Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

openSUSE: 2022:2875-2 Important: Kernel Update Addresses DoS Issues

suse
Calendar Grey September 1, 2022
Dist Suse Esm H88
This Fedora security patch resolves 23 identified weaknesses, enhances overall system reliability, and features critical guidelines.
An update that solves 18 vulnerabilities, contains one feature and has 18 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36516: Fixed TCP session data injection vulnerability via the mixed IPID assignment method (bnc#1196616). - CVE-2020-36557: Fixed race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could lead to a use-after-free (bnc#1201429). - CVE-2020-36558: Fixed race condition involving VT_RESIZEX that could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT (bnc#1201636). - CVE-2022-1116: Fixed a integer overflow vulnerability in io_uring which

Topics%20covered

Topics Covered

security advisory kernel update DoS memory corruption system stability security fixes openSUSE

References

#1178134 #1196616 #1198829 #1199364 #1199647

#1199665 #1199670 #1200015 #1200521 #1200598

#1200644 #1200651 #1200762 #1200910 #1201196

#1201206 #1201251 #1201381 #1201429 #1201442

#1201458 #1201635 #1201636 #1201644 #1201645

#1201664 #1201672 #1201673 #1201676 #1201846

#1201930 #1201940 #1201954 #1201956 #1201958

#1202154 SLE-24559

Cross- CVE-2020-36516 CVE-2020-36557 CVE-2020-36558

CVE-2021-33655 CVE-2021-33656 CVE-2022-1116

CVE-2022-1462 CVE-2022-20166 CVE-2022-21505

CVE-2022-2318 CVE-2022-26365 CVE-2022-2639

CVE-2022-29581 CVE-2022-32250 CVE-2022-33740

CVE-2022-33741 CVE-2022-33742 CVE-2022-36946

CVSS scores:

CVE-2020-36516 (NVD) : 5.9 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L

CVE...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:2875-2
Rating: important

Topics%20covered

Topics Covered

security advisory kernel update DoS memory corruption system stability security fixes openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here