Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2022:1686-1 Important Kernel Update: Security Fixes for Kernel Issues

suse
Calendar Grey May 16, 2022
Dist Suse Esm H88
Fedora's recent update addresses 17 significant vulnerabilities in the kernel, improving system resilience and protections for various applications.
An update that solves 13 vulnerabilities and has 16 fixes is now available

Summary

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-28748: Fixed memory lead over the network by ax88179_178a devices (bsc#1196018). - CVE-2022-28356: Fixed a refcount leak bug found in net/llc/af_llc.c (bnc#1197391). - CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect (bsc#1199012). - CVE-2022-1419: Fixed a concurrency use-after-free in vgem_gem_dumb_create (bsc#1198742). - CVE-2022-1353: Fixed access controll to kernel memory in the pfkey_register function in net/key/af_key.c (bnc#1198516). - CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in drivers/gpu/drm/drm_lease.c (bnc#1197914). - CVE-2022-1011: Fixed a use-after-free flaw inside the FUSE filesystem in

Topics%20covered

Topics Covered

security advisory security issue important kernel fixes SUSE network access

References

#1028340 #1071995 #1084513 #1114648 #1121726

#1129770 #1137728 #1172456 #1183723 #1187055

#1191647 #1191958 #1194625 #1196018 #1196247

#1197075 #1197343 #1197391 #1197663 #1197888

#1197914 #1198217 #1198413 #1198516 #1198687

#1198742 #1198825 #1198989 #1199012

Cross- CVE-2018-7755 CVE-2019-20811 CVE-2021-20292

CVE-2021-20321 CVE-2021-38208 CVE-2021-43389

CVE-2022-1011 CVE-2022-1280 CVE-2022-1353

CVE-2022-1419 CVE-2022-1516 CVE-2022-28356

CVE-2022-28748

CVSS scores:

CVE-2018-7755 (NVD) : 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVE-2018-7755 (SUSE): 4 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVE-2019-20811 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVE-2019-20811 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:1686-1
Rating: important

Topics%20covered

Topics Covered

security advisory security issue important kernel fixes SUSE network access

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here