SUSE 15-SP4: 2022:3844-1 Important: Kernel Denial of Service Fix

suse

November 1, 2022

An update that solves 15 vulnerabilities, contains 12 features and has 33 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP4 kernel was updated. The following security bugs were fixed: - CVE-2022-3303: Fixed a race condition in the sound subsystem due to improper locking (bnc#1203769). - CVE-2022-41218: Fixed an use-after-free caused by refcount races in drivers/media/dvb-core/dmxdev.c (bnc#1202960). - CVE-2022-3239: Fixed an use-after-free in the video4linux driver that could lead a local user to able to crash the system or escalate their privileges (bnc#1203552). - CVE-2022-41848: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling ioctl (bnc#1203987). - CVE-2022-41849: Fixed a race condition and resultant use-after-free if a physically proximate attacker removes a USB device while calling open (bnc#1203992).

Topics Covered

security advisory denial of service kernel update local privilege escalation race condition system enhancements SUSE Linux Enterprise

References

#1185032 #1190497 #1194023 #1194869 #1195917

#1196444 #1196869 #1197659 #1198189 #1200288

#1200622 #1201309 #1201310 #1201987 #1202095

#1202960 #1203039 #1203066 #1203101 #1203197

#1203263 #1203338 #1203360 #1203361 #1203389

#1203410 #1203505 #1203552 #1203664 #1203693

#1203699 #1203767 #1203769 #1203770 #1203794

#1203798 #1203893 #1203902 #1203906 #1203908

#1203935 #1203939 #1203987 #1203992 #1204051

#1204059 #1204060 #1204125 PED-387 PED-529

PED-652 PED-664 PED-682 PED-688 PED-720 PED-729

PED-755 PED-763 SLE-19924 SLE-24814

Cross- CVE-2022-1263 CVE-2022-2586 CVE-2022-3202

CVE-2022-32296 CVE-2022-3239 CVE-2022-3303

CVE-2022-39189 CVE-2022-41218 CVE-2022-41674

CVE-2022-41848 CVE-2022-41849 CVE-2022-4...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2022:3844-1

Rating: important

Topics Covered

security advisory denial of service kernel update local privilege escalation race condition system enhancements SUSE Linux Enterprise

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 15-SP4: 2022:3844-1 Important: Kernel Denial of Service Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE 15-SP4: 2022:3844-1 Important: Kernel Denial of Service Fix

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!