SUSE-SU-2022:0364-1

Source
https://www.suse.com/support/update/announcement/2022/suse-su-20220364-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:0364-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2022:0364-1
Related
Published
2022-02-10T16:03:37Z
Modified
2022-02-10T16:03:37Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254).
  • CVE-2021-3564: Fixed double-free memory corruption in the Linux kernel HCI device initialization subsystem that could have been used by attaching malicious HCI TTY Bluetooth devices. A local user could use this flaw to crash the system (bnc#1186207).
  • CVE-2020-28097: Fixed out-of-bounds read in vgacon subsystem that mishandled software scrollback (bnc#1187723).
  • CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/teeshm.c in the TEE subsystem, that could have occured because of a race condition in teeshmgetfrom_id during an attempt to free a shared memory object (bnc#1193767).
  • CVE-2022-0322: Fixed SCTP issue with account stream padding length for reconf chunk (bsc#1194985).
  • CVE-2021-4135: Fixed zero-initialize memory inside netdevsim for new map's value in function nsimbpfmap_alloc (bsc#1193927).
  • CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065).
  • CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcdehdeviceresethandler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864).
  • CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadgetdevdescUDCshow of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861).
  • CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880).
  • CVE-2021-4197: Use cgroup open-time credentials for process migraton perm checks (bsc#1194302).
  • CVE-2021-4202: Fixed NFC race condition by adding NCI_UNREG flag (bsc#1194529).
  • CVE-2021-4083: Fixed a read-after-free memory flaw inside the garbage collection for Unix domain socket file handlers when users call close() and fget() simultaneouslyand can potentially trigger a race condition (bnc#1193727).
  • CVE-2021-4149: Fixed btrfs unlock newly allocated extent buffer after error (bsc#1194001).

The following non-security bugs were fixed:

