SUSE: 2022:0362-1 Critical: Linux Kernel Security Patch
suse
February 10, 2022
An update that solves 23 vulnerabilities and has four fixes is now available
Summary
The SUSE Linux Enterprise 12 SP3 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-25020: Fixed an overflow in the BPF subsystem due to a mishandling of a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions. This affects kernel/bpf/core.c and net/core/filter.c (bnc#1193575). - CVE-2019-0136: Fixed insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver that may have allowed an unauthenticated user to potentially enable denial of service via adjacent access (bnc#1193157). - CVE-2020-35519: Fixed out-of-bounds memory access in x25_bind in net/x25/af_x25.c. A bounds check failure allowed a local attacker with a
References
#1012382 #1179960 #1183696 #1186207 #1192032
#1192267 #1192847 #1192877 #1192946 #1193157
#1193440 #1193442 #1193507 #1193575 #1193669
#1193727 #1193861 #1193864 #1193867 #1194001
#1194087 #1194094 #1194272 #1194302 #1194516
#1194529 #1194880
Cross- CVE-2018-25020 CVE-2019-0136 CVE-2020-35519
CVE-2021-0935 CVE-2021-28711 CVE-2021-28712
CVE-2021-28713 CVE-2021-28715 CVE-2021-33098
CVE-2021-3564 CVE-2021-39648 CVE-2021-39657
CVE-2021-4002 CVE-2021-4083 CVE-2021-4149
CVE-2021-4155 CVE-2021-4197 CVE-2021-4202
CVE-2021-43976 CVE-2021-45095 CVE-2021-45485
CVE-2021-45486 CVE-2022-0330
CVSS scores:
CVE-2018-25020 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVE-2019-0136 (NVD) : 7.4 CVSS:3.0/AV:A/AC:L/P...
Read the Full Advisory
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2022:0362-1
Rating: important
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!