Security update for the Linux Kernel SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2022:1255-1 Final 1 1 2022-04-19T08:20:13Z current 2022-04-19T08:20:13Z 2022-04-19T08:20:13Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-28356: Fixed a refcount leak bug in net/llc/af_llc.c (bnc#1197391). - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution (bsc#1197227). - CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcba_usb.c vulnerability in the Linux kernel (bnc#1198033). - CVE-2022-28388: Fixed a double free in drivers/net/can/usb/usb_8dev.c vulnerability in the Linux kernel (bnc#1198032). - CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel (bnc#1198031). - CVE-2022-0812: Fixed an incorrect header size calculations in xprtrdma (bsc#1196639). - CVE-2022-1048: Fixed a race Condition in snd_pcm_hw_free leading to use-after-free due to the AB/BA lock with buffer_mutex and mmap_lock (bsc#1197331). - CVE-2022-0850: Fixed a kernel information leak vulnerability in iov_iter.c (bsc#1196761). - CVE-2022-26966: Fixed an issue in drivers/net/usb/sr9700.c, which allowed attackers to obtain sensitive information from the memory via crafted frame lengths from a USB device (bsc#1196836). - CVE-2022-0886: Fix possible buffer overflow in ESP transformation (bsc#1197131). - CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file (bnc#1197366). - CVE-2021-39713: Fixed a race condition in the network scheduling subsystem which could lead to a use-after-free (bsc#1196973). - CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042: Fixed multiple issues which could have lead to read/write access to memory pages or denial of service. These issues are related to the Xen PV device frontend drivers (bsc#1196488). - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could crash the system or corrupt the system memory (bsc#1196830). The following non-security bugs were fixed: - ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (bsc#1196018). - macros.kernel-source: Fix coditional expansion. Fixes: bb95fef3cf19 ('rpm: Use bash for %() expansion (jsc#SLE-18234).') - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (bsc#1196018). - net: usb: ax88179_178a: fix packet alignment padding (bsc#1196018). - net/mlx5e: Fix page DMA map/unmap attributes (bsc#1196468). - rpm: SC2006: Use $(...) notation instead of legacy backticked `...`. - sr9700: sanity check for packet length (bsc#1196836). - usb: host: xen-hcd: add missing unlock in error path (git-fixes). - xen/usb: do not use gnttab_end_foreign_access() in xenhcd_gnttab_done() (bsc#1196488, XSA-396). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES15-Azure-BYOS-2022-1255,Image SLES15-SAP-Azure-BYOS-2022-1255,Image SLES15-SAP-Azure-LI-BYOS-Production-2022-1255,Image SLES15-SAP-Azure-VLI-BYOS-Production-2022-1255,SUSE-2022-1255,SUSE-SLE-Module-Live-Patching-15-2022-1255,SUSE-SLE-Product-HA-15-2022-1255,SUSE-SLE-Product-HPC-15-2022-1255,SUSE-SLE-Product-SLES-15-2022-1255,SUSE-SLE-Product-SLES_SAP-15-2022-1255 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ Link for SUSE-SU-2022:1255-1 https://lists.suse.com/pipermail/sle-security-updates/2022-April/010749.html E-Mail link for SUSE-SU-2022:1255-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1189562 SUSE Bug 1189562 https://bugzilla.suse.com/1194943 SUSE Bug 1194943 https://bugzilla.suse.com/1195051 SUSE Bug 1195051 https://bugzilla.suse.com/1195353 SUSE Bug 1195353 https://bugzilla.suse.com/1196018 SUSE Bug 1196018 https://bugzilla.suse.com/1196114 SUSE Bug 1196114 https://bugzilla.suse.com/1196468 SUSE Bug 1196468 https://bugzilla.suse.com/1196488 SUSE Bug 1196488 https://bugzilla.suse.com/1196514 SUSE Bug 1196514 https://bugzilla.suse.com/1196639 SUSE Bug 1196639 https://bugzilla.suse.com/1196761 SUSE Bug 1196761 https://bugzilla.suse.com/1196830 SUSE Bug 1196830 https://bugzilla.suse.com/1196836 SUSE Bug 1196836 https://bugzilla.suse.com/1196942 SUSE Bug 1196942 https://bugzilla.suse.com/1196973 SUSE Bug 1196973 https://bugzilla.suse.com/1197131 SUSE Bug 1197131 https://bugzilla.suse.com/1197227 SUSE Bug 1197227 https://bugzilla.suse.com/1197331 SUSE Bug 1197331 https://bugzilla.suse.com/1197366 SUSE Bug 1197366 https://bugzilla.suse.com/1197391 SUSE Bug 1197391 https://bugzilla.suse.com/1198031 SUSE Bug 1198031 https://bugzilla.suse.com/1198032 SUSE Bug 1198032 https://bugzilla.suse.com/1198033 SUSE Bug 1198033 https://www.suse.com/security/cve/CVE-2021-39713/ SUSE CVE CVE-2021-39713 page https://www.suse.com/security/cve/CVE-2021-45868/ SUSE CVE CVE-2021-45868 page https://www.suse.com/security/cve/CVE-2022-0812/ SUSE CVE CVE-2022-0812 page https://www.suse.com/security/cve/CVE-2022-0850/ SUSE CVE CVE-2022-0850 page https://www.suse.com/security/cve/CVE-2022-0886/ SUSE CVE CVE-2022-0886 page https://www.suse.com/security/cve/CVE-2022-1016/ SUSE CVE CVE-2022-1016 page https://www.suse.com/security/cve/CVE-2022-1048/ SUSE CVE CVE-2022-1048 page https://www.suse.com/security/cve/CVE-2022-23036/ SUSE CVE CVE-2022-23036 page https://www.suse.com/security/cve/CVE-2022-23037/ SUSE CVE CVE-2022-23037 page https://www.suse.com/security/cve/CVE-2022-23038/ SUSE CVE CVE-2022-23038 page https://www.suse.com/security/cve/CVE-2022-23039/ SUSE CVE CVE-2022-23039 page https://www.suse.com/security/cve/CVE-2022-23040/ SUSE CVE CVE-2022-23040 page https://www.suse.com/security/cve/CVE-2022-23041/ SUSE CVE CVE-2022-23041 page https://www.suse.com/security/cve/CVE-2022-23042/ SUSE CVE CVE-2022-23042 page https://www.suse.com/security/cve/CVE-2022-26490/ SUSE CVE CVE-2022-26490 page https://www.suse.com/security/cve/CVE-2022-26966/ SUSE CVE CVE-2022-26966 page https://www.suse.com/security/cve/CVE-2022-28356/ SUSE CVE CVE-2022-28356 page https://www.suse.com/security/cve/CVE-2022-28388/ SUSE CVE CVE-2022-28388 page https://www.suse.com/security/cve/CVE-2022-28389/ SUSE CVE CVE-2022-28389 page https://www.suse.com/security/cve/CVE-2022-28390/ SUSE CVE CVE-2022-28390 page Image SLES15-Azure-BYOS Image SLES15-SAP-Azure-BYOS Image SLES15-SAP-Azure-LI-BYOS-Production Image SLES15-SAP-Azure-VLI-BYOS-Production SUSE Linux Enterprise High Availability Extension 15 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 15 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 kernel-default-4.12.14-150000.150.89.1 cluster-md-kmp-default-4.12.14-150000.150.89.1 dlm-kmp-default-4.12.14-150000.150.89.1 gfs2-kmp-default-4.12.14-150000.150.89.1 ocfs2-kmp-default-4.12.14-150000.150.89.1 kernel-debug-4.12.14-150000.150.89.1 kernel-debug-base-4.12.14-150000.150.89.1 kernel-debug-devel-4.12.14-150000.150.89.1 kernel-debug-livepatch-devel-4.12.14-150000.150.89.1 kernel-default-base-4.12.14-150000.150.89.1 kernel-default-devel-4.12.14-150000.150.89.1 kernel-default-extra-4.12.14-150000.150.89.1 kernel-default-livepatch-4.12.14-150000.150.89.1 kernel-default-livepatch-devel-4.12.14-150000.150.89.1 kernel-default-man-4.12.14-150000.150.89.1 kernel-devel-4.12.14-150000.150.89.1 kernel-docs-4.12.14-150000.150.89.1 kernel-docs-html-4.12.14-150000.150.89.1 kernel-kvmsmall-4.12.14-150000.150.89.1 kernel-kvmsmall-base-4.12.14-150000.150.89.1 kernel-kvmsmall-devel-4.12.14-150000.150.89.1 kernel-kvmsmall-livepatch-devel-4.12.14-150000.150.89.1 kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 kernel-macros-4.12.14-150000.150.89.1 kernel-obs-build-4.12.14-150000.150.89.1 kernel-obs-qa-4.12.14-150000.150.89.1 kernel-source-4.12.14-150000.150.89.1 kernel-source-vanilla-4.12.14-150000.150.89.1 kernel-syms-4.12.14-150000.150.89.1 kernel-vanilla-4.12.14-150000.150.89.1 kernel-vanilla-base-4.12.14-150000.150.89.1 kernel-vanilla-devel-4.12.14-150000.150.89.1 kernel-vanilla-livepatch-devel-4.12.14-150000.150.89.1 kernel-zfcpdump-4.12.14-150000.150.89.1 kernel-zfcpdump-man-4.12.14-150000.150.89.1 kselftests-kmp-default-4.12.14-150000.150.89.1 reiserfs-kmp-default-4.12.14-150000.150.89.1 kernel-default-4.12.14-150000.150.89.1 as a component of Image SLES15-Azure-BYOS cluster-md-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-BYOS dlm-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-BYOS gfs2-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-BYOS kernel-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-BYOS ocfs2-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-BYOS cluster-md-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-LI-BYOS-Production dlm-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-LI-BYOS-Production gfs2-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-LI-BYOS-Production kernel-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-LI-BYOS-Production ocfs2-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-LI-BYOS-Production cluster-md-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-VLI-BYOS-Production dlm-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-VLI-BYOS-Production gfs2-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-VLI-BYOS-Production kernel-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-VLI-BYOS-Production ocfs2-kmp-default-4.12.14-150000.150.89.1 as a component of Image SLES15-SAP-Azure-VLI-BYOS-Production cluster-md-kmp-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Availability Extension 15 dlm-kmp-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Availability Extension 15 gfs2-kmp-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Availability Extension 15 ocfs2-kmp-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Availability Extension 15 