openSUSE Leap 15.4: openSUSE-SU-2022:0768-1 Important: Kernel Bugs Fixed
opensuse
March 8, 2022
An update that solves 9 vulnerabilities and has 6 fixes is now available
Description
The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various
security and bugfixes.
Transient execution side-channel attacks attacking the Branch History
Buffer (BHB), named "Branch Target Injection" and "Intra-Mode Branch
History Injection" are now mitigated.
The following security bugs were fixed:
- CVE-2022-0001: Fixed Branch History Injection vulnerability
(bsc#1191580).
- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability
(bsc#1191580).
- CVE-2022-0617: Fixed a null pointer dereference in UDF file system
functionality. A local user could crash the system by triggering
udf_file_write_iter() via a malicious UDF image. (bsc#1196079)
- CVE-2022-0644: Fixed a denial of service by a local user. A assertion
failure could be triggered in kernel_read_file_from_fd() (bsc#1196155).
- CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were
not considered, which lead to a...
Read the Full Advisory
Topics Covered
Patch
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.4:
zypper in -t patch openSUSE-SLE-15.4-2022-768=1
- openSUSE Leap 15.3:
zypper in -t patch openSUSE-SLE-15.3-2022-768=1
Package List
- openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64):
kernel-default-base-debuginfo-4.12.14-197.108.1
kernel-vanilla-4.12.14-197.108.1
kernel-vanilla-base-4.12.14-197.108.1
kernel-vanilla-base-debuginfo-4.12.14-197.108.1
kernel-vanilla-debuginfo-4.12.14-197.108.1
kernel-vanilla-debugsource-4.12.14-197.108.1
kernel-vanilla-devel-4.12.14-197.108.1
kernel-vanilla-devel-debuginfo-4.12.14-197.108.1
kernel-vanilla-livepatch-devel-4.12.14-197.108.1
- openSUSE Leap 15.4 (ppc64le x86_64):
kernel-debug-base-4.12.14-197.108.1
kernel-debug-base-debuginfo-4.12.14-197.108.1
- openSUSE Leap 15.4 (x86_64):
kernel-kvmsmall-base-4.12.14-197.108.1
kernel-kvmsmall-base-debuginfo-4.12.14-197.108.1
- openSUSE Leap 15.4 (s390x):
kernel-default-man-4.12.14-197.108.1
kernel-zfcpdump-man-4.12.14-197.108.1
- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):
kernel-default-base-debuginfo-4.12.14-197.108.1
kernel-vanilla-4.12.14-197.108.1
kernel-vanilla-base-4.12.14-197.108.1
kernel-vanilla-base-debuginfo-4.12.14-197.108.1
kernel-vanilla...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2021-44879.html
https://www.suse.com/security/cve/CVE-2022-0001.html
https://www.suse.com/security/cve/CVE-2022-0002.html
https://www.suse.com/security/cve/CVE-2022-0487.html
https://www.suse.com/security/cve/CVE-2022-0492.html
https://www.suse.com/security/cve/CVE-2022-0617.html
https://www.suse.com/security/cve/CVE-2022-0644.html
https://www.suse.com/security/cve/CVE-2022-24448.html
https://www.suse.com/security/cve/CVE-2022-24959.html
https://bugzilla.suse.com/1185973
https://bugzilla.suse.com/1191580
https://bugzilla.suse.com/1194516
https://bugzilla.suse.com/1195536
https://bugzilla.suse.com/1195543
https://bugzilla.suse.com/1195612
https://bugzilla.suse.com/1195840
https://bugzilla.suse.com/1195897
https://bugzilla.suse.com/1195908
https://bugzilla.suse.com/1195949
https://bugzilla.suse.com/1195987
https://bugzilla.suse.com/1196079
https://bugzilla.suse.com/1196155
https://bugzilla.suse.com/1196584
https://bugzilla.suse.com/1196612
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2022:0768-1
Rating: important
Affected Products:
openSUSE Leap 15.3
openSUSE Leap 15.4
ble.
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!