rpm package
suse/release-notes-sle_rt&distro=SUSE Linux Enterprise Real Time 15 SP3
pkg:rpm/suse/release-notes-sle_rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3
Vulnerabilities (15)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-0812 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Aug 29, 2022 | An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpc_rdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information. | ||
| CVE-2022-1158 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Aug 5, 2022 | A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace | ||
| CVE-2022-1419 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | May 31, 2022 | The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease refcount of *drm_vgem_gem_object *(created in *vgem_gem_dumb_create*) concurrently, and *vgem_gem_dumb_create *will access the freed drm_vgem_gem_object. | ||
| CVE-2022-1516 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | May 5, 2022 | A NULL pointer dereference flaw was found in the Linux kernel’s X.25 set of standardized network protocols functionality in the way a user terminates their session using a simulated Ethernet card and continued usage of this connection. This flaw allows a local user to crash the s | ||
| CVE-2022-1353 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Apr 29, 2022 | A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access to kernel memory, leading to a system crash or a leak of internal kernel information. | ||
| CVE-2022-1280 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Apr 13, 2022 | A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak. | ||
| CVE-2022-29156 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Apr 13, 2022 | drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free related to rtrs_clt_dev_release. | ||
| CVE-2021-0707 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Apr 12, 2022 | In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kerne | ||
| CVE-2022-28893 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Apr 11, 2022 | The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state. | ||
| CVE-2022-28356 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Apr 2, 2022 | In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c. | ||
| CVE-2021-20321 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Feb 18, 2022 | A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the system. | ||
| CVE-2021-4154 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Feb 4, 2022 | A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a | ||
| CVE-2021-38208 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Aug 8, 2021 | net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call. | ||
| CVE-2021-20292 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | May 28, 2021 | There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the obje | ||
| CVE-2020-27835 | — | < 15.3.20220422-150300.3.3.2 | 15.3.20220422-150300.3.3.2 | Jan 7, 2021 | A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system. |
- CVE-2022-0812Aug 29, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpc_rdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information.
- CVE-2022-1158Aug 5, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace
- CVE-2022-1419May 31, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease refcount of *drm_vgem_gem_object *(created in *vgem_gem_dumb_create*) concurrently, and *vgem_gem_dumb_create *will access the freed drm_vgem_gem_object.
- CVE-2022-1516May 5, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
A NULL pointer dereference flaw was found in the Linux kernel’s X.25 set of standardized network protocols functionality in the way a user terminates their session using a simulated Ethernet card and continued usage of this connection. This flaw allows a local user to crash the s
- CVE-2022-1353Apr 29, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access to kernel memory, leading to a system crash or a leak of internal kernel information.
- CVE-2022-1280Apr 13, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem. This flaw allows a local user privilege attacker to cause a denial of service (DoS) or a kernel information leak.
- CVE-2022-29156Apr 13, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free related to rtrs_clt_dev_release.
- CVE-2021-0707Apr 12, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kerne
- CVE-2022-28893Apr 11, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state.
- CVE-2022-28356Apr 2, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c.
- CVE-2021-20321Feb 18, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the system.
- CVE-2021-4154Feb 4, 2022affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a
- CVE-2021-38208Aug 8, 2021affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
- CVE-2021-20292May 28, 2021affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the obje
- CVE-2020-27835Jan 7, 2021affected < 15.3.20220422-150300.3.3.2fixed 15.3.20220422-150300.3.3.2
A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system.