Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2022:2809-1 Critical: 22 Kernel Fixes and Security Issues

suse
Calendar Grey August 15, 2022
Dist Suse Esm H88
Explore the latest update for the SUSE Linux Kernel that addresses 22 vulnerabilities, including detailed guidelines for ensuring secure system performance.
An update that solves 22 vulnerabilities and has 19 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free (bnc#1201429). - CVE-2020-36558: Fixed a race condition involving VT_RESIZEX which could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050).

Topics%20covered

Topics Covered

security advisory security issue software update critical update kernel fix SUSE system reboot

References

#1114648 #1194013 #1195478 #1195775 #1196472

#1196901 #1197362 #1198829 #1199487 #1199489

#1199647 #1199648 #1199657 #1200263 #1200442

#1200571 #1200599 #1200604 #1200605 #1200608

#1200619 #1200692 #1200762 #1200905 #1200910

#1201050 #1201080 #1201251 #1201429 #1201458

#1201635 #1201636 #1201644 #1201664 #1201672

#1201673 #1201676 #1201742 #1201752 #1201930

#1201940

Cross- CVE-2020-36557 CVE-2020-36558 CVE-2021-26341

CVE-2021-33655 CVE-2021-33656 CVE-2021-4157

CVE-2022-1116 CVE-2022-1462 CVE-2022-1679

CVE-2022-20132 CVE-2022-20141 CVE-2022-20154

CVE-2022-21505 CVE-2022-2318 CVE-2022-26365

CVE-2022-29900 CVE-2022-29901 CVE-2022-33740

CVE-2022-33741 CVE-2022-33742 CVE-2022-33981

CVE-202...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:2809-1
Rating: important

Topics%20covered

Topics Covered

security advisory security issue software update critical update kernel fix SUSE system reboot

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here