kernel-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-default-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-default-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-docs-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-macros-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-obs-build-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-source-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-syms-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-vanilla-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-default-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-default-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-docs-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-macros-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-obs-build-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-source-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-syms-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-vanilla-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-default-livepatch-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Live Patching 15 kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 as a component of SUSE Linux Enterprise Live Patching 15 kernel-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-default-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-default-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-default-man-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-docs-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-macros-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-obs-build-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-source-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-syms-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-vanilla-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS reiserfs-kmp-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server 15-LTSS kernel-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-default-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-default-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-devel-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-docs-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-macros-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-obs-build-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-source-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-syms-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 kernel-vanilla-base-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 reiserfs-kmp-default-4.12.14-150000.150.89.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 Product: AndroidVersions: Android kernelAndroid ID: A-173788806References: Upstream kernel CVE-2021-39713 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2021-39713.html CVE-2021-39713 https://bugzilla.suse.com/1196973 SUSE Bug 1196973 https://bugzilla.suse.com/1197211 SUSE Bug 1197211 https://bugzilla.suse.com/1201790 SUSE Bug 1201790 In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file. CVE-2021-45868 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2021-45868.html CVE-2021-45868 https://bugzilla.suse.com/1197366 SUSE Bug 1197366 An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpc_rdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information. CVE-2022-0812 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-0812.html CVE-2022-0812 https://bugzilla.suse.com/1196639 SUSE Bug 1196639 A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace. CVE-2022-0850 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-0850.html CVE-2022-0850 https://bugzilla.suse.com/1196761 SUSE Bug 1196761 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-27666. Reason: This candidate is a reservation duplicate of CVE-2022-27666. Notes: All CVE users should reference CVE-2022-27666 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. CVE-2022-0886 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-0886.html CVE-2022-0886 https://bugzilla.suse.com/1197131 SUSE Bug 1197131 https://bugzilla.suse.com/1197133 SUSE Bug 1197133 A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker. CVE-2022-1016 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-1016.html CVE-2022-1016 https://bugzilla.suse.com/1197335 SUSE Bug 1197335 A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges on the system. CVE-2022-1048 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-1048.html CVE-2022-1048 https://bugzilla.suse.com/1197331 SUSE Bug 1197331 https://bugzilla.suse.com/1197597 SUSE Bug 1197597 https://bugzilla.suse.com/1200041 SUSE Bug 1200041 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 https://bugzilla.suse.com/1212325 SUSE Bug 1212325 Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 CVE-2022-23036 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-23036.html CVE-2022-23036 https://bugzilla.suse.com/1196488 SUSE Bug 1196488 https://bugzilla.suse.com/1199099 SUSE Bug 1199099 https://bugzilla.suse.com/1199141 SUSE Bug 1199141 