  • KVM: remember position in kvm->vcpus array (bsc#1190973).
  • KVM: s390: index kvm->arch.idlemask by vcpuidx (bsc#1190973).
  • SUNRPC: Add basic load balancing to the transport switch - kabi fix. (bnc#1192729).
  • SUNRPC: Add basic load balancing to the transport switch. (bnc#1192729)
  • SUNRPC: Fix initialisation of struct rpcxprtswitch (bnc#1192729).
  • SUNRPC: Optimise transport balancing code (bnc#1192729).
  • SUNRPC: Replace division by multiplication in calculation of queue length (bnc#1192729).
  • SUNRPC: Skip zero-refcount transports (bnc#1192729).
  • USB: serial: option: add Telit FN990 compositions (git-fixes).
  • bpf: Verifer, adjustscalarminmaxvals to always call updateregbounds() (bsc#1194227).
  • crypto: qat - fix undetected PFVF timeout in ACK loop (git-fixes).
  • ext4: set csum seed in tmp inode while migrating to extents (bsc#1195272).
  • fget: clarify and improve _fgetfiles() implementation (bsc#1193727).
  • hvnetvsc: Set neededheadroom according to VF (bsc#1193507).
  • ibmvnic: Allow extra failures before disabling (bsc#1195073 ltc#195713).
  • ibmvnic: do not spin in tasklet (bsc#1195073 ltc#195713).
  • ibmvnic: init ->runningcapcrqs early (bsc#1195073 ltc#195713).
  • ibmvnic: remove unused ->wait_capability (bsc#1195073 ltc#195713).
  • kABI fixup after adding vcpuidx to struct kvmcpu (bsc#1190973).
  • kabi: mask new member 'empty' of struct Qdisc (bsc#1183405).
  • kabi: revert drop of Qdisc::atomic_qlen (bsc#1183405).
  • kprobes: Limit max data_size of the kretprobe instances (bsc#1193669).
  • livepatch: Avoid CPU hogging with cond_resched (bsc#1071995).
  • memstick: rtsxusbms: fix UAF (bsc#1194516).
  • mm/hwpoison: do not lock page again when mehugepage() successfully recovers (bsc#1194814).
  • moxart: fix potential use-after-free on remove path (bsc#1194516).
  • net, xdp: Introduce xdpinitbuff utility routine (bsc#1193507).
  • net, xdp: Introduce xdppreparebuff utility routine (bsc#1193507).
  • net/sched: annotate lockless accesses to qdisc->empty (bsc#1183405).
  • net/sched: fix race between deactivation and dequeue for NOLOCK qdisc (bsc#1183405).
  • net/sched: pfifofast: fix wrong dereference in pfifofast_enqueue (bsc#1183405).
  • net/sched: pfifo_fast: fix wrong dereference when qdisc is reset (bsc#1183405).
  • net: Using proper atomic helper (bsc#1186222).
  • net: allow retransmitting a TCP packet if original is still in queue (bsc#1188605 bsc#1187428).
  • net: caif: avoid using qdisc_qlen() (bsc#1183405).
  • net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero (git-fixes).
  • net: dev: introduce support for sch BYPASS for lockless qdisc (bsc#1183405).
  • net: mana: Add RX fencing (bsc#1193507).
  • net: mana: Add XDP support (bsc#1193507).
  • net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc (bsc#1183405).
  • net: sched: Avoid using yield() in a busy waiting loop (bsc#1183405).
  • net: sched: add barrier to ensure correct ordering for lockless qdisc (bsc#1183405).
  • net: sched: add empty status flag for NOLOCK qdisc (bsc#1183405).
  • net: sched: always do stats accounting according to TCQFCPUSTATS (bsc#1183405).
  • net: sched: avoid unnecessary seqcount operation for lockless qdisc (bsc#1183405).
  • net: sched: fix packet stuck problem for lockless qdisc (bsc#1183405).
  • net: sched: fix tx action reschedule issue with stopped queue (bsc#1183405).
  • net: sched: fix tx action rescheduling issue during deactivation (bsc#1183405).
  • net: sched: prefer qdiscisempty() over direct qlen access (bsc#1183405).
  • net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1183405).
  • net: sched: when clearing NOLOCK, clear TCQFCPUSTATS, too (bsc#1183405).
  • net: tipc: validate domain record count on input (bsc#1195254).
  • net: usb: lan78xx: add Allied Telesis AT29M2-AF (git-fixes).
  • net_sched: avoid resetting active qdisc for multiple times (bsc#1183405).
  • netsched: get rid of unnecessary devqdisc_reset() (bsc#1183405).
  • netsched: use qdiscreset() in qdisc_destroy() (bsc#1183405).
  • nfs: do not dirty kernel pages read by direct-io (bsc#1194410).
  • nvme: add 'iopolicy' module parameter (bsc#1177599 bsc#1193096).
  • nvme: return BLKSTSTRANSPORT unless DNR for NVMESCNSNOTREADY (bsc#1163405).
  • of: Add cpu node iterator foreachofcpunode() (bsc#1065729).
  • of: Add device_type access helper functions (bsc#1065729).
  • of: Fix cpu node iterator to not ignore disabled cpu nodes (bsc#1065729).
  • of: Fix property name in ofnodegetdevicetype (bsc#1065729).
  • of: add node name compare helper functions (bsc#1065729).
  • powerpc/perf: Fix data source encodings for L2.1 and L3.1 accesses (bsc#1065729).
  • powerpc/prominit: Fix improper check of promgetprop() (bsc#1065729).
  • powerpc/pseries/cpuhp: cache node corrections (bsc#1065729).
  • powerpc/pseries/cpuhp: delete add/removebycount code (bsc#1065729).
  • powerpc/pseries/mobility: ignore ibm, platform-facilities updates (bsc#1065729).
  • powerpc/traps: do not enable irqs in _exception (bsc#1065729).
  • powerpc: add interruptcondlocalirqenable helper (bsc#1065729).
  • s390/cio: make ccwdevicedma_* more robust (bsc#1193242).
  • s390/pci: add s390iommuaperture kernel parameter (bsc#1193234).
  • s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194965).
  • select: Fix indefinitely sleeping task in pollscheduletimeout() (bsc#1194027).
  • tpm: Check for integer overflow in tpm2mapresponse_body() (bsc#1082555).
  • tpm: add requestlocality before write TPMINT_ENABLE (bsc#1082555).
  • tpm: fix potential NULL pointer access in tpmdelchar_device (bsc#1184209 ltc#190917 git-fixes bsc#1193660 ltc#195634).
  • tracing/kprobes: 'nmissed' not showed correctly for kretprobe (git-fixes).
  • tracing: Fix check for tracepercpubuffer validity in gettracebuf() (git-fixes).
  • ucsiccg: Check DEVINT bit only when starting CCG4 (git-fixes).
  • usb: core: config: fix validation of wMaxPacketValue entries (git-fixes).
  • usbnet: fix error return code in usbnet_probe() (git-fixes).
  • usbnet: sanity check for maxpacket (git-fixes).
  • vfs: check fd has read access in kernelreadfilefromfd() (bsc#1194888).
  • virtio: write back FVERSION1 before validate (bsc#1193235).
  • x86/platform/uv: Add more to secondary CPU kdump info (bsc#1194493).
References

