Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

SUSE: 2022:2177-1 Critical: Kernel Security Updates and Fixes

suse
Calendar Grey June 24, 2022
Dist Suse Esm H88
Implement the SUSE Security Patch for the Linux Kernel to resolve severe security flaws. Prompt action advised.
An update that solves 20 vulnerabilities, contains three features and has 39 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to uninitialized data in mmc_blk_read_single of block.c. (bnc#1199564)

Topics%20covered

Topics Covered

security advisory update critical vulnerability kernel fix SUSE

References

#1055117 #1061840 #1065729 #1103269 #1118212

#1153274 #1154353 #1156395 #1158266 #1167773

#1176447 #1177282 #1178134 #1180100 #1183405

#1188885 #1195826 #1196426 #1196478 #1196570

#1196840 #1197446 #1197472 #1197601 #1197675

#1198438 #1198577 #1198971 #1198989 #1199035

#1199052 #1199063 #1199114 #1199314 #1199365

#1199505 #1199507 #1199564 #1199626 #1199631

#1199650 #1199670 #1199839 #1200015 #1200019

#1200045 #1200046 #1200143 #1200144 #1200192

#1200206 #1200207 #1200216 #1200249 #1200259

#1200263 #1200529 #1200549 #1200604 SLE-13521

SLE-16387 SLE-8371

Cross- CVE-2019-19377 CVE-2020-26541 CVE-2021-33061

CVE-2022-0168 CVE-2022-1184 CVE-2022-1652

CVE-2022-1729 CVE-2022-1966 CVE-2022-1972

...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:2177-1
Rating: important

Topics%20covered

Topics Covered

security advisory update critical vulnerability kernel fix SUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here