SUSE: 2022:0755-1 Important: Security Update for Linux Kernel

suse

March 8, 2022

An update that solves 6 vulnerabilities, contains three features and has 56 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named "Branch Target Injection" and "Intra-Mode Branch History Injection" are now mitigated. The following security bugs were fixed: - CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584). - CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580). - CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580). - CVE-2022-25375: The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory (bsc#1196235).

Topics Covered

security advisory update important bug fixes security issues SUSE Linux Linux Kernel

References

#1089644 #1154353 #1156395 #1157038 #1157923

#1176447 #1176940 #1178134 #1181147 #1181588

#1183872 #1187716 #1188404 #1189126 #1190812

#1190972 #1191580 #1191655 #1191741 #1192210

#1192483 #1193096 #1193233 #1193243 #1193787

#1194163 #1194967 #1195012 #1195081 #1195142

#1195352 #1195378 #1195476 #1195477 #1195478

#1195479 #1195480 #1195481 #1195482 #1195506

#1195516 #1195543 #1195668 #1195701 #1195798

#1195799 #1195823 #1195908 #1195928 #1195947

#1195957 #1195995 #1196195 #1196235 #1196339

#1196400 #1196403 #1196516 #1196584 #1196601

#1196612 #1196776 SLE-20807 SLE-22135 SLE-22494

Cross- CVE-2022-0001 CVE-2022-0002 CVE-2022-0492

CVE-2022-0516 CVE-2022-0847 CVE-2022-25375

CVSS scores:

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2022:0755-1

Rating: important

Topics Covered

security advisory update important bug fixes security issues SUSE Linux Linux Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:0755-1 Important: Security Update for Linux Kernel

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:0755-1 Important: Security Update for Linux Kernel

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!