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 CVE-2022-23037 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-23037.html CVE-2022-23037 https://bugzilla.suse.com/1199099 SUSE Bug 1199099 https://bugzilla.suse.com/1199141 SUSE Bug 1199141 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 CVE-2022-23038 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-23038.html CVE-2022-23038 https://bugzilla.suse.com/1199099 SUSE Bug 1199099 https://bugzilla.suse.com/1199141 SUSE Bug 1199141 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 CVE-2022-23039 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-23039.html CVE-2022-23039 https://bugzilla.suse.com/1199099 SUSE Bug 1199099 https://bugzilla.suse.com/1199141 SUSE Bug 1199141 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 CVE-2022-23040 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-23040.html CVE-2022-23040 https://bugzilla.suse.com/1199099 SUSE Bug 1199099 https://bugzilla.suse.com/1199141 SUSE Bug 1199141 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 CVE-2022-23041 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-23041.html CVE-2022-23041 https://bugzilla.suse.com/1199099 SUSE Bug 1199099 https://bugzilla.suse.com/1199141 SUSE Bug 1199141 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 CVE-2022-23042 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-23042.html CVE-2022-23042 https://bugzilla.suse.com/1199099 SUSE Bug 1199099 https://bugzilla.suse.com/1199141 SUSE Bug 1199141 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters. CVE-2022-26490 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-26490.html CVE-2022-26490 https://bugzilla.suse.com/1196830 SUSE Bug 1196830 https://bugzilla.suse.com/1201656 SUSE Bug 1201656 https://bugzilla.suse.com/1201969 SUSE Bug 1201969 https://bugzilla.suse.com/1211495 SUSE Bug 1211495 An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device. CVE-2022-26966 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-26966.html CVE-2022-26966 https://bugzilla.suse.com/1196836 SUSE Bug 1196836 In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c. CVE-2022-28356 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-28356.html CVE-2022-28356 https://bugzilla.suse.com/1197391 SUSE Bug 1197391 usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free. CVE-2022-28388 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-28388.html CVE-2022-28388 https://bugzilla.suse.com/1198032 SUSE Bug 1198032 mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free. CVE-2022-28389 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-28389.html CVE-2022-28389 https://bugzilla.suse.com/1198033 SUSE Bug 1198033 https://bugzilla.suse.com/1201657 SUSE Bug 1201657 ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free. CVE-2022-28390 Image SLES15-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-BYOS:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-LI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:cluster-md-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:dlm-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:gfs2-kmp-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:kernel-default-4.12.14-150000.150.89.1 Image SLES15-SAP-Azure-VLI-BYOS-Production:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:cluster-md-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:dlm-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:gfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Availability Extension 15:ocfs2-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise High Performance Computing 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-default-livepatch-4.12.14-150000.150.89.1 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150000_150_89-default-1-150000.1.3.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-default-man-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server 15-LTSS:reiserfs-kmp-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-default-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-devel-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-docs-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-macros-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-obs-build-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-source-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-syms-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:kernel-vanilla-base-4.12.14-150000.150.89.1 SUSE Linux Enterprise Server for SAP Applications 15:reiserfs-kmp-default-4.12.14-150000.150.89.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1/ https://www.suse.com/security/cve/CVE-2022-28390.html CVE-2022-28390 https://bugzilla.suse.com/1198031 SUSE Bug 1198031 https://bugzilla.suse.com/1201517 SUSE Bug 1201517 https://bugzilla.suse.com/1207969 SUSE Bug 1207969