SUSE: 2022:4053-1 Important: Kernel Memory Corruption and DoS Fixes

suse

November 17, 2022

An update that solves 24 vulnerabilities, contains four features and has 16 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-4037: Fixed function logic vulnerability that allowed local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set (bnc#1198702). - CVE-2022-2153: Fixed vulnerability in KVM that could allow an unprivileged local attacker on the host to cause DoS (bnc#1200788). - CVE-2022-2964: Fixed memory corruption issues in ax88179_178a devices (bnc#1202686). - CVE-2022-2978: Fixed use-after-free in the NILFS file system that could lead to local privilege escalation or DoS (bnc#1202700). - CVE-2022-3176: Fixed use-after-free in io_uring when using POLLFREE (bnc#1203391).

Topics Covered

security advisory DoS memory corruption important kernel SUSE

References

#1032323 #1065729 #1152489 #1198702 #1200465

#1200788 #1201725 #1202638 #1202686 #1202700

#1203066 #1203098 #1203387 #1203391 #1203496

#1203802 #1204053 #1204166 #1204168 #1204354

#1204355 #1204382 #1204402 #1204415 #1204417

#1204431 #1204439 #1204470 #1204479 #1204574

#1204575 #1204619 #1204635 #1204637 #1204646

#1204647 #1204653 #1204728 #1204753 #1204754

PED-1931 SLE-13847 SLE-24559 SLE-9246

Cross- CVE-2021-4037 CVE-2022-2153 CVE-2022-2964

CVE-2022-2978 CVE-2022-3176 CVE-2022-3424

CVE-2022-3521 CVE-2022-3524 CVE-2022-3535

CVE-2022-3542 CVE-2022-3545 CVE-2022-3565

CVE-2022-3577 CVE-2022-3586 CVE-2022-3594

CVE-2022-3621 CVE-2022-3625 CVE-2022-3629

CVE-2022-3640 CVE-2022-3646 CVE-2022-3649

...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2022:4053-1

Rating: important

Topics Covered

security advisory DoS memory corruption important kernel SUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:4053-1 Important: Kernel Memory Corruption and DoS Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2022:4053-1 Important: Kernel Memory Corruption and DoS Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!