SUSE: 2022:3585-1 Important: Kernel Patch for Security Enhancements

suse

October 14, 2022

An update that solves 9 vulnerabilities, contains 12 features and has 38 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP4 kernel was updated. The following security bugs were fixed: - CVE-2022-3303: Fixed a race condition in the sound subsystem due to improper locking (bnc#1203769). - CVE-2022-41218: Fixed an use-after-free caused by refcount races in drivers/media/dvb-core/dmxdev.c (bnc#1202960). - CVE-2022-3239: Fixed an use-after-free in the video4linux driver that could lead a local user to able to crash the system or escalate their privileges (bnc#1203552). - CVE-2022-41848: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling ioctl (bnc#1203987). - CVE-2022-41849: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open (bnc#1203992).

Topics Covered

security advisory denial of service local privilege escalation kernel patch important CVE fix SUSE Linux Enterprise

References

#1152472 #1152489 #1185032 #1190497 #1194023

#1194869 #1195917 #1196444 #1196869 #1197659

#1198189 #1200622 #1201309 #1201310 #1201987

#1202095 #1202960 #1203039 #1203066 #1203101

#1203197 #1203263 #1203338 #1203360 #1203361

#1203389 #1203410 #1203505 #1203552 #1203664

#1203693 #1203699 #1203701 #1203767 #1203769

#1203794 #1203798 #1203893 #1203902 #1203906

#1203908 #1203933 #1203935 #1203939 #1203969

#1203987 #1203992 PED-387 PED-529 PED-652

PED-664 PED-682 PED-688 PED-720 PED-729 PED-755

PED-763 SLE-19924 SLE-24814

Cross- CVE-2022-1263 CVE-2022-2586 CVE-2022-3202

CVE-2022-3239 CVE-2022-3303 CVE-2022-39189

CVE-2022-41218 CVE-2022-41848 CVE-2022-41849

CVSS scores:

CVE-2022-1263 (NVD...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2022:3585-1

Rating: important

Topics Covered

security advisory denial of service local privilege escalation kernel patch important CVE fix SUSE Linux Enterprise

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:3585-1 Important: Kernel Patch for Security Enhancements

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:3585-1 Important: Kernel Patch for Security Enhancements

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!