Affected packages

SUSE:Linux Enterprise High Availability Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "dlm-kmp-default": "4.12.14-122.110.1",
            "gfs2-kmp-default": "4.12.14-122.110.1",
            "ocfs2-kmp-default": "4.12.14-122.110.1",
            "cluster-md-kmp-default": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kgraft-patch-4_12_14-122_110-default": "1-8.3.2",
            "kernel-default-kgraft": "4.12.14-122.110.1",
            "kernel-default-kgraft-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kgraft-patch-SLE12-SP5_Update_28

Package

Name
kgraft-patch-SLE12-SP5_Update_28
Purl
purl:rpm/suse/kgraft-patch-SLE12-SP5_Update_28&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1-8.3.2

Ecosystem specific

{
    "binaries": [
        {
            "kgraft-patch-4_12_14-122_110-default": "1-8.3.2",
            "kernel-default-kgraft": "4.12.14-122.110.1",
            "kernel-default-kgraft-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-docs

Package

Name
kernel-docs
Purl
purl:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.2

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.110.2",
            "kernel-obs-build": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-obs-build

Package

Name
kernel-obs-build
Purl
purl:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.110.2",
            "kernel-obs-build": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.110.1",
            "kernel-devel": "4.12.14-122.110.1",
            "kernel-default-base": "4.12.14-122.110.1",
            "kernel-default-man": "4.12.14-122.110.1",
            "kernel-default": "4.12.14-122.110.1",
            "kernel-source": "4.12.14-122.110.1",
            "kernel-syms": "4.12.14-122.110.1",
            "kernel-default-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
purl:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.110.1",
            "kernel-devel": "4.12.14-122.110.1",
            "kernel-default-base": "4.12.14-122.110.1",
            "kernel-default-man": "4.12.14-122.110.1",
            "kernel-default": "4.12.14-122.110.1",
            "kernel-source": "4.12.14-122.110.1",
            "kernel-syms": "4.12.14-122.110.1",
            "kernel-default-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
purl:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.110.1",
            "kernel-devel": "4.12.14-122.110.1",
            "kernel-default-base": "4.12.14-122.110.1",
            "kernel-default-man": "4.12.14-122.110.1",
            "kernel-default": "4.12.14-122.110.1",
            "kernel-source": "4.12.14-122.110.1",
            "kernel-syms": "4.12.14-122.110.1",
            "kernel-default-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.110.1",
            "kernel-devel": "4.12.14-122.110.1",
            "kernel-default-base": "4.12.14-122.110.1",
            "kernel-default-man": "4.12.14-122.110.1",
            "kernel-default": "4.12.14-122.110.1",
            "kernel-source": "4.12.14-122.110.1",
            "kernel-syms": "4.12.14-122.110.1",
            "kernel-default-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
purl:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.110.1",
            "kernel-devel": "4.12.14-122.110.1",
            "kernel-default-base": "4.12.14-122.110.1",
            "kernel-default-man": "4.12.14-122.110.1",
            "kernel-default": "4.12.14-122.110.1",
            "kernel-source": "4.12.14-122.110.1",
            "kernel-syms": "4.12.14-122.110.1",
            "kernel-default-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
purl:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.110.1",
            "kernel-devel": "4.12.14-122.110.1",
            "kernel-default-base": "4.12.14-122.110.1",
            "kernel-default-man": "4.12.14-122.110.1",
            "kernel-default": "4.12.14-122.110.1",
            "kernel-source": "4.12.14-122.110.1",
            "kernel-syms": "4.12.14-122.110.1",
            "kernel-default-devel": "4.12.14-122.110.1"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
purl:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.110.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-extra": "4.12.14-122.110.1"
        }
    ]
}