Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 580
Alerts This Week
Warning Icon 1 580

SUSE: 2022:4574-1 Important: Linux Kernel DoS and Memory Leak Fixes

suse
Calendar Grey December 19, 2022
Dist Suse Esm H88
Essential updates solving 36 security weaknesses and 12 patches for SUSE Linux Kernel have been launched. Implement promptly to ensure protection.
An update that solves 36 vulnerabilities and has 12 fixes is now available

Summary

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4378: Fixed stack overflow in __do_proc_dointvec (bsc#1206207). - CVE-2022-42328: Guests could trigger denial of service via the netback driver (bsc#1206114). - CVE-2022-42329: Guests could trigger denial of service via the netback driver (bsc#1206113). - CVE-2022-3643: Guests could trigger NIC interface reset/abort/crash via netback driver (bsc#1206113). - CVE-2022-3635: Fixed a use-after-free in the tst_timer() of the file drivers/atm/idt77252.c (bsc#1204631). - CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166).

References

#1198702 #1199365 #1200788 #1200845 #1201455

#1202686 #1203008 #1203183 #1203290 #1203322

#1203514 #1203860 #1203960 #1204017 #1204166

#1204170 #1204354 #1204355 #1204402 #1204414

#1204415 #1204424 #1204431 #1204432 #1204439

#1204446 #1204479 #1204574 #1204576 #1204631

#1204635 #1204636 #1204646 #1204647 #1204653

#1204850 #1204868 #1205006 #1205128 #1205220

#1205473 #1205514 #1205617 #1205671 #1205796

#1206113 #1206114 #1206207

Cross- CVE-2021-4037 CVE-2022-2153 CVE-2022-28693

CVE-2022-2964 CVE-2022-3169 CVE-2022-3424

CVE-2022-3521 CVE-2022-3524 CVE-2022-3542

CVE-2022-3545 CVE-2022-3565 CVE-2022-3567

CVE-2022-3586 CVE-2022-3594 CVE-2022-3621

CVE-2022-3628 CVE-2022-3629 CVE-2022-3635

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:4574-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.