SUSE: 2022:2741-1 Important Kernel Denial Of Service and Escalation Fixes

suse

August 10, 2022

An update that solves 16 vulnerabilities, contains one feature and has 15 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-36946: Fixed an incorrect packet trucation operation which could lead to denial of service (bnc#1201940). - CVE-2022-29581: Fixed improper update of reference count in net/sched that could cause root privilege escalation (bnc#1199665). - CVE-2022-20166: Fixed several possible memory safety issues due to unsafe operations (bsc#1200598). - CVE-2020-36558: Fixed a race condition involving VT_RESIZEX which could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of TTYs that could lead to a use-after-free (bnc#1201429).

Topics Covered

security advisory denial of service privilege escalation important kernel fixes SUSE

References

#1178134 #1198829 #1199364 #1199647 #1199665

#1199670 #1200521 #1200598 #1200644 #1200651

#1200762 #1200910 #1201196 #1201206 #1201251

#1201381 #1201429 #1201458 #1201635 #1201636

#1201644 #1201664 #1201672 #1201673 #1201676

#1201846 #1201930 #1201940 #1201954 #1201956

#1201958 SLE-24559

Cross- CVE-2020-36557 CVE-2020-36558 CVE-2021-33655

CVE-2021-33656 CVE-2022-1116 CVE-2022-1462

CVE-2022-20166 CVE-2022-21505 CVE-2022-2318

CVE-2022-26365 CVE-2022-29581 CVE-2022-32250

CVE-2022-33740 CVE-2022-33741 CVE-2022-33742

CVE-2022-36946

CVSS scores:

CVE-2020-36557 (NVD) : 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CVE-2020-36557 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVE-2020-36558 (NVD) : 5....

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2022:2741-1

Rating: important

Topics Covered

security advisory denial of service privilege escalation important kernel fixes SUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:2741-1 Important Kernel Denial Of Service and Escalation Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:2741-1 Important Kernel Denial Of Service and Escalation Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!