 21, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue.
CVE-2022-3635Oct 21, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function tst_timer of the file drivers/atm/idt77252.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix this
CVE-2022-3633Oct 21, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability classified as problematic has been found in Linux Kernel. Affected is the function j1939_session_destroy of the file net/can/j1939/transport.c. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of this vuln
CVE-2022-3629Oct 21, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability was found in Linux Kernel. It has been declared as problematic. This vulnerability affects the function vsock_connect of the file net/vmw_vsock/af_vsock.c. The manipulation leads to memory leak. The complexity of an attack is rather high. The exploitation appears
CVE-2022-3625Oct 21, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability was found in Linux Kernel. It has been classified as critical. This affects the function devlink_param_set/devlink_param_get of the file net/core/devlink.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix
CVE-2022-3621Oct 20, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_bmap_lookup_at_level of the file fs/nilfs2/inode.c of the component nilfs2. The manipulation leads to null pointer dereference. It is possible to launch the attack rem
CVE-2022-3619Oct 20, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function l2cap_recv_acldata of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to memory leak. It is recommended to apply a patch to
CVE-2022-3577Oct 20, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller driver. This flaw allows a local user to crash or potentially escalate their privileges on the system. It is in bigben_probe of drivers/hid/hid-bigbenff.c. The reason is incorrect ass
CVE-2022-3586Oct 19, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A flaw was found in the Linux kernel’s networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer (SKB) cb field after the same SKB had been enqueued (and freed) into a child qdisc. This flaw allows a local, unprivileged user to cra
CVE-2022-3594Oct 18, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intr_callback of the file drivers/net/usb/r8152.c of the component BPF. The manipulation leads to logging of excessive data. The attack can be launched r
CVE-2022-3567Oct 17, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function inet6_stream_ops/inet6_dgram_ops of the component IPv6 Handler. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. VD
CVE-2022-3566Oct 17, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability, which was classified as problematic, was found in Linux Kernel. This affects the function tcp_getsockopt/tcp_setsockopt of the component TCP Handler. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. The identifier VD
CVE-2022-3565Oct 17, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function del_timer of the file drivers/isdn/mISDN/l1oip_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch
CVE-2022-3545Oct 17, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c of the component IPsec. The manipulation leads to use after free. It is re
CVE-2022-3526Oct 16, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability classified as problematic was found in Linux Kernel. This vulnerability affects the function macvlan_handle_frame of the file drivers/net/macvlan.c of the component skb. The manipulation leads to memory leak. The attack can be initiated remotely. It is recommended
CVE-2022-3524Oct 16, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6_renew_options of the component IPv6 Handler. The manipulation leads to memory leak. The attack can be launched remotely. It is recommended to apply
CVE-2022-3521Oct 16, 2022
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
A vulnerability has been found in Linux Kernel and classified as problematic. This vulnerability affects the function kcm_tx_work of the file net/kcm/kcmsock.c of the component kcm. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. VD

Page 4 of 7