Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: 2022:2104-1 Important: Kernel Update Fixes 23 Issues

suse
Calendar Grey June 16, 2022
Dist Suse Esm H88
Important enhancement for Ubuntu Linux Kernel fixes 18 vulnerabilities, incorporating crucial updates and capabilities to boost system protection.
An update that solves 23 vulnerabilities, contains one feature and has 19 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP2 kernel was updated. The following security bugs were fixed: - CVE-2022-0168: Fixed a NULL pointer dereference in smb2_ioctl_query_info. (bsc#1197472) - CVE-2022-1966: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-28893: Ensuring that sockets are in the intended state inside the SUNRPC subsystem (bnc#1198330). - CVE-2022-1158: Fixed KVM x86/mmu compare-and-exchange of gPTE via the user address (bsc#1197660). - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited

Topics%20covered

Topics Covered

security advisory kernel update privilege escalation security fix important system reboot SUSE Linux Enterprise

References

#1028340 #1065729 #1071995 #1158266 #1177282

#1191647 #1195651 #1195926 #1196114 #1196367

#1196426 #1196433 #1196514 #1196570 #1196942

#1197157 #1197343 #1197472 #1197656 #1197660

#1197895 #1198330 #1198400 #1198484 #1198516

#1198577 #1198660 #1198687 #1198778 #1198825

#1199012 #1199063 #1199314 #1199505 #1199507

#1199605 #1199650 #1199918 #1200015 #1200143

#1200144 #1200249 SLE-18234

Cross- CVE-2019-19377 CVE-2020-26541 CVE-2021-20321

CVE-2021-33061 CVE-2022-0168 CVE-2022-1011

CVE-2022-1158 CVE-2022-1184 CVE-2022-1353

CVE-2022-1516 CVE-2022-1652 CVE-2022-1729

CVE-2022-1734 CVE-2022-1966 CVE-2022-1974

CVE-2022-1975 CVE-2022-21123 CVE-2022-21125

CVE-2022-21127 CVE-2022-21166 CVE-2022-21180

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:2104-1
Rating: important

Topics%20covered

Topics Covered

security advisory kernel update privilege escalation security fix important system reboot SUSE Linux Enterprise

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here