| Revision Date: | 2022-08-10 | Version: | 1 |
| Title: | Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP2) (Important) |
| Description: |
This update for the Linux Kernel 5.3.18-24_86 fixes several issues.
The following security issues were fixed:
- CVE-2022-28389: Fixed a double free in drivers/net/can/usb/mcba_usb.c vulnerability in the Linux kernel. (bnc#1198033) - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could crash the system or corrupt the system memory. (bsc#1196830) - CVE-2022-28390: Fixed a double free in drivers/net/can/usb/ems_usb.c vulnerability in the Linux kernel (bnc#1198031). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1200605
1201080
1201517
1201656
1201657
CVE-2022-1679
CVE-2022-20141
CVE-2022-26490
CVE-2022-28389
CVE-2022-28390
|
| Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
| Product(s): | |
| Definition Synopsis |
| Release Information SUSE Linux Enterprise High Performance Computing 15 SP2 is installed
OR SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
OR SUSE Linux Enterprise Server 15 SP2 is installed
OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
AND kernel-livepatch-5_3_18-24_86-default-15-150200.2.2 is installed
|