UBUNTU: 2023:0456-2 Critical: System Vulnerability Patches
suse
January 26, 2022
An update that solves 22 vulnerabilities and has 59 fixes is now available
Summary
The SUSE Linux Enterprise 15 SP2 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2022-0322: Fixed a denial of service in SCTP sctp_addto_chunk (bsc#1194985). - CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel that occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767). - CVE-2021-4197: Fixed a cgroup issue where lower privileged processes could write to fds of lower privileged ones that could lead to privilege escalation (bsc#1194302).
References
#1071995 #1139944 #1151927 #1152489 #1153275
#1154353 #1154355 #1161907 #1164565 #1166780
#1169514 #1176242 #1176536 #1176544 #1176545
#1176546 #1176548 #1176558 #1176559 #1176940
#1176956 #1177440 #1178270 #1179211 #1179424
#1179426 #1179427 #1179599 #1179960 #1181148
#1181507 #1181710 #1183534 #1183540 #1183897
#1184209 #1185726 #1185902 #1187541 #1189126
#1189158 #1191271 #1191793 #1191876 #1192267
#1192507 #1192511 #1192569 #1192606 #1192845
#1192847 #1192877 #1192946 #1192969 #1192987
#1192990 #1192998 #1193002 #1193042 #1193169
#1193255 #1193306 #1193318 #1193349 #1193440
#1193442 #1193660 #1193669 #1193727 #1193767
#1193901 #1193927 #1194001 #1194087 #1194094
#1194302 #119...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2022:0197-1
Rating: important
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!